Section 1 – What Do We Do With Your Information?

When you purchase from our store, as part of the buying and selling process, we collect personal information you provide, such as your name, address, and email address.

When you browse our website, we automatically receive your computer’s Internet Protocol (IP) address to help us understand your browser and operating system.

Email Marketing (if applicable): With your consent, we may send you emails about our store, new products, promotions, and updates.

Section 2 – Consent

How do you obtain my consent?

When you share personal information to complete a transaction, verify your credit card, place an order, arrange delivery, or process a return, we assume you consent to our collection and use of that information for that specific purpose only.

If we request your personal information for another purpose, such as marketing, we will either directly ask for your express consent or provide an option to opt out.

How can I withdraw my consent?

If you change your mind after opting in, you may withdraw your consent for us to contact you or continue collecting, using, or disclosing your information at any time. Please contact us at info@theonemillionroses.com or by mail at: TOMR USA Inc., Las Vegas, NV 89103, 3651 Lindell Road, USA.

Section 3 – Disclosure

We may disclose your personal information if required by law or if you violate our Terms of Service.

Section 4 – Shopify

Our store is hosted on Shopify Inc., which provides the e-commerce platform that enables us to sell our products and services to you. Your data is stored in Shopify’s secure data storage, databases, and general application, protected behind a firewall.

Payment:

If you use a direct payment gateway to complete your purchase, Shopify stores your credit card data, encrypted per the Payment Card Industry Data Security Standard (PCI-DSS). Your transaction data is retained only as long as necessary to complete the purchase, after which it is deleted.

All direct payment gateways comply with PCI-DSS standards, managed by the PCI Security Standards Council, a joint effort by brands like Visa, MasterCard, American Express, and Discover. These requirements ensure secure handling of your credit card information by our store and its service providers.

For more details, review Shopify’s Terms of Service or Privacy Statement.

Section 5 – Third-Party Services

Third-party providers we use will only collect, use, and disclose your information to the extent necessary to perform their services for us.

Certain providers, such as payment gateways and transaction processors, have their own privacy policies for the information we must provide for purchase-related transactions. We recommend reviewing their privacy policies to understand how your personal information is handled.

Note that some providers may operate in jurisdictions different from yours or ours. If you proceed with a transaction involving such a provider, your information may be subject to the laws of their jurisdiction. For example, if you’re in Canada and your transaction is processed by a U.S.-based payment gateway, your personal information may be subject to U.S. laws, including the Patriot Act.

Once you leave our website or are redirected to a third-party site or application, this Privacy Policy and our Terms of Service no longer apply.

Rakuten Advertising: Rakuten may collect personal information, such as IP addresses, digital identifiers, and data about your browsing or app usage, for purposes like personalized offers, analytics, and other commercial activities. For more details, visit:

• Rakuten Privacy Policy
• Your Rights

Links: Clicking links on our store may direct you to external sites. We are not responsible for their privacy practices and encourage you to review their privacy statements.

Google Analytics: We use Google Analytics to understand who visits our site and which pages are viewed.

Section 6 – Security

We take reasonable precautions and follow industry best practices to protect your personal information from being lost, misused, accessed, disclosed, altered, or destroyed.

If you provide credit card information, it is encrypted using secure socket layer (SSL) technology and stored with AES-256 encryption. While no online transmission or electronic storage is 100% secure, we comply with PCI-DSS requirements and implement additional industry-standard measures.

Section 7 – Cookies

We use the following cookies. You can choose to opt out of cookies if desired:

• _session_id: Unique token, sessional, stores session information (referrer, landing page, etc.) via Shopify.

< whereby=”_shopify_visit”> No data held, persists for 30 minutes from last visit, used by our website provider’s stats tracker to record visits.

• _shopify_uniq: No data held, expires midnight (visitor’s time) the next day, counts visits by a single customer.
• cart: Unique token, persists for 2 weeks, stores cart contents.
• _secure_session_id: Unique token, sessional.
• storefront_digest: Unique token, indefinite, determines access if the shop has a password.
• PREF: Set by Google, persists briefly, tracks store visitors and their origin.

Section 8 – Age of Consent

By using this site, you confirm you are at least the age of majority in your state or province of residence, or that you are the age of majority and have given consent for your minor dependents to use this site.

Section 9 – Changes to This Privacy Policy

We may update this Privacy Policy at any time, so please check it regularly. Changes take effect immediately upon posting on our website. If we make significant changes, we will notify you here to inform you of what information we collect, how we use it, and under what circumstances we may use or disclose it.

If our store is acquired or merges with another company, your information may be transferred to the new owners to continue providing products to you.

Questions and Contact Information

To access, correct, amend, or delete your personal information, register a complaint, or seek more information, contact our Privacy Compliance Officer at info@theonemillionroses.com, by phone at +123456789, or by mail at: TOMR USA Inc., Las Vegas, NV 89103, 3651 Lindell Road, USA.