Privacy Policy

This policy was created in June 2023.

We are Pre-Rn Checkoff, an e-commerce business running on Shopify. Subsequent references to ‘we’ or ‘us’ or ‘ours’ refers to Pre-Rn Checkoff. References to ‘you’ refers to our clients. We are cognizant of the fact that personal data will be entrusted to us by clients, partners, and all other related parties, hence we made this document to serve as a statement for how we handle personal data/personal information entrusted to us and as a guideline of how authorized personnel are to handle personal data/personal information. We value data entrusted with the highest regard and we do this by complying with the General Data Protection Regulation [GDPR] and the CPRA. 

It is advised to read this policy before going ahead to make use of our e-commerce store. Going ahead to make a purchase implies that you have read and agree to this policy. 

PERSONAL DATA WE COLLECT

Personal data are data which are related to an identified or identifiable natural person. Also, for this document, we will refer to data identifiable to an organization as personal data. We collect personal data to provide contractual services to our clients. We may collect.

  1. Client’s name
  2. Client’s E-mail address
  3. Client’s Phone numbers
  4. Client’s Address
  5. Marketing communication preferences
  6. Geographical location
  7. Client’s Purchase history
  8. Some client’s billing details
  9. IP address

We may have valid reasons to collect personal data aside from those listed above, but we will always ensure there is sufficient consent gotten before we collect any personal data.

WHAT DO WE DO WITH PERSONAL DATA?

  1. We use information from our clients to provide our services to them e.g. 
  1. The client’s name is needed to address the clients, tag their goods and organize shipping.
  2. The client’s e-mail address is used to gain access to the store and marketing communications.
  3. The client’s phone number is for marketing communications.
  4. The client’s address is for shipping purposes.
  5. Marketing communication preferences are taken to handle marketing better.
  6. Location is taken to serve the clients more efficiently.
  7. The client’s purchase history is used to serve the clients more efficiently.
  8. Some billing details and card details may be taken to be used by the payment platform to process payments.
  9. IP addresses are taken to better safe guide the website.

We may need to process data from time to time beyond those listed above. We will expressly seek consent in those cases.

HOW DO WE COLLECT PERSONAL DATA?

We collect personal data primarily on the website. We could collect data when we:

  1. Full names are taken from the signup forms on the website.
  2. Phone numbers are taken from the signup forms on the website.
  3. The location of the client is gotten from the IP address of the client.
  4. Client’s addresses are taken when placing orders.
  5. E-mail addresses are taken from the signup forms on the website.
  6. IP addresses and locations are taken from the website's technical data.
  7. Billing and card details are taken when clients try to make payments.
  8. The client’s purchase history can be directly gotten from the client’s profile on the website.

We may collect data in other ways or at other points which we will specify from time to time.

THE LEGAL BASIS FOR PROCESSING PERSONAL DATA

The legal basis we use for processing personal data is to fulfil contracts we have with our data subjects. On some other occasions, we will process your data with your consent. When your consent is necessary, we will expressly seek for it. We could also process data when it is required under legal obligations. That is, we may process data to comply with legal or regulatory obligations e.g. When we are seeking licenses, filing for taxes, purchasing insurance, complying with laws, preventing, or investigating crimes etc. 

DATA MINIMIZATION

In every case, we take the minimum necessary personal data needed to fulfil contracts, act within consent, or fulfil legal obligations. In cases where there are no strict regulatory or professional needs for specific personal data, we accept the use of pseudonyms.

YOUR RIGHTS

As data subjects, you are guaranteed some rights in the processing of your personal data. 

  1. You can always request the deletion of your personal data. This is however subject to restrictions of our regulatory obligations and legitimate interest. To request the deletion of your personal data, you could send an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  2. You can request a copy of the personal data we hold. You can do this by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  3. You can request a transfer of your personal data we hold to a third party provided there are no potential legal complications that could arise from doing so, and the receiving party can receive data from us in a format that we can provide the data in. You can do this by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  4. You can ask us to update or correct your personal data with us at any point in time. In some cases, there may be legal requirements to affect the updates. You can do this by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  5. You could ask that we restrict the processing of all or some of your personal data in some certain context. This is however subject to restrictions of our regulatory obligations and legitimate interest. You can do this by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.

DATA BREACHES

We handle personal data with the highest regard within our organization. We use the global highest standards when managing personal data within our organization. In some very rare or near-impossible cases, there might be data breaches and data may find it’s way into the wrong hands. While we don’t wish for such circumstances and we will fight against such cases, the process in the event of such will be to inform the law enforcement agencies. We would equally inform all the concerned data subjects.

DATA RETENTION

We may retain some of the personal data of our clients. This is done to comply with legal requirements, keep records and also maintain a purchase history to make further purchases easier. However, seven (7) years is the maximum time we keep personal data.

DATA TRANSFER

For client’s in the European Economic Area (EEA), we specify to our storage partners to store their personal data within their regions. However, in rare cases where their personal data is taken out of the region, we take measures to ensure the GDPR is complied with in those cases.

For client’s out of the European Economic Area (EEA), decent attempts are made to store data within the client’s region, especially in regions where we get significant engagements from or in cases where the regional regulation or the party involves specifies that.

CALIFORNIA RESIDENTS

For this section, we refer to personal information as information which is related to an identified or identifiable natural person or organization.

We honour the rights of California residents we service regarding their personal information under the CCPA and the CPRA. As a California resident within our systems, you have the following rights:

  1. The right to know what personal information of you we hold, you can exercise this right by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  2. The right to request deletion of your personal information. You can exercise this right by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  3. The right to opt out of the sale of your personal information. You can exercise this right by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  4. The right to request a report of your personal information. You can exercise this right by sending an e-mail to our data protection officer at support@pre-rncheckoff.com. This is your RIGHT.
  5. You can equally send an e-mail to our data protection officer at support@pre-rncheckoff.com to request other rights provided to California residents under the CCPA or the CPRA that haven’t been mentioned above. They will be dealt with on a case-by-case basis. 

PERSONNEL RESPONSIBILITY

We use the least principles and relevant access control techniques to make sure only authorized and relevant personnel within our system have access to personal data entrusted to us. We hold authorized persons responsible for breaches that occur due to their fault. We impose stringent punishments in those cases.

THIRD-PARTY DISCLOSURE

In some certain cases, we work with third parties and make disclosures to them, or they may have access to personal data entrusted to us. We always make sure the involved third parties are compliant specifically with the GDPR. Some of the cases we make disclosures to third parties are;

  1. Legal obligations
  2. Third-Party partners like storage partners or delivery partners.

and in other cases where we will seek consent from the data subjects.

UPDATES

We make routine updates to this policy document. When we do, we try as much as possible to get updated versions to all concerned parties, particularly data subjects. In some cases, updates may invalidate some clauses in older versions.

 

If you have an enquiry or concern about our privacy, you can contact our data protection officer by sending an e-mail to support@pre-rncheckoff.com.