Effective date: April 25, 2018
Sephiroth (“us”, “we”, or “our”) operates the website (the “Service”).
Data protection is taken very seriously by Sephiroth. The processing of personal data is necessary for the Service to function. We therefore request consent from the data subject during the registration process.
The processing of personal data shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country specific data protection regulations applicable.
This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.
Personal Data means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).
Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
Cookies are small pieces of data stored on a User’s device.
Data Processor (or Service Providers)
Data Processor (or Service Provider) means any person (other than an employee of the Data Controller) who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively.
Data Subject is any living individual who is the subject of Personal Data.
The User is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data.
Consent of the data subject is any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
FULL NAME OF LEGAL ENTITY: SEPHIROTH LIMITED
EMAIL ADDRESS: email@example.com
We collect several different types of information for various purposes to provide and improve our Service to you.
Types of Data Collected
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together follows:
Identity Data includes first name, last name, username or similar identifier, date of birth and gender.
Contact Data includes billing address, delivery address and email address.
Financial Data includes bank account and paypal details for payment.
Transaction Data includes details about payments from you to retailers featured on our Service from time to time and other details of products and services you have purchased from such retailers via our Service.
Technical and Usage Data We may also collect information on how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
Profile Data includes your username and password, purchases or orders made by you, your interests, preferences, feedback and survey responses.
Marketing and Communications Data includes your preferences in receiving marketing from us and your communication preferences.
Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Examples of Cookies we use:
We use different methods to collect data from and about you including through:
You may give us your Identity, Contact, Transaction or Financial Data by filling in forms or by corresponding with us by post, email or otherwise.
Automated technologies or interaction
As you interact with our Service, we may automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies.
Essential Third parties
In order to facilitate the cashback service, we may receive personal data about you from various essential third parties as set out below:
Technical, Transactional and Contact Data from the following parties:
a) Affiliate Networks based both inside and outside the EU
b) SendInBlue our email marketing provider
Sephiroth Limited uses the collected data for various purposes:
You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link in emails or by managing your communication preferences in your account settings.
Sephiroth Limited will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.
Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
If you are located outside Italy and choose to provide information to us, please note that we transfer the data, including Personal Data, to Italy and process it there.
Disclosure for Law Enforcement
Under certain circumstances, Sephiroth Limited may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
Sephiroth Limited may disclose your Personal Data in the good faith belief that such action is necessary to:
The security of your data is very important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. We work hard with experienced security programmers to ensure an extremely high level of security.
Sephiroth Limited aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
Whenever made possible, you can update your Personal Data directly within your account settings section. If you are unable to change your Personal Data, please contact us to make the required changes.
In certain circumstances, you have rights under data protection laws in relation to your personal data.
Request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it.
Request the transfer of your personal data to you or to a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use.
Withdraw consent at any time where we are relying on consent to process your personal data. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
To exercise your rights as detailed above, please contact us at firstname.lastname@example.org
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.
We may employ third party companies and individuals to facilitate our Service (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used.
These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
We may use third-party Service Providers to monitor and analyze the use of our Service.
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.
For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: http://www.google.com/intl/en/policies/privacy/
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party Services or services.
Our Service does not address anyone under the age of 13 (“Children”).
We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.
By email: email@example.com