“Personal Information” is information about an identifiable individual, such as your name, address, e-mail address, credit card information, ID number, birth date and gender.
“Non-Personal Information” is information that is typically collected, used or disclosed by us in a manner that it not identifiable to an individual (except where indicated herein), such as an Internet Protocol Address (IP Address), the domain used to access the Website, the type and version of browser or operating system being used by visitors to the Website, and aggregate information, such as demographic statistics of our users (e.g. average age or geographical allocation of our users), number of visitors, what pages users access or visit, and average time spent on the Website.
What type of Personal Information does Thronus Medical collect and how is it used?
Thronus Medical collects information that helps us process your purchases and personalize and improve your shopping experience. Here are examples of the types of information that we gather:
Registration: In order to make purchases through the Website, you must register for an account and provide certain Personal Information to us such as your name and email address.
Purchases: When you make a purchase through the Website, we may collect the following information: e-mail address, billing address, mailing address, pseudonyms, phone number, IP address, Thronus Medical password, personal preferences, group affiliations, payment and billing information. During checkout, you have the option to have us remember your credit card number for future purchases. We do this using a technology called “payment tokenization”. That’s just a fancy way of saying we don’t actually store your credit card number. Instead, when you complete a purchase we use your credit card number to obtain a secret token – a special random string of letters and numbers – from the credit card payment provider. Then, when you want to make your next purchase, instead of sending your credit card number to the credit card payment provider, we send the secret token. Just like all of our other financial transactions, this communication is set up to take place over a secure, encrypted communication line. We may use third party freight providers to deliver your purchases, and accordingly we share your name, phone number, email address and shipping address with such providers for the purposes of completing your delivery. We may share your information with the manufacturer of the product you are buying, because he is the one that emits you an invoice for your purchase. We may share information with the e-commerce provider that help them to process your purchase.
Communications with us: When you contact us through email, through submitting a customer review or survey, through “contact” tab in the website, when you sign for newsletter or by telephone, we may collect the information that you provide to us in the course of the communication to help respond to you or for purposes related to your communication (e.g. administering the survey or contest).
Marketing Communications: If you opt-in to receive marketing communications from us, we will keep you up to date on our products and services. You may withdraw your consent to receiving marketing communications from us at any time by following the opt-out instructions in each communication, or by contacting our customer care department at email@example.com.
Statistics: We also collect statistics about use of the Services purchased through the Website. This information will be kept confidential, however, aggregate statistics that do not personally identify an individual will be kept by us and such aggregate statistics may be made available to other members or third parties.
Your IP address is reported by your web browser whenever you visit a page on the Website. This information is recorded together with your registration information on our databases and used, for example, to help prevent and detect fraud.
In most cases, we will collect personal information directly from you when you purchase or interact with us about a product or service that we offer or provide. Occasionally, we may collect personal information from a third-party based on your consent or as otherwise permitted by law.
In what circumstances do we disclose and transfer Personal Information?
We may share Personal Information with our partner manufacturer, such as “Unique Therapeutics” and its subsidiaries. We may share Personal Information with our service providers (e.g. website hosting providers, eCommerce software providers, payment processors, email service providers, freight carriers, third party marketing platforms, advertising networks, and IT providers to help us improve the Website) as reasonably needed for them to provide the relevant services to us. Our servers and service providers may be located in Canada and outside of Canada (e.g. in the United States, among other countries) and accordingly your Personal Information may be available to government or other agencies pursuant to the laws of the relevant jurisdictions.
Important Exceptions: We may disclose your Personal Information to third-parties if we have reason to believe that disclosure is necessary to identify, contact or bring legal action against someone who may be causing injury to or interference with (either intentionally or unintentionally) our rights or property, other users of the Website, or anyone else (including the rights or property of anyone else) that could be harmed by such activities. We may also disclose Personal Information with your consent, or when we believe in good faith that such disclosure is required or permitted by applicable law.
Security: The security of your Personal Information is important to us. We implement a variety of measures (such as technical, contractual, administrative, and physical security measures) which are designed to protect the Personal Information that we collect, including measures to limit access to information only to staff who need access to perform their employment duties.
In certain areas, such as when you provide credit card or other payment information to us, we seek to protect the security of your credit card and other payment information during transmission by, for example, using Secure Sockets Layer (SSL) encryption technology.
You are also responsible for helping to protect the security of your Personal Information. For instance, never give out your Thronus Medical account information or your password to third parties. We will never ask you to provide such information to us by email.
Retention: We will keep your Personal Information for as long as it remains necessary for the identified purpose or as permitted or required by law, which may extend beyond the termination of our relationship with you. We may retain certain data as necessary to prevent fraud or future abuse, or for legitimate business purposes, such as analysis of aggregated, non-personally-identifiable data, account recovery, or if permitted or required by law.
Access and Accuracy: You have the right to request access to the Personal Information we hold about you in order to verify the Personal Information we have collected in respect to you and to have a general account of our uses of that information. Upon receipt of your written request, we will provide you with a copy of your Personal Information in accordance with applicable law, subject to information which we are permitted or required to withhold.
We take steps to try to keep your Personal Information accurate and up-to-date. You have a responsibility to ensure that your information is kept up to date, including using the features of the Website to update, correct, delete or add to your Personal Information as appropriate.
Contact Us: You can help by keeping us informed of any changes such as a change of address or telephone number. If you would like to request access your information, if you have any questions, comments or suggestions of if you find any errors in our information about you, please contact us at firstname.lastname@example.org.
Last Updated: May, 2020
SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.
SECTION 2 – CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at email@example.com or mailing us at:
c/o Unique Therapeutics LTD
69 Canal Street, Newry, Co. Down
Northern Ireland, BT35 6JF
SECTION 3 – DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 – SHOPIFY & WORDPRESS
Our store is hosted on a WordPress & SHOPIFY. They provide us with the online e-commerce platform that allows us to sell our products and services to you. We store your data on a secure server behind a firewall with updated security, and encrypt your connection via SSL.
SECTION 5 – THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECTION 6 – SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 – COOKIES
Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
_session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).
_shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits
_shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.
cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
SECTION 8 – AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependants to use this site.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at firstname.lastname@example.org or by mail at
[Re: Privacy Compliance Officer]
69 Canal, Newry, Co. Down.,
Northern Ireland, BT35 6JF
Last Updated: May, 2020