Privacy Policy

Last updated: 06/30/22

This Privacy Policy describes how Nut Free Policy (“we” or “us”) collects, uses, and shares your personal information when you use our website nutfreepantry.com (the “Site”). 

Topics:

  • Personal information we collect
  • How we use your personal information
  • How we share your personal information
  • How we store your data
  • Email marketing
  • Behavioral advertising
  • Your data protection rights
  • Third party websites
  • Changes
  • Contact Us

Personal information we collect 


When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically collected information as “Device Information”. 

We collect Device Information using the following technologies:

  • “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org. 
  • “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps. 
  • “Web beacons”, “tags”, and “pixels” are electronic files used to record information about how you browse the Site. 

We use Device Information for:

  • Functionality: To recognize you on our website and recognize your previously selected preferences, including your preferred language and your location. 
  • Advertising: To collect information about your visit, the content you viewed, the links you followed, and information about your web browser, device, and IP address. We sometimes share limited aspects of this data with third parties for advertising purposes.
  • Affiliates: To collect information about your visit, the content you viewed, the links you followed, and information about your web browser, device, and IP address. We sometimes share limited aspects of this data with third parties for affiliate purposes.

You can set your browser not to accept cookies, and the website above tells you how to remove cookies from your browser. Some of our website features may not function if you disable cookies. Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser. 

We also collect data you provide to us directly. We refer to the data you provide as “Provided Information.” We collect and process data you provide when you:

  • Register online or place an order for any of our products or services
  • Voluntarily complete a customer survey or provide feedback on any of our message boards or via email
  • Post media to our site or via email
  • Sign up for an email newsletter

The Provided Information we collect may include:

  • Personal identification information (name, email address, phone number, etc.)
  • Billing information (billing address, shipping address, payment information, including credit card numbers, etc.)
  • Embedded data: If you upload images or other media with embedded location data (EXIF GPS) to the Site, visitors to the site can download and extract any location data from media on the Site.

When we talk about “Personal Information” in this Privacy Policy, we are talking both about Device Information and Provided Information. 

How we use your Personal Information


We use the Provided Information that we collect generally to fulfill any orders placed through the Site (including processing your payment information, delivering products, and providing you with invoices and/or order confirmations). Additionally, we use Provided Information to: 

  • Communicate with you; 
  • Screen our orders for potential risk or fraud; 
  • Improve the overall customer experience; and 
  • When in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services. 

We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns). 

How we share your Personal Information 

We share your Personal Information with third parties to help us use your Personal Information, as described above. If applicable: For example, we use Google Analytics to help us understand how our visitors use the Site – you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.

The types of third parties with whom we might share elements of your Personal Information include:

  • Payment processors engaged by us to securely store and handle payments information, such as credit or debit card information
  • Providers of email management and distribution tools
  • Providers of security and fraud prevention tools and services, 
  • Providers of data aggregation and analytics software services that allow us to effectively monitor and optimize our site
  • Affiliates

We may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights. 

How we store your data

We use commercially reasonable security measures to protect against unauthorized access to or unauthorized alteration, disclosure or destruction of information stored on our servers. Of course, no computer network or data transmission on the internet can be guaranteed to be 100% secure and so you submit your information at your own risk.

We will maintain your Personal Information for our records unless and until you ask us to delete this information. 

Email Marketing

If you make a purchase on this Site and/or opt in to receive emails, you agree to receive email communications from this site, including but not limited to newsletters, site updates, promotions, and other announcements and correspondence.  We are not responsible for the receipt of any such emails. You are responsible for ensuring that our email address(es) are not blocked or forwarded to your spam folder.

You have the right at any time to stop us from contacting you for marketing purposes. If you opt to unsubscribe from receiving emails, you understand that you may no longer receive information or updates from this Site, including promotions.

Behavioral advertising 

As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.

You can opt out of targeted advertising by using the links below: 

Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at http://optout.aboutads.info/

International data

Our Site is hosted by servers located in the USA Therefore, if You reside outside the USA, some of Your data will be transferred internationally to and stored on those servers. In addition, We may use third-party processors (including payment processors) and subcontractors located in the USA. We use all reasonable methods to protect the safety of Your data during transfer, including hosting Our website on reputable servers and engaging reputable third-party processors. By using this site and providing Us with information, You consent to this transfer, processing, and storage of Your information in the USA. Note that the privacy laws in the USA may not be as strict as those in other countries. Please be aware that:

  • We may transfer data that We collect to locations outside of Our headquarters for processing or storing, and the data may be processed by Our staff or by third-party processors. For example, We may engage third parties to fulfill orders. By submitting Your personal data, You agree to this transfer, storing, and processing. 
  • We take all reasonable steps to make sure Your data is treated securely and in conformity with this Privacy Policy.
  • Data that is provided to Us is stored on secure servers. Payment information and other sensitive data will be encrypted to ensure its safety.
  • The transmission of data via the internet is never completely secure, and We cannot guarantee the security of data that is sent to Us electronically. Your transmission of data to Us is at Your own risk.
  • Where data that You have transmitted to Us is password protected, You are responsible for keeping the password confidential. You are exclusively responsible for any breaches of Your data that results from Your own disclosure of or failure to protect Your password.
  • Customer data outside the U.S. may be transferred to Our website servers and/or third-party processors or subcontractors that are located in the U.S. We use Hardage + Hardage, Shopify, and GoDaddy which actively participate(s) in the U.S. Privacy Shield framework. The E.U. has determined that companies participating in the U.S. Privacy Shield have adequate safeguards in place to protect customer data.

Third Party Websites

Our privacy policy applies only to our website. We are not responsible for the data collection, privacy practices or policies of any third-party site to which we may provide a link or that may link to our site. We encourage you to read the privacy statement and terms of use of other sites.

Data Retention

We retain personal data as long as it is needed to to conduct Our legitimate business purposes or to comply with Our legal obligations, or until You ask Us to delete Your data. For example, We will retain certain personal information indefinitely for the purposes of maintaining Your account, unless and until You delete Your account. Data that We gather for a specific and particular purpose, such as assisting law enforcement or analyzing trends, will be kept for no longer than is necessary for that particular purpose. Data that is no longer needed by Us for any of the purposes listed above will be permanently deleted.  

We will honor Your request to delete Your data, as described more fully below, unless We are required by law to retain access to the data. However, note that We cannot control the retention policies of third parties. If You wish to have any third parties, including those to whom We’ve transmitted Your data, delete that data, You will need to contact those third parties directly. You may request from Us a list of all third parties to whom We have transmitted Your data.

We may retain usage data (that is, data that is gathered by Our company or third-party analytics companies for the purpose of analyzing the use of Our website) as needed for internal analysis purposes. This type of data is usually retained for a shorter period of time than personal data, unless the data is necessary to improve the security or functionality of Our website or offerings, or We are legally obligated to retain the data for a longer period of time.

Security of Your Information

We take all reasonable steps to protect Your personal data and keep Your information secure. We use recognized online secure payment systems and implement generally accepted standards of security to protect against personal data loss or misuse. However, no security measure is foolproof, and no method of data transmission can be guaranteed against interception or misuse. We cannot guarantee complete security of any information You transmit to Us.

By consent to this Privacy Policy, You acknowledge that Your personal data may be available, via the internet, around the world. We cannot prevent the use or misuse of Your data by other parties.

We will notify You promptly of any known breach of Our security systems or Your data which might expose You to serious risk.

Children

This website or mobile app is not designed for use by children under age 16, and We do not knowingly solicit personal data from anyone under age 16. If You are under age 16, do not access or use Our website or related products or services. If You become aware that We have collected data of anyone under the age of 16, please contact Us so that We may delete that data.

Sensitive Data

We request that You do not submit any sensitive data to Us, via public postings, email correspondence with Us, or any other method, including social security number, health data, genetic data, or information related to Your ethnic origin, religious beliefs, or criminal history. If You do send Us this information, then by doing so You are consenting to Our use, storage, and processing of this information in accordance with this privacy policy.

California Privacy Rights

The State of California has established its own unique regulations that apply to California residents.

As of its effective date of January 1, 2020, We are also compliant with the California Consumer Privacy Act Of 2018, Cal. Civ. Code §§ 1798.100 Et Seq. (CCPA).

Any California resident may request, free of charge, the personal information We have collected or stored about themselves or about a member of their household. For security purposes, We reserve the right to ask for verification of Your identity and proof of your California residency at the time of your request. 

Any California resident has a right to request the personal data We have collected, or request deletion of the personal data We have collected, including but not limited to: 

  • Any personally identifying information, such as a real name, alias(es), mailing or resident address, IP address, email address, account name, biometrics, or any other data that could uniquely identify a California resident; 
  • Commercial information, including products or services purchased, obtained, or considered, search history, interactions with Our website, or any other purchasing or browsing history of Our site and/or offer(s); 
  • Site comments made publicly or privately; 
  • Geolocation data; 
  • Professional or employment-related information; and
  • Education information.

We reserve the right to collect any of the above data on California residents and their households. 

We do not plan on selling your data. Regardless, any California resident can email us at info@nutfreepantry.com to explicitly request to opt-out of any such sale of data.

California residents also have the option to request a full deletion of their account and any data We have collected and associated with them.  

We agree to comply with any data request or deletion made pursuant to the CCPA in a reasonable timeframe, during normal business hours and excluding holidays or Our pre-scheduled time off.

Changes 

We may update this privacy policy from time to time to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons. 

Complaints

Please contact us if you have any complaints about how we use your Personal Information so we can resolve the issue whenever possible. Residents of the European Union also have the right to lodge a complaint with your local data protection regulator, such as the Information Commissioner’s Office in the UK.

Contact us 

For more information about our privacy practices, if you have questions, or if you would like to exercise your data protection rights, please do not hesitate to Contact Us.