Privacy Policy

This policy notice outlines how Underwater Explorers Ltd. trading online as Dirdirect.com promises to look after your personal information (Personal Data), what information we collect to process your order(s), how that information is used, encrypted and securely stored, and how we conform with the General Data Protection Regulation (GDPR) as well as the Payment Card Industry Data Security Standard (PCI DSS).

"Personal Data" is information that can be used to identify you, directly or indirectly, alone or together with other information, when you purchase something from us.

This includes your full name, email address, phone number, network information, IP address and online orders you have brought to checkout or made through us. 

THE INFORMATION WE COLLECT

When you visit our Site, we collect certain information about your device, your interaction with the Site, and information necessary to process your purchases and fulfil your order(s). We may also collect additional information if you contact us for customer support.

In this Privacy Policy, we refer to any information about an identifiable individual (including the information below) as “Personal Information”. See the list below for more information about what Personal Information we collect and why.

Device Information

    • Purpose of collection: to load the Site accurately for you, and to perform analytics on Site usage to optimise our Site.
    • Source of collection: Collected automatically when you access our Site using cookies, log files, web beacons, tags, or pixels.
    • Disclosure for a business purpose: shared with our processor Shopify.
    • Personal Information collected: version of web browser, IP address, time zone, cookie information, what sites or products you view, search terms, and how you interact with the Site.

Order Information

    • Purpose of collection: to provide products or services to you to fulfil our contract, to process your payment information, arrange for shipping, and provide you with invoices and/or order confirmations, communicate with you, screen our orders for potential risk or fraud, and when in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
    • Source of collection: collected from you.
    • Disclosure for a business purpose: shared with our processor Shopify.
    • Personal Information collected: name, billing address, delivery address, payment information including email address and phone number, current and past orders. (including encrypted credit card information handled only by Shopify Payments as a PCI compliant 3D secure payment gateway).
    • Any and all information collected on this site will be kept strictly confidential and will not be sold, reused, rented, disclosed, or loaned. We will never email or phone you unless it has something to do with an order or your use of our web site. 
    • None of the cookies used on this site store your credit card information which is handled separately and through a secure encrypted payment processing gateway.
    • We do not access or hold any sensitive credit card information.
    • We do not contact you for anything else but to satisfactorily conclude any order you have started or made unless you have agreed to receive our advertising or emails.
    • We do not pass any personally identifiable information to third parties.

SHARING PERSONAL INFORMATION

We share your Personal Information with service providers to help us provide our services and fulfil our contracts with you. For example:

  • We use Shopify to power our online store, handle orders, retain customer information. You can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy.
  • We use encrypted Shopify Payments as our payment gateway to handle PCI compliant and 3D secure checkouts on our behalf.
  • We use PayPal as a payment gateway to handle your PayPal purchases in an encrypted and secure way.
  • We may use your personal information in the form of name and email address, but only with your consent and opt-in, for advertisements or marketing communication via email.
  • We may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

BEHAVIOURAL ADVERTISING

As described above, we may use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For example:

  • We use Google Analytics to help us understand how our customers use the Site. You can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
  • We share anonymous information about use of our Site, purchases, and interaction with our ads on other websites with Google Shopping. We collect and share some of this information directly with our advertising partners, and in some cases through the use of cookies or other similar technologies (which you may consent to, depending on your location).

You can opt-out of targeted advertising from any website by visiting:

FACEBOOK - https://www.facebook.com/settings/?tab=ads
GOOGLE - https://www.google.com/settings/ads/anonymous
BING - https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads]

Additionally, you can opt-out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: https://optout.aboutads.info/.

LAWFUL BASIS

Pursuant to the General Data Protection Regulation (“GDPR”), if you are a resident of the European Economic Area (“EEA”), we process your personal information under the following lawful bases:

  • Your consent;
  • The performance of the contract between you and the Site;
  • Compliance with our legal obligations;
  • To protect your vital interests;
  • To perform a task carried out in the public interest;
  • For our legitimate interests, which do not override your fundamental rights and freedoms.

RETENTION

When you place an order through the Site, we will retain your Personal Information for our records unless and until you ask us to erase this information. For more information on your right of erasure, please see the ‘Your rights’ section below.

AUTOMATIC DECISION-MAKING

If you are a resident of the EEA, you have the right to object to processing based solely on automated decision-making (which includes profiling), when that decision-making has a legal effect on you or otherwise significantly affects you.

We do not engage in fully automated decision-making that has a legal or otherwise significant effect using customer data. Our processor Shopify uses limited automated decision-making to prevent fraud that does not have a legal or otherwise significant effect on you.

Services that include elements of automated decision-making include:

  • Temporary blacklist of IP addresses associated with repeated failed transactions. This blacklist persists for a small number of hours.
  • Temporary blacklist of credit cards associated with blacklisted IP addresses. This blacklist persists for a small number of days.

MINORS

The Site is not intended for individuals under the age of 18. We do not intentionally collect Personal Information from children. If you are the parent or guardian and believe your child has provided us with Personal Information, please contact us at the address above to request deletion.

COOKIES

A cookie is a small amount of information that’s downloaded to your computer or device when you visit our Site. We use a number of different cookies, including functional, performance, advertising, and social media or content cookies. Cookies make your browsing experience better by allowing the website to remember your actions and preferences (such as login and region selection). This means you don’t have to re-enter this information each time you return to the site or browse from one page to another. Cookies also provide information on how people use the website, for instance whether it’s their first time visiting or if they are a frequent visitor. You can see the cookies we use to optimise your experience on our Site and to provide our services under our Cookies Policy.

INFORMATION USED: WHAT, WHY, WHO

We have listed here under the information we require, what we use it for and who has access to it, as it is your right to know

INFORMATION

WHY WHO
Full Name, Billing, Delivery Address and Phone Number To accept, process and deliver your order Us, the Courier/Mail service who delivers the order
  For customs clearance and duties where required

Any authorities in the country of delivery where a customs declaration is required. The information would include our business name and contact details, copy of the commercial invoice with receiver name, address, description of  goods, number of items, package weight and size, the value of shipment as well as receiver phone number and email.

  For payment method and security checks

Us, your card issuer, PayPal handling your and our respective accounts, our secure online payment processing gateway provider Shopify, our bank (does not have access to your phone number)

E-mail To accept and process your order

Us, your card issuer, our bank, PayPal handling your and our respective accounts, our secure online payment processing gateway provider Shopify

  To update you on the progress of your order

Only us

  To inform you of tracking or delivery status

Us, the courier or delivery service involved

  To follow up any abandoned shopping carts via email

Only us 

  For newsletter subscription only if you register

Us, 3rd party newsletter app

IP Address* To accept and process your order

Us, your card issuer, PayPal handling your and our respective accounts, our secure online payment processing gateway provider Shopify

  Browser and operating system information. In-house order notification

Only Us. Anonymous details on the browser and operating systems browsing our store are logged. When an order is made, email notifications are sent to our sales team containing your login name of choice (if entered), if a payment has been approved or declined with no personally identifiable information.

Payment Card Details** To receive funds for your purchase

Your card issuer and our secure online payment processing gateway provider Shopify, your own PayPal registered account

Order and ordered item details Details of your orders will be kept on our system for as long as legally required and not longer

Only us

     

ADDITIONAL INFORMATION WE HAVE ACCESS TO:

 

 

INFORMATION WHY

WHERE AND HOW

Declined and Failed Orders - Full name, billing and delivery address, email address, phone number, IP address and order details. To help us assist in completing your order if payment processing problems occur

Where payment has been declined or funds have not been transferred after checkout attempt: Us, Your card issuer and our secure online payment processing gateway provider Shopify, your own PayPal registered account

Abandoned Carts - Unfinished Baskets: The Email address and Profile Name you have entered, cart contents, cart opening date and time In order for us to assist you in following up an order that has not been completed but left at checkout Only Us 


*An IP address is a unique string of numbers separated by full stops that identify each computer using the Internet Protocol to communicate over a network and can, therefore, identify the network address of an order placed. You can find your own IP address at any time by clicking on this link: http://www.whatsmyip.org/

**Only full-time staff at Underwater Explorers/DirDirect have access to payment method information and limited card details which do not contain any identifiable card number or security code, for your own safety. That information is handled in a secure encrypted way by your card issuer and Shopify gateway (or PayPal).

Last Updated: May 2022