Here is the full corrected code:```html Privacy Policy - Galaxy Brand Store | Authorized Samsung Retailer
Data Protection

Privacy Policy

At Galaxy Brand Store, we are committed to protecting your privacy and personal data. This policy explains how we collect, use, and safeguard your information when you visit our store or purchase our products.

Kenya Data Protection Act Compliant  |  Your Privacy Rights Protected

Privacy Policy

Last Updated: March 12, 2026   |   Effective Date: March 12, 2026
About Galaxy Brand Store: Galaxy Brand Store is an independent, authorized retailer of Samsung products, registered and operating in Kenya. We are a separate legal entity from Samsung Electronics Co., Ltd. The name "Galaxy Brand Store" refers solely to our retail business. "Samsung" and "Galaxy" are trademarks of Samsung Electronics Co., Ltd., used here solely to identify the products we are authorized to sell.

1. Introduction & Scope

Welcome to Galaxy Brand Store's Privacy Policy. Galaxy Brand Store is an independent authorized Samsung retailer operating at Superior Center, Kimathi Street, Nairobi, Kenya. This document outlines how we collect, use, disclose, and safeguard your information when you visit our store or purchase our products.

Policy Scope

This policy applies to all personal data collected through:

  • In-store purchases and transactions
  • Product consultations and sales
  • Warranty registrations and claims
  • Customer support interactions
  • Marketing communications (where you have provided consent)
  • Website and digital platforms

We are committed to complying with the Data Protection Act, 2019 of Kenya and applicable data protection regulations. References to "we," "us," or "our" refer exclusively to Galaxy Brand Store, the independent retail business, and not to Samsung Electronics Co., Ltd. or any of its affiliates.

2. Information We Collect

We collect only the information that is necessary to provide our products and services to you. Below is a full description of the categories of data we collect and why:

Personal Information

  • Full name and contact details
  • Email address and phone number
  • Physical address for delivery
  • Government ID (for warranty registration only, where required)
  • Payment information (processed securely; we do not store full card details)

Product Information

  • Device model and serial number
  • Purchase date and store location
  • Product preferences and interests
  • Warranty status and claims history
  • Technical specifications relevant to your purchase

Transaction Data

  • Purchase history and receipts
  • Payment method type (e.g., cash, card, M-Pesa)
  • Delivery and shipping details
  • Warranty registrations
  • Customer service interaction records

Data Collection Methods

We collect information through:

  • Direct Interactions: When you make purchases, request consultations, or provide information in-store or via phone/email
  • Automated Technologies: Through our website and digital platforms (see Cookies section)
  • Third Parties: From Samsung Electronics for warranty purposes, or from authorized service partners
  • Public Sources: Business directories and public records for corporate services only

We do not collect sensitive personal data (such as biometric data, health data, or financial account details beyond payment processing) unless strictly required and with your explicit consent.

3. How We Use Your Information

Your information is used only for the purposes described below. We do not use your data in any manner inconsistent with what a reasonable person would expect given the context of collection:

Primary Uses

  • Sales Processing: To complete your purchases and process transactions
  • Customer Support: To respond to inquiries and provide product assistance
  • Warranty Management: To register and process warranty claims with Samsung Electronics on your behalf
  • Legal Compliance: To meet regulatory requirements, including tax and accounting obligations under Kenyan law
  • Security Purposes: To protect our store, assets, and customers from fraud or theft

Analytical & Improvement Uses

  • Service Improvement: To enhance our retail services and overall customer experience
  • Product Analysis: To understand aggregate customer preferences and product trends (using anonymized data where possible)
  • Business Planning: For inventory management and sales optimization
  • Marketing (with consent only): To inform you about promotions, new products, and offers — only where you have explicitly opted in

Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds:

  • Contract Performance: Processing necessary to fulfill our sales agreement with you
  • Legal Obligation: Processing required to comply with Kenyan laws and regulations
  • Legitimate Interests: Processing for our operational business interests, provided these do not override your rights
  • Consent: For marketing communications and any non-essential data uses — you may withdraw consent at any time

4. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law:

Data TypeRetention PeriodReason
Purchase & Transaction Records7 yearsKenyan tax and accounting law requirements
Warranty Registration DataDuration of warranty + 1 yearTo process warranty claims and disputes
Customer Contact Details3 years from last interactionCustomer support and relationship management
Marketing Consent RecordsUntil consent is withdrawn + 1 yearCompliance with consent obligations
CCTV / In-Store Footage30 daysSecurity purposes; deleted unless an incident requires retention

After the applicable retention period, your data is securely deleted or anonymized. You may request early deletion of your data where no legal obligation requires us to retain it (see Your Rights section).

5. Data Sharing & Third Parties

We do not sell your personal data. We may share your information with the following third parties only for the specific purposes listed, and only to the extent necessary:

Third PartyPurposeData Shared
Samsung Electronics Co., Ltd.Warranty registration and claims processingDevice details, purchase info, contact details
Payment Processors (e.g., M-Pesa, card networks)Secure transaction processingPayment information and transaction amounts only
Delivery & Courier ServicesProduct delivery to your addressName, delivery address, contact number
Legal & Regulatory AuthoritiesLegal compliance and lawful requestsOnly the information required by law or court order
Marketing PartnersPromotional campaignsContact information — only with your prior explicit consent

International Transfers: Where data is transferred outside Kenya (e.g., to Samsung Electronics), we ensure such transfers comply with the Data Protection Act, 2019 of Kenya and that appropriate safeguards are in place.

Data Protection Agreements

All third parties with whom we share personal data are contractually required to:

  • Enter into data processing agreements with us
  • Implement appropriate technical and organizational security measures
  • Use personal data only for the specified, agreed purposes
  • Delete or return data when the purpose is fulfilled or the agreement ends
  • Comply with applicable data protection laws

6. Data Security Measures

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, loss, or misuse:

Access Controls

Role-based access to customer data with strict authentication requirements for all staff

Encryption

Data encryption for storage and transmission using industry-standard protocols

Network Security

Firewalls, intrusion detection systems, and regular security assessments

Staff Training

Regular data protection and security awareness training for all employees

Security Breach Response

In the event of a personal data breach, we will:

  • Immediately investigate and contain the breach
  • Notify affected individuals without undue delay where there is a likely risk to their rights
  • Report to the Office of the Data Protection Commissioner of Kenya as required by law
  • Implement corrective measures to prevent recurrence
  • Provide guidance and support to affected individuals

While we implement strong security measures, no method of transmission or storage is 100% secure. Please contact us immediately if you suspect any unauthorized use of your information.

7. Your Data Protection Rights

Under the Data Protection Act, 2019 of Kenya, you have the following rights regarding your personal data:

Your RightDescriptionHow to Exercise
AccessRequest a copy of the personal data we hold about youSubmit a written request to our store or by email
CorrectionRequest correction of inaccurate or incomplete dataVisit our store with supporting documentation
DeletionRequest deletion of your personal data where no legal obligation requires its retentionSubmit a deletion request by email or in person
RestrictionRequest that we limit how we use your data in certain circumstancesContact our Data Protection contact person
PortabilityRequest a copy of your data in a structured, machine-readable formatSubmit a portability request by email
ObjectionObject to processing of your personal data for direct marketing or legitimate interest purposesNotify us in writing of your objection
Withdraw ConsentWithdraw consent for any processing based on your consent at any time, without affecting prior processingContact us by phone, email, or in person

Response Time & Fees

We will respond to all legitimate requests within 30 days of receipt. There is no charge for exercising your rights. If a request is manifestly unfounded or excessive, we may charge a reasonable administrative fee or decline the request, and we will explain our reasons in writing.

8. Cookies & Tracking Technologies

Our website uses cookies and similar technologies. Below is a full description of how we use them:

Please note: To manage or disable cookies, please use your browser's built-in settings (Chrome: Settings → Privacy and Security → Cookies; Firefox: Options → Privacy & Security; Safari: Preferences → Privacy). Disabling non-essential cookies does not affect your ability to make purchases in-store.

Essential Cookies

Required for basic website functionality. These cannot be disabled as the website will not work properly without them.

Session Cookies Maintain your browsing session on our site
Security Cookies Help protect against fraud and unauthorized access

Functional Cookies

These cookies remember your preferences to improve your experience. You may disable these via your browser settings.

Preference Cookies Remember your language and display settings
Authentication Cookies Keep you logged in during your visit if an account is used

Analytics Cookies

These cookies help us understand how visitors use our website so we can improve it. They collect data in aggregate and anonymized form. You may opt out via your browser settings or the Google Analytics opt-out tool.

Google Analytics Tracks website usage and visitor behavior in aggregate
Performance Cookies Monitor page load times and error rates

9. Children's Privacy

We do not knowingly collect or process personal information from individuals under the age of 18 without verifiable parental or guardian consent.

Children's Data Protection

  • Our products and services are not directed at children under 18
  • Verified parental or guardian consent is required before any personal data of a minor may be collected
  • Where we become aware that data has been collected from a child without proper consent, we will delete it promptly
  • Parents or guardians may contact us to review or request deletion of a child's information

If you believe we have inadvertently collected personal information from a child without parental or guardian consent, please contact us immediately at privacy@galaxybrandstore.com so we can take appropriate action without delay.

10. Policy Updates & Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable legal requirements.

How We Notify You of Changes

  • We will notify you of significant changes via email (where we hold your address) or by a prominent notice in-store and on our website
  • The "Last Updated" date at the top of this policy will be revised with every update
  • For material changes, we will provide at least 14 days' notice before the changes take effect
  • Continued use of our services after the effective date of changes constitutes your acceptance of the updated policy
  • Previous versions of this policy are available upon request

We encourage you to review this policy periodically to stay informed about how we protect your personal information.

11. Contact Information

For any privacy-related inquiries, to exercise your data protection rights, or to raise a concern, please contact us using the details below:

Data Protection Contact

  • Business Name: Galaxy Brand Store (Independent Authorized Samsung Retailer)
  • Store Address: Superior Center, Kimathi Street, Nairobi, Kenya
  • Phone: 0712 939 925 (Mon–Sat: 8:00 AM – 7:00 PM EAT)
  • Email: privacy@galaxybrandstore.com
  • In-Person: Visit our store at the above address during business hours

Regulatory Authority

If you believe we have not handled your personal data in accordance with your rights, you have the right to lodge a complaint with the Office of the Data Protection Commissioner of Kenya:

  • Website: www.odpc.go.ke
  • Address: Teleposta Towers, 10th Floor, Kenyatta Avenue, Nairobi, Kenya
  • Email: info@odpc.go.ke

Questions About Your Privacy?

Our team is ready to assist you with data protection inquiries, rights requests, or privacy concerns. We are committed to protecting your information and responding promptly.

Email Privacy Team Call: 0712 939 925
```
error: Content is protected !!
Shopping Cart

Your cart is empty

You may check out all the available products and buy some in the shop

Return to shop