HEMPLANET PRIVACY POLICY
Compliance with statutory data protection provisions is of utmost importance to us. This privacy policy aims to inform you, as a user of our website, about the nature, scope, and purpose of personal data collection and processing, and to inform you of your existing rights. We have already taken into account new developments in line with the General Data Protection Regulation (GDPR), which applies from 25.5.2018.
​
Our website and the services we offer are operated by Hemplanet, located at Reve, Hemplanet Main Road, Hemplanet - 605101, Tamil Nadu, India. You can contact us by phone at +91 8098021280, by email at info@Hemplanet.in, or by visiting our website at www.hemplanet.in.
​
We have designed our website to collect as little data from you as possible. You can visit our website without entering any personal data. Personal data collection and processing are only necessary if you decide to use certain services (e.g. using the contact form or placing an order). In doing so, we ensure that we only collect and process your personal data in accordance with a legal basis or with your consent. We adhere to the provisions of the GDPR and the relevant applicable national regulations and other special legislation on data protection.
In accordance with GDPR, the terms used in this data protection policy are defined as follows:
​
'Personal data' refers to any information relating to an identified or identifiable natural person (hereinafter referred to as 'data subject').
​
'Processing' refers to any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means.
​
'Restriction of processing' refers to the marking of stored personal data with the aim of limiting their processing in the future.
​
'Pseudonymisation' refers to the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information.
​
'Controller' refers to the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
​
'Processor' refers to a natural or legal person, public authority, agency or other bodies which processes personal data on behalf of the controller.
​
'Recipient' refers to a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not.
​
'Third party' refers to a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
​
'Consent' of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
​
When you visit our website, we sometimes collect certain personal data concerning you. We require your consent to do this. This takes place in the first instance in our dialogue and service area specifically when contact is made via a contact form, newsletter subscription or placing an order.
DECLARATION OF CONSENT
​
By utilizing the forms provided by us, you hereby provide consent for the collection and processing of your personal data, as outlined in our data protection policy. Please note that you may withdraw this consent at any time, which will take effect for future collections, by providing us with a relevant statement. However, please be advised that the use of our service is contingent upon your consent. To withdraw your consent, please utilize the above contact methods, and include your name, email, and postal address.
PURPOSE AND LEGAL BASIS FOR PERSONAL DATA PROCESSING
​​
We process personal data required to authorize, execute, or process our service offering utilizing Article 6, Section 1b GDPR as our legal basis. If we engage external service providers as part of commissioned data processing, the legal basis for the processing will be governed by Article 28 GDPR. We collect, process, and utilize personal data solely for the following purposes:
Purpose of the data processing
Legal basis for processing (Why is data processing required)
When contact is made and for related correspondence
Based on your consent
Dealing with your request and to provide you with any additional advice you require
Based on your consent
To ensure that our website is presented in the most effective and interesting way ( e.g. through anonymized evaluation)
Based on legitimate interests
Registeration as an Hemplanet.in user; taking part in product reviews
Based on your consent
Participation in competitions
Based on your consent
PERSONAL DATA COLLECTION AND PROCESSING
​
We collect and process your personal data solely when you voluntarily provide it, and with your knowledge, for instance, by completing forms or sending emails. The data we collect initially includes the following information in the forms provided:
GENERAL CONTACT INFORMATION:
​
First Name
Surname
Telephone number
Email address
Street
House number
Postcode
Town/city
Country
Message
HEMPLANET STORE ORDER:
​
First name
Surname
Telephone number
Email address
Street
House number
Postcode
Town/city
Country
HEMPLANET STORE USER ACCOUNT:
​
First name
Surname
Email address
Password
HEMPLANET STORE NEWSLETTER:
​
Email address
The personal data you provide, and its content, will remain exclusively with us. We will only store and process your data for the purposes stated above. Any use beyond the indicated purpose will require your express consent, as will the transfer and transmission of your data to third parties.
LOG FILES
​
The web server temporarily records the connection data for the querying computer (IP address), the pages you visit on our website, the date and duration of your visit, the identification data of the browser and operating system type used, the website you are visiting us from, and successful access in protocol files (log files). The technical administration of websites and the anonymous collection of statistics allow us to evaluate access to the Hemplanet Online Store service and improve data protection and data security within our company to ensure an optimum level of protection for the personal data we process. The server log file data is stored separately from all the personal data you enter for a period of 12 months for analytical purposes before being erased.
COOKIES
​
Our website collects and stores information using browser cookies.
​
WHAT ARE COOKIES?
​
Cookies are small text files that are stored on your computer, mobile, or tablet and which store certain settings and data for interacting with our system via your browser. A cookie usually contains the name of the domain that the cookie data was sent from, information on the age of the cookie, and an alphanumeric identification code.
​
WHY DO WE USE COOKIES?
​
Cookies allow our systems to recognize your device and make any predefined settings available immediately. When you access the platform, a cookie is transmitted to your computer hard disk. Cookies help us to improve our website and provide you with better, more tailored service. They enable us to:
​
Store information on your preferred activities on the website and align our website to your individual interests.
​
Speed up the processing of your queries.
​
We collaborate with third-party services that help us make the online service and website more appealing to you. When you visit the website, cookies from these partner companies (third-party providers) are also stored on your hard disk. These cookies are automatically erased after a fixed period.
CAN I DECIDE WHETHER COOKIES ARE USED?
​
You can manage browser cookies through your browser settings. The 'Help' feature on most browsers will tell you how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie, how to disable cookies, and when cookies will expire. If you disable all cookies on your browser, neither we nor third parties will transfer cookies to your browser. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some features and services may not work.
COOKIE NAME
DESCRIPTION
DURATION
Session Cookies
​Session cookies are used by the server to store information
about user's page activities. Anonymous identifier of the current
session is encrypted in the session cookies and they do not
contain any personal information in the unencrypted form.
The session cookie is stored in the temporary memory and is removed when a user closes the Web browser.
Auth. Cookies
Authentication cookies contain the heavily encrypted identifier of the authenticated website visitor (shop account): ASPXAUTH_SS for non-secure (HTTP) pages ASPXAUTH_SS_s for secure (HTTPS) pages
Expiration date of the authentication cookie depends on whether a user selected the option 'Remember me' while logging in the web store. If not selected, the authentication cookie will be deleted when the Web browser is closed. If 'Remember me' is selected, the expiration date of the authentication cookie will be set to 30 days.
Anti-Forgery Cookies
Basket cookies contain the encrypted anonymous identifier of the visitor's basket and do not contain any personal information in the unencrypted form.
Basket cookie is stored for 3 days.
Basket Cookies
Anti-forgery cookies are used to prevent CSRF attacks. It guarantees that the user is the one who initially requested the page form. It prevents anybody to forge a link and have it activated by an authenticated user.
Anti-forgery cookies are removed when a user closes the Web browser.
Last Viewed Products Cookies
This cookie is used to store information about the last viewed products that are shown at the bottom of the product and product list pages.
Last viewed products cookie is removed when a user closes the Web browser.
Integration of Third-Party Content and Services
​
Our website integrates content and services from external providers such as Google Maps and YouTube. The user's IP address is transmitted to these providers to access and display the content in the user's browser. We strive to only use third-party providers that require the IP address only for content provision, but we cannot guarantee that the IP address won't be stored for statistical or other purposes. In case we become aware of such storage, we will notify you.
Use of Google Analytics
​
Our website uses Google Analytics, a web analytics service provided by Google Inc. Google Analytics uses cookies that are stored on your computer and enable the analysis of your website use. The information collected by the cookie about your website use is usually transmitted to a Google server in the USA and stored there. IP anonymization is activated on our website, meaning that your IP address is shortened in advance by Google within the European Union or other contracting states of the Agreement on the European Economic Area. In exceptional cases, the full IP address is transferred to a Google server in the USA and shortened there. This processing is based on our legitimate interest in statistical analysis of user behavior for optimization and marketing purposes. Google will use this information to evaluate your use of the website, compile reports on website activities, and provide additional services associated with website use and internet use to us as the website operator. Your IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google.
​
You can prevent the storage of cookies by adjusting the relevant setting in your browser software, but this may limit your ability to use all functions of this website to their full extent. You can also prevent the collection of data extracted by the cookie concerning your website use (including your IP address) by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en
​
Google LLC, headquartered in the USA, is certified for the US-European "Privacy Shield" data protection framework, which guarantees compliance with the level of data protection applicable in the EU.
​
For more information on how user data is used in Google Analytics, please see Google's Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=en
Use of Retargeting Tools
​
We use retargeting technology to categorize website users into user groups and address website visitors on other websites or in apps with personalized advertising about our products and services. We use the following products supplied to us by service providers: Facebook Custom Audience/Facebook Pixel/Google AdWords User Lists/Google Dynamic Remarketing. Facebook Custom Audience and Facebook Pixel are products of Facebook Ireland Ltd. Our website uses a Facebook Pixel that creates a direct connection to Facebook servers. If you visit other websites that use Facebook Custom Audience/Facebook Pixel, this information is also linked to your user account. We cannot see which other websites you visit.
If you are not a Facebook user or not logged into Facebook when you visit our website, your visit is not assigned to a Facebook user account.
For more information on the protection of your privacy on Facebook, please see Facebook's privacy information at https://www.facebook.com/about/privacy/. You can manage the content and information you have shared through your use of Facebook via the "Activity log" tool.
Browser Settings
​
Most internet browsers are set up to accept cookies automatically. However, you can set your browser to refuse a cookie or ask your browser to show you where a cookie has been set up. Certain services are only activated by the presence of a cookie. If you choose to refuse cookies, some features of this site may not be available to you.