The EU General Data Protection Regulation (GDPR)
What is GDPR?
The GDPR is the European Union’s new data privacy law. It provides you with specific rights over your personal data including a right to access, correct, delete and restrict processing of your data. These regulations were approved by the European Union (EU) Parliament on 14th April 2016. They come / came into effect on 25th May 2018.
How does GDPR help protect your personal data?
The GDPR applies to the processing of data carried out both by organisations who operate within the EU and to organisations outside the EU who offer goods or Services to individuals within the EU. Under GDPR all European organisations who collect, store and / or process your personal information must adhere to each of the regulations covered by GDPR which apply to their business and the way it handles your personal data. GDPR regulations specifically require that we (and other companies) take steps to help secure your data rights and to protect your data.
Our store has been designed to conform with the regulations detailed under GDPR from the date of launch of the site. Further details on the GDPR and how it protects personal data on the web are available at: https://ico.org.uk .
What information do we collect about you and how do we use it?
When you purchase something from our store, as part of the buying and selling process, we collect any personal information you give us such as your name, address and email address. When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system which also enables us to optimise the way our site displays on your device. If you consent we may also send you emails about our store, new Products, our periodic newsletter and other updates.
How do we get your consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or to return something you have purchased, we assume that you have consented to our collection of the personal information you have given us for the specific purpose of actioning your request. If we ask for your personal information for a secondary reason, such as sending you marketing information, we will either ask you directly for your express consent, or we will provide you with an opportunity to say no and refuse your consent for us using your information for that purpose.
How do I withdraw my consent?
If, after you give your consent (opt-in), you subsequently change your mind, at any time you may withdraw your consent for us to contact you, to continue collecting personal information or to use or disclose it or you may ask us to delete your information from our records. If you wish to do so just contact us at email@example.com
We respect your privacy and take our responsibilities for your personal information seriously, however should we be required to do so by law or should you infringe our Terms of Service it may be necessary to disclose your personal information in order to help resolve the issue.
Third Party Services
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to enable them to perform the Services they provide to us. However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions. For these providers, we recommend that you read their privacy policies so you can understand how your personal information will be handled by these providers. In particular, please remember that certain providers may be located at facilities that are located in a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the Services of a third-party service provider, please note that your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities reside. As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When you click on links in our store, they may direct you away from our site. We are unable to accept responsibility for the privacy practices of other sites over which we have no control and we would encourage you to read their privacy statements before divulging any personal data or transacting with the site.
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure your data is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional widely accepted industry standards.
BIG COMMERCE COOKIES
The policies used to control cookie stored on your computer are set in your browser. You can typically modify the way cookies are handled on your computer by going to the settings menu in your browser and then looking for the ‘cookies’ options under your content settings.
AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your country, state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any of the personal information we have about you, register a complaint, or would simply like more information please contact our Data Processing Officer (DPO) at firstname.lastname@example.org