Privacy Policy

Language

For the benefit of clarity, all correspondence in connection with this Policy, or other related documents, shall be in English, and will be governed by the laws of England and Wales.

What information do we collect?

We (Organics Ltd) collect information from you when you register on our site, place an order, subscribe to our newsletter or fill out a form.

When ordering or registering on our site, as appropriate, you may be asked to enter your: name, e-mail address or mailing address. You may, however, visit our site anonymously.

What do we use your information for?

Any of the information we collect from you may be used in one of the following ways:

To personalize your experience?(your information helps us to better respond to your individual needs)

To improve our website?(we continually strive to improve our website offerings based on the information and feedback we receive from you)

To improve customer service?(your information helps us to more effectively respond to your customer service requests and support needs)

To process transactions

Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the express purpose of delivering the purchased product or service requested.

To administer a contest, promotion, survey or other site feature

To send periodic emails

The email address you provide for order processing, may be used to send you information and updates pertaining to your order, in addition to receiving occasional company news, updates, related product or service information, etc.

Note: If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.

How do we protect your information?

We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information.

We offer the use of a secure server. All supplied sensitive information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our Payment gateway providers database only to be accessible by those authorized with special access rights to such systems, and are required to keep the information confidential.

Do we use cookies?

Yes (Cookies are small files that a site or its service provider transfers to your computers hard drive through your Web browser (if you allow) that enables the sites or service providers systems to recognize your browser and capture and remember certain information).

We use cookies to help us remember and save your preferences for future visits.

Do we disclose any information to outside parties?

We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information. This does not include trusted third parties who assist us in operating our website, conducting our business, or servicing you, so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others rights, property, or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

Third party links

Occasionally, at our discretion, we may include or offer third party products or services on our website. These third party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

Online Privacy Policy Only

This online privacy policy applies only to information collected through our website and not to information collected offline.

Your Consent

By using our site, you consent to our privacy policy.

Changes to our Privacy Policy

If we decide to change our privacy policy, we will post those changes on this page, and/or update the Privacy Policy modification date below.

Data privacy and protection policy

Maintaining customer trust is an ongoing commitment, we strive to inform customers of the privacy and data security policies, practices and technologies we’ve put in place. These commitments include:

Access: We do not access or use customer content for any purpose other than as legally required and for maintaining our services and providing them to our customers (and their end users)

Storage: Customers content is stored on our server in the UK. We will not move or replicate customer content outside of the customer’s accepted region, except as legally required and as necessary to maintain the services and provide them to our customers and their end users

Security: We offer our customers strong encryption for customer content in transit or at rest.

Disclosure of customer content: We do not disclose customer content unless we’re required to do so to comply with the law or a valid and binding order of a governmental or regulatory body. Unless prohibited from doing so or there is clear indication of illegal conduct in connection with the use of our services, Organics Ltd notifies customers before disclosing customer content so they can seek protection from disclosure

Customer content

Customer data is classified into two categories: customer content and account information.

We define customer content as data, text, audio, video or images that a customer or any end user transfers to us for processing, storage or hosting by our services in connection with that customer's account and any computational results that a customer or any end user derives from the foregoing through their use of our services. For example, customer content includes images that a customer or any end user uploaded to our services. Customer Content does not include account information, which we describe below. The terms of any agreement with us governing the use of our services apply to your customer content.

We define account information as information about a customer that a customer provides to us in connection with the creation or administration of a customer account. For example, account information includes names, usernames, phone numbers, email addresses and billing information associated with a customer account. The information practices described in our Privacy Policy apply to account information.

Customer content ownership?

Customers maintain ownership of their customer content. We do not access or use customer content for any purpose other than as legally required and for maintaining our services and providing them to our customers and their end users. We never use customer content or derive information from it for marketing or advertising.

Account information

We know that customers care how account information is used, and we appreciate customers' trust that we will do so carefully and sensibly. Our Privacy Policy describes how we collect and use account information.

Third-party cloud services provider?

Our services are hosted on top of the secure and well-established 1and1 hosting. We do not run a custom data center, avoiding hundreds of performance, availability and security threads which have been settled down by 1and1 their years of presence in the market.

Customer content storage location?

Customer data is stored on our server in the UK for as long as we have the customer's agreement.

Customer's role in securing their customer content?

When evaluating the security of a cloud solution, it is important for customers to understand and distinguish between:

• Security measures that we implement and operate - "security of the cloud"

and

• Security measures that customers implement and operate, related to the security of their customer content and applications that make use of our services - "security in the cloud"

Organics Ltd is responsible for securing the cloud infrastructure, including computation, storage, databases and networks.

The customer is responsible for securing their customer data, their platforms, applications, identity and access management, their operating systems, networks and firewalls, the data-on-wire encryption and data integrity.

EU-US Privacy Shield

Recently, the European Commission and the US Government agreed on a new framework called the EU-US Privacy Shield, and on July 12, 2016, the European Commission formally adopted it. The EU-US Privacy Shield replaces Safe Harbor. AWS as well welcomes this new framework for transatlantic data flow.

To learn more about this topic in the context of our services, visit the AWS EU-US Privacy Shield page.

GDPR

On 25 May 2018 the Regulation of the European Parliament and the Council (EU) no. 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, comes into force.

What personal data is collected and processed by Organics Ltd?

Organics Ltd collects and processes personal data collected upon consent of users of websites managed by Organics Ltd, including customers of its online store, users of beta and demo software versions, newsletter subscribers, and users of other functionalities of organics.co.uk website, including data stored in cookies.

Personal data is collected from persons concerned – website users or Organics Ltd customers, who registered themselves with our online store website. Controller of the above details will be Organics Ltd and all of its affiliated entities and subsidiaries, both in personal and capital terms, directly or via other entities, and our trusted partners.

Purpose of personal data processing.

Organics Ltd collects and processes personal data for purposes required by the law, and other purposes specified by Organics Ltd, among others to:

• optimize steps undertaken by its customers, in particular to improve and facilitate the process of purchase, complaint or return of purchased goods

• develop a customized offer

• inform our customers of new Organics Ltd products

• make analyses to improve our services

Whom can we transfer the data to?

According to the binding law, a personal data controller (Organics Ltd) can transfer personal data to entities processing the details as contracted by us, e.g. our service sub-contractors, marketing agencies, and entities authorized to obtain the details according to the binding law, e.g. courts or prosecution authorities – of course only if they approach us with such a request based on valid legal grounds.

Organics Ltd supervises compliance in terms of protection of the details collected and processed by its website. Contact: comms@organics.co.uk

What are your rights involving your personal details?

You have a right to request access to your details, request that the details be corrected, erased or their processing limited. You can also withdraw your consent for the processing of your personal data, object thereto, and execute other rights, including to:

• get comprehensive information, whether such a database exists, and to learn the controller of the data, their registered address, and full name;

• get information on the purpose, scope and way of processing of personal data stored in such a database

• get information, since when details concerning yourself have been processes, and be provided the content of the details in clear and plain language

• get information on the source, the details have been derived from, unless the controller of the details is, in that respect, obliged to keep confidential any classified information, or any professional secrets

• get information on the process of disclosure of the details, in particular information on recipients and/or their categories, such data is disclosed to

• get information on the grounds for a resolution, defined under article 26a(2)

• request that your personal details be corrected, updated, rectified, their processing be temporarily or permanently restricted, or that the details be erased, if they are incomplete, no longer up-to-date, untrue, or have been collected in violation of the law, and/or are no longer needed for the purpose they have been collected for

• request that your personal details no longer be processed

What are the legal grounds for Organics Ltd to process your personal data?

Each personal data processing exercise must be based on respective legal grounds, compliant with the binding regulations. Legal basis for the processing of personal details for the purpose of selling goods and providing services is their being essential for performance of an agreement concerned (in case of provision of services, such agreements are the Terms and Conditions, or similar documents available within the service you use).

On the other hand, legal basis for customizing the content of services to users of websites and services managed by Organics Ltd, to ensure their safety and security, and for measurements/analyses, and to improve such services, as well for internal Organics Ltd marketing, is so called legitimate interest of personal data controller. Personal data will be processed for marketing purposes, including profiling, and for analytical purposes, based on a voluntary consent, which may be given by ticking the “I agree” button next to the declaration.

The consent is of a voluntary nature and may be withdrawn at any time, however, withdrawing your consent will not affect legality of a consent-based processing before its withdrawal.

 

This policy was last modified on March 26, 2019