Privacy Policy

This Privacy Policy governs the manner in which Boho Bags collects, uses, maintains and discloses information collected from users (each, a "User") of the www.bohobags.com.au website ("Site"). This privacy policy applies to the Site and all products and services offered by Boho Bags.

Personal identification information
We may collect personal identification information from Users in a variety of ways, including, but not limited to, when Users register on the site, place an order, subscribe to the newsletter. Users may be asked for, as appropriate, name, email address, mailing address, phone number, credit card information,

Users may, however, visit our Site anonymously.

We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personally identification information, except that it may prevent them from engaging in certain Site related activities.

Non-personal identification information
Google Analytics may collect non-personal identification information about Users whenever they interact with our Site. Non-personal identification information may include the browser name, the type of computer and technical information about Users means of connection to our Site, such as the operating system and the Internet

Web browser cookies
Our Site may use "cookies" to enhance User experience. User's web browser places cookies on their hard drive for record-keeping purposes and sometimes to track information about them. User may choose to set their web browser to refuse cookies, or to alert you when cookies are being sent. If they do so, note that some parts of the Site may not function properly.

How we use collected information
Boho Bags collects and uses Users personal information for the following purposes:

  • To process transactions
    We may use the information Users provide about themselves when placing an order only to provide service to that order. We do not share this information with outside parties except to the extent necessary to provide the service.
  • To send periodic emails

    The email address Users provide for order processing, will only be used to send them information and updates pertaining to their order. It may also be used to respond to their inquiries, and/or other requests or questions. If User decides to opt-in to our mailing list, they will receive emails that may include company news, updates, related product or service information, etc. If at any time the User would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email or User may contact us via our Site.
How we protect your information
We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information, username, password, transaction information and data stored on our Site.

Sensitive and private data exchange between the Site and its Users happens over a SSL secured communication channel and is encrypted and protected with digital signatures.

Changes to this privacy policy
Boho Bags has the discretion to update this privacy policy at any time. When we do we will revise the updated date at the bottom of this page and send you an email to let you know.

Your acceptance of these terms
By using this Site, you signify your acceptance of this policy and out Terms and Conditions as detailed on out Terms page. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.


Payments, Credit Cards and Account

We use Stripe as our Payment Gateway. Your account information and transaction details are stored securely on our own server at Blue Host, but the credit card information is stored by Stripe on their best of breed secure data centres.  Some details of Stripe's security from their terms of service:

_____Stripe's Security Details____

PCI
Stripe has been audited by a PCI-certified auditor, and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available.

SSL and HSTS

Stripe forces HTTPS for all services, including our public website. We regularly audit the details of our implementation: the certificates we serve, the certificate authorities we use, and the ciphers we support. We use HSTS to ensure browsers interact with Stripe only over HTTPS. Stripe is also on the HSTS preloaded lists for both Chrome and Firefox.

Encryption

All card numbers are encrypted on disk with AES-256. Decryption keys are stored on separate machines. None of Stripe's internal servers and daemons are able to obtain plaintext card numbers; instead, they can just request that cards be sent to a service provider on a static whitelist. Stripe's infrastructure for storing, decrypting, and transmitting card numbers runs in separate hosting infrastructure, and doesn't share any credentials with Stripe's primary services (API, website, etc.).

_____end____


Contacting us
If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us at:

info@bohobags.com.au or on +61 411277026