Ensuring the privacy and security of your personal information is very important to us and we promise to only use the information provided by you lawfully and in accordance with the Data Protection Act 1998. This Privacy and Security Policy outlines the information Oh La De Dah collects about you when visiting ohladedah.co.uk (“the Website”), how we use, disclose and otherwise manage this information and the choices you have to restrict our usage of this information.
Oh La De Dah Ltd is a company registered in the United Kingdom under company number 10458027 and with our registered office at Elm Tree House, Handley, Clay Cross, Chesterfield, S45 9AT.
2. COLLECTED INFORMATION
When you register on the Website and/or place an order with us, we may collect the following personal data from you: your name, date of birth, email address, postal address and telephone number.
2.1.1 How will information about you be used and shared?
We collect this information in order to process your order and deliver it to the correct location, verify your identity and details of your payment method, and to communicate with you regarding your order.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
2.1.2 We also use this information to improve and personalise your experience on the Website. OLDD may employ the services of third parties to help us in certain areas including delivery of products, delivery and hosting of our Website, payments (including checking the validity of your details to prevent fraud), maintenance and identity checking. However, we will always be in control and be responsible for the use of your personal information.
2.1.3 We will never sell, rent or lease your information to any third parties, however, we may disclose specific personal information about you if required by law, governmental request or court order if it is necessary to conform or comply with such law, request or court order.
2.1.4 When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
2.2 Opting out
If you choose to opt in to receive our marketing emails when registering on or visiting the Website, you will be giving us permission to communicate with you about new products and services and offers – you can opt out from receiving these at any time either through by emailing firstname.lastname@example.org
3.1 session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).
3.2 shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits
3.3 shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.
3.4 cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
3.5 secure_session_id, unique token, sessional
3.6 storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
3.7 PREF, persistent for a very short period, Set by Google and tracks who visits the store and from where
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
5. SALE OF BUSINESS
OLDD may transfer any information we have about you in the event of a merger with a third party or upon a sale or transfer of all or a portion of our business or assets to a third party acquirer.
6. YOUR INFORMATION
You are entitled to access or update the information OLDD holds about you. If you wish to change your personal information you can do so by logging into your account on the Website or by contacting email@example.com. We may require you to provide verification of your identity before granting access or making corrections. We only keep your personal information as long as necessary for the purposes we collected it, or as otherwise required by law.
7. CREDIT CARD DETAILS
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).
8. THIRD-PARTY SERVICES
8.1.1 In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
8.1.2 However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
8.1.3 In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
8.3 Google analytics:
Our store uses Google Analytics to help us learn about who visits our site and what pages are being looked at.
9. POLICY CHANGES
We reserve the right to modify this Privacy & Security Policy to include any new or unanticipated uses not previously disclosed. Regularly reviewing this page ensures that you are always aware of what information we collect, how OLDD uses it and under what circumstances, if any, we will share it with other parties. This policy is reviewed annually and was last updated on 01 March 2017.