Privacy Policy – TheSahira Group

Last updated: 28th February 2026

 

TheSahira.com (“TheSahira”, “we”, “our”, or “us”) is a group of brands operating in sublimation printing, digital pattern design, fashion, management consulting and agency services, as well as education and community initiatives.

This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you interact with:

  • Our main website [TheSahira.com] and related microsites/landing pages;
  • Our online stores and digital platforms for any of our brands; and
  • Our educational and community programs, events, and communications.

We operate from Indonesia and primarily follow applicable Indonesian data protection principles. By using our website or services, you agree to the collection and use of information in accordance with this Privacy Policy.

 

SECTION 1 – WHAT WE DO WITH YOUR INFORMATION

1.1 Information you provide to us

When you interact with TheSahira Group brands, we may collect personal information that you voluntarily provide, for example when you:

  • Make a purchase from any of our online stores or sales channels;
  • Create an account or profile on our website or other platforms;
  • Subscribe to our newsletters, waitlists, or marketing communications;
  • Register for classes, workshops, events, or community programs;
  • Contact us for customer service, consulting proposals, collaborations, or other inquiries; or
  • Participate in surveys, promotions, or feedback sessions.

Depending on the interaction, this may include:

  • Identification data: name, username, title;
  • Contact details: email address, phone number, shipping and billing address;
  • Transaction data: order details, payment method (limited), shipping details, invoice information;
  • Preference data: brand, style, and product preferences, design interests, learning interests;
  • Professional data (for consulting/agency work): company name, role, industry, and related business information you share with us.

1.2 Information we collect automatically

When you browse our website or use our digital platforms, we automatically receive certain information, such as:

  • Your device’s Internet Protocol (IP) address;
  • Browser type, language, and version;
  • Operating system and device information;
  • Referring URL, pages visited, time and date of visit, and other analytics data.

We use this information to:

  • Operate, maintain, and improve our websites and services;
  • Analyze trends, understand usage patterns, and optimize user experience;
  • Monitor for security and potential abuse.

1.3 Email marketing & communications

With your consent (for example, when you subscribe or opt‑in), we may send you emails or messages about:

  • New collections, collaborations, and product launches from our fashion and design brands;
  • Design resources, digital patterns, and sublimation printing content;
  • Educational programs, workshops, and community events;
  • Consulting/agency insights, case studies, and service updates;
  • Newsletters, inspiration, and other updates from TheSahira Group.

You may unsubscribe from these communications at any time by using the “unsubscribe” link in our emails or by contacting us as described below.

 

SECTION 2 – CONSENT

2.1 How we obtain your consent

We obtain your consent in several ways, including when you:

  • Provide personal data to complete a transaction or request a service (e.g., purchase, registration, inquiry);
  • Tick a checkbox or take another explicit action indicating you agree to receive marketing communications;
  • Continue to use our website after being presented with cookie or tracking notices.

By providing your personal information for a specific purpose (e.g., completing a transaction, registering for a workshop, or requesting a proposal), you consent to our collection and use of that information for that purpose and related necessary purposes (e.g., customer support, invoicing, and compliance).

For any secondary purpose (such as marketing) that is different from the primary purpose of collection, we will either:

  • Ask you directly for your express consent; or
  • Provide you with a clear opportunity to decline or opt out.

2.2 How to withdraw your consent

If, after you opt in, you change your mind, you may withdraw your consent for us to:

  • Contact you; and/or
  • Continue collecting, using, or disclosing your personal information (except where required by law)

at any time by contacting us at:

If we rely on other legal grounds (e.g., legitimate interests or legal obligations) to process your data, we may still need to retain certain information even after consent is withdrawn, to the extent allowed or required by law.

 

SECTION 3 – DISCLOSURE

We may disclose your personal information:

  • If we are required to do so by applicable law, regulation, court order, government request, or law enforcement authority;
  • If you violate our Terms of Use, Terms of Service, or other applicable policies;
  • To protect the rights, property, or safety of TheSahira Group, our users, or others;
  • In connection with a business transaction such as a merger, acquisition, joint venture, restructuring, or sale of assets (see Section 8).

Where we disclose information, we will always aim to share only what is reasonably necessary in the circumstances.

 

SECTION 4 – PLATFORM & E‑COMMERCE PROVIDERS

Our online stores and digital platforms may be hosted or powered by third‑party service providers (for example, e‑commerce platforms, payment gateways, or learning management systems). For certain brands or online stores, this may include Shopify or equivalent providers.

When you make a purchase or use our services through these platforms:

  • Your data may be stored through the platform’s data storage, databases, and general applications;
  • Such platforms typically store your data on secure servers protected by firewalls and industry‑standard security measures.

Payments

If you choose a direct payment gateway (for example, credit/debit card, digital wallet, or local Indonesian payment solutions), the payment provider may store and process your payment data in accordance with its own security and privacy standards, which may include:

  • PCI-DSS (Payment Card Industry Data Security Standard) compliance for card payments;
  • Encryption and secure transmission of sensitive information.

We do not store your full payment card or banking details on our own servers. Payment providers only receive and process the minimum information required to complete your transaction.

For more details about how these platforms handle your data, please review their respective Terms of Service and Privacy Policies.

 

SECTION 5 – THIRD‑PARTY SERVICES

5.1 Service providers

In general, the third‑party service providers we use will only collect, use, and disclose your information to the extent necessary to perform services for us, such as:

  • Payment processing;
  • Order fulfilment, logistics, and delivery;
  • Email, SMS, or push notification services;
  • Analytics, reporting, and marketing tools;
  • Customer service platforms and CRM;
  • Educational platforms or community tools (e.g., learning portals, webinar tools).

These providers have their own privacy policies governing how they handle your personal information. We encourage you to read their policies to understand how they process, secure, and share your data.

5.2 International transfers and different jurisdictions

Some service providers may be located or may store your data outside Indonesia. This means your personal data may be transferred to, processed in, or stored in countries that may have different data protection laws from Indonesia.

When you proceed with a transaction or use a feature that involves such third‑party services, your information may be subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.

5.3 External websites and links

Our website and platforms may contain links to third‑party websites, applications, or social media platforms. Once you leave our website or are redirected to a third‑party site or application:

  • This Privacy Policy and our Terms of Use no longer apply;
  • We are not responsible for the privacy practices, security, or content of those third‑party sites;
  • We encourage you to review their privacy statements and terms.

 

SECTION 6 – SECURITY

We take reasonable and appropriate measures to protect your personal information from unauthorized access, loss, misuse, alteration, or destruction. These measures may include:

  • Technical safeguards (e.g., encryption, firewalls, secure servers);
  • Administrative safeguards (e.g., access controls, staff training, internal policies);
  • Physical safeguards (e.g., restricted access to facilities and systems).

If you provide us with payment information (such as credit card data) through our payment providers, that information is usually encrypted using secure technologies (e.g., SSL/TLS).

Although no method of transmission over the internet or electronic storage is 100% secure, we strive to follow industry best practices and relevant security standards to protect your information.

 

SECTION 7 – COOKIES & SIMILAR TECHNOLOGIES

Our website and platforms may use cookies and similar technologies (such as web beacons or pixels) to:

  • Enable essential site functionality (e.g., shopping cart, login sessions, language preferences);
  • Remember your preferences and improve your browsing experience;
  • Analyze traffic, usage, and performance;
  • Support marketing and advertising efforts (including retargeting or remarketing, where applicable and permitted).

Examples of the types of cookies we may use include:

  • Session cookies: temporary cookies that remain on your device while you are visiting our site and are deleted when you close your browser;
  • Persistent cookies: cookies that remain on your device for a set period or until you delete them;
  • Analytics cookies: to understand how visitors interact with our site;
  • Marketing cookies: to deliver relevant content and advertisements.

You can manage or disable cookies through your browser settings. However, if you choose to disable certain cookies, some parts of our website or services may not function properly.

 

SECTION 8 – AGE OF CONSENT

Our websites and services are generally intended for individuals who are at least the age of majority in their place of residence.

By using our site, you represent that:

  • You are at least the legal age of majority in your province, state, or country of residence; or
  • You are the parent or legal guardian and have given consent for your minor dependents to use this site.

If we become aware that we have collected personal information from anyone under the age of majority without verifiable parental or guardian consent, we will take steps to delete such information as soon as reasonably possible.

 

SECTION 9 – RETENTION OF YOUR INFORMATION

We retain personal information for as long as necessary to:

  • Provide our products, services, and support;
  • Fulfil the purposes described in this Privacy Policy;
  • Comply with legal, accounting, or reporting obligations;
  • Resolve disputes and enforce our agreements.

When your information is no longer needed, we will securely delete, anonymize, or de‑identify it, in accordance with applicable law and our internal policies.

 

SECTION 10 – CHANGES TO THIS PRIVACY POLICY

We reserve the right to update or modify this Privacy Policy at any time. Changes and clarifications will take effect immediately upon posting on our website, unless otherwise stated.

If we make material changes to this policy, we will:

  • Indicate that the policy has been updated (e.g., by changing the “Last updated” date at the top); and
  • Where appropriate, provide additional notice (for example via email or on‑site notifications), so that you remain aware of what information we collect, how we use it, and under what circumstances we may disclose it.

If TheSahira Group or substantially all of its assets are acquired, merged, or reorganized with another entity, your personal information may be transferred to the new owners so that we or they may continue to provide services and operate our brands.

 

SECTION 11 – YOUR RIGHTS & CONTACT INFORMATION

Subject to applicable law, you may have the right to:

  • Access the personal data we hold about you;
  • Request correction or updating of inaccurate or incomplete information;
  • Request deletion or anonymization of your personal data, subject to legal retention obligations;
  • Object to certain types of processing or request restrictions;
  • Withdraw your consent where we rely on consent as the legal basis for processing;
  • Lodge a complaint with a relevant supervisory authority, where applicable.

To exercise any of these rights, or if you have questions, concerns, or would simply like more information about our privacy practices, please contact our Privacy Officer at: