Any personal data provided to or gathered by the Services is controlled by MktCo L.L.C. (a company incorporated in Delaware United States, with a registered office at 16192 Coastal Highway, Lewes, Delaware, 19958, County of Sussex).
1. What Does This Policy Cover?
This Policy covers Ash’s treatment of personal data that Ash gathers when you access the Services and/or use the Content. This policy does not apply to the practices of companies that Ash does not own or control, or to individuals that Ash does not employ or manage.
2. What Personal Information Does Ash Collect?
The information we gather enables us to personalize and improve our services or complete a transaction on your behalf.
We use the information to deliver the Services to you and, amongst other things, to communicate with you regarding products, services and promotional offers; update our records; display Content and recommend merchandise and services that might be of interest to you; improve our store and platform, prevent or detect abuses of our Services and enable third parties to carry out technical, logistical or other functions on our behalf.
We retain personal information no longer than is legally permissible and delete personal information when it is no longer necessary for the purposes set out in this Policy. We collect the following types of information from our users:
i. Personal Data You Provide to Us
We receive and store any information you enter on the Services or provide to us in any other way. The types of personal data collected include your full name, email address, IP address, browser information, username, password, home and billing address, shipping address, credit card information and any other information necessary for us to provide the Services, including the usernames and passwords for your accounts and profiles on third-party sites with which the Services interoperates. You may also choose to provide us with a profile photo.
We use the information we collect from you to provide the Services to you and improve the Services and the Content. The personal data you provide is used for such purposes as answering questions, developing new products, completing transactions on your behalf, protecting Ash and our users and communicating with you about Ash’s products and services, including special and new features.
We also use the information we collect to send you product news and updates (such as when items or brands you have told us that you following or are interested in become available), newsletters, marketing materials and other information that may be of interest to you. For example, depending on your email notification settings, we may send you instant, daily or weekly "sale alert" updates that include new products you may like. You can decide to stop getting these updates by updating your account settings (or through other settings we may provide).
We will collect details of transactions you carry out through our Services and of the fulfilment of your orders. Saved card details will never be shared with third parties unless we need to in order to process your order, and only using our secure systems. These details will be fully encrypted and only used to process card transactions which you have initiated. In addition, we will take reasonable steps to ensure that third party business partners' to whom we transfer any data will provide sufficient protection of that personal data.
If you contact us, we may keep a record of that correspondence.
You can choose not to provide us with certain information, but then you may not be able to take advantage of many of our features (see section 9 below for further information on the choices you have).
ii. Personal data Collected Automatically
b. More generally, our Services automatically collect usage information, such as the numbers and frequency of visitors to our Services and its components, similar to user music preference data or to TV ratings that indicate how many people watched a particular show. Ash only uses this data in aggregate form, that is, as a statistical measure, and not in a manner that would identify you personally. This type of aggregate data enables us to figure out how often customers use parts of the Services or another feature of the Content so that we can make the Services appealing to as many customers as possible, and improve the Content. As part of this use of information, we may provide aggregate information to our partners about how our customers, collectively, use our Content. We share this type of statistical data so that our partners also understand how often people use our Content, so that they, too, may provide you with an optimal online experience. Again, Ash never discloses aggregate information to a partner in a manner that would identify you personally, unless it needs to in order to complete a transaction on your behalf. Ash only discloses information to third parties it trusts.
iii. E-mail Communications
We often receive a confirmation when you open an email from Ash if your computer supports this type of program. Ash uses this confirmation to help us make emails more interesting and helpful. We also compare our customer list to lists received from other companies, in an effort to avoid sending unnecessary messages to our customers.
iv. Mobile Apps
When you download or use apps created by Ash or its affiliates or subsidiaries and, where applicable, have requested or consented to location services, we may receive information about your mobile device and your location, including a unique identifier for your device. We may use this information to provide you with personalised content and location-based services, such as search results. Most mobile devices allow you to turn off location services. To learn more about what information your device makes available to us, please also check the policies of your device manufacturer or software provider.
3. What About Cookies?
4. Where Will We Store Your Personal Data?
All information you provide to us is hosted and stored on Amazon Web Services cloud-based services (for further information on the measures taken by Amazon to protect the security of their servers and your personal data, please see: http://aws.amazon.com/security/). If you are not satisfied with the levels of security offered by our cloud provider, you should restrict the nature and amount of personal data or confidential information which you include in your log data or not use the Services. Any payment transactions will be encrypted using Secure Socket Layer (SSL) technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Services, you are responsible for keeping this password confidential. You must not to share a password with anyone.
5. Will Ash Share Any Of The Personal Data It Receives?
Personal data about our customers is an integral part of our business. We neither licence nor sell your personal data to anyone. We share your personal data only as described in this Policy.
i. Ash Partner Websites We Do Not Control
iii. Other Third Parties
We may share your personal data with selected third parties including advertisers and advertising networks that require the data to select and serve relevant adverts to you and others. We do not disclose information about identifiable individuals to our advertisers, but we may provide them with aggregate information about our users (for example, we may inform them that 500 Women aged under 30 have clicked on their advertisement on any given day). We may also use such aggregate information to help advertisers reach the kind of audience they want to target (for example, women in Miami). We may make use of the personal data we have collected from you to enable us to comply with our advertisers' wishes by displaying their advertisement to that target audience.
We may also share your personal data to analytics and search engine providers that assist us inthe improvement and optimisation of our site. We have implemented the Google Analytics Demographics and Interest Reporting feature. Click here for information on opting out of Google Analytics features.
We employ other companies and people to perform tasks on our behalf and need to share your information with them to provide products or services to you. Unless we tell you differently, Ash’s agents do not have any right to use personal data we share with them beyond what is necessary to assist us.
v. User Profiles and Other Information You Post
User profile information including your username, name, email address, and other information you enter (“User Submissions”) may be displayed to other users to facilitate user interaction within the Services and allow you to follow other users, and them to follow you. Email addresses are used to add new User Submissions to user profiles and to communicate through User Submissions. Any personal data or content that you voluntarily disclose online (on discussion boards, in messages and chat areas, through reviews in product pages, etc.), as well as the items you compile on the Services, become publicly available and can be viewed, collected and used by others. Any images, captions, physical descriptions, personal interests or other content that you submit to the Services may be redistributed through the Internet and other media channels, and may be viewed by the general public.
Please be aware that whenever you voluntarily post information to public areas on the Services or any other public forums, such information can be accessed by the public.
vi. Communication in Response to User Submissions
As part of the Services, you will receive from Ash email and other communication relating to your User Submissions. You acknowledge and agree that by posting such User Submissions, Ash may send you email and other communication that it determines in its sole discretion relate to your User Submissions. Ash may need to provide you with certain communications, such as service announcements and administrative messages. These communications are considered part of the Services and your Ash account, which you may not be able to opt-out from receiving.
vii. Business Transfers
In some cases, we may choose to buy or sell assets. In these types of transactions, customer information is typically one of the business assets that are transferred. Moreover, if Ash, or substantially all of its assets were acquired, or in the unlikely event that Ash goes out of business or enters bankruptcy, customer information would be one of the assets that is transferred to or acquired by a third party. You acknowledge that such transfers may occur, and that any acquirer of Ash may continue to use your Personal Information as set forth in this policy.
viii. Protection of Ash and Others and a Transfer in the Ownership of Ash
We may release personal data when we believe in good faith that release is necessary to comply with the law, regulation or legal request; enforce or apply our conditions of use and other agreements; or protect the rights, property, or safety of Ash, our employees, our users, or others. This includes exchanging information with other companies and organizations for fraud protection and credit risk reduction. You agree that we may also share your data with entities where Ash is engaged in a merger, acquisition, bankruptcy, dissolution, reorganization, or similar transaction or proceeding that involves the transfer of the information described in this Policy.
x. With Your Consent
By using the Services, you consent to our sharing of personal data for the above purposes.
We may share some or all of your personal data with any of our parent companies, subsidiaries, joint ventures, or other companies under common control with us.
6. Is Personal Information About Me Secure?
The personal data in the Ash account you have with us is protected by a password for your privacy and security. You need to ensure that there is no unauthorised access to your account and personal data by selecting and protecting your password appropriately and limiting access to your computer and browser by signing off after you have finished accessing your account. You are responsible for safeguarding the password that you use to access the Services and for any activities or actions under your password. Ash encourages you to use “strong” passwords (passwords that use a combination of upper and lower case letters, numbers and symbols) with your account. Ash cannot and will not be liable for any loss or damage arising from your failure to comply with the above requirements.
Unfortunately, the transmission of information via the Internet is not completely secure. Ash endeavors to protect personal data but Ash cannot guarantee the security of your data transmitted to our Services. Unauthorised entry or use, hardware or software failure, and other factors, may compromise the security of user information at any time. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our platform; any transmission of data is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
7. What About Links To Third Party Websites?
We will take care to maintain appropriate safeguards to ensure the security, integrity and privacy of the information you have provided us with. We encrypt your information to protect it from unauthorised use. In addition, we will take reasonable steps to ensure that third party business partners' to whom we transfer any data will provide sufficient protection of that personal data.
To help ensure that your shopping experience is safe, simple, and secure, we use Secure Socket Layer (SSL) technology.
8. What Personal Data Can I Access?
Ash allows you to access the following information about you for the purpose of viewing, and in certain situations, updating that information: your name; user email address; username and password; profile picture; bio; website; user preferences; zip- and/or post-codes, billing address, and payment information.
The information you can access will change as the Services change.
If you a are registered user of Ash, you can change or delete saved credit/debit card details and add or edit shipping and billing address information.
Once Ash accounts are activated, you may request deletion of your account by following the instructions at the Account Settings section of the Services. Please note that some information may remain in our records after deletion of your account.
When you register for an account at our Services, you consent to receive certain email or other communications from us; if you do not wish to receive any such communications, you should not register for an account at our Services. We may also use your data to provide you with information about products and services which may be of interest to you, directly or on behalf of one of our business partners. You can however change the type and frequency of the emails you receive from us at any time by changing your email settings here or by unsubscribing from such emails.
Most mobile devices provide users with the ability to disable location services. These controls are usually located in the device's settings menu. Please contact your mobile service carrier or device manufacturer if you have questions about how to disable your device's location services.
Please note that if you choose not to receive legal notices from us, such as this Policy, those legal notices will still govern your use of the Services, and you are responsible for reviewing suchlegal notices for changes.
We do not knowingly market or sell products for purchase by children. The Services are not designed for use by children under 13 years old. Children under 13 are not allowed to register with or use the Services, or submit personal data through the Services. We do not knowingly collect personal data from anyone under the age of 13. If we discover that we have collected personal information from a child under 13, we will delete that information immediately. If you believe that we might have any information from a child under age 13, please contact us at firstname.lastname@example.org
11. Changes To This Policy
Ash may amend this Policy from time to time. Use of information we collect now is subject to the Policy in effect at the time such information is used. If we make changes in the way we use personal data, we will notify you by posting an announcement on our Services or sending you an email. Users are bound by any changes to the Policy when he or she uses the Services after such changes have been first posted.
12. Questions Or Concerns
If you have any questions or concerns regarding privacy on our Services or the Content, please send us a detailed message here. We will make every effort to resolve your concerns. If your questions or concerns are not answered online, you may write to us at 16192 Coastal Highway, Lewes, Delaware, 19958, County of Sussex.
Effective: March 31, 2018