Three Thousand Pennies Hats
Effective as of 07/01/2022
When you purchase something from our store, as part of the buying and selling process, we collect the personal information. Such as, but not limited to: you give us such as your name, address and email address. When you visit our website we automatically receive your computer’s internet protocol (IP) address. This provides our team with information that allows us to learn information about your browser and operation system (OS).
You provide us with your personal information when competing a transaction with 3000 Hat Company. During the buying process we verify your credit card, coordinate your order, arrange shipping, and collect the necessary personal information. Your consent is a step of the purchasing process.
If, upon visiting our Site, your use is limited to browsing our Site, we will not collect any personal information from you unless you voluntarily provide it to us. However, we may request personal information from you (“User”) at all other times (hereinafter referred to as “Personal Information”). For example:
If you enroll in any and all accounts through the Site, we may ask that you provide us with certain personal information, including, your first name, last name, email address, credit card number, expiration date, mailing address, and telephone number.
If you decide to purchase any products or services from the Site, we will collect Personal Information about you. Your credit card information will used for processing.
If you choose to participate in a customer survey conducted by us or by one of our business partners, we may ask for your name, e-mail address and other information as may be required by the particular survey.
If you report a problem or submit a customer review, we will ask that you provide your name, e-mail address, membership number, address, phone number and fax number. Should you contact us for any reason other than to report a problem and/or submit a review, we may also keep a record and/or copy of your correspondence with us.
AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
Like most websites, we use automatic data collection technology when you visit the Site to record information that identifies your computer, to track your use of our Site, and to collect certain basic information about you and your surfing habits. This information includes information about your operating system, your IP addresses, browser type and language, referring and exit pages and URLs, keywords, date and time, amount of time spent on particular pages, what sections of a website you visit, and similar information concerning your use of the Site and the Services (the “Usage Information”).
Cookies and similar technologies
When you visit our Site, we may collect personal data from you automatically by using cookies or similar technologies. A cookie is a small file that can be placed on your device or browser that allows us to recognize and remember you.
Flash Cookies. Certain features of our Site may use local stored objects (or Flash Cookies) to collect and store information about your preferences or your activity on our Site. Flash Cookies are not managed by the same browser settings as those used for Browser Cookies. For more information on how you can delete Flash Cookies, please read “Where can I change the settings for disabling, or deleting local shared objects?” available at https://helpx.adobe.com/flash-player/kb/disable-local-shared-objects flash.html#main_Where_can_I_change_the_settings_for_disabling__or_deleting_local_shared_objects_Web Beacons. Certain sections of our Site and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).
Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on your personal computer or mobile device when you go offline, while Session Cookies are deleted as soon as you close your web browser.
We use both Session and Persistent Cookies for the purposes set out below:
● Strictly Necessary Cookies
Type: Session Cookies
Administered by: Us
Purpose: These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
● Cookies Policy / Notice Acceptance Cookies
Type: Persistent Cookies
Administered by: Us
● Performance Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
● Functional Cookies
Type: Persistent Cookies
Administered by: Us and/or Third-Parties
Purpose: These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
● Targeting Cookies
Type: Persistent Cookies
Administered by: Third-Parties
Purpose: These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
We do not collect Personal Information in this way, but if you’ve provided us with Personal Information, we may associate that information with the information that is collected automatically. Automatic data collection may be performed on our behalf by our services providers.
HOW WE USE YOUR INFORMATION
To identify you when you sign in to your account;
To respond to your requests and to provide you with the Services;
To respond to your inquiries and contact you about changes to the Site and/or the Services;
To send you notices (for example, in the form of e-mails, mailings, and the like) regarding products or services you are receiving, and for billing and collection purposes;
To send you information we think you may find useful or that you have requested from us;
To enhance and improve the Site or the Service, such as through personalized features and content;
To analyze the use of the Site and the Service and the people visiting to improve our content and Site and the Service;
To investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of our policies, or as otherwise required by law;
For any other purposes disclosed at the time the information is collected or to which you consent; and
Text Messages and Telephone Calls
We may disclose your personal information if we are required by law enforcement or if you violate our Terms of Service. During the payment process information is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. Your purchase transaction information is deleted once the transaction is completed. Direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is managed by brands such as: Mastercard, Visa, American Express, and Discover. PCI-DSS requirements help ensure the secure handling and proper use of credit card information by our store.
By providing us your phone number, you are consenting to us, our affiliates, or our partners contacting you via autodialed or prerecorded calls/messages and/or text messages. We may contact you at any telephone number you have provided us, including phone numbers you have made publicly available through your account, for the following purposes:
Account notifications and troubleshooting;
Dispute resolution and debt collection; or
As necessary to service your account or enforce our Terms and Conditions and policies, applicable law, or any other agreement we may have with you.
We may also contact you using autodialed or prerecorded calls/messages and/or text messages for marketing purposes (e.g., offers and promotions) if you explicitly consent to such communications, even if your number is on any national or state Do Not Call registry; your consent to receive such calls/messages is not a condition of purchasing any of our Services or using our Site. We may collect other telephone numbers for you and may place manual, non-marketing calls to any of those numbers and autodialed non-marketing calls to any landline. Messaging frequency may vary. Standard telephone minute and text charges may apply and may include overage fees if you have exceeded your plan limits. Carriers are not liable for delayed or undelivered messages. If you do not wish to receive such communications, you can contact us at info@ThreeThousandPennies.com.
In no event will any personal information collected through the short code used by our text messaging service be shared with any third party.
HOW WE SHARE YOUR INFORMATION
We may share personal information in the following circumstances or as otherwise described in this policy:
We share personal information with vendors, service providers, and consultants that need access to personal information in order to perform services for us, such as companies that assist us with web hosting, shipping and delivery, payment processing, fraud prevention, customer service, and marketing and advertising.
If you submit a product review or post content in another public area of our Services, we share this information publicly on our Services.
We may disclose personal information if we believe that disclosure is in accordance with, or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements.
We may share personal information if we believe that your actions are inconsistent with our Terms & Conditions or other user agreements or policies, if we believe that you have violated the law, or if we believe it is necessary to protect the rights, property, and safety of The 3000 Hat Company, our users, the public, or others.
We share personal information with our lawyers and other professional advisors where necessary to
obtain advice or otherwise protect and manage our business interests.
We may share personal information in connection with, or during negotiations concerning, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
Personal information is shared between and among The 3000 Hat Company and our current and future parents, affiliates, and subsidiaries and other companies under common control and ownership.
We share personal information with your consent or at your direction.
We may also share aggregated or de-identified information that cannot reasonably be used to identify you.
HOW WE PROTECT YOUR INFORMATION
WHO WE DISCLOSE YOUR PERSONAL INFORMATION TO
We do not disclose your Personal Information to third parties for their direct marketing purposes.
We take precautions to protect your personal information. We follow best practices to ensure that information not inappropriately lost, misused, accessed, disclosed, altered, or destroyed.
If you provide us with your credit card information, the information is encrypted. No method of transmission over the Internet or electronic storage is completely secure. But, we follow the PCI-DSS requirements accepted industry standards, to minimize incidents.
We, like many businesses, sometimes hire other companies to perform certain business-related functions. Examples include mailing information, maintaining databases, hosting services, and processing payments. When we employ another company to perform a function of this nature, we provide them with the information that they need to perform their specific function, which may include Personal Information.
If our assets are acquired, we expect that the information that we have collected, including Personal Information, would be transferred along with our other business assets.
We may disclose your Personal Information and Usage Information to government authorities and to other third parties when compelled to do so by government authorities, at our discretion, or otherwise as required by law, including but not limited to in response to court orders and subpoenas. We may also disclose your Personal Information and Usage Information when we have reason to believe that someone is or may be causing injury to or interference with our rights or property, other users of this Site, or anyone else that could be harmed by such activities.
Within the last twelve (12) months, we have shared each of the categories of personal information collected in connection with this website with affiliates and service providers.
DO WE SELL OR RENT YOUR PERSONALLY IDENTIFIABLE INFORMATION?
No, as a general rule, we do not sell or rent your personally identifiable information to any one. If and whenever we intend to share your personally identifiable information with a third party (other than to a business partner as provided herein), you will be notified at the time of data collection or transfer, and you will have the option of not permitting the transfer. However, we may from time to time rent or sell demographic information in the aggregate that does not contain your personally identifiable information.
HOW YOU CAN UPDATE, CORRECT, OR DELETE YOUR PERSONALLY IDENTIFIABLE INFORMATION
You may edit your personally identifiable information and your password at any time by sending an e-mail request to info@ThreeThousandPennies.com
ARE CHILDREN ALLOWED TO USE THE SITE?
Our Services are not designed for persons under the age of 18. If you have reason to believe that a child under the age of 13 has provided personal data to us, please contact us.
HOW TO OPT-OUT OF PROMOTIONAL EMAILS
If at any time, you no longer want to receive promotional e-mails and/or direct mailings, you may opt-out at any time by simply sending an e-mail request to info@ThreeThousandPennies.com. You may also choose to unsubscribe from our emails by following the instructions in the bottom of the email.
COMPLIANCE WITH THE CCPA
The California Consumer Privacy Act of 2018 (CCPA) gives consumers more control over the personal information that businesses collect about them.
Disclosure and Access Rights
You have the right to request that we disclose to you certain information regarding our collection and use of personal information specific to you over the last twelve (12) months.
Such information includes:
the categories of personal information we collected about you;
the categories of sources from which the personal information is collected;
our business or commercial purpose for collecting such personal information;
the categories of third parties with whom we share the personal information;
the specific pieces of personal information we have collected about you; and
whether we disclosed your personal information to a third party, and, if yes, the categories of personal information that each recipient obtained.
You have the right to request that we delete any of your personal information that we retain, subject to certain statutory exceptions, including, but not limited to, our compliance with U.S., state, local and non-U.S. laws, rules and regulations. We will notify you in writing if we cannot comply with a specific request and provide an explanation of the reasons.
We will not discriminate against you for exercising your rights under the CCPA, including by denying service, suggesting that you will receive, or charging, different rates for services or suggesting that you will receive, or providing, a different level or quality of service to you.
You may request that businesses stop selling your personal information (“opt-out”). With some exceptions, businesses cannot sell your personal information after they receive your opt-out request unless you later provide authorization allowing them to do so again. Businesses must wait at least 12 months before asking you to opt back in to the sale of your personal information.
How to Exercise Your Rights
To exercise any of your rights under the CCPA, or to access this notice in an alternative format, please submit a request on your behalf info@ThreeThousandPennies.com
COMPLIANCE WITH THE GDPR
For the purpose of clarity, data processing of individuals in the European Union (EU) is carried on only occasionally and as such, no EU representative has been designated, however the General Data Protection Regulation (GDPR) (EU) 2016/679 may apply to you if you are resident of, reside in or are located in the EU.
If the GDPR applies, this paragraph applies in addition to the above paragraphs to the extent that we are acting as a “Data Controller” with respect to your Personal Information.
Consent and right to withdraw consent
Our legal bases for collecting and processing your Personal Information for the purposes listed above may be:
your express consent;
for our legitimate interests in providing information about the Services to you or providing the Services to you and improving and developing the Services; and/or
in order to perform a contract (whether verbal or written) for you in order to provide paid Services to you.
We have summarized your rights under the GDPR, but please note that not all of the details of your rights have been included in these summaries. Please ensure to read the relevant laws and guidelines for a full explanation of these rights. You may exercise these rights by contacting us to notify us of the rectification or provide information to complete your Personal Information.
(a) Right of access
You have a right to obtain confirmation as to whether or not your Personal Information is being processed and, if so, you may request access to that Personal Information and further information including the purposes of the processing, the categories of Personal Information concerned and the recipients of the Personal Information. The first copy of such information will be provided free of charge, but additional copies may be subject to a reasonable fee.
(b) Right of rectification
You have the right to obtain the rectification of inaccurate Personal Information concerning you and you have the right to have incomplete Personal Information completed.
(c) Right to erasure
You have the right to obtain the erasure of your Personal Information without undue delay if:
the Personal Information is no longer necessary in relation to the purposes for which they were collected or otherwise processed;
you withdraw consent to consent-based processing;
you object to the processing under certain rules of the GDPR; or
the Personal Information has been unlawfully processed.
However, there are exclusions of the right to erasure such as where processing is necessary to exercise the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defense of legal claims.
(d) Right to restriction of processing
You have the right to restrict the processing of your Personal Information if:
you contest the accuracy of the Personal Information;
processing is unlawful but you oppose erasure;
we no longer need the Personal Information for the purposes of our processing, but you require Personal Information for the establishment, exercise or defense of legal claims; or
you have objected to processing, pending the verification of that objection.
Where processing has been restricted on this basis, we may continue to store your Personal Information, however we will only process it with your consent, for the establishment, exercise or defense of legal claims, for the protection of the rights of another natural or legal person, or for reasons of important public interest.
(e) Right to data portability
To the extent where your Personal Information has been provided based on consent, under a contract, or where processing is carried out by automated means, you have a right to receive Personal Information concerning you in a structured, commonly used and machine-readable format and you have a right to transmit that data to a Data Controller, except where this would adversely affect the rights and freedoms of others.
(f) Right to object
You have the right to object to our processing of your Personal Information for direct marketing purposes. If you make such an objection, we will cease to process your Personal Information for this purpose.
WHERE IS THE SITE OPERATED AND WHERE IS MY INFORMATION STORED?
The Site and the Services are operated in the United States. If you are located outside of the United States, please be aware that any information you provide to us will be transferred to the United States. By providing us with any information through the Site or the Services, you consent to this transfer.