Privacy policy

PRIVACY STATEMENT

----

This Policy applies to The Heritage Forge, and it governs any and all data collection and usage by us. Through the use of theheritageforge.com, you are therefore consenting to the data collection procedures expressed in this Policy.

Please note that this Policy does not govern the collection and use of information by companies that The Heritage Forge does not control, nor by individuals not employed or managed by us. If you visit a website that we mention or link to, be sure to review its privacy policy before providing the site with information. It is highly recommended and suggested that you review the privacy policies and conditions of any website you choose to use or frequent to better understand the way in which websites garner, make use of and share the information collected.

Specifically, this Policy will inform you of the following.

  1. What personally identifiable information is collected from you through our website;
  2. Why we collect personally identifiable information and the legal basis for such collection;
  3. How we use the collected information and with whom it may be shared;
  4.  What choices are available to you regarding the use of your data; and
  5. The security procedures in place to protect the misuse of your information.

SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.

The data we collect from you will be stored for no longer than necessary. The length of time we retain said information will be determined based upon the following criteria: the length of time your personal information remains relevant; the length of time it is reasonable to keep records to demonstrate that we have fulfilled our duties and obligations; any limitation periods within which claims might be made; any retention periods prescribed by law or recommended by regulators, professional bodies or associations; the type of contract we have with you, the existence of your consent, and our legitimate interest in keeping such information as stated in this Policy.

The Heritage Forge greatly respects your privacy. We do maintain and reserve the right to contact you if needed for non-marketing purposes (such as bug alerts, security breaches, account issues, and/or changes in The Heritage Forge products and services, or changes to this Policy).  In certain circumstances, we may use our website, newspapers, or other public means to post a notice.

SECTION 2 - CONSENT

How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.

How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at Mike@theheritageforge.com or mailing us at:
The Heritage Forge
2326 W Ave M8 Palmdale California US 93551

SECTION 3 - DISCLOSURE

The Heritage Forge may not use or disclose the information provided by you unless we are required by law to do so, if you violate our Terms of Service, or under the following circumstances:

  • as necessary to provide services or products you have ordered;
  • in other ways described in this Policy or to which you have otherwise consented;
  • in the aggregate with other information in such a way so that your identity cannot reasonably be determined;
  • as required by law, or in response to a subpoena or search warrant;
  • to outside auditors who have agreed to keep the information confidential;
  • as necessary to enforce the Terms of Service on our website;
  • as necessary to maintain, safeguard and preserve all the rights and property of The Heritage Forge.

SECTION 4 - SHOPIFY

Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.

Payment:
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).

SECTION 5 - THIRD-PARTY SERVICES

In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.

Links
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.

SECTION 6 - SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

SECTION 7 - COOKIES / OPTING OUT

Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
_session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).
_shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits
_shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.
cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.

All users and visitors to our website have the option to discontinue receiving communications from us by way of email or newsletters. To discontinue or unsubscribe from our website please send an email that you wish to unsubscribe to support@theheritageforge.com. If you wish to unsubscribe or opt-out from any third-party websites, you must go to that specific website to unsubscribe or opt-out. The Heritage Forge will continue to adhere to this Policy with respect to any personal information previously collected.

SECTION 8 - AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.

SECTION 9 - CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.

If at any point in time The Heritage Forge decides to make use of any personally identifiable information on file, in a manner vastly different from that which was stated when this information was initially collected, the user or users shall be promptly notified by email. Users at that time shall have the option as to whether to permit the use of their information in this separate manner.

SECTION 10 - LINKS TO OTHER WEBSITES

Our website does contain links to affiliate and other websites. The Heritage Forge does not claim nor accept responsibility for any privacy policies, practices and/or procedures of other websites. Therefore, we encourage all users and visitors to be aware when they leave our website and to read the privacy statements of every website that collects personally identifiable information. This Policy applies only and solely to the information collected by our website.

SECTION 11 - NOTICE TO EUROPEAN UNION USERS

The Heritage Forge's operations are located primarily in the United States. If you provide information to us, the information will be transferred out of the European Union (EU) and sent to the United States. (The adequacy decision on the EU-US Privacy became operational on August 1, 2016. This framework protects the fundamental rights of anyone in the EU whose personal data is transferred to the United States for commercial purposes. It allows the free transfer of data to companies that are certified in the US under the Privacy Shield.) By providing personal information to us, you are consenting to its storage and use as described in this Policy. 

Your Rights as a Data Subject

Under the regulations of the General Data Protection Regulation ("GDPR") of the EU you have certain rights as a Data Subject. These rights are as follows:

  • The right to be informed: this means we must inform you of how we intend to use your personal data and we do this through the terms of this Policy.
  • The right of access: this means you have the right to request access to the data we hold about you and we must respond to those requests within one month. You can do this by sending an email to support@theheritageforge.com.
  • The right to rectification: this means that if you believe some of the data we hold is incorrect, you have the right to have it corrected. You can do this by logging into your account with us, or by sending us an email with your request. You can do this by sending an email to  support@theheritageforge.com.
  • The right to erasure: this means you can request that the information we hold about you be deleted, and we will comply unless we have a compelling reason not to, in which case you will be informed of the reason. You can do this by sending an email to  support@theheritageforge.com.
  • The right to restrict processing: this means you can change your communication preferences or opt-out of certain communications. You can do this by sending an email to support@theheritageforge.com.
  • The right of data portability: this means you can obtain and use the data we hold for your own purposes without explanation. If you wish to request a copy of your information, contact us at support@theheritageforge.com.
  • The right to object: this means you can file a formal objection with us regarding our use of your information with regard to third parties, or its processing where our legal basis is our legitimate interest in it. To do this, please send an email to  support@theheritageforge.com.

In addition to the rights above, please rest assured that we will always aim to encrypt and anonymize your personal information whenever possible. We also have protocols in place in the unlikely event that we suffer a data breach and we will contact you if your personal information is ever at risk. For more details regarding our security protections see the section below or visit our website at theheritageforge.com.

SECTION 12 - SMS PRIVACY

When you opt in to receive SMS communications from The Heritage Forge, we collect and store your mobile phone number and consent preferences. This information is used solely for sending transactional and marketing text messages related to our products and services.

SMS consent is not shared with third parties for their marketing purposes. We may use trusted service providers to facilitate message delivery and manage our communications program.

You may withdraw your consent at any time by replying STOP to any SMS message from us.

SECTION 13 - ACCEPTANCE OF TERMS

By using this website, you are hereby accepting the terms and conditions stipulated within this Privacy Policy Agreement. If you are not in agreement with our terms and conditions, then you should refrain from further use of our sites. In addition, your continued use of our website following proper notification or the posting of any updates or changes to our terms and conditions, shall mean that you agree and accept such changes.

QUESTIONS AND CONTACT INFORMATION

If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at support@theheritageforge.com or by mail at
The Heritage Forge
[Re: Privacy Compliance Officer] 

3053 Rancho Vista Blvd, Suite H Box 313, Palmdale CA 93551