To ensure a secure online environment and guarantee data protection, we strictly comply with legal requirements. In this privacy statement, we provide insight into the manner and purpose of data collection, security measures, retention periods, and contact details.
SECTION 1 – PERSONAL INFORMATION WE COLLECT
Purchases can only be made if you are in possession of a personal account. When you create an account or purchase something from our store, as part of the buying and selling process, we collect the following personal information you provide us with:
• First & last name
• Home & invoice address
• Telephone number
• Your gender
• IP address
• E-mail address
• Date of birth
This data is required to accomplish the delivery. Additionally, when you browse our store, we automatically receive your computer’s internet protocol (IP) address. Based on this information, we can optimise your online experience and simultaneously protect our online environment.
Purpose of data collection
We collect and store account-related data for the following purposes: a. Carry out our obligations arising from any contracts between you and us, and to provide you with the information, products, and services that you request from us; b. Set up, manage, and contact you about your account and orders; c. Carry out market research and analyses; d. Confirm your age and identity, and to identify and prevent fraud.
With your explicit permission, we may send you newsletters about our store, new products, and other updates. We send newsletters based on expressed consent. The following information is collected in context of the newsletter:
• First & last name
• Your gender
• E-mail address
Purpose of data collection The collected data is used to: a. personalise our emails, including your name and your gender to provide gender-specific content; You may withdraw your consent at any time by using the link provided in the newsletter or the contact information provided in section 2.
1.3 Customer service
In order to be able to offer appropriate support, our customer support employees have access to account-related information. Consequently, their support will be highly effective and pleasant. Data which is provided in our contact form is used by our CRM provider SuperOffice. We will only use your data to respond to your message.
SECTION 2 – CONSENT
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery, or return a purchase, we imply that you consent to our collection of this information to use for that specific reason only. If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
2.1 How to withdraw consent?
If you change your mind after expressing opt-in consent, you may withdraw your consent for us to contact you for the continued collection, use, or disclosure of your information, at any time, by contacting us at: [email protected]
SECTION 3 – DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 – HOW LONG DO WE KEEP YOUR DATA?
At Green-mix, data minimalism is of great importance. Green-mix, we will not retain your data for longer than necessary for the purposes set out in this Policy. Different retention periods apply for different types of data, however, the longest we will normally hold any personal data is 10 years.
4.1 Account information
Account-related data remains relevant as long as the consumer is in possession of an account. Green-mix, the data remains documented for as long as the account exists. When our customers remove an account, the related data will be deleted within a reasonable period. Requests regarding inspection or correction of stored personal data or the removal of an account can be sent to: [email protected]
Newsletter consent and the associated data remains relevant as long as our customers are registered for the newsletter. Periodically (every month), however, we perform a relevance check. Registered customers (and their personal information) will be deleted whenever customers do not respond to our request. Furthermore, our newsletter communication consists of an opt-out function. Consumers can withdraw their consent with the use of this opt-out function.
SECTION 5 – COOKIES
Cookies are small bits of information that tell your computer about previous interactions with our website. These cookies are stored on your hard drive, not our website. Basically, when you use our website, your computer will show us its cookies, telling our site whether you used it before. This allows our site to operate faster, as well as to remember things related to your previous visits (e.g. username), to make it more convenient for you. At Green-mix, we use two types of cookies: functional and analytical cookies. 5.1 Functional cookies Functional cookies are used to improve your online experience. These cookies, inter alia, keeps track of what is placed in the shopping cart. The use of these cookies does not require prior permission. 5.2 Analytical cookies Analytical cookies are used to carry out market research and analyses. Data gathered with these analytical cookies is anonymised, thus becoming useless to others. The use of these cookies does not require prior permission. SECTION 6 – THIRD-PARTY SERVICES
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered, or destroyed. If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional, generally accepted industry standards. Account-related information is shielded with a hashing method. This method transforms information into a generated hash. As a result, sensitive information is secured, and is even invisible to us. Moreover, our databases are exceptionally protected against unauthorised persons. For example, access to the database is only possible and permitted by approved IP addresses (e.g. at Green-mix’s headquarters). Other attempts and addresses are refused at all times. Additionally, data has been anonymised as much as possible. Thus, the data cannot be directly linked to a specific consumer. With this data, however, we could perform market research and analysis. Furthermore, third-party stakeholders (e.g. mailing service) are screened prior to our collaboration, are GDPR compliant, and are provided with a processor agreement. Within Green-mix, employees are assigned different access permissions. The specific permission provides access only to the strictly needed information required to perform a task. Digital security measures are subject to changes and must meet high requirements to guarantee the safety of online customers. Green-mix, we appointed a security manager. Periodical checking and improving of security measures (when necessary) is part of the function.
SECTION 9 – CONTACT DETAILS
You can contact us: • Electronically by sending an e-mail to: [email protected] • By contact form