Privacy Policy

This Privacy Policy describes how Noreste.com (the “Site” or “we”) collects, uses, and discloses your Personal Information when you visit or make a purchase from the Site.

COLLECTING PERSONAL INFORMATION
When you visit the Site, we collect certain information about your device, your interaction with the Site, and information necessary to process your purchases. We may also collect additional information if you contact us for customer support. In this Privacy Policy, we refer to any information that can uniquely identify an individual (including the information below) as “Personal Information”. See the list below for more information about what Personal Information we collect and why.

Device Information:
– Examples of Personal Information collected: version of web browser, IP address, time zone, cookie information, what sites or products you view, search terms, and how you interact with the Site.
– Purpose of collection: to load the Site accurately for you, and to perform analytics on Site usage to optimize our Site.
– Source of collection: Collected automatically when you access our Site using cookies, log files, web beacons, tags, or pixels.
– Disclosure for a business purpose: shared with our processor WordPress.

Order information:
– Examples of Personal Information collected: name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number.
– Purpose of collection: to provide products or services to you to fulfill our contract, to process your payment information, arrange for shipping, and provide you with invoices and/or order confirmations, communicate with you, screen our orders for potential risk or fraud, and when in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
– Source of collection: collected from you.
– Disclosure for a business purpose: shared with our processor WordPress.

SHARING PERSONAL INFORMATION
We share your Personal Information with service providers to help us provide our services and fulfill our contracts with you, as described above.

For example:
– We use WordPress to power our online store. You can read more about how WordPress uses your Personal Information here: https://www.shopify.com/legal/privacy.
– We may share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

LAWFUL BIAS
Pursuant to the General Data Protection Regulation (“GDPR”), if you are a resident of the European Economic Area (“EEA”), we process your personal information under the following lawful bases:
– Your consent;
– The performance of the contract between you and the Site;
– Compliance with our legal obligations;
– To protect your vital interests;
– To perform a task carried out in the public interest;
– For our legitimate interests, which do not override your fundamental rights and freedoms.

RETENTION
When you place an order through the Site, we will retain your Personal Information for our records unless and until you ask us to erase this information. For more information on your right of erasure, please see the ‘Your rights’ section below.

YOUR RIGHTS

GDPR
If you are a resident of the EEA, you have the right to access the Personal Information we hold about you, to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us through the contact information below.

Your Personal Information will be initially processed in Ireland and then will be transferred outside of Europe for storage and further processing, including to Canada and the United States. For more information on how data transfers comply with the GDPR, see Shopify’s GDPR Whitepaper: https://help.shopify.com/en/manual/your-account/privacy/GDPR.