Privacy + Cookie Policy

SUMMARY

We are committed to protecting and respecting the privacy of all visitors and users of www.novaandkoa.com (the Website).  We take your safety and privacy very seriously. We are a fully PCI and GDPR compliant merchant.  We also adhere to the principles laid out in the Data Protection Act 1998.  Detailed information on your data as an Account Holder, Guest, or Visitor can be found at the bottom of this document.  You must always opt in to hear from us. If do you chose to create an account with us, or sign up to our newsletter, or any online promotions or competitions, you can be safe in the knowledge that your personal information will not be sold on or given to third parties and is fully protected. 

If you do not opt in to receive our newsletter or create an Account with us you will not receive marketing emails of any kind from us, although you will receive emails with regards to your order and delivery. If you think you've received an email incorrectly, please let us know immediately at info@novaandkoa.com

We never pass on personal details. We do not capture or store any payment details on our servers - all transactions are routed through our merchant accounts. Once you have made a purchase, you may be contacted to leave a review for that product. We do not gather your personal details if you leave feedback through our reviews.  Please read the following carefully to understand our policy and practices regarding your personal information collected through the Website, and how we will treat it. We will only use your personal information collected through this Website in accordance with this privacy policy and applicable current data protection laws, including the 1998 Data Protection Act and the GDPR. This policy (together with our terms of use and Cookie Policy) sets out the basis on which any personal information we collect from you via this Website, or that you provide to us via this Website, will be treated by us. Please read the following carefully to understand our policy and practices regarding your personal information collected through this Website. This policy is not intended to and does not create any contractual or other legal right in or on behalf of any party.

For the purpose of the Data Protection Act 1998 (the Act), the data controller is PhoenX Trading Ltd of KRA Accountants Limited, Elsie Whiteley Centre, Hopwood Lane, Halifax, HX1 5ER. Our nominated representative for the purpose of the Act is Helena Loakman - info@novaandkoa.com

CONTROL OVER YOUR PERSONAL INFORMATION

Under the General Data Protection Regulation, you have a number of important rights available to you for free. In summary, those include rights to:

  • be informed about how your personal information is being used (hopefully this privacy policy explains it all)
  • access the personal information we hold about you
  • request that we port elements of your data to another service provider
  • request us to correct any mistakes in your information which we hold
  • request the erasure of personal information concerning you in certain situations
  • receive the personal information concerning you which you have provided to us, in a structured format
  • stop any direct marketing which you can do through your account or the unsubscribe links at the bottom of emails
  • object to decisions being taken by automated means concerning you or significantly affect you

For further information on each of these rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.

If you would like to exercise any of these rights, please:

  • email us at info@novaandkoa.com
  • let us have information to identify you
  • let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill)
  • let us know the information to which your request relates.

 

PERSONAL INFORMATION THAT WE COLLECT

We do not collect any personal information about you on our Website unless you choose to provide it to us voluntarily through placing an order, signing up to the newsletter, creating an account or signing up to a promotion. If you decide to place an order with us, there is certain personal information that we will require from you in order to process your order. We define “personal information” as information that is unique to you and might include your name, delivery address, credit/debit card number and expiration date, billing address, e-mail address, telephone number, your age, occupation, and style interests. 

We may also collect the following data about you to help us improve our service to you:

  • Information that you provide by filling in forms on our Website. This includes information provided at the time of registering to use our Website;
  • subscribing to any service which we provide, posting material or requesting further services. We may also ask you for information when you enter a competition or promotion, and when you report a problem with our Website;
  • If you contact us, we may keep a record of that correspondence;
  • We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them;
  • Details of transactions you carry out through our Website and of the fulfilment of your orders;
  • Information from you on your purchase via our Reviews - we will ask you to review your purchase but we will not store or use any personal information entered via the review.

We are strongly committed to preserving online privacy for all of our Website visitors, including children. The Website is a general audience site, and we do not knowingly collect information about children or sell products to children. Consistent with the Children’s Online Privacy Protection Act, we will not knowingly collect any information from children under the age of 13. If you are under the age of 13, you are not permitted to submit information to the Website. 

Detailed information on your data as an Account Holder, Guest, or Visitor can be found at the bottom of this document. 

IP ADDRESSES AND COOKIES

An Internet Protocol (IP) address is a set of numbers, which is assigned to your computer during a browsing session. It is automatically logged by our servers and used to collect traffic data about visitors to our Website. We do not use your IP address to identify you personally.

Our website uses cookies. Cookies are pieces of code that allow small amounts of information to be passed from your internet browser to our web server. We use third party cookies, serving several purposes. All data passed by cookies is anonymous and will never contain your name, address, telephone number or payment details.

They enable us to:

  • Estimate our audience size and usage pattern
  • Store information about your preferences, and so allow us to customise our site according to your individual interests
  • Speed up your searches
  • Recognise you when you return to our site

 

If you do not want to accept cookies, you can change your browser settings so that cookies are not accepted. If you do this, please be aware that you may lose some of the functionality of this website. For further information about cookies and how to disable them please go to: www.aboutcookies.orgor www.allaboutcookies.org.

SITE STATISTICS

We monitor customer traffic on an aggregate basis using cookies and code, which is embedded, in the Website. This provides statistical information about visits to pages on the Website, the duration of individual page view, paths taken by visitors through the Website, location of visitors, data on visitors screen settings and other general information. We use this information to help improve the Website and services to its users.

Detailed information on your data as an Account Holder, Guest, or Visitor can be found at the bottom of this document. 

 

WHERE WE STORE YOUR PERSONAL INFORMATION

We use a trusted third party payment processing service to process your payment to us and we do not store your credit/debit card information.

With respect to your personal information that we do store, namely your order details (such as your name, address, email address, telephone number) we follow strict security procedures in the storage and disclosure of personal information to prevent unauthorised access or unlawful processing of your personal information. We keep your information confidential and store it on a secure server which is password protected and hidden behind a firewall.

We use secure socket layer software (SSL) to encrypt all of your personal information including your name and address. This technology prevents you from inadvertently revealing personal information using an insecure connection.

The GeoTrust program allows you to learn more about websites you visit before you submit any confidential information. When you see a GeoTrust logo, clicking on it will verify that this Website is secure.

USES MADE OF YOUR PERSONAL INFORMATION

Once you have placed your order with us, aside from fulfilling your order, we will only contact you if you have opted in to hear from us. If you have opted in to hear from us, we may use information held about you to:

  • Set up, manage your account and contact you about your account;
  • Provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes;
  • Carry out our obligations arising from any contracts entered into between you and us;
  • Allow you to participate in interactive features of our service, when you choose to do so; and, notify you about changes to our service.

 

Detailed information on your data as an Account Holder, Guest, or Visitor can be found at the bottom of this document. 

MARKETING AND COMMUNICATIONS

By entering your email address on the site, or by signing up for a promotional discount, you agree to being added to our mailing list. You can unsubscribe at any time. You will also have the opportunity to subscribe to certain areas of the Website. For instance you may wish to receive our newsletter or other marketing information (by E-Mail or Direct Mail) or enter competitions. In these circumstances we will ask for additional information, such as your age, occupation, style interests etc. We will also treat this information as “personal information,” as described in this policy. This will help us to target our marketing in a way we feel would be of specific interest to you. We may from time to time send with your ordered products, inserts advertising the goods or services of unrelated third party companies. However, we do not pass on your personal information to these third party companies, except as provided in the Disclosure of Your Information section below. 

Detailed information on your data as an Account Holder, Guest, or Visitor can be found at the bottom of this document. 

OPTING OUT 

You can ask us to stop sending you marketing messages at any time by logging into your Account and adjusting your marketing preferences or by following the opt-out links on any marketing messages sent to you.

Where you opt out of receiving marketing messages, this will not apply to personal data provided to us which we need in order to supply our services to you.

DISCLOSURE OF YOUR INFORMATION

We will only pass on your personal information to third parties if it is an essential part of our transaction with you (i.e. passing on your name and address to our carriers, or telephone number should there be a query with delivery, or using a third-party payment processor to process your payment for your purchase on our Website).

We may disclose your personal information:

  • As you expressly authorize us to do so;
  • As necessary to provide products and services to you;
  • As necessary to allow our contractors or agents to provide services for us in connection with our transactions with you; such as 3rd party fulfilment providers used by us to despatch and deliver your order. 
  • If our company, PhoenX Trading Ltd, or substantially all of its assets are acquired by a third party in which case personal information held by it about its customers will be one of the transferred assets and, in which case, we may disclose your personal information to the prospective seller or buyer of such business or assets;
  • To protect our customers and Website from fraud and theft, we may pass on personal information that we obtain from making identity checks, together with account information to organizations including law enforcement agencies, involved in fraud prevention and detection and credit risk reduction;
  • If we are under a duty to disclose or share your personal information in order to comply with any legal obligation; or,
  • In order to enforce or apply our terms of use or terms and conditions of supply of products and other agreements; or to protect the rights, property, or safety of our parent company, our customers, or others.

    Unless required to do so by law, we will not otherwise share, sell or distribute any of the personal information you provide to us without your consent.

    Detailed information on your data as an Account Holder, Guest, or Visitor can be found at the bottom of this document. 

    KEEPING YOUR DATA SAFE ONLINE

    We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

    If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.

    YOUR RIGHTS

    We will only ever ask you to opt in to hear from us (apart from processing your order or information relating to your order).  If you do subscribe to our marketing newsletters, clear instructions on how to opt in and out of each area will be detailed specifically (for instance at the bottom of our e-newsletter you will have the option ‘To unsubscribe from our emails click here’ button). Alternatively, please let us know in writing at info@novaandkoa.com if you no longer want to hear from us or believe you have received an email in error. 

    Our Website may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal information to these websites.

    CHANGES TO THE POLICY

    We reserve the right to change this policy at any time. If we change our privacy policy we will post the changes on this website. The most recent version of this policy is reflected by the date located at the bottom of this policy.

    COMPLAINTS + CONTACT

    Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to info@shopfactandfiction.com

    For the purpose of the Data Protection Act 1998 (the Act), the data controller is GymTote Ltd. Our nominated representative for the purpose of the Act is Helena Searcaigh, who can be contacted at info@novaandkoa.com

    PRIVACY POLICY - ACCOUNT HOLDERS, GUESTS + VISITORS 

     

    Account Holders

    SUMMARY

    This page sets out what information we process when you hold an Account with us. It needs to be read in conjunction with our Privacy Policy.

    WHAT PERSONAL INFORMATION WE HOLD

    Contact Information: when you register for an Account we collect your first and last name, username, password, email address and phone number.

    Usage information: we collect usage information about you whenever you interact with our websites and services. This includes which webpages you visit, what you click on, when you perform those actions, what language preference you have, and so on.

    Device and browser data: we collect information from the device and application you use to access our services. Device data mainly means your IP address, operating system version, device type, system and performance information, and browser type. If you are on a mobile device we also collect the UUID for that device.

    Log data: our web servers keep log files that record data each time a device accesses those servers. The log files contain data about the nature of each access, including originating IP addresses, internet service providers, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system versions, device type and timestamps.

    Information from third parties and integration partners: we collect your personal information from third parties if you give permission to those third parties to share your information with us or where you have made that information publicly available online.

    Information from page tags: we use third party tracking services that employ cookies and page tags to collect data about visitors to our websites. This data includes usage and user statistics. Emails sent by us or by users through our services include page tags that allow the sender to collect information about who opened those emails and clicked on links in them.

    Billing information: we require you to provide your billing details, a name, address, email address and financial information corresponding to your selected method of payment (e.g. a credit card number and expiration date or a bank account number). We use a third party payment gateway to collect, store and process billing information. We do not store this information and all payment pages use TLS technology.

    Account settings: you can set various preferences and personal details on pages like your account settings page.

    HOW WE USE YOUR PERSONAL INFORMATION

    We process personal data about you:

    • with your consent; and/or
    • to fulfil our contractual responsibility to deliver the services to you; and/or
    • to pursue our legitimate interests of providing support and improving the services we offer and developing new products and service features; and/or
    • to comply with a legal obligation.

     

    Category of personal data Purpose for processing Legal basis for processing
    Contact information

    We use your contact information to:

    • provide you with services
    • send you an order confirmation
    • liaise with third party delivery partners like couriers 
    • provide you with customer support
    • send you communications of a transactional nature (e.g. billing-related matters)
    • to send you our newsletter which might include non-product related information (for as long as you do not opt-out)
    • to ask you to carry our surveys so you can let us know how we’re doing
    • to enter you into competitions or prize draws
    • Fulfilment of a contract
    • Consent
    • Legitimate interests
    Usage information

    We collect information about the types of content you engage with, so we can direct you to other relevant features and services we offer and help you in using our services, for example by making recommendations for you to optimise use of our services.

    • Legitimate interests
    Device and browser data

    We use device and browser data to troubleshoot problems with our service and to make improvements to it, or to customise the interface for that device. We also infer your geographic location based on your IP address for abuse and tax and pricing purposes.

    • Legitimate interests
    • Legal requirement
    Log data

    We use log data for many different business purposes to include:

    • monitoring abuse and troubleshooting
    • creating new services, features, content or make recommendations
    • tracking behaviour at the aggregate/ anonymous level to identify and understand trends in the various interactions with our services
    • fixing bugs and troubleshooting product functionality
    • Legitimate interests
    Third parties and integrations

    We collect and use information from third parties and integration partners to:

    • ensure you can sign-up to our service from a third-party integration
    • personalise our services for you
    • ensure you can use our service in conjunction with other services
    • Legitimate interests
    Information from page tags

    We collect information from page tags to enable us to:

    • understand our user behaviours
    • see which features of our website are being used
    • see which parts of our platform we need to develop further
    • determine the success of our advertising campaigns
    • Legitimate interests
    Account settings

    We use your account preferences to deliver a personalised service to you.

    • Fulfilment of contract

    SUMMARY

    This page sets out what information we process when you register to attend one of our events or campaigns without registering as a member.

    WHAT PERSONAL INFORMATION WE HOLD

    Contact information: when you checkout as a Guest, we will collect your first and last name, email address and home address.

    Usage information: we collect usage information about you whenever you interact with our websites and services. This includes which webpages you visit, what you click on, when you perform those actions, what language preference you have, and so on.

    Device and browser data: we collect information from the device and application you use to access our services. Device data mainly means your IP address, operating system version, device type, system and performance information, and browser type. If you are on a mobile device we also collect the UUID for that device.

    Log data: our web servers keep log files that record data each time a device accesses those servers. The log files contain data about the nature of each access, including originating IP addresses, internet service providers, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system versions, device type and timestamps.

    Information from third parties and integration partners: we collect your personal information from third parties if you give permission to those third parties to share your information with us or where you have made that information publicly available online.

    Information from page tags: we use third party tracking services that employ cookies and page tags to collect data about visitors to our websites. This data includes usage and user statistics. Emails sent by us or by users through our services include page tags that allow the sender to collect information about who opened those emails and clicked on links in them.

    HOW WE USE YOUR PERSONAL INFORMATION

    We process personal data about you:

    • where you have consented or;
    • to pursue our legitimate interests of delivering an efficient service which generates useable results for Creators and troubleshooting and abuse monitoring.

     

    Category of personal data Purpose for processing Legal basis for processing
    Contact information

    We use your contact information to:

    • register you for an order 
    • send you an order confirmation
    • liaise with third party delivery partners like couriers 
    • provide you with assistance should you need it
    • Legitimate interests
    Usage information

    We use information about how you use our services to improve our services for you and all users. This includes streamlining our forms to increase completion rates.

    • Legitimate interests
    Device and browser data

    We use device and browser data to troubleshoot problems with our service and to make improvements to it. We also infer your geographic location based on your IP address.

    • Legitimate interests
    Log data

    We use log data for many different business purposes to include:

    • monitoring abuse and troubleshooting.
    • creating new services, features, content or make recommendations
    • tracking behaviour at the aggregate/ anonymous level to identify and understand trends in the various interactions with our services
    • fixing bugs and troubleshooting product functionality
    • Legitimate interests
    Referral information

    The referral domain (but nothing else) is passed to the creator in their reports. The full referral URL may also be recorded with the Log and browser data above.

    • Legitimate interests
    Third parties and integrations

    We collect and use information from third parties and integration partners to:

    • ensure you can access our service from a third party integration.
    • personalise our services for you.
    • ensure you can use our service in conjunction with other services.
    • Legitimate interests
    Information from page tags

    We collect information from page tags to enable us to:

    • allow the email sender (for a survey or form for example) to measure the performance of their email messaging and to learn how to improve email deliverability and open rates.
    • Legitimate interests

    SUMMARY

    This page sets out what information we process when you visit this website. It needs to be read in conjunction with our Privacy Policy.

    WHAT PERSONAL INFORMATION WE HOLD

    Usage information: we collect usage information about you whenever you interact with our websites and services. This includes which webpages you visit, what you click on, when you perform those actions, what language preference you have, and so on.

    Device and browser data: we collect information from the device and application you use to access our services. Device data mainly means your IP address, operating system version, device type, system and performance information, and browser type. If you are on a mobile device we also collect the UUID for that device.

    Log data: our web servers keep log files that record data each time a device accesses those servers. The log files contain data about the nature of each access, including originating IP addresses, internet service providers, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system versions, device type and timestamps.

    Referral information: if you arrive at this website from an external source (such as a link on another website or in an email), we record information about the source that referred you to us.

    Information from page tags: we use third party tracking services that employ cookies and page tags to collect data about visitors to our websites. This data includes usage and user statistics. Emails sent by us or by users through our services include page tags that allow the sender to collect information about who opened those emails and clicked on links in them.

    HOW WE USE YOUR PERSONAL INFORMATION

    We process personal data about you:

    • where you have consented or;
    • to pursue our legitimate interests of providing support and improving the services we offer and developing new products and service features.

     

    Category of personal data Purpose for processing Legal basis for processing
    Contact information

    We will use your contact information to respond to an enquiry which you submit to us.

    • Legitimate interests
    Usage information

    We use information about how you use our services to improve our services for you and all users.

    • Legitimate interests
    Device and browser data

    We use device and browser data to troubleshoot problems with our service and to make improvements to it. We also infer your geographic location based on your IP address.

    • Legitimate interests
    Log data

    We use log data for many different business purposes to include:

    • monitoring abuse and troubleshooting
    • creating new services, features, content or make recommendations
    • tracking behaviour at the aggregate/ anonymous level to identify and understand trends in the various interactions with our services
    • fixing bugs and troubleshooting product functionality
    • Legitimate interests
    Referral information

    We use referral information to track the success of our integrations and referral processes.

    • Legitimate interests
    Information from page tags

    We collect information from page tags to enable us to determine the success of our advertising campaigns.

    • Legitimate interests