Aemon Ltd (“We”, “Us”, “Our” and “Aemon Shop”) is commited to comply with the General Data Protection Regulation (“GDPR”) and the Data Protection Act 2018. We promise to keep your personal information secure and use it wisely to provide service best fit to your needs.
SECTION 1 - WHAT INFORMATION DO WE COLLECT AND WHY?
When you purchase something from Our Shop, as part of the buying and selling process, or when you sign up to Our service before any purchase, We collect the personal information you give Us such as your name, email address, delivery and billing address, telephone contact numbers, and any optional data you are willing to share with Us. We ask you for this information so We are able to place your order, contact you about your order’s progress, process your payment and provide you Our services. Your birthdate may be used for statistical purposes in order to provide products best fit to customer age representation.
When you contact Us by email, telephone, or through any contract form provided by Us, We may ask you to provide some or all of the information set out in the paragraph above. We keep personally identifiable information associated with your message, such as your name and email address, so as to be able to track Our communications with you to provide a high quality service.
When you browse Our Shop, We may collect, store, and use information about your computer, mobile device or other item of hardware through which you access the Site and your visits to and use of the Site (including, without limitation, your IP address, geographical location, browser/platform type and version, Internet Service Provider, operating system, referral source/exit pages, length of visit, page views, Platform navigation, and search terms that you use) We also automatically receive your computer’s internet protocol (IP) address and your browser data in order to provide Us with information that helps Us learn about your browser and operating system. This allows Us to provide a better experience and ensure compatibility for a wider range of Our customers.
Additionally, depending on your permission, We may send you emails about Our Shop, new products and other updates.
We may also, from time to time, ask you to complete surveys and give feedback We use for research purposes, although you do not have to respond.
SECTION 2 - CONSENT
How do you get my consent?
When you provide Us with personal information to register an account on Our website, complete a transaction, verify your debit or credit card, place an order, arrange for a delivery or return a purchase, We imply that you consent to Our collecting it and using it for that specific reason only. We share only the required information with carefully selected third party service providers such as payment processing gateways or delivery companies to successfully complete your request.
If We ask for your personal information for a secondary reason, like marketing, We will ask you directly for your expressed consent.
How do I withdraw my consent?
If you change your mind after opt-in, you may withdraw your consent for Us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting Us through the contact form on Our website or by sending an email at email@example.com - please bear in mind if the request comes from a different email than the one which is registered in Our system, We may ask for additional details to verify your identity and credibility of the request. We do this to protect your account against any unauthorised attempts to alter it.
SECTION 3 - DISCLOSURE
We may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information We receive, or to otherwise protect Our rights.
SECTION 4 - SECURITY
To protect your personal information, We take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
All the provided information and every data exchanged with the server is encrypted using Transport Layer Security technology (TLS). Although no method of transmission over the Internet or electronic storage is 100% secure, We follow PCI-DSS requirements and implement generally accepted industry standards.
Your data is securely stored on a server located behind the firewall and is accessible by a minimal personnel having special access rights to the sensitive data. No passwords are stored in a plaintext form or encrypted using a reversible encryption. Therefore We are unable to provide you your old password in case if you forget it, but We can send you a link to your registered email, which will let you to define a new password. This way no one can recover your password from the data which is stored in Our database. Nevertheless, We recommend using difficult passwords, different from what you use on other websites. Consider using password manager with strong reputation.
If you choose a direct payment gateway to complete your purchase, then you are either redirected to an external payment page in case of PayPal payment or We provide an external payment form displayed within Our website, which is provided by Universal Transaction Processing Ltd in case of debit and credit card payments. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted. We do not process or store your sensitive payment card data on Our website front end or back end at all.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by Our Shop and its service providers.
For more insight, you may also want to read UTP and PayPal Terms of Service and Privacy Statement:
• PayPal: PayPal Legal Agreements
SECTION 5 - THIRD-PARTY SERVICES
In general, the third-party providers used by Us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to Us.
However, certain third-party service providers, such as payment gateways, other payment transaction processors and courier companies, have their own privacy policies in respect to the information We are required to provide to them for your purchase-related transactions.
For these providers, We recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
We also use Google Analytics to help Us understand how Our customers use the Site - you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
In particular, remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or Us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
We may use your Personal Information to provide you with targeted advertisements or marketing communications We believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by:
FACEBOOK - https://www.facebook.com/settings/?tab=ads
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
When you click on links on Our Shop, they may direct you away from Our Site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECTION 6 - COOKIES
To make this site work properly, We sometimes place small data files called cookies on your device. Most big websites do this too.
What are cookies?
A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (such as login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.
In addition to using cookies and related technologies as described above, We also may permit certain third party companies to help Us tailor advertising that We think may be of interest to users and to collect and use other data about user activities on Our Site and/or Services (e.g. to allow them to tailor ads on third party services). These companies may deliver ads that might also place cookies and otherwise track user behaviour.
How to control cookies
You can control and/or delete cookies as you wish – for details, see AllAboutCookies.org or Information Comissioner's Office. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.
List of cookies We use
PHPSESSID - This cookie is used to keep the connection between your browser and Our servers as you move around Our website. It uses a randomly generated identifier and does not contain any personal information. This cookie is essential for providing you the right user experience on our website.
PrestaShop-* - Cookies starting with this string and followed with sequence of random hexidecimal digits are used to preserve your preferences, basket identifier and registered account information between website visits. All data is encrypted. This cookie is essential for providing access to your account and accessing your basket.
_ga and _gat - Cookies associated with Google Universal Analytics. These cookies are used to distinguish unique users by assigning a randomly generated number as a client identifier. They are included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports. By default first one is set to expire after 2 years, second one after 10 minutes.
SECTION 7 - AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given Us your consent to allow any of your minor dependents to use this site.
SECTION 8 - RETENTION PERIOD FOR PERSONAL INFORMATION
When you place an order through the Site, We will maintain your Order Information for Our records unless and until you ask Us to delete this information.
SECTION 9 - YOUR RIGHTS
The GDPR includes the following rights for individuals:
• the right to be informed;
• the right of access;
• the right to rectification;
• the right to erasure;
• the right to restrict processing;
• the right to data portability;
• the right to object; and
• the right not to be subject to automated decision-making including profiling.
If Our Shop is acquired or merged with another company, your information may be transferred to the new owners so that We may continue to sell products to you.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information We have about you, register a complaint, or simply want more information - contact Our Privacy Compliance Officer at firstname.lastname@example.org or by mail at:
281 College Street, Long Eaton
Nottingham, NG10 4GJ