Privacy Policy
At Rosita Real Foods, we take your privacy very seriously. This Privacy Policy sets out how we collect, use, and share your personal information when you use our website to purchase health supplements. By using our website, you consent to the terms of this Privacy Policy.
What information do we collect?
When you use our website, we may collect certain personal information from you, including your name, email address, phone number, billing address, shipping address, payment information, and purchase history.
We may collect your personal information in a number of ways, including when you:
- Place an order on our website
- Create an account on our website
- Sign up for our newsletter or other marketing communications
- Contact us via email, phone, or chat
- Participate in a survey or contest
- Use our website, including browsing and search history.
How do we use your information?
We use your personal information for a variety of purposes, including:
- Fulfilling and managing your orders, including processing payments and shipping products
- Providing customer service and support, including responding to inquiries and addressing any issues you may have
- Communicating with you about your orders, as well as our products, services, and promotions
- Improving our website, including by analysing user behaviour and preferences
- Sending marketing and promotional materials, including newsletters and special offers
- Conducting research and surveys to improve our products and services.
How long do we keep it for?
We retain personal information we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with a service you have requested or to comply with applicable legal, tax, or accounting requirements).
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
In all cases, our need to use your personal information will be reassessed on a regular basis, and information which is no longer required for any purposes will be disposed of.
Who do we share it with?
We share your information with the following business partners who will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. We do not sell your personal information to third parties.
- E-commerce platform providers which allow you to place orders and make payments online.
- Our CRM Business Software provider to enable us to process your orders and manage your account.
- Our IT service providers when it is necessary for them to support our internal IT issues.
- Our Warehousing and Operations team who are responsible for Picking & Packing your order.
- Couriers and Postal Services to help deliver our products to you.
- Our Payment Gateway Provider if they are used when completing your transaction, who we may send your details to, and also use information from credit reference agencies and fraud prevention agencies to prevent fraud and to verify your identity.
- Our independent Reviews provider only once you have purchased a product, so you may review the purchased product(s) or service.
- A selected Health care practitioner or Coach if you enquire or choose to use our Health Coaching services.
- Our Accounting software to keep our records correct and accurate for business and tax filing.
- Anyone else where you have given consent for or as required by Regulators and the law.
We may share non-personal information (such as the number of daily visitors to a particular web page, or the size of an order placed on a certain date) with third parties such as advertising partners. This information does not directly personally identify you or any user.
In the case of Business Transfers. Information may be disclosed and otherwise transferred to any potential acquirer, successor, or assignee as part of any proposed merger, acquisition, debt financing, sale of assets, or similar transaction, or in the event of insolvency, bankruptcy, or receivership in which information is transferred to one or more third parties as one of our business assets.
Whilst we will take all reasonable steps to protect and secure your personal data, we cannot guarantee the confidentiality of any messages transmitted between you and us via email as these are potentially accessible by others. We will not be liable to you or anyone else for any loss relating to any email message sent by you to us or by us to you.
Security
We know how much trust you place in us when you share your personal data. Because of that we place great importance on the security of your personal information and will always take appropriate precautions to protect it.
This website and the "checkout" pages on our webstores use industry standard software protection for secure financial transactions such as PCI DSS and SSL Certification. Your personal information such as your credit card number, name, and address, is securely encrypted so that it cannot be read as the information travels over the Internet. We never hold your credit card details on our website or in our own records, this information is processed directly by our Payment Gateway Provider.
Even with all these precautions, no data transmission over the internet can be guaranteed to be 100% secure. So, whilst we strive to protect your personal information, we cannot guarantee the security of any information which you disclose to us online and you must understand that you do so at your own risk.
We take care to protect your personal information. We take steps to ensure that access to personal information is restricted to employees who need it and that all employees who handle personal information are fully trained and kept up to date on our data management, security and privacy practices. Our employees are notified and reminded about the importance we place on privacy, and what they can do to ensure your information is protected.
How do we protect your information
The internet works as a global environment. This means that using it to collect and process personal data often involves the international transmission of data including outside of the European Economic Area (EEA).
Our third-party service providers, such as payment gateways and other payment transaction processors, are located in or have facilities that are located in a different country or territory to the NZ. If you elect to proceed with a transaction that involves the services of one of our third-party service providers, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
Your personal data is protected under applicable laws such as the European Commission Data Adequacy or they are certified with the international Privacy Shield Framework.
Once you leave our webstore or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service.
Your rights under appliable Data Protection Law
Data Protection Law outlines several rights that customers have when accessing and ordering from an online website. These rights include:
- Right to be informed: Customers have the right to be informed about how their personal data is collected, used, and stored by the website. This information should be presented clearly and in a concise language.
- Right of access: Customers have the right to access their personal data held by the website. This includes information about how their data is being used, who it is being shared with, and for what purpose.
- Right to rectification: Customers have the right to request that any inaccurate or incomplete personal data held by the website is corrected or updated.
- Right to erasure: Customers have the right to request that their personal data be deleted from the website's records, also known as the "right to be forgotten".
- Right to restrict processing: Customers have the right to request that their personal data is only used for specific purposes or to limit the way their data is processed.
- Right to data portability: Customers have the right to request that their personal data be transferred from one website to another in a format that is commonly used and machine-readable.
- Right to object: Customers have the right to object to the processing of their personal data, particularly if it is being used for direct marketing purposes.
- Right to not be subject to automated decision making: Customers have the right to request that decisions about them are not made solely on the basis of automated processing.
Subject access request
If you would like a copy of some or all of your personal information, please email us at the following address [email protected].
On receipt of a Subject Access Request, we may require additional documentation or information from you to verify that the Personal Information you are requesting does relate to you. Once we have verified your identity, we will provide you with the information we hold about you within 30 calendar days.
Cookie Policy
What is a cookie?
A "cookie" is a piece of information that is stored on your computer's hard drive and which records how you move your way around a website so that, when you revisit that website, it can present tailored options based on the information stored about your last visit. Cookies can also be used to analyse traffic and for advertising and marketing purposes.
Cookies are used by nearly all websites and do not harm your system.
If you want to check or change what types of cookies you accept, this can usually be altered within your browser settings. You can block cookies at any time by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
How do we use them
We use cookies to track your use of our website. This enables us to understand how you use the site and track any patterns with regards how you are using our website. This helps us to develop and improve our website as well as products and / or services in response to what you might need or want.
Cookies are either:
- Session cookies: these are only stored on your computer during your web session and are automatically deleted when you close your browser – they usually store an anonymous session ID allowing you to browse a website without having to log in to each page but they do not collect any personal data from your computer; or
- Persistent cookies: a persistent cookie is stored as a file on your computer and it remains there when you close your web browser. The cookie can be read by the website that created it when you visit that website again. We use persistent cookies for Google Analytics.
Cookies can also be categorised as follows:
- Strictly necessary cookies: These cookies are essential to enable you to use the website effectively, such as when buying a product and / or service, and therefore cannot be turned off. Without these cookies, the services available to you on our website cannot be provided. These cookies do not gather information about you that could be used for marketing or remembering where you have been on the internet.
- Performance cookies: These cookies enable us to monitor and improve the performance of our website. For example, they allow us to count visits, identify traffic sources and see which parts of the site are most popular.
- Functionality cookies: These cookies allow our website to remember choices you make and provide enhanced features. For instance, we may be able to provide you with news or updates relevant to the services you use. They may also be used to provide services you have requested such as viewing a video or commenting on a blog. The information these cookies collect is usually anonymised.
We use analytics providers such as Google Analytics. Google Analytics uses cookies to collect non-identifying information. Google provides some additional privacy options regarding its Analytics cookies at http://www.google.com/policies/privacy/partners.
Personal data breach
In the case of a personal data breach (including electronic media, paper records and inappropriate access to information), where personal data is lost, compromised, misdirected or stolen, we will contact you without undue delay to explain what went wrong and what actions have been taken to fix it.
Marketing
Provided you have given us consent, we would like to send you information about products, services or educational content which may be of interest to you.
We’ll use your home address, company address, phone numbers, email address or social media to contact you according to your preferences. If after you have “opted – in”, you choose to stop receiving our newsletter or marketing emails at any time by following the unsubscribe instructions included in these emails, by updating your communications preferences while signed into your account on our website or contacting us by email [email protected].
In the case of social media messages, you can manage these via the social media platform.
We do not and will never share, disclose, sell, rent or otherwise provide personal Information to other companies for the marketing of their own products or services.
Changes in our Privacy Policy
We may update this privacy policy from time to time by posting a new version on our website. You should check this page periodically to ensure that you are aware of any changes.
Contact us
If you have any questions or concerns about our privacy policy or our use of your personal information, please contact us at [email protected].
Get Involved
If you have any questions about our privacy policy then please use the 'Contact us' button to get in touch.