Privacy Policy

This website is owned and operated by Ejits which is the moniker of Emily J. Taylor. Throughout the site, the terms “we”, “us” and “our” refer to Ejits plus anyone she may have in her employment. The terms “I”, “me”, “my” and “mine” refer to Ejits (Emily) specifically.

(last updated 27th January 2024)

This privacy policy describes how, why and where we collect, use and share your information when you contact us, use our services, purchase an item from us or otherwise interact with us. Our website address is https://ejits.art. You can find ways to contact us at the bottom of this page.

This privacy policy does not apply to the practices of any third parties that we do not own or control.

What personal data we collect and why we collect it

To use our services you may provide us with the following information, including:

  • Your name

  • An email address

  • A postal address

  • Payment information

  • Details of the product or service that you have requested

  • Any additional information you choose to provide us with if necessary to my business (for instance submitting a comment or contact form)

We rely on a number of legal bases to collect, use and share your information, including:

  • as needed to provide our services, such as when we use your information to fulfil your order, to settle disputes, or to provide customer support;
    when you have provided us with your express consent, which you may revoke at any time, such as by signing up to our mailing list;

  • if necessary to comply with a legal obligation or court order or in connection with a legal claim, such as retaining information about your purchases if required by tax law;

  • as necessary for the purpose of our legitimate interests, if those legitimate interests are not overridden by your rights or interests, such as providing and improving our services. We use your information to provide the services you requested and in our legitimate interest to improve our services;

Comments & Reviews

When visitors leave comments or reviews on the site we collect the data shown in the form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. For more information, you can view the Gravatar service privacy policy. After approval of your comment, your profile picture is visible to the public in the context of your comment.

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

When you fill out on of our contact forms you provide us with your full name, email address and any other personal information you feel is necessary in the message field of our contact form. We retain this information for only as long as it’s necessary to provide you with a satisfactory reply. We do not use this information for marketing purposes.

While you shop

While you visit our site, we’ll track:

  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed

  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping

  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of basket contents while you’re browsing our site. You can view our Cookie Policy below.

When shopping, we keep a record of your email and the cart contents for up to 30 days on our server. This record is kept to repopulate the contents of your cart if you switch devices or needed to come back another day.

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:

  • Send you information about your account and order

  • Respond to your requests, including refunds and complaints

  • Process payments and prevent fraud

  • Set up your account for our store

  • Comply with any legal obligations we have, such as calculating taxes

  • Improve our store offerings

  • Send you marketing messages, only if you choose to receive them

If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.

We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 5 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.
We will also store comments or reviews if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:

  • Order information like what was purchased, when it was purchased and where it should be sent, and

  • Customer information like your name, email address, and billing and shipping information

Our team members have access to this information to help fulfil orders, process refunds and support you.

What we share with others

Information about our customers is very important to our business. We share your personal information for very limited reasons and in limited circumstances, as follows:

MailChimp

When you subscribe to our mailing list you provide us with your name and email address only.
We share this information with MailChimp as is necessary to provide you with email updates only when express consent is given (i.e. you sign up to our mailing list) and we comply with our obligations under MailChimp’s Privacy Policy & Acceptable Use Policy.

Payments

When you place an order you provide your full name, email address, physical address and payment information. We accept payments through Stripe & PayPal online and Square Up card reader offline (at in person events only). When processing payments, some of your data will be passed to Square or PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Online Payments:
Please see Stripe’s Privacy Policy or more details.
Please see PayPal’s Privacy Policy for more details.

In person point of sale via Square:
Please see Squareup’s Privacy Policy or more details.

Service providers

We may engage certain trusted third parties to perform functions and provide services to our shop, such as delivery companies. We will share your personal information with these third parties, but only to the extent necessary to perform these services.

Compliance with laws

We may collect, use, retain, and share your information if we have a good faith belief that it is reasonably necessary to: (a) respond to legal process or to government requests; (b) enforce our agreements, terms and policies; (c) prevent, investigate, and address fraud and other illegal activity, security, or technical issues; or (d) protect the rights, property, and safety of our customers, or others.

Embedded content from other websites

Pages on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Vimeo

Our website uses features provided by the Vimeo video portal. This service is provided by Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

If you visit one of our pages featuring a Vimeo plugin, a connection to the Vimeo servers is established. Here the Vimeo server is informed about which of our pages you have visited. In addition, Vimeo will receive your IP address. This also applies if you are not logged in to Vimeo when you visit our plugin or do not have a Vimeo account. The information is transmitted to a Vimeo server in the US, where it is stored.

If you are logged in to your Vimeo account, Vimeo allows you to associate your browsing behaviour directly with your personal profile. You can prevent this by logging out of your Vimeo account.

For more information on how to handle user data, please refer to the Vimeo Privacy Policy at https://vimeo.com/privacy.

Google Web Fonts

For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose, your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

If your browser does not support web fonts, a standard font is used by your computer.

Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy at https://www.google.com/policies/privacy/.

Analytics

This website also collects data through Google Analytics and Cookies. More information about the cookies our website collects can be found below in the Cookie Policy section, including how to turn off Cookies.

If you wish to opt-out of analytics tracking on this site you will need to download and install the Google Analytics Opt-out Browser Add-on which can do downloaded here: https://tools.google.com/dlpage/gaoptout
Google Analytics Terms of Service here: https://www.google.com/analytics/terms/us.html

Transfers of Personal Information Outside the EU:

Countries outside of the European Economic Area (EEA) do not always offer the same levels of protection to your personal data, so European law has prohibited transfers of personal data outside of the EEA unless the transfer meets certain criteria.

Many of our third parties service providers are based outside the European Economic Area (EEA) so their processing of your personal data will involve a transfer of data outside the EEA.

Whenever we transfer your personal data out of the EEA, we do our best to ensure a similar degree of security of data by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission; or

  • Where we use certain service providers, we may use specific contracts or codes of conduct or certification mechanisms approved by the European Commission which give personal data the same protection it has in Europe; or

  • Where we use providers based in the United States, we may transfer data to them if they are part of the EU-US Privacy Shield, which requires them to provide similar protection to personal data shared between Europe and the US.

If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.

Data security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know such data. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

Data retention

If you leave a comment or review, the comment or review and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

We retain your personal information only for as long as necessary to provide you with our services. However, we may also be required to retain this information to comply with legal and regulatory obligations, to resolve disputes, and to enforce our agreements. We generally keep your data for the following time period: 5 years.

If you have an account on this site or have left comments or form submissions, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Your rights

If you reside in certain territories, including the EU, you have a number of rights in relation to your personal information. While some of these rights apply generally, certain rights apply only in certain limited cases. We describe these rights below:

  • Access. You may have the right to access and receive a copy of the personal information we hold about you by contacting us using the contact information below.

  • Change, restrict, delete. You may also have rights to change, restrict our use of, or delete your personal information. Absent exceptional circumstances (like where we are required to store data for legal reasons) we will delete your personal information upon request.

  • Object. You can object to (i) our processing of some of your information based on our legitimate interests and (ii) receiving marketing messages from us after providing your express consent to receive them. In such cases, we will delete your personal information unless we have compelling and legitimate grounds to continue using that information or if it is needed for legal reasons.

  • Complain. If you reside in the EU and wish to raise a concern about our use of your information (and without prejudice to any other rights you may have), you have the right to do so with your local data protection authority.

How to Contact Us

For purposes of EU data protection law, I, Emily J. Taylor (business owner), am the data controller of your personal information. If you have any questions or concerns, you may contact me at hello@ejits.art. Alternately, you may send me mail at:
Emily J. Taylor, Ejits, 16A Elliston Road, Bristol, BS6 6QE, UK.