What personal information do we collect from the people that visit our blog, social media channels, website or app (collectively “Website”)?
When ordering or registering on our Website, as appropriate, you may be asked to enter your name, email address, mailing address, phone number, credit card information or other details to help you with your experience. You may also be asked to create a username and password to access private customer forum areas.
Our lawful basis for collecting personal information from you is to provide our services and to communicate with you through your consent when you register with us. Our collection of personal information from you is limited to information that we require in order to provide our services to you.
When do we collect information?
We collect information from you when you register on our Website, place an order, subscribe to a newsletter or enter information on our Website.
How do we use your information?
We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, access the private forum area, respond to a survey or marketing communication, surf the Website, or use certain other Website features in the following ways:
To quickly process your transactions.
To send periodic emails regarding your order or other products and services.
If you live in the EU and are subject to the General Data Protection Regulation (GDPR), you have the right to edit, update, access, or transfer your personal information, or to delete your personal information if you are terminating your registration with us.
How do we protect visitor information?
Our Website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our Website as safe as possible.
We use regular Malware Scanning.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/payment information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information and we ensure that any third-party services that we use to store your personal information have privacy policies and security measures that are consistent with this policy.
All transactions are processed through a gateway provider and are not stored or processed on our servers.
Do we use ‘cookies’?
• Help remember and process the items in the shopping cart.
• Understand and save user’s preferences for future visits.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser (like Internet Explorer) settings. Each browser is a little different, so look at your browser’s Help menu to learn the correct way to modify your cookies.
If users disable cookies in their browser:
If you disable cookies off, some features will be disabled It will turn off some of the features that make your Website experience more efficient and some of our services will not function properly.
However, you can still place orders by contacting customer service.
Third Party Disclosure
We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information unless we provide you with advance notice. This does not include website hosting partners and other parties who assist us in operating our Website, conducting our business, or servicing you, so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law, enforce our Website policies, or protect ours or others’ rights, property, or safety.
However, non-personally identifiable aggregate visitor information that does not include any personal information may be provided to other parties for marketing, advertising, or other uses.
We do not have any responsibility for personal information that you share or disclose with other users through any private forum area that we make available on the Website or through any other means. You are entirely and solely responsible for any information that you disclose or share with other users through the private forum areas or by other means. We strongly recommend that you use caution in sharing personal information in any private forum area or otherwise.
Third party links
Occasionally, at our discretion, we may include or offer third party products or services on our Website. These third party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our Website and welcome any feedback about these sites.
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en
We have not enabled Google AdSense on our Website but we may do so in the future.
California Online Privacy Protection Act
According to CalOPPA we agree to the following:
Users can visit our Website anonymously
Users are able to change their personal information:
• By logging in to their account
How does our Website handle do not track signals?
We honor do not track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our Website allow third party behavioral tracking?
It’s also important to note that we do not allow third party behavioral tracking
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not specifically market to children under 13 and we do not allow minors to order or register on our Website without permission from a parent or guardian.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify the users via email
• Within 7 business days
We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act and CASL (Canadian Anti-Spam Law)
The CAN-SPAM Act (United States) and CASL (Canada) are laws that establish rules for sending commercial email, including the contents of commercial email, and they provide recipients with the right to unsubscribe from receiving emails.
In compliance with these laws, we will only send you commercial emails if you agree to receive them and we include a prominent unsubscribe option in all of our electronic communications. You can also email us at any time and we will promptly remove you from ALL correspondence.
Red Leaf Studios Inc.
PO Box 318
Chemainus, BC V0R1K0
Last Edited on 2018-11-07