PRIVACY POLICY

Please carefully review this Privacy Policy in its entirety before accessing or using this Site.

DEFINITIONS

This Site, along with any associated websites or sub-sites ("Site"), as well as its Content, is owned and operated by Soca Co (referred to herein as the “Company,” “we,” “us,” or “our”).

The term “you” pertains to the user and/or viewer of this Site.

Content encompasses all written, visual, video, and/or audio information or material available on the Site, encompassing but not limited to emails from the Company, written content, blog posts, messages, graphics, memes, photos, images, forms, documents, and templates.

Personal information includes, but is not confined to, your name; mailing and email address; telephone number; social media account details; billing and payment information; and communications directed to us.

Non-personal information may encompass, but is not restricted to, your Internet Protocol (“IP”) address; visit duration, date, and time; traffic data; referring website; browsing and navigation patterns; and log files.

INTRODUCTION

As proprietors of this Site, we recognise the significance of safeguarding your privacy. Our commitment is to utilize your personal and non-personal information responsibly and reasonably. The objective of this Privacy Policy is to apprise you of how we collect, use, safeguard, and/or distribute your personal and non-personal information.

We pledge not to collect, utilize, or disclose your personal and non-personal information for any purpose beyond that delineated in this Privacy Policy. Furthermore, we undertake not to amass more information than is necessary to achieve the specified purposes, and will not retain said information beyond what is essential to fulfill those purposes.

This Privacy Policy is applicable to the personal and non-personal information we gather in relation to:

- Our website;

- Products and/or services;

- Social media platforms;

- Business operations;

- Marketing and business development endeavors;

- Customer service; and

- Communications.

Please carefully peruse this Privacy Policy in its entirety. By utilizing this Site, you voluntarily consent and acknowledge being bound by this Privacy Policy. You confirm having read, comprehended, and consented to the terms delineated herein. Should you dissent from this Privacy Policy and its terms, kindly refrain from accessing or utilizing our Site or Content and exit this platform.

PLEASE ENSURE YOU REVIEW THIS PRIVACY POLICY IN ITS ENTIRETY BEFORE ACCESSING OR USING THIS SITE.

WHAT PERSONAL INFORMATION WE COLLECT & USE

We gather your information through two methods:

Personal Information Provided by You:

Personal information is collected when you voluntarily provide it to us. This includes:

Interactions with Us: You may provide personal information when opting in for free resources, subscribing to newsletters, purchasing products/services, registering for events/webinars, contacting us, or engaging with promotions.
Communication: Personal information may be collected when communicating with us via email, phone, mail, chat, social media, or our contact form.
Payment Information: Information provided for purchasing products/services is collected to fulfill orders, manage billing, and resolve disputes. We utilize third-party processors for payment transactions.
Social Media Paid Advertising: Engagement with our advertisements on platforms like Facebook or Instagram may result in data collection to tailor future promotional content. This data includes information related to your interactions with our ads, demographic details, and, in some cases, the location from which you access our advertisements. Our primary goal in utilizing this data is to deliver tailored and engaging content that aligns with your interests and preferences.
Use of our Site: While browsing our Site, providing personal information is voluntary but implies consent for us to collect and process it.

Non-Personal Information Collected Using Data Collection Technology:

We automatically collect non-personal information about your Site activity using technologies like cookies and pixels. This information helps maintain and enhance our Site, improve user experience, and inform marketing efforts.

HOW WE USE YOUR PERSONAL AND NON-PERSONAL INFORMATION

We utilize your personal and non-personal information for various purposes, including:

- Site operation and business operations

- Understanding Site navigation and user metrics

- Research and analytics for Site enhancements

- Tailoring content and marketing efforts

- Fulfilling contractual obligations

- Enforcing Terms of Use and Conditions

- Processing purchases, requests, and downloads

- Complying with legal requirements and protecting rights

- Providing customer service and communication

- Personalizing your Site experience

- Developing new products/services

- Managing our relationship with you and our business operations

By providing your personal information, you may be automatically subscribed to our email list. However, you can unsubscribe at any time using the provided option in our emails. We maintain an opt-out list for compliance purposes.

Overall, your personal information helps us manage our relationship with you and improve our business operations.

WHO CAN ACCESS YOUR DATA

Your personal and non-personal information will be collected, used, shared, and processed in line with this Privacy Policy. Within our Company, your information may be shared and processed internally by our personnel to manage and operate our products, services, or Site as part of our normal business operations.

We will not sell, trade, share, or otherwise disclose your personal information to unrelated third parties without your prior written consent or another valid legal basis.

Occasionally, we may provide links to third-party products, services, materials, or websites on our Site. We hold no responsibility or liability for the content or privacy policies of these third parties, who may or may not have their own privacy policies. If we discover that our third-party providers are misusing or improperly disclosing your personal or non-personal information, we will take commercially reasonable steps to halt or rectify such actions.

While we handle the majority of data collection ourselves, we do engage certain third-party service providers solely to assist us in delivering our products or services to you. These providers, which we use, may have access to your personal information:

- An email delivery service

- An online webinar/course provider

- A cloud service provider

- A gateway/payment provider

- A hosting service provider

- A website analytics provider

Additionally, we may disclose aggregated, non-personal information received from third-party providers without restriction.

Your rights may vary depending on your location; please refer to the sections below regarding "Territories" for further details.

INFORMATION ON ANALYTICS

To better understand your interactions with our Site, we utilize Google Analytics to analyze its usage and traffic. Google Analytics employs cookies (for more details, see the "Cookies Policy" section below) to gather information regarding your use of our Site. This data helps us generate reports on user engagement and traffic patterns, enabling us to enhance your browsing experience. Further details on how Google utilizes data obtained from its partners, including us, can be found at: https://www.google.com/policies/privacy/.

Additionally, we may employ Google Ads and/or Facebook Ads to assess performance and gain insights into how you and others engage with our advertisements. We may also use remarketing and/or retargeting ads, facilitated by pixels, cookies, or similar automatic data collection technology, to promote our products, services, or Site through third-party platforms like Instagram, Facebook, or Google, based on your previous interactions with our Site.

Moreover, the Company reserves the right to employ tracking pixels to gather data on Site visitors from social media platforms such as Facebook. This aids in tracking ad conversions, understanding user behavior, monitoring web traffic, optimizing ad performance, and constructing targeted audiences for remarketing and future marketing initiatives, similar to cookie-based methods.

COOKIES USAGE POLICY

Cookies are text files containing identifiers (strings of letters and numbers) sent by a web server and stored by your browser. They are categorized as "persistent" or "session" cookies. Persistent cookies are retained by the browser until manually deleted or until their expiry date, whereas session cookies expire once the browser session ends. While cookies typically do not contain information for personal identification, the personal data we hold about you may be linked to information stored or retrieved from cookies.

We employ cookies for the following purposes:

Authentication: To recognise you when you visit and navigate our Site.

Active Status: To determine if you are logged into our Site and/or to retain items in your cart.

Security: To safeguard your account and our Site against fraudulent use.

Advertising: To tailor advertisements to your preferences.

Analysis: To analyze the use and performance of our Site and services.

Most browsers allow you to refuse or delete cookies. Instructions for managing cookies can be found via the following links:

Google Chrome: https://support.google.com/chrome/answer/95647?hl=en

Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences

Opera: http://www.opera.com/help/tutorials/security/cookies/

Microsoft Internet Explorer: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies

Safari: https://support.apple.com/guide/deployment/manage-safari-cookies-depf7d5714d4/web

Microsoft Edge: https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy

Please note that blocking or disabling certain cookies may affect the functionality of our Site, potentially limiting access to certain features.

DATA RETENTION & PROTECTION

We retain your personal information only for as long as necessary to maintain our connection with you. This duration varies depending on your preferences, as there is no fixed timeframe. Typically, we will continue sending email messages and newsletters until you opt out of these communications, either by direct request or via our email subscription.

For payment and sensitive credit/debit card details, we employ Secure Socket Layer (SSL) encryption, a security protocol that safeguards this information during transmission. This data is encrypted to ensure confidentiality, and we utilize third-party service providers rather than storing or processing it internally.

We implement commercially reasonable safeguards to protect your personal information, but it is impossible to prevent all misuse and unauthorized access. In the event of a data breach, we will promptly notify you within 10 business days, or within 72 hours if you reside in the United Kingdom or the European Union, following our awareness of the breach.

You may have additional rights based on your location; please refer to the relevant sections below for details on "Territories".

PASSWORD USAGE & SAFEGUARDING

To access certain features or content on our Site, or to utilize specific products or services, you may need to create an account with a username and/or password. It is your sole responsibility to maintain the confidentiality of your account login credentials, including your username and password. Moreover, any activities conducted through your account, accessed using your login credentials, are your sole responsibility.

We cannot be held liable for any unauthorized use of your account or security information, or for breaches of your account resulting from unauthorized use of your login credentials. It is strongly advised that you log out of your account after each session to prevent unauthorized access. You are prohibited from sharing your account or login credentials with anyone other than yourself, to prevent unauthorized access to our Site or Content via your account.

YOU ARE IN CHARGE

Should you wish to review the personal information we hold about you, update or correct any inaccuracies, or request the deletion of your personal information, please contact us using the email provided below. However, please note that we reserve the right to refuse requests we believe to be false, incorrect, or fraudulent in nature.

Additionally, if you wish to unsubscribe from our email list, simply click on the unsubscribe button located at the bottom of our emails and follow the provided instructions. Please be aware that unsubscribing from one list may not remove you from others. If you encounter any issues unsubscribing, promptly contact us for assistance at the email address provided below.

JURISDICTION

Our computer systems, Site, and hosted servers are located in the United States of America ("U.S."). We may also use third-party processors, including payment providers, situated in the U.S. Consequently, your personal and non-personal information may be transferred internationally to and stored on servers in the U.S., with processing undertaken by us in the U.S.

By visiting our Site, you expressly consent to the collection and processing of your personal and non-personal information in the U.S., the international transfer, processing, and storage of your information from your jurisdiction to the U.S., and acceptance that U.S. laws will govern such activities.

Depending on your location, you may have additional rights as outlined below:

GENERAL DATA PROTECTION REGULATION ("GDPR")

If you reside in the European Union ("EU") or the European Economic Area ("EEA"), your personal information may be subject to the GDPR.

We will process and collect your personal information as follows:

Consent: You will not be automatically subscribed to our email list to receive messages and/or newsletters unless you provide affirmative consent. You can also opt out of data collection technologies by activating the "Do Not Track" setting in your browser, declining cookies, and unsubscribing from our emails.

Retention: We will not retain your personal information longer than necessary. You have the right to access, update, or delete your personal information from our records.

Data breaches: We will notify you of any data breaches within 72 hours.

Legitimate interests: We will only process your personal information for legitimate business interests, such as entering into contracts with us, communicating with you, and providing our products/services.

If you have any concerns, questions, or requests regarding how we process personal data, please contact us via the email address provided. If we are unable to adequately address your concerns, you can escalate them to the data protection Supervisory Authority in your country, in accordance with Article 77 GDPR.

UNITED KINGDOM’S GDPR (“UK GDPR”)

If you reside in the UK, your personal information may be subject to the UK GDPR and the Data Protection Act of 2018 (“DPA 2018”).

The DPA 2018 outlines the framework for data protection of personal information for UK residents and supersedes the Data Protection Act of 1998, effective May 25, 2018. It was further amended on January 1, 2021, to reflect the UK’s status outside the EU. In addition to the UK GDPR, the DPA 2018 provides exemptions, extends data protection to national security and defense, and defines the powers/functions of the Information Commissioner.

The UK GDPR, enacted on January 1, 2021, is based on the EU/EEA GDPR, which was applicable to the UK until December 31, 2020, with some modifications.

If your personal information was collected before January 1, 2021 (referred to as the “legacy date”), it will continue to be governed by the EU/EEA GDPR as of December 31, 2020 (referred to as the “frozen GDPR”). At present, there are no significant differences between the frozen GDPR and the UK GDPR. Therefore, please refer to the section above titled “GENERAL DATA PROTECTION REGULATION (“GDPR”)” for additional rights applicable before January 1, 2021.

We will only process and/or collect your personal information as follows:

Consent: You will not be automatically enrolled in our email list to receive messages and/or newsletters unless you affirmatively consent. You can also opt out of any data collection technology by activating the “Do Not Track” setting in your browser and/or declining cookies and unsubscribing from our emails.

Retention: We will not retain your personal information longer than necessary. You have the right to access, update, or delete your personal information from our records by contacting us.

Data breaches: We will notify you of any data breaches within 72 hours.

Legitimate interests: We will only process your personal information for legitimate business interests, such as entering into a contract with us, communicating with you, providing our products and/or services, and your interaction with our Site.

If you have concerns, questions, or requests regarding how we process personal data, please contact us using the email address provided below. If we are unable to adequately address your concerns, you can escalate them to the data protection Commissioner in your country.

BRAZIL’S LGPD (“BRAZIL’S GDPR”)

If you reside in Brazil, your personal information may fall under Brazil’s LGPD (Lei Geral de Proteção de Dados Pessoais - often referred to as “Brazil’s GDPR”). Brazil’s LGPD was enacted into law and became effective on September 18, 2020. The laws are drafted based on the EU/EEA and UK’s GDPR.

We will only process and/or collect your personal information as follows:

Retention: We will not keep your personal information longer than necessary. You have the right to access, update, or delete your personal information from our records by contacting us.

Data breaches: We will notify you of any data breaches within a reasonable time.

CALIFORNIA RESIDENTS

If you are a resident of California, your personal information may be subject to additional rights under the California Online Privacy Protection Act (CalOPPA”) and the California Consumer Privacy Act (“CCPA”).

CalOPPA: The “Do Not Track” (“DNT”) setting can be activated on certain browsers to block behavioral tracking from third-party services, such as Google Adwords. Your browser may allow you to automatically transmit a DNT signal to websites you visit. Please note, there is no industry consensus on what constitutes a DNT. Currently, we do not change our practices if we receive a DNT signal from your browser or a visitor’s browser. For more information on DNT, visit: http://www.allaboutdnt.com.

CCPA: You have the right to request information about your personal information collected over the last 12 months from the date of your formal request. Upon receipt, we will disclose:

- The categories of personal information we collected about you;

- The sources of the personal information collected about you;

- Our business and commercial purposes for collecting that information;

- The categories of third parties with whom we shared your personal information;

- The categories of personal information disclosed for a business purpose in the preceding 12 months; and

- The specific pieces of personal information collected about you.

You also have the right to request the deletion of this same information, subject to certain exceptions. Please contact us at the email address provided below to make such a request.

VIRGINIA RESIDENTS

If you reside in Virginia, you may have additional rights concerning your personal information under the Virginia Consumer Data Protection Act (VCDPA).

Virginia residents have the right to request access, correction, deletion, and opt-out of the sale of their personal data. You can exercise these rights by contacting us at the email address below with your request or any queries you may have. We will respond within 45 days.

We will not sell your personal data without your consent. Your personal data will only be shared with third parties necessary to provide our services to you. We will take all reasonable steps to protect the privacy and security of your personal data.

CAN-SPAM ACT OF 2003 COMPLIANCE

In compliance with the CAN-SPAM Act of 2003, all unsolicited commercial emails from our company will clearly state the sender's identity, a legitimate physical address of the company, a relevant subject line, and that the email is an advertisement or marketing solicitation. Additionally, they will include a visible and operable unsubscribe mechanism below the message, which will be honored within 10 business days.

CHANGES TO THE PRIVACY POLICY

We reserve the right, at our sole discretion, to change, modify, revise, amend, or otherwise alter this Privacy Policy, our Site, and/or its Content at any time without notice to you. If any such changes or revisions occur, the most recent version will be posted on the Site and will become effective immediately. By using the Site or Content after the date posted above, you are deemed to have consented to the revised/updated Privacy Policy.

If any material changes occur to our Privacy Policy, we will contact you via email or through a prominent message on our Site.

CONTACTING US:

If you have any questions about this Privacy Policy, your rights, the practices of this Site, or would like to update/remove your personal information, please contact us as follows:

By emailing us directly at: hello@socahairsupply.com

Payment Methods