Privacy Policy


This privacy policy has been compiled to better serve those who are concerned with how their ‘Personally Identifiable Information’ (PII) is being used online. PII, as described in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.

What personal information do we collect from the people who visit our website or subscribe to our mailing list?



When subscribing to our mailing list to get free products, newsletters, and updates on new releases, you are asked to enter your email address and (optionally) your first name.



When do we collect information?


We collect information from you when you subscribe to our newsletter, fill out a form, or enter information on our site.



How do we use your information?


We may use the information we collect when you sign up for our newsletter in the following ways:

  • To send free or discounted products;
  • To send periodic newsletters;
  • To send updates on new releases;
  • To send information about us and our other products.


In addition, we use your email address to target social media marketing (e.g. Facebook ads) if the email address you give is associated with your social media account. If such marketing is used, we only advertise our own products.



Do we use ‘cookies’?


We do not use cookies for tracking purposes.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings.



Third-party disclosure


We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information.



Third-party links


We may include embedded YouTube videos on our site. Those videos might have cookies that measure your bandwidth to enhance the playback performance and keep track that you have watched videos shared on our site. YouTube does not share information they collect with us.

Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We, therefore, have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.

We are a participant in the BlueHost Affiliate Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to BlueHost.com.

We are a participant in the ConvertKit Affiliate Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to ConvertKit.com.



Google


We do not use Google AdSense Advertising or Google Analytics cookies on our website.



California Online Privacy Protection Act


CalOPPA is the first state law in the United States to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared.

According to CalOPPA, we agree to the following:

  • Users can visit our site anonymously.
  • Once this privacy policy is created, we will add a link to it on our homepage or as a minimum, on the first significant page after entering our website.
  • Our Privacy Policy link includes the word ‘Privacy’ and can easily be found on the page specified above.
  • You will be notified of any Privacy Policy changes on our Privacy Policy Page.
  • You can change your personal information by emailing us.




General Data Protection Regulation (GDPR)


The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union. The law’s reach stretches well beyond European Union to require any person or company that operates websites collecting Personally Identifiable Information (PII) from European Union consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared.

According to GDPR, we apply the following to all PII that we handle (EU and non-EU):

  • Compliance with GDPR is integrated into the systems that collect PII and it is documented in this privacy policy.
  • We collect only such personal information as is relevant to our business. For us, that is the email address (and your first name, if you enter it), and we need it to send free products, newsletters, and information about our products and new releases; and to serve relevant advertising for our own products.
  • We use double opt-in, and before adding your email address to our mailing list, we explicitly ask your consent to store your email address and to send you newsletters, which can contain marketing material.
  • We never send anything without your consent and we never send material that is not related to our business.
  • Consent to receive our newsletters can be withdrawn at any time. Every message that we send contains an unsubscription link. Unsubscription is automated and immediate.
  • We use GDPR compliant software services, ConvertKit, to store PII, and we never share PII with any third parties unless required by law.
  • We use GDPR compliant software services, BookFunnel, to collect or verify PII, and we never share PII with any third parties unless required by law.
  • In case of data breach, we notify you without delay, and we take all possible actions to mitigate losses. As a proactive means of mitigating damages, we never ask for information that we don’t need and we never ask for your password or credit card number.
  • You can ask us to delete all your personal information, that is your email address (and your first name, if you have entered it), by emailing us.




COPPA (Children Online Privacy Protection Act)


When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under the age of 13 years old.



Fair Information Practices


The Fair Information Practices principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices, we will take the following responsive action, should a data breach occur:

  • We will notify you via email within 3 business days.


We also agree to the Individual Redress Principle, which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.



CAN SPAM Act


The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address (and your first name, if you enter it) in order to:

  • Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.


To be in accordance with CANSPAM, we agree to the following:

  • Not use false or misleading subjects or email addresses;
  • Identify the message as an advertisement in some reasonable way;
  • Include the physical address of our business or site headquarters;
  • Monitor third-party email marketing services for compliance, if one is used;
  • Honor opt-out/unsubscribe requests quickly;
  • Allow users to unsubscribe by using the link at the bottom of each email.


If at any time you would like to unsubscribe from receiving future emails, you can email us and we will promptly remove you from ALL correspondence.



Contacting Us


If there are any questions regarding this privacy policy, you may contact us using the information below.

Hannelore Dean
Earthshine Studio, LLC
PO Box 450
Port Hadlock, WA 98339
United States

Hannelore@HanneloreDean.com

Last Edited on May 22, 2018