Last Updated: June 15, 2018
Personal Information We Collect:
We do not collect Personal Information about you unless you choose to provide us with such information. If you register for our Emails (as defined below), sign up for our waiting list, or register as a member, we may collect Personal Information about you such as your name, date of birth, email address, phone number, and mailing address. Similarly, if you place an order, you will be asked to provide us with your name, date of birth, email address, telephone number, delivery address, billing address and credit card number and expiration date.
We may also receive your Personal Information from various third parties that we engage to assist us with providing you products or services, including: delivery and address information from our carriers who deliver products to you; data analytics information from companies that provide us with data analytics services; and information on your account, payment and credit history, including information from credit bureaus and sources that we use to process payments. These third parties do not retain, share, store, or use your Personal Information for any secondary purposes.
How We Use the Personal Information We Collect:
We use your Personal Information for the following purposes: to review and respond to your questions; to fulfill your orders and process your payment information; to communicate with you about your orders or to update our records and maintain any online account you may have with us; to improve the products and services we provide and enable third parties to carry out technical, logistical or other functions on our behalf; to administer, safeguard, and improve our website; to protect our rights and the safety of others; and/or to comply with applicable law, court order, subpoena, or legal process served on us.
Legal Bases under GDPR:
If you are in the European Economic Area (“EEA”), we will collect and use your Personal Information only if we have one or more legal bases for doing so under the General Data Protection Regulation (“GDPR”). For the purposes of the remainder of this section, references to “you” refer to users of our site located within the EEA or other non-U.S. territories.
Our legal bases for the collection and use of your Personal Information depend on your interaction with us and our site. This means we collect and use your Personal Information only where: you have given your consent for one or more specific purposes; it is necessary to perform a contract we are about to enter into or have entered into with you; it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests; it is necessary to protect the vital interests of you or another natural person; or it is necessary to comply with a legal obligation. We have indicated in italics the legal basis or bases on which we are relying following each purpose (see below). Where we are relying on consent as the legal basis, we will notify you and seek additional consent before using your Personal Information for a new purpose that is inconsistent with the original purpose for which we collected it. You can withdraw your consent at any time and we will then stop processing your information for that purpose.
We may use your Personal Information: to review and respond to your questions (with your consent); to fulfill your orders and process your payment information (perform a contract); to communicate with you about your orders or to update our records and maintain any online account you may have with us (perform a contract/with your consent); to improve the products and services we provide and enable third parties to carry out technical, logistical or other functions on our behalf (for our legitimate interests); to administer, safeguard, and improve the site (for our legitimate interests); to protect our rights and the safety of others (for our legitimate interests); and/or to comply with applicable law, court order, subpoena, or legal process served on us (to comply with legal obligations).
How We Collect and Use Non-Personal Information:
We may collect non-personal information, or data in a form that does not, on its own, permit direct association with any individual. For example, we may use automatic data collection technologies to collect and store details of how you use our site. This “usage data” is limited to information related to your interactions with our site. The technologies we use for usage data collection include:
If you “opt in” to receive emails from us, our emails may use a “click-through URL” linked to content on our site. When you click one of these URLs, they pass through a separate web server before arriving at the destination page on our site. We use this click-through data to help us understand how recipients respond to our emails. If you prefer not to be tracked in this way, please do not click text or graphic links in emails that you receive from us.
We gather certain information automatically and store it in log files. This information includes Internet Protocol (IP) addresses, browser type, and internet service provider (ISP). We use this information, which is not linked to Personal Information, to analyze trends, to administer our site and to track users’ movements around our site.
Pages of our site and our Emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us to count users who have visited those pages or opened an Email and for other related website statistics, for example.
Please be aware that we do not currently honor “do not track” requests.
Disclosure of Information We Collect:
We do not rent or sell your Personal Information to anyone. We may share and disclose information (including Personal Information) that we collect or you provide us in the following limited circumstances:
Agents and Service Providers
We may share your information with third party agents and service providers who we employ to perform tasks on our behalf and who are bound by contractual obligations to keep Personal Information confidential and use it only for the purposes for which we disclose it to them. These companies include, for example, our data analytics services (e.g., Google Analytics, FullStory), payment processor/e-commerce platform (e.g., Figure, Stripe), email service provider (e.g., Campaign Monitor)], and shipping services (e.g., Wineshipping, FedEx, UPS, All Ways Cool, 55 Degrees, Vinfolio, Aero Packing).
Protection of Aubert Wines and Others
We reserve the right to access, read, preserve, and disclose any information as necessary to enforce or apply our agreements, including for billing and collection purposes, or protect our rights or property, or if we believe disclosure is necessary or appropriate to protect the rights, property, or safety of our employees, grantees, donors, or others.
Disclosures for National Security or Law Enforcement
Under certain circumstances, we may be required to disclose your Personal Information in response to valid requests by public authorities, including to meet national security or law enforcement requirements, or to comply with any court order, law, or legal process.
Storage and Transfer of Information We Collect:
The information we collect or you provide us may be transferred to—and maintained on—computers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may be different from those of your jurisdiction. By providing information on our site, you hereby expressly consent to such a transfer for the purposes described herein.
For users of our site located within the EEA or other non-U.S. territories, please note that if we receive your Personal Information in the United States and subsequently transfer that information to a third party agent or service provider for processing, we remain responsible for ensuring that such third party agent or service provider processes your Personal Information in accordance with the standard required by the GDPR.
How You can Access and Control Your Information:
You may access the Personal Information you have submitted to us, delete or make changes to such information, and unsubscribe from receiving future Emails from us at any time by contacting us at: firstname.lastname@example.org. You may also unsubscribe from receiving future Emails from us by clicking on the “Unsubscribe” link found at the bottom of each of our Emails.
To the extent provided by applicable laws (including the GDPR), you may have the right to review the Personal Information we hold about you, as well as details on how we process your Personal Information. You may also have a right under the GDPR to have your Personal Information corrected or erased, to restrict our processing of your Personal Information, to stop unauthorized transfers of your Personal Information and, in some circumstances, to have your Personal Information transferred to another organization designated by you. You have the right to lodge a complaint in relation to our processing of your Personal Information with your local supervisory authority. If you do not request to have your Personal Information erased, it may be maintained by us indefinitely.
If you object to the processing of your Personal Information, or if you have provided your consent to processing and you later choose to withdraw it, we will respect that choice in accordance with our legal obligations. You may review your consent status within your Profile.
Your objection (or withdrawal of any previously given consent) could mean that we are unable to perform the actions necessary to achieve the purposes set out above. Please note that even after you have chosen to withdraw your consent, we may continue to process your Personal Information to the extent required or otherwise permitted by law, in particular in connection with exercising and defending our legal rights or meeting our legal and regulatory obligations.
To exercise any of these rights that you are not able to exercise directly, please contact us at: email@example.com.
Links to Other Sites:
Your California Privacy Rights:
Under California Civil Code sections 1798.83 - 1798.84, California residents may request from us certain information with respect to the types of information that we share with third parties for direct marketing purposes by such third parties, and the identities of the third parties with whom we have shared such information during the immediately preceding calendar year. To request a copy of this information, please contact us at: firstname.lastname@example.org.
Information Collected on This Site:
When you visit our site, our statistics package from Google collects some basic information about your browser. Examples include what type of browser and operating system you are using, how long you remained on our site, and what pages you looked at while here. This helps us understand how visitors browse our site, so that we can make their shopping experience better. We also collect personal information about you at various points, including your name and email address (and other information) from the mailing list sign-up form, and additional personal and financial information from the order forms that you complete during a purchase.
Protecting Your Information:
ACCESS RESTRICTED TO PEOPLE OF LEGAL DRINKING AGE:
OUR SITE IS INTENDED ONLY FOR PERSONS OF LEGAL DRINKING AGE BASED ON THE JURISDICTION WHERE SUCH CONTENT IS BEING ACCESSED OR VIEWED. WE DO NOT KNOWINGLY COLLECT INFORMATION FROM THOSE UNDER THE LEGAL DRINKING AGE AND REQUEST THAT SUCH INDIVIDUALS DO NOT PROVIDE ANY INFORMATION TO US OR ACCESS OUR SITE. IF YOU ARE UNDER THE LEGAL DRINKING AGE IN YOUR JURISDICTION, YOU MUST IMMEDIATELY LEAVE THE SITE. IF YOU BELIEVE SOMEONE UNDER THE LEGAL DRINKING AGE HAS PROVIDED US WITH INFORMATION, PLEASE CONTACT US IMMEDIATELY AND SUCH INFORMATION WILL BE REMOVED.
How to Contact us:
If you have any questions about the security of our website, please feel free to contact us at email@example.com.