Privacy and Security
Introduction
It might not be the most interesting topic in the world, but at Spindle we take your privacy very seriously. We are not in the business of selling or trading email lists with other companies for marketing or money making purposes, and we take every precaution to protect any and all of the information that you provide us with. For a breakdown continue reading.
For simplicity throughout this notice, ‘we’ means Spindle.
What we do with your information
When you browse our online store, we automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system, and in order for us to analyse ourweb traffic to make improvements to our website.
When you purchase something from our online shop, as part of the buying and selling process, we collect the personal information that you give us, such as your name, address and email address.
With your permission, we may send you emails about our online store, new products and other updates (we know how annoying these can get, so we try to keep them interesting and sporadic).
Your consent
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will always ask directly for your expressed consent (no pre-ticked opt-in boxes).
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at hello@shopspindle.com or clicking ‘unsubscribe’ at the bottom of one of our emails.
Disclosure
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
Shopify
Our online shop is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
When you buy something through our website Shopify uses your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard and American Express.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may want to read Shopify’s Terms of Service or Privacy Statement.
Third-party services
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.
Security
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the internet or electronics storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
Age of consent
If you’re aged 16 or under, you’ll need to get permission to shop on our website from your parents or guardian. Sorry kids.
Changes to this privacy policy
We reserve the right to modify this privacy policy at any time. Changes and clarification will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or share it.
If our online store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.