We (Wise Woman Atelier) take the protection of user data ("users" or "you") of our website and/or our mobile app very seriously and are committed to protecting the information users provide to us in connection with the use of our website and/or our mobile app (together: "digital assets"). Furthermore, we are committed to protecting and using your data in accordance with applicable law.

This privacy policy explains our practices regarding the collection, use, and disclosure of your data through the use of our digital assets (the "services") when you access the services via your devices.

Please read the privacy policy carefully and ensure that you fully understand our practices regarding your data before using our services. If you have read and fully understood this policy and do not agree with our practices, you must discontinue the use of our digital assets and services. By using our services, you acknowledge the terms of this privacy policy. Continued use of the services constitutes your consent to this privacy policy and any changes thereto.

In this privacy policy, you will learn:

How we collect data
What data we collect
Why we collect this data
To whom we disclose the data
Where the data is stored
How long the data is retained
How we protect the data
How we deal with minors
Updates or changes to the privacy policy

What data do we collect?

Below is an overview of the data we may collect:

Unidentified and unidentifiable information that you provide during the registration process or that is collected through the use of our services ("non-personal data"). Non-personal data does not allow conclusions to be drawn about the person who collected it. Non-personal data we collect mainly consists of technical and aggregated usage information.

Individually identifiable information, i.e., all information that can identify you or could reasonably be used to identify you ("personal data"). Personal data that we collect through our services may include information requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses, and more. When we combine personal data with non-personal data, they are treated by us as personal data as long as they remain in combination.

How do we collect data?

The main methods we use to collect data are listed below:

We collect data when using our services. So when you visit our digital assets and use services, we may collect, record, and store usage, sessions, and related information.

We collect data that you provide to us yourself, for example, when you contact us directly via a communication channel (e.g., an email with a comment or feedback).

We may collect data from third-party sources, as described below.

We collect data that you provide to us when you sign up for our services via a third party such as Facebook or Google.

Why do we collect this data?

We may use your data for the following purposes:

to provide and operate our services;

to develop, customize, and improve our services;

to respond to your feedback, inquiries, and requests and offer assistance;

to analyze request and usage patterns;

for other internal, statistical, and research purposes;

to enhance our data security and fraud prevention capabilities;

to investigate breaches and enforce our terms and policies, as well as to comply with applicable law, regulations, or governmental orders;

to provide you with updates, news, promotional materials, and other information related to our services. With promotional emails, you can decide whether you still want to receive them. If not, simply click on the unsubscribe link in these emails.

To whom do we disclose this data?

We may disclose your data to our service providers to operate our services (e.g., data storage via third-party hosting services, provision of technical support, etc.).

We may also disclose your data under the following circumstances: (i) to investigate, uncover, prevent, or take action against unlawful activities or other misconduct; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property, or personal safety, as well as the safety of our users or the public; (iv) in the event of a change in control with us or one of our affiliates (through merger, acquisition, or purchase (substantially) of all assets, etc.); (v) to capture, retain, and/or manage your data through authorized third-party providers (e.g., cloud service providers), as far as reasonably necessary for business purposes; (vi) to collaborate with third parties in improving your user experience. To avoid misunderstandings, we would like to point out that we may transmit or disclose non-personal data to third parties at our discretion or otherwise use it.

Cookies and similar technologies

When you visit or access our services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, as well as other technologies and analysis services ("tracking technologies"). These tracking technologies may allow third parties to automatically collect your data to improve the navigation experience on our digital assets, optimize their performance, ensure a tailored user experience, and for security and fraud prevention purposes.

To learn more, please read our Cookie Policy.

Without your consent, we will not disclose your email address or other personal data to advertising companies or advertising networks.

Where do we store the data?

Non-personal data

Please note that our companies, as well as our trusted partners and service providers, are located worldwide. For the purposes explained in this privacy policy, we store and process all non-personal data we collect in different jurisdictions.

How long will the data be retained?

Please note that we will retain the data collected for as long as necessary to provide our services, to comply with our legal and contractual obligations to you, to resolve disputes, and to enforce our agreements.

We may correct, supplement, or delete inaccurate or incomplete data at our discretion at any time.

How do we protect the data?

The hosting service for our digital assets provides us with the online platform through which we can offer you our services. Your data may be stored on secure servers behind a firewall by the data storage, databases, and general applications of our hosting provider. It provides secure HTTPS access to most areas of its services.

Payments/eCom

All payment methods offered by us and our hosting provider for our digital assets comply with the PCI-DSS (Payment Card Industry Data Security Standard) of the PCI Security Standards Council. This is a collaboration between brands such as Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of credit card data (including physical, electronic, and procedural measures) by our shop and service providers.

Despite the measures and efforts taken by us and our hosting provider, we cannot and will not guarantee absolute protection and security of the data you upload, post, or otherwise provide to us or others.

For this reason, we ask you to set secure passwords and refrain from providing us or others with confidential information that, in your opinion, could cause significant or sustained harm if disclosed. As email and instant messaging are not considered secure forms of communication, we also ask you not to disclose any confidential information via these communication channels.

We only use your personal data for the purposes set out in the privacy policy and only if we are convinced that:

the use of your personal data is necessary to fulfill or conclude a contract (e.g., to provide you with the services themselves or customer support or technical support);

the use of your personal data is necessary to comply with applicable legal or regulatory obligations, or

the use of your personal data is necessary to support our legitimate business interests (subject to the condition that this is done at all times in a manner that

is proportionate and respects your privacy rights).

As an EU resident, you can:

request confirmation as to whether personal data concerning you is being processed, and access your stored personal data as well as certain additional information;

request the receipt of personal data provided by you in a structured, commonly used, and machine-readable format;

request the correction of your personal data stored by us;

request the deletion of your personal data;

object to the processing of your personal data by us;

request the restriction of the processing of your personal data, or

submit a complaint to a supervisory authority.

Please note, however, that these rights are not unlimited and may be subject to our own legitimate interests and regulatory requirements. If you have any general questions about the personal data we collect and how it is used, please contact us as indicated below.

In providing the services, we may transfer data across borders to affiliates or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using the services, you consent to the transfer of your data outside the EEA.

If you are resident in the EEA, your personal data will only be transferred to locations outside the EEA if we are convinced that there is an appropriate or comparable level of protection for personal data. We will take appropriate steps to ensure that we have appropriate contractual agreements with our third parties to ensure that appropriate security measures are taken so as to minimize the risk of unauthorized use, alteration, deletion, loss, or theft of your personal data and that these third parties act in accordance with applicable laws at all times.

Rights under the California Consumer Protection Act

If you use the services as a resident of California, you may be entitled under the California Consumer Protection Act ("CCPA") to access and delete your data.

To exercise your right of access and deletion of your data, please read below on how to contact us.

Updates or changes to the privacy policy

We reserve the right to revise this privacy policy at our discretion from time to time, and the version published on the website is always current (see "Last Updated"). We ask you to regularly check this privacy policy for changes. In the event of significant changes, we will publish a notice to this effect on our website. If you continue to use the services after being notified of changes to our website, this constitutes your acknowledgment and consent to the changes in the privacy policy and your agreement to be bound by the terms of these changes.
Contact

If you have any general questions about the services or the data we collect about you and how it is used, please contact us at:


Valérie Grüninger

vmaschneider@gmail.com

DISCLAIMER

The information contained herein does not constitute legal advice, and you should not rely solely on it. Specific requirements regarding legal terms and policies may vary from state to state and/or from legal system to legal system. As stated in our Terms of Use, you are responsible for ensuring that your services are permissible under the applicable law and for complying with them.

To ensure that you fully comply with your legal obligations, we strongly recommend that you seek professional advice to better understand the specific requirements that apply to you.