Privacy policy
PURPOSE
Holy Sophia Treatments Ltd. (the “Company,” “we,” “us,” “our”) is committed to protecting the privacy of its customers and the confidentiality of their Personal Information. This Policy describes key principles and practices followed by the Company with respect to its collection, use, or disclosure of Personal Information in the course of carrying out its business and activities related thereto.
This Privacy Policy describes how https://hsophia.com/ (the “Site” or “we”) collects, uses, and discloses your Personal Information when you visit or make a purchase from the Site.
“Personal Information” means recorded information about an identifiable individual. To qualify as Personal Information, the information must be about the individual in a personal capacity. Examples of information that could be Personal Information include your name, address, gender, date of birth, language preference, email address, telephone number, credit card information, personal opinions, Twitter user name or other social media user identification.
COLLECTING PERSONAL INFORMATION
When you visit the Site, we collect certain information about your device, your interaction with the Site, and information necessary to process your purchases. We may also collect additional information if you contact us for customer support. In this Privacy Policy, we refer to any information that can uniquely identify an individual (including the information below) as “Personal Information”. See the list below for more information about what Personal Information we collect and why.
Device information
- Examples of Personal Information collected: version of web browser, IP address, time zone, cookie information, what sites or products you view, search terms, and how you interact with the Site.
- Purpose of collection: to load the Site accurately for you, and to perform analytics on Site usage to optimize our Site.
- Source of collection: Collected automatically when you access our Site using cookies, log files, web beacons, tags, or pixels, or any other tracking technologies used on this site.
- Disclosure for a business purpose: shared with our processor Shopify and other vendors with whom this information is shared, including but not limited to: Automizely, Facebook, Pixc, Sesami and Shop.
Order information
- Examples of Personal Information collected: name, billing address, shipping address, payment information (including credit card numbers and any other payment types accepted by Shopify), email address, and phone number.
- Purpose of collection: to provide products or services to you to fulfill our contract, to process your payment information, arrange for shipping, and provide you with invoices and/or order confirmations, communicate with you, screen our orders for potential risk or fraud, and when in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
- Source of collection: collected from you.
- Disclosure for a business purpose: shared with our processor Shopify and vendors with whom this information is shared, such as those listed and/or included under sales channels, payment gateways, shipping and fulfillment apps.
Customer support information
- Purpose of collection: to provide customer support.
- Source of collection: collected from you.
-
Disclosure for a business purpose: shared with our processor Shopify and any other vendor used to provide customer support.
MINORS
The Site is not intended for individuals under the age of 18. We do not intentionally collect Personal Information from children. If you are the parent or guardian and believe your child has provided us with Personal Information, please contact us at the address below to request deletion.
SHARING PERSONAL INFORMATION
We share your Personal Information with service providers to help us provide our services and fulfill our contracts with you, as described above. For example:
- We use Shopify to power our online store. You can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy.
- We may share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.
BEHAVIOURAL ADVERTISING
As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For example:
- We may use Google Analytics to help us understand how our customers use the Site. You can read more about how Google uses your Personal Information here: https://policies.google.com/privacy?hl=en.You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
- We share information about your use of the Site, your purchases, and your interaction with our ads on other websites with our advertising partners. We collect and share some of this information directly with our advertising partners, and in some cases through the use of cookies or other similar technologies (which you may consent to, depending on your location).
For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by visiting:
- FACEBOOK - https://www.facebook.com/settings/?tab=ads
- GOOGLE - https://www.google.com/settings/ads/anonymous
- BING - https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
USING PERSONAL INFORMATION
We use your personal Information to provide our services to you, which includes: offering products for sale, processing payments, shipping and fulfillment of your order, and keeping you up to date on new products, services, and offers.
LAWFUL BASIS
Pursuant to the General Data Protection Regulation (“GDPR”), if you are a resident of the European Economic Area (“EEA”), we process your personal information under the following lawful bases:
- Your consent;
- The performance of the contract between you and the Site;
- Compliance with our legal obligations;
- To protect your vital interests;
- To perform a task carried out in the public interest;
- For our legitimate interests, which do not override your fundamental rights and freedoms.
RETENTION
When you place an order through the Site, we will retain your Personal Information for our records unless and until you ask us to erase this information. For more information on your right of erasure, please see the ‘Your rights’ section below.
AUTOMATIC DECISION-MAKING
If you are a resident of the EEA, you have the right to object to processing based solely on automated decision-making (which includes profiling), when that decision-making has a legal effect on you or otherwise significantly affects you.
We may engage in fully automated decision-making that has a legal or otherwise significant effect using customer data.
Our processor Shopify uses limited automated decision-making to prevent fraud that does not have a legal or otherwise significant effect on you.
Services that include elements of automated decision-making include:
- Temporary denylist of IP addresses associated with repeated failed transactions. This denylist persists for a small number of hours.
- Temporary denylist of credit cards associated with denylisted IP addresses. This denylist persists for a small number of days.
YOUR RIGHTS
The following section pertains to customers in Europe:
GDPR
If you are a resident of the EEA, you have the right to access the Personal Information we hold about you, to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us through the contact information below.
Your Personal Information will be initially processed in Ireland and then will be transferred outside of Europe for storage and further processing, including to Canada and the United States. For more information on how data transfers comply with the GDPR, see Shopify’s GDPR Whitepaper: https://help.shopify.com/en/manual/your-account/privacy/GDPR.
The following section pertains to the California Consumer Privacy Act:
CCPA
If you are a resident of California, you have the right to access the Personal Information we hold about you (also known as the ‘Right to Know’), to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us through the contact information below.
If you would like to designate an authorized agent to submit these requests on your behalf, please contact us at the address below.
COOKIES
A cookie is a small amount of information that’s downloaded to your computer or device when you visit our Site. We use a number of different cookies, including functional, performance, advertising, and social media or content cookies. Cookies make your browsing experience better by allowing the website to remember your actions and preferences (such as login and region selection). This means you don’t have to re-enter this information each time you return to the site or browse from one page to another. Cookies also provide information on how people use the website, for instance whether it’s their first time visiting or if they are a frequent visitor.
We use the following cookies to optimize your experience on our Site and to provide our services.
COOKIES NECESSARY FOR THE FUNCTIONING OF THE STORE
|
Name |
Function |
|
_ab |
Used in connection with access to admin. |
|
_secure_session_id |
Used in connection with navigation through a storefront. |
|
cart |
Used in connection with shopping cart. |
|
cart_sig |
Used in connection with checkout. |
|
cart_ts |
Used in connection with checkout. |
|
checkout_token |
Used in connection with checkout. |
|
secret |
Used in connection with checkout. |
|
secure_customer_sig |
Used in connection with customer login. |
|
storefront_digest |
Used in connection with customer login. |
|
_shopify_u |
Used to facilitate updating customer account information. |
REPORTING AND ANALYTICS
|
Name |
Function |
|
_tracking_consent |
Tracking preferences. |
|
_landing_page |
Track landing pages |
|
_orig_referrer |
Track landing pages |
|
_s |
Shopify analytics. |
|
_shopify_s |
Shopify analytics. |
|
_shopify_sa_p |
Shopify analytics relating to marketing & referrals. |
|
_shopify_sa_t |
Shopify analytics relating to marketing & referrals. |
|
_shopify_y |
Shopify analytics. |
|
_y |
Shopify analytics. |
The length of time that a cookie remains on your computer or mobile device depends on whether it is a “persistent” or “session” cookie. Session cookies last until you stop browsing and persistent cookies last until they expire or are deleted. Most of the cookies we use are persistent and will expire between 30 minutes and two years from the date they are downloaded to your device.
You can control and manage cookies in various ways. Please keep in mind that removing or blocking cookies can negatively impact your user experience and parts of our website may no longer be fully accessible.
Most browsers automatically accept cookies, but you can choose whether or not to accept cookies through your browser controls, often found in your browser’s “Tools” or “Preferences” menu. For more information on how to modify your browser settings or how to block, manage or filter cookies can be found in your browser’s help file or through such sites as www.allaboutcookies.org.
Additionally, please note that blocking cookies may not completely prevent how we share information with third parties such as our advertising partners. To exercise your rights or opt-out of certain uses of your information by these parties, please follow the instructions in the “Behavioural Advertising” section above.
DO NOT TRACK
Please note that because there is no consistent industry understanding of how to respond to “Do Not Track” signals, we do not alter our data collection and usage practices when we detect such a signal from your browser.
VISITING THE WEBSITE
When you visit our Website, we may collect information that is automatically sent to us by your web browser. This information may include your domain name and your numerical IP address. We may also collect other information, such as the type of browser you use, which pages you view, and the files you request. We use this information to better understand how visitors use our Website and to improve our Website to better meet your needs. The amount of information that is sent by your web browser depends on the browser and settings you use. Please refer to the instructions provided by your browser if you want to learn more about what information it sends to websites you visit or how you may change or restrict this.
PRODUCT PURCHASES AND DELIVERIES
Product Purchase. You may be required to provide Personal Information when you order products from the Company’s Website. Personal Information is required in order to process these transactions, to verify your identity, age and to protect against error or fraud. If you use a credit or debit card for your purchase, your credit/debit card-related information and your signature are required to process your payment.
Product Delivery. At delivery, you may be asked to present valid government photo identification to confirm that you are of legal age. If picking up from a delivery depot, you will also be asked to verify that you are someone who is authorized to pick up the package. When requested, identification is viewed, but not recorded. In all cases, the name and signature of the person accepting the package will be recorded as confirmation that the delivery has been received.
EMAIL AND OTHER COMMUNICATIONS
From time to time, the Company may obtain your consent to send you emails and other communications about products, services, promotions, events or administrative functions. The Company obtains consent for email communications. You can opt-out of receiving promotional emails from us at any time by unsubscribing or by clicking on our “Contact Us” page on the Website.
When you request that your name be removed from our databases, it may not be possible to completely delete all your Personal Information due to technical and legal constraints. However, you will not continue to receive emails from the Company once you request removal of your name.
ONLINE REGISTRATION
You do not have to register to visit the Company’s Website. However, you may need to register and provide your Personal Information to be able to use some of the features offered through our online services. Your registration information is used to provide and administer the service you requested.
CONTESTS, COMPETITIONS, CO-BRANDED PARTICIPATION, AND PROMOTIONS
When you enter a contest, competition or participate in a promotion, we may collect your Personal Information. We use this information to administer the contest, competition or promotion including contacting, announcing and promoting prize winners. At the time you enter the contest, competition or promotion, we may obtain your consent to (i) send you future promotional communications, and/or (ii) disclose your Personal Information to a third party sponsor of the contest, competition or promotion, as specified at the time of collection of your Personal Information. We do not control the use, disclosure or security of your Personal Information by third party sponsors, and recommend that you review their privacy notices or statements (more information on third party sponsors is provided below).
THIRD-PARTY LINKS
The Website may contain links to other sites that we do not own or operate. We will not provide any of your Personal Information to these third parties without your consent. We provide links to third party websites as a convenience to the user. These links are not intended as an endorsement of or referral to the linked website. The linked websites have separate and independent privacy statements, notices and terms of use, which we recommend you read carefully. This Privacy Policy does not apply to such third party websites and we are not responsible for the content of such third party websites or the privacy practices of such third parties. Since the Company has no control over such websites, the Company has no responsibility or liability for the manner in which said organizations may use your Personal Information.
THIRD PARTIES ACTING ON THE COMPANY’S BEHALF
We will not transfer Personal Information to third parties, except to service providers who have agreed to comply with appropriate privacy standards, in order to perform services for the Company. We do not sell or rent our customer lists to outside agencies and/or our trade partners. Personal information supplied to us will not be used to place you on any mailing lists without your express consent.
MARKET RESEARCH
We collect Personal Information for market research purposes. For example, we may ask you to provide postal code information or to participate in surveys or other customer research. Participation is voluntary. The information obtained through market research is used in an aggregated, non-personally identifiable form. We use this information to help us understand our customers, to enhance our product offerings, promotions and events. This information may be made available to third parties acting on behalf of the Company, who have agreed to comply with appropriate privacy standards.
CUSTOMER SERVICE AND CALL RECORDING
When you contact us with a comment, question or complaint, you may be asked for contact information that identifies you (such as your name, address and a phone number) and the information needed to help us answer your question or respond to your comment or complaint. We may monitor and/or record telephone discussions when you call us to enhance customer service, for training purposes and/or to confirm our discussions with you.
SOCIAL MEDIA AND NETWORKS
The Company may use accounts on social networks, including Facebook, Twitter, Instagram and others to promote its products and services. The Company’s social media accounts are publicly accessible, and your posts, comments, and replies to, and mentions of, the Company may be publicly visible, depending on your privacy settings. Your privacy and the retention of information on social media accounts are governed by the privacy policies of the parties that operate these social networks. Some social networks may allow you to control the information you make available to the Company and others. Users should review and agree to privacy agreements and terms and conditions of the parties that operate these networks prior to participating. As stated above, the Company does not have any control over such platforms, and therefore it has no responsibility or liability for the manner in which the organizations that operate such linked platforms collect, use, disclose, secure and otherwise treat your Personal Information. The Company may collect and measure information available to it about social media activity in order to provide content that is relevant and potentially interesting to users of these social media platforms.
COOKIES AND TRACKING TECHNOLOGY
Like many websites, the Company utilizes “cookies” to maintain a record of your visit to the Website and your use of the services. A cookie is a small text file that is transferred by a web server and stored on the hard drive of your computer or mobile device. It can only be read by the server that sent it to you. This information does not identify you personally and you remain anonymous unless you have otherwise provided the Company with Personal Information.
Cookies help us improve the Website and our services, and deliver more personalized service by enabling us to estimate audience size and usage patterns; to store information about your preferences; to speed up your searches and to recognize you when you return to the Website or use our services. Most web browsers automatically accept cookies. If you would prefer to prevent your computer from accepting our cookies, you may follow your Internet browser’s steps for doing so. Please note, however, that if you do disable cookies from your browser, some pages of the Website may not function properly.
NON-PERSONAL DATA AGGREGATION
The Company may use Personal Information that you provide to it for the purposes of research, to inform operations, and for communications planning. This data may be made non-personally identifiable by aggregating your information with data pertaining to other individuals, or removing personally identifiable details. Aggregate information obtained through cookies may be disclosed to third parties, but no Personal Information that identifies you will be released.
SECURITY AND PROTECTION OF PERSONAL INFORMATION
The Company maintains your Personal Information in a combination of paper and electronic files. Recognizing that your privacy is important, the Company employs technical and physical security measures to protect your Personal Information. Personal Information may only be accessed by persons within our organization who require such access to provide you with the services indicated above. However, no transmission over the Internet can be guaranteed to be completely secure since “perfect security” does not exist on the Internet. Consequently, the Company does not represent, warrant, covenant or guarantee the complete security of the Personal Information you provide to it.
We retain Personal Information that we collect only as long as necessary for the purposes for which it was collected or to meet legal requirements. We destroy Personal Information when it is no longer needed.
ACCURACY AND RETENTION OF PERSONAL INFORMATION
The Company will make reasonable efforts to ensure the accuracy of your personal information when you request it as long as it does not compromise its privacy or security interest. Please contact us at the number below to update your Personal Information and account preferences. The Company will keep your Personal Information for as long as it remains necessary for the identified purposes or as required by law, or in accordance with our retention schedules, which may extend beyond the termination of our relationship with you. The Company reserves the right to maintain Personal Information records for both active and inactive/unsubscribed customers.
CHANGES
We may update this Privacy Policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal, or regulatory reasons.
CONTACT INFORMATION
If you have any questions concerning this Policy, please contact us at:
Holy Sophia Treatments Ltd. E-mail: support@hsophia.com