Flipsi Privacy Policy

Privacy Policy

Last updated: May 02, 2024

This Privacy Policy describes Our policies and procedures on the collection, use, and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Who We Are

Flipsi Puzzles Pty Ltd, operating under the web addresses www.flipsipuzzles.com, www.flipsipuzzles.com.au, www.flipsipuzzles.eu, and www.flipsipuzzles.uk, is an online retailer specializing in the sale of jigsaw puzzles and related accessories. Our mission is to provide high-quality, engaging puzzles that offer both challenge and enjoyment to our customers globally. As the operator of this service, we are the data controller responsible for processing your personal data in accordance with this Privacy Policy. Our headquarters are located at PO Box 271, Katoomba, NSW 2780, Australia. We are committed to protecting and respecting your privacy and handling your personal data transparently, in accordance with applicable laws.

Interpretation and Definitions Interpretation The words of which the initial letter is capitalised have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions For the purposes of this Privacy Policy:

  • Account means a unique account created for You to access our Service or parts of our Service.
  • Business, for the purpose of the CCPA (California Consumer Privacy Act), refers to the Company as the legal entity that collects Consumers' personal information and determines the purposes and means of the processing of Consumers' personal information or on behalf of which such information is collected and that alone, or jointly with others, determines the purposes and means of the processing of consumers' personal information, that does business in the State of California.
  • Company (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to Flipsi Puzzles Pty Ltd, PO Box 271 Katoomba, 2780, NSW Australia. For the purpose of the GDPR, the Company is the Data Controller.
  • Consumer, for the purpose of the CCPA (California Consumer Privacy Act), means a natural person who is a California resident. A resident, as defined in the law, includes (1) every individual who is in the USA for other than a temporary or transitory purpose, and (2) every individual who is domiciled in the USA who is outside the USA for a temporary or transitory purpose.

 

Cookies and Similar Tracking Technologies

We use cookies and similar tracking technologies to monitor and analyze the performance of our website and to offer you a personalized browsing experience. Here’s how we use these technologies:

  • Essential Cookies: These are necessary for our website to function properly. They enable you to navigate our site and use its features. Because they are essential for the operation of the website, they cannot be turned off.
  • Performance Cookies: These cookies help us understand how visitors interact with our website by providing information about the areas visited, the time spent on the website, and any issues encountered, such as error messages. This helps us improve the performance of our website.
  • Advertising Cookies: These cookies are used to deliver advertisements more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign.
  •  

Managing Cookies: While essential cookies cannot be turned off, you have the option to disable performance and advertising cookies. You can do this by adjusting your browser settings to refuse certain types of cookies. Keep in mind, however, that blocking some types of cookies may impact your experience on our website and the services we are able to offer.

For more detailed information on how you can manage and delete cookies, please visit our Cookie Policy or the cookies section of our Privacy Policy.

  • Country refers to: New South Wales, Australia
  • Data Controller, for the purposes of the GDPR (General Data Protection Regulation), refers to the Company as the legal person which alone or jointly with others determines the purposes and means of the processing of Personal Data.
  • Device means any device that can access the Service such as a computer, a cellphone, or a digital tablet.
  • Do Not Track (DNT) is a concept that has been promoted by US regulatory authorities, in particular the U.S. Federal Trade Commission (FTC), for the Internet industry to develop and implement a mechanism for allowing internet users to control the tracking of their online activities across websites.
  • Facebook Fan Page is a public profile named Flipsi Puzzles specifically created by the Company on the Facebook social network, accessible from https://www.facebook.com/flipsipuzzles

 

Personal Information

For the purpose of the CCPA (California Consumer Privacy Act), 'Personal Information' is defined as any information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device. This includes but is not limited to:

  • A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver's license number, passport number, or other similar identifiers.
  • Any categories of personal information described in subdivision (e) of Section 1798.80: name, signature, social security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information.
  • Characteristics of protected classifications under California or federal law.
  • Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
  • Biometric information.
  • Internet or other similar network activity, including, but not limited to, browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement.
  • Geolocation data.
  • Audio, electronic, visual, thermal, olfactory, or similar information.
  • Professional or employment-related information.
  • Education information, defined as information that is not publicly available personally identifiable information as defined in the Family Educational Rights and Privacy Act (FERPA).
  • Inferences drawn from any of the information identified above to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

This definition does not include:

  • Publicly available information from government records.
  • Deidentified or aggregated consumer information.
  • Information excluded from the CCPA's scope, like certain health or medical information and other categories of information protected by different laws.

 

Consent

Under the General Data Protection Regulation (GDPR), consent is a lawful basis for processing personal data. It must be freely given, specific, informed, and unambiguous. Here is how we handle consent:

  • Freely Given: Consent is given on a voluntary basis. You have the right to withdraw your consent at any time without detriment. Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.
  • Specific: We ask for consent for specific processing activities and inform you about the purpose of each activity. If we intend to use your personal data for a purpose other than the stated purposes, we will inform you and request additional consent where necessary.
  • Informed: We provide detailed information about the data we collect, how it will be used, how long it will be retained, and who it will be shared with. This information is provided at the time consent is requested.
  • Unambiguous: We ensure that the consent request is presented in a manner that is clearly distinguishable from other matters and provided in an intelligible and easily accessible form. The process for giving consent involves a clear affirmative action, such as ticking a box when visiting our website or choosing specific settings for cookies.

 

How Consent is Collected:

  • Website Interactions: Consent may be collected through our website when you tick a box to accept cookies, fill out forms for newsletters, or request services that require personal information.
  • User Registrations: During the registration process for new users, consent is obtained explicitly through an opt-in mechanism.
  • Marketing Communications: For marketing communications, we collect your explicit consent before sending you newsletters and promotional offers.

 

Managing Your Consent: You can manage your consent at any time by accessing your user account settings or contacting us directly. If you wish to withdraw your consent, you may also use the contact details provided in our Privacy Policy to send us your request.

 

Use of Your Personal Data

The Company may use Personal Data for the following purposes:

  • To Provide and Maintain Our Service: We use your data to operate and maintain the functionality of our Service, including monitoring the usage of our Service.
  • To Manage Your Account: Your personal data facilitates your access to various functionalities of the Service available to registered users.
  • For the Performance of a Contract: We process your personal data to fulfill and manage your orders, payments, and any other agreements directly with us.
  • To Contact You: To communicate with you, either directly or through one of our partners, for customer service, to provide you with updates and other information related to the service, and for marketing and promotional purposes.
  • To Provide News and Offers: We may use your information to send news, special offers, and general information about other goods, services, and events which we offer similar to those you have already purchased or enquired about unless you have opted not to receive such information.
  • To Manage User Requests: We attend and manage your requests to us.
  • To Deliver Targeted Advertising: We use your information to develop and display content and advertising tailored to your interests on our Service and other sites.
  • For Business Transfers: We may use your information to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal data held by us about our service users is among the assets transferred.
  • For other purposes: Such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns, and to evaluate and improve our Service, products, marketing, and your experience.

 

Sharing of Your Personal Data:

We may share your personal information in the following situations:

  • With Service Providers: To monitor and analyze the use of our Service, provide advertising, process payments, and contact you. Service Providers like Klaviyo help us manage and send emails. Klaviyo’s privacy policy can be viewed at https://www.klaviyo.com/legal/privacy-policy.
  • For Business Transfers: We may share or transfer your personal information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
  • With Affiliates: We may share your information with our affiliates, in which case we will require those affiliates to honor this Privacy Policy.
  • With Business Partners: To offer you certain products, services, or promotions.
  • With other users: When you share personal information or otherwise interact in public areas with other users, such information may be viewed by all users and may be publicly distributed outside.
  • With Your Consent: We may disclose your personal information for any other purpose with your consent.
  • Email Marketing: We use your personal data to contact you with newsletters, marketing, or promotional materials that may be of interest to you. You have the right to opt-out of receiving any or all of these communications from us by following the unsubscribe link or instructions provided in any email we send or by contacting us. For managing our email campaigns, we use service providers such as Klaviyo. You can view Klaviyo's privacy policy at https://www.klaviyo.com/legal/privacy-policy.
  • Payments: We provide paid products and services within our Service. For these transactions, we use third-party services for payment processing. We do not store or collect your payment card details. That information is directly provided to our third-party payment processors whose use of your personal information is governed by their Privacy Policies. These processors adhere to the standards set by PCI-DSS, a joint effort of brands like Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of payment information. Our payment processors include:

When you use our service to pay for a product or service via bank transfer, we may ask you to provide information to facilitate this transaction and to verify your identity.

 

Analytics

We use third-party Service providers to monitor and analyze the use of our Service.

  • Google Analytics: This web analytics service by Google tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity. For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy.

Advertising

To help support and maintain our Service, we may use third-party service providers to show advertisements.

  • Google AdSense & DoubleClick Cookie: Google, as a third-party vendor, uses cookies to serve ads on our Service. Google's use of the DoubleClick cookie enables it and its partners to serve ads to our users based on their visit to our sites and other sites on the Internet. You may opt out of the use of the DoubleClick Cookie for interest-based advertising by visiting the Google Ads Settings web page: http://www.google.com/ads/preferences/.

 

Behavioral Remarketing

The Company uses remarketing services to advertise to you after you have accessed or visited our Service. This allows us to present you with ads on third-party websites or apps that are more relevant to your interests.

We and our third-party vendors use cookies and non-cookie technologies to recognize your device and understand how you use our Service. This helps us improve our service and personalize advertising based on your activities. These third-party vendors collect, store, use, process, and transfer information about your activity on our Service in accordance with their privacy policies to enable us to:

  • Measure and analyze traffic and browsing activity on our Service.
  • Show advertisements for our products and/or services to you on third-party websites or apps.
  • Measure and analyze the performance of our advertising campaigns.

Some third-party vendors may use technologies that are not affected by browser settings that block cookies. Your browser may not permit you to block such technologies. You can use the following third-party tools to decline the collection and use of information for the purpose of serving you interest-based advertising:

You may opt-out of all personalized advertising by enabling privacy features on your mobile device such as Limit Ad Tracking (iOS) and Opt Out of Ads Personalization (Android). For more detailed instructions, refer to your mobile device's help system.

We may share information, such as hashed email addresses (if available) or other online identifiers collected on our Service with these third-party vendors. This allows them to recognize and deliver ads across devices and browsers.

 

Third-party vendors used for remarketing:

 

Retention of Your Personal Data

The Company will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. This means that this information may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those from your jurisdiction.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. The Company will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

 

GDPR Privacy

Legal Basis for Processing Personal Data Under GDPR We process Personal Data under the following conditions:

  • Consent: You have given your consent for processing Personal Data for one or more specific purposes.
  • Performance of a Contract: Provision of Personal Data is necessary for the performance of an agreement with you and/or for any pre-contractual obligations thereof.
  • Legal Obligations: Processing Personal Data is necessary for compliance with a legal obligation to which the Company is subject.
  • Vital Interests: Processing Personal Data is necessary to protect your vital interests or of another natural person.
  • Public Interests: Processing Personal Data is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Company.
  • Legitimate Interests: Processing Personal Data is necessary for the purposes of the legitimate interests pursued by the Company.

 

Your Rights Under the GDPR The Company respects the confidentiality of your Personal Data and allows you to exercise your rights. These include the right to:

  • Access: You can request access to your Personal Data, which allows you to receive a copy of the Personal Data we hold about you.
  • Correction: You have the right to have any incomplete or inaccurate information we hold about you corrected.
  • Erasure: You can ask us to delete or remove Personal Data where there is no good reason for us continuing to process it.
  • Objections: You may object to the processing of your Personal Data where we are relying on a legitimate interest and there is something about your particular situation which makes you want to object to processing on this ground.
  • Restriction of Processing: You have the right to request that we suspend the processing of your Personal Data.
  • Data Portability: You have the right to request the transfer of your Personal Data to another party.

If you wish to exercise any of these rights, please contact us directly at [your contact information].

Facebook Fan Page Data Control The Company is the Data Controller of the Personal Data collected while using our Service, including data processed through our Facebook Fan Page managed in cooperation with Facebook. We use Facebook Insights to obtain anonymized statistical data about our users. For more detailed practices of Facebook, refer to the Facebook Privacy Policy: https://www.facebook.com/privacy/explanation.

CCPA Privacy

This section provides details specifically for California residents, supplementing the information in our Privacy Policy, in accordance with the California Consumer Privacy Act (CCPA).

Categories of Personal Information Collected We collect information that identifies, relates to, or could reasonably be linked directly or indirectly with a particular consumer or device. The categories include identifiers like your name and email address; personal records like financial data; commercial information; internet activity; geolocation data; and inferences drawn from other personal information.

Use of Personal Information for Business Purposes We use or disclose personal information for business purposes such as providing our Service, responding to user inquiries, processing payments, or for marketing purposes.

Sale of Personal Information We do not sell personal information of our users as defined by the CCPA.

Your Rights Under the CCPA You have specific rights regarding accessing, deleting, and opting out of the sale of your Personal Information. If you wish to exercise these rights, please contact us via [your contact methods].

Non-Discrimination We will not discriminate against you for exercising any of your CCPA rights.

 

Data Protection Officer (DPO) Our Data Protection Officer ensures the secure and lawful handling of your personal data. If you have any concerns or questions about how your data is being processed, please contact us at admin@flipsipuzzles.com

Data Breach Notification Should there be any breach of your personal data, we will notify you and the appropriate regulatory body within 72 hours, provided that the breach is likely to result in a risk to your rights and freedoms.

International Data Transfer

To provide our Service, your personal data may be transferred to, and processed in, countries outside of the European Economic Area (EEA). These countries may not have laws providing the same level of data protection as those within the EEA. However, we will take all necessary measures to protect your personal information in accordance with this privacy notice and applicable law. For more information on the specific mechanisms used to transfer your data, please contact admin@flipsipuzzles.com.

Rights Specificity and Clarity

You have specific rights regarding the access to, correction of, and deletion of your personal data under GDPR and CCPA. To exercise these rights, please submit a request to admin@flipsipuzzles.com. We may require you to provide sufficient information to verify your identity before we process your request, ensuring the security and confidentiality of your data. Once verified, we will respond to your request within [state the time frame, e.g., 30 days], in accordance with applicable data protection laws.

California Privacy Rights - Specific Disclosure

Under the California Consumer Privacy Act (CCPA), we are required to disclose the categories of personal information we have collected, sold, or disclosed for a business purpose over the past 12 months. The categories collected include:

  • Identifiers such as real name and email address
  • Commercial information including products purchased
  • Internet activity such as browsing history

We have [not sold any personal information / sold the following categories of personal information: Category A, Category B] in the last 12 months. We have disclosed personal information for business purposes to the following categories of third parties:

Klaviyo

Google

Facebook

James & James Fulfilment

Fulfilrite Fulfilment

Hotjar

 

Detailed Explanation of Opt-Out Rights

If we decide to sell personal information, you have the right to opt-out of the sale of your personal data. To exercise this right, you may contact us at admin@flipsipuzzles.com. We will provide a straightforward and accessible method allowing you to exercise this right easily, as detailed on our website.

 

Annual Review and Update Reminder

This Privacy Policy is reviewed and updated annually to ensure it accurately reflects our practices and any changes in legal requirements. We encourage you to review this policy periodically to stay informed about how we are protecting your information. Any changes will be posted on this page and, if the changes are significant, we will provide a more prominent notice.

 

Contact Us

If you have any questions or concerns about this Privacy Policy or the handling of your personal data, or if you wish to exercise your privacy rights, please do not hesitate to contact us through any of the following methods:

  • Email: You can email us at admin@flipsipuzzles.com for direct communication regarding privacy concerns or any other inquiries.
  • Contact Page: Visit our contact page for more information or to submit an inquiry: https://flipsipuzzles.com.au/pages/contact

We are committed to resolving any concerns regarding your privacy and will do our best to respond to your inquiries as quickly as possible.