(last Updated: 24/10/2018)
Our website, as is the case with most web sites, gathers information/data from you during your visit. This Privacy Policy outlines and explains how we collect information/data and how we handle/process the information/data we collect from you while you are browsing and interacting with our website. We also outline your rights and how we manage and process your rights.
We are fully committed to respecting your rights to privacy and bettering existing protocols to improve the way we handle and process catalog/information and also empowering you to manage your privacy on our site. This is an ongoing process which we are fully committed to.
Our intention is to be clear and transparent. If there is anything that is unclear or if you have any questions about this Privacy Policy, please contact us at privacy@chillihead.co.za
When you browse our site and have not previously created an account on our site your are categorized by our site as a "guest visitor". None of the data gathered on you as a guest visitor identifies you personally. The data collected is automatically recorded by this website in log files and web stats when you interact with the site.
We use this data to make our site more useful to visitors by learning the number of visitors to our site, the number of pages served, and the level of demand for specific pages. Data is also logged by security software running on our site to automatically monitor the site for any possible security threats.
The data typically logged by the website on guest visitors is:
Our legitimate interest in collecting and processing this data is to improve the stability and functionality of our website. This data will not be shared or passed on to third parties. We also reserve the right to monitor data provided for security reasons.
Our site uses cookies. Cookies are small text files that are stored in your browser when you visit our site. When you browse our site, these cookies will remember certain functions and preferences that improve site performance and your browsing experience in general as well as other data that helps gather statistics and marketing information about browsers. Cookies are broken down into three main categories:
Strictly Required (Necessary) Cookies
These cookies are required for the website to run properly. Such cookies are only set in response to actions made by you such as language, currency, login session, privacy preferences. You can set your browser preferences to block these cookies but our site will not function properly as these cookies handle core functions of our website functionality.
Data sent to South Africa
|
Name of |
From | What it does | Data Location | Duration of Cookie |
| currency | chillihead.co.za | Initiated by our website, this cookie saves currency preferences. | Data sent to South Africa | 29 days |
| language | chillihead.co.za | Initiated by our website, this cookie saves your preferred language on the site. | Data sent to South Africa | 29 days |
| PHPSESSID | chillihead.co.za | Initiated by our website, this cookie preserves your session state across page requests | Data sent to South Africa | Session |
| cookies | chillihead.co.za | Cookie Bar settings. | Data sent to South Africa | Session |
| cookieconsent_status | chillihead.co.za | Records status of Cookies. | Data sent to South Africa | Session |
|
cookieconsent_ |
chillihead.co.za | Record Cookie consent preferences. | Data sent to South Africa | Session |
Analytics & Statistic
These cookies allow us to measure visitor traffic and see traffic resources by collecting information in data sets. They also help us understand which products and actions are more popular than others allowing us to better design the website for your browsing/shopping enjoyment. Our site uses Google Analytics to provide statistical information about browsers to our site. The information is collected anonymously and does not contain personally identifiable information. You have the right to disable these cookies and can do so via our "Cookie Bar" located in the top left hand corner of our site.
Data sent to International
|
Name of Cookie |
From | What it does | Data Location | Duration of Cookie |
| bcookie | Browser ID Cookie | Pending | 24 Hours | |
| bscookie | Secure Browser ID Cookie | Pending | 24 Hours | |
| collect | google-analytics.com | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Data sent to USA. | Session |
| i/jot | Pixel tracker. | Pending | Session | |
| lidc | Used for routing | Pending | 24 Hours | |
| NID | DoubleClick/Google | This cookie is set by DoubleClick (which is owned by Google) to help build a profile of your interests and show you relevant ads on other sites. | Pending | Pending |
| r/collect | Session cookie by Google DoubleClick for tracking visitor behaviour. | Pending | Session | |
| _gads | In the case of advertising Google serve across the web, cookies named ‘__gads’ or ‘__gac’ may be set on the domain of the site you're visiting. Unlike cookies that are set on Google's own domains, these cookies can't be read by Google when you're on a site other than the one on which they were set. They serve purposes such as measuring interactions with the ads on that domain and preventing the same ads from being shown to you too many times. | Pending | Pending | |
| IDE | doubleclick.net | Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user. | Pending | 1 Year |
| test_cookie | doubleclick.net | Used to check if the user's browser supports cookies. | Pending | Session |
| fr | facebook.com | Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. | Pending | 3 Months |
| tr | facebook.com | Pixel tracker. | Pending | Session |
| collect | Google Analytics | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Pending | Pending |
| GPS | youtube.com | Registers a unique ID on mobile devices to enable tracking based on geographical GPS location. | Pending | Session |
| PREF | youtube.com | Registers a unique ID that is used by Google to keep statistics of how the visitor uses YouTube videos across different websites. | Pending | 8 Months |
| BizoID | LinkedIn Ad Analytics | Pending | 6 Months |
Marketing & Retargeting
These cookies are usually set by our marketing and advertising partners. These may be used by them to build a profile of your browsing habits and interests and later show you relevant ads. These cookies do not use personally identifiable information from our site. You have the right to disable these cookies and can do so via our "Cookie Bar" located in the top left hand corner of our site.
|
Name of Cookie |
From | What it does | Data Location | Duration of Cookie |
| bcookie | Browser ID Cookie | Pending | 24 Hours | |
| bscookie | Secure Browser ID Cookie | Pending | 24 Hours | |
| collect | google-analytics.com | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Data sent to USA. | Session |
| i/jot | Pixel tracker. | Pending | Session | |
| lidc | Used for routing | Pending | 24 Hours | |
| NID | DoubleClick/Google | This cookie is set by DoubleClick (which is owned by Google) to help build a profile of your interests and show you relevant ads on other sites. | Pending | Pending |
| r/collect | Session cookie by Google DoubleClick for tracking visitor behaviour. | Pending | Session | |
| _gads | In the case of advertising Google serve across the web, cookies named ‘__gads’ or ‘__gac’ may be set on the domain of the site you're visiting. Unlike cookies that are set on Google's own domains, these cookies can't be read by Google when you're on a site other than the one on which they were set. They serve purposes such as measuring interactions with the ads on that domain and preventing the same ads from being shown to you too many times. | Pending | Pending | |
| IDE | doubleclick.net | Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user. | Pending | 1 Year |
| test_cookie | doubleclick.net | Used to check if the user's browser supports cookies. | Pending | Session |
| fr | facebook.com | Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. | Pending | 3 Months |
| tr | facebook.com | Pixel tracker. | Pending | Session |
| collect | Google Analytics | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Pending | Pending |
| GPS | youtube.com | Registers a unique ID on mobile devices to enable tracking based on geographical GPS location. | Pending | Session |
| PREF | youtube.com | Registers a unique ID that is used by Google to keep statistics of how the visitor uses YouTube videos across different websites. | Pending | 8 Months |
| BizoID | LinkedIn Ad Analytics | Pending | 6 Months |
Cookie Bar
Our website now has a "Cookie Bar" that will pop up when you first arrive at our site. By default, all cookies other than "Strictly Required (Necessary) Cookies" are disabled. You have the right to control the cookies on our site.
Should you wish to disable "Strictly Required (Necessary) Cookies", you can block all cookies via your browser preferences.
As a service to you, we have included links to the most popular browser software sites and these pages will explain how to disable all cookies in their browsers.
Please note that these are third party website links and browsing on these sites will be subject to their Privacy and Cookie Policies.
Any emails you send us may contain personally identifying information. In an effort to respond to your request, information you submit may be viewed by various people within our company. Once received, the information to your e-mail is protected in accordance with law, (e.g. the Privacy Act and the Freedom of Information Act). This information is handled in the strictest confidence.
We do not make personally identifiable information available to anyone unless required by law to do so.
To contact us via the website contact us form, you will have to provide us with personally identifiable information to enable us to respond to your enquiry. The information you submit via the form is transmitted via an encrypted SSL connection to our secure database. This means your information is safe from prying eyes while in transit. This information will be viewed in strictest confidence by our staff for purposes of corresponding with you and resolving your enquiry. The information that is submitted to our database is for our purposes only and will not be sold on to third parties.
We do not make personally identifiable information available to anyone unless required by law to do so.
The information/data typically logged by the system via the contact us form is:
When you send us a Testimonial in the form provided on our website you agree to send us information to use on our site. This information will be viewable by visitors to our site. Our site will capture the following information:
Please note, that our form does not require you to supply anything other than your message. Naturally we would like to make the connection between the customer and the Testimonial and to email you a response - but this is entirely up to you. By supplying this information you agree to post this information in our Testimonials page which will be shown on our site to visiting guests.
The information you provide is emailed to our staff and will be seen by members of our staff so we can authenticate and approve your Testimonial on the website and make sure your testimonial is not a security risk or spam email.
Should you wish to have this information removed from our site - for whatever reason, please email us on privacy@chillihead.co.za and we will gladly do this for you.
To shop and purchase items from our site, we require you to create an account.
To create an account you will have to provide us with personally identifiable information to enable us to provide you with our services. The information you submit via the form is transmitted via an encrypted SSL connection to our secure database. This means the information you send will be safe from prying eyes while in transit. This information will be viewed in strictest confidence by our staff for purposes of processing your order. The information that is submitted to our database is for our purposes only and will not be sold on to third parties.
We do not make personally identifiable information available to anyone unless required by law to do so.
The information/data typically logged by the system is:
Email Addresses: When you register an account with us, it is understood that we will communicate with you via the given email address. The system will use your given email address to send you automatic emails to let you know if your registration has been approved - for instance. Your given email address will never be used for marketing purposes or specifically for newsletter emails - unless you have signed up for the latter specifically.
You have the right to change or delete this information at any time via your Accounts Page and the GDPR Tools provided on the site. This information will remain in our secure database until such time as you choose to close your account or request us to delete the information. You can also do this by emailing us at privacy@chillihead.co.za
We send out a Newsletter via email to our customers that have chosen to receive our Newsletter. This we try to limit to once a month. Our aim is not to spam customers, but merely to make you aware of new products and services on our site. We respect our customer's right to privacy and will only send Newsletters to those customers who have chosen to receive our Newsletter when creating their account.
You have the option and right to amend your subscription status to our Newsletter at any time via your Accounts page.
Alternatively, you can email us at privacy@chillihead.co.za and we will happily amend your status.
When our products are out of stock and as an added service to you we have equipped our site with a "Notify Me" button, which when clicked opens a form for you to enter your details.
The sole purpose of this feature, is for us to notify you when the specific product is back in stock.
The information that you submit is:
Name: Your Name
Email: Your contact email address for us to notify you on
We will notify you once the product becomes available again. Notification will come in the form of a automated email that will be sent to your given email address.
Periodically the list of personal information contained in this database is deleted.
Once you have checked out your order from our site and made your purchase, your order will processed internally by our company for shipment. This involves staff in our company processing your order in the strictest confidence. Your order is processed (a print-out of your order is generated) and packaged internally (packers will use your order print out as a checklist to ensure everything is included) and your parcel will be dispatched to the relevant shipping agent by us. We do not make use of third party services for the processing, packaging and dispatching of your order. This means your personally identifiable information is contained by us during processing, packaging and dispatching. We do however use third party Shipping Agents for the delivery of your purchased goods. For this to be possible we will share the following Personally Identifiable information with the respective Shipping Agents and their third party agents.
Courier Company (The courier Guy)
The Courier Guy Couriers require us to provide them with the following basic information on their waybill to enable them to make delivery. This information is entered onto the Waybill by us and will be subject to The Courier Guy Courier's Privacy Policy and Terms & Conditions. Carbon copies of the waybill will be retained by us and the shipping agent and their third party agents. We will retain a carbon copy of the waybill for purposes of our records and proof of shipping and also to follow up with tracking form our side to ensure your parcel is delivered to you. Another carbon copy will be retained by the shipping agent for their records and to enter the information onto their tracking system.
Postnet
Postnet require us to provide them with this basic information to make delivery. This information is entered onto the Waybill by us and will be subject to Postnet's Privacy Policy and Terms & Conditions. Carbon copies of the waybill will be retained by us and the shipping agent. We will retain a carbon copy of the waybill for purposes of our records and proof of shipping and also to follow up with tracking form our side to ensure your parcel is delivered to you. Another carbon copy will be retained by the shipping agent for their records and to enter the information onto their tracking system.
All hard copies/paper work and electronic information is retained an filed by us for our records for as long as is required by relevant applicable laws to do so. There after, this information will be destroyed or anonymized using adequate techniques that do not permit the re-identification of the data subject.
Communication while processing your order
Once your order has been placed with us, we will communicate with you and give you status updates as to the status of your order. These status updates will be sent to your registered email address. The purpose of this is to keep you informed as to the status and whereabouts of your order and to offer you the best possible service. Should not not wish to receive this communication, please reply to the email notification advising you do not wish to receive these notifications and we will de-activate these notifications. Status notifications will include but not be limited to:
The information above is for purposes of informing you of the status of your order and is not shared with any third parties. All information is handled in the strictest confidence between your registered email address and our system.
Our site does contain links to Social Media pages (such as Facebook, Instagram, Pinterest, Twitter and the likes). These links are for purposes of you sharing products or links to products with your friends on the Social Media forum of your choice. This will be subject to you having an account with those pages.
Our site does not track your liking our products in a media page, but your liking may be subject to that media page's Terms & Conditions and Privacy Policy.
Our site may from time to time serve YouTube videos in the form of "Taste Test Videos". These videos are intended for information and entertainment purposes only. Once activated, YouTube do track non personally identifiable information about your interaction with that particular video. Our site does not track your interaction with YouTube videos, but please be aware that your interacting with the video will mean you are subject to YouTube's Terms & Conditions and Privacy Policy.
As a service to you, we have listed a link to YouTube's Privacy Policy below:
https://support.google.com/youtube/answer/2801895?hl=en
Our store policy is that we only sell our products to customers that are 18 years of age or older. Should persons under the age of 18 wish to order from our site, they are requested to get their parents to create an account with their details and order on their behalf.
We do not knowingly collect information from persons under the age of 18 years.
In instances where we suspect that a registrant is under age, we will conduct checks to try and verify the age of the registrant.
Should we establish that registrant information supplied is that of a minor, we will delete all account information and cancel all transactions.
We will not ask for or accept any banking information on our site. We will not ever handle or process any banking information on our site or save such information to our database.
Payments accepted for goods purchased will be in the form of EFT (Electronic Funds Transfer) for South African customers.
EFT (Electronic Funds Transfer) Payments
We do not accept or handle / process any banking information on our site. Nor do we record this on our database. Once a customer has checked out their order, we require customers to make an EFT payment and send us their POP (Proof of Payment) via email. No orders are sent without a proof of payment having been amailed to us or the moneys reflecting in our bank account.
Customers can choose not to send us their proof of payment, but we reserve the right to only ship the order once the moneys have reflected in our bank account.
Paypal Payments
We do not accept or handle / process any banking information on our site. Nor do we store any banking information on our database. Once a customer has selected Paypal as their preferred choice of payment, your order will be checked out and your browser will be directed to Paypal's site for payment processing. Our system will provide Paypal with a summary of your order which will contain the following information:
This transaction will be processed by PayPal on their secure servers and your transaction with PayPal is subject to PayPal's Terms & Conditions and Privacy Policy.
Once your payment has been completed via PayPal you will be redirected back to our site.
On the successful payment of your order via PayPal, we will receive a payment confirmation via email from PayPal informing us of the fact that you have made payment. Upon which, we will proceed with the processing, packing and dispatch of your order.
You also have the right not to proceed with your PayPal transaction, should you not feel comfortable to do so.
Our site now has features in compliance with GDPR (EU) 2016/679 that allow you to see and manage the information/data we have obtained from you. These new "GDPR Tools" will let you manage your rights to Data Rectification, Data Portability, to be Forgotten, to the restriction of Data and the right to be Informed. The GDPR Tools are located here https://www.chillihead.co.za/gdpr-tools
Right to data rectification
Right to data portability
Right to be forgotten (data erasure)
Right to restriction of data
Right to be informed
We honor and value your right to privacy. We will never sell your personally identifiable information to third parties.
We are a South African business. Our website and database are hosted on secure servers in South Africa. We take security very seriously and endeavor to ensure that we have secured our site and servers to the best of our abilities.
For purposes of security we use programs to monitor and identify unauthorized attempts to upload or change information, or otherwise cause damage to our site or gain illegal access to our site.
All data sensitive pages where information is transferred from your computer to our site are encrypted and secured with SSL certification. This means the information you enter into forms is encrypted and protected from prying eyes while being transmitted.
In the event that our site is compromised by a data breach:
Should you feel that your rights have been infringed or compromised by this site, please contact us below. You have the right to complain!
Should you have any comments or observations in respect to how we can improve our policies or if you have noticed something that you would like to inform us of, please feel free to contact us below.
The person responsible for the website, processing and handling of data is:
Lourens Notman
privacy@chillihead.co.za
0722182655
The registered domicillium for our business is:
11th Ave,
Parktown North,
South Africa