Last Updated: March 06, 2019
Zola Books Inc and its subsidiaries (together "Zola Books") are committed to maintaining the privacy, security, and accuracy of your personal data collected through your use of any Zola Books Service. Zola Books has therefore developed this policy to inform you of the steps it has taken to protect your privacy.
Zola Books complies with all applicable data protection laws, including the General Data Protection Regulation ("GDPR"). Zola Books also complies with the EU-US Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data transferred from the European Union to the United States (the "Privacy Shield").
How does Zola Books collect and use your information?
Payment Information. To make purchases on Zola Books Services, you must enter valid credit card or other appropriate payment information. We only use this information to process payments, and do not share this information with any third parties other than to process payments. When you provide payment information, it is protected using secure socket layer technology (SSL) and tokenization so that only the payment processor stores credit card information. Please note that our payment processors' use of your personal information is governed by their own policies and procedures.
Communicating with you. We will typically communicate with you using your registered email address to respond to your inquiries, to send you service-related announcements and notifications, and to supply information necessary to manage your account. If we cannot reach you by email, we may use other contact information that you provide. We may broadcast or otherwise distribute important messages to all users or send individual messages to specific users where we have appropriate contact information to do so. You cannot opt-out of these communications, but if you do not wish to receive them, you have the option of canceling your account.
Legal sharing for protection of us, you, and others. We may disclose personal information to third parties who are assisting us in protecting against or preventing actual or potential fraud, unauthorized transactions, claims or other liabilities, or to investigate potential fraudulent or questionable activities. We may disclose personal information in response to legal process, such as in response to a court order or a subpoena. We may disclose personal information in response to a law enforcement agency's request, or where we believe it is necessary to investigate, prevent, or take action regarding illegal activities or suspected fraud, violations of our Terms, or as we believe may be otherwise required by law. We may also disclose personal information to protect our rights or interests or the rights or interests of others.
Merger or sale. If all or substantially all of Zola Books or its assets are sold or transferred, your personal information and other information we have collected may be treated as an asset and transferred in accordance with this Policy.
Non-private or non-personal information. We may share or disclose your non-private, aggregated, or otherwise non-personal information, such as information you publicly share, the number of users that viewed your posts, Log Data, etc.
How does Zola Books collect and use technical information?
Clear gifs (Web beacons). We use a software technology called clear gifs (a/k/a web beacons), that help us better manage content on our site by informing us what content is effective. Clear gifs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of web users. In contrast to cookies, which are stored on your hard drive, clear gifs are embedded invisibly on web pages. We tie the information gathered by clear gifs to personally identifiable information you submit while you are on the system. We use clear gifs in our HTML-based emails to let us know which emails have been opened by recipients. This allows us to gauge the effectiveness of certain communications.
Log Data. Our servers automatically record information ("Log Data") created by your use of the Zola Books Service. Log Data may include information such as your IP address, browser type, the referring domain, pages visited, your mobile carrier, device and application IDs, and search terms. Other actions, such as interactions with our website, applications and advertisements, may also be included in Log Data.
Personalization of Experience. We may personalize your experience by using your site behavior to shape any recommendations we may make about books, reviews, videos and other merchandise or content (including advertising) that might be of interest to you. We also monitor site usage and "user flow" information through Zola Books Services to help us develop and improve the design and functionality of the Zola Books Services.
Updating Your Personal Information
If you are a registered user of the Zola Books Service, you can access and modify the personal information you provided to us here.
How Zola Books Secures Your Personal Information
Zola Books user accounts are protected by user-created passwords. We use reasonable measures to protect user information that is stored within our systems, and we restrict access to user information to those employees who need access to perform their job functions, such as our customer service personnel, service administrators, and technical staff.
Our physical, electronic, and procedural safeguards meet or exceed current federal standards regarding the protection of customer information. We also require contractors and outside companies who work with us to adhere to strict privacy standards through their contracts with us. Please note, however, that there are inherent risks to providing information online, and therefore we cannot guarantee, ensure or warrant the security of any data disclosed online. Any data or information you transmit to us is transmitted at your own risk.
If Zola Books learns of a security breach, we may attempt to notify you electronically so that you can take appropriate protective steps. We may post a notice on our website if a security breach occurs. We also may notify you through the email address associated with your account. Depending on where you live, you may have a legal right to receive notice of a security breach in writing. To receive free written notice of a security breach (or to withdraw your consent from receiving electronic notice), you should notify us at [email protected].
We may retain different types of personal information for different periods, depending on our legitimate business needs as well as applicable legal requirements. For example, we need to keep information about payment transactions for several years due to tax-related requirements (such as account-settling, record-keeping, archiving and legal issues), and we need to maintain your contact details to help us stay in contact with you. At any time you can write us at [email protected] to request the deletion of your personal information, but please note that 1) the Zola Books Services will then be unavailable to you, and 2) any such deletion shall be subject to the applicable legal requirements.
We may retain aggregated, non-identifiable, non-personal information without limitation.
Third Party Websites
The Zola Books Services are not directed to people under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we take steps to remove that information and terminate the child's account. In addition, if you learn that your child who is under the age of 18 has provided us with personal information without your consent, please contact us at [email protected]
Residents Of The European Economic Area (EEA) Or Switzerland; EU-US And Swiss-US Privacy Shield
As per above, you can access your personal information and update or correct it at any time. You can also ask us to erase it, restrict or stop processing. For instance, though you may have "opted in" to receive messages and communications, you may later opt out and withdraw consent). For all such requests, contact [email protected].
WITHDRAWING YOUR CONSENT TO THE PROCESSING OF YOUR PERSONAL DATA WILL NOT AFFECT THE LAWFULNESS OF PROCESSING BASED ON CONSENT BEFORE ITS WITHDRAWAL.
In addition, residents of the EEA or Switzerland:
- may ask to be informed that third parties that hold their personal data will act according to their request;
- may ask to have their personal data transferred in accordance with their right to data portability;
- have the right not to be subject to a decision based solely on automated processing, including profiling, that produces legal effects that may affect them;
- have a right to lodge a complaint with a data protection supervisory authority of their habitual residence or place of work of an alleged infringement of the GDPR.
A summary and further details about the rights of EEA and Swiss residents under EU data protection laws is available on the EU Commission's website at: https://ec.europa.eu/info/law/law-topic/data-protection/reform/rights-citizens_en.
Note that when you send us a request to exercise your rights, we will need to reasonably authenticate your identity and location. We will ask you to provide us credentials to make sure that you are who you claim to be and may need to ask you questions to understand the nature and scope of your request.
If we need to delete your personal data following your request, it will take some time until we completely delete residual copies of your personal data from our active servers and from our backup systems. As with any request for deletion, it shall be subject to applicable law.
How to Contact Us
143 West 29th St, #901
New York, New York 10001