Privacy Privacy Policy, Terms & Conditions

(last updated: December 20, 2018)

By using this website, you agree to the following Terms & Conditions and Privacy Policy. You must be at least 18 years of age to use our website. Use of this website is at your own risk. We host our site on a reputable platform and take all efforts to maintain it to the highest standard. However, we make no explicit representations or warranties as to the safety of your individual use of the website. The Terms & Conditions and Privacy Policy contained on this page are subject to change at any time.

Who we are

This website is owned and operated by Amber Haley, LLC DBA Haley&Hawaii, a Hawai’i limited liability company. Our website address is: https://haleyhawaii.wpengine.com. All images, text, designs, graphics, trademarks and service marks are owned by and property of Amber Haley, LLC. It is a violation of federal law to use any of our intellectual property in whole or in part, and modification of any materials contained on this site is illegal and may be prosecuted to the fullest extent permissible should we choose to do so, including asking for financial penalties (damages) and/or an injunction forcing you to stop using our intellectual property immediately.

What personal data we collect and why we collect it

We collect a variety of information from you when you visit our website, make purchases, or interact with us on social media. By accepting this Privacy Policy, you are specifically consenting to our collection of the data described below, to our use of the data, to the processing of this data, and to our sharing of the data with third party processors as needed for our legitimate business interests. The information we collect may include:

Comments

When you leave comments on our site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Personal Data

This is information that can be used to identify you specifically, including your name, shipping address, email address, telephone number or demographic information like your age, gender, or hometown. You consent to giving us this information by providing it to us voluntarily on our website via creating an account, subscribing to our newsletter, making a purchase or filling out our contact form. You provide some of this information when you register with or make purchases from our website. You may also provide this information by participating in various activities associated with our site, including commenting on our posts or contacting us with questions. Your decision to disclose this data is entirely voluntary. You are under no obligation to provide this information, but your refusal may prevent you from accessing certain benefits from our website or from making purchases. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Financial Data

This is data that is related to your payment method, such as credit card or bank transfer details. We collect financial data in order to allow you to purchase, order, return or exchange products or services from our website and any related mobile apps. We store limited financial data. Most financial data is transferred to our payment processor, Dubsado and/or Stripe and you should review these processors’ Privacy Policy to determine how they use, disclose and protect your financial data. Dubsado’s Privacy Policy can be found here: http://www.dubsado.com/dubsado-privacy-policy/ and Stripe’s Privacy Policy can be found here: https://stripe.com/us/privacy/.

Social Networking Data

We may access personal information from social networking sites and apps, including Facebook, Instagram, Linkedin, Twitter, Pinterest, or other social networking sites or apps not named specifically here, which may include your name, your social network username, location, email address, age, gender, profile picture and any other public information. If you do not want us to access this information, please go to the specific social networking site and change your privacy settings.

Derivative Data

Derivative data is information that our servers automatically collect about you when you access our website, such as your IP address, browser type, the dates and times that you access our website, and the specific pages you view. If you are using a mobile application, our servers may collect information about your device name and type, your phone number, your country of origin, and other interactions with our application.

Tracking

Like many other websites, we make use of log files. These files merely log visitors to the site – usually a standard procedure for hosting companies and a part of hosting services’ analytics. The information inside the log files includes internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date/time stamp, referring/exit pages, and possibly the number of clicks. This information is used to analyze trends, administer the site, track user’s movement around the site, and gather demographic information. IP addresses and other such information are not linked to any information that is personally identifiable.

Contact forms and Chat

Most data collected when contacting us on a form is transferred to our user database management Salesforce Sales Cloud, Salesforce Marketing Cloud and Drift. You can review their Privacy Policy to determine how they use, disclose and protect your data here: https://www.salesforce.com/company/privacy/ and here: https://www.drift.com/privacy-policy/.

You make choose to volunteer certain information to us that we will use for email and marketing purposes. This information includes, but is not limited to, your name and email. You may always unsubscribe from any future communications via email, but we reserve the right to maintain a database of past email subscribers. We reserve the right to use this information as reasonably necessary and as provided by law. Your information will be shared with reasonably necessary parties for the ordinary course of conducting our business, such as through Facebook ads or Google Pay Per Click marketing campaigns.

Cookies

Cookies are small text files sent to us by your computer – and web beacons to store certain information. We may use cookies to authenticate your identity, to determine if you are logged onto our website, for personalization, for security, for targeted advertising, or for analysis of the performance of our website and services. For example, cookies allow us to recommend blog posts to you based on what you have read on our site in the past. We use cookies that are not specific to your account but unique enough to allow us to analyze general trends and use, and to customize your interaction with our website.

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

By continuing to use our website and not disabling cookies on your browser, you are consenting to our use of cookies in accordance with the terms of this policy.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We may partner with third party analytic companies, including Google Analytics. The analytic companies may also use cookies or other tracking technologies to analyze visitors’ use of our website or mobile app to determine the popularity of the content, and better understand online activity. We do not transfer personal information to these third-party vendors. However, in order to access our website, you must consent to the collection and use of your information by these third party analytic companies. You should review their Privacy Policy and contact them directly if you have questions. If you do not want any information to be collected and used by tracking technologies, visit the Network Advertising Initiative Opt-Out Tool or Digital Advertising Alliance Opt-Out Tool.

Who we share your data with

We may share your information with third parties in certain situations. In particular, we may share your data with third party processors as needed to serve our legitimate business interests, which include administration of our website, administration of your account, entering into contracts with you, communicating with you, taking orders for goods or services, delivering our goods and services, identifying trends, protecting the security of our company and website, and marketing additional goods and services to you. The legal basis for our disclosure of your data is both your Consent to this Privacy Policy and our own right to protect and promote our legitimate business interests.

How long we retain your data

f you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

We retain personal data as long as it is needed to conduct our legitimate business purposes or to comply with our legal obligations, or until you ask us to delete your data. For example, we will retain certain personal information indefinitely for the purposes of maintaining your account, unless and until you delete your account. Data that we gather for a specific and particular purpose, such as assisting law enforcement or analyzing trends, will not be kept for longer than is necessary for that particular purpose. Data that is no longer needed by us for any of the purposes listed above will be permanently deleted.

You may request that we delete your data at any time. However, note that we cannot control the retention policies of third parties. If you wish to have any third parties, including those to whom we’ve transmitted your data, delete that data, you will need to contact those third parties directly. You may request from us a list of all third parties to whom we have transmitted your data.

What rights you have over your data

You have certain rights with respect to your personal data, as outlined below. Note that we may charge you a reasonable fee for actions that you ask us to take with respect to your data. In addition, we reserve the right to request that you provide us with evidence of your identity before we take any action with respect to the exercise of your data rights. Further, your rights may be restricted or nullified to the extent they conflict with our compelling business interests, the public interest, or the law. To update or delete your information, opt out of receiving any third-party marketing communications or having your personal information used for marketing purposes, please contact us at [email protected]

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Our website is hosted by servers located in the U.S. Therefore, if you reside in the European Union, some of your data will be transferred internationally to those servers. Transfers will be protected by appropriate safeguards, namely the EU-US Privacy Shield. More information on the Privacy Shield can be found at: https://www.privacyshield.gov/welcome.

Visitor comments may be checked through an automated spam detection service.

How we protect your data

We take all reasonable steps to protect your personal data and keep your information secure. We use recognized online secure payment systems and implement generally accepted standards of security to protect against personal data loss or misuse. Our website utilizes a variety of different security measures designed to protect information from unauthorized access by users, including the utilization of our Secure Sockets Layer, which is a method for safely encrypting data online. This protects confidential information – such as credit card numbers, personal information, and financial data – from loss, misuse, and hacking. However, no security measure is foolproof, and no method of data transmission can be guaranteed against interception or misuse. We cannot guarantee complete security of any information you transmit to us.

The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 14 days.

This site is scanned for potential malware and vulnerabilities by Sucuri’s SiteCheck. We do not send personal information to Sucuri; however, Sucuri could find personal information posted publicly (such as in comments) during their scan. For more details, please see Sucuri’s privacy policy at https://sucuri.net/privacy.

This site is part of a network of sites that protect against distributed brute force attacks. To enable this protection, the IP address of visitors attempting to log into the site is shared with a service provided by ithemes.com. For privacy policy details, please see the iThemes Privacy Policy at https://ithemes.com/privacy-policy/.

What data breach procedures we have in place

We will notify you of promptly any known breach of our security systems or your data which might expose you to serious risk.

Agreement Terms

By using our website, you are consenting to our Privacy Policy, Terms & Conditions and you therefore acknowledge that your personal data may be available, via the internet, around the world. We cannot prevent the use or misuse of your data by other parties.

The information contained herein constitutes the entire agreement between site users and our company relating to the use of this website.

These terms, conditions and privacy policy are governed by and construed in accordance with United States law. Any dispute arising out of or related to the information contained herein is subject to adjudication in the state of Hawai’i, United States.