Privacy Policy
(last Updated: 24/10/2018)
Our website, as is the case with most web sites, gathers information/data from you during your visit. This Privacy Policy outlines and explains how we collect information/data and how we handle/process the information/data we collect from you while you are browsing and interacting with our website. We also outline your rights and how we manage and process your rights.
We are fully committed to respecting your rights to privacy and bettering existing protocols to improve the way we handle and process catalog/information and also empowering you to manage your privacy on our site. This is an ongoing process which we are fully committed to.
Our intention is to be clear and transparent. If there is anything that is unclear or if you have any questions about this Privacy Policy, please contact us at privacy@chillihead.co.za
Data collection when you visit our site:
When you browse our site and have not previously created an account on our site your are categorized by our site as a "guest visitor". None of the data gathered on you as a guest visitor identifies you personally. The data collected is automatically recorded by this website in log files and web stats when you interact with the site.
We use this data to make our site more useful to visitors by learning the number of visitors to our site, the number of pages served, and the level of demand for specific pages. Data is also logged by security software running on our site to automatically monitor the site for any possible security threats.
The data typically logged by the website on guest visitors is:
- Your IP Address: The Internet protocol (IP) address from which you access our web site. This is a unique number given to each computer, much like a finger print. It enables us to gather information about your browsing habits with this particular computer.
- Customer Group: This will record that you are identified by the website as a "Guest" visitor.
- Referrer: This records the previous referring page. This helps us establish where traffic is coming from.
- Country: The name of the country that the guest visitor is browsing from.
- Browser: The type of browser you are using, such as Netscape or Internet Explorer, and operating system, such as Windows 98 or Linux, used to access our site. This enables us to optimise our website to suit your configuration.
- Landing Page: The first page you visited. This helps us establish which page on our site is the most requested by first time visitors.
- Time Arrived: The date and time our site is accessed, for the purpose of monitoring demand.
- Last click: The date and time our site is accessed, for the purpose of monitoring demand.
- Number of clicks: The amount of clicks made by the guest visitor. This helps us establish how much engagement our site retains. If our site is interesting, customers will linger and click more products/pages. Ultimately this will help us create a better site.
- Products Viewed: This helps us establish what products are popular and which are not.
- Cart Contents: This is used in cases where there is a problem with checkout.
- Cart Total: This is used in cases where there is a problem with checkout.
- Categories Viewed: This gives us information about browser viewing trends. By seeing the categories that are viewed more often and vis a vis those that are not, we are able to improve our site.
- Routes: The route you took through our website. This gives us information on broser habits.
- Search Terms: This will give us information about the kind of things browsers are looking for and how we can improve our site and product offerings.
- Add to cart & checkout completed: This information will help us establish any issues you may be having with the check out of your order.
Our legitimate interest in collecting and processing this data is to improve the stability and functionality of our website. This data will not be shared or passed on to third parties. We also reserve the right to monitor data provided for security reasons.
Cookie use on our site:
Our site uses cookies. Cookies are small text files that are stored in your browser when you visit our site. When you browse our site, these cookies will remember certain functions and preferences that improve site performance and your browsing experience in general as well as other data that helps gather statistics and marketing information about browsers. Cookies are broken down into three main categories:
Strictly Required (Necessary) Cookies
These cookies are required for the website to run properly. Such cookies are only set in response to actions made by you such as language, currency, login session, privacy preferences. You can set your browser preferences to block these cookies but our site will not function properly as these cookies handle core functions of our website functionality.
Data sent to South Africa
Name of |
From | What it does | Data Location | Duration of Cookie |
currency | chillihead.co.za | Initiated by our website, this cookie saves currency preferences. | Data sent to South Africa | 29 days |
language | chillihead.co.za | Initiated by our website, this cookie saves your preferred language on the site. | Data sent to South Africa | 29 days |
PHPSESSID | chillihead.co.za | Initiated by our website, this cookie preserves your session state across page requests | Data sent to South Africa | Session |
cookies | chillihead.co.za | Cookie Bar settings. | Data sent to South Africa | Session |
cookieconsent_status | chillihead.co.za | Records status of Cookies. | Data sent to South Africa | Session |
cookieconsent_ |
chillihead.co.za | Record Cookie consent preferences. | Data sent to South Africa | Session |
Analytics & Statistic
These cookies allow us to measure visitor traffic and see traffic resources by collecting information in data sets. They also help us understand which products and actions are more popular than others allowing us to better design the website for your browsing/shopping enjoyment. Our site uses Google Analytics to provide statistical information about browsers to our site. The information is collected anonymously and does not contain personally identifiable information. You have the right to disable these cookies and can do so via our "Cookie Bar" located in the top left hand corner of our site.
Data sent to International
Name of Cookie |
From | What it does | Data Location | Duration of Cookie |
bcookie | Browser ID Cookie | Pending | 24 Hours | |
bscookie | Secure Browser ID Cookie | Pending | 24 Hours | |
collect | google-analytics.com | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Data sent to USA. | Session |
i/jot | Pixel tracker. | Pending | Session | |
lidc | Used for routing | Pending | 24 Hours | |
NID | DoubleClick/Google | This cookie is set by DoubleClick (which is owned by Google) to help build a profile of your interests and show you relevant ads on other sites. | Pending | Pending |
r/collect | Session cookie by Google DoubleClick for tracking visitor behaviour. | Pending | Session | |
_gads | In the case of advertising Google serve across the web, cookies named ‘__gads’ or ‘__gac’ may be set on the domain of the site you're visiting. Unlike cookies that are set on Google's own domains, these cookies can't be read by Google when you're on a site other than the one on which they were set. They serve purposes such as measuring interactions with the ads on that domain and preventing the same ads from being shown to you too many times. | Pending | Pending | |
IDE | doubleclick.net | Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user. | Pending | 1 Year |
test_cookie | doubleclick.net | Used to check if the user's browser supports cookies. | Pending | Session |
fr | facebook.com | Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. | Pending | 3 Months |
tr | facebook.com | Pixel tracker. | Pending | Session |
collect | Google Analytics | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Pending | Pending |
GPS | youtube.com | Registers a unique ID on mobile devices to enable tracking based on geographical GPS location. | Pending | Session |
PREF | youtube.com | Registers a unique ID that is used by Google to keep statistics of how the visitor uses YouTube videos across different websites. | Pending | 8 Months |
BizoID | LinkedIn Ad Analytics | Pending | 6 Months |
Marketing & Retargeting
These cookies are usually set by our marketing and advertising partners. These may be used by them to build a profile of your browsing habits and interests and later show you relevant ads. These cookies do not use personally identifiable information from our site. You have the right to disable these cookies and can do so via our "Cookie Bar" located in the top left hand corner of our site.
Name of Cookie |
From | What it does | Data Location | Duration of Cookie |
bcookie | Browser ID Cookie | Pending | 24 Hours | |
bscookie | Secure Browser ID Cookie | Pending | 24 Hours | |
collect | google-analytics.com | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Data sent to USA. | Session |
i/jot | Pixel tracker. | Pending | Session | |
lidc | Used for routing | Pending | 24 Hours | |
NID | DoubleClick/Google | This cookie is set by DoubleClick (which is owned by Google) to help build a profile of your interests and show you relevant ads on other sites. | Pending | Pending |
r/collect | Session cookie by Google DoubleClick for tracking visitor behaviour. | Pending | Session | |
_gads | In the case of advertising Google serve across the web, cookies named ‘__gads’ or ‘__gac’ may be set on the domain of the site you're visiting. Unlike cookies that are set on Google's own domains, these cookies can't be read by Google when you're on a site other than the one on which they were set. They serve purposes such as measuring interactions with the ads on that domain and preventing the same ads from being shown to you too many times. | Pending | Pending | |
IDE | doubleclick.net | Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user. | Pending | 1 Year |
test_cookie | doubleclick.net | Used to check if the user's browser supports cookies. | Pending | Session |
fr | facebook.com | Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. | Pending | 3 Months |
tr | facebook.com | Pixel tracker. | Pending | Session |
collect | Google Analytics | Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels. | Pending | Pending |
GPS | youtube.com | Registers a unique ID on mobile devices to enable tracking based on geographical GPS location. | Pending | Session |
PREF | youtube.com | Registers a unique ID that is used by Google to keep statistics of how the visitor uses YouTube videos across different websites. | Pending | 8 Months |
BizoID | LinkedIn Ad Analytics | Pending | 6 Months |
Cookie Bar
Our website now has a "Cookie Bar" that will pop up when you first arrive at our site. By default, all cookies other than "Strictly Required (Necessary) Cookies" are disabled. You have the right to control the cookies on our site.
Should you wish to disable "Strictly Required (Necessary) Cookies", you can block all cookies via your browser preferences.
As a service to you, we have included links to the most popular browser software sites and these pages will explain how to disable all cookies in their browsers.
Please note that these are third party website links and browsing on these sites will be subject to their Privacy and Cookie Policies.
- Internet Explorer: https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
- Firefox: https://www.mozilla.org/en-US/privacy/websites/#cookies
- Chrome: https://support.google.com/accounts/answer/61416?co=GENIE.Platform%3DDesktop&hl=en
- Safari: https://support.apple.com/en-gb/guide/safari/manage-cookies-and-website-data-sfri11471/mac
- Opera: http://help.opera.com/Windows/10.20/en/cookies.html
Information collected from e-mail:
Any emails you send us may contain personally identifying information. In an effort to respond to your request, information you submit may be viewed by various people within our company. Once received, the information to your e-mail is protected in accordance with law, (e.g. the Privacy Act and the Freedom of Information Act). This information is handled in the strictest confidence.
We do not make personally identifiable information available to anyone unless required by law to do so.
Information collected from the website's Contact Us form:
To contact us via the website contact us form, you will have to provide us with personally identifiable information to enable us to respond to your enquiry. The information you submit via the form is transmitted via an encrypted SSL connection to our secure database. This means your information is safe from prying eyes while in transit. This information will be viewed in strictest confidence by our staff for purposes of corresponding with you and resolving your enquiry. The information that is submitted to our database is for our purposes only and will not be sold on to third parties.
We do not make personally identifiable information available to anyone unless required by law to do so.
The information/data typically logged by the system via the contact us form is:
- First Name We require your First Name so we can personalize our communication with you and address you by your first name.
- E-Mail Address We require your email address when contacting us, so we can email you back.
- Enquiry (Message) This information will allow us to ascertain the nature of your enquiry.
- reCaptcha The code you enter is for security purposes to ensure the entity filling in the form is human and not a bot/program.
- I have read and agree to the Privacy Policy In accordance with the Data Protection laws, we require you to acknowledge that you have read and understand and agree to our Privacy Policy.
- IP Address The system will also provide us with the IP Address used by the computer or device that you sent the enquiry from. This information will be used by us as a security measure, should the form have been accessed by a bot/program.
- User Agent The system will also provide us with your device's operating system and browser. This information helps us to establish any possible issues with operating systems or applications. This will enable us to remedy or fix any issues with our website and your computer's operating system or application.
- Language The system will provide us with your keyboard language profile.
Information collected when you write a Testimonial:
When you send us a Testimonial in the form provided on our website you agree to send us information to use on our site. This information will be viewable by visitors to our site. Our site will capture the following information:
- Subject - A heading to your testimonial. (Not Required)
- Message - Your testimonial. (Required)
- Name - Your name. (Not Required)
- City - The city you are located to so people can relate your testimonial to a general location. (Not Required)
- E-mail - Not published, so we can communicate with you. (Required)
- Rating - Your rating based on your experience of our service to you. (Not Required)
- reCapture - This code is randomly generated to ensure that you are a human and not a spam bot. (Required)
Please note, that our form does not require you to supply anything other than your message. Naturally we would like to make the connection between the customer and the Testimonial and to email you a response - but this is entirely up to you. By supplying this information you agree to post this information in our Testimonials page which will be shown on our site to visiting guests.
The information you provide is emailed to our staff and will be seen by members of our staff so we can authenticate and approve your Testimonial on the website and make sure your testimonial is not a security risk or spam email.
Should you wish to have this information removed from our site - for whatever reason, please email us on privacy@chillihead.co.za and we will gladly do this for you.
Data processing when creating an account on our site:
To shop and purchase items from our site, we require you to create an account.
To create an account you will have to provide us with personally identifiable information to enable us to provide you with our services. The information you submit via the form is transmitted via an encrypted SSL connection to our secure database. This means the information you send will be safe from prying eyes while in transit. This information will be viewed in strictest confidence by our staff for purposes of processing your order. The information that is submitted to our database is for our purposes only and will not be sold on to third parties.
We do not make personally identifiable information available to anyone unless required by law to do so.
The information/data typically logged by the system is:
- First Name (Required) We require your first name so we can personalize our service to you by addressing you by your first name.
- Last Name (Required) We require your Surname for Invoicing and Shipping purposes.
- E-Mail (Required) We
- Telephone Number (Required)
- Fax This is not required and should only be supplied if you would like us to fax information to you.
- Company Name - This is not required, but will be important if you would like us to Ship your order to your Company.
- Address 1 - (Required) We require one address for Invoicing and Shipping purposes.
- Address 2 - This is not required, but can be used as an alternate address.
- City - (Required) This is required for Shipping purposes.
- Post Code - Not required, but is important for shipping purposes.
- Country - (Required) This is required for Shipping purposes.
- Region / State - (Required) This is required for Shipping purposes.
- Password - (Required) We require you to create a password to protect your account from unauthorized access.
- Confirm Password - (Required) We require you to confirm the password to ensure it is correct.
- Subscribe Newsletter Yes / No By default this option is set to NO. If you wish to receive our Newsletter, please feel free to opt in.
- I have read and agree to the Privacy Policy We require you to acknowledge and accept our Privacy Policy and information regarding how we handle this information.
Email Addresses: When you register an account with us, it is understood that we will communicate with you via the given email address. The system will use your given email address to send you automatic emails to let you know if your registration has been approved - for instance. Your given email address will never be used for marketing purposes or specifically for newsletter emails - unless you have signed up for the latter specifically.
You have the right to change or delete this information at any time via your Accounts Page and the GDPR Tools provided on the site. This information will remain in our secure database until such time as you choose to close your account or request us to delete the information. You can also do this by emailing us at privacy@chillihead.co.za
Newsletter signup:
We send out a Newsletter via email to our customers that have chosen to receive our Newsletter. This we try to limit to once a month. Our aim is not to spam customers, but merely to make you aware of new products and services on our site. We respect our customer's right to privacy and will only send Newsletters to those customers who have chosen to receive our Newsletter when creating their account.
You have the option and right to amend your subscription status to our Newsletter at any time via your Accounts page.
Alternatively, you can email us at privacy@chillihead.co.za and we will happily amend your status.
Notify Me Signups:
When our products are out of stock and as an added service to you we have equipped our site with a "Notify Me" button, which when clicked opens a form for you to enter your details.
The sole purpose of this feature, is for us to notify you when the specific product is back in stock.
The information that you submit is:
Name: Your Name
Email: Your contact email address for us to notify you on
We will notify you once the product becomes available again. Notification will come in the form of a automated email that will be sent to your given email address.
Periodically the list of personal information contained in this database is deleted.
Processing of information/data when handling orders:
Once you have checked out your order from our site and made your purchase, your order will processed internally by our company for shipment. This involves staff in our company processing your order in the strictest confidence. Your order is processed (a print-out of your order is generated) and packaged internally (packers will use your order print out as a checklist to ensure everything is included) and your parcel will be dispatched to the relevant shipping agent by us. We do not make use of third party services for the processing, packaging and dispatching of your order. This means your personally identifiable information is contained by us during processing, packaging and dispatching. We do however use third party Shipping Agents for the delivery of your purchased goods. For this to be possible we will share the following Personally Identifiable information with the respective Shipping Agents and their third party agents.
Courier Company (The courier Guy)
The Courier Guy Couriers require us to provide them with the following basic information on their waybill to enable them to make delivery. This information is entered onto the Waybill by us and will be subject to The Courier Guy Courier's Privacy Policy and Terms & Conditions. Carbon copies of the waybill will be retained by us and the shipping agent and their third party agents. We will retain a carbon copy of the waybill for purposes of our records and proof of shipping and also to follow up with tracking form our side to ensure your parcel is delivered to you. Another carbon copy will be retained by the shipping agent for their records and to enter the information onto their tracking system.
- Your Full Name Provided by you in your Shipping Information.
- Your Telephone Number Provided by you in your Shipping Information. This is necessary, so the shippers can contact you.
- Your Company Name We only use this if you have requested us to send your order to your place of business.
- Your Shipping Address Provided by you in your Shipping Information.
- Your Email Address This is requested on the waybill, but we will not provide this to the shipper.
Postnet
Postnet require us to provide them with this basic information to make delivery. This information is entered onto the Waybill by us and will be subject to Postnet's Privacy Policy and Terms & Conditions. Carbon copies of the waybill will be retained by us and the shipping agent. We will retain a carbon copy of the waybill for purposes of our records and proof of shipping and also to follow up with tracking form our side to ensure your parcel is delivered to you. Another carbon copy will be retained by the shipping agent for their records and to enter the information onto their tracking system.
- Your Full Name Provided by you in your Shipping Information.
- Your Telephone Number Provided by you in your Shipping Information. This is necessary, so the shippers can contact you.
- Your Company Name We only use this if you have requested us to send your order to your place of business.
- Your Shipping Address Provided by you in your Shipping Information.
All hard copies/paper work and electronic information is retained an filed by us for our records for as long as is required by relevant applicable laws to do so. There after, this information will be destroyed or anonymized using adequate techniques that do not permit the re-identification of the data subject.
Communication while processing your order
Once your order has been placed with us, we will communicate with you and give you status updates as to the status of your order. These status updates will be sent to your registered email address. The purpose of this is to keep you informed as to the status and whereabouts of your order and to offer you the best possible service. Should not not wish to receive this communication, please reply to the email notification advising you do not wish to receive these notifications and we will de-activate these notifications. Status notifications will include but not be limited to:
- Notification that we have received your order and are busy processing your order.
- Notification that we have processed your order and your order is awaiting dispatch to the couriers.
- Notification that your order has been dispatched to the couriers with your tracking number.
- Notification that your order is in your area and on route for delivery.
- Notification that your order has been delivered stating the person who received your order and the date/time of acceptance.
The information above is for purposes of informing you of the status of your order and is not shared with any third parties. All information is handled in the strictest confidence between your registered email address and our system.
Use of social media:
Our site does contain links to Social Media pages (such as Facebook, Instagram, Pinterest, Twitter and the likes). These links are for purposes of you sharing products or links to products with your friends on the Social Media forum of your choice. This will be subject to you having an account with those pages.
Our site does not track your liking our products in a media page, but your liking may be subject to that media page's Terms & Conditions and Privacy Policy.
Use of video:
Our site may from time to time serve YouTube videos in the form of "Taste Test Videos". These videos are intended for information and entertainment purposes only. Once activated, YouTube do track non personally identifiable information about your interaction with that particular video. Our site does not track your interaction with YouTube videos, but please be aware that your interacting with the video will mean you are subject to YouTube's Terms & Conditions and Privacy Policy.
As a service to you, we have listed a link to YouTube's Privacy Policy below:
https://support.google.com/youtube/answer/2801895?hl=en
Underage information:
Our store policy is that we only sell our products to customers that are 18 years of age or older. Should persons under the age of 18 wish to order from our site, they are requested to get their parents to create an account with their details and order on their behalf.
We do not knowingly collect information from persons under the age of 18 years.
In instances where we suspect that a registrant is under age, we will conduct checks to try and verify the age of the registrant.
Should we establish that registrant information supplied is that of a minor, we will delete all account information and cancel all transactions.
Payment information:
We will not ask for or accept any banking information on our site. We will not ever handle or process any banking information on our site or save such information to our database.
Payments accepted for goods purchased will be in the form of EFT (Electronic Funds Transfer) for South African customers.
EFT (Electronic Funds Transfer) Payments
We do not accept or handle / process any banking information on our site. Nor do we record this on our database. Once a customer has checked out their order, we require customers to make an EFT payment and send us their POP (Proof of Payment) via email. No orders are sent without a proof of payment having been amailed to us or the moneys reflecting in our bank account.
Customers can choose not to send us their proof of payment, but we reserve the right to only ship the order once the moneys have reflected in our bank account.
Paypal Payments
We do not accept or handle / process any banking information on our site. Nor do we store any banking information on our database. Once a customer has selected Paypal as their preferred choice of payment, your order will be checked out and your browser will be directed to Paypal's site for payment processing. Our system will provide Paypal with a summary of your order which will contain the following information:
- Name
- Shipping Address
- Products Purchased
- Cost of the products
- Total cost of the order
This transaction will be processed by PayPal on their secure servers and your transaction with PayPal is subject to PayPal's Terms & Conditions and Privacy Policy.
Once your payment has been completed via PayPal you will be redirected back to our site.
On the successful payment of your order via PayPal, we will receive a payment confirmation via email from PayPal informing us of the fact that you have made payment. Upon which, we will proceed with the processing, packing and dispatch of your order.
You also have the right not to proceed with your PayPal transaction, should you not feel comfortable to do so.
Your data rights:
Our site now has features in compliance with GDPR (EU) 2016/679 that allow you to see and manage the information/data we have obtained from you. These new "GDPR Tools" will let you manage your rights to Data Rectification, Data Portability, to be Forgotten, to the restriction of Data and the right to be Informed. The GDPR Tools are located here https://www.chillihead.co.za/gdpr-tools
Right to data rectification
- You have the right to edit your saved account information
- You have the right to change your saved password
- You have the right to change your saved address details
Right to data portability
- You have the right to download your saved GDPR request
- You have the right to download your saved personal information
- You have the right to download your saved addresses
Right to be forgotten (data erasure)
- You have the right to be forgotten. You can request to have your saved identifiable information deleted. In the event that you have ordered from us, all accounting information required by us to be kept for accounting/tax purposes will be retained for a period of time in accordance with applicable laws to do so. All identifiable information relating to your orders/invoices will be made anonymous/encrypted/pseudonymised by the system so it will no longer be personally identifiable. Please keep in mind that deleting your data will result in your account being deleted. As such, you will no longer be able to access or use your account!
Right to restriction of data
- You have the right to determine what information we can retain and process.
Right to be informed
- You have the right to access saved personal data by request a report on all saved information/data we store on you.
The sale of information/data:
We honor and value your right to privacy. We will never sell your personally identifiable information to third parties.
Security, intrusion and detection:
We are a South African business. Our website and database are hosted on secure servers in South Africa. We take security very seriously and endeavor to ensure that we have secured our site and servers to the best of our abilities.
For purposes of security we use programs to monitor and identify unauthorized attempts to upload or change information, or otherwise cause damage to our site or gain illegal access to our site.
All data sensitive pages where information is transferred from your computer to our site are encrypted and secured with SSL certification. This means the information you enter into forms is encrypted and protected from prying eyes while being transmitted.
Breach notification:
In the event that our site is compromised by a data breach:
- We will endeavor to contact all registered clients via email or via our system within 72 hours of having become aware of the breach.
- We will take immediate action to mitigate consequential damage.
- We will report the incident to authorities for further investigation.
You have the right to complain:
Should you feel that your rights have been infringed or compromised by this site, please contact us below. You have the right to complain!
Should you have any comments or observations in respect to how we can improve our policies or if you have noticed something that you would like to inform us of, please feel free to contact us below.
The person responsible for the website, processing and handling of data is:
Lourens Notman
privacy@chillihead.co.za
0722182655
The registered domicillium for our business is:
11th Ave,
Parktown North,
South Africa