Privacy policy
Last updated: 21 March 2021
The purpose of this privacy policy is to formalize our commitment to respecting the privacy of users of the Little Silk Stories website (https://littlesilkstories.com) (also referred to as "Site", "our", "we", "us") operated by Ameya Group.
We take the protection of your personal data very seriously.
Personal data means any information relating to an identified or identifiable natural person. We collect and process personal data in the context of the provision of our services or the communication about these services exclusively, in strict accordance with the General Data Protection Regulations 2016/679 of April 27, 2016 ("GDPR") and under the conditions set out below.
We only collect personal data that is adequate, relevant and limited to what is necessary with regard to the purposes for which it is processed. Thus, you will never be asked to fill in personal data considered to be “sensitive”, such as your racial or ethnic origins, your political, philosophical or religious opinions.
By continuing to browse this Site, you authorize us to collect and process your personal data in accordance with this privacy policy. If you do not accept the terms of this policy, please refrain from using the Site and it's services.
1. In what cases do we collect your personal data and what data is collected?
We may collect and store your personal data when you browse the Site, create an account, create an order, and contact us.
We use your personal data to enable the implementation and management of the Site, our services, and to respond to your specific requests. We also use your personal data for the purpose of operating and improving our services, the Site, and our approach.
If you have opted in to receive emails and messages from us, you will then receive emails or messages relating to our products and promotions.
1.1 Navigation on the Site
Connection data. Each time you connect to our Site, we collect personal data such as, your IP address and the MAC address of your computer, the date and time of connection, as well as information on the browser you are using.
We also collect information to identify how you access the Site, which pages are viewed and for how long. In this context, we use Cookies as specified in paragraph 6 below.
1.2 Creation of an account
Creation of an account is not mandatory to use our services, however it can provide many benefits like faster checkout, keeping track your past orders, etc. If you wish to create an account, you will be asked to enter a certain number of personal data such as your first and last names and your email address.
1.3 Payment
We use Stripe and Paypal (via Mollie B.V) to facilitate payments processing on the Site. To this end, you agree that we may collect and share your personal data in order to allow the proper functioning of payment processing services provided by Stripe or Paypal. We do not store your payment details.
1.4 Subscription to our Newsletter
You can give your prior consent to the receipt of our newsletters concerning news, new products, services and promotions, as part of the services.
This consent can be provided during account creation, when placing an order, or by entering your email address in any of the places provided for this purpose on the Site.
In any event, you have the right to withdraw your consent to the receipt of such newsletters at any time and free of charge by clicking the 'unsubscribe' link at the bottom of the newsletters. You could also write to us at info@littlesilkstories.com requesting us to stop sending you specific emails or messages.
1.5 Contacts
In order to respond to requests you may make to our customer service via the contact us form on the website, chat feature on the website, email, or phone, we may use your first and last names, email address, and telephone number in order to serve you better.
2. How do we protect your personal data?
We have implemented technical and organizational security measures to guarantee the security, integrity and confidentiality of all your personal data, in order to prevent it from being distorted, damaged or that third parties have access. We ensure an appropriate level of security, taking into account the state of knowledge, the costs of implementation and the nature, scope, context and purposes of the processing as well as the risks and their probability.
However, it is specified that no security measure being infallible, we are not able to guarantee absolute security to your personal data.
In addition, it is your responsibility to ensure the confidentiality of the password allowing you to access your account. Do not share this information with anyone. If you share your computer, be sure to sign out before leaving a service.
3. In what cases do we share your personal data?
3.1 Sharing your personal data with third-party companies (sub-processors of the Site)
When you browse the Site, your personal data may be transmitted to external service providers (sub-processors). These third parties provide service on our behalf in order to allow the proper functioning of various services.
Since many of our sub-processors are multinational organisation, your personal data may be transferred to countries outside the EEA (such as Canada and USA) for further processing.
Our webite is hosted by Shopify Inc. whose datacenters are located in North America, mainly in the USA. All ecommerce transaction data is stored and served from their datacenters in North America. Other website content may be locally served through datacenters nearer to you with the help of content delivery networks (CDNs). Please consult Shopify's privacy policy to better understand how they collect, store, and share your personal information.
Below is a list of sub-processors the Site uses and which may have access to your personal data. You can click on the name of the entity to view their privacy policy. For any questions on how the below sub-processors collect, store, and share your personal information kindly reach out to them directly.
| Entity | Services provided | Headquarters |
|---|---|---|
| Shopify International Ltd. | Website hosting, software to build and maintain the platform and it's various services, automated transactional emails | Ireland |
| Stripe Payments Europe Limited | Payment portal to make payments on the Site | Ireland |
| Mollie B.V | Payment intermediary between the Site and Paypal | Netherlands |
| Paypal | Payment portal to make payments on the Site | Luxembourg |
| Google Ireland Limited | Gsuite - email, file storage, etc. |
Ireland |
| Google LLC |
Google Analytics - data tracking and analytics Google ads and retargeting |
USA |
| Facebook Ireland Ltd. | Facebook and Instagram ads and retargeting | Ireland |
| La Poste | Delivery of orders via Colissimo or Chronopost | France |
| UPS Europe SA | Delivery of orders via UPS | Belgium |
| AfterShip Ltd. | Delivery tracking services for current and past orders | USA |
| FORSBERG+two /v Björn Aston Forsberg | Invoice generation for orders placed on our Site | Denmark |
| Ordersify | Customer notifications for out of stock products when restocked | Vietnam |
| Futurlog | Order fulfillment | France |
3.2 Sharing with the authorities
We may be required to disclose your personal data to the administrative or judicial authorities when their disclosure is necessary for the identification, arrest or prosecution of any individual likely to prejudice our rights, any other user or a third. Finally, we may be legally bound to disclose your personal data and cannot in this case oppose it.
4. How long do we keep your personal data?
We will only keep your personal data for the time of your registration on the Site in order to ensure your identification during your connection to your account and to allow the provision of the services.
Thus, if you unsubscribe from the Site, your personal data will be erased and only kept in the form of an archive for the purpose of establishing proof of a right or a contract.
In any event, we will keep your personal data for a period not exceeding that necessary with regard to the purposes for which they are processed in accordance with the uses set out in this privacy policy and in compliance with laws and regulations.
5. Cookies: how do we use them?
5.1 What is a cookie?
A cookie is a text file which is stored on your terminal (computer, smartphone, tablet or other devices) when you browse the internet. In particular, a cookie file allows its issuer (often a website), during its period of validity, to recognize the terminal concerned each time this terminal accesses digital content containing cookies from the same issuer.
How long a cookie is stored on your terminal can vary depending on the type of cookie.
You have full control to either accept or reject all cookies, cookies from certain sites, or at any time delete the cookies stored on your terminal. Please see section 5.3 on how to do this.
5.2 What are the cookies used on our Site for?
We use different types of cookies.
Strictly necessary cookies: These are necessary for the proper functioning of the Site. You cannot opt-out of these cookies. You could block them in your browser settings but this would majorly affect how the Site functions for you.
Performance cookies: These help us to better understand how users interact with the Site in order for us to improve the Site and it's services. Google Analytics is one important component of these cookies, and we use IP anonymization so all statistics are captured anonymously.
Marketing cookies: These help us to show you relevant offers based on your interests and retarget you based on your past activity on the Site. We mainly use Google and Facebook cookies to help our marketing efforts.
Please note that we do not control third-party cookies.
5.3 How can you control the cookies used?
You can configure your browser software at any time so that cookies are saved on your terminal or, on the contrary, that they are rejected (either systematically or according to their issuer). You can also configure your browser software so that the acceptance or rejection of cookies is promptly offered to you, before a cookie can be saved in your terminal.
Please note: any configuration is likely to modify your browsing on the internet and your conditions of access to certain services requiring the use of cookies. We decline all responsibility for the consequences linked to the degraded functioning of our services resulting from the impossibility of saving or consulting the cookies necessary for their functioning.
In order to configure your choice of cookie management on your browser software, please see here instructions for some popular browsers - Chrome, Firefox, Safari, Internet Explorer. For other browsers please refer to the help section in the browser menu on how to modify cookie preferences.
Click here for more information on how to limit the use of cookies.
6. What are your rights?
You have rights to your personal data that you have shared with us via the Site. In accordance with the regulations on the protection of personal data, in particular Articles 15 to 22 of the GDPR, and after proving your identity, you have the right to request access to personal data concerning you, the modification or deletion thereof.
You can write to us at info@littlesilkstories.com in order to exercise your rights or you could also exercise your rights directly on our GDPR and CCPA compliance pages.
In addition, you can unsubscribe from our newsletter at any time by clicking on the link which allows unsubscribing at the bottom of each email.
7. Can we modify the privacy policy?
We reserve the right to modify the privacy policy at any time. It is therefore recommended that you consult it regularly. If there are any changes, we will post those changes on this page and in places we deem appropriate based on the subject matter and the extent of the changes.
Your use of the Site after any modification means that you accept these modifications. If you do not accept certain changes to this policy, you must stop using the Site.
8. Data Protection Officer and contact
The designated data protection officer (DPO) for the Site can be contacted at info@littlesilkstories.com.
9. The National Commission for Information Technology and Liberties ("CNIL")
We remind you that you can contact the CNIL directly on the CNIL website or by post to the following address: Commission Nationale de l'Informatique et des Libertés (CNIL), 3 Place de Fontenoy - TSA 80715, 75334 PARIS CEDEX 07.