Privacy policy

Last updated: November 9, 2025

DermaLabs Molecule Series LLC – DermaDAO (“DermaLabs,” “we,” “us,” or “our”) operates this online store and website, including all related information, content, features, tools, products, and services (the “Services”). Our storefront is hosted by Shopify, which enables us to provide the Services to you.

This Privacy Policy describes how we collect, use, disclose, and otherwise process your personal information when you visit, use, or make a purchase through the Services or otherwise communicate with us. If there is any conflict between our Terms of Use and this Privacy Policy regarding personal information, this Privacy Policy controls.

By using or accessing the Services, you acknowledge that you have read this Privacy Policy and understand our processing of your information as described here.

 

Personal Information We Collect or Process

“Personal information” means information that identifies, relates to, describes, or could reasonably be linked to you. It does not include de-identified or aggregated information.

Depending on how you interact with the Services, where you live, and as permitted by applicable law, we may collect or process the following categories of personal information (including inferences derived from them):

• Contact details: name, email address, phone number, billing and shipping addresses.

• Financial information: payment card details and payment confirmations (processed by our payment processors), transaction amounts and methods.

• Account information: username, password, security questions, preferences, and settings.

• Transaction information: items viewed, added to cart/wishlist, purchased, returned, exchanged, or canceled; order history.

• Communications: information you include when contacting support or otherwise communicating with us.

• Device information: device, browser, operating system, IP address, and other identifiers.

• Usage information: how and when you access or navigate the Services, including page views and interaction data.

 

Personal Information Sources

We collect personal information:

• Directly from you (e.g., account creation, checkout, customer support).

• Automatically via cookies and similar technologies when you use the Services.

• From service providers acting on our behalf (e.g., payments, fulfillment, analytics).

• From partners or other third parties, as permitted by law.

 

 

How We Use Your Personal Information

Depending on your interaction with us and the Services, we may use personal information to:

• Provide, tailor, and improve the Services: process payments, fulfill orders, arrange shipping, facilitate returns/exchanges, manage accounts, personalize the shopping experience, and recommend products.

• Marketing and advertising: send marketing communications (email/SMS/postal), show ads on our Services or other sites based on your activity (subject to your choices).

• Security and fraud prevention: authenticate accounts; detect, investigate, and prevent fraud, abuse, or security incidents.

• Communicate with you: provide customer support and respond to requests.

• Legal reasons: comply with law, respond to lawful requests, enforce our terms, and protect our rights and users.

 

How We Disclose Personal Information

We may disclose personal information to third parties for the purposes described above, including:

• Shopify and service providers that support the Services (e.g., hosting, payments, data analytics, customer support, cloud storage, fulfillment, and shipping).

• Business and marketing partners to provide marketing services and advertising. Partners use information in accordance with their own privacy notices. Depending on your jurisdiction, you may have the right to direct us not to share information for targeted advertising (see Your Rights and Choices).

• With your direction or consent, including social media integrations or when shipping gifts.

• Affiliates and corporate family as part of normal business operations.

• Business transactions (e.g., merger, acquisition) and legal compliance (e.g., subpoenas, court orders).

 

Relationship with Shopify

Our Services are hosted by Shopify. Shopify collects and processes personal information about your access to and use of the Services to provide and improve the Services. Information you submit through the Services will be transmitted to and shared with Shopify and certain third parties, potentially in countries other than where you reside.

To help protect, grow, and improve our business, we may use Shopify enhanced features that incorporate data from your interactions with our store, with other merchants, and with Shopify. For these enhanced features, Shopify is responsible for the processing of your personal information (including for responding to rights requests related to those features).

• Learn more about how Shopify uses personal information: Shopify Consumer Privacy Policy.

• Exercise rights related to data processed by Shopify: [Shopify Privacy Portal link].

 

Third-Party Websites and Links

The Services may link to third-party sites. Their privacy and security practices are not controlled by us. Review their policies before providing information. Content you share on public or semi-public venues (including social platforms) may be viewable by others.

 

Children’s Data

The Services are not intended for children, and we do not knowingly collect personal information from individuals under the age of majority in your jurisdiction (and under 13 in the United States). If you are a parent/guardian and believe your child provided personal information, contact us using the details below. As of the effective date, we do not have actual knowledge that we “sell” or “share” (as defined by applicable law) personal information of individuals under 16.

 

Security and Retention

We implement reasonable technical and organizational safeguards; however, no security measures are perfect, and data transmission over the internet may not be fully secure. Please avoid sending sensitive information via unencrypted channels.

We retain personal information for as long as necessary to provide the Services, manage accounts, comply with legal obligations, resolve disputes, and enforce agreements.

 

Your Rights and Choices

Depending on your location, you may have some or all of the following rights, subject to legal limits:

• Right to access/know the personal information we hold about you.

• Right to delete personal information we maintain about you.

• Right to correct inaccurate personal information.

• Right to portability (to receive a copy and/or have it transmitted to another entity).

• Right to opt out of “sale” or “sharing” for targeted advertising (as defined by applicable law). You may exercise opt-out rights via our site controls or via this opt-out link. If you visit our site with Global Privacy Control (GPC) enabled, we will treat that as a request to opt out for the device/browser used, and, where we can associate the device with an account, apply it to the account as well. Other than GPC, we do not respond to other “Do Not Track” signals.

• Managing communication preferences: you can unsubscribe from marketing emails via the link in any marketing message. (We may still send non-promotional messages about your orders or account.)

EEA/UK residents: In addition to the above, you may have the rights to object to or restrict certain processing and to withdraw consent where processing is based on consent (without affecting prior lawful processing).

You can exercise rights where indicated on the Services or by contacting us (see Contact below). For data that Shopify processes as an independent controller, see the Shopify Consumer Privacy Policy and the Shopify Privacy Portal referenced above.

We will not discriminate against you for exercising your rights. We may need to verify your identity before acting on a request and may require authorization documentation if an authorized agent acts on your behalf.

 

Complaints

If you have concerns about our processing, please contact us first (see Contact page below). Depending on your location, you may also have the right to appeal our decision or lodge a complaint with your local data protection authority (for the EEA, see the list of supervisory authorities on the European Commission or EDPB websites).

 

International Transfers

We may transfer, store, and process personal information outside your country of residence, including in the United States.

For transfers from the EEA/UK, where required, we rely on recognized transfer mechanisms (e.g., the European Commission’s Standard Contractual Clauses and the UK International Data Transfer Addendum), unless the destination has an adequacy decision.

 

Changes to This Privacy Policy

We may update this Privacy Policy from time to time for operational, legal, or regulatory reasons. We will post the updated version on this page and adjust the “Last updated” date. Where required by law, we will provide additional notice.

 

Contact

Data Controller: DermaLabs Molecule Series LLC – DermaDAO
Address: 16192 Coastal Hwy., Lewes, Delaware 19958, United States
Email: hello@dermadao.xyz

For questions about this Privacy Policy or to exercise your rights, please contact us using the details above.