Thank you for visiting the website of StructuredTotes.com located at www.structuredtotes.com (the “Site”). The Site is an Internet property of Sundry Lacuna, LLC d/b/a StructuredTotes.com (“we” “our” or “us”). This Privacy Policy explains how we collect, share, and use any information that relates to you when you use our Site (your “Personal Data”). This Privacy Policy also explains the rights you have concerning the Personal Data that we process and how you can exercise these rights.
Principles
We manifest our commitment to privacy and data protection by embracing the following principles.
StructuredTotes.com uses Personal Data lawfully, fairly, and in a transparent manner.
StructuredTotes.com collects no more Personal Data than necessary, and only for a legitimate purpose.
StructuredTotes.com retains no more data than necessary or for a longer period than needed.
StructuredTotes.com protects Personal Data with appropriate security measures.
Data We Collect
This policy applies only to information collected on the Site. We collect two types of information from visitors to our websites:
1. Personal Data.
2. Non-personal Data.
“Personal Data” is information that identifies you personally and that you provide to us, such as your name, address, telephone number, email address, and sometimes your Internet Protocol (IP) address. We may collect this information when you create a profile on our Site, visit our Site, or complete a purchase.
“Non-personal Data” can be technical in nature. It does not identify you personally. Examples of non-Personal Data may include (but are not limited to) cookies, web beacons, and demographic information.
Usage Data
To improve your experience with our Site we may also collect information on how you navigate the Site, information about your connection, and the technical means you use to access our Site. This data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Site that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
Location Data
We may use and store information about your location if you give us permission to do so. We use this data to improve and customize your shopping experience. You can enable or disable location services when you use our Service at any time by way of your device settings.
Tracking & Cookies Data
We use cookies and similar tracking technologies to track the activity on our Site and we hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from our Site and stored on your device.
Other tracking technologies are also used such as beacons, tags, and scripts to collect and track information and to improve and analyze our Site. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Site. The list of cookies used by our Site can be found at the bottom of this page.
Data Use
StructuredTotes.com uses the collected data for various purposes: To provide and maintain our service
To notify you about changes in policies and order details To provide customer support
To gather analysis or valuable information so that we can improve our Site and services
To monitor the propriety of Site usage
To detect, prevent and address technical issues
To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information
Data Storage, Transfer, and Retention
The Personal Data that we collected from you is generally stored within the United States of America (“USA”) or a country of the European Union or the European Economic Area (“EU/EEA”), but may also, whenever necessary, be transferred to and processed in a country outside of the USA or EU/EEA. Any such transfer of your Personal Data will be carried out in compliance with applicable laws and without undermining your statutory rights.
Your information, including Personal Data, may be transferred to - and maintained on - computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located outside and choose to provide information to us, please note that we transfer the data, including Personal Data, to and process it there.
Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.
StructuredTotes.com will take all the steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.
We will hold on to your information for as long as you continue to be a StructuredTotes.com customer and for as long as we are required to keep it to ensure we meet our legal requirements across the globe.
Data Access
Your Personal Data is available and accessible only by those who need the data to accomplish the intended processing purpose. To the extent necessary, your Personal Data may be shared with suppliers and subcontractors (processors and sub-processors) carrying out certain tasks on StructuredTotes.com’s behalf and with independent third-parties, including, but not limited to, using personal information you share with us or that we indirectly collect to verify your identity and for fraud prevention purposes.
Data Security
The security of your data is important to us but remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
Data Disclosure
Under certain circumstances, StructuredTotes.com may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
Legal Requirements
StructuredTotes.com may disclose your Personal Data in the good faith belief that such action is necessary to:
To comply with a legal obligation
To protect and defend the rights or property of StructuredTotes.com
To prevent or investigate possible wrongdoing in connection with the Site To protect the personal safety of users of the Site or the public
To protect against legal liability
Your Data Protection Rights Right to access
You have the right to request information about the Personal Data we hold on you at any time. You can contact StructuredTotes.com and we will provide you with your Personal Data via e-mail.
Right to portability
Whenever StructuredTotes.com processes your Personal Data, you have the right to get a copy of your data transferred to you or to another party. This only includes the Personal Data you have submitted to us.
Right to rectification
You have the right to request rectification of your Personal Data if the information is incorrect, including the right to have incomplete Personal Data completed.
Right to erasure
You have the right to erase any Personal Data processed by StructuredTotes.com at any time except for the following situations:
you have an ongoing matter with Customer Service
you have an open order which has not yet been shipped or partially shipped
you have an unsettled debt with StructuredTotes.com, regardless of the payment method
if you are suspected or have misused our services within the last four years
your debt has been sold to a third party within the last three years or one year for deceased customers
your credit application has been rejected within the last three months
if you have made any purchase, we will keep your Personal Data in connection to your transaction for book-keeping purposes
Your right to object to processing based on legitimate interest
You have the right to object to the processing of your Personal Data that is based on StructuredTotes.com’s legitimate interest. StructuredTotes.com will not continue to process the Personal Data unless we can demonstrate legitimate grounds for the process which overrides your interest and rights or due to legal claims.
Right to restriction
You have the right to request that StructuredTotes.com restricts the process of your Personal Data under the following circumstances:
if you object to processing StructuredTotes.com’s legitimate interest, StructuredTotes.com shall restrict all processing of such data pending the verification of the legitimate interest.
if you have claimed that your Personal Data is incorrect, StructuredTotes.com must restrict all processing of such data pending the verification of the accuracy of the Personal Data.
if the processing is unlawful you can oppose the erasure of Personal Data and instead request the restriction of the use of your Personal Data instead.
if StructuredTotes.com no longer needs the Personal Data but it is required by you to defend legal claims.
CCPA Privacy Information
This section applies only to StructuredTotes.com customers who are California residents and supplements the details provided in our Privacy Policy and contains the information that the Californian Consumer Privacy Act (“CCPA”) requires us to make available to customers. Any terms defined in the CCPA have the same meaning when used in this notice.
Collected Information
We may collect the following personal information about you when you use our Site:
identifiers such as a name, address, unique personal identifier, email, phone number, your device’s IP address, software, and identification numbers associated with your devices
protected classifications, such as gender
commercial information such as records of products or services purchased, obtained, or considered by you
Internet or other electronic information regarding your browsing history, search history, the web page visited before you came to our Site, length of visit and number of page views, click-stream data, locale preferences, your mobile carrier, date and time stamps associated with transactions, and system configuration information
your geolocation, to the extent you have configured your device to permit us to collect such information
audio recordings of your voice if you call us, as permitted under applicable law
professional or employment-related information if required and provided inferences about your preferences, characteristics, behavior, and attitudes.
You can find more information about the personal information we collect and how we collect it in the section above titled “Data Use”.
Personal Information Use
We collect your personal information for the business purposes described above in the section titled “Data Use”. The CCPA defines a “business purpose” as the use of personal information for the business’s operational purposes, or other notified purposes provided the use of personal information is reasonably necessary and proportionate to achieve the operational purpose for which the personal information was collected or another operational purpose that is compatible with the context in which the personal information was collected.
Sharing Personal Information
We may disclose your personal information to an organization for a business purpose. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient organization to keep that personal information confidential and not use it for any purpose except performing the contract with us.
We disclose your personal information for a business purpose to the categories of third parties listed above in the section titled “Data Access”.
Your Rights
If you are a California resident, you have rights in relation to your personal information; however, your rights are subject to certain exceptions. For instance, we cannot disclose specific pieces of personal information if the disclosure would create a substantial, articulable, and unreasonable risk to the security of the personal information, your account with us, or the security of our network systems.
Right Against Discrimination
You have the right not to be discriminated against for exercising any of the rights described in this section. We will not discriminate against you for
exercising your right to know, delete, or opt-out of sales.
Right to Know
You have the right to request in writing: a list of the categories of personal information, such as name, address, email address, that a business has disclosed to third parties during the immediately preceding calendar year for the third parties' direct marketing purposes, the names and addresses of all such third parties.
In addition, you have the right to request:
the categories of personal information we have collected about you
the categories of sources from which personal information is collected the business or commercial purpose for the information collection
the categories of third parties with whom we have shared personal information
the specific pieces of personal information we hold about an individual
You have the right to request a copy of the specific personal information we collected about you during the twelve (12) months before your request.
Right to Delete
You have the right to request us to delete any personal information we have collected from you or maintain about you, subject to certain exceptions.
To assert your right to know or your right to delete your personal information, please contact according to the ‘Exercise Your Rights’ section below. To confirm your identity, we may ask you to verify personal information we already have on file for you. If we cannot confirm your identity from the information we have on file, we may request additional information from you, which we will only use to verify your identity, and for security or fraud prevention purposes.
Right to Opt-Out of Selling
You have the right to opt-out of having your personal information sold. We do not sell your personal information. In addition, California Civil Code Section 1798.83 permits customers of StructuredTotes.com who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. Please allow 30 days for a response. To make such a request, contact us according to the ‘Exercise Your Rights’ section below.
Updates
We may update this Privacy Policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal, or regulatory reasons.
Exercise Your Rights (Contact Us)
We take data protection very seriously and are here to handle your requests in relation to your rights stated above. You can reach us at: hello@structuredtotes.com
Cookie name (as seen in a browser) | What the cookie is used for | Cookie classification | What is stored in the cookie on the client's device | Cookie type and lifetime |
PSecwid__{store_id}__emailPSemail | Email entered on the shopping cart page | Personalization | Customer email | Persistent, 180 days |
PSecwid__{store_id}__emailPSemail_expire | Email entered on the shopping cart page expiration date | Personalization | Expiration date of customer email | Persistent, 180 days |
PSecwid__document__referrerPSreferrer | HTTP referrer | Personalization | Referrer link | Persistent, 90 days |
PSecwid__document__referrerPSreferrer_expire | HTTP referrer expiration date | Personalization | Expiration date of a referrer link | Persistent, 90 days |
PSecwid__{store_id}PScart | Customer cart contents | Technically required | Representation of shopping cart object | Persistent, 365 days |
PSecwid__{store_id}PScart_expire | Customer cart contents expiration date | Technically required | Expiration date of representation of shopping cart object | Persistent, 365 days |
PSecwid__{store_id}PScustomerid | Customer internal identifier | Technically required | Logged in customer identifier (numeric) | Persistent, 365 days |
PSecwid__{store_id}PScustomerid_expire | Customer internal identifier expiration date | Technically required | Expiration date of logged in customer identifier (numeric) | Persistent, 365 days |
PSecwid__{store_id}PStoken | Customer Auth token | Technically required | Customer ID and auth token | Persistent, 365 days |
PSecwid__{store_id}PStoken_expire | Customer Auth token expiration date | Technically required | Expiration date of customer ID and auth token | Persistent, 365 days |
PSecwid__{store_id}PSprofile | Data of authenticated customer | Technically required | Representation of customer profile object: authToken: Auth token billingPerson: address entered on the checkout page email: email of customer profile favoritesNotMerged: internal flag id: customer ID ownerId: store ID registered: account creation date shippingAddresses: not used taxExempt: internal flag taxIdValid: internal flag updated: internal flag | Persistent, 365 days |
PSecwid__{store_id}PSprofile_expire | Data of authenticated customer expiration date | Technically required | Expiration date of representation of customer profile object: authToken: Auth token billingPerson: address entered on the checkout page email: email of customer profile favoritesNotMerged: internal flag id: customer ID ownerId: store ID registered: account creation date shippingAddresses: not used taxExempt: internal flag taxIdValid: internal flag updated: internal flag | Persistent, 365 days |
PSecwid__{store_id}PSfavorites | Products added to favorites | Technically required | List of favorite product IDs | Persistent, 365 days |
PSecwid__{store_id}PSfavorites_expire | Products added to favorites expiration date | Technically required | Expiration date of the list of favorite product IDs | Persistent, 365 days |
PSecwid__{store_id}PStaxSettings | Store tax scheme | Technically required | Representation of the tax settings object | Persistent, 365 days |
PSecwid__{store_id}PStaxSettings_expire | Store tax scheme expiration date | Technically required | Expiration date of the representation of tax settings object | Persistent, 365 days |
PSorder__result__{store_id}PSorderResult | Last placed order | Technically required | Representation of the placed order | Persistent, 12 hours |
PSecwid__shopping__cart__controller__storagePSlastPlace | Continue shopping URL | Personalization | Last visited category page object | Persistent, 180 days |
PSecwid__shopping__cart__controller__storagePSlastPlace_expire | Continue shopping URL expiration date | Personalization | Expiration date of the last visited category page object | Persistent, 180 days |
PSecwid__{store_id}__taxIdPStaxId | Tax ID entered at the checkout | Personalization | Customer Vat ID | Persistent, 180 days |
PSecwid__{store_id}__taxIdPStaxId_expire | Tax ID entered at the checkout expiration date | Personalization | Expiration date of a customer Vat ID | Persistent, 180 days |
ec-{store_id}-session | Customer internal identifier (user session) | Technically required | Customer’s active checkout and cart | Persistent, 90 days |
ec-{store_id}-checkout | Customer internal identifier (current checkout) | Technically required | Customer’s checkout ID and number of items in the cart | Persistent, not limited (localStorage) |
ec-user-response | Flag that stores user consent for tracking on site. Used if GDPR cookie consent banner is enabled. | Technically required | True or false | Persistent, 365 days (or 180 days for EU, UK, CH) |
ec-user-response-issued-at | Date and time when user consent was issued. Used if GDPR cookie consent banner is enabled. | Technically required | Epoch time | Persistent, 365 days (or 180 days for EU, UK, CH) |
PSecwid__utm__storagePSutm__data | UTM cookies for merchant analytics | Marketing | UTM cookies for analytics | Persistent, 90 days |
PSecwid__utm__storagePSutm__data_expire | UTM cookies for merchant analytics expiration date | Marketing | Expiration date of UTM cookies for analytics | Persistent, 90 days |
__eca_s_id_ | Session for Ecwid analytics (restarted every 30 mins) | Marketing | Random unique number | Persistent, 30 minutes |
__eca_v_id_ | Identifier for Ecwid analytics | Marketing | Random unique number | Persistent, 365 days |
PSdispatcher__content__idsPS{product_id} | State for merchant custom tracking code for content | Technically required | State value | Persistent, 12 hours |
PSdispatcher__content__idsPS{product_id}_expire | Expiration time for PSdispatcher__content__ idsPS{product_id} | Technically required | Expiration date of state value | Persistent, 12 hours |
PSdispatcher__placed__ordersPS{order_id} | State for merchant custom tracking code for orders | Technically required | State value | Persistent, 12 hours |
PSdispatcher__placed__ordersPS{order_id}_expire | Expiration time for PSdispatcher__placed__ ordersPS{order_id} | Technically required | Expiration date of state value | Persistent, 12 hours |
PSec__custom__code__idPS{store_id} | Order IDs for merchant custom tracking code for orders | Technically required | List of order IDs | Persistent, 12 hours |
PSec__custom__code__idPS{store_id}_expire | Expiration time for PSec__custom__code__ idPS{store_id} | Technically required | Expiration date of list of order IDs | Persistent, 12 hours |
PSreloadTriggerPSreloadTrigger | State of reloading process after SSO failure | Technically required | 1 during reloading process | Persistent, 12 hours |
PSreloadTriggerPSreloadTrigger_expire | Expiration time for state of reloading process after SSO failure | Technically required | Expiration date of state value | Persistent, 12 hours |
PSecwid__agree__personal__data_usage__{store_id}PSallowUsePersonalData | Flag that stores user consent for tracking on site for legacy storefront(deprecated) | Technically required | State value | Persistent, 365 days |
PSecwid__agree__personal__data_usage__{store_id}PSallowUsePersonalData_expire | Expiration time for flag that stores user consent for tracking on site for legacy storefront (deprecated) | Technically required | Expiration date of state value | Persistent, 365 days |
PSecwid__facebookPSlastUserId | Facebook ID logged in by Ecwid | Technically required | Facebook ID | Persistent, 180 days |
PSecwid__facebookPSlastUserId_expire | Expiration time for Facebook ID logged by in Ecwid | Technically required | Expiration date of Facebook ID | Persistent, 180 days |
PSlast__historyPSts | Timestamp for history token | Technically required | Timestamp | Persistent, 365 days |
PSlast__historyPSts_expire | Expiration time for timestamp for history token | Technically required | Expiration date of timestamp | Persistent, 365 days |
PSlast__historyPStoken | Token parameter for synchronization of iframe with a parent window | Technically required | Token parameter for synchronization of iframe with a parent window. To remember the last page after refresh. | Persistent, 365 days |
PSlast__historyPStoken_expire | Expiration time for history token | Technically required | Expiration date of history token | Persistent, 365 days |
PSecwid__{store_id}__tax__informationPStax__information | Customer tax info | Personalization | Customer tax info | Persistent, 365 days |
PSecwid__{store_id}__tax__informationPStax__information_expire | Expiration time for customer tax info | Personalization | Expiration date of customer tax info | Persistent, 365 days |
ec_storefront_ab_test | Customer internal identifier (Ecwid’s A/B tests) | Technically required | Name of the test and name of the customer group | Persistent, not limited (localStorage) |
Ecwid cookies are not shared with any third parties.
Cookie name (as seen in a browser) | What the cookie is used for | Cookie classification | Is the cookie shared with others or set by third parties | What is stored in the cookie on the client's device | Cookie type and lifetime (for persistent cookies) |
__paypal_storage__ | Paypal button session | Personalization | PayPal | Used to be able to pay by PayPal | Persistent, 365 days |
ts_c | Paypal button session | Personalization | PayPal | Used to be able to pay by PayPal | Persistent, 3 years |
akavpau_ppsd | Personalization | PayPal | Used to be able to pay by PayPal | Session | |
Google Tag Manager | GTM does not set cookies or track anything on its own but is used as a deployment container to which other tracking services are added: Google Analytics, Facebook pixel as defined below. | ||||
_ga | Tracking must be explicitly enabled by the merchant. Ecwid has an option to enable customer opt-in for such tracking. Used to distinguish users. | Marketing | Generated value by Google Analytics | Persistent, 2 years | |
_gid | Tracking must be explicitly enabled by the merchant. Ecwid has an option to enable customer opt-in for such tracking. Used to distinguish users. | Marketing | Generated value by Google Analytics | Persistent, 24 hours | |
_fbp | Facebook Pixel. Used by Facebook to deliver a series of advertisement products on Facebook. Tracking must be explicitly enabled by the merchant. Ecwid has an option to enable customer opt-in for such tracking. | Marketing | Generated value by Facebook pixel | Persistent, 90 days | |
_swa_u | Comes with _ga tracking. Tracking must be explicitly enabled by the merchant. Ecwid has an option to enable customer opt-in for such tracking. Used to distinguish users. | Marketing | Generated value by Google Analytics | Persistent, end of current calendar year + 2 years | |
Used to group all events generated from a unique user session across multiple pages. | Analytics | Datadog | Current session ID, whether the session is excluded due to sampling, and the expiration date of the session | Persistent, extended for an extra 15 minutes every time the user interacts with the website, up to the maximum user session duration (4 hours) |
