Privacy Policy
Please take time to read how we use your private information carefully before using our website.
SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing: With your permission, we may send you emails about our store, new products and other updates.
SECTION 2 - CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at [email protected] or mailing us at:
Thoughtful Shop Rupprechter
Leutschenbachstrasse 48f
8050 Zürich, Switzerland
SECTION 3 - DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 - WEEBLY PLATFORM
Our store is hosted on Weebly Inc.. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Weebly’s data storage, databases and the general Weebly application. They store your data on a secure server behind a firewall.
View Weebly’s Privacy Policy (https://www.weebly.com/privacy?lang=en).
SECTION 5 - LINKS
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECTION 6 - THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or us. So, if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.
6.1 PAYMENT PROCESSING
If you choose a direct payment gateway to complete your purchase, then the Payment Processors (e.g. Stripe, Paypal) store your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read the Payment Processors Terms of Service and Privacy Statement.
6.2 TRACKING
We measure and assess the usage of our website by collecting tracking data via Google Analytics. Your IP address is anonymized by shortening it, which prevents the identification of individual devices. Google complies with the data protection rules of the "Swiss-U.S. Privacy Shield Framework" and is registered with the “Swiss-U.S. Privacy Shield” program of the US Department of Commerce (Information about the “Swiss-U.S. Privacy Shield” can be found under https://www.privacyshield.gov/Swiss-US-Privacy-Shield-FAQs). The IP address transmitted by your browser within the framework of Google Analytics will not be merged with other Google data. Transfer of these data by Google to third parties can only take place on the basis of legal regulations or as part of the order data processing. The recording and Processing of these data by Google Analytics may be objected to by setting an opt-out cookie, which will prevent the future recording of Your Data during visits to this website: https://tools.google.com/dlpage/gaoptout?hl=en
6.3 SOCIAL PLUGINS
Our website uses social plugins, e.g. from Facebook, Twitter or Google+. The plugins are labelled with the logo of the provider, and may be, for example ‘Like’ buttons or a Google+ button or Twitter button.
When you call up our websites which contain such a plugin, your browser sets up a direct connection with the provider’s computers. The content of the plugin is transmitted by the provider site directly to your browser, which integrates it into the website. By integrating plugins the provider receives the information that you have called up our website. If you are simultaneously logged in to the provider, the provider can assign the visit to your profile. If you interact with the plugins – for example by activating the “Like” button or making a comment – the relevant information is transmitted by your browser directly to the provider and stored there.
If you do not want the provider to collect data about you via our website, you must log out of the provider before you visit our website. Even if you are logged out, providers collect anonymised data via social plugins set up a cookie for you. If you log into the provider at a later time, these data may be assigned to your profile.
If a login is provided via a social login service − e.g. Facebook Connect – data are exchanged between the provider and our website. In the case of Facebook Connect that may be, for example, data from your public Facebook profile. By using such login services you agree to the transfer of data.
Please refer to the data protection notices of the provider for the purpose and scope of data collection and the further processing of your data by the provider, as well as your respective rights and setup options to protect your privacy.
Facebook Ireland Ltd. or Facebook Inc.: https://www.facebook.com/about/privacy/
Google Inc.: http://www.google.com/intl/de/privacy/plusone/
Twitter Inc.: http://twitter.com/privacy
If you do not want the provider to collect data about you via these cookies, you can select the “block cookies from third-party providers function in your browser settings. Then if there is embedded content from other providers, the browser does not send any cookies to the server. It is possible that with this setting other functions on our website will no longer function.
SECTION 7 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 8 - COOKIES
In order to structure our products and services in a way that best meets customers' needs, we use cookies in certain cases. A cookie is a small file which is sent from the web server to the customer's Internet browser and saved in the customer's computer.
By using cookies, we are able to recognize the customer's computer again the next time the customer visits the Website or uses our services.
You can decide to waive the advantages of cookies. You can set your browser so that a warning appears on the screen before a cookie is saved or so that it becomes impossible to implement cookies. Cookies that have already been used can be removed. However, certain services provided by us and/or third parties can no longer be used in these cases.
SECTION 9 - CHANGES TO THIS PRIVACY POLICY
We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information please contact us.