SECTION 1 - WHAT WE DO WITH YOUR INFORMATION?
When you buy something in our store as a part of the buying and selling process, we collect the personal information which you provide, such as your name, address and e-mail address. When you browse at our store, we automatically get your computer's Internet Protocol (IP) address to send us information that tells us more about your browser and operating system.
Email marketing (if applicable): With your permission, we can send you emails through our shop, new products, and other updates.
SECTION 2 - CONSENT
How do you get my consent?
If you provide us with personal information to process a transaction, verify your credit card, place an order, process a delivery, or return a purchase, you agree that we collect and use it only for that specific reason.
If we ask you for your personal information for a secondary reason, such as marketing, we will either ask you for your explicit consent or give you the opportunity to say no.
How can I revoke my consent?
If you change your mind after registering, you may revoke your consent to contact us for further collection, use or disclosure of your information at any time by contacting us at email@example.com.
SECTION 3 - DISCLOSURE
Our payments are handled by secure payment providers. We never save your credit card information. It is encrypted by the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is only stored until your purchase transaction is completed. After that, your purchase transaction information will be deleted.
All direct payment gateways comply with PCI-DSS standards, which are managed by the PCI Security Standards Council. This is a joint effort by brands such as Visa, MasterCard, American Express and Discover.
PCI DSS requirements help ensure the safe handling of credit card information by our business and service providers.
SECTION 4 - SERVICES OF THIRD PARTIES
In general, the third-party vendors we use and will only collect or disclose your information to the extent necessary to perform the services they provide to us.
However, certain third-party providers, such as payment gateways and other payment processors, have their own privacy policies regarding the information we need to provide them for your purchase-related transactions.
In particular, note that certain providers may be in a different jurisdiction than you or we or have facilities. So, if you choose a transaction involving a third-party service, your information may be subject to the laws of the jurisdiction in which that service provider or its facilities reside.
For example, if you are located in Canada and your transaction is processed by a US-based payment gateway, your personal information used to complete this transaction may be subject to US disclosure, including the Patriot Act.
If you click on links in our shop, you may be referred from our website. We are not responsible for the privacy practices of other websites and encourage you to read their privacy statements.
SECTION 5 - SAFETY
To protect your personal information, we take reasonable precautions and follow industry best practices to ensure that they are not unduly lost, abused, accessed, disclosed, altered or destroyed.
When you provide us with your credit card information, the information is encrypted using Secure Socket Layer (SSL) technology and stored using AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we comply with all PCI DSS requirements and implement additional generally accepted industry standards.
Here is a list of cookies we use. We have listed them here so you can choose to disable cookies or not.
_session_id, unique token, sessional, allows kohsamui.tours to store information about your session (referrer, landing page, etc.).
no data held, Resistant for 30 minutes from the last visit. Used by the internal statistics tracker of our website provider to record the number of visits
no data held, Expires midnight (relative to the visitor) of the next day, Counts the number of visits of a single customer in a store.
cart, unique token, 2 weeks shelf life, stores information about the content of your shopping cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the store has a password, this is used to determine if the current visitor has access.
SECTION 6 - TIME TO AGREE
By using this website, you declare that you have reached the required minimum age in your state or province and that you have given us your permission to do so in order to use this website.
If our business is acquired or merged with another company, your data may be passed on to the new owners so that we can continue to sell you our products.
QUESTIONS AND CONTACT INFORMATION
If you wish to access, correct, change or delete personal information that we hold about you, wish to register a complaint or simply require further information, please contact our Privacy Officer at firstname.lastname@example.org or through our website at www.kohsamui.tours
[Subject: Data Protection Officer]