Confidentiality and security of your personal data are important to us. We would like to offer you personalized services while respecting your privacy and choices.
The purpose of this Statement is to inform you in a transparent and simple manner about the processing of the personal data that you provide or that we collect through the different touchpoints you use to interact with us, about possible transfers to third parties, as well as your rights and options to control your personal data and protect your privacy.
WHAT DATA MAY WE COLLECT OR RECEIVE ABOUT YOU?
"Personal data" means any information that could reasonably identify you either directly (e.g. your name) or indirectly (e.g. through a unique client ID number).
The personal data we collect depends upon the touchpoint of our interaction and is also limited to that which is relevant and appropriate for the interaction. Unless you choose to interact with us via other touchpoints, such as by making a purchase on our site, signing up for one of our programs or services, using our apps, communicating with us via email, phone or submitting online forms, or posting a comment or a like online, our data collection is limited to the use of 'cookies' for website visitors.
For customers and other individuals who sign up for programs or services or otherwise interact with us beyond browsing our site via the touchpoints described above, for example, we collect certain relevant information from you. The information we collect is related to the particular transaction as well as our overall relationship with you. For customers and other individuals who sign up for our programs or services, we generally collect your contact details, contact preferences, and information that will allow us to make recommendations to you about our products or services that may be of interest. We may centralize the information pertaining to our customers so that we have it organized in one place, as this helps us manage our relationship with you as well as your choices and preferences. Or, if you subscribe to our personalised newsletter, we collect your email address.
Depending on your interactions with us, personal data we receive may include information related to:
- Your identity and your contact details (e.g., name, address, email address, date of birth);
- Your interests and your preferences;
- Your purchases (in store or online, including your orders, their tracking information, your purchase invoices, the amount and type of your purchase) and any returns or exchanges;
- Your use of our online assets, including when you visit and interact with them, what pages you accessed, and your interaction with our features. We also receive information to help detect and prevent consumer fraud, including but not limited to browser and keyboard language settings, whether data is automatically filled or manually entered, whether data is manually entered or copy and pasted, and proxy detection and databases ;
- Your account log-in information;
- Your financial information to process your orders (such as bank details);
- Your requests through our client services or our public relations department;
- Your publications and mentions of our products on social networks;
- The events you attend;
- Any self-reported undesirable side-effects concerning any of our products.
We invite you to keep us regularly informed in writing of any change in your contact details.
We Collect and Use Limited Sensitive Information.
As described above, we collect personal data that is described under some laws as sensitive personal data, special categories of personal data, sensitive personal information, or similar terms (collectively referred to here as "Sensitive Personal Data"). Here, we provide more information about which categories of the personal data described above may be designated as Sensitive Personal Data, and how we use these categories of Sensitive Personal Data. We only use Sensitive Personal Data to provide you goods and services, and do not use such information to infer characteristics about you. Depending on what you choose to provide and how we interact with you, we may collect:
- Account log-ins to provide our products and services. Account login information is used to identify an active user on any site that requires login. Login information includes first and last name and corresponding email for such account, as well as the associated account password.
- Financial information to process your orders. We collect and use credit or debit card information and required security or access codes in order to process payments and fulfill any order you make.
- Passport-related information to process your orders. We may collect passport or other government-issued ID information in connection with an order, including when you are purchasing a product in a country other than that in which you live, in order for you to make purchases free of value added tax (VAT).
FOR HOW LONG MAY WE KEEP IT?
Unless otherwise stated, we only keep your personal data for as long as we need it to fulfill the purpose of collection, to meet your needs, or to comply with our legal or business obligations, and to fulfill the purposes described above in this Privacy Statement.
HOW DO WE PROTECT IT AND KEEP IT CONFIDENTIAL?
We have adopted reasonable and appropriate physical, technical and organizational security safeguards to protect your data from loss, misuse, alteration, destruction or access by unauthorized third parties. The Internet, wireless networks and information storage are not 100% secure. We cannot guarantee the security of your personal data stored or sent to us. We encourage you to take precautions to protect your personal data. For example, in creating your account on website, entering a personal password complying with our security requirements is compulsory and part of this Privacy Statement.
The security safeguards that we have adopted are commensurate with the sensitivity of the particular data collected. For example, credit, debit and other payment information is subject to stricter security measures.
Regarding your purchases, your bank details are encrypted through our servers. Payments are made via a secure payment platform which is PCI-DSS certified, supplemented by control measures, to ensure the security of purchases made and to fight against fraud.
We also require our partners and group companies to uphold a substantially similar level of protection for your data. The measures are evaluated and updated to address new threats and challenges.
To the maximum extent allowed by applicable law, you agree and acknowledge that we will not be liable or responsible for use or disclosure of your information that is the result of unauthorized or illegal access to our systems or those of our vendors, agents, contractors, affiliates, or partners.
HOW ARE CONSUMER PREFERENCES AND INDIVIDUAL RIGHTS ADDRESSED?
In accordance with applicable laws and requirements, we and our group companies have put in place measures to fulfill the rights of individuals in relation to the personal data that we (or our third parties) hold about them. This includes, for example, the right to know about the data we hold about you or to obtain a copy, and the limited rights to amend your data, request erasure, or object to the processing of your data. We encourage individuals who have entrusted their data to us to keep it current (such as if you change your email address, address or phone number), so that we have your correct information on file. We also encourage consumers to update their preferences with us, such as in relation to products and the frequency of communications, so that we can personalize our service to your expectations and needs. Finally, we offer individuals the right to withdraw consent from our programs and offerings at any time. For individuals seeking access to their data, we also require authentication to ensure that we are not providing personal data to an unauthorized person.
HOW DOES WE PROTECT CHILDREN'S PRIVACY?
We have adopted practices that are designed to ensure that we do not intentionally or knowingly collect or maintain any information from children under the age of 16, though we do not monitor the age of users of our services. If we learn that we mistakenly collected any information from anyone under the age of 16, we will purge it immediately, except for responding to a question or inquiry on a one-time basis from his/her parent or legal guardian. We do not knowingly sell or share the information of children of any age.
Updates to this Statement
We reserve the right to change this Statement at any time at its sole discretion. Such changes shall be effective immediately upon posting them to our website, or otherwise providing them to you. We will provide additional notice to you if we make any changes that materially affect your privacy rights.
