Collection and Use of Personal Information
When you place an order at eGiftStudio.com, we require you to provide us with personally identifiable information. This information provides us the specifics of who you are and can be used to identify, contact or locate you. Personally Identifiable Information may consist of: your name, address, telephone number, email address, birth date, billing information, occasion type (Valentine’s Day, etc.), products purchased, any relevant promotion code and information and the recipient’s name, address, telephone number, email address and any other information you may provide us. We use Personally Identifiable Information for internal purposes, such as confirming and tracking your order, subscription or registration, analyzing trends and statistics, informing you of our new products, services and offers. Personally Identifiable Information is compiled by us and analyzed on both a personal and an aggregated basis.
We may contract with some third-parties to provide services including but not limited to credit card processing, distribution, data management, etc. We only provide these third parties with the information needed for them to complete these services. We also ask any third parties to confirm their security and privacy policies are consistent with ours.
When you place an order, we will establish your own Personal Account where information used in placing such order is saved. Your Personal Account is password protected from all third parties. You may access your Personal Account by requesting your password from us (go to My Account) and then signing in with that password. Afterward, you may change your password, edit your Personal Information or request a password reminder at any time. Our database stores your billing and delivery information, and will automatically transfer it to the order form each time you place an order so that you do not have to re-enter this information when you sign in at subsequent visits.
Within your Personal Account, you may opt in for our additional services. We may use your contact information so that you receive the full benefit of these services. You may view, edit or opt out of these services at any time.
Your password will be your personal and confidential code to access your personal accounts on our sites. You may change your password as often as you would like.
An IP address is a number that is assigned to your computer when you are using your browser on the Internet. The servers that serve our web site automatically identify your computer by its IP address. We do log IP addresses, but the addresses are not linked to individual customer accounts nor are they used in any other way to personally identify our customers.
Privacy Shield Policy
Enesco, LLC, parent company to Enesco Limited and Enesco France, S.A.S., and Enesco Properties, LLC d/b/a Things Remembered acknowledges the EU’s standard for personal data protection. Enesco has a need to extract and compile the personal data of employees and customers in the EU. This Policy addresses the privacy concerns of European employees and customers and the business concerns of the company.
Enesco is a participant in the Privacy Shield program developed by the U.S. Department of Commerce and the European Commission and Swiss Administration. We have certified that we adhere to the Privacy Shield Principles with regard to our use of certain personal data. For more information about the Privacy Shield Principles and certification process, please visit the U.S. Department of Commerce’s Privacy Shield Web site athttps://www.privacyshield.gov. This Policy applies to all personal data transmissions from Enesco operations in EU countries to the United States. This includes transmission of data over phone lines, computer lines, and in hard copy, and includes such material as payroll records, telephone records, business information, club membership information, performance evaluations, and any material that identifies a particular individual employee or customer.
The use of EU personal data will include global enterprise headcount reporting, statistical analysis, compensation planning and related transactions, career development, staffing, international personal security issues, internal investigations ethics investigations, law enforcement inquiries, U.S. Government agency inquiries, business planning and reporting and mergers, acquisitions and divestitures.
Enesco has adopted the seven Privacy Shield Principles of notice, choice, onward transfer (transfer to third parties), access, security, data integrity and enforcement with respect to personal data to be transferred to the U.S. from Enesco operations in the EU.
Notice – Enesco will notify employees and customers in the EU about the purposes for which personal data will be collected and used. Information will be provided on how employees and customers can contact Enesco with inquiries or complaints regarding personal data. Enesco will give notice to employees and customers regarding third parties to which it discloses the information, and restrictions that limit the information’s use and disclosure. In certain situations, data is “anonymized” so that the names of the data subjects are not known by data processors within Enesco. In these cases, data subjects do not need to be notified.
Choice – Prior to releasing personal data to a third party, Enesco will give an individual employee or customer the opportunity to choose whether their personal data is disclosed to that third party or used for a purpose incompatible with the purpose for which it was originally collected or subsequently authorized by that individual. For sensitive data, an affirmative choice will be given to the employee or customer if the personal data is to be disclosed to a third party or used for a purpose other than its original purpose or the purposes authorized subsequently by the individual.
Onward transfer – (transfer to third parties) – Prior to disclosing personal data to a third party, Enesco will apply the notice and choice principles, enumerated above. Enesco will commit to ensuring that the third party keeper of personal data also subscribes to the Privacy Shield Principles or any other EU adequacy finding. Enesco will also enter into a written agreement with such third party requiring that the third party provide at least the same level of personal data protection as is maintained by Enesco. Since Enesco is not currently transferring personal data from the EU to third parties, no liability provisions regarding onward transfers of personal data will apply. Therefore, the provision regarding liability for the actions of agent processors may not apply. If we change this policy in the future, we shall remain liable under the Privacy Shield Principles if its agent processes such personal information in a manner inconsistent with the Principles, unless the organization proves that it is not responsible for the event giving rise to the damage.
Access – Employees and customers covered under this policy will have access to personal information about them that Enesco holds and will be able to correct, amend or delete information if it is inaccurate (the exception is when the burden or expense of providing access would be disproportionate to the risks of the individual privacy in the case in question or the rights of persons other than the individual would be violated.) You can correct, update or delete inaccuracies by contacting Enesco’s Director of Human Resources at 1-800-874-2653 prompt 3, or at email@example.com.
Security – Enesco will take reasonable precautions to protect personal information from loss, misuse and unauthorized access, disclosure, alteration and destruction.
Data Integrity – Personal data kept by Enesco will be relevant for the purposes for which it is to be used. Enesco will take reasonable steps to ensure that the data is reliable and that it is applied to its intended use. Enesco will also ensure that the information is accurate, complete and correct.
Enforcement – Enesco is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). In compliance with the Privacy Shield Principles, Enesco commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Enesco at: firstname.lastname@example.org. Enesco has further committed to:
- Cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU in the context of the employment relationship;
- Commit to cooperate with the Data Protection Authorities (DPAs) of the EU countries in the investigation and resolution of complaints and will comply with any advice given by DPAs;
- Employ a procedure for verifying that the commitment the company has made to adhere to the Privacy Shield Principles has been implemented;
- Remedy issues arising out of any failure to comply with the Principles. Enesco acknowledges that its failure to provide an annual self-certification to the Department of Commerce will remove it from its list of participants and the transfers of information will not be allowed unless Enesco otherwise complies with the EU Data Protection Directive;
- Disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
In addition, Enesco hereby acknowledges that under certain conditions, individuals subject to this policy may have the possibility to invoke binding arbitration for any dispute related hereto.
The Enesco Human Resources and Legal Departments will be the internal mechanism for ensuring compliance with the Privacy Shield Principles and facilitating the independent recourse mechanism referenced in the “Enforcement” section above.
Access to personally identifiable personal data of EU employees and customers will be to a limited number of users on a need to know basis.
European Union – The European Union (“EU”) consists of 28 independent sovereign states: Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the Netherlands, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden and the United Kingdom.
Personal Data – (for the purposes of this policy) – Any personal information relating to an identified or identifiable natural person who is a Enesco employee or customer and who can be identified, directly or indirectly, in particular by a reference to an identification number or to one or more factors specific to his or her physical, physiological, mental, economic, cultural or social identity.
Sensitive Data – Sensitive data is data that pertains to racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, income records, health, sexual orientation or alleged commission of any offense. This data may not be transferred to a third party unless an individual gives explicit consent.
Questions regarding the transmission of personal data from the European Union (EU) to the United States or any other non-EU location, or any further transmission of the personal data once received in the United States, should be referred to the Director of Human Resources at Enesco LLC. That individual is responsible for maintaining this document.
Enesco must annually, in writing, certify to the Department of Commerce that it agrees to adhere to the Privacy Shield Principles.
Links to Other Sites
Visitors will find links from eGiftStudio.com to independently-owned, controlled and/or managed World Wide Web or internet sites whose content may be of possible interest to our visitors. In many cases, but not always, the links represent cooperative projects or mutual links established with the organizations connected with these sites. While we initially visit these sites to which we directly link, please note that we do not control the content that appears on these sites and such content may be constantly changing. We encourage parents or guardians to monitor their children’s online use, and to help us protect their privacy by instructing them never to provide personal information without permission.
Consumers are able to order online with the use of a credit card. In such instances, Enesco uses secure server software over a Secure Socket Layer (SSL) line, the latest technology to protect your credit card information. SSL is the industry standard and among the best software available today for secure commerce transactions. It encrypts all of your credit card information so that the information from your credit card cannot be read as it travels over the Internet.
Your electronic greeting messages are always considered confidential and securely protected. Electronic greetings will only be accessed when in rare circumstances it is necessary for the purpose of completing your request.
Periodically, eGiftStudio.com will encourage consumers to participate in surveys or contests. The information we collect from these surveys is used to improve your overall customer experience. In the case of a site contest or a request for a response, the submission may be shared with other members through a posting on the site. Any member submitting responses through this vehicle automatically grants permission for their response to be posted within that site. It is Departmen t56’s policy never to post on its site, more than a child’s first name, last name initial, age and state.
225 Windsor Drive
Itasca, IL 60143