OUR PRIVACY STATEMENT
SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase an item from our online store, as an integral part of the buying and selling process, we collect your personal information such as your name, address and email address.
When you browse our online store, our system also automatically receives the internet protocol (IP) address of your computer, with the purpose of providing us with information that helps us to learn more about your operating system (OS) and browse.
In regards to email marketing (if applicable): With your exclusive permission, we may send you email and sequences about our online store, new product, new launches and other important updates.
SECTION 2 – ABOUT CONSENT
How do we get your consent?
When you buy from our store – and therefore provide us with personal information to complete a transaction – please, verify your credit card, place your order, arrange for a delivery or return a product, we imply by default that you consent us to collect it and use it for that specific purpose only.
In case we ask for your personal information due to an additional reason, for example marketing, we will either ask you directly for your expressed consent, or alternatively, provide you with an opportunity to decline it.
How do I withdraw my consent?
If you decide after opting in that you would like to withdraw your consent for us to contact you, then only send us an email to email@example.com
SECTION 3 – DISCLOSURE
If we are required by law, or in case you violate our Terms of Service, then we may disclose your personal information.
To protect your financial information, our payments are handled by secure payment providers and processors. Therefore, we never store your credit card data in our servers.
It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Therefore, we only store your purchase and transaction data as long as necessary to complete the transaction. Once we have completed it, we proceed to delete your purchase transaction information.
All the direct payment gateways we use to process transactions adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a union of the main credit card companies like American Express, Discover, Visa and MasterCard.
In consequence, PCI-DSS requirements help to ensure the secure handling of your credit card and financial information, which covers our online store as well as our service providers.
SECTION 5 – THIRD-PARTY SERVICES
In the majority of cases, our third-party providers will only collect, use and disclose your information solely within the scope necessary to let them to perform the services that they provide to us.
Nonetheless, specific third-party providers, such as payment gateways and payment transaction processors, hold their own privacy policies in regards to how they handle the information we are required to provide to them for your purchase transactions.
In regards to these providers, we encourage you to read respective privacy policies so that you can understand how they handle your personal information.
In exclusive, consider that certain providers may have their headquarters/location or have facilities located in a different jurisdiction than either you or us. Therefore, if you decide to proceed with a transaction that involves the services of a third-party service provider, then consider that your information may turn into a subject to the laws of the jurisdiction(s) that corresponds to the location of the service provider or its facilities.
For instance, if you reside in Canada and your transaction is processed by a payment gateway with headquarters in the United States, then your personal information used during the transaction may become subject to disclosure under United States legislation, which extends to the Patriot Act.
If you click on links on our store, then consider that they may direct you away from our website. In that case, we hold no responsibility for the privacy practices of other sites, and in consequence, we encourage you to read their respective privacy statements.
SECTION 6 – SECURITY
To ensure the protection of your personal information, we take precautions and follow the best practices of the industry to ensure that it is not lost, misused, disclosed, accessed, destroyed or altered.
If you decide to provide us with your credit card information, then consider that it will be encrypted using secure socket layer technology, also known as SSL, and stored with an AES-256 encryption.
Even though it is impossible to guarantee 100% protection with any method of transmission or electronic storage, we follow all the PCI-DSS requirements and implement additional standards accepted by the industry.
To make you aware of the cookies we used, you will find the full list here, so that you can decide if you want to opt out of cookies or not.
- _session_id (unique token, sessional): Allows Krabi.guide to store information about your session
- no data held (persistent during 30 minutes from your last visit): We use it for our website provider’s internal stats tracker to record the number of visits
- no data held (expires midnight of the next day, relative to the visitor): We use it to count the number of visits to a store by a single customer
- cart (unique token, lasts for 2 weeks): We use it to store information about the contents of your online cart.
- _secure_session_id (Unique token, sessional)
- storefront_digest (Unique token, indefinite if the shop is protected by password): It is used to determine if the current visitor has access or not.
SECTION 7 – AGE OF CONSENT
When you use our website, you admit that you are at least the age of majority in your state/province of residence, or alternatively, that you are the age of majority in your corresponding state or province of residence, and in consequence, you have brought us your consent to allow any of your minor dependent to use our website.
In case our store is merged or acquired by another company, your information may be transferred to the new owners so that we can continue to sell products to you.
QUESTIONS AND CONTACT INFORMATION
In case you would like to: access, correct, delete or amend any personal information we have about you, submit a complaint or simply you would like more information, just contact our Privacy Compliance Officer at firstname.lastname@example.org or through our website at ‘Krabi.guide’
[Re: Privacy Compliance Officer]
[207, Moo 3, Nong Thale Sub Distrit, Muang Krabi District, Krabi 81180 Thailand]