Privacy Policy – STLTH VAPE

This Privacy Policy explains how STLTH Vape ("we", "us", or "our") collects, uses, and shares your personal information when you visit or purchase from STLTHVape.com (the "Site"), use our services, or otherwise communicate with us regarding the Site (collectively, the "Services"). For the purposes of this Privacy Policy, "you" and "your" refers to you as the user of the Services, whether you are a customer, website visitor, or another individual whose information we have collected under this Privacy Policy.

SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?

The personal information we collect depends on your interactions with our Site and Services. We define “personal information” as data that identifies, relates to, describes, or can be associated with you. Specific categories and types of data collected are outlined in the following sections.

Directly Received Information:

Valid Government Issued ID: Due to the regulations around our products, we may request a copy of a valid government-issued ID to verify your eligibility for purchasing our products. This information is relayed to an automated system to verify your age. We may also opt to do a manual verification for security purposes.
Vape Retailer License: Depending on your province, we may request a vape retailer license to confirm if you are eligible to purchase our products for retail.
Business Registry: If you are a business, we may request a copy of your business registry and business name to confirm your business.
Information Related to Your Order: To fulfill our services, we will need to keep your name, email address, phone number, payment confirmation, billing information, and shipping address to confirm your
Account Information: When creating an account, we record details such as username, password, and security questions for account security purposes.
Customer Support Information: We save any information provided when contacting us for support, including emails, phone numbers, and messages, to help provide the best customer support experience possible.

Automatically Collected Information

When you interact with our Site, we may collect the following:

Usage Data: Device and browser information, IP address, network connection details, and interaction metrics are automatically collected via Shopify.
Cookies and Tracking Technologies: Information stored via cookies and pixels to personalize user experience, save preferences, and analyze user behaviour.

Third-Party Sources

Shopify

Our store is hosted on Shopify Inc. They provide us with an online e-commerce platform that allows us to sell our products and services to you.

Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.

Payment Processors: If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
Service Partners: Data from partners (such as Shopify) providing analytics, marketing, and advertising services.

For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).

Trulio

Our store utilizes Trulioo Inc. to facilitate identity verification services. Trulioo provides a secure platform for collecting, verifying, and managing sensitive personal information to ensure compliance with regulatory requirements and enhance user security.

Data Storage and Security: Your personal data is securely stored through Trulioo’s infrastructure, including data storage systems, databases, and general application services. All data collected by Trulioo is stored on secure servers, safeguarded by robust firewalls and encryption technologies. Access to this data is restricted to authorized personnel only, ensuring its confidentiality and integrity.

Details Collected by Trulioo: Trulioo collects specific details to verify your identity and facilitate secure transactions. The data collected may include:

First Name
Middle Name
Last Name
Day of Birth
Month of Birth
Year of Birth
Address Line 1
Municipality
Province
Postal Code
Primary Telephone Number
Cell Number
Social Insurance Number (SIN)
Minimum Age Verification
Secondary Telephone Number

Purpose of Data Collection: The data collected by Trulioo is used exclusively for identity verification, fraud prevention, and regulatory compliance. Trulioo ensures that the information is utilized in a manner consistent with applicable data protection laws and industry standards.

Data Retention: Trulioo retains your data only for as long as necessary to fulfill the purposes for which it was collected. Once the verification process is complete and the data is no longer required, it is securely deleted in accordance with Trulioo’s data retention policies.

Third-Party Integration and Service Providers: Trulioo may work with authorized third-party service providers to facilitate analytics, compliance, and identity verification processes. These partners are contractually obligated to adhere to strict data protection and confidentiality requirements.

Additional Information: For more detailed information about how Trulioo collects, uses, and protects your data, you may refer to their Terms of Service (https://www.trulioo.com/terms-of-service) or Privacy Policy (https://www.trulioo.com/privacy-policy).

How is the Information Used?

Fulfillment of Orders and Communication

We collect your information to assist with processing your orders, managing your account, and handling notifications related to purchases, returns, exchanges, transactions, and other account-related activities.

Marketing Communications

We use your personal information to personalize and tailor marketing communications to your preferences, ensuring that the emails, text messages, postal mail, and advertisements you receive are relevant to your interests. This includes customizing the Services and advertisements on our website and other platforms to better align with your preferences. You can withdraw your consent for these activities anytime by clicking the unsubscribe link in our communications.

Account Security

We may use your personal information to detect, investigate, and prevent potential fraudulent, illegal, or malicious activities. You are responsible for maintaining the confidentiality of your account credentials, including your username and password. Please contact us immediately if you suspect that your account has been compromised. We have implemented security measures to protect your personal information from loss, theft, unauthorized access, disclosure, copying, or modification.

Customer Support

We use your personal information to provide you with customer support and improve our Services. This is in our legitimate interests in order to be responsive to you, to provide effective services to you, and to maintain our business relationship with you.We utilize personal information for customer support and service enhancement, grounded in our legitimate interests to ensure responsiveness, service efficacy, and the maintenance of our business relationship.

SECTION 2 - CONSENT

How do you get my consent?

When you provide us with personal and payment card information during the purchase process, we imply that you consent to our collecting it and using it for that specific reason only.

If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent or provide you with the option to deny.

How do I withdraw my consent?

If after you opt-in, you change your mind for any reason, you can withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at any time, by contacting us at support@stlthvape.com

SECTION 3 - DISCLOSURE

We may disclose your personal information to third parties for legitimate purposes, contract fulfillment, and other reasons outlined in this Privacy Policy. Some scenarios include:

With Service Providers: Vendors and third parties who perform services on our behalf, such as IT management, payment processing, data analytics, customer support, cloud storage, and shipping.
With Business and Marketing Partners: Partners who help us provide services and advertise to you. These partners process your personal information in accordance with their own privacy notices.
With Your Consent or Direction: When you request or authorize the sharing of specific information, such as when utilizing social media integrations or directing us to ship products to a designated address.
Within Our Corporate Group: We share with affiliates for the legitimate interests of operating our business.
During Business Transactions: In connection with mergers, acquisitions, bankruptcies, or similar events.
To Comply with Legal Obligations: Including responding to subpoenas, search warrants, and other valid legal requests, as well as enforcing applicable terms of service and protecting the rights of our users, ourselves, or others.

We have disclosed the following categories of personal information in the past 12 months for the purposes outlined above:

Category	Categories of Recipients
Identifiers (e.g., basic contact details, account information)	Service providers (e.g., IT providers, payment processors, fulfillment and shipping partners, data analytics providers)
Commercial information (e.g., order details, shopping activity)	Business and marketing partners, affiliates
Internet or network activity (e.g., usage data)	Vendors and third parties performing services
Geolocation data (e.g., IP-determined locations)	Service providers, business and marketing partners

We do not use or disclose sensitive personal information without your consent or for inferring characteristics about you.

SECTION 4 - THIRD-PARTY SERVICES

The third-party service providers engaged by us will generally collect, use, and disclose your personal information only to the extent necessary to perform the services they provide on our behalf, primarily to enhance and support our services.

However, certain third-party providers, such as payment gateways and payment transaction processors, operate under their own privacy policies regarding the personal information we are required to provide for purchase-related transactions. We strongly encourage you to review their privacy policies to understand how your personal information will be managed by these providers.

Please note that some providers may be located in or have facilities situated in jurisdictions different from your own or ours. Consequently, if you proceed with a transaction that involves the services of a third-party provider, your information may be subject to the laws of the jurisdiction(s) where that provider or its facilities are located.

For example, if you reside in Canada and your transaction is processed through a payment gateway based in the United States, your personal information used for that transaction may be subject to disclosure under U.S. laws, including the Patriot Act.

Once you leave our website or are redirected to a third-party website or application, this Privacy Policy and our Terms of Service no longer govern the handling of your personal information.

Links

When you click on links on our store, they may direct you to a different domain. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.

SECTION 5 - SECURITY

We implement reasonable safeguards and adhere to industry best practices to ensure that your personal information is not improperly lost, misused, accessed, disclosed, altered, or destroyed. However, it is important to acknowledge that no security measures are infallible, and we cannot guarantee the absolute security of your information. When transmitting confidential or sensitive information, we recommend utilizing secure communication channels.

If you provide us with credit card details, this information is encrypted using Secure Socket Layer (SSL) technology and stored with Advanced Encryption Standard (AES) 256-bit encryption. While no method of data transmission over the Internet or electronic storage is entirely secure, we comply with all Payment Card Industry Data Security Standards (PCI-DSS) and employ additional recognized industry security standards.

SECTION 6 - COOKIES

Cookies are employed on our Site, as is customary on many websites, to operate and enhance both our Site and our Services. This practice encompasses the remembrance of user actions and preferences, the execution of analytics, and the attainment of a deeper understanding of user interaction with the Services. Additionally, we may permit third-party service providers to utilize Cookies on our Site for the purpose of tailoring services, products, and advertising both on our Site and on other websites. For detailed information regarding the Cookies we utilize in connection with the operation of our store via Shopify, please consult the following link: https://www.shopify.com/legal/cookies.

In most cases, browsers automatically accept Cookies. However, users possess the ability to configure their browser settings to remove or reject Cookies through the browser's controls. It is important to note that the removal or blocking of Cookies can adversely affect the user experience and may result in the malfunction or unavailability of certain Services, including specific features and general functionality. Furthermore, the blocking of cookies may not entirely prevent the sharing of information with third parties, such as our advertising partners.

We would like to inform you that while your browser may allow for the transmission of a "do not track" signal, our Site, similar to many other websites, is not designed to respond to such signals. For further information regarding "do not track" signals, please visit the following website: http://www.allaboutdnt.com/.

Additionally, Cookies are employed on the website to preserve user preferences, such as age verification, cart ID, stamp selection, and other similar settings. These cookies are enabled on the website to elevate the user experience during browsing and website usage.

SECTION 7 - AGE OF CONSENT

By accessing this site, you confirm that you are at least the age of majority in your state, province, or territory of residence. If you are of the age of majority, you further confirm that you have provided consent for any minor dependents under your care to use this site.

Please be advised that our services are not designed for use by children, nor do we knowingly collect or store personal information from individuals under the age of majority. If you are a parent or legal guardian of a minor who has provided personal information, you may request the deletion of their data by contacting us at support@stlthvape.com.

SECTION 8 - CHANGES TO THIS PRIVACY POLICY

We reserve the right to amend this Privacy Policy at any time. We encourage you to review it periodically to stay informed of any updates. Any changes or clarifications will take effect immediately upon being posted on our website. Should we make significant changes to this policy, we will provide notice on this page to ensure you are informed about the information we collect, how we use it, and the circumstances under which it may be used or disclosed.

In the event that our business is acquired by or merged with another company, your personal information may be transferred to the new owners to enable the continued provision of our products and services to you.

QUESTIONS AND CONTACT INFORMATION

If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information, contact our Privacy Compliance Officer at support@stlthvape.com

Age Verification