CCPA Privacy Policy
Please click here to view the current version of our Privacy Policy.
THIS PRIVACY POLICY.
This “Privacy Policy” describes the privacy practices of Heels and Pyramids and our subsidiaries and affiliates (collectively, “Heels and Pyramids”, “we”, “us”, or “our”) in connection with the www.HeelsandPyramids.com website and any other website that we own or control and which posts or links to this Privacy Policy (collectively, the “Service”), and the rights and choices available to individuals with respect to their information.
QUESTIONS; CONTACTING HEELS AND PYRAMIDS; REPORTING VIOLATIONS.
If you have any questions, concerns, or complaints about our Privacy Policy or our data practices, or if you want to report privacy or security violations to us, please contact us at hello@HeelsandPyramids.com
COOKIES.
You can find out how we and our partners may use cookies by visiting our Cookie Policy.
EUROPEAN USERS.
We provide important information for individuals located in the European Union, European Economic Area, and United Kingdom (collectively, “Europe” or “European”).
PERSONAL INFORMATION WE COLLECT
INFORMATION YOU PROVIDE TO US.
The personal information you may provide to us through the Service or otherwise includes:
- Contact information, such as your first and last name, email and mailing address, and/or phone number.
- The content you choose to upload to the Service, such as text, images, audio, and video.
- Profile information, such as your username and password that you may set to establish an online account with us, your photograph, interests, and preferences.
- Registration information, such as information that may be related to a service, an account, or an event you register for.
- Feedback or correspondence, such as information you provide when you contact us with questions, feedback, or otherwise correspond with us online.
- Demographic Information, such as your city, state, country of residence, postal code, and age.
- Payment information is all information necessary to complete orders you place on the Service, such as your name, credit card information, billing information, and shipping information.
- Transaction information, such as information about payments to and from you and other details of products or services you have purchased from us.
- Usage information, such as information about how you use the Service and interact with us, including information associated with any content you upload to the websites or otherwise submit to us, and information you provide when you use any interactive features of the Service.
- Marketing information, such as your preferences for receiving communications about products sold via our Service, our activities, events, and publications, and details about how you engage with our communications.
- Other information that we may collect which is not specifically listed here, but which we will use in accordance with this Privacy Policy or as otherwise disclosed at the time of collection.
INFORMATION WE OBTAIN FROM SOCIAL MEDIA PLATFORMS.
We may maintain pages for our Company on social media platforms, such as Facebook, Twitter, Google, Pinterest, YouTube, Instagram, and other third-party platforms. When you visit or interact with our pages on those platforms, the platform provider’s privacy policy will apply to your interactions and their collection, use, and processing of your personal information. You or the platforms may provide us with information through the platform, and we will treat such information in accordance with this Privacy Policy.
INFORMATION WE OBTAIN FROM OTHER THIRD PARTIES.
We may receive personal information about you from third-party sources where they have a right to provide us with this information. We may also obtain your personal information from other third parties, such as marketing partners, and publicly-available sources.
Cookies and Other Information Collected by Automated Means
We, our service providers, and our business partners may automatically log information about you, your computer or mobile device, and activity occurring on or through the Service. The information that may be collected automatically includes your computer or mobile device operating system type and version number, manufacturer and model, device identifier (such as the Google Advertising ID or Apple ID for Advertising), browser type, screen resolution, IP address, the website you visited before browsing to our website, general location information such as city, state or geographic area; and information about your use of and actions on the Service, such as pages or screens you viewed, how long you spent on a page or screen, navigation paths between pages or screens, information about your activity on a page or screen, access times, and length of access. Our service providers and business partners may collect this type of information over time and across third-party websites and mobile applications.
On our webpages, this information is collected using cookies, browser web storage (also known as local stored objects, or “LSOs”), Flash-based LSOs (also known as “Flash cookies”), web beacons, and similar technologies, and our emails may also contain web beacons.
See our Cookie Policy for more information.
Referrals
Users of the Service may have the opportunity to refer friends or other contacts to us. If you are an existing user, you may only submit a referral if you have permission to provide the referral’s contact information to us so that we may contact them.
HOW WE USE YOUR PERSONAL INFORMATION
We use your personal information for the following purposes and as otherwise described in this Privacy Policy or at the time of collection:
TO OPERATE THE SERVICE.
We use your personal information to:
- provide, operate, and improve the Service;
- provide information about our products and services;
- establish and maintain your user profile on the Service;
- send you the products you order on the Service;
- enable security features of the Service, such as sending you security codes via email or SMS, and remembering devices from which you have previously logged in;
- facilitate social features of the Service, such as by identifying and suggesting connections with other users of the Service and providing chat or messaging functionality;
- communicate with you about the Service, including by sending you announcements, updates, security alerts, and support and administrative messages;
- communicate with you about events or contests in which you participate;
- understand your needs and interests, and personalize your experience with the Service and our communications;
- provide support and maintenance for the Service; and
- to respond to your requests, questions, and feedback.
FOR RESEARCH AND DEVELOPMENT.
We analyze the use of the Service to analyze and improve the Service and to develop new content, products, and services, including by studying user demographics and use of the Service.
TO SEND YOU MARKETING COMMUNICATIONS.
Email us at hello@heelsandpyramids.com
TO DISPLAY ADVERTISEMENTS.
We work with advertising partners to display advertisements on the Service. These advertisements are delivered by our advertising partners and may be targeted based on your use of the Service or your activity elsewhere online.
TO POST USER TESTIMONIALS AND FEEDBACK.
We often receive testimonials and comments from users who have had positive experiences with our Service. We occasionally publish such content. When we publish this content, we will identify our users by their first name and may also indicate their country. We obtain your consent prior to posting your name along with the testimonial. We may post user feedback on the Service from time to time. We will share your feedback with your first name and last initial only. If we choose to post your feedback, we will obtain your consent prior to posting your name with your feedback.
COMPLIANCE AND PROTECTION.
We may use your personal information to (i) comply with applicable laws, lawful requests, and legal processes, such as to respond to subpoenas or requests from government authorities; (ii) protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims); (iii) audit our internal processes for compliance with legal and contractual requirements or our internal policies; (iv) enforce the terms and conditions that govern the Service; and (v) prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft.
WITH YOUR CONSENT.
In some cases, we may specifically ask for your consent to collect, use or share your personal information, such as when required by law.
TO CREATE ANONYMOUS DATA.
We may create anonymous data from your personal information and other individuals whose personal information we collect. We make personal information into anonymous data by removing information that makes the data personally identifiable to you. We may use this anonymous data and share it with third parties for our lawful business purposes, including to analyze and improve the Service and promote our business.
HOW WE SHARE YOUR PERSONAL INFORMATION
We do not share your personal information with third parties without your consent, except in the following circumstances or as described in this Privacy Policy:
OUR PAYMENT PROCESSOR.
For online payments and/or Automated Clearing House (ACH) payouts, we use the payment services of Stripe, PLAID, and Etsy. We do not process, record, or maintain your credit card or bank account information, but we will provide them with your Payment Information to enable them to process your payment for orders on the Service. For more information on how payments are handled, or to understand the data security and privacy afforded such information.
AFFILIATES.
We may share your personal information with our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.
SERVICE PROVIDERS.
We may share your personal information with third party companies and individuals that provide services on our behalf or help us operate the Service (such as customer support, hosting, analytics, email delivery, marketing, and database management services). These third parties may use your personal information only as authorized by us.
DISCLOSURE TO THIRD-PARTY COMPANIES.
We may enter into agreements with companies to offer co-branded products and/or services via the Service (“Third Party Companies”). Where you purchase these co-branded products and/or services, we may provide your personal information to a Third Party Company where necessary in connection with the purchase or you have consented to us doing so. Because we do not control the privacy practices of these third-party companies, you should read and understand their privacy policies, which we or they will make available to you before we provide your personal information to them.
THIRD-PARTY PLATFORMS AND SOCIAL MEDIA NETWORKS.
If you have enabled features or functionality that connect the Service to a third-party platform or social media network (such as by logging in to the Service using your account with the third party, providing your API key or similar access token for the Service to a third party, or otherwise linking your account with the Service to a third-party’s services), we may disclose the personal information that you authorized us to share. We do not control the third party’s use of your personal information.
ADVERTISING PARTNERS.
When we use third-party cookies and other tracking tools, we may disclose your personal information to those third-party companies to help us analyze the use of the Service, display advertisements on the Service, and advertise the Service elsewhere online.
OTHER USERS OF THE SERVICE AND THE PUBLIC.
We may provide functionality that enables you to disclose personal information to other users of the Service or the public. For instance, you may be able to maintain a user profile with information about yourself that you can make available to other users or the public. You may also be able to submit content to the Service (such as comments, reviews, surveys, blogs, photos, and videos), and we will display your name, username, and a link to your user profile along with the content you submit. We do not control how other users or third parties use any personal information that you make available to other users or the public. Once you have posted information publicly, while you will still be able to edit and delete it on our Service, you will not be able to edit or delete such information cached, collected, and stored elsewhere by others (e.g., search engines).
PROFESSIONAL ADVISORS.
We may disclose your personal information to professional advisors, such as lawyers, bankers, auditors, and insurers, where necessary in the course of the professional services that they render to us.
FOR COMPLIANCE, FRAUD PREVENTION, AND SAFETY.
We may share your personal information for compliance, fraud prevention, and safety purposes.
BUSINESS TRANSFERS.
We may sell, transfer or otherwise share some or all of our business or assets, including your personal information, in connection with a business transaction (or potential business transaction) such as a corporate divestiture, merger, consolidation, acquisition, reorganization, or sale of assets, or in the event of bankruptcy or dissolution. In such a case, we will make reasonable efforts to require the recipient to honor this Privacy Policy.
YOUR CHOICES
In this section, we describe the rights and choices available to all users. Users who are located within the European Union can find additional information about their rights below.
ACCESS OR UPDATE YOUR INFORMATION.
If you have registered for an account with us, you may review and update certain personal information in your account profile by logging into the account.
OPT-OUT OF MARKETING COMMUNICATIONS.
You may opt out of marketing-related emails by following the opt-out or unsubscribe instructions at the bottom of the email or by contacting us. You may continue to receive service-related and other non-marketing emails.
COOKIES & BROWSER WEB STORAGE.
We may allow service providers and other third parties to use cookies and similar technologies to track your browsing activity over time and across the Service and third-party websites (e.g., for ad tailoring or analytics purposes).
Users may opt out of receiving targeted advertising on websites through members of the Network Advertising Initiative by clicking here or the Digital Advertising Alliance by clicking here. European users may opt out of receiving targeted advertising on websites through members of the European Interactive Digital Advertising Alliance by clicking here, selecting the user’s country, and then clicking “Choices” (or a similarly titled link). Please note that we also may work with companies that offer their own opt-out mechanisms and may not participate in the opt-out mechanisms linked above.
In addition, your mobile device settings may provide the functionality to limit our, or our partners, ability to engage in ad tracking or targeted advertising using the ‘advertising ID’ associated with your mobile device.
If you choose to opt out of targeted advertisements, you will still see advertisements online but they may not be relevant to you. Even if you do choose to opt out, not all companies that serve online behavior participate in these opt-out programs, so you may still receive some cookies and tailored advertisements from companies that are not listed.
DO NOT TRACK.
Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit www.HeelsandPyramids.com
CHOOSING NOT TO SHARE YOUR PERSONAL INFORMATION.
Where we are required by law to collect your personal information, or where we need your personal information in order to provide the Service to you, if you do not provide this information when requested (or you later ask to delete it), we may not be able to provide you with our services. We will tell you what information you must provide to receive the Service by designating it as required at the time of collection or through other appropriate means.
OTHER SITES, MOBILE APPLICATIONS, AND SERVICES.
The Service may contain links to other websites, mobile applications, and other online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third party. In addition, our content may be included on web pages or online services that are not associated with us. We do not control third-party websites or online services, and we are not responsible for their actions. Other websites and services follow different rules regarding the collection, use, and sharing of your personal information. We encourage you to read the privacy policies of the other websites and mobile applications and online services you use.
SECURITY PRACTICES.
The security of your personal information is important to us. We employ a number of organizational, technical, and physical safeguards designed to protect the personal information we collect. However, security risk is inherent in all internet and information technologies and we cannot guarantee the security of your personal information.
INTERNATIONAL DATA TRANSFERS.
We are headquartered in the United States and have may have service providers in other countries in the future, and your personal information may be transferred to the United States or other locations outside of your state, province, or country where privacy laws may not be as protective as those in your state, province, or country.
European Union users should read the important information provided below about the transfer of personal information outside of the European Union.
CHILDREN.
As a general rule, the Service is not intended for children, they should not use the Service, and we do not collect personal information from them. For these purposes, we define “children” as:
- anyone under 16 years old; and
- anyone under the age of their country of residence, below which their parent or legal guardian needs to consent to our processing of personal information.
If we learn that we have collected the personal information of a child without the consent of the child’s parent or guardian as required by law, we will delete it. We encourage parents with concerns to contact us at hello@HeelsandPyramids.com
CHANGES TO THIS PRIVACY POLICY.
We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the Service. We may also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via e-mail (if you have an account where we have your contact information) or another manner through the Service.
Any modifications to this Privacy Policy will be effective upon our posting the new terms and/or upon implementation of the new changes on the Service (or as otherwise indicated at the time of posting). In all cases, your continued use of the Service after the posting of any modified Privacy Policy indicates your acceptance of the terms of the modified Privacy Policy.
NOTICE TO CALIFORNIA USERS
Scope. This section applies only to California residents. It describes how we collect, use, and share the Personal Information of California residents in our capacity as a “business” under the California Consumer Privacy Act (“CCPA”) and their rights with respect to that Personal Information. For purposes of this section, the term “Personal Information” has the meaning given in the CCPA but does not include information exempted from the scope of the CCPA. In some cases, we may provide a different privacy notice to certain categories of California residents, such as job applicants, in which case that notice will apply instead of this section.
Your California privacy rights. As a California resident, you have the rights listed below. However, these rights are not absolute, and in certain cases, we may decline your request as permitted by law.
- Information. You can request the following information about how we have collected and used your Personal Information during the past 12 months:
- The categories of Personal Information that we have collected.
- The categories of sources from which we collected Personal Information.
- The business or commercial purpose for collecting and/or selling Personal Information.
- The categories of third parties with whom we share Personal Information.
- The categories of Personal Information that we sold or disclosed for a business purpose.
- The categories of third parties to whom the Personal Information was sold or disclosed for a business purpose.
- Access. You can request a copy of the Personal Information that we have collected about you during the past 12 months.
- Deletion. You can ask us to delete the Personal Information that we have collected from you.
- Opt-out of sales. You can opt out of any sale of your Personal Information.
- Opt-in. If we know that you are under 16 years of age, we will ask for your affirmative authorization to sell your Personal Information before we do so.
- Nondiscrimination. You are entitled to exercise the rights described above free from discrimination as prohibited by the CCPA.
In the past twelve (12) months, we have not “sold” personal information subject to the CCPA.
RIGHT TO INFORMATION, ACCESS, AND DELETION.
You may submit requests to exercise your right to information, access, or deletion at hello@HeelsandPyramids.com
We cannot process your request if you do not provide us with sufficient detail to allow us to understand and respond to it.
We will need to verify your identity to process your information, access, and deletion requests and reserve the right to confirm your California residency. To verify your identity, we may require government identification, a declaration under penalty of perjury, or other information. Your authorized agent may make a request on your behalf upon our verification of the agent’s identity and our receipt of a copy of a valid power of attorney given to your authorized agent pursuant to California Probate Code Sections 4000-4465. If you have not provided your agent with such a power of attorney, you must provide your agent with written and signed permission to exercise your CCPA rights on your behalf, provide the information we request to verify your identity, and provide us with confirmation that you have given the authorized agent permission to submit the request.
PERSONAL INFORMATION THAT WE COLLECT, USE, AND DISCLOSE.
The chart below summarizes the Personal Information we collect by reference to the categories of Personal Information specified in the CCPA and describes our practices currently and during the 12 months preceding the effective date of this Privacy Policy. Information you voluntarily provide to us, such as in free-form webforms, may contain other categories of personal information not described below.
| Statutory category of personal information (PI) (Cal. Civ. Code § 1798.140) | PI we collect in this category (See Personal information we collect above for description) | Source of PI | Business/ the commercial purpose of the collection | Categories of third parties to whom we “disclose” PI for a business purpose | Categories of third parties to whom we “sell” PI |
|---|---|---|---|---|---|
| (Identifiers | Contact information content you choose to upload profile data registration information demographic information data about others | your third-party sources | Service delivery Research & Development Marketing & Advertising Compliance & protection | Affiliates Service providers third parties designated by you advertising Partners Professional advisory authorities and other business transferee business and marketing partners other users and the public | N/A |
| (California Customer Records (as defined in California Civil Code section 1798.80) | Contact information content you choose to upload profile information demographic information payment information transaction information registration information data about others | your third-party sources | Service delivery Research & Development Marketing & advertising compliance & protection | Affiliates Service providers payment processors third parties designated by your professional advisors Advertising Partners Authorities and other business transferee business and marketing partners other users and the public | N/A |
| (Commercial Information | Payment information transaction information marketing data online activity data | your third-party sources Automatic collection | Service delivery Research & development Compliance & protection | Affiliates Service providers payment processors Advertising Partners Third parties designated by your professional advisory authorities and other business transferee business and marketing partners | N/A |
| (Financial Information | Transactional data payment information | You | Service delivery research & development marketing & Advertising Compliance & protection | Affiliates Payment processors professional advisory authorities and other business transferees | N/A |
| (Online Identifiers | Profile data Registration information device data | your third-party sources Automatic collection | Service delivery Research & Development Marketing & Advertising Compliance & protection | Affiliates Service providers payment processors third parties designated by you professional advisory authorities and other business transferee business and marketing partners other users and the public | N/A |
| (Internet or Network Information | Marketing data Device data Online activity data | Automatic collection | Service delivery Research & Development Marketing & advertising Compliance & protection | Affiliates Service providers payment processors third parties designated by your professional advisory authorities and other business transferee business and marketing partners | N/A |
| (Geolocation Data | Device data precise geolocation/Location data | Automatic collection | Service delivery Research & Development Marketing & advertising Compliance & protection | Affiliates Service providers advertising partners third parties designated by your professional advisory authorities and other business transferee business and marketing partners | N/A |
| (Inferences | May be derived from your: Contact information profile data content you choose to upload transactional data feedback information demographic information registration information payment information marketing data device data online activity data | N/A | Service delivery Research & Development Marketing & advertising Compliance & protection | Affiliates Service providers Authorities and other business transferee business and marketing partners Advertising Partners | N/A |
NOTICE TO EUROPEAN USERS
The information provided in this “Notice to European Users” section applies only to individuals in Europe.
PERSONAL INFORMATION.
References to “personal information” in this Privacy Policy are equivalent to “personal data” governed by European data protection legislation.
CONTROLLER.
Heels and Pyramids is the controller of your personal information covered by this Privacy Policy for purposes of European data protection legislation.
LEGAL BASES FOR PROCESSING.
The legal bases of our processing of your personal information as described in this Privacy Policy will depend on the type of personal information and the specific context in which we process it. However, the legal bases we typically rely on are set out in the table below. We rely on our legitimate interests as our legal basis only where those interests are not overridden by the impact on you (unless we have your consent or our processing is otherwise required or permitted by law). If you have questions about the legal basis of how we process your personal information, contact us at hello@HeelsandPyramids.com.
| PROCESSING PURPOSE (click the link for details) Details regarding each processing purpose listed below are provided in the section above titled “How we use your personal information”. | Legal basis |
| To operate the Service | Processing is necessary to perform the contract governing our provision of the Service or to take steps that you request prior to signing up for the Service. Where we cannot process your personal data as required to operate the Service on the grounds of contractual necessity, we process your personal information for this purpose based on our legitimate interest in providing you with the Service you access and request. |
| To send you marketing communications display advertisements | Processing is based on your consent where that consent is required by applicable law. Where such consent is not required by applicable law, we process your personal information for these purposes based on our legitimate interests in promoting our business, and you showing you tailored relevant content. |
| For research and development for compliance, fraud prevention, and safety to create anonymous data | These activities constitute our legitimate interests. |
| To comply with the law | Processing is necessary to comply with our legal obligations. |
| To post user testimonials and feedback. Anything else we do with your consent | Processing is based on your consent. Where we rely on your consent you have the right to withdraw it at any time in the manner indicated when you consent or in the Service. |
USE FOR NEW PURPOSES.
We may use your personal information for reasons not described in this Privacy Policy where permitted by law and the reason is compatible with the purpose for which we collected it. If we need to use your personal information for an unrelated purpose, we will notify you and explain the applicable legal basis.
SENSITIVE PERSONAL INFORMATION
We ask that you not provide us with any sensitive personal information (e.g., social security numbers, information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) on or through the Service, or otherwise to us. If you do not consent to our processing and use of such sensitive personal information, you must not submit such sensitive personal information through our Service.
RETENTION
We retain personal information where we have an ongoing legitimate business need to do so (for example, to provide you with a service you have requested; to comply with applicable legal, tax, or accounting requirements; to establish or defend legal claims; or for fraud prevention). When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
YOUR RIGHTS
European data protection laws give you certain rights regarding your personal information. If you are located within the European Union, you may ask us to take the following actions in relation to the personal information that we hold:
- Access. Provide you with information about our processing of your personal information and give you access to your personal information.
- Correct. Update or correct inaccuracies in your personal information.
- Delete. Delete your personal information.
- Transfer. Transfer a machine-readable copy of your personal information to you or a third party of your choice.
- Restrict. Restrict the processing of your personal information.
- Object. Object to our reliance on our legitimate interests as the basis of our processing of your personal information that impacts your rights.
You may submit these requests by email to hello@heelsandpyramids.com or our postal address. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why it is subject to legal restrictions. If you would like to submit a complaint about our use of your personal information or our response to your requests regarding your personal information, you contact us or submit a complaint to the data protection regulator in your jurisdiction. You can find your data protection regulator here.
CROSS-BORDER DATA TRANSFER
If we transfer your personal information from Europe to a country outside of Europe such that we are required to apply additional safeguards to your personal information under European data protection laws, we will do so. Please contact us for further information about any such transfers or the specific safeguards applied.
Questions? Email us at Hello@HeelsandPyramids.com.
Last updated 2023
