Last updated: 2021-12-04
Examples of Personal Information collected: version of web browser, IP address, time zone, cookie information, what sites or products you view, search terms, and how you interact with the Site.
Purpose of collection: to load the Site accurately for you, and to perform analytics on Site usage to optimize our Site.
Source of collection: Collected automatically when you access our Site using cookies, log files, web beacons, tags, or pixels and analytics.
Disclosure for a business purpose: shared with our processor WooCommerce, Google, Facebook.
Examples of Personal Information collected: name, billing address, shipping address, payment information (including credit card numbers and other payment transaction details) email address, and phone number.
Purpose of collection: to provide products or services to you to fulfill our contract, to process your payment information, arrange for shipping, and provide you with invoices and/or order confirmations, communicate with you, screen our orders for potential risk or fraud, and when in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
Source of collection: collected from you.
Disclosure for a business purpose: shared with our processor Woocommerce and connected services to process the payment and shipping, Facebook and Google to drive analytics.
Examples of Personal Information collected: as described above.
Purpose of collection: to provide customer support.
Source of collection: collected from you.
Disclosure for a business purpose: We use Woocommerce plugins, to provide a chat on our website. Your IP address, name, email address may be shared with the server.
We store information about your purchase on our systems and computer to drive analytics and to provide customer service.
The Site is not intended for individuals under the age of 18. We do not intentionally collect Personal Information from children. If you are the parent or guardian and believe your child has provided us with Personal Information, please contact us at the address below to request deletion.
We share your Personal Information with service providers to help us provide our services and fulfill our contracts with you, as described above. For example:
We use WooCommerce by WordPress to power our online store. You can read more about how WooCommerce uses your Personal Information here: https://woocommerce.com/document/marketplace-privacy/.
We may share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant, or another lawful request for information we receive, or to otherwise protect our rights.
As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For example:
We use Google Analytics to help us understand how our customers use the Site. You can read more about how Google uses your Personal Information here: https://policies.google.com/privacy?hl=en.You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt-out of targeted advertising by:
FACEBOOK – https://www.facebook.com/settings/?tab=ads
GOOGLE – https://www.google.com/settings/ads/anonymous
BING – https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads
Additionally, you can opt-out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
We use your personal information to provide our services to you, which includes: offering products for sale, processing payments, shipping and fulfillment of your order, and keeping you up to date on new products, services, and offers.
Pursuant to the General Data Protection Regulation (“GDPR”), if you are a resident of the European Economic Area (“EEA”), we process your personal information under the following lawful bases:
The performance of the contract between you and the Site;
Compliance with our legal obligations;
To protect your vital interests;
To perform a task carried out in the public interest;
For our legitimate interests, which do not override your fundamental rights and freedoms.
When you place an order through the Site, we will retain your Personal Information for our records unless and until you ask us to erase this information. For more information on your right of erasure, please see the ‘Your rights’ section below.
If you are a resident of the EEA, you have the right to object to processing based solely on automated decision-making (which includes profiling), when that decision-making has a legal effect on you or otherwise significantly affects you.
We do engage in fully automated decision-making that has a legal or otherwise significant effect using customer data.
Our processor WooCommerce uses limited automated decision-making to prevent fraud that does not have a legal or otherwise significant effect on you.
Services that include elements of automated decision-making include:
Temporary denylist of IP addresses associated with repeated failed transactions. This denylist persists for a small number of hours.
Temporary denylist of credit cards associated with deny listed IP addresses. This denylist persists for a small number of days.
GDPR Only applies to residents in Germany or the European Union
If you are a resident of the EEA, you have the right to access the Personal Information we hold about you, to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us through the contact information below
Your Personal Information will be initially processed in Ireland and then will be transferred outside of Europe for storage and further processing, including to Canada and the United States. For more information on how data transfers comply with the GDPR, see WooCommerce / WordPress GDPR Whitepaper: https://woocommerce.com/gdpr/.
A cookie is a small amount of information that’s downloaded to your computer or device when you visit our Site. We use a number of different cookies, including functional, performance, advertising, and social media or content cookies. Cookies make your browsing experience better by allowing the website to remember your actions and preferences (such as login and region selection). This means you don’t have to re-enter this information each time you return to the site or browse from one page to another. Cookies also provide information on how people use the website, for instance, whether it’s their first time visiting or if they are a frequent visitor.
We use the following cookies to optimize your experience on our Site and to provide our services.
wordpress_*, wordpress_logged_in_*, wp-settings-*-*, wordpress_test_cookie: Site functional cookies for user login
_ab: Used in connection with access to admin.
_secure_session_id: Used in connection with navigation through a storefront.
wc_cart_hash_*, woocommerce_cart_hash, wp_woocommerce_session_*, woocommerce_items_in_cart, woocommerce_recently_viewed, store_notice*: Used in connection with shopping cart to make sure your products are saved in the cart.
cart_sig: Used in connection with checkout.
cart_ts: Used in connection with checkout.
checkout_token: Used in connection with checkout.
secret: Used in connection with checkout.
secure_customer_sig: Used in connection with customer login.
storefront_digest: Used in connection with customer login.
_woo_u: Used to facilitate updating customer account information.
_ga, _gid, _gat, AMP_TOKEN, _gac_*, _gat_gtag_*, _ga*: Google Analytics
_tracking_consent: Tracking preferences
_landing_page: Track landing pages
_orig_referrer: Track landing pages
woocommerce_geo_hash: Track origin country of user
_w: WooCommerce analytics.
_woo_fs: WooCommerce analytics.
_woo_s: WooCommerce analytics.
_woo_sa_p: WooCommerce analytics relating to marketing & referrals.
_woo_sa_t: WooCommerce analytics relating to marketing & referrals.
_woo_y: WooCommerce analytics.
_y: WooCommerce analytics.
The length of time that a cookie remains on your computer or mobile device depends on whether it is a “persistent” or “session” cookie. Session cookies last until you stop browsing and persistent cookies last until they expire or are deleted. Most of the cookies we use are persistent and will expire between 30 minutes and two years from the date they are downloaded to your device.
You can control and manage cookies in various ways. Please keep in mind that removing or blocking cookies can negatively impact your user experience and parts of our website may no longer be fully accessible.
Most browsers automatically accept cookies, but you can choose whether or not to accept cookies through your browser controls, often found in your browser’s “Tools” or “Preferences” menu. For more information on how to modify your browser settings or how to block, manage or filter cookies can be found in your browser’s help file or through such sites as www.allaboutcookies.org.
Additionally, please note that blocking cookies may not completely prevent how we share information with third parties such as our advertising partners. To exercise your rights or opt-out of certain uses of your information by these parties, please follow the instructions in the “Behavioural Advertising” section above.
Please note that because there is no consistent industry understanding of how to respond to “Do Not Track” signals, we do not alter our data collection and usage practices when we detect such a signal from your browser.
For security reasons and to protect the transmission of confidential content, such as purchase orders or inquiries you submit to us as the website operator, this website uses either an SSL or a TLS encryption program. You can recognize an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line.
If the SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.
We have integrated plug-ins of the social network Facebook on this website. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook’s statement, the collected data will be transferred to the USA and other third-party countries too. You will be able to recognize Facebook plug-ins by the Facebook logo or the “Like” button on this website. An overview of the Facebook plug-ins is available under the following link: https://developers.facebook.com/docs/plugins/. Whenever you visit this website and its pages, the plug-in will establish a direct connection between your browser and the Facebook server. As a result, Facebook will receive the information that you have visited this website with your plug-in. However, if you click the Facebook “Like” button while you are logged into your Facebook account, you can link the content of this website and its pages with your Facebook profile. As a result, Facebook will be able to allocate the visit to this website and its pages to your Facebook user account. We have to point out, that we as the provider of the website do not have any knowledge of the transferred data and its use by Facebook. For more detailed information, please consult the Data Privacy Declaration of Facebook at: https://www.facebook.com/privacy/explanation. If you do not want Facebook to be able to allocate your visit to this website and its pages to your Facebook user account, please log out of your Facebook account while you are on this website. The use of the Facebook plug-in is based on Art. 6 Sect. 1 lit. f GDPR. The operator of the website has a legitimate interest in being as visible as possible on social media. If a respective declaration of consent has been obtained, the data shall be processed exclusively on the basis of Art. 6 Sect. 1 lit. a GDPR. This declaration of consent may be revoked at any time.
We have integrated functions of the social media platform Twitter into this website. These functions are provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. While you use Twitter and the “Re-Tweet” function, websites you visit are linked to your Twitter account and disclosed to other users. During this process, data are transferred to Twitter as well. We must point out, that we, the providers of the website and its pages do not know anything about the content of the data transferred and the use of this information by Twitter. For more details, please consult Twitter’s Data Privacy Declaration at: https://twitter.com/en/privacy. The use of Twitter plug-ins is based on Art. 6 Sect. 1 lit. f GDPR. The operator of the website has a legitimate interest in being as visible as possible on social media. If a respective declaration of consent has been obtained, the data shall be processed exclusively on the basis of Art. 6 Sect. 1 lit. a GDPR. This declaration of consent may be revoked at any time.
You have the option to reset your data protection settings on Twitter under the account settings at https://twitter.com/account/settings.
We have integrated functions of the public media platform Instagram into this website. These functions are being offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA. If you are logged into your Instagram account, you may click the Instagram button to link contents from this website to your Instagram profile. This enables Instagram to allocate your visit to this website to your user account. We have to point out that we as the provider of the website and its pages do not have any knowledge of the content of the data transferred and its use by Instagram. Data are stored and analyzed on the basis of Art. 6 Sect. 1 lit. f GDPR. The website operator has a legitimate interest in the highest possible visibility on social media. If a respective declaration of consent has been obtained, the data will be processed exclusively on the basis of Art. 6 Sect. 1 lit. a DGDPR. Any such consent may be revoked at any time.
For more information on this subject, please consult Instagram’s Data Privacy Declaration at: https://instagram.com/about/legal/privacy/.
We secure information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We maintain reasonable administrative, technical, and physical safeguards in an effort to protect against unauthorized access, use, modification, and disclosure of Personal Information in its control and custody. However, no data transmission over the Internet or wireless network can be guaranteed. Therefore, while we strive to protect your Personal Information, you acknowledge that (i) there are security and privacy limitations of the Internet which are beyond our control; (ii) the security, integrity, and privacy of any and all information and data exchanged between you and our Website cannot be guaranteed; and (iii) any such information and data may be viewed or tampered with in transit by a third-party, despite best efforts.
In the event we become aware that the security of the Website has been compromised or users Personal Information has been disclosed to unrelated third parties as a result of external activity, including, but not limited to, security attacks or fraud, we reserve the right to take reasonably appropriate measures, including, but not limited to, investigation and reporting, as well as notification to and cooperation with law enforcement authorities. In the event of a data breach, we will make reasonable efforts to notify affected individuals if we believe that there is a reasonable risk of harm to the user as a result of the breach or if notice is otherwise required by law. When we do, we will post a notice on the Website, send you an email.
We will disclose any information we collect, use or receive if required or permitted by law, such as to comply with a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
You may not use the Services to publish content or engage in activity that is illegal under applicable law, that is harmful to others, or that would subject us to liability, including, without limitation, in connection with any of the following, each of which is prohibited under this Policy:
Distributing malware or other malicious code.
Disclosing sensitive personal information about others.
Collecting, or attempting to collect, personal information about third parties without their knowledge or consent.
Distributing pornography or adult-related content.
Promoting or facilitating prostitution or any escort services.
Hosting, distributing, or linking to child pornography or content that is harmful to minors.
Promoting or facilitating gambling, violence, terrorist activities, or selling weapons or ammunition.
Engaging in the unlawful distribution of controlled substances, drug contraband, or prescription medications.
Managing payment aggregators or facilitators such as processing payments on behalf of other businesses or charities.
Facilitating pyramid schemes or other models intended to seek payments from public actors.
Threatening harm to persons or property or otherwise harassing behavior.
Manual or automatic credit card or other available payment methods testing using bots or scripts.
Purchasing any of the offered Services on someone else’s behalf.
Misrepresenting or fraudulently representing products or services.
Infringing the intellectual property or other proprietary rights of others.
Facilitating, aiding, or encouraging any of the above activities through our Services.
Any User in violation of our Services security is subject to criminal and civil liability, as well as immediate account termination. Examples include, but are not limited to the following:
Use or distribution of tools designed for compromising the security of the Services.
Intentionally or negligently transmitting files containing a computer virus or corrupted data.
Accessing another network without permission, including to probe or scan for vulnerabilities or breach security or authentication measures.
Unauthorized scanning or monitoring of data on any network or system without proper authorization of the owner of the system or network.
You may not consume excessive amounts of the Services or use the Services in any way which results in performance issues or which interrupts the services for other Users. Prohibited activities that contribute to excessive use, including without limitation:
Deliberate attempts to overload the Services and broadcast attacks (i.e. denial of service attacks).
Engaging in any other activities that degrade the usability and performance of our Services.
You may not use our Services to send spam or bulk unsolicited messages. We maintain a zero-tolerance policy for use of our Services in any manner associated with the transmission, distribution, or delivery of any bulk e-mail, including unsolicited bulk or unsolicited commercial e-mail, or the sending, assisting or commissioning the transmission of commercial e-mail that does not comply with the U.S. CAN-SPAM Act of 2003 (“SPAM”). Your products or services advertised via SPAM (i.e. Spamvertised) may not be used in conjunction with our Services. This provision includes, but is not limited to, SPAM sent via fax, phone, postal mail, email, instant messaging, or newsgroups. Sending emails through our Services to purchased email lists (“safe lists”) will be treated as SPAM.
We value the freedom of expression and encourage Users to be respectful with the content they post. We are not a publisher of User content and are not in a position to investigate the veracity of individual defamation claims or to determine whether certain material, which we may find objectionable, should be censored. However, we reserve the right to moderate, disable or remove any content to prevent harm to others or to us or our Services, as determined in our sole discretion.
Copyrighted material must not be published via our Services without the explicit permission of the copyright owner or a person explicitly authorized to give such permission by the copyright owner. Upon receipt of a claim for copyright infringement, or a notice of such violation, we will immediately run full investigation and, upon confirmation, will promptly remove the infringing material from the Services. We may terminate the Service of Users with repeated copyright infringements. Further procedures may be carried out if necessary. We will assume no liability to any User of the Services for the removal of any such material. If you believe your copyright is being infringed by a person or persons using our Services, please send a report of the copyright infringement to the contact details listed at the end of this Policy. Your notice must include the following:
Identification of the copyrighted work claimed to have been infringed, or if multiple copyrighted words at a single site are covered by a single notification, a representative list of such works at that site.
Identification of the material that is claimed to be infringing or to be the subject of infringing activity and that is to be removed or access to which is to be disabled, and information reasonably sufficient to permit us to locate the material.
Information reasonably sufficient to permit us to contact you, such as an address, telephone number, and, if available, an e-mail address.
A statement that you have a good faith belief that use of the material in the manner complained of is not authorized by the copyright owner, the copyright owner’s agent, or the law.
A statement that the information in the notification is accurate, and under penalty of perjury that you are authorized to act on behalf of the owner of an exclusive right that is allegedly infringed.
A physical or electronic signature of a person authorized to act on behalf of the owner of an exclusive right that is allegedly infringed.
You take full responsibility for maintaining reasonable security precautions for your account. You are responsible for protecting and updating any login account provided to you for our Services. You must protect the confidentiality of your login details, and you should change your password periodically.
We reserve our right to be the sole arbiter in determining the seriousness of each infringement and to immediately take corrective actions, including but not limited to:
Suspending or terminating your Service with or without notice upon any violation of this Policy. Any violations may also result in the immediate suspension or termination of your account.
Disabling or removing any content which is prohibited by this Policy, including to prevent harm to others or to us or our Services, as determined by us in our sole discretion.
Reporting violations to law enforcement as determined by us in our sole discretion.
A failure to respond to an email from our abuse team within 2 days, or as otherwise specified in the communication to you, may result in the suspension or termination of your Services.
Suspended and terminated User accounts due to violations will not be re-activated. A backup of the User’s data may be requested, however it may be subject to certain penalty fees imposed according to the breach of this Policy terms. The final penalty fee will be determined by the type and frequency of the violations. Nothing contained in this Policy shall be construed to limit our actions or remedies in any way with respect to any of the prohibited activities. We reserve the right to take any and all additional actions we may deem appropriate with respect to such activities, including without limitation taking action to recover the costs and expenses of identifying offenders and removing them from our Services, and levying cancellation charges to cover our costs. In addition, we reserve at all times all rights and remedies available to us with respect to such activities at law or in equity.
Within the scope of the applicable statutory provisions, you have the right to at any time demand information about your archived personal data, their source, and recipients as well as the purpose of the processing of your data. You may also have a right to have your data rectified or eradicated. If you have questions about this subject matter or any other questions about personal data, please do not hesitate to contact us at any time at the address provided in section “Information Required by Law.”
You acknowledge that you have read this Policy and agree to all its terms and conditions. By using the Website or its Services you agree to be bound by this Policy. If you do not agree to abide by the terms of this Policy, you are not authorized to use or access the Website and its Services.
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at firstname.lastname@example.org.