Privacy Policy
SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?
When you buy something in our shop as part of the buying and selling process, we collect the personal data you provide, such as your name, address and email address.
When you surf our shop, we automatically receive your computer's Internet Protocol (IP) address to provide us with information that will help us learn more about your browser and operating system.
Email marketing (if applicable): With your permission we can send you emails about our shop, new products and other updates.
SECTION 2 - CONSENT
How do you get my approval?
If you provide us with personal information to complete a transaction, check your credit card, place an order, arrange for a delivery or return a purchase, you agree that we will collect it for that reason only and use.
If we ask for your personal information for a secondary reason, such as marketing, we will either ask you directly for your express consent or give you the opportunity to say no.
How do I withdraw my consent?
If you change your mind after registering, you can revoke your consent to contact us for further collection, use or disclosure of your information at any time by contacting us at info@orolop.com.
SECTION 3 - DISCLOSURE
We may disclose your personal information if we are legally required to do so or if you violate our terms of use.
SECTION 4 - SHOPPING
Our business is hosted on Shoplaza Inc. They offer us the online e-commerce platform with which we can sell our products and services to you.
Your data is stored via the data store, the databases and the general Shopify application from Shopify. You save your data on a secure server behind a firewall.
Payment:
When you choose a direct payment gateway to complete your purchase, Shoplaza stores your credit card information. It is encrypted using the PCI-DSS (Payment Card Industry Data Security Standard). Your purchase transaction data is only stored for as long as is necessary to complete your purchase transaction. Your purchase transaction information will then be deleted.
All direct payment gateways meet the standards set by PCI-DSS, which are managed by the PCI Security Standards Council. This is a joint effort by brands like Visa, MasterCard, American Express and Discover.
The PCI-DSS requirements help our business and its service providers to handle credit card information securely.
For more information, you may also read Shoplaza's Terms of Use or the Privacy Policy .
SECTION 5 - THIRD PARTY SERVICES
In general, the third-party providers we use will only collect, use and disclose your information to the extent necessary to enable them to provide the services they provide to us.
However, certain third parties, such as payment gateways and other payment processors, have their own privacy policies regarding the information we need to provide them with for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so that you understand how your personal data is treated by these providers.
In particular, keep in mind that certain providers may be located in facilities or have facilities that are in a different jurisdiction than you or we. So, if you choose a transaction that involves the services of a third party, your information may be subject to the laws of the jurisdiction (s) in which that service provider or its facilities are located.
For example, if you are in Canada and your transaction is being processed by a payment gateway in the United States, your personal information used to complete this transaction may be United States law, including the Patriot Act.
As soon as you leave our shop's website or are redirected to a website or third-party application, you are no longer subject to this privacy policy or the terms of use of our website.
Left
If you click on links in our shop, you may be redirected from our website. We are not responsible for the privacy practices of other websites, and we encourage you to read their privacy policies.
SECTION 6 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to ensure that it is not inappropriately lost, misused, accessed, disclosed, altered, or destroyed.
When you provide us with your credit card information, this information is encrypted using Secure Socket Layer (SSL) technology and stored with AES-256 encryption. While no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 - COOKIES
Here is a list of the cookies we use. We have listed them here so that you can choose whether or not to disable cookies.
_session_id, unique token, session-related, allows Shopify to store information about your session (referrer, landing page, etc.).
_shopify_visit, no data stored, persistent 30 minutes after the last visit, is used by our website provider's internal statistics tracker to record the number of visits
_shopify_uniq, no data stored, expires at midnight (relative to the visitor) the next day. Counts the number of visits by a single customer in a store.
Shopping cart, unique token, has a shelf life of 2 weeks. Stores information about the contents of your shopping cart.
_secure_session_id, unique token, session-related
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine whether the current visitor has access.