ARTICLE 1 – PERSONAL INFORMATION COLLECTED
When you make a purchase on John & Greg, as part of our buying and selling process, we collect the personal information you give us such as your name, address, your e-mail address or your telephone number.
When you browse John & Greg, we also automatically receive the Internet protocol address (IP address) of your computer, which allows us to obtain more details about the browser and operating system you are using.
In the context of email marketing, with your permission, we may send you emails about John & Greg about new products and other updates or about your uncompleted orders.
ARTICLE 2 - CONSENT
How do we obtain your consent?
When you provide us with your personal information to complete a transaction, verify your card credit, place an order, schedule a delivery or return a purchase, we'll assume that you consent to our collecting your information.
If we ask you to provide us with your personal information for another reason, at for marketing purposes for example, we will ask you directly for your explicit consent, or we will give you the possibility of refusing.
How can you withdraw your consent?
If after giving us your consent, you change your mind and no longer consent to us contacting you, collecting your information, you may notify us by contacting us at firstname.lastname@example.org or by registered mail at 13 rue de fontan, Nice, PACA, 06300, France
ARTICLE 3 – DISCLOSURE
We may disclose your personal information only if we are required by law to do so or if you violate our Terms and Conditions of Sale and Use.
ARTICLE 4 – SHOPIFY
John & Greg is hosted on Shopify Inc. They provide us with the e-commerce platform that allows us to sell the services and products John & Greg.
Your data is stored in Shopify's storage system and databases. In the general Shopify application, your data is stored on a secure server protected by a firewall.
For payment, if you make your purchase through a payment gateway direct, Shopify will store your credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Information relating to your purchase transaction is kept for as long as necessary to finalize your order. Once your order is finalized, the information relating to the purchase transaction is deleted. We therefore do not have direct access to the information you used to place your order. This information passes through Shopify and payment processors.
Indeed, all direct payment gateways comply with the PCI-DSS standard. This payment card industry security standard, PCI-DSS in English for Payment Card Industry Data Security Standard is established by the five main card networks (Visa, MasterCard, American Express, Discover Card and JCB). These standards help ensure the secure handling of credit card data when shopping at John & Greg
For more information, please see the Shopify Terms of Service here
ARTICLE 5 – SERVICES PROVIDED BY THIRD PARTIES
Generally , the services provided by third-party providers used by us will only collect, use and disclose your information to the extent necessary to perform the services they provide to us such as payment processing.
However, some These vendors, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase transactions on John & Greg.
As regards these third-party providers, we recommend that you carefully read their policies. privacy policies so that you can understand how they will treat your personal information. You can find Visa here, American Express here, MasterCard here, that of JCB here or that of Stripe here.
It should be remembered that some of these third-party providers may be located or have facilities located in a jurisdiction different from either yours or ours. So if you decide to proceed with a transaction that requires the services of a third-party provider, then your information may be governed by the laws of the jurisdiction in which that provider is located or those of the jurisdiction in which its facilities are located, for example.
For example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, your information that was used to complete the transaction may be disclosed under United States law, such as the Patriot Act.
You may need to leave Jo hn & Greg by clicking on certain links on our site. We assume no responsibility for the privacy practices of these other sites and recommend that you read their privacy policies carefully.
ARTICLE 6 – SECURITY
To protect your personal data, reasonable precautions are taken by us and follow industry best practices to ensure that it is not lost, misused, accessed, disclosed, altered or destroyed inappropriately.
In In the event that you provide us with your credit card information, it will be encrypted through the use of SSL security protocol and stored with AES-256 type encryption. This means that no human being will have access to the full card number. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
Below is a list of cookies we use.We've listed them below for you to choose whether or not to allow them
_session_id, is a unique session identifier that allows Shopify to store information about your session (referrer , landing page, etc.).
_shopify_visit, saves cookies for 30 minutes since the last visit. Beyond that, no data is recorded. This cookie is used by John & Greg's internal vendor statistics tracking system to record the number of visits.
_shopify_uniq, this file expires at midnight the following day depending of the visitor's location. This cookie calculates the number of visits to a store per unique customer.
cart, this unique identifier persists for 2 weeks and stores information about your shopping cart.
_secure_session_id, is a session unique identifier.
storefront_digest, is also a unique identifier. It is undefined if the store has a password. It is used to know if the current visitor has access or not.
ARTICLE 7 – AGE OF CONSENT
By using John & Greg, you represent that you are at least the age of majority in your country, state or province of residence, and you have given us your consent to allow any minor dependents to use John & Greg .
If John & Greg is acquired by or merged with another company, your information may be transferred to new owners so that we can continue to sell products to you.
ARTICLE 9 - SMS MARKETING
By entering your phone number at checkout and initiating a purchase as well as subscribing through our marketing sign-up list, you agree that we may send you SMS notifications (for your order and including abandoned cart reminders) or SMS marketing offers.
The number of marketing text messages will not exceed 30 per month. You can unsubscribe from any further text messages by replying with the word STOP. Sending text messages or using automations requires you to pass recipients' phone numbers or names. This data will be stored and used to communicate campaign analysis and results, including message delivery status, sending status and, in some cases, whether the purchase resulted in a sale to John & Greg.
If you decide to use our link shortener in text messages, we will collect this information to know if the link was clicked or not and use it to show results in analytics. Any other third party services you may decide to use outside the scope of smsbump.com, our text message carrier, the system we use to send the SMS (3rd party link shortener, GA tracking, etc) you will be referred to their specific third party policies which you must agree to
When sending the text messages, we will pass the data to our text message operator to complete the sending of the messages. Information is only shared with our operator when initiating a marketing campaign and sending messages. If recipients no longer wish to receive messages, they must reply to the message with STOP or contact the email address email@example.com so that we can successfully unsubscribe you.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, file a complaint, or simply want more information, contact our Privacy Compliance Officer at firstname.lastname@example.org or by mail with subject Re: Privacy Compliance Officer