Privacy Policy

This Privacy Policy describes how and when we collect, use, and share information when you purchase an item from us, contact us, or otherwise use our services through http://www.ninjadesignprintable.bigcartel.com.

 

Your privacy matters to us. Our shop has SSL, which adds a layer of security when you enter your information at checkout. Payments are processed by Stripe, which has a high level of security on all transactions.

 

This Privacy Policy does not apply to the practices of third parties that we do not own or control, including Stripe and Mailchimp. You can reference the Stripe Privacy Policy and Mailchimp Privacy Policy to learn more about their privacy practices.

 

Information We Collect

To fulfil your order, you must provide us with certain information, such as your name, email address, postal address, payment information, and the details of the product(s) that you’re ordering. You may also choose to provide us with additional personal information (for a custom order, for example), if you contact us directly.

 

Why We Need Your Information and How We Use It

We rely on a number of legal bases to collect, use, and share your information, including:

as needed to provide our services, such as when we use your information to fulfil your order, to settle disputes, or to provide customer support;

when you have provided your affirmative consent, which you may revoke at any time, such as by signing up for our mailing list;

visitor comments may be checked through an automated spam detection service;

if necessary to comply with a legal obligation or court order or in connection with a legal claim, such as retaining information about your purchases if required by tax law; and

as necessary for the purpose of our legitimate interests, if those legitimate interests are not overridden by your rights or interests, such as 1) providing and improving our services. We use your information to provide the services you requested and in our legitimate interest to improve our services.

 

Comments

When visitors leave comments on the site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

 

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

 

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

 

Cookies

If you leave a comment on our site, you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

 

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

 

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

 

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

 

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

 

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

 

Information Sharing and Disclosure

Information about our customers is important to our business. We share your personal information for very limited reasons and in limited circumstances, as follows:

 

Account. If you request a password reset, your IP address will be included in the reset email.

 

Mailchimp. We share information with Mailchimp as necessary to provide you with our email newsletter.

 

Service providers. We engage certain trusted third parties to perform functions and provide services to our shop, such as delivery companies. We will share your personal information with these third parties, but only to the extent necessary to perform these services.

 

Business transfers. If We sell or merge our business, We may disclose your information as part of that transaction, only to the extent permitted by law.

 

Compliance with laws. We may collect, use, retain, and share your information if we have a good faith belief that it is reasonably necessary to: (a) respond to legal process or to government requests; (b) enforce our agreements, terms and policies; (c) prevent, investigate, and address fraud and other illegal activity, security, or technical issues; or (d) protect the rights, property, and safety of our customers, or others.

 

How long we retain your data

We retain your personal information only for as long as necessary to provide you with our services and as described in our Privacy Policy. However, We may also be required to retain this information to comply with our legal and regulatory obligations, to resolve disputes, and to enforce our agreements. We generally keep your data for the following time period: 4 years.

 

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

 

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

 

What rights you have over your data

If you reside in certain territories, including the EU, you have a number of rights in relation to your personal information. While some of these rights apply generally, certain rights apply only in certain limited cases. We describe these rights below:

 

Access. If you have an account on this site, or have left comments, including any data you have provided to us, you may have the right to access and receive a copy of the personal information we hold about you by contacting us using the contact information below.

 

Change, restrict, delete. You may also have rights to change, restrict our use of, or delete any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

 

Object. You can object to (i) our processing of some of your information based on our legitimate interests and (ii) receiving marketing messages from us after providing your express consent to receive them. In such cases, we will delete your personal information unless we have compelling and legitimate grounds to continue using that information or if it is needed for legal reasons.

 

Complain. If you reside in the EU and wish to raise a concern about our use of your information (and without prejudice to any other rights you may have), you have the right to do so with your local data protection authority.

 

Transfers of Personal Information Outside the EU

We may store and process your information through third-party hosting services in Canada and other jurisdictions. As a result, we may transfer your personal information to a jurisdiction with different data protection and government surveillance laws than your jurisdiction. If we are deemed to transfer information about you outside of the EU, we rely on Privacy Shield as the legal basis for the transfer, as Google Cloud is Privacy Shield certified.

 

How to Contact Us

For purposes of EU data protection law, we, Ninja Design Printable, are the data controller of your personal information. If you have any questions or concerns, you may contact us at ninjadesignprintable@gmail.com. Alternately, you may mail us at:

 

PO Box 35063

Fleetwood Postal Outlet

Surrey, B.C. Canada