WHAT IS GDPR?
The General Data Protection Regulation 2016/679 is a regulation in EU law on data protection and privacy for all individual citizens of the European Union and the European Economic Area. It also addresses the transfer of personal data outside the EU and EEA areas.
Its compliance reflects transparency in relation to the use of personal information. Consumers may see all information retained by the merchant and have it deleted if that is their preference.
Date of implementation: May 25th 2018
CONSENT TO GATHER INFORMATION
How do you give your consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, you imply that you consent to our collecting it and use of it for that specific reason only.
If we ask for your personal information for a secondary reason, such as marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
HOW DO I WITHDRAW MY CONSENT?
Contact us directly at firstname.lastname@example.org
THE PERSONAL INFORMATION WE COLLECT
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address. Your phone number is also required for delivery and security purposes. Please see our detailed explaination below.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address. This provides us with information that helps us learn about your browsing history on our site and about your operating system.
Our store is hosted by Shopify Inc. and they provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your credit card and personal data is stored through Shopify’s data storage databases and the general Shopify application. They store your data on a secure server behind a firewall in compliance with all privacy regulations.
Shopify collects device information using the following technologies:
- “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. They are generally used to record the user's browsing activity. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
- “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, internet service provider, referring/exit pages, and date/time stamps.
- “Web beacons”, “tags”, and “pixels” are electronic files used to record information about how you browse the Site. Additionally, when you make a purchase or attempt to make a purchase through the Site, they collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number. We refer to this information as “Order Information”.
HOW DO WE USE YOUR PERSONAL INFORMATION?
We use the Order Information that we collect generally to fulfil any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations). Additionally, we use this Order Information to:
- Communicate with you;
- Screen our orders for potential risk or fraud; and
- When given direct permission by you, we with provide you with information or advertising relating to our products or services.
We also use Device Information collected through Shopify to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site and to assess the success of our marketing and advertising campaigns).
Please be aware that Shopify's fraud detection service flags orders if the shipping address and the IP address are in different locations. In this instance, your phone number will be required for confirmation purposes to protect you against fraud.
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SHARING YOUR PERSONAL INFORMATION
If you are a European resident, you have the right to access the personal information we have collected about you. You may ask at any time that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us directly at email@example.com Additionally, if you are a European resident, please note that when you make a purchase from us, your information will be transferred to countries outside of Europe, including to Canada and the United States via payment service providers and through Shopify Inc., a US based company.
Tina Ashmore Fine Jewellery uses the Shopify payments system. Shopify payments is PCI compliant.
WHAT IS PCI ?
The Payment Card Industry Data Security Standard (PCI DSS) is a security standard for organizations that handle credit and debit card information. The standard was created to increase controls around payment data to reduce fraud.
If a company wants to sell online and accept payments from Visa, Mastercard, American Express or Discover, the software and hosting they use needs to be PCI compliant.
SHOPIFY PAYMENTS COMPLIANCE
Shopify meets all 6 categories of PCI standards and this compliance extends to all online stores powered by Shopify
- Maintain a Secure Network
- Maintain a Vulnerability Management Program
- Regularly Monitor and Test Networks
- Protect Cardholder Data
- Implement Strong Access Control Measures
- Maintain an Information Security Policy
Shopify is certified Level 1 PCI DSS compliant. This compliance extends to all online stores powered by Shopify, including www.tinaashmore.com
Shopify is very serious about securely hosting its online store partners and has invested significant time and money to certify their solution is PCI compliant. From annual on-site assessments validating compliance to continuous risk management, Shopify works really hard to ensure their shopping cart software and ecommerce hosting is secure and that the Tina Ashmore Fine Jewellery website is fully protected.
This site is not intended for individuals under the age of 18years.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information.
For more information about our privacy practices, if you have a question or if you would like to make a complaint, please contact us by email at firstname.lastname@example.org FAO: Privacy Compliance Officer
International calls: +353 (86)040 2087
Ireland: 086 040 2087
THANK YOU !
Thank you for taking the time to read our privacy statement. At Tina Ashmore Fine Jewellery, our customers come first and we take the security and privacy of all personal and financial information that you share with us very seriously. We look forward to serving you and creating beautiful jewellery collections for you to wear.
Managing Director of Tina Ashmore Fine Jewellery.