To make our website and product offering better for everyone, we collect and use information about you,
· We hold your name, address and any contact details supplied to process your order and communicate with you.
· Our LiveChat function requires your name, phone number and email address which will be used to get back to you if we can not immediately answer your enquiry. For example, if you require lead times on a product not yet in stock, we may check with our manufacturer or warehouse for more information. We may also use your email address for marketing purposes if you opt in by selecting ‘I would like to receive newsletter campaigns’.
· Your IP address and general location (town) is tracked to help us understand where our prospective and existing clients are based.
· The pages you view on our website are monitored to better understand what are most popular and which products we could better supply to you.
· We monitor abandoned carts and pages where visitors may drop off, to better understand why this might happen.
· You can sign up to our newsletter and marketing emailers by subscribing with your email address on the main website landing pages.
Trust is at the heart of our product and service offering at Noahs RC Ark which includes trusting us to do the right thing with your information. Two main standards guide us as we develop our products and services.
These values should help you better understand how we think about your information and privacy.
· Your information is yours
We carefully analyse what types of information we need to provide our products and services, and we try to limit the information we collect to only what we truly need. Where possible, we delete or anonymise this information when we no longer need it. When building and improving our products, our employees work closely with our digital partners to build with your privacy in mind. In all of this work our guiding principle is that your information belongs to you, and we aim to only use your information to your benefit.
· We protect your information from others
If a third party requests your personal information, we will refuse to share it unless you give us permission or we are legally required. When we are legally required to share your personal information, we will tell you in advance, unless we are legally forbidden.
Why we process your information
We generally process your information when we need to do so to fulfil a contractual obligation (for example, to process your purchases made on our online store), or where we or someone we work with needs to use your personal information for a reason related to their business (for example, to provide you with a service). European law calls these reasons “legitimate interests.” These “legitimate interests” include:
· preventing risk and fraud
· answering questions or providing other types of support
· providing and improving our products and services
· providing reporting and analytics
· testing out features or additional services
· assisting with marketing, advertising, or other communications
We only process personal information for these “legitimate interests” after considering the potential risks to your privacy—for example, by providing clear transparency into our privacy practices, offering you control over your personal information where appropriate, limiting the information we keep, limiting what we do with your information, who we send your information to, how long we keep your information, or the technical measures we use to protect your information.
Your rights over your information
We believe you should be able to access and control your personal information no matter where you live. Depending on how you use our online store, you may have the right to request access to, correct, amend, delete, restrict, or object to certain uses of your personal information (for example, direct marketing). We will not charge you more or provide you with a different level of service if you exercise any of these rights.
If you buy something from our online store and register an account with us, you can directly control what information we store about you.
If you make a purchase and checkout as a guest rather than registering an account, we will only hold information to fulfil our contract with you. You can contact us to remove the information you used to make your purchase, such as your name and delivery address.
Please note that if you send us a request relating to your personal information, we have to make sure that it is you before we can respond. In order to do so, we may use a third party to collect and verify identification documents.
If you are not happy with our response to a request, you can contact us to resolve the issue. You also have the right to contact your local data protection or privacy authority at any time.
Finally, because there is no common understanding about what a “Do Not Track” signal is supposed to mean, we don’t respond to those signals in any particular way.
Where we send your information
We are a British company, but we may hold and process data about individuals across the world. To operate our business, we may send your personal information outside of your country, county/state/province to ensure we correctly deliver your purchase to you and to fulfil our contract. This data may be subject to the laws of the countries where we send it. When we send your information across borders, we take steps to protect your information, and we try to only send your information to countries that have strong data protection laws.
Finally, while we do what we can to protect your information, we may at times be legally required to disclose your personal information (for example, if we receive a valid court order).
How we protect your contact information
Our teams work tirelessly to protect your information, and to ensure the security and integrity of our platform. However, we all know that no method of transmission over the Internet, and method of electronic storage, can guaranteed to be consistently 100% secure. This means we cannot guarantee the absolute security of your personal information.
How we protect your payment information
We do not store your payment information for future use after you have made your purchase through our online store. We are PCI compliant to ensure we adhere to the most stringent and latest standards for processing payments.
The requirements set forth by the PCI SSC are both operational and technical, and the core focus of these rules is always to protect cardholder data.
The 12 requirements of PCI DSS are:
- Install and maintain a firewall configuration to protect cardholder data
- Do not use vendor-supplied defaults for system passwords and other security parameters
- Protect stored cardholder data
- Encrypt transmission of cardholder data across open, public networks
- Use and regularly update anti-virus software or programs
- Develop and maintain secure systems and applications
- Restrict access to cardholder data by business need to know
- Assign a unique ID to each person with computer access
- Restrict physical access to cardholder data
- Track and monitor all access to network resources and cardholder data
- Regularly test security systems and processes
- Maintain a policy that addresses information security for all personnel
How we use “cookies” and other tracking technologies
How you can reach us
If you would like to ask about, make a request relating to, or complain about how we process your personal information, please contact firstname.lastname@example.org.