When you purchase something from our store, as part of the buying and selling process, we collect the personal information you provide us, such as your name, address, and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address to provide us with information that helps us learn about your browser and operating system.
Email Marketing (if applicable): With your permission, we may send you emails about our store, new products, and other updates.
CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery, or return a purchase, it implies that you consent to our collecting and using it for that specific reason only.
If we ask for your personal information for a secondary reason, such as marketing, we will either ask you directly for your express consent or provide you with an opportunity to say no.
How do I withdraw my consent?
If, after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use, or disclosure of your information, at any time by contacting us at hello@spicathebrand.com.
DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
WOOCOMMERCE
Our store is made with WooCommerce by Automattic. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data are stored on dadicated web server located in Germany be Hetzner. Hetzner stores your data on a secure server behind a firewall.
Payment:
If you choose a direct payment gateway to complete your purchase, then the eShop stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express, and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use, and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their privacy policies regarding the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.