SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect the personal identifiable information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.
How long do we keep your Personal Identifiable Information?
We will actively review the personal identifiable information we hold and delete it securely, or in some cases anonymise it, when there is no longer a legal, business or customer need for it to be retained. If you stop interacting with us as a customer, we will remove or anonymise your personal identifiable information after 18 months of inactivity.
What are your legal rights in relation to the Personal identifiable information we hold about you?
Under data protection laws in the European Union, Ireland, and the United Kingdom, you have certain rights in relation to your personal identifiable information. Responses to exercise your rights will be provided within one month and generally there is no fee for making these requests. If your request is particularly complicated, we may extend the deadline for responding to three months, but we will let you know if this is the case.
We will handle all requests in accordance with applicable law. However, depending on the right you wish to exercise, and the nature of the personal identifiable information involved, there may be legal reasons why we cannot grant your request. Further explanation of those rights and the exceptions to them are set out below.
Details of how to exercise your rights are set out in the section below “How can you exercise your legal rights and change how we use your data?
Your rights include the following:
- You may request us to stop sending you marketing information. To see how to change your permissions, please refer to “How can you change what marketing communications you receive and how you receive them?” . If you do so we will no longer send you marketing communications. However, if you subsequently re-engage with us, we will send you communications about the services you wish to use.
- You may request us to stop using your personal identifiable information where we are doing so under legitimate interests. See section “What is our legal basis for using your personal identifiable information” for examples of when that applies, unless it is needed for dealing with legal claims or we have other compelling legitimate reasons that override your rights.
- You may request us to stop the processing of your Personal identifiable information for marketing purposes including analytics for the purposes of targeted marketing, including online advertising.
- You may ask for your personal data to be transferred to another Controller.
- You may access the Personal identifiable information we hold on you. There are however some limited exceptions to this right. Examples are:– information relating to others who have not consented to the disclosure of their information and– information which is legally privileged. Please see section below -“Considerations” for more details.
- You may ask us to correct your Personal identifiable information (the ‘right of rectification’) if that information is inaccurate. Contact the VoiceSage Data Protection Officer by post or email with proof of identification requesting your Personal identifiable information to be updated.
- You may ask for Personal identifiable information which identifies you to be erased (or forgotten). To do this we will remove the information that identifies you from the data we hold in our active systems (“anonymise”).
We may need to retain certain elements that relate to a contract between you and VoiceSage because we need it for our own legal and auditing purposes.
A record of your request including the personal identifiable information you supplied will be retained in the application used to carry this out for 3 years.
We cannot erase your personal identifiable information if we have identified that you either have an open complaint with us or we hold a previous case for you within the past 6 years. We are required to retain this information in case there is a need to re-open the complaint.
SECTION 2 – CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at any time, by contacting us at email@example.com or mailing us at:
Wonderbag Ireland Ltd
68 Elm Grove,
SECTION 3 – DISCLOSURE
We may disclose your personal identifiable information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 – WOOCOMMERCE
Your data is stored through Woocommerce’s data storage, databases and the general Woocommerce application. This data is stored on a secure server behind a firewall.
If you choose a direct payment gateway to complete your purchase, then Woocommerce stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
SECTION 5 – THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your personal identifiable information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
Our store uses Google Analytics to help us learn about who visits our site and what pages are being looked at.
SECTION 6 – SECURITY
To protect your personal identifiable information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 – COOKIES
Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
_session_id, unique token, sessional, Allows Woocommerce to store information about your session (referrer, landing page, etc).
_ cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
PREF, persistent for a very short period, Set by Google and tracks who visits the store and from where
SECTION 8 – AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your Country of residence and you have given us your consent to allow any of your minor dependents to use this site.
If our store is acquired or merged with another company, your personal identifiable information may be transferred to the new owners so that we may continue to sell products to you.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal identifiable information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at firstname.lastname@example.org or by mail at
Wonderbag Ireland Ltd
[Re: Privacy Compliance Officer]
68 Elm Grove,