Grandado Essentials Privacy Policy

Grandado Privacy Statement

Grandado respects your privacy and takes your online security seriously. In order to provide you with the best products, efficient customer service, and timely updates, we record a variety of information from your visit to our site. To better protect your privacy, we provide the notice below explaining our online information practices and the choices you can make about the way your information is collected and used. When you use any of our Services (as defined below) or send us emails, you are communicating with us electronically. We will communicate with you electronically in a variety of ways, such as via email, text, in-app push notifications, or by posting email messages or notices on the Website or through the other Services. For contractual purposes, you agree that all agreements, notices, disclosures and other communications that we provide to you electronically satisfy any legal requirement that such communications be in writing, unless mandatory applicable law specifically requires a different form of communication.

Grandado's Privacy Policy

Thank you for accessing the Grandado website, mobile applications, devices, and other software (collectively, the “Site”) (all references to “us” and “our” refer to Grandado). We respect your privacy and want you to be aware of the privacy policies we have in place to protect your personal information. This Privacy Policy applies to all of our services, tools, and products (including via mobile devices, mobile applications, or mobile-optimized websites) (collectively, the “Services”). If you have any questions about the processing of your personal information, please contact us at the address above or by email at privacy@grandado.com

This privacy policy explains:

How we collect, use, and (under certain conditions) disclose your personal information.
The steps we have taken to protect your personal information.
Your choices regarding the collection, use and disclosure of your personal information.
This privacy policy applies only to this website. Grandado may link to other websites.

We are not responsible for the content or privacy practices of any website other than Grandado.

By visiting our Site, you accept the practices described in this Policy.

1. How does Grandado collect information about me?

We collect information from site users in a variety of ways, with the goal of providing an efficient, meaningful, and customized shopping experience. For example, we may use your personal information to:

To register you with our Site and provide you with our Services;
Capture and quickly display information you have previously provided;
Help you quickly find information about our products and services;
Diagnose and improve site content to provide you with customer service;
Provide you with new information about our products and Services;

We use your personal information to prevent and detect fraud and abuse to protect the security of our customers. We may also use scoring methods to assess and manage credit risk;

We use your information as otherwise disclosed or permitted by law.

We collect personal information in the following ways:

We collect information directly from you:

Registration and Ordering: In order to use certain portions of this site or to order products, all customers must complete an online registration form with personal information, including but not limited to your name, gender, shipping and billing address(es), telephone number, email address, and financial information such as your credit card number. Additionally, we may ask for your country of residence and/or the country of incorporation of your organization so that we can comply with applicable laws and regulations. This information is used for billing, order processing, and internal marketing, as well as to communicate with you about your order and our site.

Email Addresses: At various locations on the Site, you may enter your email address for purposes including, but not limited to: registering for free promotional communications, requesting notification when new brands or product styles arrive, or signing up for our email newsletter. Additionally, any participation in promotional contests hosted by Grandado is completely voluntary and requires disclosure of contact information necessary to notify winners and award prizes. We may post the names and cities of prize winners on our Site.

Phone Number: At various locations on the Site, you may enter your phone number for purposes including but not limited to: registering for free promotional emails or requesting notification when new brands or product styles arrive. We store your email address and phone number until you request that we delete them.

Product Reviews: We ask for an email address and location when submitting all product reviews. Your email address will be kept private, but your location will be visible to other users. Any other personal information you choose to submit as part of the review will be available to other site visitors.

We use cookies and other tracking technologies to automatically collect information from you:

Log files:

IP address (Internet Protocol address) of the terminal device accessing our website;
Internet address of the website that refers to our website (referrer URL);
Information about the provider through which access to our website takes place;
Name of opened files and information;
Date, time and duration of access;
Number of data transferred;
Operating system and information on the browser being used;
Page view status (e.g. “Query successful”).

The data is stored in log files to identify malfunctions and for security reasons (e.g. to investigate attempted attacks) and then deleted. Log files, the further storage of which is necessary for evidence purposes, may not be deleted until the respective incident has been finally clarified and may be passed on to investigating authorities in individual cases.

2. How does Grandado use my personal data?

Internal Use: We use your personal information to process your order and provide you with customer service. We may use your personal information internally to gather general information about visitors to this Site, improve the content and layout of the Site, improve our outreach, and market our Services.

Communications with You: We will use your personal information to communicate with you about your orders and our Site. All customers must provide an email address to enable communication with Grandado regarding orders placed. We may send you a confirmation email after you register with us, as well as service-related announcements as needed (for example, temporary suspension of service for maintenance.) You may also provide your email address or phone number to request to be notified when we receive a new brand, product style or product, or to sign up for our email newsletter and special offers. You may unsubscribe or opt-out of receiving future emails at any time (see the section “What choices do I have about Grandado’s collection of my information?” below for more details). As part of our legitimate interest, your email address may be used to send triggered emails, such as cart and browser abandonment emails and order confirmation emails. Cart abandonment emails are only sent to customers who are actively shopping and have at least one item in their cart. You can unsubscribe from the emails at any time and use all your individual GDPR rights, such as the right to be forgotten.

3.1. How are cookies and other technologies used to collect information?

Cookies are small pieces of information that your Internet browser stores as text files on your computer’s hard drive. Most browsers accept cookies by default, but if you set your browser to refuse cookies or remove them from your hard drive, you may not be able to use portions of this Site. For example, if you block or otherwise refuse our cookies, you may not be able to add items to your shopping cart, proceed to checkout, or use any of our Services that require you to sign in. The Site uses cookies to:

to speed up navigation;
to track site usage;
to recognize users and user access rights and preferences;
to enable and track the selection and purchase of products on this Site and to record your browsing activity and purchases;
conduct research and diagnostics to improve our content, products and Services;
improve the security of the Site.

On this Site and some non-affiliated sites, we display interest-based ads using information you provide to us when you use our Site, content, or Services. Interest-based ads, also called personalized or targeted ads, are displayed to you based on information from activities such as purchases on the Site, visits to sites that contain our content or ads, interactions with our tools, or use of our payment services. In particular, the following technologies are used: Third party tools such as Google Analytics and other tracking/marketing applications are used by Grandado.

Like other online advertising networks, we use cookies, web beacons (also known as action tags or single-pixel gifs), and other technologies that allow us to learn about which ads you see, which ads you click on, and other actions you take on our Sites and other sites. This allows us to provide you with more useful and relevant advertising.

We do not link your interactions with non-affiliated sites to your identity for the purpose of providing you with interest-based advertising.

We do not provide personal information to advertisers or to third-party sites that serve our interest-based ads. However, advertisers and other third parties (including the ad networks, ad-serving companies, and other service providers they may use) may assume that users who interact with or click on a personalized ad or content are part of the group to which the ad or content is targeted (for example, users in a particular geographic area or users who have purchased or browsed for classical music). Also, some third parties may provide us with information about you (such as demographic information or sites where you have seen ads) from online sources that we can use to provide you with more relevant and useful ads.

Third-party advertisers or advertising companies working on their behalf sometimes use technology to serve the advertisements that appear on our Site directly to your browser. They automatically receive your IP address when this occurs. They may also use cookies to measure the effectiveness of their advertisements and to personalize the content of the advertisements. We do not have access to or control over cookies or other features that third-party advertisers and websites may use, and the information practices of these advertisers and third-party websites are not covered by our Privacy Policy. Please contact them directly for more information about their privacy policies.

3.2. Cookies we use

Firebase by Google

We use the Firebase service of Google LLC. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) to derive application behavior analyses. We use this information to see how users interact with our website and app.

Firebase is part of the Google Cloud Platform and offers a variety of services for developers. A list can be found here: firebase.google.com/terms.

Some Firebase services process personal data. In most cases, the personal data is limited to so-called “instance IDs”, which are provided with a time stamp. These “Instance IDs” assigned by Firebase are unique and therefore make it possible to link different events or processes with each other. This data does not constitute personally identifiable information for us, nor do we make any efforts to personalize it afterwards. We process this aggregated data to analyze and optimize usage behavior, for example by evaluating crash reports.

We currently use the following Firebase services:

Google Analytics for Firebase: Google Analytics uses the data to provide analytics and attribution information.

The exact information collected may vary by device and environment. More information can be found at this link and in Google’s affiliate policy.

Google Analytics retains ID-related data for 60 days, and retains aggregated reporting and campaign data without automatic expiration unless the Firebase customer changes their retention preference in their Analytics settings or deletes their project. For Analytics for Firebase, Google uses not only the “Instance ID” described above, but also the advertising ID of the end device. You can restrict the use of the advertising ID in the device settings of your mobile device. For Android: Settings > Google > Ads > Reset advertising ID For iOS: Settings > Privacy > Ads > No ad tracking

Firebase Dynamic Links: Dynamic Links uses device specifications on iOS to open newly installed apps to a specific page or context. Dynamic Links stores device specifications only temporarily, in order to provide the service.

Firebase Cloud Messaging: Firebase Cloud Messaging is used to send push messages or so-called in-app messages (messages that are only displayed within the respective app). A pseudonymized push reference is assigned to the mobile device, which serves as the target for the push messages or in-app messages. The push messages can be deactivated and reactivated at any time in the settings of the mobile device. Firebase Cloud Messaging uses Instance IDs to determine to which devices messages should be delivered. Firebase stores Instance IDs until the Firebase customer makes an API call to delete the ID. After the call, the data is deleted from live and backup systems within 180 days.

Firebase Realtime Database: Firebase Realtime Database is a hosting and backend service provided by Google Inc.

Purpose: To provide hosting & backend infrastructure for our apps

Personal Data collected: Usage Data and various types of Data as specified in the privacy policy of the service.

Place of processing: United States – Privacy Policy. Privacy Shield participant.

Firebase Cloud Firestore: Firebase Cloud Firestore is a hosting and backend service provided by Google LLC.

Purpose: To provide hosting & backend infrastructure for our appsCollected

Personal Data: Usage Data and various types of Data as specified in the privacy policy of the service.

Place of processing: United States – Privacy Policy. Privacy Shield participant.

Firebase will use this information on our behalf for the reasons stated above.

The legal basis for the use of this service is Art. 6 para. 1 sentence 1 letter f GDPR. Google is certified under the Privacy Shield Agreement and thus guarantees compliance with European data protection law.

WordPress

Our website is built on the WordPress platform, which is a popular content management system (CMS). WordPress may collect certain data, including but not limited to: IP Address: for enhancing security and monitoring access to the site. Cookies: WordPress uses cookies to store information about user sessions, which helps improve their experience on the site. User Data: If you register on our website, we may collect your personal information, such as your name, email address, phone number, and other contact details.

All data collected through WordPress is processed in accordance with our privacy policy and is used solely for the proper functioning of our website, improving services, and communicating with you. Please find more information on how WordPress deals with data in their privacy policy.

WooCommerce

Our website store is powered by WooCommerce. When you make a purchase, we collect certain information necessary to process your order, including your name, billing and shipping address, email address, and payment information. WooCommerce stores this data on our behalf and is responsible for its security. You can find more details about WooCommerce’s data handling practices in their privacy policy.

Hostinger

Our online store utilizes Hostinger plugins, like Hostinger Tools, or Hostinger AI to enhance your shopping experience. These platforms may collect data, including your name, email, and browsing history, to personalize your experience and provide targeted marketing. By using our website, you consent to the collection and use of your data in accordance with Hostinger’s privacy policy, which can be found here.

Wheelio

Wheelio, a gamified pop-up tool, enhances user engagement and improves our lead-generation efforts. Wheelio collects certain data from visitors who interact with these pop-ups, which may include:

Personal Information: When engaging with Wheelio’s pop-ups (e.g., spin-the-wheel games, scratch cards), you may be asked to provide your name, email address, phone number, or other contact details. This information is used for:

Sending promotional offers

Providing discounts and incentives

Future marketing campaigns

Facilitating customer engagement through email, SMS, or push notifications

Usage Data: Wheelio may also collect non-personal information about how you interact with the pop-up, such as the number of times you engage with it, conversion rates, and the offers redeemed. This helps us track the effectiveness of the promotions and improve our customer experience.

Trengo

Trengo Chat: To communicate with you via a chat function on our website, we use Trengo chat. Read Trengo’s privacy statement to read how they handle the data they collect.

Activecampaign

We offer you the opportunity to subscribe to a newsletter on our website. Your personal data is collected during the registration for the subscription. You will first receive a confirmation email to ensure that you want to subscribe to the newsletter with your email address. Only when you have clicked on the activation link in this email will you be included in our email mailing list and receive the newsletter. The subscription to the newsletter is logged for documentation purposes (IP address, date and time). You have the option to unsubscribe from the newsletter at any time by sending us a corresponding message. In particular, you can also use the link at the end of each newsletter to unsubscribe. The legal basis is Art. 6 (1) a) GDPR.

To send the newsletter, we use the newsletter service ActiveCampaign, LLC, 150 N. Michigan Ave Suite 1230, Chicago, USA. This service provider processes the data only on our behalf and on our instructions in accordance with Art. 28 GDPR.

Active Campaign is certified under the “EU-US Privacy Shield”. The “Privacy Shield” is an agreement between the European Union (EU) and the US, which is intended to ensure that European data protection standards are complied with in the US.

For more information, please refer to Active Campaign’s privacy policy.

Link to Privacy Shield Certification.

We may also use Active Campaign to analyze our newsletter campaigns. When you open an email sent with Active Campaign, a file in the email (called a web beacon) connects to Active Campaign’s servers. This allows us to determine whether you have opened a newsletter message and which links have been clicked.

In addition, technical information is recorded (e.g. time of access, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for statistical analysis of our newsletter campaigns. The results of these analyses can be used to better tailor future newsletters to the interests of the recipients.

The evaluation of the click behaviour of our newsletter recipients is in our legitimate interest for a target group-oriented design of our offer. The legal basis is Art. 6 para. 1 lit f DSGVO.

If you do not wish to receive an analysis from Active Campaign, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in each newsletter message. Unfortunately, it is not possible to send the newsletter without such an analysis.

Twitter pixel

The Twitter pixel is an analytics tool that allows Twitter to understand whether you have interacted with certain web or email content. This helps Twitter to measure and improve our services and personalize your experience. The Twitter pixel is used to measure ad performance, track conversions, and tailor audiences. Details about Twitter’s policies for conversion tracking and tailored audiences can be found at policies-for-conversion-tracking-and-tailored-audiences.

YouTube

WHAT IS YOUTUBE?

On YouTube, users can watch, rate, comment or upload videos for free. In recent years, YouTube has become one of the most important social media channels worldwide.

What data does YouTube store?

As soon as you visit one of our pages with integrated YouTube, YouTube sets at least one cookie that stores your IP address and our URL. If you are logged in to your YouTube account, YouTube can usually associate your interactions on our website with your profile through the use of cookies. This includes data such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution or your internet service provider. Additional data may include contact details, potential reviews, shared content via social media or YouTube videos that you have added to your favorites.

If you are not logged into a Google or YouTube account, Google stores data with a unique identifier that is linked to your device, browser or app. For example, your preferred language setting is retained.

However, a lot of interaction data cannot be stored because fewer cookies are placed.

Hotjar (analytics cookie)

We use Hotjar to better understand our visitors’ needs and to improve the usability and user experience of our website. Hotjar uses statistics about screen size, device type, browser type, language and the countries from which the website is visited. Hotjar uses this data to create a click heatmap and a scroll heatmap. These heatmaps show where our visitors click and how far they scroll on our pages. We can also see how long users stay on the page and how our site is navigated. This way we can optimize the website and make sure you can find important information quickly. All data is collected anonymously: Hotjar and Tinybots do not have access to your personal data in any way. We will also never use the data to identify individual visitors or to link data from other data sources. Read more about Hotjar’s cookie policy here

Hotjar only stores data in the European Union. Read more about Hotjar’s GDPR compliance here.

You may opt-out of the creation of a profile, Hotjar’s storage of data relating to your use of our site and Hotjar’s use of tracking cookies by using this opt-out link.

TikTok Pixel

Our online offers use the so-called “TikTok pixel” of the social network TikTok, which is operated by TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland (“TikTok”).

On the one hand, the TikTok pixel enables TikTok to determine you as a visitor to our online offering as a target group for the presentation of advertisements (so-called “TikTok ads”). Accordingly, we use the TikTok pixel to display the TikTok ads placed by us only to those TikTok users who have also shown an interest in our online offering or who exhibit certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to TikTok (so-called ‘custom audiences’).

With the help of the TikTok Pixel, we also want to ensure that our TikTok Ads match the potential interests of users and are not annoying. The TikTok Pixels also help us to track the effectiveness of TikTok Ads for statistical and market research purposes by showing us whether users are redirected to our website after clicking on a TikTok ad (so-called “conversion”).

TikTok Privacy Policy:

The processing of data by TikTok takes place within the framework of TikTok’s data usage policy. Accordingly, general information about the presentation of TikTok ads, in the TikTok data usage policy. For specific information and details about the TikTok pixel and its functionality, see the TikTok help area.

Groundwork:

The use of the TikTok pixel as well as the storage of “conversion cookies” is based on Art. 6 Abs. 1 lit. a GDPR.

Data processing contract:

For the processing of data for which TikTok acts as a contractor, we have concluded a data processing contract with TikTok, in which we oblige TikTok to protect our customers’ data and not to pass it on to third parties.

Criteo

The Owner uses the CRITEO Tool, operated by CRITEO SA, 32 Rue Blanche, 75009 Paris, for the statistical analysis of visits to its website as well as for individual, interest-based advertising (CRITEO Dynamic Retargeting and CRITEO Sponsored Products), which allows pseudonymous user profiles to be created from user data associated with the requested content.

CRITEO uses cookies, web beacons (tracking pixels) and/or similar technologies that send information about the use of the owner’s website to a CRITEO server in France or another country for storage and analysis. CRITEO will use this information only on behalf of the owner and for the purposes stated above.

User data is processed pseudonymously, i.e. no data is processed and stored that allows identification of individual users, and IP addresses are truncated. Processing takes place exclusively on the basis of an online ID. Online IDs or email addresses sent to CRITEO are encrypted as a hash value (checksum) and stored as a character string that does not allow reverse identification.

For more information about CRITEO Dynamic Retargeting and CRITEO Sponsored Products for CRITEO privacy policy please visit criteo.com/privacy

You may object to the future collection, processing and use of your data by CRITEO. For related information and opt-out details, please visit the CRITEO privacy policy at criteo.com/privacy

You can further prevent your data from being collected, processed and used by CRITEO web beacons in the future by loading and installing a web browser plugin available at adblockplus.org

Awin

This cookie records purchase data. This data allows us to fairly compensate our partner sites for their contribution to our sales.

Name: Awin

Lifetime: This cookie is stored for a maximum of 30 days.

Distribution: Awin shares anonymous data with third parties.

Google Analytics

Google Analytics collects information about the use of our webshop. This information shows us how you arrived at our website and how long your visit lasts.

Based on this, we can give you personal recommendations and help you find the right product.

Name: Utma, UTMB, UTMC, UTMV and UTMZ

Lifespan: the cookies are stored for a maximum of 2 years.

Distribution: Google does not share anonymous data with third parties.

Google AdWords

Conversion Tracking helps us see how effectively ad clicks contribute to valuable customer activity on our website, such as: purchases, signups, and form submissions.

It tracks conversions after an ad interaction from the drop-down menu for Search, Shopping, Video, and Display campaigns.

Microsoft Ads | Bing

UET is used to track our customers’ behavior after they click on our ad. Universal Event Tracking (UET) is a powerful tool that tracks what customers do on our website. By placing a UET tag, Microsoft Advertising collects data that helps us track conversion goals and audiences with remarketing lists.

URL Tracking allows us to understand how people arrived at our website by adding tracking parameters to Microsoft Advertising and using a third-party tracking tool or service to analyze the data. When an ad is shown, the tracking parameters are dynamically added to the URL of our landing page.

This landing page URL is recorded on our web server and a third party tracking tool, such as Google Analytics, can interpret the data.

Yahoo

Dot is Yahoo’s universele tracking tag.

We use Dot tags to communicate website and app events when we want to track performance and optimize our Yahoo search, native, and display campaigns.

Dot tags also allow us to use retargeting and advanced audience targeting across different Yahoo channels.

With a single pixel, we can manage multiple purposes, such as creating new audiences for retargeting and tracking website conversions, mobile app installs, and in-app user behavior.

Facebook Conversion Tracking Pixel

Grandado may use Facebook Advertising, Facebook Pixel Re-Marketing and communication. This tool allows Grandado to understand and display advertisements and make them more relevant to you. The collected data remains anonymous and Grandado cannot see the personal data of an individual user.

However, the collected data is stored and processed by Facebook. Facebook can link the data to your Facebook account and use the data for their own advertising purposes (in accordance with Facebook’s data usage policy.

Facebook has ultimate control over the information collected through Facebook Advertising, Facebook Pixel Re-Marketing and communications. You can opt out of Facebook’s use of cookies and Facebook Pixel Re-Marketing through your Facebook account settings.

4. Does Grandado ever share my personal information?

We Sell Merchandise, Not Information – We do not sell, rent, trade, or license your personal or financial information. We will only disclose your personal or financial information in the following specific situations:

Third-Party Service Providers: Like most online retailers, we sometimes use third-party service providers to perform specific functions on our behalf. Any information provided to them is solely for the purpose of assisting them in providing their service, and such services are provided only pursuant to a valid written contract that clearly describes the scope and nature of the processing. For example, we provide your name, shipping address, email, and phone number to partners such as DHL and UPS to ensure delivery of your orders, and we may use relevant customer information to monitor the quality of the third party’s service. Similarly, we must provide your credit card number to financial services providers, such as credit card processors and issuers, in order to process payments. We protect all submissions of your credit card number for authorization with state-of-the-art data encryption. (More on this below in the “How does Grandado secure the information we collect about you?” section).

We use payment service providers and payment methods that are integrated into this website. All financial transactions with credit cards on our website are processed through our payment service providers Checkout.com and AirWallex.

You can view Checkout.com’s privacy policy at https://www.checkout.com/legal/privacy-policy .

You can view AirWallex’s privacy policy at https://www.airwallex.com/terms/privacy-policy#scope-of-policy .

We will only share information with our payment service providers to the extent necessary for the purposes of processing payments you make through our website, refunding such payments, and dealing with complaints and queries relating to such payments and refunds. We will not store or pass on any user payment details to third parties.

The following payment methods and payment service providers are also available on this site:

iDEAL: https://www.ideal.nl/en/ideal-privacy-cookiestatement

Klarna: https://www.klarna.com/international/privacy-policy/

PayPal: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Giropay: https://www.giropay.de/agb/index.html

Apple Pay: https://www.apple.com/legal/privacy/en-ww/

Google Pay: https://policies.google.com/privacy

American Express: https://www.americanexpress.com/uk/company/legal/privacy-centre/?inav=gb_legalfooter_privacy

Mastercard: https://www.mastercard.co.uk/en-gb/about-mastercard/what-we-do/privacy.html

Visa: https://www.visa.co.uk/legal/global-privacy-notice.html

Legal Obligation to Release Information or to Protect Ourselves, Our Customers, or Others: We may be required to release personal information if we are subpoenaed, served with a court order, or asked to do so by law enforcement officials conducting an investigation, or if we are otherwise legally obligated to release such information. We will also release personal information when necessary to protect our legal rights or enforce our Terms of Use and other agreements. For example, we may share information to reduce the risk of fraud, or to prevent fraud by users who attempt to commit fraud or other illegal activity on our Site. We reserve the right to report activities that we believe in good faith to be unlawful to law enforcement authorities.

Merger and/or Sale of Assets: We do not normally sell, trade, or rent personal information to other companies in the course of our business. However, we may acquire, merge with, or be acquired by another company, or sell some or all of our assets, in which case your personal information may be disclosed to the other company subject to the applicable Privacy Policy.

We may share personal information for other reasons that we may describe to you from time to time, as permitted by law. Non-Personally Identifiable Information: We may share information that does not identify you or a user, such as the number of daily visitors to a particular page or the size of an order placed on a particular date, with third parties such as advertising partners.

5. How does Grandado secure the information collected about me?

This Site incorporates physical, electronic, and administrative procedures to safeguard the confidentiality of your personal information, such as:

Securing all financial transactions done through this Site with Secure Sockets Layer (“SSL”) encryption; Allowing only employees who provide a specific service access to your personal information; Working only with third party service providers that we believe adequately secure all computer hardware; While our company is designed with securing your personal information in mind, please remember that 100% security does not currently exist anywhere, online.

6. What choices do I have regarding Grandado's collection of my information?

You may always choose not to provide information, even though it may be necessary to make a purchase or to use certain features on the Site.

You can choose to:

To correct or update your personal information;
No longer receiving emails to your email address;
Disable your account;
Disable your account to prevent future purchases through that account;

Block cookies on your computer to no longer use the service offered on the Site.

To correct or update your personal information, log in to My Accounts and submit a request through the online Customer Service.

To unsubscribe from emails you receive from Grandado, follow the unsubscribe link at the bottom of the email and select the option that applies to you. Alternatively, you can log into “My Account” and select the option that applies to you.

To block cookies on your computer, the Help feature on most browsers and devices will tell you how to prevent your browser or device from accepting new cookies, how to have the browser notify you when you receive a new cookie, or how to disable cookies altogether. Because cookies allow you to take advantage of certain essential services on the Site, we recommend that you leave them turned on. For example, if you block or otherwise reject our cookies, you will not be able to add items to your shopping cart or proceed to checkout, or use any of our services that require you to sign in.

7. How long do we retain your personal data?

We retain your personal information to enable your continued use of our Services for as long as necessary to fulfill the relevant purposes described in this Privacy Policy, as may be required by law, such as for tax and accounting purposes, or as otherwise communicated to you. For example, we retain your transaction history so that you can review past purchases (and repeat orders if you wish) and the addresses to which you have shipped orders, and to improve the relevance of products and content we recommend.

If you are a visitor from the European Union, please refer to “Visitors from the European Union?” below for more information.

8. Visitors from the European Union?

This section of the Privacy Policy applies only if you use our Site or Services covered by this Privacy Policy from a country that is a member state of the European Union, and supplements the information in this Privacy Policy.

What legal rights exist when processing personal data?

You can contact us at any time at our email address stated in section 1 or by post if you wish to assert your rights. As a registered customer, you can also make settings in the “My Account” section (e.g. to change your data or the settings for receiving emails)

You are entitled to the following rights, subject to applicable legal requirements and limitations:

Right to information and disclosure: You have the right to request information and confirmation as to whether we process your personal data. You have the right to be provided with clear and easily understandable information about how we use your information, and your rights. This is why we are providing you with the information in this privacy policy.

Rights to rectification and erasure: You have the right to have your personal information rectified if it is inaccurate or incomplete. Upon your request, we will erase your personal data if one of the so-called “right to be forgotten” conditions of the GDPR applies, or if similar conditions are met under equivalent local law or regulation. It may be impossible to completely delete your information without some residual information resulting from backups.

Restriction of processing: You have the right to ask us to stop using your personal information where we are doing so on the basis of legitimate interests, unless it is necessary for the handling of legal claims or we have other compelling legitimate grounds which override your rights.

Data portability: If the data processing is based on a contract or consent, you can request that we transfer the data you have provided to us in a structured, commonly used and machine-readable format. If technically feasible, you can also request that the data be transferred to a third party.

Objection to direct marketing: You may object at any time to the processing of your personal data for advertising or direct marketing purposes. If you object to processing for advertising or direct marketing purposes, the personal data will no longer be processed for such purposes.

Withdrawal of consent: If you have given us your consent to process your data, you can withdraw this consent at any time with effect for the future. The legality of processing your data up until the withdrawal remains unaffected.

Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a data protection authority. For example, you can contact the data protection authority responsible for your place of residence or state.

You can correct your personal data and exercise your privacy preferences by submitting a request to data@grandado.com

Please include your name, address and/or email address when you contact us. We will take reasonable steps to verify your identity before responding to your requests. The verification steps will vary depending on the sensitivity of your personal information and whether you have an account with us.

Our legal basis for processing:

We process your contact details, registration and order data with your consent;
We process log data based on our legitimate interest in troubleshooting and securing our website;
We may process personal data to comply with our legal obligations;
We will only pass on your personal data to our suppliers who provide services on our behalf if this is necessary to perform the contract, if we have a legitimate interest in the transfer or if you have consented to this.

When we transfer personal data to countries outside the European Economic Area in the context of information sharing, we will transfer that information in accordance with this Privacy Policy and as permitted by applicable data protection laws.

Requests should be submitted by contacting us through our Data Protection Officer at data@grandado.com You may designate an authorized agent to exercise any rights available to you on your behalf. Your authorized agent must provide evidence that he/she is authorized to act on your behalf.

We will not discriminate against you for exercising any of your CCPA rights as described here.

We do not sell your personal information.

The following categories of personal information are disclosed for the following business purposes:

shipping and contact information: we share your name, shipping address, email and phone number with our partners such as DHL and UPS to ensure the delivery of your orders, and we may use relevant customer information to monitor the quality of the third party’s service;

Financial Information: We must provide your credit card number to financial services organizations, such as credit card processors and issuers, to process payments.

9. Can children use Grandado?

We respect the privacy of minors. We do not knowingly or intentionally collect personal information from minors under the age of 18. Elsewhere on this Site, you have represented and warranted that you are either 18 years of age or are using the Site under the supervision of a parent or guardian.

If you are under 18 years of age, please do not submit any personal information to us, and rely on a parent or guardian to assist you in using the Site.

If a minor has provided us with personal information without the consent of a parent or guardian, the parent or guardian should contact data@grandado.com to have the information deleted.

10. Where can I find updates to this notice?

To keep you informed about what information we collect, use, and disclose, we will post any changes or updates to this Privacy Policy on this Site and encourage you to review this Privacy Policy from time to time. If you have any questions about the Privacy Policy, please contact us.

11. Language

If there is any conflict between the English version and any other language version of this Privacy Policy, the English version shall prevail.

Your cart (0 items)