PRIVACY POLICY

SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?

When you make a purchase from our store, we collect the personal information you provide, such as your name, address, and email address, as part of the transaction process. Additionally, when you browse our store, we automatically receive your computer’s internet protocol (IP) address to help us gather information about your browser and operating system.

Email Marketing (if applicable): With your permission, we may send you emails regarding our store, new products, and other updates.

SMS Marketing (if applicable): With your consent, we may use your phone number to send you marketing messages via SMS. These messages may include promotions, updates, and other marketing communications related to our products and services. Your phone number will not be shared with third parties or affiliates for their marketing purposes. Please note that standard message and data rates may apply.

SECTION 2 - CONSENT

How do you get my consent?

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery, or return a purchase, we imply that you consent to us collecting and using your information for that specific purpose.

If we ask for your personal information for any additional reason, such as marketing, we will either ask for your explicit consent or provide you with the opportunity to decline.

How do I withdraw my consent?

If you change your mind after opting in, you can withdraw your consent at any time by contacting us at support@karmarealm.com. For SMS marketing, you may also opt-out by replying "STOP" to any marketing message you receive.

If you text STOP to our shortcode, you will receive a final message confirming that your opt-out request has been processed. Please note that we will only send SMS messages to your mobile device after receiving your explicit consent to do so.

SECTION 3 - DISCLOSURE

We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.

SMS Marketing Compliance

We comply with the Telephone Consumer Protection Act (TCPA) in our SMS marketing practices. By providing your phone number and opting into SMS marketing, you consent to receive marketing messages from us. We will not share your phone number with third parties or affiliates for their marketing purposes. You may opt-out of receiving these messages at any time by following the opt-out instructions provided in the message.

SECTION 4 - SHOPIFY

Our store is hosted by Shopify Inc., which provides us with an online e-commerce platform that allows us to sell our products and services.

Your data is stored through Shopify’s data storage, databases, and the general Shopify application. Your data is kept on a secure server behind a firewall.

Payment:

If you choose a direct payment gateway to complete your purchase, Shopify stores your credit card data. This data is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is retained only as long as necessary to complete your transaction. Once your transaction is complete, your information is deleted.

All direct payment gateways comply with PCI-DSS standards, which are managed by the PCI Security Standards Council, a collaborative effort of companies such as Visa, Mastercard, American Express, and Discover.

For more information, please refer to Shopify’s Terms of Service or Privacy Statement.

SECTION 5 - THIRD-PARTY SERVICES

Generally, any third-party service providers we use will only collect, use, and share your information to the extent necessary to perform the services they provide to us. However, certain third-party service providers, such as payment gateways and transaction processors, have their own privacy policies regarding the information we must provide for purchase-related transactions.

We recommend that you review the privacy policies of these providers to better understand how your personal information will be handled. It’s important to note that some providers may be located in jurisdictions different from either you or us. If you choose to proceed with a transaction involving the services of a third-party provider, your information may be subject to the laws of the jurisdiction(s) where the provider or its facilities are located.

For example, if you are in Canada and your payment is processed by a payment gateway in the United States, your personal information related to that transaction may be subject to U.S. law, including the Patriot Act.

Once you leave our website or are redirected to a third-party site or application, you are no longer subject to this Privacy Policy or the Terms of Service of our website.

Links
When you click on links on our site, they may take you to external websites. We are not responsible for the privacy practices of those sites, so we encourage you to review their privacy policies.

Google Analytics
We use Google Analytics to gather insights into how visitors interact with our website and which pages are most viewed. This helps us improve our website's functionality and user experience.

SECTION 6 - SECURITY

We take reasonable precautions to safeguard your personal information and adhere to industry best practices to prevent it from being lost, misused, accessed, disclosed, altered, or destroyed inappropriately.

If you provide us with credit card information, it is encrypted using secure socket layer technology (SSL) and stored with AES-256 encryption. While no method of transmission over the Internet or electronic storage is entirely secure, we follow all PCI-DSS standards and apply additional industry-standard security measures.

 

 

SECTION 7 - COOKIES

Below is a list of cookies we use on our website. We’ve outlined these so you can decide whether you wish to opt-out of them:

·         _session_id: A unique token that is session-based, allowing Shopify to store information about your session (such as referrer, landing page, etc.).

·         _shopify_visit: No data stored, persistent for 30 minutes from the last visit. Used by our website provider’s internal stats tracker to record visit counts.

·         _shopify_uniq: No data stored, expires at midnight (relative to the visitor) of the following day. Tracks the number of visits by a single customer.

·         cart: A unique token, persistent for 2 weeks. Stores information regarding the contents of your cart.

·         _secure_session_id: A unique token that is session-based.

·         storefront_digest: A unique token with an indefinite lifespan. If the shop requires a password, this cookie determines if the current visitor has access.

·         PREF: Persistent for a brief period, set by Google to track visitors and their referral sources.

SECTION 8 - AGE OF CONSENT

By using this website, you confirm that you are at least the age of majority in your state or province of residence. Alternatively, if you are the age of majority and consent for your minor dependents to use this site, you are affirming your permission.

SECTION 9 - CHANGES TO THIS PRIVACY POLICY

We may update this privacy policy from time to time, so please review it regularly. Any changes or clarifications will take effect immediately upon being posted on the website. If any significant changes are made, we will notify you here to keep you informed about what data we collect, how we use it, and the circumstances under which it may be shared or disclosed. If our store is acquired or merged with another company, your information may be transferred to the new owners for the purpose of continuing to provide our services to you.

QUESTIONS AND CONTACT INFORMATION

If you wish to access, correct, update, or delete any personal information we hold about you, file a complaint, or simply need further information, please contact our Privacy Compliance Officer at support@karmarealm.com.