Last updated: May 25, 2018
SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect such information as your name, address and email address.
When you browse our store, we also automatically receive the computer’s IP address (like any other website) in order learn about the browser and operating system and present the website with relevant language and currency.
Email marketing (if applicable): With your permission, we may send you emails with your order details, tracking updates and promotions.
SECTION 2 – CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at any time by contacting us at email@example.com.
SECTION 3 – DISCLOSURE
We disclose the information in our systems, and/or the information associated with you over time for the following purposes:
- In response to legal process (for example, a court order, search warrant or subpoena);
- When we, in our sole discretion, believe it is necessary or appropriate, in connection with a sale or transfer of some or all of our assets, or when we, in good faith, believe that the law requires us to do so;
- In other circumstances when necessary either to protect our (or our clients’ / third parties’) rights or property;
- We may transfer information to a successor entity in connection with a corporate merger, consolidation, sale of assets, bankruptcy, or other corporate change. If we are involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our Website of any change in ownership or uses of your personally identifiable information, as well as any choices you may have regarding your information.
SECTION 4 – THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers we recommend that you read their privacy policies, so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. If you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When you click on links on our store, they may direct you away from our Website. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
Our store uses Google Analytics to help us learn about who visits our site and what pages are being looked at. You can opt-out of these analytics features by clicking here.
We process information in a way that is compatible with and relevant for the purpose for which it was collected. To the extent necessary for those purposes, we take reasonable steps to ensure that any information in our care is accurate, complete, current and reliable for its intended use.
SECTION 5 – GENERAL DATA PROTECTION REGULATION
We will comply with all the GDPR requirements worldwide for all our users by the 25th of May 2018. We will (i) streamline the data handling controls, (ii) specify our relationships with data partners, and (iii) provide the data subjects with an understanding and direct management of the way their personal information is used.
We cooperate with our partners to determine the way data is handled under the agreed terms.
We have assigned a Data Protection Officer (DPO). You may reach him via firstname.lastname@example.org
We will retain the gathered data for no longer as 24 months.
The retention policy of company’s data
Company processes and for about 24 months stores the pseudonymized data, let alone special requirement provided by GDPR (fraud, legal claim, etc.). Other than that, all personal data is deleted once the 24-month period is over.
Requests and removal of the data
You (data subject) may send official requests to us via email at the following address: email@example.com
At any time, you have the right:
- To access your personal information that we hold;
- To request the rectification of your personal information that we hold;
- To request the erasure of your personal information that we hold;
- To request to restrict processing of your personal information;
- To object to processing of your personal information by us;
- To request to transfer your personal information that we hold (e.g. data portability);
- To file a complaint to a supervisory authority in your jurisdiction; and
- To withdraw any consent related to your personal information given by you.
Your request will be observed within a 30-day period from the initial request receipt.
We will also notify you and a relevant supervisory authority within 72 hours from a breach in a case of such breach related to your personal information that we hold.
SECTION 6 – SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with an AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 – AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
QUESTIONS AND CONTACT INFORMATION
If you have any questions – please contact us at firstname.lastname@example.org