SECTION 1 - INFORMATION
What do we do with your information?
As part of the buying, selling and billing process, we collect personal information that is provided by users such as name, identity document, address and email, which are a requirement at the time of purchase. Moreover, when they browse our store, we also automatically receive the internet protocol address (IP) of the user's computer in order to obtain information about the browser and operating system.
In the case of email marketing, if applicable, with the user's permission emails will be sent about our store, new collections, designs and other updates.
SECTION 2 - CONSENT
How to obtain my consent?
When you provide us with personal information to complete a transaction, verify your credit card, create an order, arrange a shipment or make a return, we imply that you agree to the collection and use of your data only in these circumstances. If personal information is requested for a secondary reason, such as marketing, you will be asked directly for your express consent, where there is also the option to refuse.
How can I withdraw my consent?
If after accepting you change your mind, you can withdraw your consent for us to contact you, for the collection, use or disclosure of your information, at any time, by contacting us at email@example.com or by writing to: MC DEVINS SAS Bocagrande, Cra 5 # 6-119, 130001 Cartagena, Bolívar, Colombia.
SECTION 3 - DISCLOSURE
We are authorized to disclose the user's personal information if required by law or if the user violates our Terms and Conditions of Service.
SECTION 4 - SHOPIFY
Our store is hosted by Shopify Inc. This company provides an online e-commerce platform that allows us to sell our products and services. User data is retained through Shopify's data storage, databases, and the general Shopify application, a secure server behind a firewall.
If the user uses a direct payment gateway to complete the purchase, Shopify stores the credit card data, encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Purchase transaction data is stored only to the extent necessary to complete the purchase transaction. After it is complete, the purchase transaction information is erased. All direct payment gateways adhere to the standards set by PCI-DSS as outlined by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of credit card information from stores and their service providers. For a clearer view, drill down to the Shopify Terms of Service or Privacy Statement.
SECTION 5 - THIRD PARTY SERVICES
In general, the third-party services that are used will only collect, use and disclose user information to the extent necessary to perform the services they provide. However, some third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information that we are required to provide to them for purchase-related transactions. For these providers, it is recommended to read the privacy policies in order to understand the way in which personal information will be handled. It is important to keep in mind that some providers may be located or have facilities that are in a jurisdiction different from us and our users. So when processing a transaction that involves the services of a third party provider, the information may be subject to the laws of the jurisdiction (jurisdictions) in which the service provider or its facilities are located.
Links: When clicking on links in the store, it is possible to be redirected away from our site. We are not responsible for the privacy practices of other sites and we recommend reading their privacy policies.
SECTION 6 - SAFETY
To protect user personal information, we take reasonable precautions and follow industry best practices to ensure that it is not improperly lost, misused, accessed, disclosed, altered, or destroyed. The information provided regarding the credit card is encrypted using Secure Socket Layer (SSL) technology and is stored with AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional industry-accepted standards.
QUESTIONS AND CONTACT INFORMATION
If you want to correct, amend or delete any personal information that has been provided to the company, register a complaint or simply access more information, contact our Privacy Compliance Officer firstname.lastname@example.org or by postal mail to MC DEVINS SAS.
[Re: Privacy Compliance Officer] [Bocagrande Cra 5 # 6-119, 130001 Cartagena, Bolívar, Colombia]