Privacy Policy

Who we are

NatureLabs.ca is the signature project of Ghost Bear Institute and is co-founded by D. Simon Jackson and Jill Cooper. We are a federally registered non-profit #1063793-9

What personal data we collect and why we collect it

At Nature Labs, we value your privacy and are committed to protecting your personal data. This Privacy Policy section outlines the types of personal data we may collect from users and site visitors, the reasons for collecting it, and how we handle and safeguard this information. Please read this section carefully to understand our practices regarding your personal data.

Types of Personal Data Collected:

When you interact with our website, we may collect the following types of personal data:

  1. Personal Information: This may include your name, email address, and personal account preferences that you provide to us when creating an account or subscribing to our newsletter.
  2. Transactional Data: We may collect transactional data, such as purchase information, when you make a purchase on our website.
  3. Technical Data: We may collect technical data, such as information about cookies, IP address, browser type, and device identifiers. This information is automatically collected through your interactions with our website and helps us enhance your browsing experience.

Collection and Retention of Sensitive Personal Data:

We do not intentionally collect or retain sensitive personal data concerning health or other special categories of personal information. Please refrain from providing such information through our website.

Purpose of Data Collection:

We collect personal data for the following purposes:

  1. To Provide Services: We collect personal data to fulfill orders, process payments, and deliver products or services you have requested.
  2. To Communicate with You: We may use your personal data to send you important updates, respond to your inquiries, and provide customer support.
  3. To Improve User Experience: We analyze technical data, such as cookies and analytics, to enhance our website’s functionality, tailor content to your preferences, and improve overall user experience.

Legal Basis for Data Collection:

We collect and retain personal data based on either the legal basis for data collection and retention or your active consent. The legal basis may include the necessity of processing for the performance of a contract, compliance with legal obligations, or our legitimate interests in providing and improving our services.

Third-Party Plugins and Services:

While WordPress does not collect personal data by default, certain plugins integrated into our website may collect personal data. Please refer to the information provided below for details on these plugins and their data collection practices.

Data Collected to Manage Your Membership

At checkout, we will collect your name, email address, username, and password. This information is used to setup your account for our site. If you are redirected to an offsite payment gateway to complete your payment, we may store this information in a temporary session variable to setup your account when you return to our site.

At checkout, we may also collect your billing address and phone number. This information is used to confirm your credit card. The billing address and phone number are saved by our site to prepopulate the checkout form for future purchases and so we can get in touch with you if needed to discuss your order.

At checkout, we may also collect your credit card number, expiration date, and security code. This information is passed to our payment gateway to process your purchase. The last 4 digits of your credit card number and the expiration date are saved by our site to use for reference and to send you an email if your credit card will expire before the next recurring payment.

When logged in, we use cookies to track some of your activity on our site including logins, visits, and page views.

Data Security:

We take appropriate measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. We restrict access to your personal data to authorized personnel only and maintain safeguards to ensure its security.

Third-Party Websites:

Our website may contain links to third-party websites or embeds from external sources. Please note that we have no control over the privacy practices or content of these websites. We encourage you to review the privacy policies of those third-party websites before providing any personal data.

YouTube

Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.

If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.

Google Web Fonts

For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

If your browser does not support web fonts, a standard font is used by your computer.

Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy at https://www.google.com/policies/privacy/.

SoundCloud

On our pages, plugins of the SoundCloud social network (SoundCloud Limited, Berners House, 47-48 Berners Street, London W1T 3NF, UK) may be integrated. The SoundCloud plugins can be recognized by the SoundCloud logo on our site.

When you visit our site, a direct connection between your browser and the SoundCloud server is established via the plugin. This enables SoundCloud to receive information that you have visited our site from your IP address. If you click on the “Like” or “Share” buttons while you are logged into your SoundCloud account, you can link the content of our pages to your SoundCloud profile. This means that SoundCloud can associate visits to our pages with your user account. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the data transmitted or how it will be used by SoundCloud. For more information on SoundCloud’s privacy policy, please go to https://soundcloud.com/pages/privacy.

If you do not want SoundCloud to associate your visit to our site with your SoundCloud account, please log out of your SoundCloud account.

H5P

(“We” and “our” mean “you”, not “us”!):

We may process and store personal data about your interactions using xAPI. We use the data to learn about how well the interactions are designed and how it could be adapted to improve the usability and your learning outcomes. The data is processed and stored [on our platform|on an external platform] until further notice.

We may store the results of your interactions on our platform until further notice. The results may contain your score, the maximum score possible, when you started, when you finished, and how much time you used. We use the results to learn about how well you performed and to help us give you feedback.

We may store interactive content that you create on our platform. We also may send anonymized reports about content creation without any personal data to the plugin creators. Please consult the H5P tracking information page for details.

If you use interactive content that contains a video that is hosted on YouTube, YouTube will set cookies on your computer. YouTube uses these cookies to help them and their partners to analyze the traffic to their websites. Please consult Google’s Privacy policy for details. It is our legitimate interest to use YouTube, because we we need their services for our interactive content and would not be able to provide you with their video content features otherwise.

If you use interactive content that contains a Twitter feed, Twitter will set a cookie on your computer. Twitter uses these cookies to help them and their partners to make their advertizing more relevant to you. Please consult Twitter’s Privacy policy for details. It is our legitimate interest to use Twitter, because we need their services for our interactive content and would not be able to provide you with it otherwise.

If you use interactive content that contains speech recognition, Google Cloud will process your voice for converting it to text. Please consult Google’s Privacy policy for details. It is our legitimate interest to use Google Cloud, because we we need their services for our interactive content and would not be able to provide you with speech recognition features otherwise.

WooCommerce

We collect information about you during the checkout process on our store.

What we collect and store

While you visit our site, we’ll track:

  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of cart contents while you’re browsing our site.

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:

  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them

If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.

We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 3 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.

We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:

  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.

Our team members have access to this information to help fulfill orders, process refunds and support you.

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Please see the PayPal Privacy Policy for more details.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive a file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

Updates to this Privacy Policy:

We may periodically update this Privacy Policy section to reflect changes in our practices or legal requirements. Any updates will be posted on this page, and the revised Privacy Policy will be effective upon posting.

By using our website, you acknowledge that you have read and understood this Privacy Policy section and agree to the collection and use of your personal data as described herein.

If you have any questions or concerns regarding our Privacy Policy, please contact us at hello@naturelabs.ca

Last updated on August 23, 2021.