Privacy Policy
Dear valued customer,
this Privacy Policy (hereinafter -- "Policy") will answer the most important questions about how we collect, use and store information about you whenever you are visiting https://hoola.com/ (hereinafter -- "Website") or making a purchase on the Website. This information is important to you, thus we recommend that you would read this Policy carefully before using the Website.
1. Who is responsible for handling your personal data
1.1. Sofa Yoga (hereinafter referred to as the "Hoola", "Company" "we", "us", "our") is a brand name used and operated by a business entity Wire Salad OÜ, which is a limited liability company incorporated under the laws of Estonia (company reg. No. 16105764) with a registered address at Harjumaa, Tallinn linn, Juhkentali tn 8, 10132 Estonia, European Union.
1.2. We care about the protection of your personal information and follow the requirements of applicable data protection laws protecting information about you at our Company.
3. Which information do you have to provide us with
Please refer to Section 2 above - you have to provide us with the information which we need to process your purchase requests that you submit on the Website, as well as to handle your inquiries, requests, claims, testimonials, providing personalized services etc.
Please be noted that we will be able to provide you with quality services only if we have correct and accurate information about you. If you fail to provide us with true and accurate information or would not provide the required information intentionally -- we will take no responsibility for the quality or fitness of our services.
4. What do we do with your information
We use your information for the purposes specified in Section 2 above. These are the main group of actions that we do with your personal information:
(a) We use your information to process your purchase request and provide you with your purchased services;
(b) We use your information to send you marketing and promotional materials;
(c) We use your information to contact you from time to time to inform you about discounts, specials deals, or personalized offers, or to provide general information and updates about our services;
(d) We use your information for compliance with the applicable laws - for example we must save your personal information records for accounting or for substantiation of the user reviews, in case you would leave us your review/feedback of services;
(e) We might transfer your personal information to third parties that are our service providers or business partners, when that is needed for fulfilling your order, or when that is necessary for protecting our rights.
5. Sharing your personal information
5.1. We share your personal information with the following subjects:
(a) Payment processing companies (Stripe Inc., PayPal Inc.) and banks to which your paid amounts are transferred for us;
(b) attorneys, attorney's assistants, notaries, bailiffs, auditors, consultants, IT service providers, electronic communications service providers, insurance companies, archiving services, and other subjects that provide services to the Company;
(c) courts, law enforcement, and other state institutions, when we are required by law to do so, or if you violate this Policy or Terms & Conditions of the Website;
(d) third party partners to verify your identity in connection with your use of certain aspects of the Website;
(e) Our marketing partners to deliver you with personalized marketing content;
(f) Our Website online store management system service provider;
(g) Analytical tools service providers (such as Google Analytics).
5.2. We use Stripe and PayPal for processing your online payments and whenever you will choose a direct payment gateway to complete your purchase, then the payment processing companies may store your credit card information. In no case Sofa Yoga will not save or store any of your credit card data as we will only receive a tokenized confirmation whether your payment was successful or not. Any credit card information that you would provide on the Website will be transferred to the payment processing company in encrypted form through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our Website.
5.3. In general, the third-party providers used by us will only collect, use, and disclose your information to the extent necessary to allow them to handle your payment. However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies for the information we are required to provide to them for your purchase-related transactions. We recommend that you read Stripe privacy policy (https://stripe.com/privacy) and PayPal privacy policy so you can understand how your personal information will be handled by these payment services providers.
5.4. In most cases personal data are processed and transmitted in the territory of the European Union and the European Economic Area, however sometimes it is necessary for us to transfer your details to our service providers that are located outside European Union. We always make sure to have appropriate agreements covering data processing provisions and we perform regular audits to make sure that the third parties, located outside of the EU, are following GDPR rules. When this is permitted by law and is required for the reasons given in this policy, we may disclose information about you to third parties that are located in the United States and are compliant with EU-U.S. Privacy Shield Framework. You may download a copy of the EU-U.S. Privacy Shield Framework at https://www.privacyshield.gov/EU-US-Framework.
6. Information security
6.1. To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered, or destroyed.
6.2. If you provide us with your credit card information, the information will be encrypted using secure socket layer technology (SSL). Although no method of transmission over the Internet or electronic storage is 100% secure,we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
7. Your rights
7.1. GDPR and other laws provide you with certain rights, procedures for implementation of and exceptions to these rights. When allowed by law, you can:
(a) Submit a request for confirmation that the Company is processing the data related to you. If the Company process the data related to you, request access to the data processed and related information;
(b) Submit a request to correct inaccurate or incorrect information used or to supplement it when it is not complete;
(c) Submit a request to delete the information we have about you if we use it illegally;
(d) Submit a request to restrict the processing of your information -- if you dispute the accuracy of the data or object to the processing of the data, if you do not accept that your data would be deleted which was illegally processed, or if you need the data to claim, execute or defend legal claims;
(e) Object to collection, use and storage of your information at our Company -- when we process data based on the Company's legal and / or third party interests;
(f) Submit a request to transfer (receive) the data that you provided to us under the contract or giving the consent and which we process by automated means, generally using electronic form;
(g) To withdraw any consents given to us regarding information used about you - when we use the data based on your consent;
(h) To lodge a complaint with a supervisory authority and seek a judicial remedy.
7.2. Whenever we receive your request to exercise any of the rights specified above we may need to verify your identity in order to determine if the request is provided by the person about whom we have personal information and in order to determine your identity. Accordingly, we might ask you for additional information for verification purposes and we would use such information for this verification purpose only.
7.3. If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence, your place of work or the place of the alleged infringement. Our data processing is supervised by Estonian Data Protection Inspectorate, registered office at 39 Tatari St., 10134 Tallinn, Estonia, email info@aki.ee, +372 627 4135, https://www.aki.ee/.
8. Age of consent
8.1. By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
8.2. We do not process any personal data of minors that are 16 years old or younger. If you are a minor as specified herein, we request that you would stop using the Website immediately. We have a right to delete your personal data without separate notification if we have a reason to believe that you are younger than 16 years old.
9. Cookies
9.1. Cookies are small text files that are stored by your browser on your device (e.g. computer, mobile phone, tablet) when you browse websites. Other technologies, including data we store on your web browser or device, identifiers associated with your device, and other software, are used for similar purposes. They are widely used to make websites work or work in a better, more efficient way. In this policy, we refer to all of these technologies as cookies.
9.2. Our website uses cookies as described in the table below:
9.3. You can configure your browser to decline some or all cookies or to ask for your permission before accepting them. Please note that by deleting cookies or disabling future cookies you may be unable to access certain areas or features of our website. For information on how to adjust or change your browser settings, visit www.aboutcookies.org or www.allaboutcookies.org. For information on, policy and control options for third-party cookies, please read cookie policies of such third parties.
10. Changes to this privacy policy
We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it. If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
11. Questions and contact information
If you have any questions, inquiries, requests, or complaints regarding our use of your personal information, please contact our customer support at support@hoola.com or filling in a contact form on the Website (https://hoola.com/contact).
You can also send us a post mail at:
Wire Salad OÜ
Harjumaa, Tallinn linn, Juhkentali tn 8, 10132 Estonia, European Union
Phone: +1 928 297 0352