Our website and the services we offer are operated by Hemplanet, located at Reve, Hemplanet Main Road, Hemplanet - 605101, Tamil Nadu, India. You can contact us by phone at +91 8098021280, by email at info@Hemplanet.in, or by visiting our website at www.hemplanet.in.
We have designed our website to collect as little data from you as possible. You can visit our website without entering any personal data. Personal data collection and processing are only necessary if you decide to use certain services (e.g. using the contact form or placing an order). In doing so, we ensure that we only collect and process your personal data in accordance with a legal basis or with your consent. We adhere to the provisions of the GDPR and the relevant applicable national regulations and other special legislation on data protection.
In accordance with GDPR, the terms used in this data protection policy are defined as follows:
'Personal data' refers to any information relating to an identified or identifiable natural person (hereinafter referred to as 'data subject').
'Processing' refers to any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means.
'Restriction of processing' refers to the marking of stored personal data with the aim of limiting their processing in the future.
'Pseudonymisation' refers to the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information.
'Controller' refers to the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
'Processor' refers to a natural or legal person, public authority, agency or other bodies which processes personal data on behalf of the controller.
'Recipient' refers to a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not.
'Third party' refers to a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
'Consent' of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
When you visit our website, we sometimes collect certain personal data concerning you. We require your consent to do this. This takes place in the first instance in our dialogue and service area specifically when contact is made via a contact form, newsletter subscription or placing an order.
DECLARATION OF CONSENT
By utilizing the forms provided by us, you hereby provide consent for the collection and processing of your personal data, as outlined in our data protection policy. Please note that you may withdraw this consent at any time, which will take effect for future collections, by providing us with a relevant statement. However, please be advised that the use of our service is contingent upon your consent. To withdraw your consent, please utilize the above contact methods, and include your name, email, and postal address.
PURPOSE AND LEGAL BASIS FOR PERSONAL DATA PROCESSING
We process personal data required to authorize, execute, or process our service offering utilizing Article 6, Section 1b GDPR as our legal basis. If we engage external service providers as part of commissioned data processing, the legal basis for the processing will be governed by Article 28 GDPR. We collect, process, and utilize personal data solely for the following purposes:
Purpose of the data processing
Legal basis for processing (Why is data processing required)
When contact is made and for related correspondence
Based on your consent
Dealing with your request and to provide you with any additional advice you require
Based on your consent
To ensure that our website is presented in the most effective and interesting way ( e.g. through anonymized evaluation)
Based on legitimate interests
Registeration as an Hemplanet.in user; taking part in product reviews
Based on your consent
Participation in competitions
Based on your consent
PERSONAL DATA COLLECTION AND PROCESSING
We collect and process your personal data solely when you voluntarily provide it, and with your knowledge, for instance, by completing forms or sending emails. The data we collect initially includes the following information in the forms provided:
GENERAL CONTACT INFORMATION:
HEMPLANET STORE ORDER:
HEMPLANET STORE USER ACCOUNT:
HEMPLANET STORE NEWSLETTER:
The personal data you provide, and its content, will remain exclusively with us. We will only store and process your data for the purposes stated above. Any use beyond the indicated purpose will require your express consent, as will the transfer and transmission of your data to third parties.
The web server temporarily records the connection data for the querying computer (IP address), the pages you visit on our website, the date and duration of your visit, the identification data of the browser and operating system type used, the website you are visiting us from, and successful access in protocol files (log files). The technical administration of websites and the anonymous collection of statistics allow us to evaluate access to the Hemplanet Online Store service and improve data protection and data security within our company to ensure an optimum level of protection for the personal data we process. The server log file data is stored separately from all the personal data you enter for a period of 12 months for analytical purposes before being erased.
Our website collects and stores information using browser cookies.
WHAT ARE COOKIES?
Cookies are small text files that are stored on your computer, mobile, or tablet and which store certain settings and data for interacting with our system via your browser. A cookie usually contains the name of the domain that the cookie data was sent from, information on the age of the cookie, and an alphanumeric identification code.
Cookies allow our systems to recognize your device and make any predefined settings available immediately. When you access the platform, a cookie is transmitted to your computer hard disk. Cookies help us to improve our website and provide you with better, more tailored service. They enable us to:
Store information on your preferred activities on the website and align our website to your individual interests.
Speed up the processing of your queries.
We collaborate with third-party services that help us make the online service and website more appealing to you. When you visit the website, cookies from these partner companies (third-party providers) are also stored on your hard disk. These cookies are automatically erased after a fixed period.
CAN I DECIDE WHETHER COOKIES ARE USED?
You can manage browser cookies through your browser settings. The 'Help' feature on most browsers will tell you how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie, how to disable cookies, and when cookies will expire. If you disable all cookies on your browser, neither we nor third parties will transfer cookies to your browser. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some features and services may not work.
Session cookies are used by the server to store information
about user's page activities. Anonymous identifier of the current
session is encrypted in the session cookies and they do not
contain any personal information in the unencrypted form.
The session cookie is stored in the temporary memory and is removed when a user closes the Web browser.
Authentication cookies contain the heavily encrypted identifier of the authenticated website visitor (shop account): ASPXAUTH_SS for non-secure (HTTP) pages ASPXAUTH_SS_s for secure (HTTPS) pages
Expiration date of the authentication cookie depends on whether a user selected the option 'Remember me' while logging in the web store. If not selected, the authentication cookie will be deleted when the Web browser is closed. If 'Remember me' is selected, the expiration date of the authentication cookie will be set to 30 days.
Basket cookies contain the encrypted anonymous identifier of the visitor's basket and do not contain any personal information in the unencrypted form.
Basket cookie is stored for 3 days.
Anti-forgery cookies are used to prevent CSRF attacks. It guarantees that the user is the one who initially requested the page form. It prevents anybody to forge a link and have it activated by an authenticated user.
Anti-forgery cookies are removed when a user closes the Web browser.
Last Viewed Products Cookies
This cookie is used to store information about the last viewed products that are shown at the bottom of the product and product list pages.
Last viewed products cookie is removed when a user closes the Web browser.
Integration of Third-Party Content and Services
Our website integrates content and services from external providers such as Google Maps and YouTube. The user's IP address is transmitted to these providers to access and display the content in the user's browser. We strive to only use third-party providers that require the IP address only for content provision, but we cannot guarantee that the IP address won't be stored for statistical or other purposes. In case we become aware of such storage, we will notify you.
Use of Google Analytics
You can prevent the storage of cookies by adjusting the relevant setting in your browser software, but this may limit your ability to use all functions of this website to their full extent. You can also prevent the collection of data extracted by the cookie concerning your website use (including your IP address) by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en
Google LLC, headquartered in the USA, is certified for the US-European "Privacy Shield" data protection framework, which guarantees compliance with the level of data protection applicable in the EU.
Use of Retargeting Tools
We use retargeting technology to categorize website users into user groups and address website visitors on other websites or in apps with personalized advertising about our products and services. We use the following products supplied to us by service providers: Facebook Custom Audience/Facebook Pixel/Google AdWords User Lists/Google Dynamic Remarketing. Facebook Custom Audience and Facebook Pixel are products of Facebook Ireland Ltd. Our website uses a Facebook Pixel that creates a direct connection to Facebook servers. If you visit other websites that use Facebook Custom Audience/Facebook Pixel, this information is also linked to your user account. We cannot see which other websites you visit.
If you are not a Facebook user or not logged into Facebook when you visit our website, your visit is not assigned to a Facebook user account.
For more information on the protection of your privacy on Facebook, please see Facebook's privacy information at https://www.facebook.com/about/privacy/. You can manage the content and information you have shared through your use of Facebook via the "Activity log" tool.