This store is operated by REAL BAD MAN EUROPE. Our address is REAL BAD MAN EU c/o BEN-G SKATESHOP & VERY SPECIAL DISTRIBUTION, Nieuwezijds Voorburgwal 142 - 2nd Floor, 1012 SH, Amsterdam, The Netherlands.
In this policy, we explain what kind of personal data we collect, what we use it for, how long we keep it and how we keep it secure. We also tell you about the cookies we use and the other companies we work with in delivering the store services. And we also tell you about your rights and how to contact us.
SECTION 1 - WHAT INFORMATION DO WE COLLECT, AND WHAT DO WE USE IT FOR?
When you purchase something from our store, as part of the buying and selling process, we collect the personal data you give us such as your first name, last name, address, country, email address.
When you browse our store, we also automatically receive your computer’s internet protocol (ip) address in order to provide us with information that helps us learn about your browser and operating system. We also remember what items you put in your bag.
Email marketing (if applicable): with your permission, we may send you emails about our store, new products and other updates.
SECTION 2 - LEGAL BASIS
When you provide us with personal data to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we use it to be able to complete those actions only and for no other purposes.
Providing this information is not a statutory or contractual requirement, or a requirement necessary to enter into a contract, and you are not obliged to provide this personal data. If you do not provide a valid delivery address, we cannot complete your order, and if you do not provide a valid email address, we cannot provide you with status updates about your order.
If we ask for your personal data for another reason, like marketing, we will ask you directly for your expressed consent and use your information on that basis. There is no obligation to provide this information to complete your order.
SECTION 3 - SHOPIFY AND OTHER THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
Our store is hosted on Shopify inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
For more information, you may want to read shopify’s privacy statement.
If you choose a direct payment gateway to complete your purchase, then shopify stores your credit card data. It is encrypted through the payment card industry data security standard (pci-dss). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by pci-dss as managed by the pci security standards council, which is a joint effort of brands like Visa, Mastercard, American Express and discover.
Pci-dss requirements help ensure the secure handling of credit card information by our store and its service providers.
Multisafepay processes all payments except for PayPal payments. When placing an order on our website Multisafepay uses your name, address and email for the invoices and transaction. When choosing Sofort as payment method Multisafepay shares your consumer data in the context of fraud management to protect the consumer.
If you accept marketing your name and email address will be shared with Mailchimp. We use this platform to send newsletters based on your preferred clothing type.
SECTION 4 - HOW WE HANDLE YOUR INFORMATION
To protect your personal data, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is sent encrypted using secure socket layer technology (ssl) and stored with a aes-256 encryption. Although no method of transmission over the internet or electronic storage is 100% secure, we follow all pci-dss requirements and implement additional generally accepted industry standards.
We generally store information for up to one year. We may store (aggregated) data longer if needed for tax or accounting reasons.
Transfer of your personal data
You should also know that your personal data may be transferred from your home country to other obey clothing Europe companies around the world or to our service providers. If you are an EU resident, this can mean that we also transfer data to countries that do not offer an adequate level of protection for your personal data. When we transfer this data, we will do so only when we have put in place appropriate safeguards to protect your personal data. Please contact us to get a copy of the safeguards that we have put in place. Our contact details are at very end of this page.
Sharing your personal data
We do not publish or sell your customer data.
We may disclose your personal data if we are required by law to do so or if you violate our terms of service.
If our business is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
SECTION 5 - COOKIES
Please visit our cookies page for more information about all the cookies we store and use.
Shopify uses analytics and functional cookies. You can access their cookie information here. Only Shopify can store and read information based on these cookies.
_session_id. A unique number that is only stored for the duration of your shopping session. This allows Shopify to store analytics information about your session (referrer, landing page, etc).
_shopify_visit. No data is stored with this analytics cookie. It is used by our website provider’s internal stats tracker to record the number of visits, and is deleted 30 minutes after your last visit.
_shopify_uniq. No data is stored with this analytics cookie. It counts the number of visits to a store by a single customer and expires midnight (relative to the visitor) of the next day.
Cart. This is a functional cookie with a unique token. It stores information about the contents of your cart for 2 weeks.
_secure_session_id. This is a functional cookie with a unique token. It is used to secure your shopping session, and is stored for the duration of your shopping session.
Storefront_digest. This is a functional cookie with a unique token. It is used to check if the current visitor has access if the shop has a password and it is store for indefinite duration.
SECTION 6 - YOUR RIGHTS
You have the right to request access to your personal data that we process. You also have the right to:
- rectify incorrect personal data or erase it in certain circumstances.
- restrict or object to the processing of your personal data.
- receive your data so that you can use it elsewhere (data portability).
You also have the right to withdraw your consent at any time but we would like to point out that this does not affect the lawfulness of the processing before the date that you withdrew your consent. You can withdraw your consent by unsubscribing from our newsletter.
Finally, you have the right to lodge a complaint with a supervisory authority. If you do not know who your supervisory authority is, please contact us and we will tell you.
If you are under 13, We do not knowingly collect data from children under the age of 13. If a parent or guardian becomes aware that his or her child or guard has provided us with information without their consent, he or she should contact us at email@example.com we will delete such information from our files within a reasonable time.
SECTION 7 - DUTCH DATA PROTECTION AUTHORITY - AUTHORITY PERSONAL DATA
We are happy to help you if you have complaints about the processing of your personal data. Under the privacy legislation you also have the right to file a complaint with the dutch data protection authority against the processing of your personal data. You can contact the Dutch data protection authority for this.