2. Information we collect and how we collect it
You can provide information to us on our Site when you register at the Site and/or create an online account. Company collects personally identifiable information, such as e-mail address and name. If you purchase our product, you will also be asked to provide your credit card or bank account information solely for purposes of processing payments through the Payment section of our Website. This information is not stored by Company, but rather is used by our third party vendor, PayPal, that provides payment processing services.
Information We Collect Automatically. We collect certain information automatically as you use our Site, such as IP address, browser type, computer or device type, unique device identifiers, operating system version, the website from where you navigated to our Site, time and date of using our Site, the pages on our Site that you view, the name of your Internet service provider (ISP), and location /geolocation information.
No Information From Children Under Age 13. If you are under the age of 13, please do not attempt to register with us at this Site or provide any personal information about yourself to us. If we learn that we have collected personal information from a child under the age of 13, we will promptly delete that information. If you believe we have collected personal information from a child under the age of 13, please Contact Us at firstname.lastname@example.org.
3. How we use and share your information
To Provide Products, Services, and Information. As described above, we collect information from you so that we can provide products and services that you purchase at the Site, and provide information that you request from us. We use your personally identifiable information to contact you about your orders, process credit card / debit card transactions, and ship products to you. We may send you information about our products and services, and new offerings. We may provide information to third party service providers that help us process orders, and fulfill and deliver products and services that you purchase from us.
We may use third parties to help host our Site, send out email updates about the Site, provide marketing and advertising services for us, remove repetitive information from our user lists, and process payments. These service providers will have access to your personally identifiable information in order to provide these services, but when this occurs we implement reasonable contractual and technical protections to limit their use of that information to helping us provide the service.
We belong to ad networks that may use your browsing history across participating websites to show you interest-based advertisements on those websites. You can opt-out of receiving interest-based ads from us by sending an email to email@example.com. Please note that if you choose to opt out, you will continue to see ads on our Site, but they will not be based on how you browse and shop.
If your browser sends a “do not track” signal or similar mechanism to indicate you do not wish to be tracked or receive interest-based ads, we will treat that signal as an opt-out. We allow advertising networks to collect personally identifiable information about our user’s online activities when you leave this Site. To learn more about interest-based advertisements and your opt-out rights and options, visit the Digital Advertising Alliance and the Network Advertising Initiative websites ( www.aboutads.infoand www.networkadvertising.org).
Third Party Advertising & Marketing. Company treats all your personally identifiable information as confidential. We do not sell, rent, or share personally identifiable information with third parties for the third party to market its products and services.
Your Consent. In addition to the sharing described elsewhere in this Policy, we will share personally identifiable information with companies, organizations or individuals outside of the Company when we have your consent to do so.
Legal Proceedings. We will share personally identifiable information with third party companies, organizations or individuals outside of Company if we have a good-faith belief that access, use, preservation or disclosure of the information is reasonably necessary to:
- Meet any applicable law, regulation, subpoena, legal process or enforceable governmental request.
- Enforce applicable Terms and Conditions, including investigation of potential violations.
- Detect, prevent, or otherwise address fraud, security or technical issues.
Protect against harm to the rights, property or safety of Company, our users, customers or the public as required or permitted by law.
4. Access to your information and choices
You can access and update certain information we have relating to your online account by signing into your account on the Account section of our Site. If you have questions about personally identifiable information we have about you or need to update your information, you can Contact Us at firstname.lastname@example.org. You can also opt-out of receiving marketing and promotional e-mails from Company by sending an email to email@example.com.
You can close your online account on the Account section of our website. If you close your account, we will no longer use your online account information or share it with third parties. We may, however, retain a copy of the information for archival purposes, and to avoid identity theft or fraud.
5. Security of your information
We use industry standard physical, technical and administrative security measures and safeguards to protect the confidentiality and security of your personally identifiable information. However, since the Internet is not a 100% secure environment, we cannot guarantee, ensure, or warrant the security of any information you transmit to us. There is no guarantee that information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. It is your responsibility to protect the security of your login information. Please note that e-mails and other communications you send to us through our Site are not encrypted, and we strongly advise you not to communicate any confidential information through these means.
6. International privacy practices
The Site is operated and managed on servers located and operated within the United States. By using and accessing our Sites, residents and citizens of countries and jurisdictions outside of the United States agree and consent to the transfer to and processing of personally identifiable information on servers located in the United States, and that the protection of such information may be different than required under the laws of your residence or location.
The European Commission has determined that the transfer of personal information of its residents outside of Europe must be subject to a legal framework that adequately protects it. We transfer personal information of European Economic Area (“EEA”) and Swiss residents to the U.S. (or elsewhere) based upon the following legal frameworks:
Legitimate business interests: We could not provide our services or comply with our obligations to you without transferring your personal information to the U.S.
Consent: We may transfer your personal information when we receive your express, revocable consent.
Our use of Standard Contractual Clauses (also known as “Model Clauses”) where appropriate.
Our self-certification with the EU-US and Swiss-US Privacy Shield frameworks (“Privacy Shield”).
We adhere to the Privacy Shield principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. Information about Privacy Shield (and our self-certification) can be found here: https://www.privacyshield.gov. Our Privacy Shield compliance is subject to the enforcement authority of the U.S. Federal Trade Commission. In addition, EEA and Swiss residents may invoke binding arbitration as set forth below.
We comply with the European Union’s General Data Protection Law (“GDPR”), which governs the protection of personal data of EU residents. To find out more about GDPR, please visit the European Union’s website, at https://ec.europa.eu/info/law/law-topic/data-protection_en.
EU users have the rights to: opt out of cookies; access, correct, delete, restrict or object to our use of their personal information; be forgotten; and data portability. We enable exercise of these rights through our products (which we reserve the right to modify). For example, we allow users to change their information and close their accounts. We also fulfill our obligations in response to direct requests.
If you require assistance, please Contact Us at firstname.lastname@example.org. We may require additional information from you to fulfill your requests. We may charge a reasonable fee if your request imposes an unreasonable cost on us.
We will afford UK-based users with all rights available to EU users, regardless of the UK’s EU member status.
Controllers and Processors
Some laws, including the GDPR, differentiate between controllers and processors of data. A “controller” has a direct relationship with you and exercises control over the use of your data. The third-party vendors that help a controller provide a service are considered “processors” because they process the controller’s customer data at the controller’s request (examples are payment processors and cloud-based hosting providers).
The Site is a controller of personal information on users who set up an account in order to comment on content, or who purchase downloadable content from the Site.
Third Party sites, such as Facebook, LinkedIn, MailChimp and Twitter are separate controllers and processors of your information.
We are committed to working with you to obtain a fair resolution of any complaint. We encourage you to begin by Contacting Us at email@example.com. We endeavor to respond to requests promptly.
If you believe that we have not been able to address your complaint, you may seek redress through other means. If you are an EEA or Swiss resident, you may invoke binding arbitration against us. EU residents have the right to lodge complaints with the data protection authority of their country of residence.
8. Questions and how to contact us
Published on: May 25, 2018