Effective Date: June 2022 Note Version: 1.4
We may change the present privacy notice from time to time to update any new information or regulations that are needed. You should check this page before using our website to ensure that you agree with any of the changes we may make.
When using our website and submitting personal data (PD) to us, you may have certain rights under the General Data Protection Regulation (GDPR) and other laws. Depending on the legal basis for processing your PD, you may have some or all of the following rights:
- The right to be informed, you have the right to be informed about the personal data we collect from you, and how we use it.
- The right of access, you have the right to get confirmation that your personal data is being processed and have the ability to access your personal data.
- The right to rectification, you have the right to have your personal data corrected if it is inaccurate or incomplete.
- The right to be “forgotten”, you have the right to request the removal or deletion of your personal data if there is no compelling reason for us to continue processing it, or is no longer needed.
- The right to restrict processing, you have the right to “block” or restrict the processing of your personal data. When your personal data is restricted, we are permitted to store your data, but not to process it further.
- The right to data portability, you have the right to request and get your personal data that you provided to us and use it for your own purposes. We will provide your data to you within 30 days of your request. To request your personal data, please contact us using the information at the bottom of this privacy notice.
- The right to object, You have the right to object to us processing your personal data for the following reasons:
- Processing was based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling)
- Direct marketing (including profiling)
- Processing for purposes of scientific/historical research and statistics.
- Rights in relation to automated decision-making and profiling.
- Automated individual decision-making and profiling
You will have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
- Filling a Complaint with Authorities
You have the right to file a complaint with supervisory authorities if your information has not been processed in compliance with the General Data Protection Regulation. If the supervisory authorities fail to address your complaint properly, you may have the right to a judicial remedy.
Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow it) that enables the site’s or service provider’s systems to recognize your browser and capture and remember certain information.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to delete or turn off all cookies. You do this through your browser settings.
If you disable cookies installation or you delete cookies from your computer’s hard disk you may be unable to use some of the features of our website, products and services.
Strictly Necessary Cookies
These cookies collect information about the use of the website, such as pages visited, traffic sources, users’ interests, content management, and other website measurements.
These cookies enable the website to remember a user’s choices – such as their language, user name, and other personal choices – while using the website. They can also be used to deliver services, such as letting a user make a blog post, listen to audio, or watch videos on the website.
These cookies can be used to improve a website’s performance and provide special features and content. They can be placed by third parties who provide services to us or by our company.
Advertising or Targeting Cookies
These cookies are usually placed and used by advertising companies to develop a profile of your browsing interests and serve advertisements on other websites that are related to your interests. You will see less advertising if you disable these cookies.
These cookies allow websites to link the actions of a user during a browser session. They may be used for a variety of purposes, such as remembering what a user has put in their shopping cart as they browse a website. Session cookies also permit users to be recognized as they navigate a website so that any item or page changes they make are remembered from page to page. Session cookies expire after a browser session; thus, they are not stored long term.
These cookies are stored on a user’s device in between browser sessions, which allows the user’s preferences or actions across a site (or, in some cases, across different sites) to be remembered to add functionality. Persistent cookies may be used for a variety of purposes, including remembering users’ choices and preferences when using a website or to target advertising to them.
Help remember and process the items in the shopping cart
Allowing you to share content with social networks
Allowing you to post comments
Identifying the areas of our website that you have visited
Personalising content that you see on our website
Understand and save user’s preferences for future visits
Keep track of advertisements
Remarketing our products or services to you
Remembering your preferences, settings, and login details
Compile aggregate data about site traffic and site interactions in order to offer site experiences and tools in the future.
We may also use trusted third-party services that track this information on our behalf.
We have installed “Cookie Notice & Compliance for GDPR/CCPA” Plugin to our website:
Cookie Notice provides a simple, customizable website banner that can be used to help your website comply with certain cookie consent requirements under the EU GDPR cookie law and CCPA regulations and includes seamless integration with Cookie Compliance to help your site comply with the latest updates to existing consent laws.
Cookie Compliance is a fully featured Consent Management Platform (CMP) that provides automated compliance features and enhanced design controls in a state-of-the-art web application. Cookie Compliance enables websites to take a proactive approach to data protection and consent laws. It is the first solution to offer Intentional Consent, a new consent framework that incorporates the latest guidelines from over 100+ countries, and emerging standards from leading international organizations like the IEEE and European Center for Digital Rights (noyb.eu). Cookie Compliance provides a beautiful, multi-level experience and includes new choices and controls for site visitors to better understand and engage in data privacy decisions.
Our Cookie Compliance web application introduces a more ethical, proactive way to capture and manage consent. This early version of the emerging Intentional Consent framework is a result of Hu-manity.co’s ongoing work with top Fortune 500 companies, governments, and standards organizations, who believe that the imbalanced relationship between consumers and corporations is unsustainable when it comes to data privacy and consent online. We are making it available for all website owners and operators who share this belief and support our mission to eliminate the dark patterns in online consent.
Matt Sinderbrand – Chief Platform Officer, Hu-manity.co
Cookie Notice (plugin only)
Cookie Notice provides a simple, customizable website banner to help your website comply with certain cookie consent requirements.
- Customizable notice message
- Consent on click, scroll or close
- Multiple cookie expiry options
- WPML and Polylang compatible
- SEO friendly
Cookie Compliance (plugin + web application)
Cookie Compliance gives you access to the most up-to-date formatting guidelines and technical compliance requirements for over 100 countries and legal jurisdictions.
- Intentional Consent provides 3 equal buttons to give site visitors the ability to accept none, some, or all cookies through packaged choices called Data Access Levels. Data Access Levels improve consent conversion and eliminate the dark pattern of deceptive, non-equal choices in the first layer. Complies with equal choice principle prescribed under GDPR and other data protection laws.
- Consent duration selector gives visitor control over how long their consent remains valid for your site. Enables your site to align with recent guidelines from EU Data Protection Authorities, which state that cookie consent should be valid for no longer than a period of 6 months.
- Cookie purpose categories make it easy for website visitors to customise their consent by category. Complies with affirmative, opt-in consent requirements prescribed under GDPR and other data protection laws.
- Consent metrics display the visitor’s consent record and a list of blocked / allowed 3rd parties directly in the expanded level of the banner. Complies with latest guidance from EU Data Protection Authorities like CNIL (France) and ICO (UK).
- Customizable Privacy Paper provides helpful information to improve visitor comprehension and understanding of the data sharing risks and benefits. Allows you to summarise core components of your sites privacy notice and aligns with the informed principle prescribed by GDPR rules for valid consent capture.
- Configurable Privacy Contact allows you to provide contact information for a business’ data privacy admin, as well as helpful links to data subject request forms and other data privacy resources. Aligns with the informed principle prescribed by GDPR rules for valid consent capture.
Web Application features:
- Consent analytics dashboard shows event data for number of visits and provides a “trust score” to help you track how site visitors are setting their consent. Make adjustments to your banner to improve your cookie acceptance rate and monitor progress via the consent activity graph.
- Default configurations for GDPR, CCPA and more help to remove dark patterns and allow for quick and easy deployment of the consent banner without any guesswork. Customise the design of any default configuration to match the look and feel of your site.
- Automatic script blocking blocks all non-essential cookie scripts and iFrames by default and complies with valid consent rules under GDPR and other data protection laws; in order to be compliant, your site must record visitor consent before setting or sending cookies.
- Consent record storage automatically stores a record of each consent and makes these records available for export. Complies with proof-of-consent requirements prescribed under GDPR and other data protection laws.
- Multilingual support automatically translates all banner text strings and allows you to provide custom translations for every text field to ensure visitors get a consistent consent experience.
- Multi Domain management allows you to manage additional Free or Professional domains under a single account and enables you to customise banner configuration and design for each domain independently.
Cookie Compliance proactive approach:
For all businesses, the resources required to stay ahead of the latest regulations increases with the passage of each new law. With enforcement of compliance violations increasing daily, we believe it is critical for us as a trusted consent vendor to do everything in our power to help you stay ahead of these laws and remove the risk to your business
Cookie Compliance covers all current and upcoming regulations:
- GDPR (EU)
- ePrivacy Directive (EU)
- ePrivacy Regulation (EU)
- PECR (UK)
- LGPD (Brazil)
- PIPEDA (Canada)
- PDPB (India)
- CCPA (California, US)
- VCDPA (Virginia, US)
- Colorado Privacy Act (US)
- CPRA (California, US)
Cookie Compliance incorporates all recent formatting guidance:
- European Data Protection Supervisor (EDPS)
- ICO (United Kingdom)
- CNIL (France)
- GPDP (Italy)
- BfDl (Germany)
- AEPD (Spain)
- European Center for Digital Rights (noyb.eu)
Cookie Compliance targets dark patterns
Dark Patterns are user interface (UI) techniques that push site visitors to make decisions (such as agreeing to the installation of cookies on their devices) that they might not otherwise make. The most common Dark Pattern is the lack of an equal “reject all” button on the first layer of the consent notice. Dark Patterns are explicitly banned under GDPR and other data protection laws.
As a part of our proactive approach, Cookie Compliance is configured by default to prevent Dark Patterns through our unique Intentional Consent design.
Google Ads and Content Network Privacy notice
Google Analytics Privacy notice
Our website uses Google Analytics to collect information about the use of our website. Google Analytics collects information from users such as age, gender, interests, demographics, how often they visit our website, what pages they visit, and what other websites they have used before coming to our website. We use the information we get from Google Analytics to analyse traffic, remarket our products and services to users, improve our marketing advertising, and to improve our website. We have enabled Google Analytics advertising features such as remarketing with Google Analytics, Google Display Network Impression Reporting, and Google Analytics Demographics and Interest Reporting. Google Analytics collects only the IP address assigned to you on the date you visit our website, not your name or other identifying information. We do not combine the information collected using Google Analytics with Personal Data. Although Google Analytics plants a permanent cookie on your web browser to identify you as a unique user the next time you visit our website, the cookie cannot be used by anyone but Google. Google also uses specific identifiers to help collect information about the use of our website. For more information on how Google collects and processes your data, visit google.com/policies/privacy/partners
You can prevent Google Analytics from using your information by opting out at this link: https://tools.google.com/dlpage/gaoptout
Why do I see ads by Google for products I’ve viewed?
The remarketing service is provided by Google and other companies that show our ads on websites across the Internet. With remarketing you may see ads for our products you have previously looked at. As an example, suppose you visit a website that sells computers, but you do not buy a computer on your first visit to that website. The website’s owner might like to encourage you to revisit his/her site and buy a computer by showing you his/her ads again on other websites that you visit. We use remarketing for similar purposes. For this to happen, Google will read a cookie that is already in your browser, or they place a cookie in your browser when you visit our site or other sites using remarketing.
What personal information do we collect?
When ordering or registering on our Site you may be asked to enter your name, member name, email address, mailing address, payment information or other details to help you with your experience.
When you browse our Site, we also automatically receive traffic data registered by the hosting servers, cookies that may share some personal data and your computer’s internet protocol (IP) address. We also use the information offered by other external services for traffic analysis, such as Google Analytics.
When do we collect information?
We collect information from you when you register on our Site, place an order, subscribe to a newsletter or enter information on our site. Also, we may collect information automatically as you navigate through the Site or through other people when you use services associated with the Site.
How do we use your information?
We may use the information we collect from you for the following main purposes:
To personalise your experience and to allow us to deliver the type of content and product offerings in which you are most interested.
To operate the Site and provide you with services described on it, like to verify your identity when you sign in to Site, to process your transactions made on Site, to respond to support tickets and offer customer services.
To provide you with updates, promotions and marketing information about products and services.
To improve the quality of our website and products.
For internal record keeping and statistical purposes.
To administer a contest, survey or other Site feature.
To ask for ratings and reviews of services or products.
Resolve problems and disputes
Grounds for Using Your Personal Data
The information that we collect and store relating to you is primarily used to enable us to provide our services to you. In addition, we are relying on the following lawful grounds to collect and process any personal data you may have provided:
Legitimate Business Interests: To provide you with information requested from us relating to our products or services and to provide information on other products which we feel may be of interest to you if you have consented to receive such information. To notify you about any changes to our Website, such as improvements or service/product changes, that may affect our service. If you are and existing customer, we may contact you with information about goods and services similar to those which were the subject of a previous sale to you.
Performance of Contract: To meet our contractual commitments to you and in performance of contractual obligations to you.
User consent: We may use your data, or permit selected third parties to use your data, so that you can be provided with information about unrelated goods and services which we consider may be of interest to you. We or they may contact you about these goods and services by any of the methods that you consented to at the time your information was collected. If you are a new customer, we will only contact you or allow third parties to contact you only when you have provided consent and only by those means for which you provided consent. If you do not want us to use your data for ourselves or third-parties, you will have the opportunity to withhold your consent to this when you provide your details to us on the form on which we collect your data.
Please be advised that we do not reveal information about identifiable individuals to our advertisers, but we may, on occasion, provide them with aggregate statistical information about our visitors such as your area of residence or age group.
Apple-Bay Limited t/a Cash4Mac may maintain email newsletters (we don’t at the present, October 2018) about blog posts, upcoming products or events, and other general information and marketing purposes. You can opt-out of these electronic communications at any time by following the instructions in our emails.
Sharing Information with Affiliates and Other Third Parties
Apple-Bay Limited t/a Cash4Mac will not sell, trade or otherwise transfer any personal data about its users/customers to third parties without explicit consent from the users/customers. And never did.
This does not include:
Other parties who assist us in operating the website, conducting our business (including accountants) or serving our users.
Authors, designers, service providers of products we sell.
Business partners or prospective business partners, in operations such as sale, acquisition, merger of our assets.
All those parties agree to keep this information confidential and to their treatment according to the laws and rules on personal data protection.
We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other similar uses.
Communications and Emails
When we communicate with you about our website, we will use the email address you provided when you registered as a member/user or purchased an item on our website. We may also send you emails with promotional information about our website or offers from us or our affiliates unless you have opted out of receiving such information. You can change your contact preferences at any time through your account or by sending us an email with your request to: [email protected]
Legally Required Releases of Information
We may be legally required to disclose your Personal Data if such disclosure is (a) required by subpoena, law, or other legal process (b) necessary to assist law enforcement officials or government enforcement agencies; (c) necessary to investigate violations of or otherwise enforce our Legal Terms; (d) necessary to protect us from legal action or claims from third parties, including you and/or other users or members; or (e) necessary to protect the legal rights, personal/real property, or personal safety of our company, users, employees and affiliates.
Disclosure to Successors
If our business is sold or merges in whole or in part with another business that would become responsible for providing the website to you, we retain the right to transfer your Personal Data to the new business. The new business would retain the right to use your Personal Data according to the terms of this privacy notice as well as to any changes to this privacy notice as instituted by the new business. We also retain the right to transfer your Personal Data if our company files for bankruptcy and some or all of our assets are sold to another individual or business.
Our website offer the ability for users to communicate with the Support Team through email or other mechanisms. If you choose to open a ticket, you should use care when exposing any Personal Data, as such information is not protected by our privacy notice nor are we liable if you choose to disclose your Personal Data through such postings.
Retaining and Destroying Your Personal Data
We retain information that we collect from you (including your Personal Data) only for as long as we need it for legal, business, or tax purposes. Your information may be retained in electronic form, paper form, or a combination of both. When your information is no longer needed, we will destroy, delete or erase it.
Updating Your Personal Data
You can update your Personal Data using services found on our website. If no such services exist, you can contact us using the contact information found at the top or bottom of this notice and we will help you out. However, we may keep your personal data as needed to enforce our agreements and to comply with any legal obligations.
Revoking Your Consent for Using your Personal Data
You have the right to revoke your consent for us to use your Personal Data at any time. Such an opt out will not affect disclosures otherwise permitted by law including but not limited to: (1) disclosures to affiliates and business partners, (2) disclosures to third-party service providers that provide certain services for our business, such as credit card processing, computer system services, shipping, data management services (3) disclosures to third parties as necessary to fulfil your requests, (4) disclosures to governmental agencies or law enforcement departments, or as otherwise required to be made under applicable law, (5) previously completed disclosures to third parties, or (6) disclosures to third parties in connection with subsequent contests or promotions you may choose to enter, or third-party offers you may choose to accept. If you want to revoke your consent for us to use your Personal Data, send us an email with your request to: [email protected]
Protecting the Privacy Rights of Third Parties
If any postings you make on our website contain information about third parties, you must make sure you have permission to include that information in your posting. While we are not legally liable for the actions of our users/customers, we will remove any postings about which we are notified, if such postings violate the privacy rights of others.
Do Not Track Settings
Some web browsers have settings that enable you to request that our website not track your movement within our website. Our website does not obey such settings when transmitted to and detected by our website. You can turn off tracking features and other security settings in your browser by referring to your browser’s user manual.
Our Email Policy
You can always opt out of receiving further email correspondence from us. We will not sell, rent, or trade your email address to any unaffiliated third party without your permission except in the sale or transfer of our business.
How do we protect your information?
Your personal information is stored on secured servers and networks and is only accessible by a limited number of people who have special access rights to such systems (our staff), and are required to keep the information confidential. In addition, all sensitive/credit/debit cards information you supply is encrypted via Secure Socket Layer (SSL) technology.
We have built our website using industry-standard security measures and authentication tools to protect the security of your Personal Data. We and the third parties who provide services for us, also maintain technical and physical safeguards to protect your Personal Data. When we collect your credit /debit card information through our website, we will encrypt it before it travels over the Internet using industry – standard technology for conducting secure online transactions. We use SagePay and Paypal to oversee these transactions. Unfortunately, we cannot guarantee against the loss or misuse of your Personal Data or secure data transmission over the Internet because of its nature. We strongly urge you to protect any password you may have for our website and to not share it with anyone. You should always log out of our website when you finish using it, specially if you are sharing or using a computer in a public place.
Use of Your Credit/Debit Card
All financial transactions are processed through a payment gateaway provider (SagePay and Paypal) and are not stored or processed on our servers.
You may have to provide a credit card to buy products and services from our website. We use third-party billing services and have no control over these services (Xero). We use our commercially reasonable efforts to make sure your credit/debit card number is kept strictly confidential by using only third-party billing services that use industry-standard encryption technology to protect your credit/debit card number from unauthorised use. However, you understand and agree that we are in no way responsible for any misuse of your credit /debit card number.
International Data Transfers and Storage
Personal Data that we collect from you may be stored, processed, and transferred between any of the countries in which we operate, specifically the United States of America. The European Union has not found the United States of America to have an adequate level of protection of Personal Data under Article 45 of the GDPR. Our company relies on derogations for specific situations as defined in Article 49 of the GDPR. For European Union customers and users, with your consent, your Personal Data may be transferred outside the European Union to the United States. We will use your Personal Data to provide the goods, services, and/or information you request from us to perform a contract with you or to satisfy a legitimate interest of our company in a manner that does not outweigh your freedoms and rights. Wherever we transfer, process or store your Personal Data, we will take reasonable steps to protect it. We will use the information we collect from you in accordance with our privacy notice. By using our website, services, or products, you agree to the transfers of your Personal Data described within this section.
Links to Other websites
We may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. You acknowledge that your use of and access to these websites are solely at your risk. It is your responsibility to check the privacy policies of these websites to see how they treat your Personal Data. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.
COPPA (Children Online Privacy Protection Act)
We do not knowingly collect Personal Data from children under the age of 16. If you are a parent or guardian and believe that your child is using our website, please contact us. Before we remove any information, we may ask for proof of identification to prevent malicious removal of account information. If we discover that a child is accessing our website, we will delete his/her information within a reasonable period of time. You acknowledge that we do not verify the age of our users nor do we have any liability to do so.
Our full contact information:
Apple-Bay Limited t/a Cash4Mac
1 High Street
Camberley – Surrey GU15 3QU
Phone: 01252 375167
Email: [email protected]