Our Soles Ltd understands that your privacy is important to you and that you care about how your personal data is used.
We respect and value the privacy of all of our customers and everyone who visits our website http://www.oursoles.co.uk and we will only collect and use personal data in ways that are described here, and in a way that is consistent with our obligations and your rights under the law.
1. Definitions and Interpretation
In this Policy the following terms shall have the following meanings:
“Cookie” means a small text file placed on your computer or device by our website when you visit certain parts of our website and/or when you use certain features of our website. Details of the Cookies used by our website are set out in Part 14, below; and
“Cookie Law” means the relevant parts of the Privacy and Electronic Communications (EC Directive) Regulations 2003;
2. Information About us
Our website is owned and operated by Our Soles Ltd
Address: Unit 2, Redbridge BUsiness Park, Old Redbridge Road, Redbridge, Southampton, SO15 0NN
Contact: +44 (0) 23 8081 4777
3. What Does This Policy Cover?
Our website may contain links to other websites. Please note that we have no control over how your data is collected, stored, or used by other websites and we advise you to check the privacy policies of any such websites before providing any data to them.
4. What is Personal Data?
Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) (the “GDPR”) as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’.
Personal data is, in simpler terms, any information about you that enables you to be identified. Personal data covers obvious information such as your name and contact details, but it also covers less obvious information such as identification numbers, electronic location data, and other online identifiers.
5. What are my Rights?
Under the GDPR, you have the following rights, which we will always work to uphold:
b) The right to access the personal data we hold about you.
c) The right to have your personal data rectified if any of your personal data held by us is inaccurate or incomplete. .
d) The right to be forgotten, i.e. the right to ask us to delete or otherwise dispose of any of your personal data that we have.
e) The right to restrict (i.e. prevent) the processing of your personal data.
f) The right to object to us using your personal data for a particular purpose or purposes.
g) The right to data portability. This means that, if you have provided personal data to us directly, we are using it with your consent or for the performance of a contract, and that data is processed using automated means, you can ask us for a copy of that personal data to re-use with another service or business in many cases.
h) Rights relating to automated decision-making and profiling. We do not use your personal data in this way.
For more information about our use of your personal data or exercising your rights as outlined above, please contact us.
Further information about your rights can also be obtained from the Information Commissioner’s Office or your local Citizens Advice Bureau.
If you have any cause for complaint about our use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.
6. What Data Do We Collect?
- Email address;
- Telephone number;
- Business name;
- Information about your preferences and interests;
- Subscription to our newsletter (opt-in);
- IP address;
- Web browser type and version;
- Operating system;
- A list of URLs starting with a referring site, your activity on Our site, and the site you exit to.
7. What do we do with your information?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Under the GDPR, we must always have a lawful basis for using personal data. This may be because the data is necessary for our performance of a contract with you, because you have consented to our use of your personal data, or because it is in our legitimate business interests to use it. Your personal data will be used for one of the following purposes:
- Personalising and tailoring your experience on our website;
- Supplying our products to you. Your personal details are required in order for us to enter into a contract with you.
- Personalising and tailoring our products.
- Communicating with you. This may include responding to emails or calls from you.
- Supplying you with information by email and post that you have opted-in to (you may unsubscribe or opt-out at any time).
- Analysing your use of our website and gathering feedback to enable us to continually improve our website and your user experience.
With your permission and/or where permitted by law, we may also use your personal data for marketing purposes, which may include contacting you by email with information, news, press releases and offers from our clients. You will not be sent any unlawful marketing or spam. We will always work to fully protect your rights and comply with our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003, and you will always have the opportunity to opt-out.
8. How Long Will You Keep My Personal Data?
We will not keep your personal data for any longer than is necessary in light of the reason(s) for which it was first collected.
9. How and Where Do You Store or Transfer My Personal Data?
We will only store or transfer your personal data in the UK. This means that it will be fully protected under the GDPR.
10. Do You Share My Personal Data?
We will not share any of your personal data with any third parties for any purposes, subject to one important exception.
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
In some limited circumstances, we may be legally required to share certain personal data, which might include yours, if we are involved in legal proceedings or complying with legal obligations, a court order, or the instructions of a government authority.
11. How Can I Control My Personal Data?
11.1 In addition to your rights under the GDPR, set out in Part 5, when you submit personal data via our website, you may be given options to restrict our use of your personal data. In particular, we aim to give you strong controls on our use of your data for direct marketing purposes (including the ability to opt-out of receiving emails from us which you may do by unsubscribing using the links provided in our emails and at the point of providing your details and managing your email subscription preferences.
11.2 You may also wish to sign up to one or more of the preference products operating in the UK: The Telephone Preference Service (“the TPS”), the Corporate Telephone Preference Service (“the CTPS”), and the Mailing Preference Service (“the MPS”). These may help to prevent you receiving unsolicited marketing. Please note, however, that these products will not prevent you from receiving marketing communications that you have consented to receiving.
12. Can I Withhold Information?
You may access certain areas of our website without providing any personal data at all. However, to use all features and functions available on our website you may be required to submit or allow for the collection of certain data.
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at email@example.com, selecting the unsubscribe link found at the bottom of our marketing emails or writing to us at: Oursoles LTD, Unit 2, Redbridge Busines Park, Old Redbridge Road, Redbridge, Southampton, Hampshire, SO15 0NJ, United Kingdom
14. How Can I Access My Personal Data?
If you want to know what personal data we have about you, you can ask us for details of that personal data and for a copy of it (where any such personal data is held). This is known as a “subject access request”.
All subject access requests should be made in writing and sent to us by email or our postal address.
There is not normally any charge for a subject access request. If your request is ‘manifestly unfounded or excessive’ (for example, if you make repetitive requests) a fee may be charged to cover our administrative costs in responding.
We will respond to your subject access request within one month of receiving it. Normally, we aim to provide a complete response, including a copy of your personal data within that time. In some cases, however, particularly if your request is more complex, more time may be required up to a maximum of three months from the date we receive your request. You will be kept fully informed of our progress.
15. Third Party Services
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
Links: When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
All Cookies used by us and on our site are used in accordance with current Cookie Law.
Before Cookies are placed on your computer or device, you will be shown a pop-up requesting your consent to set those Cookies. By giving your consent to the placing of Cookies you are enabling us to provide the best possible experience and service to you. You may, if you wish, deny consent to the placing of Cookies; however certain features of our website may not function fully or as intended.
Certain features of our website depend on Cookies to function. Cookie Law deems these Cookies to be “strictly necessary”.
Our website uses analytics products such as Google Analytics.
In addition to the controls that we provide, you can choose to enable or disable Cookies in your internet browser. Most internet browsers also enable you to choose whether you wish to disable all Cookies or only third-party Cookies. By default, most internet browsers accept Cookies, but this can be changed. For further details, please consult the help menu in your internet browser or the documentation that came with your device.
You can choose to delete Cookies on your computer or device at any time, however you may lose any information that enables you to access our webite more quickly and efficiently including, but not limited to, login and personalisation settings.
It is recommended that you keep your internet browser and operating system up-to-date and that you consult the help and guidance provided by the developer of your internet browser and manufacturer of your computer or device if you are unsure about adjusting your privacy settings.
Here is a table of our cookies. We’ve listed them here so you know exactly what our cookies do, then you can make an informed choice on opting in or out. Please note, opting out may affect your experience on our website.
|Cookie name||Cookie Type||Cookie Description|
|_session_id_||Unique Token||Allows Oursoles Ltd to store information about your session (referrer, landing page, etc).|
|Oursoles_visit||Persistant Session Cookies||Used by our website provider’s internal stats tracker to record the number of visits|
|Oursoles_uniq||Expires on midnight||Counts the number of visits to a store by a single customer.|
|cart||Persistant Session Cookies||Stores information about the contents of your cart.|
|storefront_digest||Unique Token||This is used to determine if the current visitor has access.|
|Session||Session||Information that is stored on the server, such as the contents of the shopping cart. If the server session expires before the cookie expires, customers might lose the cart contents and reduce security risk.|
|Session Cookie||Cookie||Information that is stored in the browser as a number or string of characters. If the session cookie expires before the server session, the customer is logged out. The session cookie is deleted when the customer closes the browser window. By default, the cookie lifetime is set to 3600 seconds, or one hour. If there is no keyboard activity during that time, the current session ends, and customers must log back into their accounts to continue shopping.|
|guest-view||Requested||Stores the Order ID that guest shoppers use to retrieve their order status.|
|login _redirect||Requested||Preserves the destination page the customer was navigating to before being directed to log in.|
|mage-messages||Requested||Tracks error messages and other notifications that are shown to the user, such as the cookie consent message, and various error messages, The message is deleted from the cookie after it is shown to the shopper.|
|mage-translation-storage||Requested||Stores translated content when requested by the shopper.|
|product_data_storage||Requested||Stores configuration for product data related to Recently Viewed / Compared Products.|
|recently_compared_product||Requested||Stores product IDs of recently compared products.|
|recently_compared_product_previous||Requested||Stores product IDs of previously compared products for easy navigation.|
|recently_viewed_product||Requested||Stores product IDs of recently viewed products for easy navigation.|
|recently_viewed_product_previous||Requested||Stores product IDs of recently previously viewed products for easy navigation.|
|form_key||Persistent Session Cookies||A security measure that appends a random string to all form submissions to protect the data from Cross-Site Request Forgery (CSRF).|
|mage-cache-sessid||Persistent Session Cookies||The value of this cookie triggers the cleanup of local cache storage. When the cookie is removed by the backend application, the Admin cleans up local storage, and sets the cookie value to “true.”|
|mage-cache-storage||Persistent Session Cookies||Local storage of visitor-specific content that enables ecommerce functions.|
|mage-cache-storage-section-invalidation||Persistent Session Cookies||Forces local storage of specific content sections that should be invalidated.|
|persistent_shopping_cart||Persistent Session Cookies||Stores the key (ID) of persistent cart to make it possible to restore the cart for an anonymous shopper.|
|private_content_version||Persistent Session Cookies||Appends a random, unique number and time to pages with customer content to prevent them from being cached on the server.|
|section_data_ids||Persistent Session Cookies||Stores customer-specific information related to shopper-initiated actions such as display wish list, checkout information, etc.|
|store||Persistent Session Cookies||Tracks the specific store view / locale selected by the shopper.|
|__utmt||Google Analytics Cookies||Used to throttle request rate.|
|__utmv||Google Analytics Cookies||Stores visitor-level custom variable data. This cookie is created when a developer uses the _setCustomVar method with a visitor-level custom variable. This cookie is updated every time data is sent to Google Analytics.|
18. Age of Consent
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you
20. Our partners:
Our store is hosted by Dotsquares pvt. ltd. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Dotsquares pvt. ltd. data storage and databases. They store your data on a secure server behind a firewall.
If you choose a direct payment gateway to complete your purchase, then Dotsquares pvt. ltd. store your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard and American Express.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
21. Signing in using Social Media:
Our Soles will never follow a page, update your profile, read your posts/tweets or post on your social media without you performing the specific actions to do so (clicking the share/tweet button on a product page for example).
If you have any questions regarding this topic, please contact us.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at firstname.lastname@example.org or by writing to us at: Oursoles LTD, Unit 2, Redbridge Busines Park, Old Redbridge Road, Redbridge, Southampton, Hampshire, SO15 0NJ, United Kingdom