Green Mountain Diapers is hosted on Shopify Plus, a strong name in online shopping.
SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.
SECTION 2 - CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at firstname.lastname@example.org or mailing us at:
Green Mountain Diapers
74 Cotton Mill HL Suite A220
Brattleboro, VT 05301
SECTION 3 - DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 - SHOPIFY
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
SECTION 5 - THIRD-PARTY SERVICES
In general, the third-party providers used by us (example: PayPal) will collect, use and disclose your information to the extent necessary to allow them to perform the services they provide.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
SECTION 5: INFORMATION COLLECTION, USE AND SHARING
We may occasionally hire other companies to provide limited services on our behalf, such as handling the processing and delivery of mailings, providing customer support, hosting websites, processing transactions, or performing statistical analysis of our services and use of our website and services by you and other users. Those service providers will be permitted to obtain only the personal information they need to deliver the service. They are required to maintain the confidentiality of the information and are prohibited from using it for any other purpose. However, some of our third-party vendors may use anonymized aggregate data to improve their services. For example, with regard to credit card processing services, our fraud detection vendors may use aggregate data to help them more accurately detect fraudulent uses of credit cards. We may access or disclose information about you, including the content of your communications, in order to: (a) comply with the law or respond to lawful requests or legal process; (b) protect the rights or property of Green Mountain Diapers or our customers, including the enforcement of our agreements or policies governing your use of the services; or (c) act on a good faith belief that such access or disclosure is necessary to protect the personal safety of Green Mountain Diapers’ employees, customers, or the public. We may also disclose personal information as part of a corporate transaction such as a merger or sale of assets.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECTION 6 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 - COOKIES
Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
_session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).
_shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits
_shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.
cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
A cookie is a piece of data stored on a site visitor's hard drive to help us improve your access to our site and identify repeat visitors to our site. Cookies can enable us to track and target the interests of our users to enhance the experience on our site. Usage of a cookie is in no way linked to any personally identifiable information on our site.
HOW TO MANAGE COOKIES
HOW WE NOTIFY YOU OF CHANGES TO THIS COOKIE NOTICE
We periodically update this Cookie Notice to account for changed legal and operational circumstances, to describe new cookies and tracking technologies, and to describe how those changes affect our use of your information. We encourage you to review this Cookie and Privacy Notice each time you use our Services. If we are going to use information in a manner that is materially different from that stated at the time of collection or make any material changes in our privacy practices, we will notify you. We will post those changes through a prominent notice on our website. If you do not agree to the changes made to this Cookie Notice, we recommend that you stop using our services or disable your cookies.
We do not sell or market to the EU, Canada or any countries outside of the USA. We ship to USA addresses only and our website is intended for a USA audience, yet we offer GDPR compliance resources for convenience.
Our GDPR Compliance Resources are accessed by sending an email to email@example.com. Please utilize this email for any GDPR related requests.
Our CCPA Compliance Resources are accessed by sending an email to firstname.lastname@example.org Please utilize this email for any CCPA related requests.
SECTION 8 - COMMUNICATION PREFERENCES
You can stop the delivery of future promotional materials from Green Mountain Diapers sites and services by following the specific instructions in the materials you receive (e.g., by clicking the “Unsubscribe” or “Safe Unsubscribe” links at the bottom of the bottom of the message) or by contacting us via e-mail at email@example.com.
This choice does not apply to the display of online advertising. Nor does it apply to the receipt of mandatory service communications that are considered part of certain Green Mountain Diapers services, which you may receive.
SECTION 9 - CONTESTS
We periodically offer Giveaway Contests through Rafflecopter. Participation is voluntary and you may choose whether or not to participate and therefore disclose information. Information requested may include contact information. Terms of the Rafflecopter Giveaways are available on Rafflecopter’s website linked through the giveaway page and includes remarketing information. You may receive marketing from us after participating in the giveaway. Please do not participate of you do not agree to the terms and conditions stated on the Rafflecopter giveaway. Contact information will be used to notify the winners and award prizes.
SECTION 10 - AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.