Privacy Policy

This privacy policy will explain how our organization uses the personal data we collect from you when you use our website and services.

1. WHAT DO WE COLLECT AND WHAT DO WE DO WITH YOUR INFORMATION?

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give, us such as your:

  1. Identity Data (including, name, date of birth, username or similar identifier);
  2. Contact Data (including billing address, delivery address, telephone number and email address);
  3. Financial Data (including, payment card details);
  4. Transaction data (including, details about payments to and from you and other details of products and services purchased from us);
  5. Technical Data (including, internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website);
  6. Usage Data (including, information about how you use our website, products and services); and
  7. Marketing and Communications Data (including, your preferences in receiving marketing from us and our third parties and your communication preferences).

When you browse our store, we also automatically receive your computer’s IP address in order to provide us with information that helps us learn about your browser and operating system.

Newsletters (if applicable): With your permission, we may send you emails about our store, new products and other updates.

Whenever you provide personal data, we are legally obliged to use your information in line with all applicable laws concerning the protection of such information; including The General Data Protection Regulation 2016 (GDPR) together, and with other subsequent laws “Data Protection Laws”.

Please note that we may collect and/or process other personal data from time to time.

2. CONSENT

How do you get my consent?

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we will also ask you directly for your expressed consent to our collecting it and using it for that specific reason only.

If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.

How do I withdraw my consent?

If you change your mind after expressing opt-in consent, you may withdraw your consent for us to contact you for the continued collection, use, or disclosure of your information, at any time, by contacting us at info@truverra.eu or mailing us at: Truverra (Europe) B.V., Joop Geesinkweg 901, Amsterdam-Duivendrecht, 1114, The Netherlands.

3. DISCLOSURE

We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.

Payment:

Truverra does not store any credit or debit card details on its system. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

4. HOW YOUR DATA WILL BE USED?

We use information held about you to:

  1. carry out our obligations to provide you with the products/services that you have purchased from us;
  2. carry out feedback and research on our services; and
  3. notify you about changes to our services.

We never sell your data to third parties.

We share your data with third parties where there is a legal obligation for us to do so or we have identified a valid lawful basis as set out in the table below (please also see section below regarding lawful basis). We may process your personal data without your knowledge or consent where this is required or permitted by law.

You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you.

We have set out below in a table format, a description of all the ways we may use your personal data, and which of the legal bases we rely on to do so. We have also identified what our legitimate interests are where appropriate.

Purpose/Activity Type of data Lawful basis for processing including basis of legitimate interest

 Purpose/ActivityType of dataLawful basis for processing including basis of legitimate interest
To register you as a new user and customer(a) Identity

(b) Contact

Performance of a contract with you
To process and deliver your order including:

(a) Manage payments, fees and charges

(b) Collect and recover money owed to us

(a) Identity

(b) Contact

(c) Financial

(d) Transaction

(e) Marketing and Communications

(a) Performance of a contract with you

(b) Necessary for our legitimate interests (to recover debts due to us)

To manage our relationship with you which will include:

(a) Notifying you about changes to our terms or privacy policy

(b) Asking you to leave a review or take a survey

(a) Identity
(b) Contact
(c) Profile
(d) Marketing and Communications
(a) Performance of a contract with you

(b) Necessary to comply with a legal obligation

(c) Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services)

To enable you to partake in a prize draw, competition or complete a survey(a) Identity

(b) Contact

(c) Profile

(d) Usage

(e) Marketing and Communications

(a) Performance of a contract with you

(b) Necessary for our legitimate interests (to study how customers use our products/services, to develop them and grow our business)

To administer and protect our business, this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data) and our mobile application.(a) Identity
(b) Contact
(c) Technical
(a) Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise)

(b) Necessary to comply with a legal obligation

To deliver relevant website and mobile application content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you(a) Identity
(b) Contact
(c) Profile
(d) Usage
(e) Marketing and Communications
(f) Technical
Consent
To use data analytics to improve our website, mobile application, products/services, marketing, customer relationships and experiences(a) Technical
(b) Usage
Consent
To make suggestions and recommendations to you about goods or services that may be of interest to you(a) Identity
(b) Contact
(c) Technical
(d) Usage
(e) profile
(f) Marketing and Communications
Necessary for our legitimate interests (to develop our products/services and grow our business)

5. LAWFUL BASIS FOR PROCESSING

We only process your data (which may include providing it to a third party) where we have identified a valid lawful basis to do so. These are as follows:

  1. Consent – Where possible, we will seek to obtain your consent to process your data outside our contractual obligations (see above) unless we have identified a Legitimate Interest (see below).
  2. Contractual – Where processing is necessary for the performance of a contract with you.
  3. Legal obligation – Where processing is necessary to comply with the law (e.g. safeguarding).
  4. Legitimate Interest – Where we use legitimate interests we will record our decision on making this decision. We rely on legitimate interest where processing of the data we hold on you does not, in our opinion, affect your rights or freedoms and is proportionate to our interests, keeping you up to date with our latest products or obtaining your feedback on our service.

6. THIRD-PARTY SERVICES

We will keep your information within the organisation except where disclosure is required or permitted by law or when we use third party service providers (data processors) to supply and support our services to you.

In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.

However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.

For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.

In particular, remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.

Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.

Links

When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.

7. DATA RETENTION

Our data retention policy is dictated by the Data Protection Laws and is available for inspection by submitting a written request using the contact details provided in this policy.

8. YOUR RIGHTS

Under the Data Protection Laws your rights are:

  1. To be informed – We must make this privacy policy (sometimes referred to as a privacy notice) available with the emphasis on transparency over how we process your data.
  2. Access – You are entitled to find out what details we may hold about you and why..
  3. Rectification – We are obliged to correct or update your details. We will correct or update your data without delay provided you make the request in writing to the contact details provided in this policy, clearly specifying which data is incorrect or out of date.
  4. Erasure – This is also known as the “right to be forgotten”. Under Data Protection Laws you have the right to erasure under specific circumstances. A request for your personal data to be deleted will be decided on a case by case basis and should be submitted in writing to the contact details provided in this policy.
  5. Restrict processing – You have the right to ‘block’ or suppress the processing by us of your personal data.
  6. Portability – You have the right to obtain and reuse your personal data that you have provided to us.
  7. Object – You have the right to object to us processing your data in relation to direct marketing and or profiling.
  8. Rights in relation to automated decision making and profiling – We do not use automatic decision making or profiling.

If you make a request. we have one month to respond to you.  If you would like to exercise any of these rights, please contact us via the details below.

Please note that you may need to provide identification in order to prove who you are if you wish to invoke any of your rights as provided by the Data Protection Laws and as summarised above.

If you agree, we will try to deal with your request informally, for example by providing you with the specific information you need over the telephone.

9. SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption.  Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

10. AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your country, state or province of residence, or that you are the age of majority in your country, state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.

11. CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.

If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.

QUESTIONS AND CONTACT INFORMATION

If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information, please contact us by email at info@truverra.com  or by mail at: Truverra (Europe) B.V., Joop Geesinkweg 901, Amsterdam-Duivendrecht, 1114, The Netherlands.

Truverra (Europe) B.V. based in Joop Geesinkweg 901, Amsterdam-Duivendrecht, 1114, The Netherlands.

Email: info@truverra.com