Privacy policy

Privacy policy 

SECTION 1: WHAT DO WE DO WITH YOUR INFORMATION?

This Data Protection Notice ("Notice") outlines how Onsheer ("we", "us", or "our") collects, uses, discloses, or otherwise processes personal data of our customers in accordance with the Personal Data Protection Act ("PDPA"). This Notice applies to personal data in our possession or under our control, including data managed by organizations we have engaged.

When you purchase something from our store, we collect personal information such as your name, address, and email address. Additionally, when you browse our store, we automatically receive your computer's internet protocol (IP) address to provide us with information about your browser and operating system.

With your permission, we may send you emails about our store, new products, and other updates.

SECTION 2: CONSENT

How do you get my consent?

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery, or return a purchase, we imply your consent to collect and use it for that specific reason only. If we request your personal information for a secondary reason, like marketing, we will ask you directly for your expressed consent or provide you with an opportunity to decline.

How do I withdraw my consent?

If you change your mind after opting in, you may withdraw your consent for us to contact you, or for the continued collection, use, or disclosure of your information, at any time by contacting us via email.

SECTION 3: DISCLOSURE

We may disclose your personal information if required by law or if you violate our Terms of Service.

SECTION 4: ACCURACY OF PERSONAL DATA

We will make reasonable efforts to ensure that personal data collected by us or on our behalf is accurate and complete.

SECTION 5: SECURITY AND PROTECTION OF PERSONAL DATA

The security of your personal information is important to us. However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

SECTION 6: RETENTION OF PERSONAL DATA

We may retain your personal data as long as necessary to fulfill the purpose for which it was collected, or as required or permitted by applicable laws. We will cease to retain your personal data or anonymize it when it is no longer needed.

SECTION 7: TRANSFER OF PERSONAL DATA OUTSIDE OF UNITED STATES

We will ensure that any transfers of personal data to a territory outside the United States comply with the PDPA, ensuring a comparable standard of protection. We may disclose personal data to our global offices as necessary to meet the purpose for which you submitted the information or to provide relevant information later. We may also transfer data to a successor-in-interest to our business or assets.

SECTION 8: THIRD-PARTY SERVICES

Third-party providers we use will only collect, use, and disclose your information to the extent necessary to perform their services. Some providers, like payment gateways, have their own privacy policies regarding the information required for purchase-related transactions. We recommend reading their privacy policies to understand how your personal information will be handled. If a provider is in a different jurisdiction, your information may be subject to the laws of that jurisdiction.

SECTION 9: SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to ensure it is not inappropriately lost, misused, accessed, disclosed, altered, or destroyed. If you provide your credit card information, it is encrypted using secure socket layer technology (SSL) and stored with AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional industry standards.

SECTION 10: COOKIES

Here is a list of cookies that we use. You can choose to opt out of cookies or not.

  • _session_id: unique token, sessional, stores information about your session (referrer, landing page, etc.).
  • _shop_visit: no data held, persistent for 30 minutes from the last visit, used by our website provider’s internal stats tracker.
  • _shop_uniq: no data held, expires at midnight (relative to the visitor) of the next day, counts visits to the store by a single customer.
  • cart: unique token, persistent for 2 weeks, stores information about the contents of your cart.
  • _secure_session_id: unique token, sessional.
  • storefront_digest: unique token, indefinite, used to determine if the current visitor has access if the shop has a password.

SECTION 11: AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow your minor dependents to use this site.

SECTION 12: CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time. Changes will take effect immediately upon posting on the website. If we make material changes to this policy, we will notify you here so that you are aware of what information we collect, how we use it, and under what circumstances we use and/or disclose it. If our store is acquired or merged with another company, your information may be transferred to the new owners to continue selling products to you.

QUESTIONS AND CONTACT INFORMATION

If you would like to access, correct, amend, or delete any personal information we have about you, register a complaint, or want more information, contact our Privacy Compliance Officer at support@onsheer.com.