Information we collect and how we use it

This Website may collect and process personal and non personal data that you provide to us. Personal data as defined by GDPR means any information relating to an identified or identifiable natural person. This Website may collect and process personal and non personal data through:

Purchases

We collect information about you during the checkout process on our store. This information may include, but is not limited to, your name, billing address, shipping address, email address, phone number, credit card/payment details and any other details that might be requested from you for the purpose of processing your orders. Handling this data also allows us to:

• Send you important account/order/service information.
• Respond to your queries, refund requests, or complaints.
• Process payments and to prevent fraudulent transactions. We do this on the basis of our legitimate business interests.
• Set up and administer your account, provide technical and/or customer support, and to verify your identity.

Additionally we may also collect the following information:

• Location and traffic data (including IP address and browser type) if you place an order, or if we need to estimate taxes and shipping costs based on your location.
• Product pages visited and content viewed while your session is active.
• Your comments and product reviews if you choose to leave them on our website.
• Account email/password to allow you to access your account, if you have one.

Contact/Ticket submission forms

Each time you contact us, a ticket is automatically created. We collect questions, queries or feedback you leave, including your name, email address, website URL, item licenses or other info you may provide in your message box. We use these details to respond to the feedback/query you send us.

We automatically:

• delete tickets after 90 days
• delete tickets with status “deleted” after 30 days
• delete ticket files after 90 days

Newsletter subscription forms

We collect your name and email address when you sign-up to receive our monthly email newsletter. In addition to our monthly newsletter, we may periodically send additional emails, which we think you may find useful (such as blog articles, theme updates, new product releases, discounts, changes to our service). If you’ve signed up for email alerts, you can unsubscribe at any time by selecting the “unsubscribe” link that appears in every email we send. We will never share your information other than for the purpose for which it was provided to us.

Contact forms

When visitors email us via the contact form on the site, your submitted data are sent to our company email, hosted by Google. Google’s privacy policy is available here: https://policies.google.com/privacy. Your submitted data will be kept and used for customer service purpose only.

Payment processing forms

The technology for this Website e-commerce activities is provided by our E-Commerce Platform, fully compliant with the GDPR.

Website Analytics

We use Google Analytics web analytics service for tracking visitors and aggregating information about the traffic to our websites. Google may collect data about you and your browsing behavior throughout our websites. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy/.

Who we share your data with

We don’t share, sell, trade or otherwise transfer your data with third-parties in a way as to reveal any of your personal information. However, some data is transferred and/or stored with third-party services we use to operate our websites, like Google Analytics, Google Adwords, Facebook, Easy Digital Downloads, PayPal, Midtrans Payment Gateway, and Mailchimp.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

If you subscribe to our newsletter program, your data are retained indefinitely until you opt-out or unsubscribe from our newsletter program.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

How we protect your data

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

Third-Party Disclosure

We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information. We may also release information when its release is appropriate to comply with and forced by the law.

Non-personally identifiable visitor information may be provided to other parties for (re)marketing, advertising, or other uses.

Breach Notifications

We use SSL encryption in the transmission of your personal information between your system and ours. However, no system can be completely secure. No method of transmission over the internet, or method of electronic storage is 100% secure and we are unable to guarantee the absolute security of the Personal Information we have collected from you.

If our Website experiences a data breach we will immediately communicate this to those users affected by the breach. A notification will be sent within 72 hours to all affected users.

Changes to this Privacy Policy

Future changes to this Website’s Privacy Policy will be published on this page and, where appropriate, sent to you by email notification. Please check back frequently to read any updates or changes to this Privacy Policy.