Services and Scope
DATA WE COLLECT
Data You Provide To Us
When you create an account; place an order or make a return or exchange; inquire about our Services; request emails from us about our offerings; opt-in to marketing activities; receive a gift from someone else who purchases through our website; follow us or submit information, including photographs, via third-party social media platforms (e.g., Facebook, Twitter, Google+, etc.); enter a contest or participate in a marketing survey; or submit other information to us directly or through third-party services, you are asked to provide personal information that uniquely identifies you.
We collect the following types of personal information: your contact information (such as name, postal or email address, or phone number), birthdate, name and email address of gift card recipients, username and password, payment information such as PayPal, Amazon Pay, Apple Pay, credit or debit card details, shipping information (including the shipping address and phone number), purchase history, shopping preferences (such as an interest in a particular product category), information about your age, information you provide by interacting with us through social media, and photographs that you submit on our sites or through our social media channels.
You don't have to provide any information that directly identifies you to browse our website. However, we will ask you to provide certain personal information as necessary to provide you with requested products and services, complete the relevant transaction, or, if you wish, to avail of special features or functions of our website.
Content Posted By You
We may provide you with the ability to rate or review products or services we sell, or otherwise post content on our website our through our social media channels. Any comments or reviews that you provide are accessible to all users of the relevant platform and may be visible to others or collected by third-parties, so you should use discretion when posting information and you should not post personal information. If you do post personal information, you do so at your own risk.
Data We Automatically Get From You
We and our affiliates, analytics or service providers, and select businesses with whom we have marketing relationships, use technologies such as cookies, beacons, tags, and scripts, to analyze trends, administer the website, tracking users' movements around the website, and to gather non-sensitive demographic information about our user base as a whole. We may receive reports based on the use of these technologies on an individual or aggregate basis. Further information is contained below.
Analytics & Log Files
As is true of most websites, we gather certain information automatically and store it in log files. When you visit our websites, we automatically collect the following types of information: information about the device you use to access the Internet (such as the internet protocol (IP) address, internet service provider (ISP) or mobile carrier, proxy server, device type, browser and add-ons, and operating system), referring/exit pages, date/time stamps, information on your shopping behavior on our website (e.g., page views, paths you take through our websites, etc.), general geographic location information (e.g., country or city) that shows where you are when browsing our websites, and search terms that you enter to reach our websites or enter on our websites to find products. We utilize analytics services and log files to help us track the efficacy of our website, help us learn more about our customers' and visitors' shopping behavior, and for troubleshooting and maintenance purposes. We may collect and summarize customer and visitor information in a non-personal, aggregate format for statistical and research purposes.
Cookies, Web Beacons, and Other Similar Technologies
Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
_session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).
_shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits
_shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.
cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
Third parties with whom we may partner with to provide certain features on our website may use HTML5 Local Stored Objects (also known as LSO's), to collect and store information. Various browsers may offer their own management tools for removing HTML5.
We automatically collect aggregate anonymous information through web beacons. We may also deliver a file to you through the Sites (known as a "web beacon") from an advertising network with which we have contracted. Web beacons allow advertising networks to provide anonymized, aggregated auditing, research and reporting for us and for advertisers.
Third-party advertising companies serve ads on our behalf across the Internet. They may collect anonymous information about you through cookies and/or web beacons on our site and other sites, and then display targeted ads on various sites that you visit. If you wish to not have this information used for the purpose of serving you interest-based ads, you may opt-out by emailing us at email@example.com. Please note this does not opt you out of being served ads. You will continue to receive generic ads, or, to opt out of third-party advertising or analytics, please see section "Your Choices" below.
Social Media Features
Our Site may include social media features, such as the Facebook "Like" button and widgets, the "share this" widget, or interactive mini-programs that run on our site. These features may collect your IP address, which page you are visiting on our Site, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our site. Your interactions with these features are governed by the privacy statement of the company providing it.
If you return products that may contain stored or recorded personal information, like computers, game consoles, etc., you are responsible for deleting or removing all personal information and media from your product before you return it. We are not responsible for any personal information or media that you do not delete or remove from such product.
HOW YOUR DATA IS USED
How We Use Your Data
We use your data to provide, support, personalize and develop our Services. How we use your personal information will depend on which Services you use, how you use those Services and the choices you make in your settings. We use the information that we have about you to provide and personalize, including with the help of automated systems and inferences we make, our Services (including ads) so that they can be more relevant and useful to you and others. When providing direct services, advertising or marketing, or performing security, administrative, or customer service activities, we may use the information we collect in the following manner, including without limitation, to:
Providing Direct Services
- complete a sales transaction, including to process and track website orders;
- provide products and services that you request;
- place pre-orders on your behalf;
- enable subscription services or activations, like online games or downloadable content; and/or administer rebates or extended service agreements.
Advertising and Marketing
- send you email updates, newsletters, promotions, surveys, and direct mailings;
- manage your participation in events and sweepstakes;
- communicate with you about our products and services, and to customize our communications with you, including by identifying preferences you provide to us;
- analyze your purchases and preferences to better understand your product and service needs and eligibility and to tailor our online content to you;
- share your Wish List with those whose email addresses you provide for the sole purpose of completing your request;
- publish customer testimonials or photos;
- analyze our marketing strategies and trends regarding your use of our website or social media channels;
- facilitate your acceptance of offers made by our third-party marketing partners;
- improve the effectiveness of our marketing campaigns; and/or
- to send follow-up communications thanking your for your business or inquiring as to your satisfaction.
- register and manage your account;
- administer our loyalty program;
- track the efficacy of our website and help us learn more about our visitors' and customers' shopping behavior; and/or
- improve our website experience.
- protect against error, fraud, unauthorized transactions, claims and other liabilities;
- manage exposure to risk from unauthorized users;
- comply with applicable legal mandates, our policies, or industry standards.
Customer Service Activities
- provide customer service when you need help and/or to improve customer experiences;
- provide status updates on your order;
- provide information concerning product recalls or products you have purchased; and/or
- enable you to communicate with us through social networks or other interactive media.
HOW WE SHARE YOUR DATA
If you accept an offer from any of our third-party marketing partners, we will share your contact and billing information with that specific third party, in accordance with the terms of the offer. If you have previously requested that your personal information not be shared with third parties, but then later consent by accepting a third-party marketing offer available through one of our websites, we will share your contact and billing information with that specific third-party, in accordance with the terms of the offer.
Direct Marketing and Do Not Track Signals
We do not share personal data with third parties for their direct marketing purposes without your permission.
In the event we become aware that the security of the site has been compromised or users' personal information has been disclosed to unrelated third parties as a result of external activity, including, but not limited to, security attacks or fraud, we reserve the right to take reasonably appropriate measures, including, but not limited to, investigation and reporting, as well as notification to and cooperation with data protection and law enforcement authorities. If we learn of a security system’s breach, we may attempt to notify you electronically by posting a notice on the site or sending an e-mail to you. You may have a legal right to receive this notice in writing.
Sale or Transfer of Business or Assets
We may need to share your data when we believe it's required by law or to help protect the rights and safety of you, us or others. It is possible that we will need to disclose information about you when required by law, subpoena, or other legal process or if we have a good faith belief that disclosure is reasonably necessary to (1) investigate, prevent, or take action regarding suspected or actual illegal activities or to assist government enforcement agencies; (2) enforce our agreements with you, (3) investigate and defend ourselves against any third-party claims or allegations; or (4) protect the security or integrity of our Service. We attempt to notify customers about legal demands for their personal data when appropriate in our judgment, unless prohibited by law or court order, or when the request is an emergency. We may dispute such demands when we believe, in our discretion, that the requests are overbroad, vague or lack proper authority, but we do not promise to challenge every demand.
Cross-Border Data Transfers
The vast majority of your data that we process or store is kept within the United States. However, to provide you with certain Services, we may share your information with processors outside of the US.
For EU Citizens: When we process data outside of the US, we rely on legally-provided mechanisms to transfer data across borders because countries where we process data may have laws which are different, and potentially not as protective, as the laws of your own country. In this regard, we will continue to use European Commission-approved Standard Contractual Clauses as a legal mechanism for data transfers from the EU, which remain an approved method of transferring data outside of the EU under the General Data Protection Regulation. You may request a copy of the Standard Contractual Clauses by contacting us at firstname.lastname@example.org.
Unless explicitly stated otherwise, 3Dio, LLC is the controller of your personal data provided to, or collected by or for, or processed in connection with our Services.
Rights to access and control your personal information
We provide many choices about the collection, use and sharing of your data, from deleting or correcting data you include in your profile to advertising opt-outs and communication controls.
If you have registered for an account, you can access, review and manage many changes yourself via the customer Dashboard. Within the Dashboard, you can do things like update your profile information and change your communication preferences.
If you have not registered for an account, or the information you are seeking is not available within the customer Dashboard, you can contact us at email@example.com or via mail at: 7720 NE Hwy 99, Suite D429, Vancouver, WA, 98665, USA.
For personal information that we have about you, you can request the following:
Delete Data: You can ask us to erase or delete all or some of your personal data (provided it is no longer necessary for legal purposes or to provide Services to you).
Change or Correct Data: If you have created an account on our website, you can edit some of your personal data through the Customer Dashboard. You can also ask us to change, update or fix your data in certain cases, particularly if it's inaccurate.
Object to, or Limit or Restrict, Use of Data: You can ask us to stop using all or some of your personal data (e.g., if we have no legal right to keep using it) or to limit our use of it (e.g., your personal data is inaccurate or unlawfully held).
EU Citizens: Right to Access and/or Take Your Data: you may contact our Data Protection Officer at firstname.lastname@example.org to request a copy of your personal data and can ask for a copy of personal data be provided in machine-readable form. You can also ask to review any of the information that we have retained, how we have used it, and to whom we have disclosed it at any time by contacting us.
EU Citizens: Right to Lodge a Complaint: the Irish Data Protection Commissioner. You have the right to lodge a complaint with your local supervisory authority or 3Dio's lead supervisory authority, the Data Protection Commission (DPC). For more information on how to contact the DPC or lodge a complaint, please visit https://www.dataprotection.ie/docs/Contact-us/b/11.htm.
Opting out of communications
We offer you choices about how to manage how we communicate with you.
You may opt out of receiving marketing emails from us at any time by sending an email to email@example.com or by clicking on the unsubscribe link in our emails. You will continue to receive service-related emails (e.g. order status). To opt out of direct mail, please send your request to firstname.lastname@example.org and include your postal address in the body of the email.
If you do not want information about your activity on our sites to be used for tailored advertising, please visit the opt-out page hosted by the Network Advertising Initiative and follow the instructions there.
You may disable cookies in your Web browser but doing so will impact the usability of the website. We may also use technologies, such as our own cookies, to provide you with personalized online display advertising tailored to your interests. To opt out of our cookies used for this online advertising, email us at email@example.com.
You may opt-out of Google Analytics by following this link. You may opt-out of Adobe analytics by following this link.
Updating Your Profile
You may update or correct your personal information related to your account through your Dashboard or by contacting Customer Care at firstname.lastname@example.org. If you wish to request deletion of your personal information, then please contact us at email@example.com. We will respond to requests within a reasonable timeframe. We retain and use your information as necessary to comply with our legal obligations, contractual statute of limitations, resolution of disputes, and enforcement of our agreements. Please note that we may not be able to delete all of your data upon request depending on the reasons above and the nature of your interactions.
From time to time, we may provide you the opportunity to participate in contests, sweepstakes, surveys and/or other promotions on our website. If you participate, we will request certain personal information from you. Participation in these contests, sweepstakes, surveys and/or promotions is completely voluntary, and you therefore have a choice about whether or not to disclose this information. We may use a third-party service provider to conduct these surveys or contests; in those cases, that company will be prohibited from using our users' personally identifiable information for any other purpose. We will not share the personal data you provide through a contest, sweepstakes, survey and/or promotion with other third parties unless we give you prior notice and choice.
Gift Card Recipients
Your gift card recipient may contact us at firstname.lastname@example.org to request an update, correction or deletion of their personal information. Again, for various reasons stated above, we may not be able to delete information upon request.
Data retention and account closure
If you wish to close your account, we will keep some of your data even after you close your account. We retain your personal data even after you have closed your account if reasonably necessary to comply with our legal obligations (including law enforcement requests), meet regulatory requirements, resolve disputes, maintain security, prevent fraud and abuse, enforce our Terms and Conditions, or fulfill your request to "unsubscribe" from further messages from us. We will retain de-personalized information after your account has been closed but will destroy your personal data when it is no longer needed for the foregoing purposes, or we remove your personal information to render it anonymous.
HOW WE PROTECT YOUR DATA
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. We monitor for and try to prevent security breaches. We implement appropriate security safeguards designed to protect your data. For example, electronic records are stored in secure, limited-access servers; electronic data is stored behind secured encryption access; we use technological tools like firewalls and passwords; and we ensure our employees are trained on the importance of maintaining the security and confidentiality of personal information. We regularly monitor our systems for possible vulnerabilities and attacks, however, we cannot warrant the security of any information that you send us. There is no guarantee that data may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, organizational, or managerial safeguards.
Our website uses encryption technology, such as Secure Sockets Layer ("SSL"), to protect your personal information during data transport. SSL encrypts ordering information such as your name, address, and credit card number. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
Choosing a Password
When you register as a user and create an online account on our website, you will be prompted to select a personal password. To maximize your level of protection, you should choose a strong personal password, which means that you should use at least 6 characters including a combination of both letters and numbers. You are solely responsible for maintaining the secrecy of your password and any account information. We will never send an unsolicited communication asking you for your password.
Lawful Bases for Processing
We will only collect and process personal data about you where we have a lawful basis to do so. Lawful bases include consent (where you have given it), contractual necessity (where processing is necessary for the performance of a contract with you (e.g., to deliver Services you have requested)), and legitimate interests. Where we process data based on consent, we will ask for your explicit affirmative consent. We will rely on legitimate interests as a basis for data processing only where the processing of your data is not overridden by your interests or fundamental rights and freedoms.
At any time, you can withdraw consent you have provided by managing your Dashboard or by contacting us at email@example.com or mailing us at 7720 NE Hwy 99, Suite D429, Vancouver, WA, 98665, USA, but that will not affect the lawfulness of the processing of your personal data prior to such withdrawal. Where we rely on legitimate interests, you have the right to object.
Our website is not intended for use by anyone under the age of 13. If you are under 13, please do not attempt to create an account or send any information about yourself to us, including your name, address, telephone number or email address. No one under the age of 13 may provide any personal information to us, and we do not knowingly collect personal information from anyone under the age of 13. If we learn that we have collected personal information from a child under age 13 without verification of parental consent, we will delete that information as quickly as possible. If you believe that we might have any information from or about a child under the age of 13, please contact us immediately at firstname.lastname@example.org
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).
How to Contact Us
If you have questions about how we collect, store and use personal data, please contact us at the following:
7720 NE Hwy. 99, Suite D429
Vancouver, WA 98665
Please remember that email sent over the Internet is not secure. If you send an email directly to us from your own email account, the contents will not be encrypted. Do not send sensitive information (like a credit card number) to us via unencrypted email. We are not responsible for any transmission by you of any personal information over the Internet.
Last Modified: March 4, 2019