Privacy Statement Yoni
25 May 2018
Just like your menstruation, we take your privacy bloody seriously. We therefore are compliant with the updated privacy law (GDPR). This means we protect your data and handle it with care. In the below privacy statement we explain what we exactly do with your personal data, which we gather from our webshop www.yoni.care.
For questions or more information please contact firstname.lastname@example.org.
During the processing we conform to the requirements of the applicable data protection legislation. This means we:
- clearly specify our purposes before we process personal data, by using this Privacy Statement;
- limit our collection of personal data to only the personal data needed for legitimate purposes;
- first ask for explicit permission to process your personal data in cases where your permission is required;
- take appropriate security measures to protect your personal data and we demand the same from parties who process personal data on our behalf;
- respect your right to inspect, correct or delete your personal data held by us.
Yoni is the party responsible for all data processing. In this privacy statement, we will explain which personal data we collect and for which purposes. We recommend that you read it carefully.
Handling your order
We will use your personal data when handling your order. We may share your data with the delivery service to have your order delivered. We may also obtain information on your payment from your bank or credit card company.
For this purpose, we use your payment details, phone number, invoice address, email address and name and address details. We need this data because of our agreement with you. We store this information for six months after your order has been completed and seven years thereafter (the legal retention period).
Providing to Third Parties
We collaborate with other organisations, that may receive your personal data.
To handle your orders, we work together with:
- Our logistic partner Make or Buy
- Our payment providers Adyen and Paypal
Other than the advertisements on the website, we can inform you about new products or services:
- by e-mail
- via social media
You can object at all times against this promotional communication. Every e-mail contains an email address which you can use to tell us you no longer want to receive our communication. On social media, you can block us.
If necessary, we may collect your location data (GPS). If that is the case, you will be asked to grant consent beforehand.
This location data and other data can also be stored and processed by the provider of the navigation/mapping software, such as Google Maps, but the data could also be used by, for example, Google or Apple itself. We have no control over their actions. We recommend that you read the applicable privacy statement of the provider in question.
Providing Data to Third Parties
Except for the parties mentioned above, we do not under any circumstance provide your personal data to other companies or organisations, unless we are required so by law (for example, when the police demands access to personal data in case of a suspected crime).
Our website features social media buttons. These buttons are used by the providers of these services to collect your personal data.
We keep statistics on the use of our web shop. We use these statistics to improve our web shop or show you relevant information. By combining your personal information, we can send you more targeted information. We use your email address for this, based on your consent. This information is kept for 1 year. We will respect your privacy at all times, however if you don’t want us to use this information please let us know.
The first time you visit our web shop, we will show you a notification explaining our cookies and ask for your permission for the use of these cookies.
We use Google Analytics to track visitors on our website and to get reports about how visitors use the website. We accepted the data processing agreement from Google. We do allow Google to use information obtained by Analytics for other Google services, and we don’t anonymize the IP-addresses.
We take security measures to reduce misuse of and unauthorised access to personal data. We take the following measures in particular:
- Access to personal data requires the use of a user name and password
- We make use of secure connections (Secure Sockets Layer of SSL) to encrypt all information between you and our website when entering your personal data
Changes to this Privacy Statement
We reserve the right to modify this statement. We recommend that you consult this statement on a regular basis, so that you remain informed of any changes.
Inspection and Modification of your Data
You have the following right:
- Being informed on which personal data we have and what we are using it for;
- Inspection of the personal data that we keep from you;
- Having incorrect data corrected;
- Request to delete outdated personal data;
- Revoke your consent;
- Object to certain uses.
Please note that you always make clear who you are, so that we can assure that we do not modify or remove the data from the wrong person.
If you think that we are not helping you in the right way, you have the right to lodge a complaint at the authority. For The Netherlands, this is the Autoriteit Persoonsgegevens.