SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Your email and contacting you:
With your permission, we may send you emails about our brand, new products and other updates. We may also use your information to serve you ads we believe will be of most interest to you, but you can opt out by emailing us on firstname.lastname@example.org.
We do not sell your personal details to anyone.
SECTION 2 – CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, you consent to our collecting your data and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will ask your specifically to opt in to hear from us.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at email@example.com.
Another way to do this, is to click ‘unsubscribe’ on the bottom of any email correspondence we send you that is not directly relating to an order you’ve placed with us.
SECTION 3 – DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 – WOO COMMERCE
Our store is hosted on Woo Commerce. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
If you choose a direct payment gateway to complete your purchase, this stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
SECTION 5 – THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
We may ask you to review one of products following purchase. If you decide to leave a review for either one of our products, or our brand in general, we may use your review in marketing, social or sales material. By leaving a review, you consent to use of your content in this manner. We will not publish more than your first name.
Some guidelines on writing reviews:
We want your honest opinion and would never ask you to write anything else. However, we do ask that you keep things clean, legal and friendly.
NB: Any ratings and reviews given regarding our products are the opinion of our customers. Any content in these reviews should be regarded as opinion, not health claims or medical advice. Our reviews are collected and verified by Reviews.
SECTION 6 – SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices and legal and regulatory requirements to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 – COOKIES
SECTION 8 – AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your country of residence, or that you are the age of majority in your country of residence and you have given us your consent to allow any of your minor dependants to use this site.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information, let us know at firstname.lastname@example.org.
For the purposes of applicable data protection and privacy laws, we are the data controller (company number 09790549).
This Policy explains what Personal data we collect, how we may use and manage it and the rights you have in relation to your Personal data. Before you provide us with any Personal data or browse our Website, you should read through this Policy in full and make sure that you are comfortable with our privacy practices.
1. Whose Personal data do we collect?
We collect Personal data from a range of individuals in the context of our business activities, including:
• representatives of our suppliers, customers and other business contacts;
• users of our Websites;
• individuals who contact us by any means; and
• if applicable, job applicants.
2. How we collect your Personal data
We obtain Personal data which you knowingly and voluntarily disclose to us, both online and offline, notably when you:
• visit our Website and / or complete one of our web forms;
• visit our premises;
• communicate with us via any means, including but not limited to telephone, email and through the use of social networking websites, third party apps or similar technologies.
We may also collect information from third party sources, e.g. relating to your use of other websites which we operate and from related third parties e.g. sub-contractors.
3. Information we may collect from you
We may collect a range of Personal data from you in a business context, including but not limited to your name, gender, job title, photographic identification, email address, home address and other contact details, details of your business and other interests, communications with you (including notes from meetings) and financial and payment information.
When you use our site(s) (“Website(s)”), we may collect certain standard information that is sent by your browser to the Websites, e.g. your IP address, browser type, operating system, language, time zone setting, access times and any referring website addresses.
We may collect and process information that you provide by filling in forms on the Websites, including without limitation information provided as part of a job application or other employment related enquiry.
If you contact us, we may keep a record of that correspondence.
We may also ask you to complete surveys that we use for research purposes, although you are under no obligation to respond to them.
We may also record details of your visits to the Websites, including any resources that you access.
We may record and retain certain telephone conversations where we are required to do so to comply with our regulatory obligations.
4. Where we Store Your Personal data
The data that we collect from you may be transferred to, and stored in, a country other than your own and that such country may provide a lower level of data protection requirements than your own country. By submitting your Personal data, you agree to this potential transfer to a country other than your own.
If you are located in the EEA, Switzerland or the UK, you can request a copy of the safeguards which we have put in place to protect your Personal data and privacy rights in these circumstances.
You acknowledge and understand that the transmission of information via the internet is not completely secure. Although we will take reasonable and appropriate steps to protect your personal data once we have received it, we cannot guarantee the security of your data transmitted to the Websites; any transmission is at your own risk. Once we have received your information, we will use appropriate procedures and security features to try to prevent unauthorised access.
5. Uses made of the information
We use Personal data held about you in the following ways:
• To ensure that content from the Websites is presented in the most effective manner for you and for your computer, including carrying out analytics in relation to the use of the Websites.
• To provide you with information that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.
• To carry out our obligations arising from any contracts entered in to between you and us.
• To communicate with you and third- party contacts.
• To comply with our legal and regulatory obligations, which may include the disclosure of certain information and/or recordings of telephone conversations to regulatory authorities.
• For other business-related purposes, including negotiating contracts, managing accounts and records, supporting corporate social responsibility activities, legal, regulatory and internal investigations and debt administration.
When you apply for a job via our Websites or otherwise, we will collect additional more specific Personal data about you, e.g. your qualifications, career history, third party references and interview notes. We may also ask you for other information, e.g. your interests and the types of jobs you are interested in.
7. The legal basis for us processing your Personal data
In accordance with the purposes for which we collect and use your Personal data, as set out above, the legal basis for us processing your Personal data will typically be one of the following:
• your consent;
• the performance of a contract or sales and purchase transaction that we have in place with you or other individuals;
• we or our third parties’ legitimate business interests; or
• compliance with our legal obligations.
8. Disclosure of your Information
We may share your Personal data with people within the organisation who have a “need to know” that data for business or legal reasons, e.g. in order, to carry out an administrative function such as processing an invoice, or to direct a query that you have submitted to the relevant department within us.
We may also disclose your Personal data to third parties:
• In the event, that we sell, merge or buy any business or assets, in which case we may disclose your Personal data to the prospective seller or buyer of such business or assets.
• If we or substantially all of its assets are acquired by a third party, in which case Personal data held by it about its customers will be transferred.
• In the event, that we are required to do so to comply with our regulatory obligations, to regulatory authorities.
We may decide to allow our Website users to share comments, postings, testimonials, or other information. If you choose to submit such information to us, the information that you submit may be available generally to the public. Information that you provide in these areas may be read, collected, and used by others who access them.
Finally, we may share non-personal data with other third parties that are not described above. When we do so we may aggregate or de-identify the information so that a third party would not be likely to link data to you, your computer, or your device. Aggregation means that we combine the non-personal data of numerous people together so that the data does not relate to any one person. De-identify means that we attempt to remove or change certain pieces of information that might be used to link data to a certain individual.
9. Records retention
Your Personal data is not kept for longer than is necessary for the purposes for which it is collected. This means that data and records are destroyed or erased from our systems when no longer required. The amount of time that records are kept for varies depending upon the type of Personal data they contain.
10. Your Rights – Marketing and Third-Party Websites
You have the right to ask us not to process your Personal data for marketing purposes. Where required by law, we will inform you (before or at the time of collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by ticking certain boxes on the forms we use to collect your data. You can also exercise your right to ‘opt-out’ from receiving marketing communications at any time by contacting us at email@example.com.
The Websites may, from time to time, contain links to and from, if applicable, the websites of our partner networks and affiliates, or of other third parties. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any Personal data to these websites.
11. Your Rights – Access, Rectification and Deletion
Applicable data privacy laws give rights to individuals in respect of Personal data that organisations hold about them. If you wish to:
• request a copy of the Personal data that we hold about you; or
• request that we rectify, delete, or limit the processing of your personal data,
Please submit your request to firstname.lastname@example.org and state “Personal data and privacy rights”.
12. Cookies and other tools
We may use information about your visits to the Websites by using a “cookie” or similar technologies for storing information, e.g. local shared objects and web beacons (“cookies”). A cookie is a small text file which is transferred to and stored on your computer, portable device or mobile. Cookies can be unique to your web browser and contain text and information e.g. unique identifier, site name, digits and numbers.
Cookies are used to differentiate one user from another, to pass information from page to page during their visit to the Websites and to collect data about a given browser, along with the information requested and sent by the browser’s operator. They enable us:
• To estimate our audience size and usage pattern.
• To store information about your preferences, and so allow us to customise the Websites according to your individual interests.
• To recognise you when you return to the Websites.
13. What cookies do we use?
We use primarily two types of cookies: session cookies and persistent cookies. Session cookies are temporary files that only remain in the cookie file of your browser until you leave our Websites. Persistent cookies may remain for periods ranging from hours to years after you leave the Websites and after your internet browser is closed.
The cookies we use are ‘analytical’ cookies (in particular, we use google analytics which provides us with meaningful reports on how visitors use the Websites). The cookies we use are first-party cookies, i.e. that they are set by the Websites when you visit and the data collected by these cookies cannot be altered or retrieved by any service on another domain or by any third party.
• Those that are strictly necessary to deliver the services and products you have requested
• Cookies related to the performance of the Websites, e.g. google analytics
• Cookies related to the functionality of the Websites, e.g. remembering your preferred language.
14. How can you change your cookie preferences?
You may at any time refuse to accept or block cookies by activating the setting on your internet browser which allows you to refuse the setting of cookies. You may also be able to change the setting on your internet browser so that only particular types of cookies will be accepted.
Please note, if you change your settings in either of these ways, you may be unable to access certain parts of the Websites.
If you are not satisfied with the handling of your concern or complaint by us, you can escalate this to your national Data Protection Authority.