THE BOUQS COMPANY PRIVACY STATEMENT
Effective as of June 23, 2018
Thank you for visiting https://bouqs.com/ (the “Site”), a service dedicated to simplifying bouquet purchases. When you browse or use the Site, The Bouqs Company mobile application (the “App”), other related applications or online services offered by The Bouqs Company (together with the Site, the “Service”), purchasing any floral goods through the Service, or entering into any other transactions on the Service, The Bouqs Company (the “Company,” “The Bouqs,” “we,” “us” or “our”) will collect certain information about or from you.
By visiting, browsing or otherwise using the Service, you consent to our collection, use, storage, deletion, transfer to the United States, and sharing or other disclosure of information relating to you as set forth in this privacy statement (the “Privacy Statement”). This Privacy Statement is effective as of the date set forth above. If you do not accept this Privacy Statement, you are not permi tted to use or access our Service, p urchase goods through the Service, or enter into any transactions on the Service with The Bouqs.
This Privacy Statement answers the following questions:
- What information do we collect from or about you when you use the Service?
- How do we use such information?
- How do we share such information?
- What choices do you have about the collection and use of your information when you use the Service?
- What security measures do we take to safeguard such information?
TYPES OF INFORMATION WE COLLECT
PURCHASING THROUGH THE SERVICE
IP ADDRESS INFORMATION AND OTHER INFORMATION COLLECTED AUTOMATICALLY
COOKIES AND OTHER TECHNICAL INFORMATION
“DO NOT TRACK”
GOOGLE ADWORDS AND GOOGLE ANALYTICS
SOCIAL MEDIA FEATURES
INFORMATION RELATED TO ADVERTISING
HOW WE USE THE INFORMATION WE COLLECT ABOUT YOU
HOW WE SHARE YOUR INFORMATION WITH THIRD PARTIES
ADDITIONAL INFORMATION YOU SHOULD KNOW ABOUT THIRD PARTIES
CONTROL OF YOUR INFORMATION
HOW TO CORRECT OR DELETE YOUR DATA
CALIFORNIA RESIDENTS: YOUR CALIFORNIA PRIVACY RIGHTS
USERS OUTSIDE THE UNITED STATES
WHAT SECURITY MEASURES DO WE TAKE TO SAFEGUARD YOUR INFORMATION?
NOTIFICATION OF CHANGES
EU GENERAL DATA PROTECTION REGULATION (GDPR)
1. TYPES OF INFORMATION WE COLLECT
When you use the Service, we collect three types of information about you:
- (1) information you submit via your use of the Service,
- (2) information regarding your use of the Service collected by us as you interact with the Service, and
- (3) information from any third party websites, services and applications (each a “Third-Party Website”).
For example, we may collect personal information when you create an account on the Service (an “Account”), subscribe to our newsletter, participate in Service feedback, questionnaires, surveys, or contests, participate in forums and chat rooms, purchase a product through the Service, or receive customer or technical support. Below, we detail the specific types of information we collect from our users.
2. ACCOUNT INFORMATION
When you create an Account, you will provide information such as your name, username, password, postal address and email address. You acknowledge that this information may be personal to you, and by creating an Account on the Service and providing personal information to us, you allow others, including us, to identify you, and therefore, you may not be anonymous.
We may use your contact information that you provide through the Service to send you information about our Service or to add you to our list to receive marketing emails. Our marketing emails tell you how to “opt-out.” If you opt out, we may still send you non-marketing emails. Non-marketing emails include emails about your Account and our business dealings with you. We also reserve the right to contact you when we believe it is necessary, such as for Account recovery purposes.
3. PURCHASING THROUGH THE SERVICE
If you purchase goods or services through the Service, we may ask you to provide certain financial information so that we may effect a payment transaction. As part of the payment system, we or third parties performing sales processing services on our behalf will collect, store and use information, such as your name, address, credit card number, phone number, and your
e-mail address, in order to process the transaction and provide you the Service you requested. In addition, the payment system will also collect information regarding the actual bill payment transaction, including the date and amount paid.
4. IP ADDRESS INFORMATION AND OTHER INFORMATION COLLECTED AUTOMATICALLY
We automatically receive and record information from your web browser when you interact with the Service, including your IP address and cookie information. Generally, the Service automatically collects usage information, such as the number and frequency of visitors to the Service.
Use of the App. When you use the App, we may collect certain information about such use, including the location of your mobile device, your mobile device ID, type of device and operating system you use to access our App; your activities within the App; and the length of time that you are logged in through the App.
5. COOKIES AND OTHER TECHNICAL INFORMATION
Certain features of our Services may use local shared objects or “flash cookies.” You may adjust your Adobe Flash Player settings to prevent flash cookies from being placed on your hard drive.
We may also log information using digital images called web beacons on our Service or in our emails. We may use web beacons to manage cookies, count visits, and to learn what marketing works and what does not. We may also use web beacons to tell if you open or act on our emails.
6. TRACKING PIXEL
A tracking pixel is a transparent graphic image (usually 1 pixel x 1 pixel) that is placed on a web page and allows for the collection of information regarding the use of the web page that contains the tracking pixel. We use third-party ad servers to support tracking pixels and cookies.
7. “DO NOT TRACK”
In compliance with California legislation, AB370, effective January 1, 2014, our practices in responding to “do not track” signals and collecting user information over time and across a network of websites when you visit the Service are described below. We do not honor the request of “do not track” signals sent by your browser when you visit the Site.
8. GOOGLE ADWORDS AND GOOGLE ANALYTICS
9. SOCIAL MEDIA FEATURES
10. INFORMATION RELATED TO ADVERTISING
To support and enhance the Service, we may serve advertisements, and also allow third-party advertisements, through the Service. These advertisements are sometimes targeted and served to particular users and may come from third-party companies called “ad networks.” Ad networks include third-party ad servers, ad agencies, ad technology vendors and research firms.
Advertisements served through the Service may be targeted to users who fit a certain general profile category and may be based on (1) anonymized information inferred from information provided to us by a user, (2) Service usage patterns of particular users, or (3) your activity on a Third-Party Websites.
11. CHILDREN’S PRIVACY
We are committed to complying with all aspects of the Children’s Online Privacy Protection Act. We do not knowingly collect or solicit any personal information from children under the age of 13. Users are not permitted to give to us the personal information of any children under the age of 13 for delivery purposes or any other reason. If you are under 13, please do not attempt to use or register on our Service or send any personal information about yourself to us.
In the event that we learn that we have collected personal information from a child under age 13, we will delete that information where reasonably possible. If you believe that we might have any information from or about a child under 13, please send a detailed message to firstname.lastname@example.org.
12. HOW WE USE THE INFORMATION WE COLLECT ABOUT YOU
You agree that we may use your information collected via the Services: (1) to provide to you and communicate with you about the services, content, features or products you use or request; (2) to customize and optimize the content or advertisements you receive when you use the Service, and otherwise enhance or improve your experience, our Service, or our delivery services; (3) to analyze and improve our services, which may include traffic, usage, and navigation patterns related to your activities on the Service and the links we provide to Third‑Party Websites or advertisements; (4) to secure your Account and prevent fraud; (5) to protect our or third party rights or interests; (6) to send you commercial or marketing messages including, without limitation, newsletters and email communications about our products or services, or those of our partners; (7) in any other way we may describe when you provide the information; and (8) for any other purpose that we believe in good faith is necessary to protect the security or proper functioning of our Service or delivery services.
13. HOW WE SHARE YOUR INFORMATION WITH THIRD PARTIES
We may share the information we collect from you under the following circumstances:
- When You Otherwise Consent to Sharing Your Information. We may ask for your consent to share your personal information, and if you agree, we will share your personal information accordingly. For example, we may ask whether you wish to participate in promotional offers that require Bouqs to share your personal information with a partner in order to redeem the promotion. If you agree to participating in the promotion, we will share your personal information as directed.
- Protection of Rights. We may share your information if we have a good faith belief that (1) access, use, preservation or disclosure of such information is reasonably necessary to satisfy any applicable law, regulation, legal process, such as a court order or subpoena, or a request by law enforcement or governmental authorities; (2) such action is necessary to detect, prevent, or otherwise address fraud, security or technical issues associated with the Service; or (3) such action is appropriate to protect the rights, property or safety of The Bouqs, its employees, clients, or users of the Service.
- Business Transfers. If we become involved in a merger, acquisition, change of control, bankruptcy proceeding or other transaction involving the sale of some or all of our assets, stock or a line of business, user information, including information collected from you through your use of the Service, could be included in the transferred assets. Should such an event occur and the acquirer will use your information contrary to this Privacy Statement, we will use reasonable means to notify you through a prominent notice on the Service. By using the Service, you are giving us consent to transfer your information to a third-party in a business transfer as described here.
- Service Providers. We may share your information with third-party vendors or service providers that we engage for the purpose of operating the Service, including for fulfilling product orders or processing information on our and your behalf. For example, we may partner with other companies to process payments for the Service. Additionally, we may partner with or utilize other companies to host our email system or to process, analyze, and/or store data. While providing services for us, these companies may access your information. To the extent applicable, we require these entities to comply with this Privacy Statement and appropriate confidentiality and security measures. Without limiting the generality of the foregoing, you authorize us to share (1) your name, email address, mailing address and recipient information with services providers such as PayPal, Federal Express and United Parcel Service in connection with processing of orders and (2) your name and email address with other services providers that we utilize to provide customer support, marketing and other services. We strongly advise you to read each of their privacy policies.
- Aggregated and De-Identified Information. We may aggregate your information with information about other users. We may also de-identify your information by removing characteristics (such as your name or email address) that make the information personally identifiable. You expressly authorize us to make any use of such aggregated and/or de-identified data, including, without limitation, sharing such aggregated and/or de-identified data with third parties.
We may also share your information if we deem it necessary in our sole discretion to protect our legal and legitimate business interests.
When a consumer purchases flowers and other products via the Service to send to a third party, the consumer’s identity and related information will not be disclosed to the recipient, except if the consumer themselves elects to disclose their identity to the recipient, such as via the contents of the gift message.
14. ADDITIONAL INFORMATION YOU SHOULD KNOW ABOUT THIRD PARTIES
Please be aware that we cannot control the activities of third parties to whom we provide data, and as such we cannot guarantee that they adhere to the same privacy and security procedures as The Bouqs.
15. CONTROL OF YOUR INFORMATION
We may give you the option of declining any future offers or information about new products, promotions or services. In addition, many of the “mailings” we may send you, such as newsletters, have procedures within them to cancel the receipt of any future mailings.
16. HOW TO COLLECT OR DELETE YOUR DATA
Any individual who seeks access, or who seeks to correct, amend or delete inaccurate data should direct his or her query to the following email address: email@example.com, or by postal mail at:
The Bouqs Company
ATTN: Data Request
4766 Admiralty Way #12007
Marina Del Rey, CA 90295.
Please include your full name and email address associated with your Account and a detailed description of your data request. In some cases, we may not be able to delete your information, and will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
17. CALIFORNIA RESIDENTS: YOUR CALIFORNIA PRIVACY RIGHTS
Under California law, our customers that are California residents may request certain information regarding our disclosure of their personal information to third parties for direct marketing purposes. See Section 13 for more information. If you are a California resident, you may opt out of having your personal information shared with third parties for direct marketing purposes, by contacting us at firstname.lastname@example.org or by postal mail at:
The Bouqs Company
ATTN: California Privacy Request
4766 Admiralty Way #12007
Marina Del Rey, CA 90295
Please include your full name and email address associated with your Account and a detailed description of your data request.
18. USERS OUTSIDE THE UNITED STATES
This Privacy Statement is intended to cover collection of information from residents of the United States. The Services and the services upon which the Services are hosted are located in the United States. Information you submit using the Services or that we collect about you via your use of the Services will be transferred to and stored in the United States. By visiting the Services, you authorize this transfer.
19. WHAT SECURITY MEASURES DO WE TAKE TO SAFEGUARD YOUR INFORMATION?
The information we collect about you when you use the Services is stored on servers that are located in secured facilities and protected by protocols and procedures designed to ensure the security of such information. In addition, our employees and agents who have access to your personal information are trained in the maintenance and security of that information. However, no server, computer or communications network or system, or data transmission over the Internet or mobile network can be guaranteed to be 100% secure. As a result, while we strive to protect user information, we cannot ensure or warrant the security of any of your information, and you acknowledge and agree that you provide such information and engage in such transmissions at your own risk. Once we receive a transmission from you, we will endeavor to maintain its security on our systems.
20. GOVERNING LAW
This Privacy Statement is governed by, and construed under, the laws of the United States of America and the laws of the State of California, excluding its choice of law provisions.
21. NOTIFICATION OF CHANGES
This Privacy Statement is effective as of the date stated at the top of this Privacy Statement. This Privacy Statement may change from time to time, and we will post all changes on the Site. You understand and agree that you will be deemed to have accepted the updated Privacy Statement if you use the Service after the updated Privacy Statement is posted on the Site. If at any point you do not agree to any portion of the Privacy Statement then in effect, you must immediately stop using the Service.
22. EU GENERAL DATA PROTECTION REGULATION (GDPR)
The Bouqs Company (“we”, “our”, “us”) are committed to protecting and respecting your privacy. We are established in the United States with a registered office in Marina Del Rey, CA 90292, and for the purpose of the General Data Protection Regulation (the “GDPR”), we are the data controller.
What types of information do we collect and how do we use it?
- Information you give us.You may provide information by contacting us via our Website or email, telephone, instant chat, social media or otherwise signing up for our newsletters or mobile push notification, or by creating an account.
As it is in our legitimate interests to be responsive to you and to ensure the proper functioning of our products and organisation, we will use your information to:
- communicate with you;
- sign you up for our newsletters or alerts;/li>
- contact you via telephone or email;
- identify our users;
- administer and provide services and customer support per your request;
- personalise our services for you;
- enforce our Website terms and conditions;
- if you have opted in to marketing, communicate with you about products, services, promotions, events and other news and information we think will be of interest to you; or
- provide third parties with statistical information about our users (but those third parties will not be able to identify any individual user from that information).
Technical usage information. When you visit the Website, we automatically collect the information sent to us by your computer, mobile phone, or other access device. This information includes:
- your IP address;
- device information including, but not limited to, identifier, name, and type of operating system;
- mobile network information; and
- standard web information, such as your browser type and the pages you access on our Website.
As it is in our legitimate interests to process your data to provide effective services and useful content to you, we
- personalise our Website to ensure content from the Website is presented in the most effective manner for you and your device;
- monitor and analyse trends, usage and activity in connection with our Website and services to improve the Website;
- administer the Website, and for internal operations, in order to conduct troubleshooting, data analysis, testing, research, statistical and survey analysis;
- keep the Website safe and secure; or
- measure and understand the effectiveness of the content we serve to you and others.
We use Google Analytics, which is a web analytics tool that helps us understand how users engage with the Website. Like many services, Google Analytics uses first-party cookies to track user interactions, as in our case, where they are used to collect information about how users use our site. This information is used to compile reports and to help us improve our Website. The reports disclose website trends without identifying individual visitors. You can opt out of Google Analytics without affecting how you visit our site – for more information on opting out of being tracked by Google Analytics across all websites you use, visit this Google page: https://tools.google.com/dlpage/gaoptout.
How do we share your personal data?
- cloud storage provides located in the United Statesto store the personal data you provide and for disaster recovery services, as well as for the performance of any contract we enter into with you;
- IT Services providers that provide us with SaaS services, including ZenDesk, who we use to store our customer relationship management information, etc.;
- provided you have consented, advertisers and advertising networks located in the United States that require the data to select and serve relevant adverts to you and others;
- provided you have consented, promotional partners that require your personal information in order to redeem the promotion;
- analytics and search engine providers located in the United States that assist us in the improvement and optimisation of the Website; and
We will share your information with law enforcement agencies, public authorities or other organisations if legally required to do so, or if we have a good faith belief that such use is reasonably necessary to:
- comply with a legal obligation, process or request;
- enforce our terms and conditions and other agreements, including investigation of any potential violation thereof;
- detect, prevent or otherwise address security, fraud or technical issues; or
- protect the rights, property or safety of us, our users, a third party or the public as required or permitted by law (exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction).
We will also disclose your information to third parties:
- in the event that we sell any business or assets, in which case we will disclose your data to the prospective buyer of such business or assets; or
- if we or substantially all of our assets are acquired by a third party, in which case information held by us about our users will be one of the transferred assets.
Where do we store your personal data?
The information that we collect from you will be transferred to, and stored at/processed in the United StatesYour personal data is also processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff are engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. We will take all steps reasonably necessary to ensure that your personal data is treated securely and in accordance with this policy.
The security of your personal data
Unfortunately, the transmission of information via the internet or email is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your information transmitted through the Website or over email; any transmission is at your own risk. Once we have received your information, we will take appropriate technical and organisational measures to safeguard your personal data against loss, theft and unauthorised use, access or modification.
We will, from time to time, host links to and from the websites of our affiliates or third parties. If you follow a link to any of these websites, these websites will have their own privacy policies and we do not accept any responsibility or liability for these policies. Please check these policies before you submit any information to those websites.
You have the right to ask us to access the personal data we hold about you and be provided with certain information about how we use your personal data and who we share it with. You also have the right to ask us to correct your personal data where it is inaccurate or incomplete.
In certain circumstances, you have the right to ask us to delete the personal data we hold about you:
- where you believe that it is no longer necessary for us to hold your personal data;
- where we are processing your personal data on the basis of legitimate interests and you object to such processing and we cannot demonstrate an overriding legitimate ground for the processing;
- where you believe the personal data we hold about you is being unlawfully processed by us.
In certain circumstances, you have the right to ask us to restrict (stop any active) processing of your personal data:
- where you believe the personal data we hold about you is inaccurate and while we verify accuracy;
- where we want to erase your personal data as the processing is unlawful but you want us to continue to store it;
- where we no longer need your personal data for the purposes of our processing but you require us to retain the data for the establishment, exercise or defence of legal claims; or
- where you have objected to us processing your personal data based on our legitimate interests and we are considering your objection.
In addition, you can object to our processing of your personal data based on our legitimate interests and we will no longer process your personal data unless we can demonstrate an overriding legitimate ground.
To exercise any of these rights above, please contact us via emailing at email@example.com.. In addition, you have the right to complain to the Information Commissioner’s Office or other applicable data protection supervisory authority.
Please note that these rights are limited, for example, where fulfilling your request would adversely affect other, where there are overriding public interest reasons or where we are required by law to retain your personal data.
Withdrawal of Consent
Where you have provided your consent for us to process your personal data, you can withdraw your consent at any time by emailing us at firstname.lastname@example.org.
Objection to Marketing
At any time you have the right to object to our processing of data about you in order to send you promotions and special offers, including where we build profiles for such purposes, and we will stop processing the data for that purpose.
In the event that you wish to make a complaint about how we process your personal data, please contact us in the first instance at email@example.com and we will endeavour to deal with your request as soon as possible. This is without prejudice to your right to launch a claim with the Information Commissioner’s Office or the data protection supervisory authority in the EU country in which you live or work where you think we have infringed data protection laws.
Any changes we will make to this policy in the future will be posted on this page. Please check back frequently to see any updates or changes to this policy.
Questions, comments and requests regarding this policy are welcomed and should be addressed to firstname.lastname@example.org.