Privacy Policy
Privacy Policy
Section 1 – How We Use Your Information
When you make a purchase in our store, as part of the buying and selling process, we collect the personal information you provide, such as your name, address, and email address.
When you browse our website, we also automatically receive your computer’s IP address to help us understand your browser and operating system information.
Email Marketing (if applicable):
With your consent, we may send you emails about our store, new products, and other updates.
Section 2 – Your Consent
How Do We Obtain Your Consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange shipping, or process a return, we assume you consent to our collection and use of this information for that specific purpose.
If we request personal information for any secondary purpose (e.g., marketing), we will seek your explicit consent or provide an option to opt out.
How Do I Withdraw My Consent?
If you change your mind after giving consent, you may contact us at service@cavoyak.com to withdraw authorisation for us to continue collecting, using, or disclosing your information.
Section 3 – Information Disclosure
We may disclose your personal information if required by law or if you violate our Terms of Service.
Section 4 – About Shopify
Our store is hosted by Shopify Inc., which provides us with the online e-commerce platform to sell our products and services.
Your data is stored through Shopify’s data storage, databases, and applications on secure servers protected by firewalls.
Payment Information:
If you choose a direct payment gateway to complete your purchase, Shopify stores your credit card data.
This information is encrypted via PCI-DSS (Payment Card Industry Data Security Standard).
Your transaction data is only stored for as long as necessary to complete your purchase and is then deleted.
All direct payment gateways comply with PCI-DSS standards managed by the PCI Security Standards Council, a joint effort by brands including Visa, Mastercard, American Express, and Discover.
PCI-DSS ensures that our store and service providers handle your credit card information securely.
For more information, you may read Shopify’s Terms of Service or Privacy Policy.
Section 5 – Third-Party Services
Generally, the third-party service providers we use will only collect, use, and disclose your information as necessary to provide their services.
Some third-party providers (e.g., payment gateways or processors) have their own privacy policies regarding the information we must share with them.
We recommend reviewing these providers’ privacy policies to understand how they handle your personal information.
Please note that some third-party providers may be located in a different jurisdiction from you or us.
Therefore, if your transaction involves a third-party service provider, your information may be subject to the laws of the provider’s location.
Example: If you are in the United States and your transaction is processed by a U.S.-based payment gateway, your personal information may be disclosed under U.S. law (including the Patriot Act).
Once you leave our website or are redirected to a third-party site or application, this privacy policy and our Terms of Service no longer apply.
External Links:
When you click on links on our website, you may be directed to other websites.
We are not responsible for the privacy practices of these websites and encourage you to read their privacy policies carefully.
Section 6 – Information Security
To protect your personal information, we take reasonable security measures and follow industry best practices to prevent your information from being improperly lost, used, accessed, disclosed, altered, or destroyed.
If you provide credit card information, it is encrypted using SSL (Secure Socket Layer) technology and stored using AES-256 encryption.
While no method of transmission or electronic storage is 100% secure, we comply with all PCI-DSS requirements and adopt other industry-recognised security standards.
Section 7 – Cookies
Here is a list of cookies we use for your information or to decide whether to disable them:
-
_session_id: Unique token for the session; used by Shopify to store session information (referrer, visited pages, etc.).
-
_shopify_visit: No data stored; lasts 30 minutes; used for visit counting.
-
_shopify_uniq: No data stored; expires at midnight the next day; used to count individual customer visits.
-
cart: Unique token; lasts 2 weeks; used to store shopping cart content information.
-
_secure_session_id: Unique token for the session.
-
storefront_digest: Unique token with no expiration; if the store is password-protected, used to verify access.
Section 8 – Age of Consent
By using this website, you confirm that:
You are at least the legal age of majority in your state or province, or you are the guardian of a minor and consent to their use of this website.
Section 9 – Changes to the Privacy Policy
We reserve the right to modify this Privacy Policy at any time; please review it periodically.
Any changes or clarifications take effect immediately upon posting.
If we make significant changes, we will notify you so that you understand what information we collect, how we use it, and under what circumstances we may disclose it.
If our store is acquired or merged with another company, your information may be transferred to the new owner so that we can continue providing services to you.
Questions & Contact Information
If you wish to access, correct, modify, or delete your personal information, file a complaint, or obtain more information, please contact:
📧 Privacy Compliance Officer: service@cavoyak.com