Villkor och information

Företagsinformation

Innehållet i denna webbutik tillhandahålls, uppdateras och hanteras av följande företag:

Papiljott AB
papiljotti.com
Organisationsnummer: 559350-3369
Telefonnummer: 0707402520
E-postadress: info@papiljotti.com

Papiljotti AB är personuppgiftsansvarig för de uppgifter du lämnar. Uppgifterna lagras säkert och skyddat i syfte att kunna fullgöra våra åtaganden gentemot kund samt i marknadsförings syfte.

Du kan när som helst ändra dina uppgifter genom att logga in på vår webbsida med det användarnamn och lösenord du erhållit. Du kan när du vill avsäga dig från nyhetsbrev och annan marknadsföring genom att kontakta kundtjänst eller avregistrera dig via länk i våra nyhetsbrev.

Som kund måste du uppge namn, organisationsnummer, adress, e-postadress, mobilnummer och telefonnummer. I samband med din registrering och beställning godkänner du att Papiljott lagrar och använder dina uppgifter för att kunna fullgöra transport, betalning och fakturering samt marknadsförings syfte.

Dina uppgifter kan lämnas vidare till våra logistik partners för att de ska kunna fullfölja sina åtaganden. I övrigt lämnas dina uppgifter inte ut till tredje part.

Du har alltid rätt att få ta del av den information som har registrerats. Om den är felaktig, ofullständig eller irrelevant kan du begära att informationen rättas. Du har alltid rätt att utan anledning begära att informationen raderas, då är det dock ej möjligt att kvarvara som kund hos Papiljott AB.

COOKIES
VAD ÄR EN COOKIE (KAKA)?

En cookie (eller kaka) är en liten textfil som webbplatsen du besöker begär att få spara på din dator. Kakor används på många webbplatser för att ge dig som besökare tillgång till olika funktioner. Informationen i kakan kan också användas för att följa ditt surfande på olika webbplatser som använder samma kaka.
Det finns två typer av kakor. Den ena typen sparar en fil under en längre tid på din dator, kakan har då ett utgångsdatum. Den används till exempel vid funktioner som talar om vad som är nytt sedan du som användare senast besökte den aktuella webbplatsen förra gången. När utgångsdatumet passerats raderas kakan automatiskt när du återkommer till den webbplats som skapade den.

Den andra typen av kakor kallas sessionskakor och saknar utgångsdatum. Under tiden du är inne och surfar på en sida, lagras den här kakan temporärt i din dators minne exempelvis för att hålla reda på vilket språk du har valt. Sessionskakor lagras inte under en längre tid på din dator, utan försvinner alltid när du stänger din webbläsare.

HUR ANVÄNDER PAPILJOTTI COOKIES?

papiljotti använder cookies för att du ska kunna logga in, lägga produkter i kundvagnen och för att du ska kunna beställa.
papiljotti använder även cookies från tredje part för att registrera trafik och sidvisningar för att skapa en ännu bättre webbplats för besökaren.

 

WooCommerce

Vi samlar in information om dig under kassaprocessen i vår butik.

Vad vi samlar in och lagrar

Medan du besöker vår webbplats, kommer vi att spåra:

  • Produkter som du har visat: vi använder detta för att exempelvis visa dig produkter som du nyligen har tittat på.
  • Platsinformation, IP-adress och webbläsartyp: vi använder detta för ändamål såsom momsberäkning och fraktkostnader
  • Leveransadress: vi ber dig ange detta så att vi, till exempel, kan beräkna frakt innan du beställer, och skicka dig beställningen!

Vi använder också cookies för att hålla reda på varukorgens innehåll medan du använder vår webbplats.

När du köper från oss, ber vi dig att ge oss information som innefattar ditt namn, faktureringsadress, leveransadress, e-postadress, telefonnummer, kreditkortsuppgifter/betalningsuppgifter och valfri kontoinformation såsom användarnamn och lösenord. Vi använder denna information för syften, såsom att:

  • Skicka information till dig om ditt konto och din beställning
  • Svara på dina frågor, inklusive återköp och klagomål
  • Behandla betalningar och förhindra bedrägerier
  • Konfigurera ditt konto för vår butik
  • Följa lagliga krav vi har, såsom momsberäkning
  • Förbättra vår butikserbjudanden
  • Skicka dig marknadsföringsmeddelanden, om du väljer att ta emot dem

Om du skapar ett konto kommer vi att lagra ditt namn, adress, e-postadress och telefonnummer, vilket kommer användas för att fylla i dina uppgifter i kassan för framtida beställningar.

Generellt lagrar vi bara information om dig så länge vi behöver informationen för de ändamål vilka vi samlar in och använder den, och så länge vi inte är juridiskt skyldiga att lagra den. Till exempel kommer vi att lagra beställningsinformation för gällande tidsperiod för skatte- och redovisningsändamål. Detta inkluderar ditt namn, e-postadress och fakturerings- och leveransadresser.

Vi lagrar även kommentarer eller recensioner, om du lämnar dessa.

Vilka i vårt team har tillgång

Medlemmar i vårt team har tillgång till informationen du ger oss. Till exempel, både administratörer och butiksägare har tillgång till:

  • Beställningsinformation som t.ex. vad som köptes, när det köptes och var det ska skickas, samt
  • Kundinformation såsom ditt namn, e-postadress samt fakturerings- och leveransinformation.

Vårt team har tillgång till denna information för att uppfylla beställningar, genomföra återbetalningar och tillhandahålla support.

Vad vi delar med andra

Vi delar information med tredje part som hjälper oss genomföra beställningar och lagra tjänster åt dig, till exempel —

Betalningar

Vi tar emot betalningar genom PayPal. När vi behandlar betalningar, kommer några av dina uppgifter att skickas till PayPal, inklusive information som krävs för att behandla eller ge support för betalningen, såsom köpets totalsumma och faktureringsinformation.

Se PayPals integritetspolicy för mer detaljer.

MailPoet nyhetsbrev och e-post

Om du prenumererar på vårt nyhetsbrev eller om du är medlem på vår hemsida (du kan logga in) eller om du har köpt något på vår hemsida, finns det en stor chans att du kommer att få e-post från oss.

Vi skickar endast e-post till dig som du har valt att ta emot, eller som avser de tjänster som vi tillhandahåller till dig.

För att skicka e-post till dig använder vi namnet och e-postadressen du ger oss. För att förhindra missbruk av systemet loggar vår webbplats även den IP-adress du använde när du anmälde dig till tjänsten.

Denna webbplats kan skicka e-post via MailPoets utskickstjänst. Denna tjänst gör det möjligt för oss att spåra öppningar och klick i våra e-postmeddelanden. Vi använder denna information för att förbättra innehållet i våra nyhetsbrev.

Ingen identifierbar information spåras annars utanför denna webbplats förutom e-postadressen.

MailPoet skapar och lagrar två cookies om du använder WooCommerce och MailPoet tillsammans. Dessa cookies är:

Cookie-namn: mailpoet_revenue_tracking
Giltighetstid för cookie: 14 dagar.
Beskrivning av cookie: Syftet med denna cookie är att spåra nyhetsbrev som skickas från din webbplats som förvärvar klick och efterföljande köp i din WooCommerce-butik.

Cookie-namn: mailpoet_abandoned_cart_tracking
Giltighetstid för cookie: 3 650 dagar.
Beskrivning av cookie: Syftet med denna cookie är att spåra användare som har övergett sin varukorg i din WooCommerce-butik, för att sedan kunna skicka dem ett nyhetsbrev om den övergivna varukorgen från MailPoet.

Obs: Användaren måste ha valt att prenumerera och vara en bekräftad prenumerant.

WooCommerce Product Bundles

Product Bundles does not collect, store or share any personal data.

Klarna Checkout for WooCommerce

När du lägger en beställning i butiken med Klarna Checkout som den valda betalningsmetoden skickas information om din beställning (namn, pris, mängd, SKU) till Klarna. När köpet är genomfört skickar Klarna leverans- och fakturaadress tillbaka till butiken. Dessa data, samt ett unikt ID för köpet sparas sedan som leverans- och fakturadata i ordern i WooCommerce.

Stripe

Global Privacy Policy — WorldwideSee here for our Summary of Updates

Welcome!

Stripe provides economic infrastructure for the internet. Businesses of all sizes use our software and services to accept payments and manage their businesses online. Stripe cares about the security and privacy of the personal data that is entrusted to us.

This policy describes the Personal Data that we collect, how we use and share it, your rights and choices, and how you can contact us about our privacy practices.

Stripe (“Stripe”, “we”, “our” or “us”) provides its services globally and the Stripe entity responsible for the collection and use of personal data under this Privacy Policy differs depending on your country.

We may collect and use personal data when we do business with you or when you do business with those that use our services. Some of our services may be accessed directly by you, including through our websites that reference this policy (e.g. stripe.com) (collectively “Sites”). Many of our services are provided to others in connection with their own business and activities, and you may engage with Stripe services as part of another’s service, such as when you make a payment to a merchant and we provide the payment processing services to that merchant through Stripe Checkout (collectively, we refer to Sites and direct and indirect services as “Services”). This policy applies to Stripe’s own Services. Websites, products and services of third-parties and some affiliates of Stripe are subject to their own separate privacy policies.

This Privacy Policy includes important information about your Personal Data and we encourage you to read it carefully. You can also use these links to jump to a specific section.

1. Overview

Stripe obtains Personal Data about you from various sources. “You” may be a visitor to one of our Sites (“Visitor”), a user of one or more of our Services (“User” or “Stripe User”), or a direct or indirect customer of a User (“Customer”). If you are a Customer, your agreement with the relevant Stripe User should explain how the Stripe User shares your Personal Data with Stripe. If you have questions about this sharing, then you should direct those questions to the Stripe User.

You can also visit Stripe Privacy Center for more information about our privacy practices.

Learn more

2. Personal Data We Collect

a. Personal Data that we collect about you

Personal Data is any information that relates to an identified or identifiable individual, and can include information about how you engage with our Services (e.g. device information, IP Address). In many cases, the Personal Data that you provide directly to us through our Services will be apparent from the context in which you provide the data:

  • When you register for a Stripe account on our Site we collect your full name, email address, and account log-in credentials.
  • When you fill-in our online form to contact our sales team, we ask for your name, contact information, country, and other information about your interest in our Services.
  • When you authorize us to store information about you in connection with Stripe Checkout, we collect your name and contact information and information about your stored payment methods (e.g. payment card number, CVC code and expiration date). Learn More.
  • When you submit your ID and/or a “Selfie” for purposes of verification. Learn More.
  • When you respond to Stripe emails or surveys, we collect your email address, name and any other information you choose to include in the body of your email or responses. If you contact us by phone, we will collect the phone number you use to call Stripe, as well as other information you may provide during the call. If you are a Stripe User or Customer, when you contact us, we may collect additional information in order to verify your identity.
  • If you are a Stripe User, you will provide your contact details, such as name, postal address, telephone number, and email address. As part of your business relationship with us, we may also collect financial and personal information about you, such as your date of birth and government identifiers associated with you and your organization (such as your social security number, tax number, or Employer Identification Number). You may also choose to provide bank account information.
  • If you are a Customer, when you make payments to, or transact with a User through Stripe’s Services or a Stripe provided device, we will receive your transaction information. If you are transacting directly with Stripe, we receive the information directly from you. If you are transacting with a User, depending on how they integrated our Services, we may receive this information directly from you, from the Stripe User or third parties. The information that we collect will include payment method information (such as credit or debit card number, or bank account information), purchase amount, date of purchase, and in some cases, some information about your purchases. Different payment methods may require the collection of different categories of information. The payment method information that we collect will depend upon the payment method that you choose to use from the list of available payment methods that are offered to you at the time of check-out. We may also receive your name, email, billing or shipping address and in some cases, your transaction history to authenticate you.

In connection with fraud monitoring, prevention, detection, and compliance activities for Stripe and its Users, we receive identity related from the following sources:

  • From Customers (including through their devices (e.g. IP Addresses)) related to Customers.
  • From Users about themselves and their Customers, including as collected through our Services.
  • From our business partners, financial service providers, identity verification services, and publicly available sources.

This Personal Data (e.g., name, address, phone number, country) helps us to confirm identities and prevent fraud. We may also use technology to assess the fraud risk associated with an attempted transaction by a Customer with a Stripe User.

You may also choose to submit information to us via other methods, including: (i) in response to marketing or other communications, (ii) through social media or online forums, (iii) through participation in an offer, program or promotion, (iv) in connection with an actual or potential business relationship with us, or (v) by giving us your business card or contact details in connection with trade shows or other events.

b. Information that we collect automatically on our Sites and through marketing of our products

Our Sites use cookies and other technologies. These technologies record information about you, including:

  • Browser and device data, such as IP Address, device type, operating system and Internet browser type, screen resolution, operating system name and version, device manufacturer and model, language, plug-ins, add-ons and the language version of the Sites you are visiting.
  • Usage data, such as time spent on the Sites, pages visited, links clicked, language preferences, and the pages that led or referred you to our Sites.
  • Online activities. We collect information about your online activities on websites and connected devices over time and across third-party websites, devices, apps and other online services.
  • We collect information when you engage with our marketing messages and when you click on links included in ads for our products. We use Google Analytics on our Sites to help us analyze your use of our Sites and diagnose technical issues.

To learn more about the cookies that may be served through our Sites and how You can control our use of cookies and third-party analytics, please see: Cookie Policy and Cookies & Other Technology.

3. How We Use Personal Data

a. Our Services

We rely upon a number of legal grounds to enable our use of your Personal Data. We use Personal Data to facilitate the business relationships we have with our Users, to comply with our financial regulatory and other legal obligations, and to pursue our legitimate business interests. We also use Personal Data to complete transactions and to provide payment-related services to our Users.

Learn more:

Contractual and pre-contractual business relationships

We use Personal Data for the purpose of entering into business relationships with prospective Stripe Users, and to perform the contractual obligations under the contracts that we have with Stripe Users. Activities include:

  • Creation and management of Stripe accounts and Stripe account credentials, including the evaluation of applications to commence or expand the use of our Services;
  • Creation and management of Stripe Checkout accounts;
  • Accounting, auditing, and billing activities; and
  • Processing of payments, including fraud detection and prevention, optimizing valid transactions, communications regarding such payments, and related customer service.

Legal compliance

We use Personal Data to verify the identity of our Users in order to comply with fraud monitoring, prevention and detection obligations, laws associated with the identification and reporting of illegal and illicit activity, such as AML (Anti-Money Laundering) and KYC (Know-Your-Customer) obligations, and financial reporting obligations. For example, we may be required to record and verify a User’s identity for the purpose of compliance with legislation intended to prevent money laundering and financial crimes. These obligations are imposed on us by the operation of law, industry standards, and by our financial partners, and may require us to report our compliance to third parties, and to submit to third party verification audits.

Legitimate business interests

Where allowed under applicable law, we rely on our legitimate business interests to process Personal Data about you. When we do so, we balance our legitimate interests against the interests and rights of the individuals whose Personal Data we process. The following list sets out the business purposes that we have identified as legitimate:

  • Detect, monitor and prevent fraud and unauthorized payment transactions;
  • Mitigate financial loss, claims, liabilities or other harm to Customers, Users and Stripe;
  • Determine eligibility for and offer new Stripe products and services;
  • Respond to inquiries, send Service notices and provide customer support;
  • Promote, analyze, modify and improve our Services, systems, and tools, and develop new products and services, including reliability of the Services;
  • Manage, operate and improve the performance of our Sites and Services by understanding their effectiveness and optimizing our digital assets;
  • Analyze and advertise our Services;
  • Conduct aggregate analysis and develop business intelligence that enable us to operate, protect, make informed decisions, and report on the performance of, our business;
  • Share Personal Data with third party service providers that provide services on our behalf and business partners which help us operate and improve our business (Learn More);
  • Enable network and information security throughout Stripe and our Services; and
  • Share Personal Data among our affiliates for administrative purposes.

We use Personal Data of Customers to provide our Services to Users, including to process online payment transactions and authenticate Customers on behalf of our Users. Learn More. All such use is pursuant to the terms of our business relationships with our Users. In addition, we may offer payment-related services to Users who have requested such services, and our delivery of such related services to our Users may involve the use of Personal Data. For example, a Stripe User may specify parameters for transactions submitted by its Customers that determine whether the transactions are blocked or allowed by our payment processing Services. In such cases, the User is responsible for the collection and use of Customer’s Personal Data for the payment transactions and payment-related services. We also use Personal Data to detect and prevent fraud. In providing such services, we may provide Users who have requested such services Personal Data from a Customer to assess the fraud risk associated with an attempted transaction by their Customer.

b. Marketing and events-related communications

We may send you email marketing communications about Stripe products and services, invite you to participate in our events or surveys, or otherwise communicate with you for marketing purposes, provided that we do so in accordance with applicable law, including any consent requirements. For example, when you submit your contact information to us or when we collect your business contact details through our participation at trade shows or other events, we may use the information to follow-up with you regarding an event, send you information that you have requested on our products and services and, with your permission, include you on our marketing information campaigns.

c. Advertising

When you visit our Sites, we (and our service providers) may use Personal Data collected from you and your device to target advertisements for Stripe Services to you on our Sites and other sites you visit (“interest-based advertising”), where allowed by applicable law, including any consent requirements. For example, when you visit our Site, we will use cookies to identify your device and direct ads for our Services to you. You have choices and control over our cookies (or similar technologies) we use to advertise to you. Please see our Cookie Policy for more information. At present, there is no industry standard for recognizing Do Not Track browser signals, so we do not respond to them.

We do not use, share, rent or sell the Personal Data of our Users’ Customers for interest-based advertising. We do not sell or rent the Personal Data of our Users, their Customers or our Site Visitors.

4. How We Disclose Personal Data

Stripe does not sell or rent Personal Data to marketers or unaffiliated third parties. We share your Personal Data with trusted entities, as outlined below.

a. Stripe

We share Personal Data with other Stripe affiliated entities in order to provide our Services and for our administration purposes.

b. Service providers

We share Personal Data with certain of our service providers subject to contract terms that limit their use of Personal Data. We have service providers that provide services on our behalf, such as identity verification services, website hosting, data analysis, marketing service, information technology and related infrastructure, customer service, email delivery, and auditing services. These service providers may need to access Personal Data to perform their services. We authorize such service providers to use or disclose the Personal Data only to perform services on our behalf or comply with legal requirements. We require such service providers to contractually commit to protect the security and confidentiality of Personal Data they process on our behalf. Our service providers are predominantly located in the European Union and the United States of America. Learn More.

c. Business partners

We share Personal Data with third party business partners in connection with our Services to our Users. Examples of third parties to whom we may disclose Personal Data for this purpose are banks and payment method providers (such as credit card networks) when we provide payment processing services, and the professional services firms that we partner with to deliver Stripe Atlas. Learn more about what Stripe does with other third parties.

d. Our Users and third parties authorized by our Users

We share Personal Data with Users to maintain a User account and provide the Services and third party services. We share data with parties directly authorized by a User to receive Personal Data. This includes sharing Personal Data of Customers with Users to assess the fraud risk associated with attempted transactions by Customers, or when a User authorizes a third party application provider to access the User’s Stripe account using Stripe Connect. The use of Personal Data by an authorized third party is subject to the third party’s privacy policy.

e. Corporate transactions

In the event that we enter into, or intend to enter into, a transaction that alters the structure of our business, such as a reorganization, merger, sale, joint venture, assignment, transfer, change of control, or other disposition of all or any portion of our business, assets or stock, we may share Personal Data with third parties in connection with such transaction. Any other entity which buys us or part of our business will have the right to continue to use your Personal Data, but subject to the terms of this Privacy Policy.

f. Compliance and harm prevention

We share Personal Data as we believe necessary: (i) to comply with applicable law, or rules imposed by payment method in connection with use of that payment method; (ii) to enforce our contractual rights; (iii) to protect the Services, rights, privacy, safety and property of Stripe, you or others; and (iv) to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, which may include authorities outside your country of residence.

5. Your Rights and Choices

You may have choices regarding our collection, use and disclosure of your Personal Data:

a. Opting out of receiving electronic communications from us

If you no longer want to receive marketing-related emails from us, you may opt-out via the unsubscribe link included in such emails. We will try to comply with your request(s) as soon as reasonably practicable. Please note that if you opt-out of receiving marketing-related emails from us, we may still send you other messages in connection with providing our Services.

b. How you can see or change your account Personal Data

If you would like to review, correct, or update Personal Data that you have previously disclosed to us, you may do so by signing in to your Stripe account or by contacting us.

c. Your data protection rights

Depending on your location and subject to applicable law, you may have the following rights with regard to the Personal Data we control about you:

  • The right to request confirmation of whether Stripe processes Personal Data relating to you, and if so, to request a copy of that Personal Data;
  • The right to request that Stripe rectifies or updates your Personal Data that is inaccurate, incomplete or outdated;
  • The right to request that Stripe erase your Personal Data in certain circumstances provided by law;
  • The right to request that Stripe restrict the use of your Personal Data in certain circumstances, such as while Stripe considers another request that you have submitted (including a request that Stripe make an update to your Personal Data);
  • The right to request that we export your Personal Data that we hold to another company, where technically feasible;
  • Where the processing of your Personal Data is based on your previously given consent, you have the right to withdraw your consent at any time; and/or
  • In some cases, you may also have the right to object to the processing of your Personal Data.

d. Process for exercising data protection rights

To exercise your data protection rights please also see Stripe Privacy Center. We will comply with your request to the extent required by applicable law. We will not be able to respond to a request if we no longer hold your Personal Data. If you feel that you have not received a satisfactory response from us, you may have the right under applicable laws to consult with the data protection authority in your country.

For your protection, we may need to verify your identity before responding to your request, such as verifying that the email address from which you send the request matches your email address that we have on file. If we no longer need to process Personal Data about you in order to provide our Services or our Sites, we will not maintain, acquire or process additional information in order to identify you for the purpose of responding to your request.

If you are a Customer of a Stripe User, please direct your requests directly to the User. For example, if you are making, or have made, a purchase from a merchant using Stripe as a payment processor, and you have a request that is related to the payment information that you provided as part of the purchase transaction, then you should address your request directly to the merchant.

6. Security and Retention

We make reasonable efforts to provide a level of security appropriate to the risk associated with the processing of Personal Data. We maintain organizational, technical and administrative measures designed to protect Personal Data covered by this Privacy Policy against unauthorized access, destruction, loss, alteration or misuse. Your Personal Data is only accessed by a limited number of personnel who need access to the information to perform their duties. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (e.g., you feel that the security of your account has been compromised), please contact us immediately.

We retain your Personal Data as long as we are providing the Services to you or our Users (as applicable). Even after we stop providing Services directly or indirectly to you, and even if you close your Stripe account or complete a transaction with a Stripe User, we keep your Personal Data in order to comply with our legal and regulatory obligations. We may also keep it to assist with our fraud monitoring, detection and prevention activities. We also keep Personal Data to comply with our tax, accounting, and financial reporting obligations, where we are required to retain the data by our contractual commitments to our financial partners, and where data retention is mandated by the payment methods you used. In all cases where we keep data, we do so in accordance with any limitation periods and records retention obligations that are imposed by applicable law.

7. International Data Transfers

We are a global business. Personal Data may be stored and processed in any country where we do business or our service providers do business. We may transfer your Personal Data to countries other than your own country, including to the United States. These countries may have data protection rules that are different from your country. When transferring data across borders, we take measures to comply with applicable data protection laws related to such transfer. Officials (such as law enforcement or security authorities) in those other countries may be entitled to access your Personal Data.

If you are located in the European Economic Area (“EEA”), the UK or Switzerland, we comply with applicable laws to provide an adequate level of data protection for the transfer of your Personal Data to the US. For more information, please see Stripe Privacy Center. Where applicable law requires that a data transfer legal mechanism, we use one or more of the following: EU Standard Contractual Clauses with a data recipient outside the EEA or the UK, verification that the recipient has implemented Binding Corporate Rules, or other legal method available to us under applicable law.

While Stripe Inc. remains self-certified under the E.U.-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield, it is not currently relying on these frameworks for the transfer of personal data to the U.S. For more information, please see Stripe Privacy Center.

8. Use by Minors

The Services are not directed to minors, including children under the age of 13, and we request that they not provide Personal Data through the Services. In some countries, we may impose higher age limits as required by applicable law. We do not sell any Personal Data of Customers, Visitors or Users, including those aged between 13 to 16.

9. Updates To this Privacy Policy and Notifications

We may change this Privacy Policy from time to time to reflect new services, changes in our Personal Data practices or relevant laws. The “Last updated” legend at the top of this Privacy Policy indicates when this Privacy Policy was last revised. Any changes are effective when we post the revised Privacy Policy on the Services.

We may provide you with disclosures and alerts regarding the Privacy Policy or Personal Data collected by posting them on our website and, if you are a User, by contacting you through your Stripe Dashboard, email address and/or the physical address listed in your Stripe account.

If applicable law requires that we obtain your consent or provide notice in a specified manner prior to making any changes to this Privacy Policy applicable to you, we will provide such required notice and will obtain your required consent.

The Services may provide the ability to connect to other online services. These online services may operate independently from us and/or may have their own privacy notices or policies, which we strongly suggest you review. If any online service linked to our Services is not owned or controlled by us, or does not claim to be covered by this Privacy Policy, we are not responsible for it and/or it is not covered by this Privacy Policy. Please refer to the privacy policy associated with that online service.

11. Controllers and Jurisdiction-specific Provisions

Depending on the activity, Stripe acts as a Controller and Processor. Learn More. For more information on the Stripe entity that is responsible under this Privacy Policy. Learn More.

Australia

If you are an Australian resident, and you are dissatisfied with our handling of any complaint you raise under this Privacy Policy, you may wish to contact the Office of the Australian Information Commissioner.

EEA

To exercise your rights, you may contact our DPO. If you are a resident of the EEA or we have identified Stripe Payments Europe Limited as your data controller, and believe we process your information in scope of the General Data Protection Regulation (GDPR), you may direct your questions or complaints to the Office of the Data Protection Commissioner. If you are a resident of the UK, you may direct your questions or concerns to the UK Information Commissioner’s Office.

Brazil

Stripe processes the personal data of people in Brazil in accordance with the Lei Geral de Proteção de Dados Pessoais (LGPD). This Privacy Policy (and Cookie Policy) disclose the categories and specific pieces of personal data collected about you, the categories of sources from which that personal data is collected, the business purposes for collecting the personal data, and the categories of third parties with which the information is shared. LGPD gives you certain rights to request information about our processing of your personal data and the right to ask that we delete your personal data. To exercise your rights, please contact our DPO.

Indonesia

As used in this Privacy Policy, “applicable law” includes Law No. 11 of 2008 as amended by Law No. 19 of 2016 on Electronic Information and Transactions, Government Regulation No. 71 of 2019 on the Implementation of Electronic Systems and Transactions, and Minister of Communication and Informatics Regulation No. 20 of 2016 on Personal Data Protection in Electronic Systems and “Personal Data” includes “personal data” as defined under such laws.

Malaysia

If you have any questions or complaints about this Privacy Policy, please contact our DPO.

Mexico

Mexican residents may exercise data protection rights to access, correction, deletion, opposition or revocation under applicable law. You may be provided with further information about the steps to exercise your privacy rights, including identity verification, timing, the way to get in touch with the organization responding to your request for further communications about your request, and how your request may be honored. If you are a Mexican resident and a Customer of a Stripe User, please direct your requests directly to the Stripe User with whom you shared your personal information.

Thailand

Thailand residents may have additional rights under applicable laws. If we process your Personal Data due to a legal obligation or contractual right, and you do not provide us with personal Information, we may not be able to lawfully provide you services.

United States – California

If you are a consumer located in California, we process your personal data in accordance with the California Consumer Privacy Act (CCPA). This section provides additional details about the personal information we collect and use for purposes of CCPA.

a. How We Collect, Use, and Disclose your Personal Information

The Personal Data We Collect section describes the personal information we may have collected about you, including the categories of sources of that information. We collect this information for the purposes described in the How We Use Personal Data section. We share this information as described in the How We Disclose Personal Data section. Stripe uses cookies, including advertising cookies, as described in our Cookie Policy.

b. Your CCPA Rights and Choices

As a California consumer and subject to certain limitations under the CCPA, you have choices regarding our use and disclosure of your personal information:

  • Exercising the right to know: You may request the following information about the personal information we have collected about you:
    • the categories and specific pieces of personal information we have collected about you;
    • the categories of sources from which we collected the personal information;
    • the business or commercial purpose for which we collected the personal information;
    • the categories of third parties with whom we shared the personal information; and
    • the categories of personal information about you that we disclosed for a business purpose, and the categories of third parties to whom we disclosed that information for a business purpose.
  • Exercising the right to delete: You may request that we delete the personal information we have collected from you, subject to certain limitations under applicable law.
  • Exercising the right to opt-out from a sale: You may request to opt out of any “sale” of your personal information that may take place. As described in Advertising, we do not use, share, rent or sell the Personal Data of our Users’ Customers for interest-based advertising. We do not sell or rent the Personal Data of our Users, their Customers or our Site visitors.
  • Non-discrimination: The CCPA provides that you may not be discriminated against for exercising these rights.

To submit a request to exercise any of the rights described above, contact our DPO.

ALL

When exercising your rights, we may need to verify your identity before responding to your request, such as verifying that the email address from which you send the request matches your email address that we have on file. Authentication based on a government-issued and valid identification document may be required. If you are a Customer of a Stripe User, please direct your requests directly to the Stripe User with whom you shared your personal information.

12. Contact Us

If you have any questions or complaints about this Privacy Policy, please contact us or send mail as provided in our Privacy Center.

WooCommerce Shipping & Tax

Data Used: For payments with PayPal or Stripe: purchase total, currency, billing information. For taxes: the value of goods in the cart, value of shipping, destination address. For checkout rates: destination address, purchased product IDs, dimensions, weight, and quantities. For shipping labels: customer’s name, address as well as the dimensions, weight, and quantities of purchased products.

Data Synced (?): For payments, we send the purchase total, currency and customer’s billing information to the respective payment processor. Please see the respective third party’s privacy policy (Stripe’s Privacy Policy and PayPal’s Privacy Policy) for more details. For automated taxes we send the value of goods in the cart, the value of shipping, and the destination address to TaxJar. Please see TaxJar’s Privacy Policy for details about how they handle this information. For checkout rates we send the destination ZIP/postal code and purchased product dimensions, weight and quantities to the carrier directly or via EasyPost, depending on the service used. For shipping labels we send the customer’s name, address as well as the dimensions, weight, and quantities of purchased products to EasyPost. We also store the purchased shipping labels on our server to make it easy to reprint them and handle support requests.

Slider Revolution

In case you’re using Google Web Fonts (default) or playing videos or sounds via YouTube or Vimeo in Slider Revolution we recommend to add the corresponding text phrase to your privacy police:

YouTube

Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.

If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.

Vimeo

Our website uses features provided by the Vimeo video portal. This service is provided by Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

If you visit one of our pages featuring a Vimeo plugin, a connection to the Vimeo servers is established. Here the Vimeo server is informed about which of our pages you have visited. In addition, Vimeo will receive your IP address. This also applies if you are not logged in to Vimeo when you visit our plugin or do not have a Vimeo account. The information is transmitted to a Vimeo server in the US, where it is stored.

If you are logged in to your Vimeo account, Vimeo allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.

For more information on how to handle user data, please refer to the Vimeo Privacy Policy at https://vimeo.com/privacy.

Google Web Fonts

For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

If your browser does not support web fonts, a standard font is used by your computer.

Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy at https://www.google.com/policies/privacy/.

SoundCloud

On our pages, plugins of the SoundCloud social network (SoundCloud Limited, Berners House, 47-48 Berners Street, London W1T 3NF, UK) may be integrated. The SoundCloud plugins can be recognized by the SoundCloud logo on our site.

When you visit our site, a direct connection between your browser and the SoundCloud server is established via the plugin. This enables SoundCloud to receive information that you have visited our site from your IP address. If you click on the “Like” or “Share” buttons while you are logged into your SoundCloud account, you can link the content of our pages to your SoundCloud profile. This means that SoundCloud can associate visits to our pages with your user account. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the data transmitted or how it will be used by SoundCloud. For more information on SoundCloud’s privacy policy, please go to https://soundcloud.com/pages/privacy.

If you do not want SoundCloud to associate your visit to our site with your SoundCloud account, please log out of your SoundCloud account.