Privacy and Cookies notice

BOKI PRIVACY POLICY

This page informs you of our policies regarding the collection, use and disclosure of Personal Information we receive from users of the Website.

We will not transfer your information outside the UK and/or European Economic Area ("EEA") unless you are a user located outside the EEA in which case it may need to transfer your information to deliver your goods, process payment/refunds, or to send you promotional information you have subscribed to.

Data Protection Framework

Boki Group Ltd. is based within the United Kingdom, and as such is registered with the Information Commissioner’s Office (ICO) as a Data Controller under the UK Data Protection Act of 1998. We have also aligned our Privacy Policy with the EU General Data Protection Regulation (GDPR) which came into effect on 25th May 2018, under the supervision of the ICO within the UK.

Information Collection and Use

Your decision to disclose your personal data is entirely voluntary, and, could reasonably be used by us as permitted by and in accordance with applicable data protection law, to : (i) identify you and enable you to use our Website (for the administration and delivery of an order) or in response to any query; (ii) send promotional and marketing communications to you regarding us and our products and Website; (iii) data share with our affiliates, business partners and market research companies to conduct market research and analysis about our Website on our behalf; (iv) send newsletters, updates and e‐mails; (v) create personalized content, offers, Website, and advertising; (vi) support any other intended purpose stated at the time at which your information is collected, subject to any preferences which you may have indicated; (vii) prevent fraudulent transactions and theft; and (viii) comply with applicable law, governmental request, court order, or otherwise protect the rights, property, or safety of us or others.

GDPR specifies a set of personal data categories which are considered to be “sensitive”, and which require special consideration by Data Controllers. This Website, and any services available from this Website, do not knowingly collect or process any sensitive personal data.

Declaration of Sub-Processing

To make an informed decision on whether to provide your personal data to us using this website.

Boki Group Ltd is registered with the Information Commissioner’s Office under the UK Data Protection Act 2018 .

Cookies

Cookies are files with small amount of data, which may include an anonymous unique identifier.

Cookies are sent to your browser from a web site and stored on your computer's hard drive.

Like many sites, we use "cookies" to collect information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Site.

For more information about the cookies we use please see below.

Functional and Required Cookies

Squarespace uses some necessary cookies because they allow visitors to navigate and use key features on your site. These cookies vary from site to site depending on the features it uses. For example, Functional and Required Cookies help these features work:

· Customer accounts

· Shopping cart and checkout

· URL redirects

Name

Purpose, type, and duration

_acloggedin

· Supports login by Scheduling client if the client has an account.

· Cookie

· January 1, 2025

Name

_client_acloggedin

· Supports login by Scheduling client if the client has an account.

· Cookie

· January 1, 2025

Name

algoliasearch-client-js

· Adds auto-populated suggestions to address fields in Scheduling to help clients complete forms faster.

· localstorage

· Persistent

Name

AWSALB, AWSALBCORS

· Improves performance in Scheduling by using one server for the duration of the session.

· Cookie

· 1 week

Name

CART

· Shows when a visitor adds a product to their cart

· Cookie

· 2 weeks

CHECKOUT_WEBSITE

· Identifies the correct site for checkout when Checkout on Your Domain is disabled.

· Cookie

· Session

Name

Commerce-checkout-state

· Stores state of checkout while the visitor is completing their order in PayPal

· sessionstorage

· Session

Name

Crumb

· Prevents cross-site request forgery (CSRF).

· Cookie

· Session

Name

hasCart

· Tells Squarespace that the visitor has a cart

· Cookie

· 2 weeks

Name

Locked

· Prevents the password-protected screen from displaying if a visitor enters the correct site-wide password.

· Cookie

· Session

Name

PHPSESSID

· Securely authenticates a visitor during their checkout in Scheduling.

· Cookie

· 1 month

Name

RecentRedirect

· Prevents redirect loops if a site has custom URL redirects. Redirect loops are bad for SEO.

· Cookie

· 30 minutes

Name

remember_client

· Remembers Scheduling client’s login details if they have an account.

· Cookie

· 365 days

Name

siteUserCrumb

· Prevents cross-site request forgery (CSRF)for logged in site users.

· Cookie

· 3 years

Name

SiteUserInfo

· Identifies a visitor who logs into a customer account

· Cookie

· 3 years

Name

SiteUserSecureAuthToken

· Authenticates a visitor who logs into a customer account

· Cookie

· 3 years

Name

squarespace-announcement-bar

· Prevents the announcement bar from displaying if a visitor dismisses it

· localstorage

· Persistent

Name

squarespace-likes

· Shows when you've already "liked" a blog post.

· localstorage

· Persistent

Name

squarespace-popup-overlay

· Prevents the promotional pop-up from displaying if a visitor dismisses it

· localstorage

· Persistent

Name

ss_cookieAllowed

· Remembers if a visitor agreed to placing Analytics cookies on their browser if a site is restricting the placement of cookies

· Cookie

· 30 days

Name

ss_sd

· Ensures that visitors on the Squarespace 5 platform remain authenticated during their sessions.

· Cookie

· Session

Name

Test

· Investigates if the browser supports cookies and prevents errors.

· Cookie

· Session

Name

· Allows a Scheduling client’s appointments to display correctly based on their time zone preferences.

· localstorage

· Persistent

Security

Wherever we collect payment information (such as credit card data), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a lock icon in the address bar [AS1] and looking for "https" at the beginning of the address of the Web page.

While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment.

The technology that we use and the policies that we have implemented are intended to safeguard your privacy from unauthorised access and improper use.

Where appropriate, we attempt to provide for the secure transmission of information, such as credit card details, from your computer to our server by utilising SSL (Secure Sockets Layer) encryption software[AS2] . However, due to the inherent open nature of the internet, we cannot guarantee that all data transmitted will be secure since no method of transmission over the Internet, or method of electronic storage, is 100% secure. Use of this Website demonstrates your assumption of this risk.

Changes to this Privacy Policy

We reserve the right to update or change our Privacy Policy at any time and you should check this Privacy Policy periodically for updates which shall come into effect once posted. Your continued use of the Service after we post any modifications to the Privacy Policy on this page will constitute your acknowledgment of the modifications and your consent to abide and be bound by the modified Privacy Policy.

If we make any material changes to this Privacy Policy, we will notify you either through the email address you have provided us, or by placing a prominent notice on our website.

Customer and Citizen Data Rights

As prescribed within data protection regulations, you have several rights connected to the provision of your personal data to Boki Group Ltd [AS3] using this website. These include your rights to request that Boki Group Ltd

confirms to you what personal data it may hold about you, if any, and for what purposes
changes the consent which you have provided in relation to your personal data
corrects any inaccurate or incomplete personal data which may be held about you
provides you with a complete copy of your personal data for you to move elsewhere
stops processing your personal data, whilst an objection from you is being resolved
permanently erases all your personal data promptly, and confirms to you that it has done so (there may be reasons why we may be unable to do this)

To contact Us, please see our contact details below.

If We don’t address your request, or fail to provide you with a valid reason why it is unable to do so, you have the right to contact the Information Commissioner’s Office to make a complaint. They can be contacted via their website (www.ico.org.uk) or by telephone 0303 123 1113. Should you have any privacy-related questions or comments related to this Privacy Policy please contact us using the contact details below. We will ask you to verify your identity before we can act on your request. We aim to resolve all complaints within 15 days. Where we cannot resolve a complaint within 15 days, we will notify you of the reason for the delay as well as an indication of when we expect to resolve the complaint.

Contact Us

If you have any questions about this Privacy Policy, would like to exercise any of your statutory rights, or to make a complaint, please email to: info@bokicoffee.com

We treat all complaints about a breach of the privacy laws seriously. Someone from Boki Group Ltd will investigate your complaint and respond to you within a reasonable time.