Privacy Policy for the website www.moonstra.commanaged by MOONSTRA.
Last updated: 21/02/2022
ARTICLE 19 – PERSONAL INFORMATION COLLECTED
When the Customer makes a purchase on the Website, as part of the buying and selling process, MOONSTRA collects the personal information that the Customer provides, such as their name, mailing address, and email address.
When the Customer browses the Website, MOONSTRA also automatically receives the Customer's computer's Internet Protocol (IP) address, which allows it to obtain more details about the browser and operating system used.
With the Customer's permission, MOONSTRA may send them emails about the Website, new products, and other updates.
ARTICLE 20 - CONSENT
How does MOONSTRA obtain the Customer's consent?
When the Customer provides MOONSTRA with their personal information to complete a transaction, verify their credit card, place an order, arrange a delivery, or return a purchase, MOONSTRA presumes that the Customer consents to MOONSTRA collecting their information and using it for that purpose only.
If MOONSTRA asks the Customer to provide their personal information for another reason, for marketing purposes for example, MOONSTRA will directly ask the Customer for their explicit consent or give them the opportunity to refuse.
How can the Customer withdraw their consent?
If, after giving their consent, the Customer changes their mind and no longer consents to MOONSTRA contacting them, collecting their information, or disclosing it, the Customer may notify MOONSTRA by contacting them at contact@moonstra.com or by mail at: MOONSTRA, 336 chemin Barthélémy Florent, bâtiment D1, Toulon, 83200, France.
ARTICLE 21 – DISCLOSURE
MOONSTRA may disclose the Customer's personal information if it is legally required to do so or if the Customer violates the Website's General Terms and Conditions of Sale and Use.
ARTICLE 22 – SHOPIFY
Data Storage:
The Website is hosted on Shopify Inc., which provides the online e-commerce platform and allows MOONSTRA to sell its services and products.
Customer data is stored in Shopify's data storage systems and databases, and in the general Shopify application. This data is kept on a secure server protected by a firewall.
Payment:
If the Customer makes their purchase through a direct payment gateway, in this case Shopify will store their credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Information related to the purchase transaction is kept as long as necessary to complete the Customer's order. Once the order is completed, the information related to the purchase transaction is deleted.
All direct payment gateways comply with PCI-DSS, which is managed by the PCI Security Standards Council, and is the result of a joint effort of companies such as Visa, MasterCard, American Express, and Discover.
The PCI-DSS requirements help ensure the secure processing of credit card data by the MOONSTRA Website and its service providers.
For more information, the Customer is invited to consult Shopify's Terms of Use or Privacy Policy.
ARTICLE 23 – SERVICES PROVIDED BY THIRD PARTIES
In general, the third-party providers that MOONSTRA uses will only collect, use, and disclose the Customer's information to the extent necessary to perform the services they provide.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information MOONSTRA is required to provide to them for purchase transactions.
With respect to these providers, MOONSTRA recommends that the Customer carefully read their privacy policies so that they can understand how they will handle their personal information.
It should not be forgotten that certain providers may be located in or have facilities located in a jurisdiction different from that of MOONSTRA and the Customer. Therefore, if the Customer decides to proceed with a transaction that requires the services of a third-party provider, their information may then be governed by the laws of the jurisdiction in which that provider is located or those of the jurisdiction in which its facilities are located.
Once the Customer leaves the MOONSTRA store Website or is redirected to a third-party website or application, they are no longer governed by this Privacy Policy or by the MOONSTRA Website's General Terms and Conditions of Sale and Use.
Links:
The Customer may be prompted to leave the MOONSTRA Website by clicking on certain links present on it. MOONSTRA assumes no responsibility for the privacy practices exercised by these other sites and recommends that the Customer carefully read their privacy policies.
ARTICLE 24 – SECURITY
To protect the Customer's personal data, MOONSTRA takes reasonable precautions and follows industry best practices to ensure that it is not lost, misused, accessed, disclosed, altered, or inappropriately destroyed.
If the Customer provides MOONSTRA with their credit card information, it will be encrypted using SSL security protocol and kept with AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, MOONSTRA follows all PCI-DSS requirements and implements additional standards generally recognized by the industry.
Cookies:
A list of cookies that MOONSTRA uses is presented below. They are listed here so that the Customer has the option to choose whether or not to allow them:
_session_id, unique session identifier, allows Shopify to store information relating to the Customer's session (referrer, landing page, etc.).
_shopify_visit, no data retained, persists for 30 minutes from the last visit. Used by the MOONSTRA Website provider's internal statistics tracking system to record the number of visits.
_shopify_uniq, no data retained, expires at midnight (relative to the visitor's location) the next day. Counts the number of visits to a store by a single customer.
_cart, unique identifier, persists for 2 weeks, stores information relating to the Customer's shopping cart.
_secure_session_id, unique session identifier
storefront_digest, unique identifier, indefinite if the store has a password, it is used to know if the current visitor has access.
ARTICLE 25 – AGE OF CONSENT
By using this site, the Customer declares that they are at least the age of majority in their state or province of residence, and that they give their consent to MOONSTRA to allow any minor dependent on them to use this Website.
ARTICLE 26 – CHANGES TO THIS PRIVACY POLICY
MOONSTRA reserves the right to modify this privacy policy at any time. The Customer is therefore invited to consult it frequently. Changes and clarifications will take effect immediately upon their publication on the Website. If MOONSTRA makes changes to the content of this policy, it will notify the Customer that it has been updated, so that they know what information is collected, how it is used, and under what circumstances it is disclosed, if any.
If the Website is acquired by or merges with another company, the Customer's information may be transferred to the new owners so that MOONSTRA can continue to sell products to them.
Questions and contact information:
If the Customer wishes to: access, correct, modify, or delete any personal information that MOONSTRA has about them, file a complaint, or simply wants more information, the Customer is invited to contact the Privacy Standards Officer at contact@moonstra.comor by mail at: MOONSTRA, attention of the Privacy Standards Officer, 336 chemin Barthélémy Florent, bâtiment D1, Toulon, 83200, France.
Choosing a selection results in a full page refresh.
