Your privacy is important to us! We respect and commit to protecting your privacy regarding any information we may collect from you across our website (https://soapaholics.com and its subdomains) or any other sites (and subdomains) we own and operate.
- We only ask for personal information when we truly need it to provide a service to you. We collect it by fair and lawful means, with your knowledge and consent. We also let you know why we’re collecting it and how it will be used.
- We only retain collected information for as long as necessary to provide you with your requested service.
- What data we store, we’ll protect within commercially acceptable means to prevent loss and theft, as well as unauthorized access, disclosure, copying, use or modification.
- We don’t share any personally identifying information publicly or with third-parties, except when required to by law.
- Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and practices of these sites, and cannot accept responsibility or liability for their respective privacy policies.
- You are free to refuse our request for your personal information, with the understanding that we may be unable to provide you with some of your desired services.
Who we are
Our website address is https://soapaholics.com. The website is operated by YOS OÜ, a limited company registered and located in Estonia (Estonian business registry number 14646378).
What data we collect and why we collect it
In order to offer our services we may collect the following information:
- name, phone number and email address;
- delivery address;
- bank account number;
- cost of goods and services and data related to payments (purchase history);
- customer support data.
We collect and use this information mainly to manage orders and deliver purchased goods. Some personal data may also be processed for performing legal obligations (such as accounting and the settlement of consumer complaints).
We use and process personal data and contact details such as email, phone number and the customer’s name to handle any issues relating to the provision of goods and services (customer support).
We need your bank account number and security/CVV code to collect payments but also to reimburse payments when necessary.
We use purchase history details (date of purchase, goods, quantity, customer’s data) for preparing summaries of goods and services purchased and for analyzing customer preferences.
The IP address or other web identifiers of a user of the site are processed for the provision of the online shop as an information society service and for web use statistics.
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
We may use contact forms to collect data such as names and email addresses for customer service and support purposes.
Some of the information may be collected automatically by our servers when you access the site, such as your IP address, your browser type, your operating system, your access times, and the pages you have viewed directly before and after accessing the site. We use this kind of information for analytical and marketing purposes.
In order for this site to work properly, we sometimes place small data files called cookies on your device.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
Additionally, we may use site analytics cookies to analyze web statistics. We may use targeting and advertising cookies to carry out our marketing campaigns.
By using our site, you agree to us placing these sorts of cookies on your device and accessing them when you visit the site in the future. You can block and/or delete cookies as you wish using your browser settings. You can delete all cookies that are already on your computer and you can set your browser to prevent them from being placed. Please note however, by doing this you may have to manually adjust some preferences every time you visit our site and some services and functionalities may not work.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Direct marketing messages
We may use the email address and phone number provided to us by you for sending you direct marketing messages. We will only do so if you have given us a prior consent. You can stop receiving marketing messages from us at any time by clicking the unsubscribe link in the email or by contacting us. Unsubscribing from our marketing messages does not unsubscribe you from our other messages that are required for fulfilling our services.
To deliver you our marketing messages, we may use third party service providers (e.g. MailChimp). In this case, we may need to store some of your personal data (mainly name and/or email address) in their servers.
Where personal data are processed for direct marketing purposes (profiling), the customer has the right to object at any time both to the initial and further processing of his/her personal data, including profiling related to direct marketing by notifying customer support thereof via email.
Who we share your data with
To offer delivery of purchased goods, we need to share your name, phone number and email address with the delivery service provider. When the goods are delivered by a courier, the customer’s address is also transmitted together with the contact details.
We offer payments through a third party payment gateway provider (e.g. PayPal). In order to do so, we need to share with them the information regarding the payment for your purchases. This information may include but is not limited to (depending on the service provider and the type of payment service selected by you) your name, address and bank account details.
Some personal data may be transmitted to IT service providers if this is necessary for ensuring the functionality of the online shop or for data hosting.
We may also share your personal data with third parties (e.g. representatives of law enforcement) if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or to protect the rights, property or safety of our site, users, or others.
For your convenience we have made the following list of some of our third party service providers with links to their privacy policies (please note that the following list may not be conclusive and is for your informational purposes only):
Security and access to data
Personal data can be accessed by the staff of the online shop in order to settle technical issues related to the use of the online shop and to provide customer support.
The online shop takes appropriate physical, organisational and IT security measures to protect personal data against accidental or unlawful destruction, loss, alteration or unauthorized access and disclosure.
Personal data are transmitted to the data processors of the online shop (such as the providers of transport and data hosting services) and processed under contracts concluded between the online shop and the processors. The processors must ensure appropriate safeguards when processing personal data.
Personal data can be accessed and rectified in the user profile of the online shop. When a purchase has been made without a user account, personal data can be accessed through customer support.
By using our website and services, you acknowledge that, in spite of all the precautions that we may take, we cannot eliminate all risks associated with the security and integrity of your personal information.
How long we retain your data
For users that register on our website, we store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Personal data are erased upon the closure of a customer account of the online shop, unless the storage of the data is necessary for accounting purposes or for the settlement of consumer disputes.
In the event of disputes concerning payments and consumer disputes, the personal data are stored until the claim is satisfied or until the end of the limitation period.
For online purchases made without a customer account, the purchase history is stored for three years.
Personal data needed for accounting purposes are stored for seven years.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
For the erasure of the personal data, customer support must be contacted via email. requests of erasure are responded to no later than within one month and the period of erasure shall be specified.
Disputes concerning the processing of personal data are settled through customer support (see our web page for customer support contacts). The supervisory authority is the Estonian Data Protection Inspectorate (firstname.lastname@example.org).