SECTION 1 - THE INFORMATION WE COLLECT
We may collect and process the following information about you:
(a) information that you provide to us when you register your details with Scarlett & Jo or fill out forms on the Site;
(b) information about you which you include in any e-mails or letters that you send to us;
(c) information about your usage of the Site; and
(d) information about your computer, which may include your IP address, operating system and browser type, for system administration and to report aggregate information to our advertisers (statistical data about’ browsing actions and patterns that does not identify any individual).
SECTION 2 - WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address. When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system. Email marketing: With your permission, we may send you emails about our store, new products and other updates.
We may use your information in the following ways:
(a) to ensure that content from our Site is presented in the most effective manner for you and your computer;
(b) to provide customer service to you in relation to your use of the Site, to deal with enquiries and complaints relating to the use of the Site;
(c) notify you every now and again about important changes to the Site or our services;
(d) to administer, support, improve, optimise and develop our Site;
(e) for internal marketing and demographic studies to improve the products and services that we provide; and
(f) for security purposes.
We may also use your information to notify you of the latest Scarlett & Jo designs, news and our exciting offers. If you do not want to receive such marketing communications, please send an email to email@example.com
We may permit selected third party partners or affiliates of ours to provide you with information about their products and services which may be of interest to you, as long as you have consented to receive marketing communications from our selected third parties for such purposes.
You may opt out from receiving marketing communications at any time by notifying us in writing, contacting us at firstname.lastname@example.org.
SECTION 3 - CONSENT
How do I withdraw my consent? If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at email@example.com or mailing us at:
Scarlett & Jo Ltd, 4th Floor, Colechurch House, 1 London Bridge Walk, London, SE1 2SX
SECTION 4 - DISCLOSURE
SECTION 5 - SHOPIFY
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you. Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
Payment: If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers. For more insight, you may also want to read Shopify’s Terms of Service here or Privacy Statement here.
SECTION 6 - THIRD-PARTY SERVICES
Links When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECTION 7 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 8 - COOKIES
Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not. _session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc). _shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits _shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer. cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart. _secure_session_id, unique token, sessional storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
We may use an analytics service provider for website traffic analysis and reporting. Analytics service providers generate statistical and other information about website use by means of cookies, which are stored on users’ computers. The information generated relating to the Site may be used to create reports about the use of the Site and the analytics service provider will store this information.
A few of the methods that may be used to store or access information already stored on your computer are as follows (although note that subsequent technology and methods may be developed):
Cookies. A cookie is a text file placed on a device when a user visits a website. Cookies can be temporary (e.g. session) or permanent (e.g. persistent). They can also be first party (e.g. placed by us) or third party (e.g. placed by a third party advertiser or ad server).
Flash Cookies. A Flash cookie (or locally shared object) is a data file placed on your device via the Adobe Flash plug-in that may be built-in to or downloaded by you to your device. This can operate across all your browsers
HTML5. HTML5 cookies can be programmed through HTML5 local storage and do not require a plug-in.
ETag or entity tag. An opaque identifier assigned by a web server to a specific version of a resource found at a URL that acts as a form of device identifier.
If you do not wish for cookies to be installed on your computer, you can change the settings on your internet browser to disable, remove or reject cookies. For more information about how to do this, you should consult the “Help” section of your browser. In some but not all instances, cookies can be blocked in the future by selecting certain settings. Each browser you use will need to be set separately and you will see that different browsers offer different functionality and options in this regard. Please note that rejecting cookies via your browser may not be effective with regard to HMTL5 and Flash cookies (which are explained in more detail above). For information on disabling Flash cookies, please go to Adobe’s website www.adobe.com.
SECTION 9 - AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
QUESTIONS AND CONTACT INFORMATION
You may at any time request access to your personal data by contacting us using the contact details set out below. We reserve the right to ask you for proof of your identity and to charge you a fee of ten pounds sterling (£10) to meet our costs in granting any data access request you make.