SECTION 1 - PERSONAL INFORMATION COLLECTED
When you make a purchase on Nahyana, as part of our buying and selling process, we collect the personal information you provide, such as your name, address, e-mail address or telephone number.
When you browse Nahyana, we also automatically receive the Internet Protocol (IP) address of your computer, which allows us to obtain more details about the browser and operating system you are using.
For e-mail marketing purposes, with your permission, we may send you e-mails about Nahyana about new products and other updates or about your unfinished orders.
SECTION 2 - CONSENT
How do we obtain your consent?
When you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery or return a purchase, we assume that you consent to our collection of your information.
If we ask you to provide your personal information for any other reason, such as marketing purposes, we will ask you directly for your express consent, or we will give you the opportunity to decline.
How can you withdraw your consent?
If, after you have given us your consent, you change your mind and no longer consent to our contacting you and collecting your information, you may notify us by contacting us at firstname.lastname@example.org.
SECTION 3 - DISCLOSURE
We may disclose your personal information only if we are required to do so by law or if you violate our Terms and Conditions.
SECTION 4 - SHOPIFY
Nahyana is hosted on Shopify Inc. They provide us with the online shopping platform that allows us to sell Nahyana services and products to you.
Your data is stored in Shopify's storage system and databases. In the general Shopify application, your data is stored on a secure server protected by a firewall.
For payment, if you make your purchase through a direct payment gateway, Shopify will store your credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction information is retained for as long as necessary to complete your order. Once your order is finalized, your purchase transaction information is deleted. Therefore, we do not have direct access to the information you used to complete your order. This information passes through Shopify and the payment processors.
In fact, all direct payment gateways are PCI-DSS compliant. The Payment Card Industry Data Security Standard (PCI-DSS) is established by the five major card networks (Visa, MasterCard, American Express, Discover Card and JCB). These standards ensure the secure processing of credit card data when you make purchases on Nahyana and its service providers.
For more information, please see the Shopify Terms of Service here.
SECTION 5 - SERVICES PROVIDED BY THIRD PARTIES
In general, the services provided by third party providers that we use will only collect, use and disclose your information to the extent necessary to perform the services they provide to us such as payment processing.
However, some of these providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase transactions on Nahyana.
With respect to these third party providers, we recommend that you read their privacy policies carefully so that you can understand how they will handle your personal information. You can find Visa's here, American Express' here, MasterCard's here, JCB's here and Stripe's here.
Keep in mind that some of these third party providers may be located or have facilities located in a different jurisdiction than you or us. So if you decide to proceed with a transaction that requires the services of a third party provider, then your information may be governed by the laws of the jurisdiction in which that provider is located or the jurisdiction in which its facilities are located, for example.
For example, if you are located in Canada and your transaction is processed through a payment gateway located in the United States, your information used to complete the transaction could be disclosed under U.S. law, such as the Patriot Act.
You may leave Nahyana by clicking on certain links on our site. We assume no responsibility for the privacy practices of these other sites and recommend that you read their privacy policies carefully.
ARTICLE 6 - SECURITY
To protect your personal data, we take reasonable precautions and follow industry best practices to ensure that it is not lost, misappropriated, accessed, disclosed, altered or destroyed in an inappropriate manner.
In the event that you provide us with your credit card information, it will be encrypted through the use of the SSL security protocol and stored with AES-256 encryption. This means that no human being will have access to the full card number. While no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
Below is a list of cookies that we use. We have listed them below so that you can choose whether or not to allow them.
_session_id, is a unique session identifier that allows Shopify to store information about your session (referrer, landing page, etc).
_shopify_visit, is a 30 minute time limit for storing cookies since your last visit. After that, no data is stored. This cookie file is used by Nahyana's internal statistics tracking system to record the number of visits.
This cookie expires at midnight of the following day based on the visitor's location. This cookie file calculates the number of visits to a store per unique customer.
cart, this unique identifier persists for 2 weeks and stores your shopping cart information.
_secure_session_id, is a unique session identifier.
storefront_digest, is also a unique identifier. It is undefined if the store has a password. It is used to know if the current visitor has access or not.
SECTION 7 - AGE OF CONSENT
By using Nahyana, you represent that you are at least the age of majority in your country, state or province of residence, and that you have given us your consent to allow any minor in your care to use Nahyana.
If Nahyana is acquired by or merged with another company, your information may be transferred to the new owners so that we can continue to sell products to you.
SECTION 9 - SMS MARKETING
By entering your phone number at checkout and initiating a purchase and subscribing via our marketing sign-up list, you agree that we may send you SMS notifications (for your order including abandoned cart reminders) or SMS marketing offers.
The number of marketing text messages will not exceed 30 per month. You can unsubscribe from any other text message by replying with the word STOP. The sending of text messages or the use of automations requires that you provide the phone numbers or names of the recipients. This data will be stored and used to communicate campaign analysis and results, including message delivery status, sending status, and, in some cases, whether the purchase resulted in a sale to Nahyana.
If you choose to use our link shortened in text messages, we will collect this information to determine whether or not the link was clicked and use it to display the results in analytics. Any other third party service you may decide to use outside the scope of smsbump.com, our text message operator, the system we use to send the text messages (third party link shortened, GA tracking, etc.) you will be referred to their specific third party policies which you must agree to.
When sending the text messages, we will pass the data to our text message operator to perform the sending of the messages. Information is only shared with our operator at the time of initiating a marketing and messaging campaign. If recipients no longer wish to receive messages, they must reply to the message with STOP or contact email@example.com so that we can successfully unsubscribe.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, file a complaint, or if you simply want more information, contact our Privacy Standards Officer at firstname.lastname@example.org.