Privacy Policy

Our Privacy Policy is written to clearly explain and describe to you how we collect, use, share, and disclose the information collected by KORRES through our Services. We have divided our Policy into two different sections: (1) this succinct summary section that provides a general overview of our privacy practices; and (2) a more comprehensive policy outlining the specifics of what information we collect, how and why we collect that information, and your rights in regard to your data. In the bullet points below, you will find key areas of our Policy of which you should be aware. We encourage you to read the full policy before providing us with your information. 

• We collect personal information in a few principal ways, including information you provide directly to us, information we gather from your use of our Services, and information we receive from third parties. 
• We may share your information from time to time with third parties, including information necessary to provide you with our Services. 
• You may request: a deletion of, a copy of, rectification of, restriction of, object to processing of, or a transfer of your data by emailing your request to support@korres.com. Or you may go to your privacy choices page and customize your privacy options. 
• While it is not possible to guarantee that your information will remain entirely secure, we use commercially reasonable efforts to secure your information. 

This website is not directed toward or intended for use by children or anyone under the age of 18. We do not knowingly collect information from anyone under the age of 13. 
 

The Services are governed by and operated in accordance with the laws of the United States and are intended for users located in the United States. KORRES makes no representation that the Site is governed by or operated in accordance with the laws of any other country. If you are located outside of the U.S., including the European Union, since our Services are intended for users located in the U.S., information we collected will be collected, processes and stored in the U.S. The data protection laws in the U.S. may differ from those of the country in which you are located, and you waive any claims that may arise under those laws. You understand that your Personal Information may be subject to access requests from governments, courts, or law enforcement in the U.S. according to the laws of the U.S.  

By using the Services or providing us with any information, you consent to the collection, transfer, processing, and storage of your information in and to the U.S. You are also consenting to the application of the U.S. federal and New York state Law in all matters concerning the Services and Privacy Policy. 
 

By accessing and using our Services, you accept all terms and conditions set out in this Policy. Before using our Services, you should read the Policy in its entirety and return to this page periodically to review any changes. We may update this policy from time to time and by continuing to use our Services after such updates you consent to those changes. 

Text Messages. We use cookies to help keep track of items you put into your shopping cart, including when you have abandoned your cart, and this information is used to determine when to send cart reminder messages via SMS. 

By using our Services, you consent to the collection of your personal information either by collecting the information directly from you or by our tracking technologies, like cookies. You also consent to KORRES collecting and using your information as described in our Policy. 

 We retain collected information only as long as it takes to fulfill the services for which the information was collected, unless otherwise required by law. 

KORRES collects both Personal Data and Anonymous Data 
 

Personal Data. “Personal Data” is data that someone could use to individually identify or contact you. This includes information like your name, email address, telephone number, or address. It can also include non-public information of yours that is either associated with or linked to any of the data mentioned above. 

Sensitive Personal Information. “Sensitive Personal Information” is a specific subset of Personal Data that includes certain government identifiers (such as social security numbers), an account log-in, debit or credit card numbers in combination with any required access code/password, precise geolocation, racial or ethnic origin, religious or philosophical beliefs, union membership, contents of mail or emails, text messages unless business is the intended recipient of the communication, and genetic data.   

Anonymous Data. “Anonymous Data” is data that is neither associated with nor linked to your Personal Data. Anonymous Data on its own cannot identify you individually. 

Categories of personal information we collect that you voluntarily provide include your name, shipping/billing address, telephone number, email address, and social media username. 

Account Information. When you sign up for an account, we collect certain information about you. This includes basic information such as your email address, name, phone number, and address. If you fill out any surveys through your account, we keep that information as well. We may also collect information about your interest in and use of various products, services, and content you access through our Services. 

If you choose not to provide Personal Information to us, you may be unable to purchase products, take advantage of offers and content on our Site or otherwise access certain aspects of the Services.  

We collect this information for the following business purposes: to enable you to purchase or order a product, to enable you to join our customer loyalty program the “Circle Rewards Program”, to submit a product review or to otherwise engage with our Services. 

Social Media. You may be able to link some social media accounts to our Services. If you link such social media accounts, we may access surface level profile information from your account including your name, profile picture, contact list, username, pictures and videos, gender, birthday, location, people you follow and/or who follow you, and the posts you make or posts you “like.” By linking your account, you consent to KORRES collecting any linked information in accordance with this privacy policy. If you do not wish to share certain information from another social media account, you should change your preferences on that account. Any information from another social media service is subject to the data protection practices of the social media network itself and is not controlled by KORRES. As such, you should read through the privacy policy of any social media service you wish to link to before linking the account with our Services. 

Device and Technical Information. As is true of most websites, when you access our Services through your computer or smartphone, we automatically collect information about the device you are using, including: your browser type, your operating system, your IP address, your Internet service provider or mobile carrier, IDFA, MAC address, and unique device identifier. We also collect crash logs, reports on bugs, feedback on our services, support requests, and certain device usage information. You can deactivate cookies through your own browser settings. Each browser is unique, therefore look at your browser’s Help menu to learn the correct way to modify your cookies. Remember, many of our Services may not function properly if your cookies are disabled. 

Financial Information. When you purchase a product through our Services, we save your purchase for internal audit purposes or to send you additional content and product offerings in order to complete your transaction. However, we do not collect or retain the card information. We use third-party services for payment processing (e.g. payment processors). We will not store or collect your payment card details. That information is provided directly by you to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information. The payment processors we work with are: 
- Shopify.com 

Location Information. We may collect precise or approximate location information, such as country or address, when you either provide it to us directly, through device information, or other means. For instance, if you access our Services through your computer or mobile device, we may collect your precise device location through your IP address for security, regulation, and performance considerations. You can restrict what location information you provide to KORRES through your device settings. When you make a purchase at one of our physical locations, we will have a record of your location fir that purchase. You may set your web browser software to reject tracking technologies. Please note that the opt-out is cookie-based and will only affect the specific computer and browser on which the opt-out is applied. 

Information From Other Sources. We may collect information from other sources such as companies and sponsors for co-branding events to give you access to promotions, sweepstakes, and other specific event information. 

We receive information you provide to us when you: (1) create an account by using our Services (including a shopping account online, an account to review products, a customer loyalty account or any other type of account); (2) make a purchase; (3) contact us via any customer service method; (4) subscribe for email, text, or other messages ; (5) participate in surveys, sweepstakes or promotions; (6) apply for employment opportunities; (7) work with our associates who provide you with in-store or online Services; (8) download or use our Website; or (9) otherwise communicate information to us.

We collect device information through the use of cookies, web beacons, pixels, and other similar technologies either used by us or used by other entities on behalf of KORRES. 

Categories of Personal Information Collected From Third-Parties 

We may collect information from third parties such as social media websites you link to, co-sponsors, and credit card processing companies. 

We use cookies to help keep track of items you put into your shopping cart including when you have abandoned your cart and this information is used to determine when to send cart reminder messages via SMS. 

Communications With Users. We may contact you by email, phone calls, text messages, or physical mail to inform you about orders you have made. 

Marketing and Promotions. We use your contact information, including your email address, phone number, and physical address, from time to time to send you marketing and promotional materials regarding our Services or other offerings. These materials include sponsored content or information on upcoming specials or opportunities. You may opt-out of or change your preferences for marketing communications at any time by either clicking the “Unsubscribe” button within the communications or by emailing your request to support@korres.com. 

Technical Improvements. We use technical and usage information to improve our Services and make your experience with our Services more enjoyable, improve accuracy of information, reduce waiting times, improve product offerings, and to perform analytics on our Services. 

Compliance. To ensure that our services are in compliance with legal obligations and our own Terms of Use, we collect information to detect, investigate, and prevent activities that may violate the KORRES Terms of Use, infringe on the copyright of another, be fraudulent or otherwise illegal, or to ensure the safety of other users. 

1.  Cookie Policy

We use both technically necessary (for the functioning and security of the Services) and non-technically necessary cookies and similar technologies. A more detailed explanation of the technologies we use, and how to opt out when applicable, can be found in KORRESCookies & Similar Technologies Policy. 

We collect your information under the lawful bases of legitimate interest, consent, and contract. To provide you with the best and most relevant experience with our Services, our legitimate interest is to track consumer insights and needs andprovideda tailored satisfactory experience. We also collect what you allow us to collect and what you voluntarily provide and what is necessary to fulfill our contracts with you. You may withdrawconsentat any time by emailing support@korres.com. When you sign up for an account with KORRES or our Affiliates, we collect and keep informationon the basis ofcontractand will keep and use your informationin order toexecute our purchases with you.

We may transfer your data outside of the country in which it was collected.We may need to do thisin order tofulfill orders or complete transactions with you.Othercountries may not have the same rules, regulations, or protections of your country or the country in which your data was collected. When transferring data across borders, we ensure that any entity with which we share that information will protect your data according to our privacy policy through contractual clauses.

We may share and disclose certain information with third parties in the following ways or for another purpose disclosed at the time of collection: 

• With Your Consent. We may disclose Information when you provide us with your consent to do so. 
• Legal and Law Enforcement Purposes. If it is necessary to respond to legal process, we may disclose your information to a court or law enforcement agency. We may also disclose Information to third parties: (i) in connection with fraud prevention activities, (ii) where we believe it is necessary to investigate, prevent, or take action regarding illegal activities, (iii) in situations that may involve violations of our terms of use or other rules, (iv) to protect our rights and the rights and safety of others, and (v) as otherwise required by law. 
• Change of Control. In the event of a business transaction whereby we or one of our subsidiaries or relevant assets are acquired by, sold to, or merged with another company or as part of a bankruptcy proceeding or a business reorganization. 
• Service Providers. We may give our agents and contracts (“Service Providers”) access to certain Information in order for them to help carry out the services they are performing for us, such as, but not limited to: creation of the Site, maintenance of the Site, hosting the Site, delivery of KORRES Services and products that you request, conduct authorization and payment processing, email and order fulfillment, fraud protection, administer contests, conduct research and analytics, product customization, serving certain types of advertisements to you, marketing and promotional material distribution (including direct mail marketing) and/or customer service. We require Service Providers to protect the Information consistent with this Policy through contractual obligations. 
• We may disclose Information to affiliates. We require all our affiliates to protect any Information we share with them according to our Privacy Policy through contractual obligations. 
• Business Partners and Third Parties. We may share your information with certain business partners or Affiliates. (e.g., other companies, retailers, research organizations, advertisers, ad agencies, advertising networks and platforms, participatory databases, publishers, and non-profit organizations) that may want to market products or services to you. If we share personal information with such unaffiliated third parties for their own marketing purposes, we provide you with an opportunity to opt out of such uses either at the point of collection or through the choice mechanisms set forth in this Privacy Policy. 
• Linked Sites. Some of our websites may contain links to social media sites whose information practices may differ from ours. Information you submit to those other linked sites are governed solely by their privacy policy and terms of use or service. Such third-party sites are not owned or operated by Korres, they may use our logo as party of a co-branding, co-marketing or affiliate agreement. We do not control or endorse and Korres is not responsible for the services or the privacy policies of websites to which it may link. This Privacy Policy applies solely to information collected by Korres. These other sites may send their own cookies or other tracking devices. 
• Sponsors and Co-Promotions. We may sometimes offer content or programs that are sponsored or co-branded with identified parties. The sponsoring or co-branding parties may collect or obtain certain Information from visitors that participate in the activity. We have no control over these sponsoring or co-branding parties’ use of this Information. We encourage you to visit the privacy policy of any such sponsoring or co-branding party to learn about their data protection practices prior to providing Information through sponsored or co-branded content or programs. 
• KORRES has the right to refuse to honor your request to delete any of your Personal Data if it is necessary to exercise the right of freedom of expression and information, to comply with any legal obligation that may require processing of your Personal Data, for reasons of public interest in the area of public health, for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, or for the establishment, exercise or defense of legal claims. KORRES may also refuse to delete or delay deleting information if it is necessary to carry out a contract we have with you. 

KORRES does not use your Personal Data to make any automated decisions about you. 

We want to communicate with you only if you want to hear from us. You may choose to stop receiving our marketing emails by following the unsubscribe instructions included in the emails and the bottom of our home page on the Site, updating your communications preferences in your membership account on our Site or contacting us at support@korres.com. Please note however, that as a user of the Service, you cannot opt-out of some administrative communications that are reasonably necessary to the service, such as billing or service notifications. 

You have the right to access, update, and correct inaccuracies in your personal information in our custody and control, subject to certain exceptions prescribed by law. You may access, update or correct any of your personal information in your account by editing your profile within your account. You may request access, updating or the correction of inaccuracies in other personal information in our custody or control by writing or sending an email to us at support@korres.com. 

We reserve the right to retain any personal information reasonably necessary to appropriately document our business activities and for archival and record retention purposes to the extent permitted by law, including the California Consumer Privacy Act of 2018 (“CCPA”) and its attendant Proposed Regulations, as applicable. We will store personal information for as long as reasonably necessary for the purposes described in this Privacy Policy. You may have a right to request deletion of your personal information by us, and we will use commercially reasonable efforts to honor your request where required by law, but please note that we may be required to keep such information and not delete it (or to keep this information for a certain time, in which case we will comply with your deletion request only after we have fulfilled such requirements). When we delete any information, it will be deleted from the active database, but may remain in our archives. We may also retain your information for fraud or similar purposes. 

We may share email addresses (in a hashed or de-identified form) that have been provided to us by our registered users, with network advertisers and ad exchanges (including SNSs), to serve targeted advertisements to you about our goods and services. We may work with third parties and our Service Providers, such as network advertisers and ad exchanges that use tracking technologies on our websites in order to provide tailored advertisements on our behalf and/or on behalf of other advertisers across the Internet and we may use third party analytics service providers to evaluate and provide us and/or third parties with information about the use of these ads on third party sites and viewing of ads and of our content. Network advertisers are third parties that display advertisements, which may be based on your activities (including past visits to our websites) across the Internet and mobile media (“Targeted Advertising”). 

Targeted Advertising (also known as Behavioral Ads) uses information collected on an individual's web browsing behavior on one website (such as the pages they have visited or the searches they have made) in order to target advertising to that individual on another website. Targeting called Cross Device Tracking can also take place across devices such as tablets, smartphones, laptops and smart televisions. Third parties collect this information by placing or accessing cookies or other tracking technologies in your browser when you visit this, or other, websites. 

Behavioral Ads enable us to target advertisements to you for products and services in which you have demonstrated an interest. If you object to receiving Behavioral Ads from us on third party sites, you can learn more about your ability to limit Behavioral Ads below. Our third party ad network and exchange providers, the advertisers and/or traffic measurement services may themselves set and access their own technologies on your device and track certain behavioral usage information via a device identifier. These third party technologies may be set to, among other things: (a) help deliver advertisements to you that you might be interested in; (b) prevent you from seeing the same advertisements; and (c) understand the usefulness of the advertisements that have been delivered to you. 

Statements regarding our practices do not apply to the methods for collecting information used by these third parties or the use of the information that such third parties collect. We make no representations regarding the policies or practices of third party advertisers or advertising networks or exchanges or related third parties. 

While sites use a variety of companies to serve advertisements, you may wish to visit http://www.networkadvertising.org/optout_nonppii.asp , which provides information regarding this practice by Network Advertising Initiative (“NAI”) members, and your choices regarding having this information used by these companies, including the “opt-out” procedures of NAI members. Opting out of one or more NAI members only means that those NAI members not mean you will no longer receive any targeted content and/or ads. You may also opt-out of receiving Behavioral Ads on participating sites and services by visiting the Digital Advertising Alliance (“DAA”) website at http://www.aboutads.info/choices/rs no longer will be allowed under their own rules to deliver Behavioral Ads to you, but do. Please note, if your browsers are configured to reject cookies when you visit an opt-out page, or you subsequently erase your cookies, use multiple devices or change web browsers, your opt-out may not, or may no longer, be effective. We are not responsible for effectiveness of or compliance with any third parties’ opt-out options or programs. 

KORRES takes your privacy concerns very seriously and protects your information by appropriate technology, policies, and procedures to prevent unauthorized use, access, disclosure, modification, copying or destruction, and to maintain the integrity. We protect your information both online and offline. We only process your Personal Data fairly and lawfully after receiving your consent and we do not use your Personal Data in any manner inconsistent or incompatible with the purposes for which KORRES collects the information. KORRES may retain your personally identifiable information as long as there is a business requirement, or if otherwise required under applicable laws. 

To prevent unauthorized access, maintain data accuracy and ensure appropriate use of information, Korres has put in place appropriate physical, electronic and managerial procedures to protect your personal information. However, KORRES cannot guarantee its absolute security, as no method of transmission over the Internet, or method of electronic storage, is entirely secure. 

The Korres USA mobile message service (the "Service") is operated by KORRES (“Korres USA”, “we”, or “us”).You may elect to receive text messages from us. When you sign up to receive text messages, we will send you information about promotional offers and more. By consenting to Korres USA’s SMS/text messaging service, you agree to receive recurring SMS/text messages from and on behalf of Korres USA through your wireless provider to the mobile number you provided, even if your mobile number is registered on any state or federal Do Not Call list. Text messages may be sent using an automatic telephone dialing system or other technology. Service-related messages may include updates, alerts, and information (e.g., order updates, account alerts, etc.). Promotional messages may include promotions, specials, and other marketing offers (e.g., cart reminders). For more information about text messages, see our Terms and Conditions. These messages may use information automatically collected based on your actions while on our sites and may prompt messaging such as cart abandon messages (IE Cookies). (“Mobile Terms”). 

To the extent you voluntarily opt to have Text notifications sent directly to your mobile phone, we receive and store the information you provide, including your telephone number or when you read a text message. 

We reserve the right to modify or cancel the Service or any of its features without notice. To the extent permitted by applicable law, we may also modify these Mobile Terms at any time and your continued use of the Service following the effective date of any such changes shall constitute your acceptance of such changes. 

We will use the information we obtain in connection with our SMS/text messaging in accordance with this Policy. We collect the following personal information about you in the context of our text messaging program: your name, mobile phone number, and texting preferences (opt-ins and opt-outs). We use this information to manage our text messaging program, including to send you text messages. Your wireless carrier may collect data about your wireless device usage, and its practices are governed by its own policies. We take measures to protect your sensitive personal information but cannot guarantee its security in transit or storage. All above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties, excluding aggregators and providers of the Text Message services. 

You understand that you do not have to sign up for this program in order to make any purchases, and your consent is not a condition of any purchase with Korres USA. Your participation in this program is completely voluntary. 

We do not charge for the Service, but you are responsible for all charges and fees associated with text messaging imposed by your wireless provider. Message frequency varies. Message and data rates may apply. Check your mobile plan and contact your wireless provider for details. You are solely responsible for all charges related to SMS/text messages, including charges from your wireless provider. 

You may opt-out of the Service at any time. Text the single keyword command STOP to +18557881650 or click the unsubscribe link (where available) in any text message to cancel. You'll receive a one-time opt-out confirmation text message. No further messages will be sent to your mobile device, unless initiated by you. If you have subscribed to other Korres USA mobile message programs and wish to cancel, except where applicable law requires otherwise, you will need to opt out separately from those programs by following the instructions provided in their respective mobile terms. 

For Service support or assistance, text HELP to +18557881650 or email support@korres.com. 

We may change any short code or telephone number we use to operate the Service at any time and will notify you of these changes. You acknowledge that any messages, including any STOP or HELP requests, you send to a short code or telephone number we have changed may not be received and we will not be responsible for honoring requests made in such messages. 

The wireless carriers supported by the Service are not liable for delayed or undelivered messages. You agree to provide us with a valid mobile number. If you get a new mobile number, you will need to sign up for the program with your new number. 

To the extent permitted by applicable law, you agree that we will not be liable for failed, delayed, or misdirected delivery of any information sent through the Service, any errors in such information, and/or any action you may or may not take in reliance on the information or Service. 

We respect your right to privacy. To see how we collect and use your personal information, please see our Privacy Notice. 

KORRES is not an entity that is covered by HIPAA. The HIPAA privacy rules apply to health plans, health care clearinghouses, to any health care provider who transmits health information in electronic form in connection with transactions for which the Secretary of HHS has adopted standards under HIPAA (the "covered entities") and their service providers ("business associates"). This means that the information that you provide to KORRES is not protected by the HIPAA privacy rules and regulations. 

1. Third-Party Services

Categories of Third-Parties With Whom We May Share Your Information Third parties we may occasionally share your information with include financial services companies, business partners, co-sponsors, analytics services, email service providers, cloud service providers, fulfillment services, technical support, delivery services, and marketing platforms. 

Korres preforms due diligence on Third Party Service Provider’s adherence to applicable privacy regulations.

As a California resident, you have been granted additional rights by the California Consumer Protection Act (CCPA) and its amendment, the California Privacy Rights Act (CRPA, 2023), collectedly referred herein to as the CCPA. The CCPA applies to information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a California consumer or household (“California Information”). Your general rights regarding California Information include the right to: 

• Access and request disclosure of California Information collected by KORRES, on or after January 1, 2022, including from whom it was collected, why it was collected, and, if sold or shared, to whom 
• Opt-out of processing your California Information 
• Opt-out of the selling or sharing of your California Information 
• Know and opt-out of having your California Information used in automated decision making and targeted advertisements 
• Correct inaccuracies of your California Information 
• Limit the intended use of your California Information by KORRES 
• Delete your California Information and request third-party suppliers erase your California information 
• Send your California Information to another business entity and receive your California Information in a transmittable format 
• Equal services and prices when exercising any rights 

The Selling of Your Personal Data 

KORRES does not generally sell information as the term “sell” is traditionally understood. However, if and to the extent “sale” under the CCPA is interpreted to include advertising technology activities such as those implemented specifically for certain targeted advertising on our website, California Residents may still indicate an opt-out election. 

KORRES does not sell your Personal Data at this time, but you can email us at support@korres.com to request that your information not be sold in the future should our practices regarding selling data ever change. 

Requesting Disclosure. If you are a California resident, you have the right to request that KORRES provide information to you about our practices related to disclosure of your Personal Data to particular third parties for their direct marketing purposes. You may be able to opt out of our sharing of your personal information with unaffiliated third parties for the third parties’ direct marketing purposes in certain circumstances. You can send requests for such disclosure to support@korres.com (with the subject line of “Your California Privacy Rights”). 

As a California resident, you may also request more specific information like: 

• The categories and specific pieces of your California Information that we have collected 
• The categories of sources from which we collect California Information 
• The business or commercial purposes for which we collected or sold California Information 
• The categories of third parties with which we share California Information 
• The categories of third parties to which we have sold California Information and the categories of California Information sold to each third party 
• The categories of California Information that we have shared with service providers who provide services for us, like processing your payments 

No Discrimination. KORRES is committed to honoring your California rights. As such, you will never be denied or charged different prices or rates for either goods or services or provided with differing levels of quality of goods or services, should you choose to enforce your California rights.   

Consumers Under 16 Years Old. CCPA has specific rules regarding the use of California Information from consumers under 16 years of age. In particular, consistent with the CCPA, if we knowingly collect the California Information of a consumer under the age of 16, we will not sell the information unless we receive affirmative permission to do so. If the consumer is between the ages of 13 and 16 years of age, the consumer may provide that permission; if the consumer is under the age of 13, the consumer’s parent or guardian must provide the permission. 

If you have any questions regarding this Privacy Policy, please contact our Data Protection Officer either by email at support@korres.com or by mail. 

KORRES 

80 Maiden Lane 

New York, NY 10038