Privacy Policy
Privacy policy
Last updated: 07/11/2024
This Privacy Policy describes how Gregorylux (the “Site“, “we“, “us“, or “our“) collects, uses, and discloses your personal information when you visit, use our services, or make a purchase from gregorylux.com.au (the “Site“) or otherwise communicate with us (collectively, the “Services“). For purposes of this Privacy Policy, “you” and “your” means you as the user of the Services, whether you are a customer, website visitor, or another individual whose information we have collected pursuant to this Privacy Policy.
Please read this Privacy Policy carefully. By using and accessing any of the Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree to this Privacy Policy, please do not use or access any of the Services.
Personal Information We Collect
When you visit the Site, we automatically gather certain information about your device, including details about your web browser, IP address, time zone, and some cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products you view, what websites or search terms referred you to the Site, and how you interact with the Site. We refer to this automatically collected data as Device Information.
We collect Device Information using the following technologies:
Cookies: Data files placed on your device or computer that often include an anonymous unique identifier. For more information on cookies and how to disable them, visit All About Cookies.
Log Files: These track actions occurring on the Site and collect data such as your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
Web Beacons, Tags, and Pixels: Electronic files used to record information about how you browse the Site.
Additionally, when you make a purchase or attempt to do so through the Site, we collect specific information from you, including your name, billing address, shipping address, payment details (e.g., credit card numbers), email address, and phone number. We refer to this information as Order Information.
When we talk about Personal Information in this Privacy Policy, we mean both Device Information and Order Information.
Personal Data
Personally identifiable information may include, but is not limited to:
- Email address
- First name and last name
- Phone number
- Address, State, Province, ZIP/Postal code, City
- Payment details
- Usage Data
How Do We Use Your Personal Information?
We use the Order Information that we collect to:
- Fulfill any orders placed through the Site (e.g., processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations).
- Communicate with you.
- Screen our orders for potential risk or fraud.
- Provide you with information or marketing regarding our products or services, in line with the preferences you have shared with us.
We use the Device Information that we collect to:
- Help us screen for potential risk and fraud (in particular, your IP address).
- Improve and optimize our Site (e.g., by generating analytics about how customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).
Sharing Your Personal Information
We share your Personal Information with third parties to help us use your Personal Information, as described above. For example:
We use WooCommerce to power our online store. You can learn more about how WooCommerce uses your Personal Information here.
We use Google Analytics to help us understand how our customers use the Site. You can read more about how Google uses your Personal Information here. You can opt-out of Google Analytics here.
We may also share your Personal Information to comply with applicable laws and regulations, respond to lawful requests for information (such as subpoenas or search warrants), or protect our rights.
Behavioural Advertising
We use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information on how targeted advertising works, you can visit the Network Advertising Initiative’s educational page.
You can opt out of targeted advertising using the links below:
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal.
TRACKING TECHNOLOGIES AND COOKIES
We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used include beacons, tags, and scripts to collect and track information and to improve and analyze Our Service.
The technologies We use may include:
Cookies or Browser Cookies: A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting to refuse Cookies, our Service may use Cookies.
Web Beacons: Certain sections of our Service and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).
Types of Cookies We Use
Cookies can be Persistent or Session Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser. We use both types for the purposes set out below:
Necessary / Essential Cookies
Type: Session Cookies
Administered by: Us
Purpose: These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that You have asked for cannot be provided.Cookies Policy / Notice Acceptance Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These Cookies identify if users have accepted the use of cookies on the Website.Functionality Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These Cookies allow us to remember choices You make when You use the Website, such as remembering your login details or language preference. The purpose of these Cookies is to provide You with a more personal experience and to avoid You having to re-enter your preferences every time You use the Website.
COOKIES NECESSARY FOR THE FUNCTIONING OF THE STORE
| Name | Function | Duration |
|---|---|---|
| _ab | Used in connection with access to admin. | 2y |
| _secure_session_id | Used in connection with navigation through a storefront. | 24h |
| _woocommerce_country | Used in connection with checkout. | session |
| _woocommerce_m | Used for managing customer privacy settings. | 1y |
| _woocommerce_tm | Used for managing customer privacy settings. | 30min |
| _woocommerce_tw | Used for managing customer privacy settings. | 2w |
| _storefront_u | Used to facilitate updating customer account information. | 1min |
| _tracking_consent | Tracking preferences. | 1y |
| c | Used in connection with checkout. | 1y |
| cart | Used in connection with shopping cart. | 2w |
| cart_currency | Used in connection with shopping cart. | 2w |
| cart_sig | Used in connection with checkout. | 2w |
| cart_ts | Used in connection with checkout. | 2w |
| cart_ver | Used in connection with shopping cart. | 2w |
| checkout | Used in connection with checkout. | 4w |
| checkout_token | Used in connection with checkout. | 1y |
| dynamic_checkout_shown_on_cart | Used in connection with checkout. | 30min |
| hide_woocommerce_pay_for_checkout | Used in connection with checkout. | session |
| keep_alive | Used in connection with buyer localization. | 2w |
| master_device_id | Used in connection with merchant login. | 2y |
| previous_step | Used in connection with checkout. | 1y |
| remember_me | Used in connection with checkout. | 1y |
| secure_customer_sig | Used in connection with customer login. | 20y |
| woocommerce_pay | Used in connection with checkout. | 1y |
| woocommerce_pay_redirect | Used in connection with checkout. | 30 minutes, 3w or 1y depending on value |
| storefront_digest | Used in connection with customer login. | 2y |
| tracked_start_checkout | Used in connection with checkout. | 1y |
| checkout_one_experiment | Used in connection with checkout. | session |
| checkout_session_lookup | Used in connection with checkout. | 3w |
| checkout_session_token_<<token>> | Used in connection with checkout. | 3w |
| identity-state | Used in connection with customer authentication. | 24h |
| identity-state-<<token>> | Used in connection with customer authentication. | 24h |
| identity_customer_account_number | Used in connection with customer authentication. | 12w |
REPORTING AND ANALYTICS
| Name | Function | Duration |
|---|---|---|
| _landing_page | Track landing pages. | 2w |
| _orig_referrer | Track landing pages. | 2w |
| _s | WooCommerce analytics. | 30min |
| _woocommerce_d | WooCommerce analytics. | session |
| _woocommerce_s | WooCommerce analytics. | 30min |
| _woocommerce_sa_p | WooCommerce analytics relating to marketing & referrals. | 30min |
| _woocommerce_sa_t | WooCommerce analytics relating to marketing & referrals. | 30min |
| _woocommerce_y | WooCommerce analytics. | 1y |
| _y | WooCommerce analytics. | 1y |
| _woocommerce_evids | WooCommerce analytics. | session |
| _woocommerce_ga | WooCommerce and Google Analytics. | session |
| customer_auth_provider | WooCommerce analytics. | session |
| customer_auth_session_created_at | WooCommerce analytics. | session |
Duration of Cookies
The duration that a cookie remains on your computer or mobile device depends on whether it is a “persistent” or “session” cookie. Session cookies are temporary and are deleted once you close your browser, while persistent cookies remain on your device until they expire or are manually removed. The majority of the cookies we use are persistent and will expire between 30 minutes and two years after being placed on your device.
You have control over how cookies are managed. However, please note that deleting or blocking cookies can negatively affect your user experience, and some parts of our website may no longer function properly.
Most browsers automatically accept cookies, but you can modify your browser settings to decline cookies if you prefer. These settings can usually be found in your browser’s “Tools” or “Preferences” menu. For detailed instructions on how to adjust cookie settings, block, manage, or filter them, refer to your browser’s help documentation or visit resources such as www.allaboutcookies.org.
Please be aware that blocking cookies may not entirely prevent the sharing of information with third parties, including our advertising partners. To exercise your rights or opt-out of certain uses of your information by these partners, refer to the instructions in the “Behavioural Advertising” section above.
For more details about the cookies we use and your options regarding their use, please see our Cookies Policy or the Cookies section of our Privacy Policy.
How We Disclose Personal Information
In certain circumstances, we may disclose your personal information to third parties for legitimate purposes subject to this Privacy Policy. Such circumstances may include:
- With vendors or other third parties who perform services on our behalf (e.g., IT management, payment processing, data analytics, customer support, cloud storage, fulfillment and shipping).
- With business and marketing partners, including WooCommerce, to provide services and advertise to you. Our business and marketing partners will use your information in accordance with their own privacy notices.
- When you direct, request us or otherwise consent to our disclosure of certain information to third parties, such as to ship you products or through your use of social media widgets or login integrations, with your consent.
- With our affiliates or otherwise within our corporate group, in our legitimate interests to run a successful business.
- In connection with a business transaction such as a merger or bankruptcy, to comply with any applicable legal obligations (including to respond to subpoenas, search warrants and similar requests), to enforce any applicable terms of service, and to protect or defend the Services, our rights, and the rights of our users or others.
We have, in the past 12 months disclosed the following categories of personal information and sensitive personal information (denoted by *) about users for the purposes set out above in “How we Collect and Use your Personal Information” and “How we Disclose Personal Information”:
| Category | Categories of Recipients |
|---|---|
|
|
BUSINESS TRANSACTIONS
If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.
LAW ENFORCEMENT
In certain situations, the Company may be legally required to disclose your Personal Data, such as when responding to valid requests from public authorities (e.g., courts or government agencies).
OTHER LEGAL REQUIREMENTS
The Company may also disclose your Personal Data in the good faith belief that such action is necessary to:
- Comply with a legal obligation
- Protect and defend the rights or property of the Company
- Prevent or investigate possible wrongdoing in connection with the Service
- Protect the personal safety of users of the Service or the public
- Protect against legal liability
SECURITY OF YOUR PERSONAL DATA
The security of your Personal Data is a top priority for us. However, please note that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
DETAILED INFORMATION ON THE PROCESSING OF YOUR PERSONAL DATA
Our third-party Service Providers may have access to your Personal Data. These vendors collect, store, use, process, and transfer information about your activity on our Service in accordance with their respective privacy policies.
EMAIL MARKETING
We may use your Personal Data to send you newsletters, marketing communications, or promotional materials that may interest you. You can opt out of receiving such communications at any time by following the unsubscribe link or instructions provided in any email we send or by contacting us directly.
We may use third-party email marketing providers to manage and distribute emails on our behalf.
For example, we use Klaviyo. You can review their privacy policy at: Klaviyo Privacy Policy.
GDPR COMPLIANCE
Legal Basis for Processing Personal Data under GDPR
We may process Personal Data under the following conditions:
Consent: You have given Your consent for processing Personal Data for one or more specific purposes.
Performance of a contract: Provision of Personal Data is necessary for the performance of an agreement with You and/or for any pre-contractual obligations thereof.
Legal obligations: Processing Personal Data is necessary for compliance with a legal obligation to which the Company is subject.
Vital interests: Processing Personal Data is necessary in order to protect Your vital interests or of another natural person.
Legitimate interests: Processing Personal Data is necessary for the purposes of the legitimate interests pursued by the Company.
Your Rights under the GDPR
As an EU resident, you have the right to:
- Request access to Your Personal Data.
- Request correction of the Personal Data that We hold about You.
- Object to processing of Your Personal Data.
- Request erasure of Your Personal Data.
- Request the transfer of Your Personal Data.
- Withdraw Your consent at any time.
If you wish to exercise any of these rights, please contact us at [email protected]
EXERCISING OF YOUR GDPR DATA PROTECTION RIGHTS
You may exercise Your rights of access, rectification, cancellation and opposition by contacting Us. Please note that we may ask You to verify Your identity before responding to such requests. If You make a request, We will try our best to respond to You as soon as possible.
You have the right to complain to a Data Protection Authority about Our collection and use of Your Personal Data. For more information, if You are in the European Economic Area (EEA), please contact Your local data protection authority in the EEA.
PAYMENTS
We offer paid products and services within our Service. For payment processing, we use third-party payment processors. Please note that we do not store or collect your payment card details. This information is provided directly to our payment processors, whose use of your Personal Data is governed by their privacy policies. All payment processors we work with adhere to PCI-DSS standards to ensure the secure handling of payment information.
For example, we use Stripe for payment processing. You can view their privacy policy here: Stripe Privacy Policy.
Your Rights
If you are a European resident, you have the right to access the personal information we hold about you, and to request that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact details provided below.
Additionally, if you are a European resident, please note that we process your information in order to fulfill contracts we might have with you (for example, if you make an order through the Site), or otherwise to pursue our legitimate business interests. Please be aware that your information will be transferred outside of Europe, including to Canada and the United States.
CHILDREN’S PRIVACY
Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers.
If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent’s consent before We collect and use that information.
LINKS TO OTHER WEBSITES
Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party’s site. We strongly advise You to review the Privacy Policy of every site You visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Data Retention
When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information.
Changes
We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or for other operational reasons.
We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the “Last updated” date at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Contact Us
Should you have any questions about our privacy practices or this Privacy Policy, or if you would like to exercise any of the rights available to you, please call +31640795347 or email us at [email protected]
