Last modified: 10/7/2018
5.2 EU Persons
5.4 Grievance procedure
7.1 Data Breach
7.2 Record keeping
7.3 Auditing compliance
We are pleased that you have visited Lotuk.com are happy you are interested in high quality socks with original art. This website is operated by Lotuk, INC (“Lotuk”) (sometimes referred to herein as “we”, “our”, or “us”).
Please read this policy carefully to understand our policies and practices regarding your personal data and how we treat it. If you do not agree with our policies and practices, your choice is to not use our Website. By accessing or using this website, you agree to this policy.
Persons under the age of 16. Our website is not intended for children under the age of 16. No one under the age of 16 may provide personal data to the Website. We do not knowingly collect personal data from children under the age of 16. If we discover that we have collected personal data from a child under the age of 16 without parental consent, we will delete that information. If you believe we might have information from or about a child under the age of 16, please contact us at firstname.lastname@example.org.
What is Personal Data? For the purposes of this policy, personal data is information that is: (i) about an identified or identifiable individual, (ii) received by us, and (iii) recorded in any form. Personal data does not include anonymous or non-personal information (i.e., information that cannot be associated with or tracked back to a specific individual) (hereinafter “Personal Data”).
At some Sites, you may be able to order products, enter contests, vote in polls or otherwise express an opinion, subscribe to one of our services such as our online newsletters, or participate in one of our online forums or communities. In the course of these various offerings, we often seek to collect various forms of Personal Data. This data includes:
We collect this information:
collected through cookies, web beacons, and other tracking technologies; and
At some Sites, you may also be able to submit information about other people. For example, you might submit a person’s name and email address to send an electronic message and, if you order a gift online and want it sent directly to the recipient, you might submit the recipient’s name and address. Examples of the types of Personal Data that may be collected about other people at these pages include: recipient’s name, mailing address, email address, and telephone number.
At certain parts of some of our Sites, only persons who provide us with the requested Personal Data will be able to order products, programs, and services or otherwise participate in the Site’s activities and offerings.
Social Media Information. You can engage with our content, such as video, games, applications, and other offerings, on or through third-party social media sites, such as Facebook or Instagram, or third-party social media plug-ins and applications. When you engage with our content on or through third party social media sites, plug-ins and applications, you may allow us to have access to certain information from your social media profile (e.g., name, email address, photo, gender, date of birth, location, your list of friends, people you follow or who follow you, the posts or the likes you make) to deliver the content or as part of the operation of the application.
When you provide information from your social media account, it can help enable us to do things like:
By doing so, you consent to the use of this information in accordance with this policy. When you provide personal information to us through a social media application it may be publicly viewed by other members of these sites. We cannot prevent further use of the information by third parties.
We may also obtain non-personally identifiable information (e.g., content viewed and information about advertisements within the content you have been shown or may have clicked on) from your interaction with content on your social media account.
Information We Collect Through Automatic Data Collection Technologies. As you navigate through and interact with our Sites, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns, including:
We also may use these technologies to collect information about your online activities over time and across third-party websites or other online services (behavioral tracking). We do honor Do Not Track signals. Please email us at email@example.com for information on how you can opt out of behavioral tracking on this website and how we respond to specific web browser signals and other mechanisms that enable consumers to exercise choice about behavioral tracking.
The information we collect automatically may include personal information, or we may associate it with personal information we collect in other ways or receive from third parties. It helps us to improve our Website and to deliver a better and more personalized service, including by enabling us to:
The technologies we use for this automatic data collection may include:
The Personal Data we collect is used and disclosed as is necessary to provide services to you and as reasonably required for our business purposes, including:
If you choose to submit content for publication (e.g., a letter to our editors, a posting to a blog, photo, or a discussion board, or a video), we may publish your screen name and other information you have provided to us. Without limiting the generality of the foregoing, if you register and create a profile with our site, the screen name you select, as well as, other content you submit to your profile (e.g., photos, comments, video, reviews) will be displayed publicly on the Sites and may be refused and redistributed by us in our discretion.
We use information that we collect to improve the design and content of our Sites, to deliver more relevant marketing messages and advertisements and to enable us to personalize your Internet experience. We may also use this information to analyze usage of our Sites, as well as, to offer you products, programs, or services.
We use information that we collect for any other purpose, with your consent, as required by applicable law.
We may disclose Personal Data to the following types of third parties:
Subsidiaries and Affiliates. We may share Personal Data with other members or agents of our corporate group in order to work with them, including affiliates. We may also transfer Personal Data in the event of an audit or if we sell or transfer all or a portion of our business or assets (including in the event of a merger, acquisition, joint venture, reorganization, dissolution, or liquidation).
Partners and Affiliated Businesses Not Controlled by Us. We may partner with other companies to jointly offer products or services. If you purchase or specifically express interest in a jointly offered product or service from us, we may share Personal Data collected in connection with your purchase or expression of interest with our partners. We contractually require these third parties to keep Personal Data confidential and use if only for the purposes for which we disclose it to them. If you do not wish for your information to be shared in this manner, you may choose not to purchase or specifically express interest in a jointly offered product or service.
Compelled Disclosure. It may be necessary for us to disclose your Personal Data, either by law, legal process, litigation, or requests from public and governmental authorities. We may also disclose information about you if we determine that for purposes of national security, law enforcement, or other issues of public importance, disclosure is necessary or appropriate. We may also disclose Personal Data if we determine that disclosure is reasonably necessary to enforce our terms and conditions or protect our operations or users.
Although we take appropriate measures to safeguard against unauthorized disclosures of information, we cannot assure you that personally identifiable information that we collect will never be disclosed in a manner that is inconsistent with this privacy statement.
We offer Site Visitors and Customers who provide Personal Data the means to choose how we use the information we collect. To the extent required by applicable law, Lotuk, Inc. obtains opt-in-consent for certain uses and disclosures of Personal Data. You have a right to withdraw such consent at any time. We shall make reasonable efforts to accommodate individual privacy preferences.
Account Profile. To update your account information or have your account deleted, please email firstname.lastname@example.org. Requests to access, change, or delete your information with be handled within 30 days.
Promotional Offers. If you do not wish to have your information used by the Company to promote our own or third parties’ products or services, you can opt-out by checking the relevant box located on the form on which we collect your data. You can also always opt-out by sending us an email stating your request to: email@example.com
You may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of marketing emails. Additionally, you may send a request specifying your communications preferences to firstname.lastname@example.org. Customers cannot opt out of receiving transactional emails related to purchases or their account.
Targeted Advertising. If you do not want us to use information that we collect or that you provide to us to deliver advertisements according to target-audience preferences, you can contact us for information about how to opt-out at email@example.com. For certain opt-outs to function, you must have your browser set to accept browser cookies.
We do not control third parties’ collection or use of your information to serve interest-based advertising. However, these third parties may provide you with ways to choose not to have your information collected or used in this way. You can opt-out of receiving targeted ads from members of the Network Advertising Initiative (“NAI”) on the NAI’s website.
Exceptions. We may disclose your Personal Data without offering an opportunity to opt-out, when (i) we retain third-party processors to perform services on our behalf and pursuant to our instructions, (ii) required by law or legal process, or (iii) responding to lawful requests from public authorities, including to meet national security, public interest, or law enforcement requirements.
5.2 EU PERSONS.
We limit the processing of Personal Data of persons in the EU (“EU Personal Data”) to that which is relevant for the purposes of the particular processing. We do not process EU Personal Data in ways that are inconsistent with the purposes for which the information was collected or subsequently authorized by you.
In addition, to the extent necessary for these purposes, we take reasonable steps to ensure that the EU Personal Data we process is (i) reliable for its intended use, and (ii) accurate, complete and current. In this regard, we rely on you to update and correct EU Personal Data to the extent necessary for the purposes for which the information was collected or subsequently authorized. You may contact us at firstname.lastname@example.org to request that we update or correct relevant EU Personal Data. Subject to applicable law, we retain EU Personal Data in a form that identifies or renders you identifiable only for as long as it serves a purpose that is compatible with the purposes for which the Personal Data was collected or subsequently authorized by you.
If we decide to process EU Personal Data for our purposes other than what is necessary to provide services to you or where we believe that your interests may override ours, persons in the EU will receive a notice detailing:
failing to provide the data; and
Such notices will be clear, conspicuous, and readily available to affected EU Persons. A notice will require an unambiguous, affirmative, opt-in consents to the particular use or processing of the EU Personal Data.
With respect to transfers of your Personal Data to third-party data processors, we will:
obligations under applicable law;
protection as is required by our contract or applicable law;
by the data processor.
You generally have the right to access your Personal Data. Accordingly, where appropriate, we provide you with reasonable access to the Personal Data we maintain about you. We also provide you a reasonable opportunity to correct, amend, or delete your information. For example, if you created a password-protected account within our site, you can access that account to review the information you provided.
We may limit these opportunities where the burden or expense of honoring a request would be disproportionate to the risks to your privacy, or where the rights of persons other than you would be violated. Other reasons for denying requests or limiting access include (i) interference with the execution or enforcement of the law or with private causes of action, including the prevention, investigation, or detection of offenses; (ii) breaching a legal or other professional privilege or obligation; (iii) prejudicing security investigations or grievance proceedings or in connection with succession planning and corporate re-organizations. Please contact email@example.com to request access to your Personal Data. If access cannot be granted, we will respond with a reason for denying your request.
5.4 GRIEVANCE PROCEDURE.
6 COOKIES AND WEB BEACONS
To enhance your online experience, we may use “cookies” or similar technologies. Cookies are text files placed in your computer’s browser to store your preferences. Cookies do not contain personally identifiable information; however, once you choose to furnish a site with personally identifiable information, this information may be linked to the data stored in the cookie.
We, our third-party service providers, advertisers or our partners may also use “web beacons” or clear gifs, or similar technologies, which are small pieces of code placed on a web page, to monitor the behavior and collect data about the visitors viewing a web page. For example, web beacons may be used to count the users who visit a web page or to deliver a cookie to the browser of a visitor viewing that page.
We have put in place reasonable physical, electronic, and managerial procedures to safeguard and help prevent unauthorized access, to maintain data security, and to use correctly the information we collect online. We follow industry-standard practices to protect the data we collect and maintain, including Transport Layer Security (TLS), Secure Sockets Layer (SSL) to encrypt information as it travels over the Internet. Payment processing is protected using Payment Card Industry Data Security Standard (PCI DSS). The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Website, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to our Website. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Website.
7.1 DATA BREACH
If a breach of Personal Data occurs, we will notify the relevant authorities within 72 hours, or as otherwise required by applicable law, subject to likelihood of risk to the Customer or Site Visitor. Affected Customers or Site Visitors will also be notified regarding the breach.
7.2 RECORD KEEPING
As required by applicable law, we will maintain relevant records of:
These records shall be provided to data protection authorities upon request.
7.3 AUDITING COMPLIANCE