Rev. April 27, 2016
Embroidery Central, Inc.
Information we collect (hereafter referred to as "user information")
Information you provide - When you register with Embroidery.com you are prompted for personal information such as your name, contact information, email address, and account preferences). Some of this information is required to access features of Embroidery.com. For certain levels of service we also request credit card and other billing information.
Activity Logs - Activities (page visits, searches, downloads, etc.) are automatically logged by our servers. These server logs may include information such as your web request, Internet Protocol address, browser type, browser language, the date and time of your request, and one or more cookies that may uniquely identify your browser.
Embroidery Central shares user information with other companies or individuals outside of Embroidery.com in the following limited circumstances:
1. Embroidery Central may provide user information to trusted businesses or persons for the purpose of verifying licenses or ownership, fulfilling customer orders, providing direct technical support. Embroidery Central requires that these parties agree to process such user information based on our instructions and in compliance with this Policy and any other appropriate confidentiality and security measures.
3. Embroidery Central has a good faith belief that access, use, preservation or disclosure of such information is reasonably necessary to (a) satisfy any applicable law, regulation, legal process or enforceable governmental request, (b) enforce applicable Terms of Service, including investigation of potential violations thereof, (c) detect, prevent, or otherwise address fraud, security or technical issues, or (d) protect against imminent harm to the rights, property or safety of Embroidery.com, its users, or the public as required or permitted by law.
Embroidery Central may share with third parties, certain pieces of aggregated, non-personal information, such as the number of users who use a particular service. Such information does not identify you individually.
Embroidery Central takes appropriate security measures to protect against unauthorized access to or unauthorized alteration, disclosure or destruction of data. Trusted business partners may be used to store this data and they are required to take these same measures.
Credit Card Processing & Encryption
Credit card payment information is received from the user and transferred to the payment processor using a secure encrypted connection. Only pages that send or receive payment or personal information are encrypted. Information about the exact encryption protocols being used are available in most web browsers. As a practice, Embroidery Central does not store full credit card numbers for more than a few seconds until the card has been successfully billed. After billing, credit card information is deleted except for the card type, expiration date, and last four digits (for reference) along with a transaction key provided by the credit card processing company. Customers are able to bill the same credit card without re-entering their credit card information. This is accomplished by using the transaction key provided by the credit card processor. Transaction keys are specific to a merchant account and would have no value to a potential hacker.
Minor exceptions to this practice may occur if there is trouble billing the credit card or card information is conveyed over the phone, for example.
Embroidery Central processes personal information only for the purposes for which it was collected and in accordance with this Policy. We review our data collection, storage and processing practices to ensure that we only collect, store and process the personal information needed to provide or improve our services. We take reasonable steps to ensure that the personal information we process is accurate, complete, and current, but we depend on our users to update or correct their personal information whenever necessary. Customers who receive login priviledges must provide an email address and verify that email is deliverable to that address.
Changes to this policy