Privacy policy

CiaraCode Shop AS (“Ciara”, "us", "we", or "our"), legally based in Norway at the address Mailbox 255, 1319 Bekkestua, is responsible for this privacy policy.

In this privacy policy we inform you on how cookies are collected, processed and stored and for what purposes this is done.

In this privacy policy you will also find information about your rights with regard to your data and how you can make use of those rights.

This privacy policy has been compiled to better serve those who are concerned with how their 'Personally Identifiable Information' (PII) is being used online. PII, as described in EU and US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.

The privacy policy may at times be edited, because of legislative changes for example. It is therefore advised to consult this privacy policy periodically. This privacy policy has lastly been updated on 27 February 2020.

 

Personal Data that we process

When registering or ordering on our website, as appropriate, you may be asked to enter Personal Data.  

Personal Data means any information which relates to an identifiable person. It means information relating to that person or a combination of information which, if put together, means that the person can be identified.

The following Personal Data is processed by Ciara:

  • First and last name 
  • E-mail address
  • Bank account details 
  • Size Details
  • Other personal data that you actively provide for example when registering, placing an order, subscribing to a newsletter, responding to a survey, filling out a form, using Live Chat, opening a Support Ticket or providing us with feedback on our products or services 

In addition, we collect the Internet protocol (IP) address used to connect your computer or mobile device to the Internet; as well as other connection information, like information about your (mobile) operating system, the type of Internet browser you use, unique device identifiers and other diagnostic data.

We also use software tools, Google Analytics and Matomo Analytics to measure and collect session information, like the length of your visit to our website, page response times, page interaction information and methods used to browse away from the page. 

For what purpose and on what basis we process Personal Data

We may use the Personal Data we collect from you in the following ways:

  • to be able to provide you with our products and services;
  • to personalize your experience and to allow us to deliver the type of content and product offerings in which you are most interested;
  • to improve our website in order to serve your wishes and needs better;
  • to allow us to respond to your questions, inquiries or requests in the most effective way;
  • we use your email address to process orders and to send (additional) information and updates pertaining or related to your purchase;
  • to administer a contest, promotion, survey or other site feature;
  • we use your bank account details to collect (direct debit) payments;
  • to quickly process your transactions;
  • to ask for ratings and reviews of services or products;
  • to keep track of your visits and previously exchanged messages;
  • we use your email address to add you to our mailing list or send other (marketing) emails;
  • we use server logs to secure the data on our servers;
  • to follow up after we have communicated with you (through live chat, email or phone inquiries).

We may use your email address for external marketing purposes. If we do so we will not use false or misleading subjects or email addresses. We will provide you with a link to unsubscribe from such emails at the bottom of the email. We will identify the message as an advertisement and include our physical address. If you no longer wish or to receive such messages from us, you can contact us using the contact details provided at the end of this privacy policy. We will make sure you will be unsubscribed of such emails as soon as possible. 

We do not process your personal data for other purposes and only with your explicit consent or for the implementation of the agreement that we have entered into with you.

Sharing of Personal Data with third parties

Only if this is necessary for the delivery of the services you have requested, will we share the information you provided to us with third parties.

We make use of gateway/payment providers in order to collect (direct debit) payments and part payments. 

We make use of shipping providers to take care of the shipping of the products for us.

We make use of third parties that take care of the hosting of the server as well as the hosting of the website.

We also use third parties who assist us in securing and operating our website. 

We may share Personal Data with the hosting party of our accounting system.

We may make use of a marketing and/or advertising platforms for the aforementioned marketing purposes. We will monitor such third-party marketing providers for compliance with this privacy policy.

We also make use of analytics platforms, Google Analytics and Matomo Analytics, that compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools for future use, which is further explained in our Cookie Policy. 

When we provide your data to a third party, we ensure through an agreement that your data is not used for any other purposes. In this agreement we also agree upon the fact  that your data will be deleted as soon as it is no longer needed.​

Other than that, we will not provide the information you provide to us to other parties, unless this is required by law.

How long we keep Personal Data

All of your Personal Data related payments are processed through a gateway provider and are not stored or processed on our servers.

Your other Personal Data will be stored by us for a longer period of time, but never longer than necessary for realizing the goal(s) for which the data was collected, unless we are required by law to keep your data longer than that.

 

Children under 16

We do not intend to collect data about visitors of website who are younger than 16 years of age, unless they have permission from parents or guardians. Since we cannot check whether a visitor is older than 16, we advise parents and guardians to be involved in the online activities of their children, to prevent that data about children is being collected without parental consent. In the event that you are under the impression that we have collected personal information about a minor without parental permission, please contact us via our contact details at the bottom of this page. We will then remove this information.

COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years old, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States' consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.

We do not specifically market to children under the age of 13 years old.

How we protect Personal Data

Ciara takes the protection of your data seriously and takes appropriate security measures to prevent abuse, loss, unauthorized access, unwanted disclosure and unauthorized changes. 

We implement a variety of security measures when a user of the website places an order enters, submits, or accesses their information to maintain the safety of your Personal Data.

Your Personal Data is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

Our website is scanned on a regular basis for malware, security holes and known vulnerabilities in order to make your visit to our site as safe as possible.

With the aforementioned third parties with whom we have closed an agreement we have also agreed upon the fact that they will take the necessary technical and organizational measures to protect the personal data.

In the event that a data breach should occur we will take responsive action and we will 

notify you if possible via email or in-site notification within 7 business days.

If you feel that your data is not properly protected or there are indications of abuse, please contact us via our contact details as stated at the bottom of this page.

California Online Privacy Protection Act
CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law's reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared. - See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf

According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
Once this privacy policy is created, we will add a link to it on our home page or as a minimum, on the first significant page after entering our website.
Our Privacy Policy link includes the word 'Privacy' and can easily be found on the page specified above.

You will be notified of any Privacy Policy changes:
       On our Privacy Policy Page
Can change your personal information:
       By emailing us
       By calling us
       By logging in to your account
       By chatting with us or by sending us a support ticket
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify you via email
       Within 7 business days
We will notify the users via in-site notification
       Within 7 business days

We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address in order to:
       Send information, respond to inquiries, and/or other requests or questions
       Process orders and to send information and updates pertaining to orders.
       Send you additional information related to your product and/or service
       Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.

To be in accordance with CANSPAM, we agree to the following:
       Not use false or misleading subjects or email addresses.
       Identify the message as an advertisement in some reasonable way.
       Include the physical address of our business or site headquarters.
       Monitor third-party email marketing services for compliance, if one is used.
       Honor opt-out/unsubscribe requests quickly.
       Allow users to unsubscribe by using the link at the bottom of each email.

If at any time you would like to unsubscribe from receiving future emails, you can email us at
       Follow the instructions at the bottom of each email.
and we will promptly remove you from ALL correspondence.

Third-party links

Our website may contain links to third-party websites. When you click on a link to any other website or location, you will leave our website and go to a third-party site, which may collect personal information or anonymous data from you. We have no control over, do not review, and are not responsible or liable for these outside websites or their content. Please be aware that the terms of this privacy policy do not apply to these third-party websites. The links we provide to third party websites or locations are for your convenience and do not signify our endorsement of such third parties or their products, content or websites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

Google AdSense

We use Google AdSense as a third-party vendor that advertises on our website. We have implemented several packages Google AdSense, including remarketing, Google Display Network Impression Reporting, Demographics and Interests Reporting

And DoubleClick Platform Integration. 

Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt Out page or by using the Google Analytics Opt Out Browser add on.

For more information on advertisements via Google and the policies that Google has for Google Ads, this is available online and accessible via: https://support.google.com/adwordspolicy/answer/1316548?hl=en.

Do we use 'cookies'?
Yes. Cookies are small files that a site or its service provider transfers to your computer's hard drive through your Web browser (if you allow) that enables the site's or service provider's systems to recognize your browser and capture and remember certain information. For instance, we use cookies to help us remember and process the items in your shopping cart. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.

We use cookies to:
       Help remember and process the items in the shopping cart.
       Understand and save user's preferences for future visits.
       Keep track of advertisements.
       Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since browser is a little different, look at your browser's Help Menu to learn the correct way to modify your cookies.

More information about our cookies can be found at our cookies page

If users disable cookies in their browser:
If you turn cookies off, Some of the features that make your site experience more efficient may not function properly.Some of the features that make your site experience more efficient and may not function properly.

Remove Cookies: 

View, modify or delete Personal Data

You have the right to access, correct and delete your Personal Data. In addition, you have the right to withdraw your possible consent for data processing or to object to the processing of your personal data by Ciara. You also have the right to data transferability. This means that you can submit a request to us to send the personal data that we hold about you in a computer file to you or another organization mentioned by you.

You can address such requests to the address at the bottom of this page. To ensure that the request has been made by you, we request that you send a copy of your proof of identity with the request, in which the passport photo, the numbers at the bottom of the passport, the identification number and social security number are made unreadable.

We will respond to your request as quickly as possible, in any case no later than within four weeks.

Questions and contact

For questions or remarks about the processing of your personal data or this privacy policy you can contact us via the following contact information:

CiaraCode Shop AS

Mailbox 255

1319, Bekkestua

Norway

Email: support@ciaracode.com

Phone: +47 64808081

Website: https://www.ciaracode.com