Introduction

This Privacy Policy explains how Epepea collects, uses, discloses, and protects personal data when you use our Services.

“Personal data” means information that identifies or can reasonably be linked to an individual.

Data we collect

Account and identity data

• Name, email address, phone number, and account identifiers.
• Authentication and security data (password hashes, login timestamps, and security events).

Order and transaction data

• Cart contents, orders, payment status, refunds, and dispute history.
• Delivery and pickup preferences, delivery address selections, and order notes.

Location data

• Selected delivery area (e.g., suburb/town) and optional coordinates when you enable location detection or set location by device.
• Distance calculations used to estimate delivery fees and ETAs.

Device and usage data

• Device identifiers, browser type, IP address, and approximate location derived from IP.
• Pages visited, clicks, searches, and performance logs for diagnostics and security.

Support and communications

• Support tickets, messages, attachments, and related operational notes.
• Email/SMS communications where enabled for order and account notifications.

How we use personal data

• Provide marketplace functionality (search, cart, checkout, ordering, and tracking).
• Enable fulfillment workflows between customers, retailers, suppliers, shoppers/agents, and delivery partners.
• Calculate delivery fees and ETAs based on distance and delivery policy rules.
• Prevent fraud, abuse, and unauthorized access; enforce marketplace policies.
• Improve reliability, product experience, and customer support operations.

Legal bases (where applicable)

• Contract: to provide the Services you request (orders, delivery, account features).
• Legitimate interests: to protect the marketplace, detect fraud, and improve Services.
• Consent: for optional features such as device-based location detection where enabled.
• Legal obligations: to comply with laws, tax rules, and lawful requests.

Sharing and disclosures

With retailers, suppliers, and fulfillment partners

• We share order details necessary for fulfillment, inventory coordination, and customer support.
• We may share delivery/pickup details with delivery partners and shoppers/agents for completion and proof of delivery.

With payment providers

• Payment processing and fraud controls may require sharing transaction data with payment providers.

For legal and security reasons

• We may disclose information to comply with law, respond to lawful requests, or protect users and the platform.

Data retention

• We retain personal data as long as necessary to provide the Services and for legitimate business purposes.
• We may retain records longer to comply with legal obligations, resolve disputes, and enforce agreements.

Security

• We use reasonable technical and organizational measures designed to protect personal data.
• No method of transmission or storage is perfectly secure; you are responsible for keeping your credentials safe.

Cookies and similar technologies

• We use cookies for sessions, security, preferences (such as currency and location), and analytics where enabled.
• See the Cookie Policy for more details.

Your rights and choices

• Access, update, or correct certain account information through your profile where available.
• Request help with data access, deletion, or correction through the support ticket form.
• Disable device location permissions through your browser/device settings.

Children’s privacy

The Services are not intended for children. If you believe a child has provided personal data, contact support.

Last updated

March 2026