PRIVACY POLICY

PRIVACY POLICY

Last Updated December 9, 2016

World and Main (Cranbury), LLC respects your privacy and is committed to protecting information provided to us.  The policy covers information collected on this Site and is a part of, and is incorporated into, any Terms of Service between you and us which are applicable to our products and/or services.  This Privacy Policy and such applicate Terms of Service comprise the entire understanding between you and us with respect to your access to and use of the Site and Services.

PLEASE REVIEW THIS POLICY REGULARLY.  By using the Site and the Services, or providing your personal information to us, you agree to the terms and conditions of this Privacy Policy.  If you do not agree to the terms and conditions of this Privacy Policy, you should not use the Site, the Service, or provide your Personal Information to us.  To the extent that any terms or conditions of the Privacy Policy conflict with the applicable Terms of Service, then the Terms of Service shall govern, except as to the extent (if any) other otherwise expressly set forth in either this Privacy Policy or the Terms of Service.

SECTION 1 – WHAT INFORMATION DO WE COLLECT AND WHAT DO WE DO WITH YOUR INFORMATION?

Personal Information is any data that can be used to identify an individual.  We may use your Personal Information to provide you with more effective customer service, to improve the Site, and the Services, and to make the Site easier to use by eliminating the need for you to repeatedly enter the same information or by customizing the Site to your particular preference or interests, among other uses.

The Personal Information that you may be asked to provide when you make a purchase from our store, creating an account or registering for our services may include your first and last name, mailing address (including ZIP code), e-mail address, password, billing contact information, telephone and, if applicable, your employer's name and address. . With regard to Personal Information that is collected during the registration process, we present the option not to receive communications from us regarding the Services and other product information. If you do not wish to receive such communications, you may opt-out or unsubscribe. We present the OPT-OUT option to all users, except with respect to system or service notifications. Each communication that you receive from us will provide you with a method of opting out or unsubscribing.

When purchasing products online, you will also be asked to provide a credit card number. The credit card details that you provide when purchasing products or the Services constitute Personal Information that is covered by this Privacy Policy.

When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system. We may this information including the name of the Internet service provider and the Internet Protocol (IP) address through which you access the Internet, the dates and times that you access the Site, and the Services, the pages that you view while at the Site, and the Internet address of the website from which you linked to the Site. Information regarding your computer system configuration and operating system is also gathered. This information is used by us to help analyze trends and to improve and administer the Services.

Email marketing: With your permission, we may send you emails about our store, new products and other updates. If you indicate an interest in receiving e-mail communication, we may periodically send you information about our other products and services. Established users will occasionally receive information on products, services, special deals and/or newsletters. Occasionally we may invite you to participate in surveys or contests. Participation in these surveys or contests is completely voluntary and the user therefore has a choice whether or not to disclose Personal Information. The requested Personal Information may include contact information (such as name and shipping address), and demographic information (such as zip code), but the specific Personal Information collected may vary. Personal Information will be used by the contest or survey sponsors to notify the winners and award prizes and as otherwise provided in the applicable contest rules. You should carefully review the rules of each survey or contest in which you participate, as they may contain additional important information about our, or a sponsor's, use of your Personal Information. To the extent that the terms and conditions of such rules concerning the treatment of your Personal Information conflict with this privacy policy, the terms and conditions of such rules shall control. We will not share the Personal Information you provide through a contest or survey with other third parties unless we give you prior notice and choice.

Sharing of Your Personal Information:  Except as otherwise described in this Privacy Policy, Personal Information that you provide to us will not be shared by us with third parties.  Neither Company nor its Affiliates will sell your Personal Information or otherwise make it available to third parties, except as permitted by you through an opt-in permission request or as otherwise outlined in this Privacy Policy.
In providing the Services to users, Company is required to provide some of your information to third parties in order to perform activities associated with the Services. Examples of these activities include billing processing, live chat software to assist you if you have questions while using our site or regarding your order, and fulfillment and sending e-mails on our behalf. When you sign up for our Services, we will share your personal information only as necessary for the third party to provide that Service and only to the third parties who we believe provide appropriate data security protection.

Updating Your Personal Information:  If your Personal Information changes, it is your responsibility and obligation to update it. If you wish to change, review, delete or update your Personal Information, you can do so by logging onto your "My Account" page.  You can access or update your Personal Information and communication preferences we have on file. If you require assistance in updating or accessing your Personal Information, or if you would like to request that your account be marked as inactive, please contact us at comfortzone@worldandmain.com. We will respond to your request within 30 days.   We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

SECTION 2 - CONSENT

How do you get my consent?

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.

How do I withdraw my consent?

If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at comfortzone@worldandmain.com or via US Postal Mail at:
Comfort Zone Heaters
324A Half Acre Rd
Cranbury New Jersey US 08527

SECTION 3 - DISCLOSURE

We may disclose your personal information if we are required by law to do so, other legal process or is requested by a public or governmental authority:

a.    to comply with any law, regulation, or litigation; or
b.    to protect and defend the property rights of our company and its Affiliates; or
c.    to act in urgent circumstances to protect the personal safety of any officer, director, employee, consultant, agent or representative of the company, any user of company products or services including without limitation the Site and the Services, or any member of the public; or
d.    for reasons of national security, law enforcement or other issues of public importance.
e.    In the event company goes through a business transition, such as a merger, acquisition by another company, or sale of all or a portion of its assets, your Personal Information will likely be among the assets transferred. You will be notified via email and/or prominent notice on our Web site of any such change in ownership or control of your Personal Information.

SECTION 4 - SHOPIFY

Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.

Payment:  If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.

All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.

PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).

SECTION 5 - THIRD-PARTY SERVICES

In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.

However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.

In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.

Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.

Links:  When you click on links on our store, they may direct you away from our site. This Privacy Policy applies solely to the Site, the Services, and to the Personal Information collected.   We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.  You acknowledge and agree that We are not responsible for the privacy practices, or your use, of any third party websites, or for any intended or unintended consequences of such use. We encourage you to carefully read the privacy statement of any Website you visit.

SECTION 6 - SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.  For example, your access to your registration information is available through a password and a unique customer ID which is a valid e-mail address provided by you. This password is encrypted. We recommend that you do not share your password to anyone.  We utilize security data security methods appropriate to the risks presented. No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, we cannot guarantee its absolute security.

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption.  Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

SECTION 7 - COOKIES

 Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.

 _session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).

 _shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits

 _shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.

cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.

 _secure_session_id, unique token, sessional

 storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.

SECTION 8 - AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or providence of residence, or that you are the age of majority in your state or providence of residence and you have given us your consent to allow any of your minor dependents to use this site.  This Site does not knowingly collect, disclose or use any Personal Information of individuals under 13 years of age for marketing, solicitation or any other purposes, other than for lawful purposes related to the operation and maintenance of the Site and the Services.

SECTION 9 - CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.

QUESTIONS AND CONTACT INFORMATION

If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact us at comfortzone@worldandmain.com or by mail at
Comfort Zone Heaters
Attn: Privacy Compliance
324A Half Acre Rd Cranbury
New Jersey US 08527