This policy describes the type of information we collect from you and/or that you may provide us when you visit and/or use this website and/or any of our mobile applications (individually or collectively, “Sites”). “You/your/user(s)” means you as a user of our Sites.
Information we collect
We collect various information that identifies you as a person (“Personal Information”) in two ways. First, we collect Personal Information that you provide to us. Second, we collect certain Automated Information that may contain Personal Information when you use our Sites.
Personal Information You Provide to Us
The Personal Information you provide to us including:
- contact details including name, email, telephone number and shipping, billing address
- login and account information, including unique user ID and password
- personal details including gender, hometown, date of birth and purchase history
- payment information through our third party payment processors
- personal preferences including your wish list as well as marketing preferences
- inferences drawn from the Personal Information that you provide to us. For example, if you provide a female name, we may categorize you as a female.
We collect Personal Information directly from you when you provide it to us. This typically occurs when you:
- Sign up for our email list
- When you sign up to become a ShineOn merchant
- Send us an email or other communication
- Join any of our social networking sites
- Register for an account with us
- Participate in our promotions, surveys, and/or contests
ShineOn does not collect any Personal Information that might be considered sensitive under applicable privacy laws.
We also collect information, some of which may be Personal Information, through automated means when you visit our Sites (“Automated Information”) such as:
- the IP address of the device you use to connect to the internet (which may include information about your geographic location)
- the unique identifiers of your device
- your browser characteristics
- your device characteristics
- your operating system
- your language preferences
- the URLs through which you were referred to our Site
- information on actions taken by you on our Site
- dates and times of your visits to our Site
- the pages you accessed on our Site
We collect Automated Information automatically as you navigate through our Site as explained further below.
We may collect information, which may include certain Personal Information data such as your IP address, from your browser when you use our Sites. We use a variety of methods, such as cookies and pixel tags to collect this information, which may include your (a) IP address; (b) unique cookie identifier, cookie information and information on whether your device has software to access certain features; ( c) unique device identifier and device type; (d) domain, browser type and language; (e) operating system and system settings; (f) country and time zone; (g) previously visited websites; (h) information about your interaction with our Sites such as click behavior, purchases and indicated preferences; and (i) access times and referring URLs.
Most web browsers automatically accept cookies. If you do not wish to have cookies on your system, you can set your browser to refuse them. Please review the specific instructions from your browser in order to do this. However, please note that not accepting cookies may make certain features of our Sites unavailable or difficult to view or use.
In some of our email messages we may use a “click-through URL” linked to content on our Sites. When you click one of these URLs, you will pass through our web server before arriving at the destination web page. We track this click-through data to help us determine interest in particular topics and measure the effectiveness of our Sites. If you prefer not to be tracked through our emails, simply avoid clicking text or graphic links in the email.
Third parties may also collect information via our Sites through cookies, third party plug-ins and widgets in order to deliver our targeted advertisements to you across the Internet.
Our web server may collect clickstream information such as the address (or URL) of the website that you came from before visiting the Sites, which pages you visit on the Sites, which browser you used to view the Sites, and any search terms you may have entered on our site, among other things. The Sites may also use other technologies to track which pages our visitors view.
How we use the information we collect
Any information collected about you via the Site may be used to: help increase the efficiency and operation of the Site; deliver and improve our products and services; manage our business; monitor and analyze usage and trends to improve the Site and the user experience; generate a personal profile of you to make future visits to the Site more personalized; perform the functions and services you request; send you confirmations, updates, alerts, administrative messages, and otherwise facilitate your use of the Site; request feedback and contact you about your use of the Site; respond to your emails; compile anonymous statistical information and analyses, which we may use internally and/or provide to third parties; to support our customers and their interactions with you through our Services; market our services (and those of third parties) to you that we believe may be of interest to you; and deliver information to you that you request or that we think may be of interest to you, such as articles, news, or information about various promotions.
Most commonly we will use your Personal Information on the following basis:
- Where you have asked us to do so, or consented to us doing so (e.g., receiving promotional emails);
- Where we need to do so in order to perform a contract we have entered into with you;
- Where it is necessary for our legitimate interests (or those of a third party) and your fundamental rights do not override those interests; and
- Where we need to comply with a legal or regulatory obligation.
Sharing personal information with third parties
We are committed to maintaining your trust and we want you to understand when and with whom we may share Personal Information and information collected about you. We do not share your Personal Information with any third parties except as set forth herein.
We may disclose your Personal Information to outside individuals and/or companies that help us bring you the products and services we offer and to create, operate, and maintain our Sites. For example, we may work with third parties to: (a) manage a database of customer information; (b) assist us in distributing e-mails; (c) assist us with direct marketing and data collection; (d) provide data storage and analysis; (e) provide fraud prevention; (f) provide customer service; (g) provide order fulfillment and/or delivery services; and (h) provide other services designed to assist us in developing and running our Sites and maximizing our business potential. We require that these outside companies agree to keep all information shared with them confidential and to use the information only to perform their obligations to us.
We may allow selected service providers or processors, such as Shopify, to use tracking technology on the Site, which will enable them to collect information about how you use the Site over time. This information may be used to, among other things, analyze and track data, determine the popularity of certain content, and better understand your online activity.
Transfer of Assets
In order to support tailored advertisements, offers, or content that you may find interesting when you browse the internet, we may share the personal information that you provide to us or that we collect about you with our trusted third party partners that support online advertising, data co-operatives, mobile advertising, data analytics, social media engagement, data brokers advertising networks or any other activity that may be considered cross-behavioral advertising or direct marketing. This transfer could be defined as a sale, sharing for cross-context behavioral advertising or targeted advertising.
In the past 12-months, we have transferred the following types of information for this purpose: (A) persistent identifiers such as unique device identifiers, email addresses, account information, IP addresses, information related to your browser, operation system, or any information that you provided to your account and (B) user activity data such as the data you provided when sign up to our services. You may request a list of which third parties have received your personal information by contacting us at the information below.
Additionally, you can may opt-out of this type of transfer at any time by contacting us using the information below.
Security and Fraud
We allow third parties to receive personal information from our users to provide both security and fraud protection. We do not control these third parties or how personal data is used.
Required By Law
We may share your information as permitted or required by any applicable law in response to a subpoena or other legal process or as we deem necessary to investigate or remedy any actual or potential violation of our policies or to protect the rights, property, and safety of ShineOn or others, as we deem appropriate.
Corporate Affiliates and Franchises
We may share personal information with our corporate affiliates, corporate parents and franchisees who will use such information in the same way as we can under this statement.
Software and Technology Vendors
Our various service providers may have access to or be provided with some of your personal data in connection with the tasks they perform on our behalf such as maintaining portions of our networks or the software applications that run on them.
Transaction Support Vendors / Payment Processors
We share personal information with those of our vendors and business partners who need it to perform under the contracts we have with them
We strive to keep your Personal Information (defined below) private and safe. We take commercially reasonable physical, electronic and administrative steps to maintain the security of Personal Information collected, including limiting the number of people who have physical access to database servers, as well as employing electronic security systems and password protections that guard against unauthorized access. All payment transactions will be handled through our third party payment processors, and we will not have access to your credit card number or other financial data.
Unfortunately, despite our best efforts, the transmission of data over the Internet cannot be guaranteed to be 100% secure. While we will use reasonable means to ensure the security of information you transmit through the Sites, any transmission of Personal Information is at your own risk. We cannot guarantee that such information will not be intercepted by third parties, and we will not be liable for any breach of the security of your Personal Information resulting from causes or events that are beyond our control, including, without limitation, your own act or omission, corruption of storage media, defects in third-party data security products or services, power failures, natural phenomena, riots, acts of vandalism, hacking, sabotage, or terrorism, and we are not responsible for unauthorized circumvention of any privacy settings or security measures contained on the Sites.
If you use a third-party website or application (e.g. Facebook, Google +, Twitter) to access our Sites or your account on our Sites, your activities on such third-party sites or apps are governed by the privacy practices of those sites or apps. The privacy policies of other sites and apps may differ significantly from ours, and we have no control over the operation of those sites or apps or the manner in which the collect, store, or process data.
Exercise Your Privacy Rights. ShineOn takes privacy seriously. Where applicable, data subjects have certain rights which they can request for ShineOn to fulfill. These requests can be made by either the data subject or an authorized agent. These rights include: A. The Right to Know. You have the right to request that ShineOn disclose the personal data that ShineOn has collected about you; B. The Right to Amend. You have the right to correct any information that ShineOn stores about you; C. The Right to Delete. You have the right to request that ShineOn delete information that it maintains about you, subject to certain exceptions; and D. The Right to Opt Out Of Your Personal Information Being Sold or Shared. You may opt-out of ShineOn sharing or selling your information.
Exercise your privacy rights
ShineOn takes privacy seriously. Where applicable, data subjects have certain rights which they can request for ShineOn to fulfill. These requests can be made by either the data subject or an authorized agent. These rights include:
A. The Right to Know. You have the right to request that ShineOn disclose the personal data that ShineOn has collected about you;
B. The Right to Amend. You have the right to correct any information that ShineOn stores about you;
C. The Right to Delete. You have the right to request that ShineOn delete information that it maintains about you, subject to certain exceptions; and
D. The Right to Opt Out Of Your Personal Information Being Sold or Shared. You may opt-out of ShineOn sharing or selling your information.
In order to exercise any of the rights detailed above, please email email@example.com. We will use your email as proof of verification unless otherwise prohibited. Exercising your rights under this section will not result in any discrimination by ShineOn. We will treat you the same as any other user. If you disagree or dispute a decision that has been made on the scope or application of the rights described in this clause, you may appeal this decision by contacting firstname.lastname@example.org. If you are a customer of a ShineOn merchant, you must reach out to the merchant directly.
Do Not Track (DNT) is a privacy preference that users can set to have their Internet browser automatically send a signal to our online and mobile resources to request we not track browsing activity across different sites. There is, however, currently no universal standard for sending and receiving DNT signals. As such, we cannot promise that we respond to all DNT signals, but do recognize and respond when required by applicable privacy laws, such as when HTTP header fields or Java objects are used.
Retention Period. ShineOn shall only store personal information for as long as it is required. This is determined by considering the purposes for which it was obtained in accordance with applicable laws. Our retention period is based on (1) the nature of our relationship with the data subject and (2) any legal obligations we are bound to fulfill.
SMS/MMS mobile marketing
We may use SMS (Short Message Service) to communicate with our users regarding their account or to provide updates about our services. By providing your mobile phone number to us, you consent to receive SMS messages from us. We take the privacy and security of our users' personal data seriously, and we will not disclose your mobile phone number or any other personal data to third parties except as required by law or as necessary to provide our services. If you wish to opt-out of receiving SMS messages from us, you can reply to any message with "STOP" or contact us at email@example.com
Please note that opting out of SMS messages may affect your ability to use certain features of our services that rely on SMS communication.
Notice to European Union Residents
We control and operate the online and mobile resources from within the United States of America (the “U.S.”). Information collected through the Website and Services may be stored and processed in the United States or any other country in which our vendors or we maintain facilities. If you are a user based in the European Economic Area, please note we may disclose your personal data for the purposes described above to recipients (including our subsidiaries, service providers, and advisors) that are located in a country outside of the country from which it was original collected, including Vietnam, the United Kingdom, and the United States. Not all countries have equivalent data protection laws. You hereby expressly consent to the transfer of your personal data to recipients that are located outside your home jurisdiction, including the United States or Vietnam.
We do not knowingly permit persons under 18 years of age to use the Sites, and we do not knowingly collect, use or disclose Personal Information from anyone under 18 years of age. If we determine upon collection of Personal Information that a user is under this age, we will not use or maintain his/her Personal Information without the parent/guardian's consent. If we become aware that we have unknowingly collected Personal Information from a child under the age of 18, we will make reasonable efforts to delete such information from our records.
If you have any questions about your privacy or security at the Sites, or wish to update your Personal Information, please send an email to firstname.lastname@example.org.