Privacy Policy
Lepton Silk appreciate your interest in our online store. The protection of your privacy and your personal data is very important to us, therefore we operate in accordance with the EU General Data Protection Regulations (GDPR) from May, 2018.
The GDPR gives instructions that the policy must be easy to understand and in a language all involved people can read. Since we have clients all over the globe and our international business language is English, we have decided to only post this as only that. If you need a translated version of this policy, you may use one of the several free translation services online or simply copy it and have it translated to your own local language. Thank you for your understanding.
These regulations are considered the strictest standards worldwide. Since your privacy is very important to us, we always comply with these standards and thus comply with the requirements of other data security standards.. For this reason, Protecting your privacy is a core part of our mission. You trust us to take care of your data, and we strive to be worthy of that trust.
We pledge to:
- Be transparent about how we collect, use and store your data.
- Not to collect or process more personal data that we need in order to provide you with our services and continue to develop those services for your benefit.
- Design our apps, systems, websites to inherently protect your privacy (privacy by design).
- Not to store personal data for longer than needed or instructed by you.
- Enable you to delete and correct personal data that is wrong or you do not wish to keep.
- Ask for your permission before we share your data with third parties, and only to share your data when it benefits you as a customer.
- Use the best available security practices and tools to protect your data.
- By using any app or system from Lepton Silk, you agree to allow us to collect and process information as described below.
- we collect and use personal data only as it might be needed for us to deliver to you our world-class products, services, systems, websites and mobile applications (collectively, our “Services”). Your personal data includes information such as:
- Name
- Address
- Telephone number
- Date of birth
- Email address
- Other data collected that could directly or indirectly identify you.
Our Privacy Policy is intended to describe to you how and what data we collect, and how and why we use your personal data. It also describes options we provide for you to access, update or otherwise take control of your personal data that we process.
If at any time you have questions about our practices or any of your rights described below, you may reach our Data Protection Officer (“DPO”) and our dedicated team that supports this office by contacting us at cs@mylepton.com or Whatsapp us at +852 5703 9608. This inbox is actively monitored and managed so that we can deliver an experience that you can confidently trust.
Below you will find extensive information about how we handle your data.
1. Access data and hosting
You may visit our website without revealing any personal information. With every visit on the website, the web server stores automatically only a so-called server log file which contains e.g. the name of the requested file, your IP address, the date and time of the request, the volume of data transferred and the requesting provider (access data), and documents the request.
These access data are analysed exclusively for the purpose of ensuring the smooth operation of the website and improving our offer. This serves according to Art. 6 (1) 1 lit. f) GDPR the protection of our legitimate interests in the proper presentation of our offer that are overriding in the process of balancing of interests. All access data are deleted no later than seven days after the end of your visit on our website.
2. Data collection and use for processing the contract, making contact and for opening a customer account
We collect personal data that you voluntarily submit to us when you place an order or contact us (e.g. via contact form or by email). Mandatory fields are marked as such because we absolutely need those data to perform the contract or process your contact request and you would otherwise not be able to complete your order or send the contact request. It is evident in each input form what data are collected. We use the data that you disclose to us to perform the contract and process your enquiries according to Art. 6 (1) 1 lit. b) GDPR.
As far as you have given your consent according to Art. 6 (1) 1 lit. a) GDPR by creating Your customer account, we use Your data for the purpose of opening the customer account.
Upon completion of the contract or deletion of your customer account, any further processing of your data will be restricted, and your data will be deleted upon expiry of the retention period applicable under relevant regulations, unless you expressly consent to the further use of your data or we reserve the right to further use your personal data in the scope and manner permitted by law, of which we inform you in this notice. Your customer account can be deleted at any time. For this purpose you can either send a message to the contact option specified below or use the relevant function available in the customer account.
3. Transfer of data
We disclose your data to the shipping company in the scope required for the delivery of the ordered goods according to Art. 6 (1) 1 lit. b) GDPR. Depending on the payment service provider you have selected during the ordering process, we disclose the payment details collected for order processing purposes to the bank commissioned to handle the payment and, as the case may be, to the payment service provider commissioned by us or to the selected payment service. Some of those data are collected by the selected payment service providers themselves if you open an account with them. In such a case, during the ordering process, you must register with your payment service provider using your access data. In this respect, the privacy notice of the relevant payment service provider applies.
4. Right to information, correction, blocking, deletion
You have the right at any time in the context of the applicable legal provisions to provide free information about your stored personal data, the origin of the data, their recipients and the purpose of data processing and,
if necessary, a right to correct, block or delete this data. In this regard and also to further questions on the subject of personal data, you can always contact us via the contact options listed in the imprint.
5. SSL or TLS encryption
For security reasons and to protect the transmission of confidential content that you send to us as a site operator, our website uses an SSL or. TLS encryption. Thus, data that you submit via this website, for others not readable. You will recognize an encrypted connection at the "https: //" address bar of your browser and at the lock icon in the browser bar.
6. Email newsletter
E-mail advertising if you subscribe to the newsletter
If you subscribe to our newsletter, we will regularly send you our e-mail newsletter based on your consent according to Art. 6 (1) 1 lit. a) GDPR, using the data required or disclosed by you separately for this purpose.
You may unsubscribe from the newsletter service at any time. For this purpose you can either send a message to the contact option specified below or use the opt-out link in the newsletter. Upon unsubscription, we will delete your email address unless you have expressly consented to the further use of your data or we reserve the right to further use your personal data in the scope and manner permitted by the law, of which we inform you in this notice.
7. Cookies and web-analysis
In order to make visiting our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. Cookies are small text files that are automatically stored on your end device. Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). Other cookies remain on your end device and enable us to recognise your browser during your next visit (persistent cookies). This serves the protection of our legitimate interests in the optimised presentation of our offer according to Art. 6 (1) 1 lit f GDPR that are overriding in the process of balancing of interests.
Cookies are also used for market research and for suitable product advertisements. Further information on this can be found in the notes for the respective tool below. You can find the storage period in the overview function in the cookie settings of your web browser. You can set your browser so that you are informed about the setting of cookies and decide individually whether to accept them or whether to exclude the acceptance of cookies in certain cases or in general. If cookies are not accepted, however, the functionality of our website may be restricted. Below you will find information on the cookies we use and the settings that can be made in your browser.
Necessary cookies: These cookies are necessary to enable you to use our website. This includes e.g. cookies that enable you to log into the customer area or add items to your shopping cart.
Analytical / performance cookies: These cookies enable collecting anonymised data about user behaviour on our website. We analyse them e.g. to improve the functionality of our website and recommend you products that will be interesting to you.
Functionality cookies: These cookies are used for certain features of our website, e.g. to improve the website’s navigation, or deliver to you customised and relevant information (e.g. ads that match your interests).
How can I change cookie settings in my browser? Every browser has a different policy for managing the cookie settings. The browser’s policy is described in the Help menu of every browser and explains how you can change your cookie settings. To find out how to change the settings in your browser, see the links below:
Internet Explorer™
Safari™
Chrome™
Firefox™
Opera™
Using of Google (Universal) Analytics for web analytics
For the purpose of website analytics, this website uses Google (Universal) Analytics, a web analytics service provided by Google. Google Analytics is an offer from Google Ireland Limited, a company incorporated and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.co.uk). This serves the protection of our legitimate interests in the optimised presentation of our offer according to Art. 6 (1) 1 lit. f) GDPR that are overriding in the process of balancing of interests. Google (Universal) Analytics uses methods, like e.g. cookies, that enable an analysis of your use of the website. The information collected automatically by cookies about your use of this website are as a rule transmitted to and stored on a Google server in the United States. At the same time, as IP anonymisation is enabled on this website, the IP address will be shortened before being transmitted within the area of member states of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases, the full IP address will be sent to a Google server in the USA and shortened there. Generally, Google does not associate the anonymised IP address, transmitted from your browser through Google Analytics, with any other data held by Google.
Where information is transmitted to and stored by Google on servers located in the United States, the U.S. company Google LLC is certified under the EU-US Privacy Shield. You will see the up-to-date certificate here. Based on this agreement between the USA and the European Commission, the latter has recognised entities certified to the Privacy Shield as those ensuring an adequate level of data protection.
You may prevent the data generated by cookies and related to your use of the website (incl. your IP address) from being recorded and processed by Google by downloading and installing the browser plugin available through this link.
Alternatively to the browser plugin, you may click <a href="javascript:gaOptout()">this link</a>, to prevent Google Analytics from recording your data on this website in the future. In this process, an opt-out cookie will be stored on your end-user device. If you clear your cookies, you will have to click the link again.
8. Online Marketing
Google Fonts
This website contains the script code "Google Fonts". Google Fonts is an offer from Google Ireland Limited, a company incorporated and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.co.uk). This serves to protect our legitimate interests in a uniform presentation of the contents on our website in accordance with Art. 6 (1) 1 lit. f) GDPR.
This will establish a connection between the browser you are using and Google's servers. This gives Google knowledge that our website has been accessed via your IP address.
Where information is transmitted to and stored by Google on servers located in the United States, the U.S. company Google LLC is certified under the EU-US Privacy Shield. A current certificate can be viewed here. As a result of this agreement between the US and the European Commission, the latter has established an adequate level of data protection for companies certified under the Privacy Shield.
Further information about data processing by Google can be found in Google's privacy policy.
9. Social Media
To find out more about the purpose and scope of collection, further processing and use of the data by the providers on their websites, and to learn about the available contact options and your rights in this respect and how you can customise your browser to better protect your privacy, please see the data privacy policies of the providers:
Our online presence on Facebook, Twitter, Youtube, Instagram, Pinterest, LinkedIn
Our presence on social networks and platforms serves a better, active communication with our customers and interested parties. We inform there about our products and current special offers.
When you visit our websiteson social media, your data may be automatically collected and stored for market research and advertising purposes. So-called usage profiles are created from these data using pseudonyms. These can be used, for example, to place advertisements inside and outside the platforms that presumably correspond to your interests. For this purpose, cookies are usually used on your terminal. The visitor behaviour and the interests of the users are stored in these cookies. This serves in accordance with Art. 6 (1) 1 lit. f) GDPR to protect our legitimate interest in an optimised presentation of our offer and effective communication with customers and interested parties that are overriding in the balancing of interests. If you are asked by the respective social media platform operators for a consent into the data processing, e.g. with the help of a checkbox, the legal basis of data processing is Art. 6 (1) 1 lit. a) GDPR.
If the aforementioned social media platforms are headquartered in the USA, the following applies: The European Commission has adopted a decision on appropriateness for the USA. This goes back to the EU-US Privacy Shield. A current certificate for the respective company can be viewed here.
For detailed information on the processing and use of the data by the providers on their pages as well as a contact option and your rights and setting options for the protection of your privacy, in particular opt-out options, please refer to the providers' data protection information linked below. If you still need help, you can contact us.
Facebook: https://www.facebook.com/about/privacy/
Google/ YouTube: https://policies.google.com/privacy?hl=en-GB
Twitter: https://twitter.com/en/privacy
Instagram: https://help.instagram.com/519522125107875
Pinterest: https://about.pinterest.com/en/privacy-policy
LinkedIn: https://www.linkedin.com/legal/privacy-policy
Possibility to object (opt-out):
Facebook: https://www.facebook.com/settings?tab=ads
Google/ YouTube: https://adssettings.google.com/authenticated?hl=en-GB
Twitter: https://twitter.com/personalization
Instagram: https://help.instagram.com/519522125107875
Pinterest: https://www.pinterest.co.uk/settings
LinkedIn: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
10. Contact possibilites and your rights
Being the data subject, you have the following rights according to:
• art. 15 GDPR, the right to obtain information about your personal data which we process, within the scope described therein;
•art. 16 GDPR, the right to immediately demand rectification of incorrect or completion of your personal data stored by us;
• art. 17 GDPR, the right to request erasure of your personal data stored with us, unless further processing is required
- to exercise the right of freedom of expression and information;
- for compliance with a legal obligation;
- for reasons of public interest or
- for establishing, exercising or defending legal claims;
• art. 18 GDPR, the right to request restriction of processing of your personal data, insofar as
- the accuracy of the data is contested by you;
- the processing is unlawful, but you refuse their erasure;
- we no longer need the data, but you need it to establish, exercise or defend legal claims, or
- you have lodged an objection to the processing in accordance with art. 21 GDPR;
• art. 20 GDPR, the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request its transmission to another controller;
• art. 77 GDPR, the right to complain to a supervisory authority . As a rule, you can contact the supervisory authority at your habitual place of residence or workplace or at our company headquarters.
If you have any questions about how we collect, process or use your personal data, want to enquire about, correct, restrict or delete your data, or withdraw any consents you have given, or opt-out of any particular data use, please contact us directly using the contact data provided in our site notice.
Right to object
If we process personal data as described above to protect our legitimate interests that are overriding in the process of balancing of interests, you may object to such data processing with future effect. If your data are processed for direct marketing purposes, you may exercise this right at any time as described above. If your data are processed for other purposes, you have the right to object only on grounds relating to your particular situation.
After you have exercised your right to object, we will no longer process your personal data for such purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.
This does not apply to the processing of personal data for direct marketing purposes. In such a case we will no longer process your personal data for such purposes.
11. Google Tag Manager
This website uses Google Tag Manager. This service allows website tags to be managed through a single interface. Google Tool Manager only implements tags. This means: no cookies are used and no personal data is collected. Google Tool Manager triggers other tags, which may collect data. However, Google Tag Manager does not access this data. If deactivated at the domain or cookie level, it will remain in effect for all tracking tags as far as they are implemented with the Google Tag Manager.
12. Changes in our Privacy Policy.
We reserve the right to modify this Privacy Policy at any time. If we decide to change our Privacy Policy, we will post those changes to this Privacy Policy and any other places we deem appropriate, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it. If we make material changes to this Privacy Policy, we will notify you here, by email, or by means of a notice on our home page, at least thirty (30) days prior to the implementation of the changes.