GDPR personal data processing
DECLARATION OF CONFIDENTIALITY
ARTICLE 1 - PERSONAL INFORMATION COLLECTED
When you make a purchase via our website, as part of our buying and selling process, we collect personal information you provide to us, such as your name, address and e-mail address.
When you browse our store, we also automatically receive your computer's Internet Protocol (IP) address, which allows us to get more details about the browser and operating system you are using.
Email Marketing (if applicable): With your permission, we may send you e-mails about our online store, new products and other updates.
ARTICLE 2 - CONSENT
How do you get my consent?
When you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery or return a purchase, we assume that you agree to our collecting your information and using it for this purpose only.
If we ask you to provide us with your personal information for any other reason, such as marketing, we will ask you directly for your express consent, or we will give you the opportunity to refuse.
How do I withdraw my consent?
If after giving us your consent, you change your mind and no longer consent to our contacting you, collecting your information or disclosing it, you can notify us by contacting us by email at firstname.lastname@example.org
ARTICLE 3 - DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms and Conditions of Sale and Use.
ARTICLE 4 - SHOPIFY
Our shop is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our services and products to you.
Your data is stored in Shopify's data storage system and databases, and in Shopify's general application. Your data is stored on a secure server protected by a firewall.
If you make a purchase through a direct payment gateway, then Shopify will store your credit card information. This information is encrypted in accordance with the data security standard established by the Payment Card Industry (PCI-DSS). Information about your purchase transaction is retained for as long as necessary to finalize your order. Once your order is finalized, the details of the purchase transaction are deleted.
All direct payment gateways comply with PCI-DSS, which ais managed by the PCI Security Standards Board, and is the result of joint efforts by companies such as Visa, MasterCard, American Express, and Discover.
The PCI-DSS requirements ensure the secure processing of credit card data by our store and service providers.
ARTICLE 5 - SERVICES PROVIDED BY THIRD PARTIES
Generally, the third party providers we use will only collect, use and disclose your information to the extent necessary to perform the services they provide to us.
However, some third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase transactions.
For these providers, we recommend that you carefully read their privacy policies so that you can understand how they will process your personal information.
It should be noted that some suppliers may be located or have facilities located in a jurisdiction different from yours or ours. Therefore, if you decide to continue a transaction that requires the services of a third-party vendor, your information could then be governed by the laws of the jurisdiction in which the supplier is located or the jurisdiction in which its facilities are located.
For example, if you are located in Canada and your transaction is processed through a payment gateway located in the United States, your information used to complete the transaction could be disclosed under the laws of the United States. United States, including the Patriot Act.
You may be required to leave our website by clicking on certain links on our site. We assume no responsibility for the privacy practices of these other sites and recommend that you carefully read their privacy policies.
ARTICLE 6 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to ensure that they are not lost, misappropriated, viewed, disclosed, modified or destroyed in an inappropriate manner.
If you provide us with your credit card information, it will be encrypted through the use of the SSL security protocol and stored with AES-256 encryption. Although no method of Internet transmission or electronic storage is safe at 100%, we comply with all PCI-DSS requirements and implement industry-accepted additional standards.
Here is a list of cookies that we use. We have listed them here so that you have the opportunity to choose whether you want to allow them or not.
_session_id, session unique identifier, allows Shopify to store information about your session (referrer, landing page, etc.).
_shopify_visit, no data retained, persists for 30 XNUMX minutes since the last visit. Used by the provider's internal statistics tracking system on our website to record the number of visits.
_shopify_uniq, no data retained, expires at midnight (depending on the location of the visitor) the next day. Calculates the number of visits to a store per single customer.
cart, unique identifier, persists for 2 weeks, stores information about your shopping cart.
_secure_session_id, session unique identifier
storefront_digest, unique identifier, undefined if the store has a password, it is used to find out if the current visitor has access.
ARTICLE 7 - AGE OF CONSENT
By using this site, you declare that you are at least the age of majority in your state or province of residence, or that you have given us your consent to allow any under aged person the permission to use this website.
If our store is acquired by or merged with another company, your information may be transferred to the new owners so we can continue to sell you products.
QUESTIONS AND CONTACT INFORMATION
If you wish to: access, correct, modify or delete any personal information we have about you, file a complaint, or simply want more information, contact our Privacy Standards Officer at: email@example.com
[Re: Privacy Standards Officer]