----When you make a purchase in our store as part of the buying and selling process, we collect the personal information you give us, such as your name, address and email address.
When you browse our store, we also automatically receive your computer's Internet Protocol (IP) address, which allows us to learn more about the browser and operating system you are using.
Email marketing (where applicable): with your permission, we may send you emails about our store, new products and other updates.
SECTION 2 - CONSENT
How do I get my consent?
If you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery or return a purchase, we will assume that you consent to our collection and use of your information only for that purpose.
If we ask you to provide your personal information for other reasons, such as for marketing purposes, we will ask you directly for your explicit consent or give you the opportunity to opt out.
How can I withdraw my consent?
If you change your mind after you have given us your consent and you no longer want us to contact you, collect or share your information, you can let us know by contacting us at email@example.com.
SECTION 3 - PROVISION OF INFORMATION
Our store is hosted by Shopify Inc., which provides us with an e-commerce platform through which we can sell you our services and products.
Your information is stored in Shopify's data storage system and databases and in Shopify's general application. Your data is stored on a secure server protected by a firewall.
If you make your purchase through a direct payment gateway, Shopify will store your credit card information in this case. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). This information is stored for as long as necessary to complete your order. As soon as your order is completed, your transaction data will be deleted.
All direct payment gateways are PCI-DSS compliant and managed by the PCI Security Standards Council, a consortium of Visa, MasterCard, American Express and Discover.
PCI-DSS requirements ensure the secure processing of credit card data in our stores and by our service providers.
SECTION 5 - SERVICES PROVIDED BY THIRD PARTIES
Generally, the third party service providers we use collect, use and disclose your information only to the extent necessary to perform the services they provide to us.
However, some third-party service providers, such as payment gateways and other payment processors, have their own privacy policies regarding the information we are required to provide to them in connection with purchase transactions.
We recommend that you read the privacy policies of these service providers carefully to understand how they handle your personal information.
Please note that some service providers may have offices or facilities in jurisdictions different from yours or ours. For example, if you choose to enter into a transaction that requires the services of a third-party vendor, your information may be subject to the laws of the jurisdiction in which that vendor is located or in which its facilities are located.
For example, if you are located in Canada and your payment transaction is made through a payment gateway located in the United States, the information you use to complete the payment transaction may be disclosed under United States law, such as the Patriot Act.
You can leave our Site by clicking on certain links on our Site. We are not responsible for the privacy practices of these other sites, and we recommend that you read their privacy policies carefully.
SECTION 6 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to ensure that information is not lost, misused, accessed, disclosed, altered or destroyed inappropriately.
When you give us your credit card information, it is encrypted using Secure Sockets Layer (SSL) technology and stored using AES-256 encryption. While no method of transmission or electronic storage over the Internet is 100% secure, we comply with all PCI-DSS requirements and other generally accepted industry standards.
Here is a list of the cookies we use. We have listed them here so that you can decide whether or not to allow them.
session_id, a unique session identifier that allows Shopify to store information about your session (referring site, landing page, etc.).
shopify_visit, no information is stored, exists 30 minutes from your last visit. Our website provider's internal statistical tracking system counts the number of visits.
shopify_uniq, no data, expires at midnight (depending on the location of the visitor) the following day. Counts the number of shop visits per customer.
shopping cart, unique identifier, stays in place for 2 weeks, stores information related to your shopping cart.
secure_session_id, unique session identifier.
storefront_digest, unique identifier, not set if the storefront has a password, used to determine if the current visitor has access.
SECTION 7 - AGE OF CONSENT
By using this Site, you represent that you are of legal age in the state or province in which you reside and that you have given us your consent for minors in your care to use this Site.
If our store is acquired by or merged with another company, your information may be transferred to the new owners so that we can continue to sell products to you.
ARTICLE 9 - Conditions for marketing texts.
We use the SMS platform under the following conditions. By registering to receive SMS messages and notifications, you accept these conditions. By providing your phone number at checkout and initiating a purchase, by registering via our order form or by using a keyword, you agree to receive SMS messages (related to your order, including reminders for abandoned shopping carts) and marketing offers via SMS. You agree that this consent is not a condition of purchase. Your telephone number, name and purchase details will be transferred to our SMS platform "SMSBump Inc, an EU company based in Sofia, Bulgaria, EU". This information is used to send you targeted marketing messages and notifications. When you send SMS messages, your phone number will be forwarded to the SMS operator to ensure delivery. If you wish to stop receiving marketing messages and notifications by SMS, please reply STOP to each mobile message we send you or use the unsubscribe link in one of our messages. You understand and agree that other ways to unsubscribe, such as using alternative words or requests, will not be considered an appropriate way to unsubscribe. Message and data charges may apply. If you have any questions, please text "HELP" to the number from which you received the messages. You can also contact us for more information. If you wish to unsubscribe from the newsletter, please follow the procedures described above.
QUESTIONS AND CONTACT DETAILS
To access, correct, amend or delete personal information we hold about you, to make a complaint or simply to obtain further information, please contact our Data Protection Officer at firstname.lastname@example.org.
[Re: Data Protection Officer]