Privacy Policy

 

Privacy Policy

OVERVIEW

This Privacy Policy outlines how HERVEU collects, uses, and protects your personal information when you visit or make a purchase from our store.

SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?

When you purchase something from our store, as part of the buying and selling process, we collect personal information you provide, such as your name, address, and email address.

When you browse our store, we also automatically receive your computer’s internet protocol (IP) address, which helps us learn about your browser and operating system.

Email marketing (if applicable): With your permission, we may send you emails about our store, new products, and updates.

SECTION 2 – CONSENT

How do you get my consent?
When you provide personal information to complete a transaction, verify your credit card, place an order, arrange for delivery, or return a purchase, you imply your consent for us to collect and use it for that specific purpose only.

If we request your information for a secondary reason (e.g., marketing), we will ask for your expressed consent or provide you with an opportunity to decline.

How do I withdraw my consent?
If you change your mind after opting in, you may withdraw your consent for us to contact you, or for the continued collection, use, or disclosure of your information at any time by contacting us at herveubeautysupport@gmail.com.

SECTION 3 – DISCLOSURE

We may disclose your personal information if required by law or if you violate our Terms of Service.

SECTION 4 – SHOPIFY

Our store is hosted on Shopify Inc., which provides the e-commerce platform that enables us to sell our products and services.

Your data is stored through Shopify’s data storage, databases, and the general Shopify application. Your data is secured behind a firewall.

Payment:
If you use a direct payment gateway to complete your purchase, Shopify stores your credit card data securely. It is encrypted via the Payment Card Industry Data Security Standard (PCI-DSS). Your transaction data is retained only as long as necessary to complete the purchase, after which it is deleted.

All direct payment gateways comply with PCI-DSS standards, which help ensure the secure handling of credit card data by our store and its providers.

For more information, please review Shopify’s Terms of Service and Privacy Policy.

SECTION 5 – THIRD-PARTY SERVICES

Third-party providers we use will only collect, use, and disclose your information as necessary to perform the services they provide.

However, specific providers (e.g., payment gateways) have their own privacy policies regarding the information we must provide for purchase-related transactions. We encourage you to review their policies to understand how your information will be handled.

Note: Some providers may operate in different jurisdictions. For example, if you are located in Canada and your transaction is processed in the U.S., your information may be subject to disclosure under U.S. legislation, including the Patriot Act.

Once you leave our website or are redirected to a third-party platform, this Privacy Policy and our Terms of Service no longer apply.

Links:
External links on our store may direct you away from our site. We are not responsible for the privacy practices of other websites and recommend reviewing their privacy statements.

SECTION 6 – SECURITY

We take reasonable precautions and follow industry best practices to ensure your personal information is not inappropriately lost, misused, accessed, disclosed, altered, or destroyed.

If you provide credit card information, it is encrypted using SSL technology and stored with AES-256 encryption. Although no online method is 100% secure, we follow all PCI-DSS requirements and implement additional industry-recognized safeguards.

SECTION 7 – COOKIES

Below are cookies we use. This list helps you decide whether you want to opt out:

  • _session_id: Unique token, sessional – Stores session data (referrer, landing page, etc.)

  • _shopify_visit: No data held, persistent for 30 minutes from last visit – Tracks number of visits

  • _shopify_uniq: No data held, expires at midnight the next day – Counts visits by a customer

  • cart: Unique token, persistent for 2 weeks – Stores cart contents

  • _secure_session_id: Unique token, sessional

  • storefront_digest: Unique token, indefinite – Determines access for password-protected stores

SECTION 8 – AGE OF CONSENT

By using this site, you confirm that you are at least the age of majority in your state or province of residence, or that you are the age of majority and have given consent for any minor dependents to use this site.

SECTION 9 – CHANGES TO THIS PRIVACY POLICY

We reserve the right to update this Privacy Policy at any time. Changes will take effect immediately upon posting on the website. If we make material changes, we will update this page to inform you of what has been modified.

If our store is acquired or merged with another company, your information may be transferred to the new owners so we may continue to serve you.

SECTION 10 – TEXT MARKETING

Text marketing and notifications (if applicable):
By entering your phone number at checkout and completing a purchase, you agree to receive text notifications (such as order confirmations and abandoned cart reminders) and marketing messages from HERVEU.
You will receive no more than 5 marketing texts per month. To opt out, reply STOP at any time. Message and data rates may apply.

QUESTIONS AND CONTACT INFORMATION

To access, correct, amend, or delete any personal information we have about you, or to register a complaint or request more information, please contact our Privacy Compliance Officer at:
herveubeautysupport@gmail.com
[Re: Privacy Compliance Officer]