SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?
When you make a purchase something from our store, as part of the buying and selling process, we collect personal information you provide us such as your name, address and email address.
When you browse our online store, we automatically receive your computer’s internet protocol (IP) that provides information to help us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, including new products, and/or other important updates. However, we do keep this to a minimum.
SECTION 2 - CONSENT
How do you get my consent?
When you provide us with your personal information to complete your transaction, and verify your credit card when placing an order, arrange for a delivery, or make a return, we ask for your consent to collect it, and use for that specific reason, but also provide an option to say no.
How do I withdraw my consent?
If after opting-in you decide to change your mind, you may withdraw your consent for us to establish contact at anytime, by contacting us with a written request to email@example.com.
SECTION 3 - DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 - SHOPIFY
Our store is hosted on Shopify, Inc., and your data is stored through their secure data storage databases, and general Shopify applications behind a firewall.
If you choose a direct payment gateway to complete your purchase, Shopify securely stores your credit card information which is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as is necessary to complete your online purchase transaction. However, after your purchase is complete, your information is immediately deleted.
Please Note: All direct payment gateways adhere to strict standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort with brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit-card information by our online store and its service providers.
For more information, please read Shopify’s Terms of Service.
SECTION 5 - THIRD-PARTY SERVICES
In general, the third-party providers used by us only collect, use, and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers such as payment gateways, and other payment transaction processors have their own privacy policies in respect to the information we're required to provide them for purchase-related transactions.
For these providers, we recommend that you carefully read their privacy policies to fully understand the manner in which your personal information is handled by these providers.
In particular, remember that certain providers may be located in, or have facilities located in a different jurisdiction, so if you elect to proceed with a transaction that involves the services of a third-party service provider, your information could become subject to the laws of that particular jurisdiction(s), and which that particular service provider, or its facilities are located.
For example, if you're located in Canada, and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When you click on any links on our online company store, you may get redirected away from our site, and not responsible for the privacy practices of another site, and encourage you to read their applicable privacy statements.
SECTION 6 - SECURITY
To protect your personal information, we take every possible precaution, and follow Best Practices to make sure it's not inappropriately lost, misused, abused, accessed, disclosed, altered, or destroyed.
If/when you provide us with credit-card information, the information is encrypted using secure socket layer technology (SSL), and securely stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we strive to follow all PCI-DSS requirements, and implement generally accepted industry standards.
Below is a list of cookies we use to choose from, and opt-out at any time:
_session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).
_shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits
_shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.
cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
SECTION 7 - AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state, province of residence, or the age of majority in your state, and have given us consent to allow any of your minor dependents to use this site.
If our store is acquired or merged with another company, your information may be transferred to the new owners for them to continue selling you products.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend, or delete any personal information we have about you, register a complaint, or simply want additional information, please contact our Privacy Compliance Officer at firstname.lastname@example.org.
[Re: Privacy Compliance Officer]