top of page

Privacy Policy

Last Updated on July 15, 2024

StoneDecks CA (“StoneDecks”, “we”, “our” or “us”) respects your privacy and strives to help you protect your personal information. This Privacy Policy is intended to inform you of how we collect and use the information you provide to us when you visit our website and with whom it is shared.

PLEASE READ THIS PRIVACY POLICY CAREFULLY AS IT BECOMES LEGALLY BINDING ON YOU WHEN YOU USE OUR WEBSITE. IF YOU DO NOT AGREE TO THIS PRIVACY POLICY YOU SHOULD IMMEDIATELY STOP USING OUR WEBSITE. FURTHER, PLEASE REVISIT US REGULARLY TO KEEP TRACK OF ANY PRIVACY POLICY UPDATES.​

Information About Us

StoneDecks CA is a trading name of Tanzite Canada Ltd. incorporated under the laws of the United States of America.

Tanzite Canada Ltd.

17128 Westfield Park Rd, Westfield, IN 46074, United States

info@stonedecks.ca

447458164074

Collection of Information

When you visit and use our website we collect information to provide and improve our services effectively and safely. The information we collect can be categorized into two main types: data you provide to us and data we collect automatically.

 

When you create an account on our website, fill out a contact form, get in touch with us via our live chat feature, subscribe to our newsletter, or contact us via email or phone we may collect your contact information, such as name, address, email, and telephone number. We may also collect your payment information to process payments.

 

When you visit our website, we may also collect certain information automatically such as your internet protocol (IP) address, browser type, operating system, computer or mobile device type, navigation, and clickstream information. This information is used to help us improve users' experience on our website.

Purposes of Data Collection

We use the information you give us to perform the services you request. For example, if you fill out a form requesting more information about us, we will use the information you provide us to contact you about our products. We may also use the information you provide us or information we collect to improve your experience on our website or process a warranty claim.

When we collect any personal information, we will do our best to store and process it securely. We will comply with our obligations and safeguard your rights under the applicable laws at all times. We process your data for the following purposes.

1. Provision of our services. To allow you access and use our services - create user accounts, process transactions, send information about updates, special offers, and promotions, deliver sample materials or orders; or register or process warranty claims.

2. Diagnosis & Troubleshooting. To diagnose problems with our servers, to administer our services.

3. Security. To prevent, detect and investigate illegal activities, breaches of any agreements entered into between you and us and threats to the security of our website.

4. Enhance User Experience. To enhance our services and give you a better user experience when you access our website.

5. Statistics. To produce aggregate statistical information about users and their activities on our website that does not identify any person.

6. Legal & Compliance. To investigate any claims or disputes concerning the use of our services.

7. Research & Development. To improve and enhance the safety and security of our website, as well as to design and develop new features and products relating to our services.

Your Consent

By using our website and specifically by filling out one of our online forms or tools (e.g. to create an account, or to contact us), you consent to our collection and use of your personal information as described in this Privacy Policy. If we change our Privacy Policy, we will post those changes to this website.

You have the option to withhold or withdraw your consent at any time, although this may impact our ability to provide you with our services or certain features. For example, withdrawing consent might hinder our fulfillment of a legal obligation or limit your access to our services. We will clearly communicate any such implications to ensure you are well-informed before making a decision.

Sharing of Your Information

When providing our services, we may share your personal information with third parties to facilitate our operations. We take measures to ensure your data is handled securely, akin to our own standards.

Third Parties: We engage third-party service providers, such as web hosting, web analytics services, CRM services, and a live chat service which may access your data solely to assist in delivering our website and services. These providers are bound by our instructions not to use your personal information for any purposes other than those explicitly directed by us.

 

Behavioral Adversiting. We use your personal information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For example, we use Shopify Audiences to display advertisements on other websites through our advertising partners. This allows us to reach buyers who have made purchases with other Shopify merchants and who might be interested in our products. Additionally, we share information about your usage of our website, your purchases, and the email address associated with those purchases with Shopify Audiences, enabling other Shopify merchants to present offers that may interest you. We use Google Analytics to help us understand how our customers use our website. You can read more about how Google uses your personal information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout. We also use we also use third party analytics for radio advertisements.

 

Business Transfers: Should we undergo a business transaction like a merger, acquisition, or asset sale, your personal information may be transferred. The new owners would continue to handle your data in accordance with this privacy policy.

 

Law Enforcement: Under certain circumstances, we might be required to disclose your information to comply with legal processes or governmental requests.

 

Staff: Some personal information may be shared with our employees or contractors, who are instructed to handle your data in line with this privacy policy and applicable laws.

 

​Your information may also be shared with StoneDecks dealers, distributors or contractors on an aggregated, non-personal basis. When StoneDecks shares such information with dealers, distributors or contractors, it is not traceable to any particular user and will not be used to contact you again.

 

We will not sell, rent, exchange, or share your personal information with any third parties without permission or except as described in this Privacy Policy.

Your Privacy Rights

Under applicable data protection law, you have the following rights regarding the personal data we hold about you:

  • Right to information. You have the right to know the purposes for which your personal information is collected at or before the time the information is collected. This Privacy Policy sets out what personal information we collect, how and why we collect it.

  • Right of access. You have the right to obtain access to your personal information we retain about you.

  • Right to rectification. You have the right to obtain rectification of your personal information without undue delay where that personal information is inaccurate or incomplete.

  • Right to erasure. The right to obtain the erasure of your personal information without undue delay in certain circumstances, such as where the personal information is no longer necessary in relation to the purposes for which it was collected or processed. The erasure of personal information also includes the anonymization of personal data.

  • Right to withdraw consent. You have the right to withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. Once consent is withdrawn, you will have the right to have your personal information erased and no longer used for processing.

  • Right to challenge compliance. You have the right to challenge our compliance with this Privacy Policy and applicable privacy laws. You can contact our Data Privacy Officer to address any challenges via the contact details set out in this privacy policy.

Data Privacy Officer (DPO)

In order to be compliant with applicable data protection law we have appointed a Data Privacy Officer (DPO) who shall monitor our compliance with applicable privacy laws and assist in exercising your privacy rights. Below are the details about our DPO:

Name: Chris Marshall

Email: info@stonedecks.ca

If you have concerns about how we handle your personal information, you are encouraged to submit a complaint to our DPO. Upon receiving your complaint and verifying your identity, our DPO will conduct a thorough investigation and provide you with a detailed report of the findings.

Should the complaint be deemed valid, the DPO will take appropriate measures to rectify the issue, which may include modifying our privacy practices or updating our policies. If the complaint is found to be unfounded, you will be informed in writing. If you are not satisfied with the resolution provided by the DPO, you have the option to escalate your complaint to the Office of the Privacy Commissioner.

How to Exercise Your Rights

To exercise your rights regarding your personal information, please reach out to our DPO. We strive to respond within one month from the date of receiving a well-defined request. If your request is complex or involves multiple queries, the process may take longer, but we will keep you informed throughout.

In cases where we cannot fulfill your request, either fully or partially, we will provide you with a written explanation, detailing the reasons for our decision and the options available for you to challenge it. 

Cookies

We use cookies and similar technologies to recognize you and/or your devices on, off, and across our different websites. You can control how cookies are used through your browser settings and other tools.

 

We use cookies and similar technologies — small text files stored on your device —  to recognize you and/or your devices on, off, and across our different websites, improve site navigation, track site usage, and enhance your experience.

 

You control the use of cookies through your browser settings, where you can disable or delete them. Be aware that rejecting or removing cookies might limit your access to our services and reduce functionality.

Lawful Bases for Data Processing

We will only collect and process personal data about you where we have lawful bases. Our lawful bases for processing your information could include where you give us consent (for example: when you sign up for our mailing lists), contract (for example: when you have registered your StoneDecks warranty with us), and other legitimate interests. These other legitimate interests include but are not limited to complying with laws that apply to StoneDecks and enabling us to administer our business (for example, quality control, consolidated reporting, or customer service).

International Transfers of Data

Regardless of your country of residence or the origin of the information you provide, you consent to our use of your personal information in the United States and any other country where we conduct business. Your personal information may be gathered, transferred, and stored by us in the United States, as well as by our affiliates and third-party partners located in various countries.

As a result, your personal information might be processed outside of your home country or jurisdiction, including in locations that lack an adequacy decision by the European Commission or your local legislative body or regulator, and that may not offer the same level of data protection. We ensure that any recipient of your personal information provides a suitable level of protection and security. This is achieved, for example, by implementing the necessary back-to-back agreements and, where required, standard contractual clauses or another transfer mechanism approved by the European Commission (Art. 46 GDPR) or relevant regulators or legislators. Where mandated by applicable law, we will only share, transfer, or store your Personal Data outside of your jurisdiction with your prior consent.

For inquiries or concerns regarding our Privacy Policy or related practices, please contact us at info@stonedecks.ca . If you are an EEA resident and believe that we are processing your Personal Data unlawfully, you have the right to lodge a complaint with your local data protection supervisory authority. Their contact information can be found here: European Data Protection Authorities.

Security Measures

We use Secure Sockets Layer (SSL) to encrypt the information you enter on our website in order to protect its security during transmission to and from the website. When storing personal information, we protect its security by encryption and pseudonymization of data.

We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of personal information. We also apply access restrictions to your personal data by our employees. Furthermore, we ensure to educate and train our employees about the importance of privacy and data protection on a continuous basis.

Despite the fact that we take all these measures to maintain the safety and security of your personal information, you should be aware that no transmission over the Internet can ever be guaranteed to be secure. Therefore, we cannot fully guarantee the security of any personal information that you transfer over the Internet to us.

Data Breaches

A data breach refers to the unauthorized access, collection, use, disclosure, or disposal of personal information. We will notify you if it determines that the breach puts you at risk of serious harm. Upon discovering a data breach that has, or may have, resulted in unauthorized access, use, or disclosure of personal information, we will conduct a swift investigation. Furthermore, we will inform the relevant supervisory authority within 72 hours of becoming aware of the breach, except when it is deemed unlikely to pose a risk to individuals' rights and freedoms.

Correcting and Updating Your Data

We retain the information you share with us for as long as we need to provide you with the services you request. For example, if you register a warranty with StoneDecks, we will keep your personal information on file to process your warranty. We also retain other data generated by you (i.e., data generated when you browse our website) in a depersonalized or aggregated form to improve users’ experience on our website. We may also retain your information for a reasonable period of time for StoneDecks to conduct audits, comply with our legal obligations, resolve disputes, or other legitimate business interests. If you believe any personal data we maintain about you is incorrect or incomplete, you may ask us to correct it. You may also ask for a copy of it, or you may ask us to delete it. If you have a request about your data or any concerns about the information you provide, please contact us at info@stonedecks.ca. You may also contact the Data Protection Authority in your country

10 Fair Information Principles

This privacy policy is crafted to align with the 10 fair information principles established by the Personal Information Protection and Electronic Documents Act of Canada (“PIPEDA”). In this policy, we detail our adherence to these principles. Below is a summary of the measures we take to ensure compliance.

Principle 1 - Accountability. We are committed to safeguarding your information. A designated Data Protection Officer oversees our compliance efforts. You can contact our DPO using the details provided in the designated section of our privacy policy.

Principle 2 - Identifying purposes. We have identified the purposes of processing in the relevant section of this privacy policy.

Principle 3 - Consent. We strive to obtain consent before collecting personal information. Individuals can contact our Data Protection Officer (DPO) using the details in this privacy policy to request information deletion.

Principle 4 - Limiting Collection. Personal data collected is limited to that which is necessary for the purposes identified in this privacy policy.

Principle 5 - Limiting Use, Disclosure, and Retention. We use your personal information only for the purposes for which it was collected. Details on the use, disclosure, and retention of your personal information are provided in the corresponding sections of this privacy policy

Principle 6 - Accuracy. We keep any information accurate, complete and up-to-date. Where there are changes in the information we retain about you, you are encouraged to submit a request to make changes.

Principle 7 - Safeguards. We protect your personal information with appropriate safeguards as set out in the relevant section of this privacy policy and ensure our service providers provide appropriate technical and organizational measures to protect your information from security breaches.

Principle 8 - Openness. We are open regarding our data collection and processing practices. You can find information about how we collect, use, process and disclose personal information in this privacy policy.

Principle 9 - Individual Access. You can submit a request to access your information we hold about you. You can use the contact details of our DPO to get in touch with us.

Principle 10 - Challenging Compliance. You are welcome to direct any questions or inquiries concerning our compliance with this privacy policy to our DPO.

Changes to Privacy Policy

This privacy policy may be amended by us from time to time. This may be done out of necessity (e.g., in order to reflect changes in the applicable laws), or if we change our business in a way that affects personal data protection.

Any changes will immediately be posted on our website and you will be deemed to have accepted the terms of the updated privacy policy on your first use of our Platform following the amendments. Therefore, we strongly recommend you to revisit this page and check our privacy policy regularly in order to keep up-to-date.

Supplementary Notice to UK Residents

The General Data Protection Regulation of the EU and the UK (collectively the “GDPR”) gives the residents of the EU/UK certain rights when their personal data is being collected and processed. At Inovi, we are committed to complying with the GDPR, as far as it applies to us, and we have embedded data protection by design and default into our Service.

This Privacy Policy, in its entirety, conforms with the information disclosure obligations set out under the GDPR. Therefore, EU/UK residents should read the entire privacy policy to find out how we handle their personal information.

(a) Data Subjects Rights

As an EU/UK resident, you have the rights accorded to you under Chapter 3 of the GDPR, and we always work to uphold these rights. These rights correspond to your rights accorded to you under the relevant section of this privacy policy. In order to obtain more information about your rights and how to exercise your rights, please contact us at info@stonedecks.uk 

(b) International Transfer of Data

If you are a resident of the EU/UK, you should be aware that when you access and use our Service your personal information will be transferred to countries located outside the EU/UK. We rely on several legal bases to lawfully transfer your personal data outside of your jurisdiction, including:

  • Adequacy decision of the EU Commission, and, as applicable, the UK Government.

  • Standard Contractual Clauses (SCC) approved by the European Commission, or international data transfer agreements (IDTA) or international data transfer addendum adopted by the UK Government.

(c) Exercising Your Data Protection Rights

​You may exercise your rights of access, rectification, cancellation, erasure, and opposition by contacting us. Please note that we may ask you to verify your identity before responding to such requests, such as by asking you questions about your use of the Service. If you make a request, we will try our best to respond to you as soon as possible.

California Consumer Privacy Act (CCPA)

The California Consumer Privacy Act (CCPA), as updated by the California Privacy Rights Act (CPRA), mandates that specific businesses must disclose their practices regarding the sale or sharing of personal data. Inovi is exempt from these requirements based on its revenue and the limited number of California residents or devices from which it gathers data. Consequently, Inovi does not engage in the “sale” of personal information as outlined by the CCPA.

California “Shine The Light” Law

California residents are afforded certain rights concerning their Personal Data under California Civil Code Section 1798.83, known as the 'Shine the Light' law. This law allows you, as a California resident, to request and receive, once annually and at no cost, details about the categories of Personal Data we have shared with third parties for direct marketing purposes, along with the names and addresses of those third parties for the previous calendar year. To submit such a request, please contact us at +1 833-478-6633.

bottom of page