Privacy policy
This Privacy Policy describes how three-mask.com (the "Site" or "we" or "us") collects, uses and discloses your Personal Information when you visit or make a purchase from the Site.
Section 1. What do we do with your information?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you provide to us such as: name, address and email address.
When you browse our store, we also automatically receive your computer's Internet Protocol (IP) address to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.
Section 2. Consent
How do I obtain my consent?
When you provide your personal information to complete a transaction, verify your credit card, create an order, arrange a shipment or make a return, we imply that you consent to the collection and use for that specific reason only.
If we ask for your personal information for a secondary reason, such as marketing, we will ask you directly for your express consent, or give you the opportunity to refuse.
How can I withdraw my consent?
If you change your mind after you have agreed, you may withdraw your consent to be contacted by us for the collection, use or disclosure of your information at any time by contacting us at support@three-mask.com.
Section 3. Disclosure
We may share your personal information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to protect our rights.
We may also disclose your personal information if there is a violation of our Terms of Service [https://three-mask.com/policies/terms-of-service]
Section 4. Shopify
Our store is hosted by Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify's data storage, databases and the general Shopify application. Your data is stored on a secure server behind a firewall.
You can learn more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy.
Payment
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only to the extent necessary to complete the purchase transaction. After it is completed, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as outlined by the PCI Security Standards Council, which is a joint effort of brands such as Visa, MasterCard, American Express and Discover.
The PCI-DSS requirements help ensure the secure handling of credit card information from retailers and their service providers.
For a clearer picture, you may also want to read the: Shopify Payments Terms of Service (https://www.shopify.com/legal/terms-payments-us) or Privacy Policy (https://www.shopify.com/legal/privacy).
Section 5. Third party services
In general, third party service providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. However, some third party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for purchase-related transactions.
For these providers, we recommend that you read their privacy policies so that you can understand how your personal information will be handled.
In particular, remember that some suppliers may be located or have facilities that are located in a different jurisdiction than you or us. So, if you wish to proceed with a transaction involving the services of a third-party provider, your information may be subject to the laws of the jurisdiction(s) in which it is located, (jurisdictions) in which the service provider or its facilities are located.
By way of example, if you are located in Canada and your transaction is processed by a payment gateway based in the United States, then your personal information used to complete the transaction may be subject to disclosure under United States law, including the Patriot Act.
Once you leave our store's website or redirect to a third party site or application, you are no longer governed by this Privacy Policy or our website's Terms of Service.
When you click on links from our store, you may be redirected away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy policies.
Section 6. Security
To protect your personal information, we take reasonable precautions and follow industry best practices to ensure that it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, that information is encrypted using Secure Socket Layer (SSL) technology and stored with AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional industry-accepted standards.
Cookies
A cookie is a small amount of information that’s downloaded to your computer or device when you visit our Site. We use a number of different cookies, including functional, performance, advertising, and social media or content cookies. Cookies make your browsing experience better by allowing the website to remember your actions and preferences (such as login and region selection). This means you don’t have to re-enter this information each time you return to the site or browse from one page to another. Cookies also provide information on how people use the website, for instance whether it’s their first time visiting or if they are a frequent visitor.
We use the following cookies to optimize your experience on our Site and provide our services. We list them so you can choose whether you want to opt out or not.
[Be sure to check this list against Shopify’s current list of cookies on the merchant storefront: https://www.shopify.com/legal/cookies ]
Cookies Necessary for the Functioning of the Store
| Name | Function | Duration |
|---|---|---|
| _ab | Used in connection with access to admin. | 2y |
| _secure_session_id | Used in connection with navigation through a storefront. | 24h |
| _shopify_country | Used in connection with checkout. | session |
| _shopify_m | Used for managing customer privacy settings. | 1y |
| _shopify_tm | Used for managing customer privacy settings. | 30min |
| _shopify_tw | Used for managing customer privacy settings. | 2w |
| _storefront_u | Used to facilitate updating customer account information. | 1min |
| _tracking_consent | Tracking preferences. | 1y |
| c | Used in connection with checkout. | 1y |
| cart | Used in connection with shopping cart. | 2w |
| cart_currency | Used in connection with shopping cart. | 2w |
| cart_sig | Used in connection with checkout. | 2w |
| cart_ts | Used in connection with checkout. | 2w |
| cart_ver | Used in connection with shopping cart. | 2w |
| checkout | Used in connection with checkout. | 4w |
| checkout_token | Used in connection with checkout. | 1y |
| dynamic_checkout_shown_on_cart | Used in connection with checkout. | 30min |
| hide_shopify_pay_for_checkout | Used in connection with checkout. | session |
| keep_alive | Used in connection with buyer localization. | 2w |
| master_device_id | Used in connection with merchant login. | 2y |
| previous_step | Used in connection with checkout. | 1y |
| remember_me | Used in connection with checkout. | 1y |
| secure_customer_sig | Used in connection with customer login. | 20y |
| shopify_pay | Used in connection with checkout. | 1y |
| shopify_pay_redirect | Used in connection with checkout. | 30 minutes, 3w or 1y depending on value |
| storefront_digest | Used in connection with customer login. | 2y |
| tracked_start_checkout | Used in connection with checkout. | 1y |
| checkout_one_experiment | Used in connection with checkout. | session |
| checkout_session_lookup | Used in connection with checkout. | 3w |
| checkout_session_token_<<token>> | Used in connection with checkout. | 3w |
| identity-state | Used in connection with customer authentication. | 24h |
| identity-state-<<token>> | Used in connection with customer authentication. | 24h |
| identity_customer_account_number | Used in connection with customer authentication. | 12w |
Reporting and Analytics
| Name | Function | Duration |
|---|---|---|
| _landing_page | Track landing pages. | 2w |
| _orig_referrer | Track landing pages. | 2w |
| _s | Shopify analytics. | 30min |
| _shopify_d | Shopify analytics. | session |
| _shopify_s | Shopify analytics. | 30min |
| _shopify_sa_p | Shopify analytics relating to marketing & referrals. | 30min |
| _shopify_sa_t | Shopify analytics relating to marketing & referrals. | 30min |
| _shopify_y | Shopify analytics. | 1y |
| _y | Shopify analytics. | 1y |
| _shopify_evids | Shopify analytics. | session |
| _shopify_ga | Shopify and Google Analytics. | session |
| customer_auth_provider | Shopify analytics. | session |
| customer_auth_session_created_at | Shopify analytics. | session |
The length of time that a cookie remains on your computer or mobile device depends on whether it is a “persistent” or “session” cookie. Session cookies last until you stop browsing and persistent cookies last until they expire or are deleted. Most of the cookies we use are persistent and will expire between 30 minutes and two years from the date they are downloaded to your device.
You can control and manage cookies in various ways. Please keep in mind that removing or blocking cookies can negatively impact your user experience and parts of our website may no longer be fully accessible.
Additionally, please note that blocking cookies may not completely prevent how we share information with third parties such as our advertising partners. To exercise your rights or opt-out of certain uses of your information by these parties, please follow the instructions in the “Behavioural Advertising” section above.
Section 7. Age of consent
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
Section 8. California Residents
California residents may request certain information regarding our disclosure of Personal Information to third parties for their direct marketing purposes, and those who have an established business relationship with us may also choose to opt-out from such disclosures. To do so, please contact us at support@three-mask.com stating your specific request and your name, address, e-mail address and phone number. Please allow a minimum of 30 days for a response. This will not prohibit disclosure of information for non-marketing purposes.
Section 9. Changes to this privacy policy
We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will be effective immediately upon posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how and under what circumstances, if any, we use and/or disclose it.
If our store is acquired or merged with another company, your information may be transferred to the new owners, so that we can continue to sell products to you.
Questions and contact information
If you wish to: access, correct, amend or delete any personal information we hold about you, register a complaint or simply want more information, please write to info@three-mask.com.
Last updated: Aug 28th, 2023.