SECTION 1 - INTRODUCTION
Welcome to Catchbox!
We care a great deal about your private information and worked really hard to prepare for the new EU GDPR directive taking force as of May 25th, 2018. If you have any questions regarding your private information and our compliance with the new directive, drop us a line at [email protected]
SECTION 2 - INFORMATION THAT WE COLLECT
When you browse our store we receive your computer’s internet protocol (IP) address in order to provide you with better shopping experience and to understand the region where you are based, currency of the online store and shipping method as well as to detect fraudulent cases. We also receive your browser and operating system information, which helps us to detect problems with our website and fix the issues.
When you start a purchase from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address, company name, VAT number (if applicable), phone number, and email address. Personal Data also includes other information, such as geographic area or preferences, when any such information is linked to information that identifies a specific individual.
You may provide us with personal data in various other ways. For example, when you register for an account, start a support chat or request a download from the website. You might also upload your private picture via our cover customization tool. All uploads are stored with Cloudinary service and are used solely to provide cover customization service.
Name, address, and phone number are collected to be able to provide fast and reliable shipping services. We use international shipping courier services that require shipping address, the name of the person who receives the product and phone number to be able to contact the receiver to arrange delivery or to reschedule if necessary. Additionally, Catchbox operates under Latvian laws and the US laws and the private person name or company name, residential or business address, as well as VAT number of business customers, are required by local accounting law principles.
We also perform Email marketing. Only with your permission, we may send you emails about our store, new products, and other updates. To be able to receive exciting product news, special promotions and campaigns you have to opt-in for email marketing by clicking the checkbox during the checkout process.
SECTION 3 - CONSENT
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, in the US, Canada and Australia store we imply that you give your consent to the collection and use of the information for that specific reason only, while in EU/Global store we specifically ask for your explicit consent to send your private information to us.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at [email protected]
SECTION 4 - DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 5 - Opencart
Our store based on Opencart platform is hosted on DigitalOcean. This allows us to sell our products and services to you.
Your data is stored through Opencart data storage, databases and the general Opencart application. All your data is stored on a secure server behind a firewall.
Payment: If you choose a direct payment gateway to complete your purchase, then payment gateways Braintree or Checkout.com (depending on the region) stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS).
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
SECTION 6 - THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. We may send your private information to third-party services only to improve the service we provide to you. We have done our best to the possible extent to work only with secure third-party services and have conducted data processing agreements with services who collect private information.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions. For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Germany and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When you click on the links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
Statistics and Analytics:
Our store uses analytics tools to help us learn about who visits our site and what pages are being looked at. For example, we use Google Analytics. The data collected by Google Analytics is mostly anonymous traffic data that is collected to provide us an overview of how users are accessing and browsing Catchbox website. Apart from IP address that is used to determine approximate location to provide better shopping experience, we do not use profiling or gather any private information through Google analytics.
SECTION 7 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information or sensitive information (e.g. login credentials), the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. We follow all PCI-DSS requirements and implement additional generally accepted industry standards.
Catchbox is concerned with protecting your privacy and data, but we cannot ensure or warrant the security of any information you transmit to Catchbox or guarantee that your information on the Catchbox may not be accessed, disclosed, altered or destroyed by breach of any of our industry standard physical, technical or managerial safeguards. No method of transmission over the Internet or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security.
SECTION 8 - AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
SECTION 9 - ACCESS TO INFORMATION
You have the right to request access to the information that we have on you as well as the right to request us to erase the specific information. You can do this by contacting us at [email protected]. Please note that some information has to be stored for at least three years from the moment of purchase due to legal requirements of our local jurisdiction.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact us at [email protected].