Privacy policy
Who are the persons concerned?
US customers: This Privacy Policy has been compiled to better serve those who are concerned with how their 'Personally Identifiable Information' (PII) is being used online. PII, as described in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.
EU customers: However, this Privacy Policy is in compliance with the Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR), which has been adopted on 25 May 2018. Under the GDPR the “personal data” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Hereinafter all personal information is referred to as “personal data”.
What personal data do we collect from the people that visit our blog, website or app?
When ordering or registering on our site, as appropriate, you may be asked to enter your name, email address, mailing address or other details which are necessary to fulfil our commitments.
When do we collect personal data?
We collect personal data from you when you place an order, subscribe to a newsletter or enter information on our site.
How do we use your personal data?
We may use the personal data we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
To personalise your experience and to allow us to deliver the type of content and product offerings in which you are most interested.
To improve our website in order to better serve you.
To quickly process your transactions.
To send periodic emails regarding your order or other products and services.
To follow up with them after correspondence (live chat, email or phone inquiries)
What legal basis do we manage your personal data in line with GDPR?
Contribution of the person concerned (voluntary, specific, unambiguous, information-based, data-management purpose), or
Legitimate interest of a data controller or third party (maintaining a customer relationship, debt management), or
Fulfilment of a contract, or
Compliance with legal obligations.
How do we protect your personal data?
Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.
Your personal data is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the personal data confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal data.
All transactions are processed through a gateway provider and are not stored or processed on our servers.
What rights do you have for managing your personal data in line with the GDPR?
Right to information - how to handle your personal information and what are your rights in this regard.
Right of access - regarding that your personal data is being processed is there, and if so, it is entitled to us by us you have access to your personal data. This will allow you to verify your personal data privacy legislation.
Right to rectify - you are entitled to request the correction or addition of inaccurate or incomplete personal information.
Right to cancel - also known as "right to be forgotten" ensures that you can request the deletion of your personal data if they are not necessarily handled or otherwise.
Right to restrict data management - you are entitled to restrict the continued handling of your personal information, in this case we will not treat your data except for storage.
Right to data storage - you are eligible for certain personal information we manage to request a copy and submit them to another data handler forward.
Right to protest - you are entitled to object to certain data manipulations (eg. direct marketing).
Automated decision-making and profiling rights - you are entitled to request that we do not have legal or other significant consequences for you to decide on your own decision-making based solely on automated processing (including profiling).
Do we use 'cookies'?
Yes. Cookies are small files that a site or its service provider transfers to your computer's hard drive through your Web browser (if you allow) that enables the site's or service provider's systems to recognise your browser and capture and remember certain information. For instance, we use cookies to help us remember and process the items in your shopping cart. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.
We use cookies to:
Help remember and process the items in the shopping cart.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since browser is a little different, look at your browser's Help Menu to learn the correct way to modify your cookies.
If you turn cookies off, some features will be disabled. It won't affect the user's experience that make your site experience more efficient and may not function properly.
However, you will still be able to place orders.
Third-party disclosure
We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information.
Third-party links
We do not include or offer third-party products or services on our website.
Opting out:
By emailing us
How does our site handle Do Not Track signals?
We honour Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place
Does our site allow third-party behavioural tracking?
It's also important to note that we allow third-party behavioural tracking
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years old, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States' consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.
We do not specifically market to children under the age of 13 years old.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify you via email - Within 7 business days
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
Send information, respond to inquiries, and/or other requests or questions
To be in accordance with CANSPAM, we agree to the following:
Not use false or misleading subjects or email addresses.
If at any time you would like to unsubscribe from receiving future emails, you can email us at info@itsmashu.com or customercare@itsmashu.com and we will promptly remove you from ALL correspondence.
Contacting Us
If there are any questions regarding this privacy policy, you may contact us using the information below.
+442078135673
(Registration number: 11045915) Mashu Limited
C/O Rayner Essex Llp Tavistock House South, Tavistock Square, London, United Kingdom, WC1H 9LG