PRIVACY POLICY
SECTION 1 - CONSENT
How do you get my consent? When you provide us with personal information (as defined below) via a contact form, email, to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason. If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
What is my personal information? For the purposes of this Privacy Policy, ‘Personal Information’ means data that allows someone to identify or contact you, including, for example, your name and e-mail address, as well as any other non-public information about you that is associated with or linked to any of the foregoing data.
How do I withdraw my consent? If after you opt-in, you change your mind, you may withdrawing your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at info@gracefulchanges.co.
SECTION 2 – SQUARESPACE
Who looks after my data? Our website is hosted on Squarespace Inc. Personal Information hosted by or through Squarespace is subject to their privacy policy which may or may not contain terms as protective as this Privacy Policy. By using our site, you are agreeing to be bound by Squarespace’s privacy policy. They provide us with the online presence and e-commerce platform that allows us to sell our products and services to you. Your data is stored through Squarespace's data storage, databases and the general Squarespace application. They store your data on a secure server behind a firewall.
SECTION 3 COOKIES, ANALYTICS & OTHER TECHNOLOGIES
How do you use cookies? Squarespace and our other service providers may use cookies (both session cookies and persistent cookies) to analyze trends, administer our Site, track your movements around our Site, better understand how you interact with our Site, determine interest in particular content and monitor aggregate usage by visitors and online traffic routing. We may receive reports based on the use of these technologies by these companies on an individual and aggregated basis. You may be able to instruct your browser, by changing its option, to stop accepting cookies or to prompt you before accepting a cookie from the online services you visit. You may also remove persistent cookies by following your web browser’s help file directions. If you do not accept cookies, however, you may not be able to use all portions of our Site or all functionality of our Site.
Do you track my visit? Squarespace uses analytics tools to help us measure traffic and usage trends for our Site. These tools collect information sent by your browser as part of a web page request, including the web pages you visit, your browser add-ons, and other information that assists us in improving our Site. Similarly, we may also use Google Analytics (GA) to help us learn about who visits our site and what pages are being looked at - to achieve this GA records data such as your geographical location, device, internet browser and operating system – by using our site you agree to be bound by Google’s privacy policy. We may collect and use the analytics information from these sources together with your Personal Information and stitch together session data from user visits to build a broader profile of our individual users so that we can serve you better.
How about other technologies? Squarespace and our other service providers may also use “pixel tags,” “web beacons,” “clear GIFs,” or similar means in connection with our Site and HTML-formatted e-mail messages to, among other things, track the actions of users, to determine the success of marketing campaigns and to compile aggregate statistics about Site usage and response rates. This information is collected anonymously, in a manner that does not personally identify you.
SECTION 4 – DATA SECURITY, STORAGE & CONTROL
How do you protect my data? To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
Where is my data and for how long is it stored? Your data will be stored securely for a period of up to 3 years from our most recent communication, after this time your contact information will be removed. We use the personal information you provide to us to effectively undertake our services. Specific items of data may be shared with 3rd parties in order to facilitate these services
What happens if there’s a breach? We will report any unlawful data breach of our local systems or the database(s) of any 3rd party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.
Who can I contact about my data? The data controller and data protection officer of this website is: Josefa Buckland, info@gracefulchanges.co, Director of Graceful Changes Ltd - a UK Private Limited Company with company number: SC613009 and whose registered office is: 84 Buckstone Terrace, Edinburgh, United Kingdom, EH10 6QR
SECTION 5 - THIRD-PARTY SERVICES
How do they handle my data? In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions. For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers. In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located. leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy.
Are you responsible for external links? When you click on links on our website they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECTION 6 – CHANGES TO OUR PRIVACY POLICY
How will I know if this policy changes? This privacy policy may change from time to time inline with legislation or industry developments. We won’t explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page occasionally for any policy changes - specific policy changes and updates are mentioned in the change log below. Your continued use of the Services after any change in this Privacy Policy will constitute your acceptance of such change.
CHANGE LOG:
April 2019 – Privacy policy instigated