Privacy Policy

SEWTOOTPATTERNS.COM Privacy Policy

INFORMATION I COLLECT

When ordering or registering on our site, as appropriate, you may be asked to enter your name, email address or other details in order for me to fulfill your order.

To fulfill your PHYSICAL order, you must provide me with certain information (which you provide to me during the checkout process), such as your name, email address, postal address, payment information, and the details of the product that you’re ordering.

To fulfill your DIGITAL order, you will be asked to provide me with certain information (which you provide to me during the checkout process), such as your name, details of the product that you’re ordering, and payment information.

WHY I NEED YOUR INFORMATION AND HOW I USE IT

I rely on a number of legal bases to collect, use, and share your information, including:

  • as needed to provide my services, such as when I use your information to fulfill your order, to settle disputes, or to provide customer support;
  • when you have provided your affirmative consent, which you may revoke at any time, such as by signing up for my emailing list;
  • if necessary to comply with a legal obligation or court order or in connection with a legal claim, such as retaining information about your purchases if required by tax law; and
  • as necessary for the purpose of my legitimate interests, if those legitimate interests are not overridden by your rights or interests, such as 1) providing and improving my services. I use your information to provide the services you requested and in my legitimate interest to improve my services
  • your email address may be used by me to send you a Facebook group invitation, ONLY when directly requested by you. I will not send requests without explicit permission

INFORMATION SHARING AND DISCLOSURE

Information about my customers is important to my business. I share your personal information for very limited reasons and in limited circumstances, as follows

  • Service providers. I engage certain trusted third parties to perform functions and provide services to my shop, such as delivery companies. I will share your personal information with these third parties, but only to the extent necessary to perform these services.
  • Business transfers. If I sell or merge my business, I may disclose your information as part of that transaction, only to the extent permitted by law.
  • Compliance with laws. I may collect, use, retain, and share your information if I have a good faith belief that it is reasonably necessary to: (a) respond to legal process or to government requests; (b) enforce my agreements, terms and policies; (c) prevent, investigate, and address fraud and other illegal activity, security, or technical issues; or (d) protect the rights, property, and safety of my customers, or others.

 

STEPS I TAKE TO PROTECT YOUR INFORMATION

I do not use vulnerability scanning and/or scanning to PCI standards.

I use regular Malware Scanning.

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

I implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information.

Your payment information is never visible to me, only to the third-party processor of your choosing [Stripe or Paypal].

INFORMATION SHARED WITH PAYMENT PROCESSORS

Information shared with payment provider [Paypal or Stripe] to process payments includes:

  • Name
  • Email
  • Address
  • Phone
  • City/State/Zip
  • Unique Payment Identifier
  • Payment Provider Identifier

All transactions are processed through a reputable gateway provider and are not stored or processed on our servers.  To learn more about their privacy policies, choose one of the payment processor links below:

https://www.paypal.com/uk/webapps/mpp/ua/privacy-prev

https://stripe.co/gb/privacy

DATA RETENTION

I retain your personal information only for as long as necessary to provide you with my services and as described in my Privacy Policy. However, I may also be required to retain this information to comply with my legal and regulatory obligations, to resolve disputes, and to enforce my agreements. I generally keep your data for the following time period: 5 years.

For tax purposes, I need to retain data for the current and prior fiscal years.

For digital downloads accounts, I retain the information on my server indefinitely (unless otherwise stated, or revoked by you) in order to give you continual access to your digital downloads.

TRANSFERS OF PERSONAL INFORMATION OUTSIDE OF EU

I may store and process your information through third-party hosting services in the US and other jurisdictions. As a result, I may transfer your personal information to a jurisdiction with different data protection and government surveillance laws than your jurisdiction. If I am deemed to transfer information about you outside of the EU, I rely on Privacy Shield as the legal basis for the transfer, as Google Cloud is Privacy Shield certified.

YOUR RIGHTS

If you reside in certain territories, including the EU, you have a number of rights in relation to your personal information. While some of these rights apply generally, certain rights apply only in certain limited cases. I describe these rights below:

  • Access. You may have the right to access and receive a copy of the personal information I hold about you by contacting me using the contact information below.
  • Change, restrict, delete. You may also have rights to change, restrict my use of, or delete your personal information. Absent exceptional circumstances (like where I am required to store data for legal reasons) I will generally delete your personal information upon request.
  • Object. You can object to (i) my processing of some of your information based on my legitimate interests and (ii) receiving marketing messages from me after providing your express consent to receive them. In such cases, I will delete your personal information unless I have compelling and legitimate grounds to continue using that information or if it is needed for legal reasons.
  • Complain. If you reside in the EU and wish to raise a concern about my use of your information (and without prejudice to any other rights you may have), you have the right to do so with your local data protection authority.

 

 

 

RIGHT TO ACCESS REQUESTS

Right to Access requests will be handled in a timely manner.  Before a request can be processed, the identity of the requester must be confirmed in order to protect personal privacy.

 

RIGHT TO ERASURE REQUESTS

Right to Erasure requests will be handled in a timely manner.  Only an authorized person can request erasure.  As mentioned in Data Retention, by law I am legally requried to maintain certain information for tax reporting purposes.  The process to purge your personal data is email based. At your request,  I will send an email confirming the erasure request, and once confirmed, will erase your data from the database.

 

HOW TO CONTACT ME

For purposes of EU data protection law, I, Devan Lewis, am the data controller of your personal information. If you have any questions or concerns, you may contact me at sewtoot@live.com. Alternately, you may mail me at:

Devan Lewis, 30 Barley Dr., Duncannon, PA 17020  United States

 

DO WE USE “COOKIES”?

 

Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the site’s or service provider’s systems to recognize your browser and capture and remember certain information. For instance, we use cookies to help us remember and process the items in your shopping cart. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.
WE USE COOKIES TO
 Help remember and process the items in the shopping cart.
 Understand and save user’s preferences for future visits.
 Keep track of advertisements.
 Compile aggregate data about site traffic and site interactions  in order to offer better site experiences and tools in the future. We use trusted third-party service (Google Analytics) to track this information on our behalf.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since each browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.

IF USERS DISABLE COOKIES IN YOUR BROWSER
If you turn cookies off, Some of the features that make your site experience more efficient may not function properly.Some of the features that make your site experience more efficient and may not function properly.

 

THIRD-PARTY DISCLOSURE
We do not sell, rent, trade, or otherwise transfer to outside parties your Personally Identifiable Information.

 

THIRD-PARTY LINKS
Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

 

GOOGLE

Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en

We use Google AdSense Advertising on our website.
Google, as a third-party vendor, uses cookies to serve ads on our site. Google’s use of the DART cookie enables it to serve ads to our users based on previous visits to our site and other sites on the Internet. Users may opt-out of the use of the DART cookie by visiting the Google Ad and Content Network privacy policy.
We have implemented the following:
 Remarketing with Google AdSense
 Demographics and Interests Reporting
We, along with third-party vendors such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.
Opting out:
Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt Out page or by using the Google Analytics Opt Out Browser add on.


AMAZON.COM

Sew Toot, LLC is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.com

 

California Online Privacy Protection Act
CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared. – See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf
According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
Once this privacy policy is created, we will add a link to it on our home page or as a minimum, on the first significant page after entering our website.
Our Privacy Policy link includes the word ‘Privacy’ and can easily be found on the page specified above.
You will be notified of any Privacy Policy changes:
 On our Privacy Policy Page
Can change your personal information:
 By emailing us
 By logging in to your account
How does our site handle Do Not Track signals?
We honor Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third-party behavioral tracking?
It’s also important to note that we allow third-party behavioral tracking

 

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under the age of 13 years old.

 

FAIR INFORMATION PRACTICES

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify you via email
 Within 7 business days
We will notify the users via in-site notification
 Within 1 business day
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.

 

CAN SPAM Act

The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address in order to:
 Send information, respond to inquiries, and/or other requests or questions
 Process orders and to send information and updates pertaining to orders.
 Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.
To be in accordance with CANSPAM, we agree to the following:
 Not use false or misleading subjects or email addresses.
 Identify the message as an advertisement in some reasonable way.
 Include the physical address of our business or site headquarters.
 Monitor third-party email marketing services for compliance, if one is used.
 Honor opt-out/unsubscribe requests quickly.
 Allow users to unsubscribe by using the link at the bottom of each email.

If at any time you would like to unsubscribe from receiving future emails, you can email us at
sewtoot@live.com and we will promptly remove you from ALL correspondence.

 

Contacting Us

If there are any questions regarding this privacy policy, you may contact us using the information below.

Devan Lewis
30 Barley Drive
Duncannon, Pennsylvania 17020
United States of America
sewtoot@live.com
Last Edited on 2018-05-17