Privacy Policy – Costa Barca
Data & Privacy

Privacy Policy

Effective May 2026  ·  Anuma Footwear, RK Puram, Agra, India

Costa Barca, operated by Anuma Footwear, is committed to protecting the privacy of our visitors and customers. This Privacy Policy explains how we collect, use, and safeguard the information you share with us when you visit our store or make a purchase.

Contents
  1. What We Do with Your Information
  2. Consent
  3. Disclosure
  4. Payments & Security
  5. Third-Party Services
  6. Customer Details Collected
  7. Purpose of Collection
  8. Sharing of Customer Details
  9. Mailing List & Unsubscribing
  10. Card Details & Storage
  11. Security Measures

1. What We Do with Your Information

You may browse Costa Barca without disclosing personal information. We may track domain-level traffic data for analytics, but individual users remain anonymous unless they voluntarily share information.

When you make a purchase, we collect your name, address, email address, and any other information required to process and deliver your order. When you browse our store, we also receive your device's IP address to help us understand browser and operating system usage. With your permission, we may send you emails relating to your order, new arrivals, and updates.

2. Consent

When you provide personal information to complete a transaction, verify payment, place an order, or arrange a delivery, you consent to our collecting and using it for that specific purpose. If we require your information for a secondary reason such as marketing, we will ask for your express consent or provide an opportunity to opt out.

You may withdraw your consent at any time by contacting us at support@costabarca.in.

3. Disclosure

We may disclose your personal information if required by law or if you violate our Terms of Service. Your information will not be sold or disclosed to third-party marketers.

4. Payments & Security

If you use a direct payment gateway, your credit card data is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Transaction data is stored only as long as necessary to complete the purchase and deleted thereafter. All gateways adhere to PCI-DSS standards as managed by the PCI Security Standards Council.

5. Third-Party Services

Third-party providers we use will only collect, use, and disclose your information to the extent necessary for the services they provide. Payment processors and logistics partners have their own privacy policies. Once you leave our website or are redirected to a third-party site, you are no longer governed by this Privacy Policy.

6. Customer Details Collected

During a purchase, we may collect the following:

  1. Full Name
  2. Billing Address
  3. Shipping Address
  4. Email Address
  5. Phone Number
  6. Payment Information (processed securely by our gateway)
  7. Order History
  8. IP Address (for fraud prevention)

7. Purpose of Collecting Customer Details

  1. Order Processing — to confirm, process, and deliver purchases
  2. Billing & Payment — to verify and complete secure transactions
  3. Shipping & Delivery — to ensure accurate and timely delivery
  4. Customer Support — to assist with queries, returns, and complaints
  5. Order History — for records, reference, and future support
  6. Fraud Prevention — to protect against unauthorized transactions
  7. Communication — order confirmations, updates, and notifications
  8. Service Improvement — analytics and experience enhancement

8. Sharing of Customer Details

We do not sell or share customer details with third parties for marketing purposes. Details are shared only when necessary to complete your order:

  • Delivery partners — to ensure accurate and timely shipment
  • Payment processors — to authorize and complete your transaction securely

9. Mailing List & Unsubscribing

You may unsubscribe from our marketing emails at any time using the unsubscribe link in every promotional email. Unsubscribing will not affect transactional communications required to process your orders.

10. Card Details & Collection

We do not store or collect full card details. All payment transactions are handled by PCI DSS-compliant third-party gateways. Where card details are temporarily processed during checkout, it is solely for payment authorization, fraud prevention, and order verification. All data is encrypted and handled by our payment partners — not retained on our servers.

11. Storage & Security Measures

  • End-to-End Encryption: SSL encryption during all data transmission
  • Tokenization: Unique payment tokens used in place of real card numbers
  • No Local Storage: Sensitive card data never stored on our servers
  • Access Control: Tightly restricted and logged access by payment providers
  • Regular Audits: Ongoing security audits and vulnerability scans

Questions about your data? Write to us at support@costabarca.in — we will respond within 2 working days.