ARTICLE 1 – PERSONAL INFORMATION COLLECTED

When you make a purchase on our store, as part of our buying and selling process, we collect the personal information you provide to us, such as your name, address, and email address.

When you browse our store, we also automatically receive your computer’s Internet Protocol (IP) address, which allows us to obtain more details about the browser and operating system you are using.

Email marketing (if applicable):
With your permission, we may send you emails about our store, new products, and other updates.

Vital Tea has updated its Privacy Policy in accordance with applicable regulations, including Regulation (EU) 2016/679 of April 27, 2016 (“GDPR”) and French Law No. 78-17 of January 6, 1978, as amended, relating to information technology, data files, and civil liberties (“French Data Protection Act”), as well as its implementing decree.

ARTICLE 2 – CONSENT

How do you obtain my consent?
When you provide us with your personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery, or return a purchase, we imply that you consent to our collecting your information and using it for that specific purpose only.

If we ask for your personal information for a secondary reason, such as marketing, we will either ask you directly for your explicit consent or provide you with an opportunity to refuse.

How can I withdraw my consent?
If after giving us your consent you change your mind and no longer agree to us contacting you, collecting your information, or disclosing it, you may notify us by contacting us at contact@vitaltea.com 

ARTICLE 3 – DISCLOSURE

We may disclose your personal information if we are required by law to do so or if you violate our Terms and Conditions of Sale and Use.

ARTICLE 4 – SHOPIFY

Our store is hosted on OVH.com, and Shopify Inc. provides us with the online e-commerce platform that allows us to sell our products and services to you.

Your data is stored through Shopify’s data storage, databases, and the general Shopify application. Your data is stored on a secure server protected by a firewall.

Payment:
If you choose a direct payment gateway to complete your purchase, Shopify will store your credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Purchase transaction information is retained only as long as necessary to complete your order. Once your purchase is complete, the transaction information is deleted.

All direct payment gateways comply with PCI-DSS standards, which are managed by the PCI Security Standards Council — a joint effort of companies such as Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

ARTICLE 5 – THIRD-PARTY SERVICES

In general, the third-party providers we use will only collect, use, and disclose your information to the extent necessary to perform the services they provide to us.

However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase-related transactions.

For these providers, we recommend that you carefully read their privacy policies so that you can understand how they will handle your personal information.

Please note that some providers may be located in, or have facilities located in, a different jurisdiction than yours or ours. Therefore, if you choose to proceed with a transaction that involves the services of a third-party provider, your information may be subject to the laws of the jurisdiction in which that provider or its facilities are located.

For example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, your information used to complete the transaction may be disclosed under United States legislation, including the Patriot Act.

Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or by our Terms and Conditions of Sale and Use.

Links
You may be directed away from our website by clicking on certain links on our site. We are not responsible for the privacy practices of such other sites and encourage you to read their privacy policies carefully.

ARTICLE 6 – SECURITY

To protect your personal data, we take reasonable precautions and follow industry best practices to ensure it is not lost, misused, accessed, disclosed, altered, or destroyed inappropriately.

If you provide us with your credit card information, it is encrypted using Secure Socket Layer (SSL) technology and stored with AES-256 encryption. While no method of transmission over the Internet or electronic storage is 100% secure, we comply with all PCI-DSS requirements and implement additional industry-recognized security standards.

COOKIES

Below is a list of cookies that we use. We have listed them here so that you can choose whether you want to allow them or not.

_session_id: unique session identifier, allows Shopify to store information about your session (referrer, landing page, etc.).

_shopify_visit: no data held, persists for 30 minutes from the last visit. Used by our website provider’s internal statistics tracking system to record the number of visits.

_shopify_uniq: no data held, expires at midnight (depending on the visitor’s location) on the following day. Calculates the number of visits to a store by a single customer.

cart: unique identifier, persists for 2 weeks, stores information about your shopping cart.

_secure_session_id: unique session identifier.

storefront_digest: unique identifier, indefinite if the store has a password; it is used to determine whether the current visitor has access.

ARTICLE 7 – AGE OF CONSENT

By using this website, you represent that you are at least the age of majority in your state or province of residence, and that you have given us your consent to allow any of your minor dependents to use this website.

ARTICLE 8 – CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this Privacy Policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website.

If we make material changes to the content of this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.

If our store is acquired by or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.

TEXT MARKETING NOTIFICATIONS

By subscribing to Aston Concept SMS notifications, you agree to receive automated marketing text messages from us regarding our products and services at the phone number you provided at the time of subscription. Messages may be sent using an automatic telephone dialing system or other technology. Message frequency is recurring.

Consent is not a condition of purchase. Message and data rates may apply.

Reply STOP, END, CANCEL, UNSUBSCRIBE, or QUIT to opt out, and HELP for customer support. You may receive an additional text message confirming your opt-out request.

You understand and agree that attempting to opt out by any means other than texting the opt-out commands listed above is not a reasonable method of opting out.

QUESTIONS AND CONTACT INFORMATION

If you would like to access, correct, amend, or delete any personal information we have about you, file a complaint, or simply obtain more information, please contact our Privacy Compliance Officer at contact@vitaltea.com