Legal & Safety
Safety Warnings / Product Disclaimers
SECTION 1 – WHAT DO WE DO WITH THE PII WE COLLECT FROM YOU?
When you purchase something from the Site, as part of the buying and selling process, we may collect PII such as your name, address, email address, phone number and purchase details. We use this for fulfilling customer orders and operating our business, including customer or warranty services. Where applicable, we or entities we work with may also receive website account login information and/or payment information from you.
When you browse our website or engage with our marketing, we may also collect PII such as the individual web pages or products that you view, your purchase history with us, what websites or search terms referred you to the Site, whether you read emails we send you, your general location, information about how you interact with the Site, internet browsing data, or your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system. This PII helps us understand how you use our Site and gives us the feedback we need to improve it. The PII may also be used to enhance our ability to serve you and for analytics or marketing. For additional information, you may see Section 7 (titled “Cookies”) below.
With your permission, we may also collect PII such as your contact information to send you emails or SMS/MMS messages about the Site, new products, and other updates. We may also collect any PII you choose to provide us with, including your birth date and/or your pregnancy due date, regarding your order, marketing updates you sign up for, etc.
We use PII we collect to facilitate our business purposes, including the fulfillment of purchase orders, marketing, and our own internal statistics and functions. We generally keep PII for two years in connection with these purposes. We may also share your PII with third parties for the same reasons. See Section 3 for more detail.
SECTION 2 – SENSITIVE PII
What is considered “sensitive” PII depends in part on applicable law(s) but may include account log-ins, passwords, health data, your precise geolocation, or identification such as your driver’s license or social security number. Copper Pearl or third parties we work with may collect sensitive PII such as account log-ins, passwords, birthdays or pregnancy due dates to provide our goods/services and related marketing promotions. We will only collect and use such sensitive PII with your permission. We do not disclose or collect your sensitive PII for any other purposes, nor do we collect or process it with the purpose of inferring characteristics about you or other consumers.
SECTION 3 – DISCLOSURE OF PII
Some PII may be shared with and/or stored by third-party providers who are contracted to provide services necessary for Copper Pearl to operate and/or to fulfill and service customer orders and requests. As an example, we provide some of your PII to third-party shipping partners to have your order shipped to you. We may also share PII with third parties for other reasons, such as:
- To better facilitate and improve our business functions, including the operation and security of our Site, customer services, and/or data management and storage;
- For assistance with marketing purposes, communications, and/or product reviews;
- When we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, comply with applicable laws, investigate fraud, or respond to government request(s), and such disclosure is not otherwise prohibited by law;
- To any other third party with your prior consent to do so; or
- If Copper Pearl is involved in a merger, acquisition, or sale of all or a portion of its assets, which change you will be notified of as necessary under applicable law(s).
Copper Pearl does not sell PII to third parties for monetary consideration. However, there may be situations in which you have the right to opt out of certain sharing of your PII. For more information see Section 8 below.
We may also disclose your PII if we are required by law to do so.
SECTION 4 – SHOPIFY
Our Site is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you. Your PII is (at least in part) stored through Shopify’s data storage, databases, and the general Shopify application. They store your data on a secure server behind a firewall. Shopify may collect your PII for its own purposes and may also use automated decision-making to conduct risk and fraud screening.
If you choose a direct payment gateway to complete your purchase Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information.
For more insight, you may want to read Shopify’s Terms of Service at https://www.shopify.com/legal/terms or Privacy Statement at https://www.shopify.com/legal/privacy.
SECTION 5 – THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use, and disclose your PII to the extent necessary to allow them to perform the services they provide to us, as discussed in Section 3 above.
Remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or us. If you elect to proceed with a transaction that involves the services of a third-party service provider your PII may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located. As an example, if you are located in Canada and your transaction is processed by a third-party payment gateway located in the United States, your PII used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
SECTION 6 – SECURITY
We take reasonable precautions to protect your PII and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information it is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 – COOKIES
- Are essential to the operation, functionality, legal compliance, and/or security of our Site;
- Facilitate our business functions, including order fulfillment and related services, data management, diagnostics, and/or analytics;
- Help to improve the performance and/or security of our Site;
- Allow us to communicate with you, including for product reviews, surveys, or to let you know a product is back in stock;
- Allow us to facilitate advertising, to provide you with advertising relevant to you, and/or to measure the efficacy of our advertising or communications;
- Remind us who you are and help us to better understand, track, and save your preferences and/or purchase history;
- Help us better understand your visits to the Site, including how you interact with the Site and/or what websites or search terms referred you to the Site; or
- Help us better understand how you access our Site, your general location, and/or to distinguish between different visitors to the Site.
For example, our Site uses Google Analytics to help us learn about who visits our site and what pages are being looked at. Google Analytics cookies are persistent for a very short period, they are set by Google, and they track who visits the Site and from where.
As noted above, Copper Pearl’s Site is hosted by Shopify and Shopify uses its own cookies to collect PII and to help the Site function. Copper Pearl is not responsible for these cookies, but they may be viewed at https://www.shopify.com/legal/cookies.
SECTION 8 – OPT-OUT
As a matter of policy, Copper Pearl Inc. does not sell PII for money. However, applicable law(s) may define the “sale” of personal data more broadly than as an exchange for money. Where that is the case, or if it is shared with a third party for cross context behavioral advertising or targeted advertising, you may opt out of the sale or sharing of your PII here: Do Not Sell or Share My Personal Information.
Some web browsers incorporate a “Do Not Track” or similar feature (such as Global Privacy Control signals, see https://globalprivacycontrol.org/) that signal to websites that you visit that you do not want to have your online activity tracked. Our Site recognizes Global Privacy Control signals for California residents.
SECTION 9 – CHILDREN’S PRIVACY
Our Site’s services are not directed to or intended for purchase and/or access by minors. By using this Site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this Site. Consistent with the requirements of applicable law, if we learn that we have received any PII directly from a minor without his or her parent’s verified consent, we will use that PII only to respond directly to that child (or his or her parent or legal guardian) to inform the minor that he or she cannot use our services and subsequently will delete that PII.
SECTION 10 – YOUR RIGHTS
Depending on where you reside and/or your location, including in the United States and other applicable jurisdictions, you may have certain rights regarding PII. These rights may include:
- The right to know about PII collected about you;
- The right to access your collected PII;
- The right to have your PII be deleted;
- The right to have your PII rectified or corrected (if inaccurate);
- The right to data portability; and
- The right to opt-out of the sale or applicable sharing of your PII (see section 8 above); and
- The right to restrict use of your PII, including to limit use and disclosure of sensitive personal data (see section 2 above).
You may also have the right to non-discrimination, which means you cannot be discriminated against because you exercise any of your data privacy rights. We will not discriminate against you because of your exercise of these rights. If you would like to learn more or exercise any of your data privacy rights, please contact us through the contact information below.
If you are a European or UK resident, you have the right to be informed about and/or access PII we hold about you and to ask that your PII be corrected, updated, or deleted. You also have the right to object to or restrict processing of your PII, and the right to data portability where applicable. Finally, where applicable, you have rights in relation to automated decision making and profiling. If you would like to learn more or exercise any of these rights, please contact us through the contact information below. Learn more about the GDPR and your rights here.
Additionally, if you are a European or UK resident, we note that we are processing your PII as set out herein in order to fulfill contracts we might have with you (for example if you make an order through this Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your PII will be transferred outside of Europe, including to the United States. Please contact us through the contact information below for further details, where applicable.
Upon receiving a request to exercise any of your data privacy rights as set out in this Section 10, and depending on which right(s) you wish to exercise, we may ask that you provide sufficient verifying information. If any of your request(s) are denied or if you feel that your PII has not been handled appropriately according to applicable law(s), you may be able to lodge a complaint or appeal that decision with us and/or the applicable data supervisory authority. For more information, contact us as set out below.
QUESTIONS AND CONTACT INFORMATION
If you would like to exercise your data privacy rights under applicable law, register a complaint, or simply want more information please contact us by using the details provided below:
Copper Pearl Inc.
ATTN: Data Privacy
1580 S 500 W Ste 400
Salt Lake City, UT 84115