BE, the Bath Experience (“BE”) values your privacy and is committed to protecting your personal information. BE is an online service that delivers high quality bath products to its members once a month (“Services”).
1. INFORMATION COLLECTION AND USE
The information we collect from you enables us to fulfill your requests for our monthly memberships and bath products, send you information or content we believe may be of interest to you; and provide you with changes and updates related to our Site and your Membership. We also use this information to continually improve our Site, personalize your experience, and provide the best customer service.
Information Collected Upon Registration: You may browse our Site without registering. However, if you would like to place an order you must log in and complete the account registration process. Whenever you create, register, or edit your BE account, you provide some basic personal information; your name, email address, and password. To purchase our products, you must provide us with your credit card, debit card, or other type of acceptable payment information along with your billing and shipping address information. While you are free to choose not to provide this information, without it, we cannot provide you with any of our products and Services, or complete your Membership. Please safeguard your password and all personal information to avoid the risk of your private information being used by others without your consent, and any potential liability for the unauthorized use of our Sites or your account.
Information We Collect Automatically: When you visit the Site and/or register for Membership, we may also collect certain additional information by automated means, such as cookies, web beacons, and other automated devices. A “cookie” is a text file that websites send to a visitor’s computer or other Internet-connected device to uniquely identify the visitor’s browser or to store information or settings in the browser. A “web beacon” (also known as an Internet tag, pixel tag or clear GIF) is used to transmit information back to a web server.
We and/or our third-party service partners may employ automated Canvas fingerprinting and other browser-fingerprinting techniques that extract and analyze information about your browser, operating system, and installed graphics hardware in conjunction with other user information (e.g. time-zone, language preference, etc.) to help verify your unique identity for fraud prevention purposes and to improve our Site and Services. By using our Site and Services, you consent to the use of these browser-fingerprinting technologies. See below for more information on Canvas fingerprinting and ways to detect or block it. We may also use third-party website analytics tools (such as Omniture, Google Analytics, and Facebook Insights) that collect information about visitor traffic on the Sites that help us continue to improve the Site, performance and user experiences.
The information we may collect by such automated means includes:
- Information about the devices our visitors use to access the Internet (such as the IP address and the device, browser, domain name and operating system type)
- URLs that refer visitors to our Sites
- Dates and times of visits to our Sites
- Information on actions taken on our Sites (such as page views and site navigation patterns)
- A general geographic location (such as country and city) from which a visitor accesses our Sites · Search terms that visitors use to reach our Sites and the webpage that led you to the Sites
Information about the devices our visitors
Most web browsers automatically accept cookies but, if you prefer, you can change your browser settings to prevent cookies, or notify you each time a cookie is sent. You can also learn more about cookies by visiting www.allaboutcookies.org, which includes additional useful information on cookies and how to block them using different browsers. By blocking or deleting cookies used on our Service, you may not be able to take full advantage of our Service.
- Local Storage Objects: We may use Flash Local Storage Objects (“Flash LSOs”) in order to store your Site preferences and to personalize your visit. Flash LSOs are different from browser cookies because of the amount and type of data stored. In addition, you cannot control, delete, or disable the acceptance of Flash LSOs through your browser. For more information on Flash LSOs, or to learn how to manage your settings for Flash cookies, go to the Adobe Flash Player Help Page, choose “Global Storage Settings Panel” and follow the instructions. To see the Flash LSOs currently on your computer, choose the “Website Storage Settings Panel” and follow the instructions to review and, if you choose, to delete any specific Flash LSO.
- Log File Information or Log Data: Our servers automatically record information ("Log Data") created by your use of the Site or our Services. Log Data may include information such as your IP address, browser type, operating system, the referring web page, pages visited, location, your mobile carrier, device and application IDs, search terms, and cookie information. We receive Log Data when you interact with our Services, for example, when you visit our websites, sign into our Services, interact with our email notifications, or visit a third-party website that includes a BE button or widget. BE uses Log Data to provide our Services and to measure, customize, and improve them. We periodically delete all Log Data or remove any common account identifiers, such as your username, full IP address, or email address, after 18 months, if not earlier.
- Clear Gifs Information: When you use the Service, we may employ clear gifs (a.k.a. Web Beacons), which are used to track the online usage patterns of our users anonymously. No personally identifiable information from your BE account is collected using these clear gifs. In addition, we may also use clear gifs in HTML-based emails sent to our users to track which emails are opened by recipients. The information is used to enable more accurate reporting, improve the effectiveness of our marketing, and make BE better for our users.
- Site Analytics: As noted, we may use automated devices and applications, such as Google Analytics, to evaluate usage of our Site. We also may use other analytic means to evaluate our Site. We use these tools to help us improve our Site, performance and user experiences.
- Links: BE may keep track of how you interact with links across our Services, including our email notifications, third-party services, and client applications, by redirecting clicks or through other means. We do this to help improve our Services, to provide more relevant advertising, and to be able to share aggregate click statistics such as how many times a particular link was clicked on.
In addition, some of these companies are members of the Network Advertising Initiative ("NAI"), which offers a single location to opt out of receiving tailored ads from member companies. To opt out of information collection by NAI member companies, or to obtain information about the technologies they use or their own privacy policies, please visit the NAI consumer opt out page. Also, through the Digital Advertising Alliance ("DAA"),
several media and marketing associations have developed an industry self-regulatory program to give consumers a better understanding of and greater control over ads that are customized based on their online behavior across different websites. To learn more and make choices about interest-based ads from participating third parties, please visit the DAA consumer opt out page. In the UK, the Internet Advertising Bureau ("IAB UK") has developed Good Practice Principles for Online Behavioural Targeting. More information and an opt-out page to manage online behavioral advertising preferences with IAB UK member companies are available at YourOnlineChoices.com. Please note that if you choose to opt out of having your information used to deliver advertisements tailored to your interests, you will continue to see advertisements on our Sites, but these advertisements may not be as relevant to you.
3. BE SUPPORTS DO NOT TRACK
What is “Do Not Track”? Do Not Track (DNT) is a privacy preference that any user can set as a preference in their preferred web browsers. The United States Federal Trade Commission has endorsed DNT and California enacted a bill (AB370) that lets the sites you visit know that you do not want them collecting certain kinds of information about you across services that you have either directly or indirectly interacted with while on the page. The DNT browser setting is now supported by recent versions of major browsers, including Firefox 5+, Internet Explorer 9+, Safari 5.1+, and Chrome.
4. INFORMATION SHARING AND DISCLOSURE
We do not disclose your private personal information except in the limited circumstances described here.
Your Consent: We may share or disclose your information at your direction, such as when you authorize a third-party web client or application as login credentials when you register for Membership.
5. HOW WE PROTECT YOUR INFORMATION
We are committed to protecting the information we receive from you. We employ reasonable technical and management practices to help protect the confidentiality, security and integrity of data stored on our system. While no computer system is completely secure, we believe the measures we have implemented reduce the likelihood of security problems to a level appropriate to the type of data involved. We have implemented commercially reasonable precautions, including, where appropriate, password protection, encryption, SSL, firewalls, and internal restrictions on who may access data to protect our Site and the information we collect from loss, misuse, unauthorized access, disclosure, alteration, and destruction. The Sites encrypt your credit card number, debit card number, or other payment and personal information using secure socket layer (SSL) technology to provide for the secure transmission of the information from your personal computer to our servers. In addition, only those employees and third parties who absolutely need access to your information in order to perform their duties are allowed such access. You should take steps to protect against unauthorized access to your password, phone, and computer by, among other things, signing off after using a shared computer, choosing a password that nobody else knows or can easily guess, and keeping your password private. Also, you should never share your login information with others. We are not responsible for any lost, stolen, or compromised passwords or for any activity on your account via unauthorized password activity. To change your Facebook password, you must go to the Facebook site and follow its procedures for changing your password.
6. MODIFYING YOUR PERSONAL INFORMATION
You may also cancel your BE account at any time. We will try to cancel your account as soon as possible, but it may take up to thirty (30) business days for our systems to completely implement the cancellation so you may continue to receive some correspondence from us during that time.
7. YOUR CALIFORNIA PRIVACY RIGHTS
California Civil Code Section 1798.83 permits California residents to request from companies conducting business in California a list of third parties to which the company has disclosed personally identifiable information during the preceding year for direct marketing purposes. Consistent with that section, California residents may request a list of third parties to which we have disclosed personally identifiable information about you for direct marketing purposes. You may make one request per calendar year. In your request, please attest to the fact that you are a California resident and provide a current California address for your response. You may request this information in writing by contacting us at email@example.com.
Please allow up to thirty (30) days for a response.
8. OUR POLICY TOWARDS CHILDREN
Our Services are not directed to persons under 13. If you become aware that your child has provided us with personal information without your consent, please contact us at firstname.lastname@example.org We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we take steps to remove such information and terminate the child's account. You can find additional resources for parents and teens at www.connectsafely.org.
9. CHANGES TO THIS POLICY