Privacy & cookies policy

 

INTRODUCTION

Kaaita d.o.o. is committed to protecting and respecting your privacy. In this Privacy Policy “we” means Kaaita d.o.o. (and “us” and “our” will be construed accordingly); and “you” means our customer, potential customer or visitor of the website shop.kaaita.com (and “your” will be construed accordingly).

This policy (together with our Terms & Conditions and any other documents referred to in it) sets out the basis on which any personal data that you provide to us through our website, shop.kaaita.com (“Website”) or otherwise, will be held and processed. It also gives information about the use of Cookies on the Website. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it and our use of Cookies.

For the purpose of the The General Data Protection Regulation (GDPR) (EU) 2016/679 , the data controller for any personal information we hold about you is Kaaita d.o.o, Prikrnica 14, 1251 Moravče, Slovenia.


WHAT DO WE DO WITH YOUR INFORMATION?

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address. When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.

Email marketing: With your permission, we may send you emails about our store, new products and other updates.


CONSENT

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.

If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.

If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at sayhay@kaaita.com or mailing us at: Kaaita d.o.o., Beethovnova 9, 1000 Ljubljana, Slovenia, Europe.


DISCLOSURE

We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.


SQUARESPACE

Our store is hosted on Squarespace. They provide us with the online e-commerce platform that allows us to sell our products and services to you. Your data is stored through Squarespace data storage, databases and the general Squarespace application. They store your data on a secure server behind a firewall.


PAYMENT

If you choose a direct payment gateway to complete your purchase, then Squarespace stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.

All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.

PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.


WHO MIGHT COLLECTED INFORMATION BE SHARED WITH?

Your personal data will be processed by the internal staff of Kaaita. We will share your personal information with third parties only in the ways that are described in this Privacy & Cookie policy. We do not sell your personal information to third parties.

We may provide your personal information to companies that provide services to help us with our business activities such as shipping your order or offering customer service but only to the extent necessary to provide these services. The third parties in question belong to the following categories: internet providers, couriers. These parties have been rigorously assessed and offer a guarantee of compliance with the legislation on the processing of personal data.

Under some circumstances we may be required to disclose or share your data without your consent, for example if we are required by the police, the courts or for other legal reasons. Your data may be transmitted to the police, judicial and administrative authorities, in accordance with the law, for the investigation and prosecution of crimes, the prevention of and protection from threats to public security, to allow U Studio to ascertain, exercise or defend a right in court, as well as for other reasons related to the protection of the rights and freedoms of others.

We may also transfer your personal data to a buyer or potential buyer in the event that our assets are acquired by another organisation. If www.kaaita.com is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our Web site of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.


THIRD-PARTY SERVICES

In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.

For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers. In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located. As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.

Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.


LINKS

When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.


SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.


AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.


CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.

If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.


ANALYTICS

This website collects personal data to power our site analytics, including:

· Information about your browser, network, and device

· Web pages you visited prior to coming to this website

· Your IP address

This information may also include details about your use of this website, including:

· Clicks

· Internal links

· Pages visited

· Scrolling

· Searches

· Timestamps

We share this information with Squarespace, our website analytics provider, to learn about site traffic and activity.


COOKIES

This website uses cookies and similar technologies, which are small files or pieces of text that download to a device when a visitor accesses a website or app. For information about viewing the cookies dropped on your device, visit About the cookies Squarespace uses.

· These functional and required cookies are always used, which allow Squarespace, our hosting platform, to securely serve this website to you.

· These analytics and performance cookies are used on this site, as described below, only when you acknowledge our cookie banner. We use analytics cookies to view site traffic, activity, and other data.


CUSTOMER ACCOUNTS

If you create a customer account on this website, we collect personal information to improve our checkout experience and customer service.

This information may include your:

· Billing and shipping address(es)

· Details about your orders (for example, your shirt size)

· Email address

· Name

· Phone number

We share this information with Squarespace, our website hosting provider, so they can provide website services to us.


EMAILS

You’ll receive an automated email within 24 hours after you abandon your shopping cart, if all of the following occur:

1. You enter your email address at checkout, or are logged into your Customer Account.

2. You add a product which is in stock to your shopping cart.

3. You close your browser or leave this website without completing your purchase.

You can unsubscribe from these messages at the bottom of the email.

The email will link back to this website, where you can pick up where you left off and complete your purchase.


MARKETING EMAILS

We may send you marketing emails, which you can unsubscribe from by clicking the link at the bottom of the email. We share your contact information with Squarespace, our email marketing provider, so they can send these emails on our behalf.


ORDER AND ACCOUNTS EMAILS

We may email you with messages about your order or account activity. For example, we may email you to tell you that:

· You’ve created a Customer Account

· Your Customer Account password has been reset or updated

· You’ve made a purchase

· Your order has shipped

It’s not possible to unsubscribe from these messages.

We share your contact information with Squarespace, our website hosting provider, so they can send these emails to you on our behalf.


FONTS

This website uses font files from Google Fonts and Adobe Fonts. To properly display this site to you, servers where the font files are stored may receive personal information about you, including:

· Information about your browser, network, or device

· Your IP address


FOR WEBSITE VISITORS

This website is hosted by Squarespace. Squarespace collects personal data when you visit this website, including:

· Information about your browser, network and device

· Web pages you visited prior to coming to this website

· Your IP address

Squarespace needs the data to run this website, and to protect and improve its platform and services. Squarespace analyzes the data in a de-personalised form.


THE COOKIES WE PLACE ON YOUR BROWSERS

We use cookies to help our site run effectively and provide the best experience for you.

Functional and Required Cookies

Squarespace uses some necessary cookies because they allow you to navigate and use key features on the site. For example, Functional and Required Cookies help these features work:

· Customer accounts

· Shopping cart and checkout

· URL redirects


Cookie name: Crumb
Duration: Session
Purpose: Prevents cross-site request forgery (CSRF). CSRF is an attack vector that tricks a browser into taking unwanted action in an application when someone’s logged in.

Cookie name: RecentRedirect
Duration: 30 minutes
Purpose: Prevents redirect loops if a site has custom URL redirects. Redirect loops are bad for SEO.

Cookie name: Locked
Duration: Session
Purpose: Prevents the password-protected screen from displaying if a visitor enters the correct site-wide password.

Cookie name: SiteUserInfo
Duration: 3 years
Purpose: Identifies a visitor who logs into a customer account

Cookie name: SiteUserSecureAuthToken
Duration: 3 years
Purpose: Authenticates a visitor who logs into a customer account

Cookie name: Commerce-checkout-state
Duration: Session
Purpose: Stores state of checkout while the visitor is completing their order in PayPal

Cookie name: squarespace-popup-overlay
Duration: Persistent
Purpose: Prevents the Promotional Pop-Up from displaying if a visitor dismisses it

Cookie name: squarespace-announcement-bar
Duration: Persistent
Purpose: Prevents the Announcement Bar from displaying if a visitor dismisses it

Cookie name: Test
Duration: Session
Purpose: Investigates if the browser supports cookies and prevents errors.

Cookie name: CART
Duration: 2 weeks
Purpose: Shows when a visitor adds a product to their cart.

Cookie name: hasCart
Duration: 2 weeks
Purpose: Tells Squarespace that the visitor has a cart.


Analytics and Performance Cookies

We use Analytics and Performance cookies to collect information about visitors interact with our site. Storing these cookies is how we populate the data we find in Squarespace Analytics, such as traffic sources, unique visitors, and cart abandonment.

Cookie Name: ss_cid
Duration: 2 years
Purpose: Identifies unique visitors and tracks a visitor’s sessions on a site

Cookie Name: ss_cvr
Duration: 2 years
Purpose: Identifies unique visitors and tracks a visitor’s sessions on a site

Cookie Name: ss_cvisit
Duration: 30 minutes
Purpose: Identifies unique visitors and tracks a visitor’s sessions on a site

Cookie Name: ss_cvt
Duration: 30 minutes
Purpose: Identifies unique visitors and tracks a visitor’s sessions on a site

Cookie Name: ss_cpvisit
Duration: 2 years
Purpose: Identifies unique visitors and tracks a visitor’s sessions on a site

Cookie Name: ss_cookieAllowed
Duration: 30 days
Purpose: Remembers if a visitor agreed to placing Analytics cookies on their browser if a site is restricting the placement of cookies.


QUESTIONS AND CONTACT INFORMATION

If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact us at sayhay@kaaita.com or by mail at Kaaita d.o.o., Beethovnova 9, 1000 Ljubljana, Slovenia, Europe.