Privacy Policy

This online privacy policy has been put together to better provide those who find themselves worried about how their ‘Personally Identifiable Information’ (PII) has been used online. PII, as defined in US privacy regulation and information security, is information that can be used alone or with other information to recognize, contact, or find a single person, or even to identify a person in framework. Please read our online privacy policy carefully to obtain a clear knowledge of how we accumulate, use, protect or elsewhere take care of your Personally Identifiable Information relative to our website.

What private data do we collect from the people who visit our website?

When buying or enlisting on our site, as suitable, you could be approached to type in your name, email, postage information, identity Card, contact number or different subtleties to assist you with your experience.

When you create an account and use the Services, including through a third-party platform, we collect any data you provide directly, including:

• Account      Data: In order to use certain features (like enrolling in a      course), you need to create a user account. When you create or update your      account, we collect and store the data you provide, like your email      address, password, gender, and date of birth, and assign you a unique      identifying number (“Account Data”).
• Profile      Data: You can also choose to provide profile information      like a photo, headline, website link, social media profiles, or other      data. Your Profile Data will be publicly viewable by others.
• Shared      Content: Parts of the Services let you interact with other      users or share content publicly, including by posting reviews on a course      page, asking or answering questions, sending messages to students or      instructors, or posting photos or other work you upload. Such shared      content may be publicly viewable by others depending on where it is      posted.

Data About Your Accounts on Other Services: 

• We may  obtain certain information through your social media or other online      accounts if they are connected to your Bella’s Art Studio account. If you      login to Bella’s Art Studio via Facebook or another third-party platform      or service, we ask for your permission to access certain information about      that other account. For example, depending on the platform or service we      may collect your name, profile picture, account ID number, login email      address, location, physical location of your access devices, gender,      birthday, and list of friends or contacts.
• Those      platforms and services make information available to us through their      APIs. The information we receive depends on what information you (via your      privacy settings) or the platform or service decide to give us.
• If you      access or use our Services through a third-party platform or service, or      click on any third-party links, the collection, use, and sharing of your      data will also be subject to the privacy policies and other agreements of      that third party.

When do we acquire information?

We get data from you when you get enlisted on our site, respond to an audit, give us reactions on our items or enter information on our site below are the examples:

• To register on our Website to use it.

• To Buy Products.

• To deal with our relationship with you which will include: Notifying you about changes to our terms or security arrangement. Requesting that you leave an audit or take an overview. 

• To manage and ensure our business and this site (counting investigating, information examination, testing, framework upkeep, backing, announcing and facilitating of information).

• To send you our email pamphlet and other robotized email correspondences. 

• To make proposals and suggestions to you about merchandise or administrations that might hold any importance with you.

How do we use your details?

We may utilize the data we procure from you when you enlist, make a buy, join our bulletin, respond to an examination or promoting correspondence, peruse the site, or utilize certain other site includes in the following ways:

· Where we have to play out the agreement we are going to go into or have gone into with you

· To tweak your experience and permit us to give the kind of substance and item contributions where you are generally intrigued.

· To help our site that will ready to serve you better.

· To allow us to brought administration you up in furnishing a response to your client assistance demands.

· To procure rankings and audits of items

· To send messages after certain time routinely, with respect to your administrations or items and different items.

· To catch up after correspondence with (live talk, email or telephone requests)

· To furnish you with the data, items and administrations that you demand from the site.

Inquiries, Issues and Complaints against the Personal data

• You are entitled by law to ask for a copy of your personal information at any time by Contacting Us.

• In the unlikely event that you have any concerns about how we use your personal information, please contact us. This includes situations where you want to request the rectification or erasure of your personal information, restrictions to be placed around how we use your personal information, or to object to a particular use.

• If you make a complaint about our handling of your personal information, it will be dealt with in accordance with our complaints handling procedure. In the first instance it will be reviewed by an appropriate member of our team who will respond to you within 28 days. If you are dissatisfied with this response you may request that your complaint be escalated, in which case it will be passed to a senior person in our business who will review your complaint and the initial response and provide a further response within 28 days of your request to escalate the matter.

Customer Data Processing Appendix:

Customer Data" means any personal data that Bella’s Art Studio processes on behalf of Customer via the Service, as more particularly described in this DPA.

"Data Protection Laws" signifies all information protection laws and guidelines appropriate to a gathering's handling of Customer Data under the Agreement, including, where pertinent, EU Data Protection Law and Non-EU Data Protection Laws.

GDPR-EU DATA PROTECTION LAW 

"EU Data Protection Law" signifies all data protection laws and guidelines appropriate to Europe, including (I) Regulation 2016/679 of the European Parliament and of the Council on the insurance of common people with respect to the preparing of individual information and on the free development of such information (General Data Protection Regulation) ("GDPR"); (ii) Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector; (iii) applicable national implementations of (i) and (ii); and (iii) in respect of the United Kingdom ("UK") any applicable national legislation that replaces or converts in domestic law the GDPR or any other law relating to data and privacy as a consequence of the UK leaving the European Union).

"Europe" signifies, for the motivations behind this DPA, the European Union, the European Economic Area as well as their part states, Switzerland and the United Kingdom. 

“Non-EU Data Protection Laws” means the California Consumer Privacy Act (“CCPA”); the Canadian Personal Information Protection and Electronic Documents Act (“PIPEDA”); and the Brazilian General Data Protection Law ("LGPD"), Federal Law no. 13,709/2018.

• Parties’ roles: If EU Data Protection Law or the      LGPD applies to either party's processing of Customer Data, the parties      acknowledge and agree that with regard to the processing of Customer Data,      Customer is the controller and Bella’s Art Studio is a processor acting on behalf      of Customer, as further described in Annex A (Details of Data Processing)      of this DPA.
• Purpose limitation: Bella’s Art Studio shall process Customer Data only      in accordance with Customer’s documented lawful instructions as set forth      in this DPA, as necessary to comply with applicable law, or as otherwise      agreed in writing ("Permitted Purposes"). The parties agree that      the Agreement sets out Customer’s complete and final instructions to Bella’s      Art Studio in      relation to the processing of Customer Data, and processing outside the      scope of these instructions (if any) shall require prior written agreement      between the parties.
• Customer compliance: Customer represents and      warrants that (i) it has complied, and will continue to comply, with all      applicable laws, including Data Protection Laws, in respect of its      processing of Customer Data and any processing instructions it issues to Bella’s      Art Studio ; and      (ii) it has provided, and will continue to provide, all notice and has      obtained, and will continue to obtain, all consents and rights necessary      under Data Protection Laws for Bella’s Art Studio to process Customer Data for the      purposes described in the Agreement. Customer shall have sole      responsibility for the accuracy, quality, and legality of Customer Data and      the means by which Customer acquired Customer Data. Without prejudice to      the generality of the foregoing, Customer agrees that it shall be      responsible for complying with all laws (including Data Protection Laws)      applicable to any emails or other content created, sent or managed through      the Service, including those relating to obtaining consents (where      required) to send emails, the content of the emails and its email      deployment practices.
• Lawfulness of Customer's      instructions: Customer      will ensure that Bella’s Art Studio’s processing of the Customer Data      in accordance with Customer’s instructions will not cause Bella’s Art      Studio to violate any applicable law, regulation, or rule, including,      without limitation, Data Protection Laws. Bella’s Art Studio shall promptly notify Customer      in writing, unless prohibited from doing so under EU Data Protection Laws,      if it becomes aware or believes that any data processing instruction from      Customer violates the GDPR or any UK implementation of the GDPR.

How do we protect your details?

· We do not use vulnerability scanning and/or scanning to PCI specifications.

· We only provide articles and information. We never require credit card volumes.

· We use regular Malware Scanning.

· Your individual information is comprised behind secured systems and is merely accessible by a restricted number of folks who’ve special access privileges to such systems, and must keep carefully the information confidential. Furthermore, all very sensitive/credit information you resource is encrypted via Secure Socket Layer (SSL) technology.

· We implement a number of security measures whenever a user gets into, submits, or accesses their information to keep up the protection of your individual information.

All deals are processed through the gateway service provider and aren’t stored or refined on our machines.

Do we use ‘cookies’?

Yes. Cookies are small documents a site or its provider exchanges to your computer’s hard drive through your Browser (if you allow) that permits the site’s or service provider’s systems to identify your internet browser and capture please remember certain information. For example, we use cookies to help us keep in mind and process the things in your shopping cart software. Also, they are used to help us understand your requirements based on prior or current site activity, which permits us to offer you improved upon services. We also use cookies to help us put together aggregate data about site traffic and site conversation so that people may offer better site experience and tools in the foreseeable future.

We use cookies to:

· Understand and save user’s tastes for future views or visits of our site.

· Keep an eye on advertisements.

· Compile aggregate data about site traffic and site connections in order to provide better site activities and tools in the foreseeable future.

· We also use third party advertisements on https://bellasartstudio.me to support our site. Some of these advertisers may use technology such as cookies and web beacons when they advertise on our site, which will also send these advertisers (such as Google through the Google AdSense program) information including your IP address, your ISP, the browser you used to visit our site, and in some cases, whether you have Flash installed. This is generally used for geo-targeting purposes (Serving Online Booking ads to Travelers) or showing certain ads based on specific sites visited (such as showing marketing ads to someone who frequents marketing sites or blogs).

We might also use third-party services that monitor these details on our behalf.

You are able to choose that your personal computer warns you whenever a cookie has been directed, or you can select to carefully turn off all cookies. You can perform that through your web browser settings. Since internet browser is just a little different, check out your browser’s Help Menu to learn the way in which to change your cookies.

If you change cookies off, a number of the features that produce your site experience better might not exactly function properly. It will not have an impact on the user’s experience that produces your site experience better and might not exactly function properly.

California Online Privacy Protection Act

CalOPPA is the first state law in the country to require commercial websites and online services to create an online privacy policy. 

The law’s reach extends well beyond California to require anybody or company in America (and possibly the entire world) that functions websites collecting (PII) Personally Identifiable Information from California consumers to create a visible online privacy policy on its website declaring the information being accumulated and the individuals or companies with whom it has been distributed. –See more at https://consumercal.org/about-cfc/cfc-education-foundation/california-online-privacy-protection-act-caloppa-3/

According to CalOPPA, we agree to the following:

· Users can visit our site anonymously.

· Once this online privacy policy is established, we will put a link to it on our website, on the first significant web page after getting into our website.

· Our ONLINE PRIVACY POLICY link includes the term ‘Privacy’ and can certainly be on the page given above.

· You’ll be notified of any ONLINE PRIVACY POLICY changes:

· Via Email

How does our site handle Do Not Track signals?

We honor USUALLY DO NOT Track signals and don’t Track, place cookies, or use advertising whenever a Do Not Track (DNT) browser method is set up.

COPPA (Children Online Privacy Protection Action)

With regards to the assortment of private information from children under age 13 years, the Children’s Online Privacy Protection Act (COPPA) puts parents in charge. The Federal Trade Commission, United States’ consumer safety firm, enforces the COPPA Guideline, which spells out what providers of websites and online services should do to safeguard children privatizes and security online.

Fair Information Practices

The fair Information Practices Rules form the backbone of level of privacy law in America (Florida) and the ideas they include have played an important role in the introduction of data protection laws and regulations around the world. Understanding the Good Information Practice Guidelines and how they must be implemented is fundamental to adhere to the various privation laws and regulations that protect private information.

To become consistent with Fair Information Methods we will need the following responsive action, should a data breach happen:

· We will inform you via email

· within 7 business days

· We will inform the users via in-site notification

· Within 1 working day

We also agree to the average person Redress Rule which requires that peoples have the right to legally go after enforceable privileges against data collectors and processors who neglect to adhere to the law. This theory requires not just that people have enforceable protection under the law against data users, but also that person have recourse to courts or federal government agencies to research and/or prosecute non-compliance by data processors.

CAN-SPAM Act

The CAN-SPAM Take action is a regulation that sets the guidelines for commercial email, establishes requirements for commercial announcements, offers recipients to have emails ceased from being delivered to them, and spells out hard fines for violations.

We accumulate your email to be able to:

· Send information, react to questions, and/or other demands or questions

To maintain compliance with CANSPAM, we consent to the next:

Not use untrue or misleading subject matter or email addresses.

• Identify the concept as an advertisement in some realistic way.

• Include the physical address of our site headquarters or business

• Screen third-party e-mail marketing services for conformity, if one can be used.

• Honor opt-out/unsubscribe demands quickly.

• Allow users to unsubscribe utilizing the link at the bottom of every email.

If anytime you want to unsubscribe from receiving future e-mail, you can email us at bella@bellasartstudio.me and we’ll immediately remove you from ALL communication.

Changes to this Privacy Notice

We reserve the right to alter this privacy notice at any time. Such alterations will be posted on our website and App. You can also obtain an up-to-date copy of our privacy notice by contacting us.

Contacting us

If you would like to contact us to understand more about this Policy or wish to contact us concerning any matter relating to individual rights and your Personal Information, you may do so via the contact form, send an email to bella@bellasartstudio.me

This document was last updated on November 24th, 2021.