Who we are
The Chrysalis Imagery is a small business founded and run by the artist Jessica Schaffer, primarily creating thoughtful cards. Our website address is: https://www.thechrysalisimagery.com/
What personal data we collect and why we collect it
Our Website is not intended for children under 18 years of age (or the age of majority in your jurisdiction). We do not knowingly collect, use, or disclose Personal Data from children under 18. If you believe that we have collected, used or disclosed Personal Data of a child under the age of 18 (or the age of majority in your jurisdiction), please contact us using the contact information below so that we can take appropriate action.
When visitors fill out the contact form, we collect the data shown in the form, and also the visitor’s IP address to help with spam detection. This information is never shown publicly, and is used only to facilitate responding to your query.
Cookies are text files that are placed in browser directories when you visit a website. To learn more about cookies and what they do, visit https://allaboutcookies.org/
We use a variety of cookies to facilitate website experiences, ranging from a token that expires after 1 minute that helps us determine what kind of device you are accessing the site from to aid in better rendering, to 12 month cookies when you log in to a customer account. You can learn more about the specific types of cookies that Wix websites use here: https://support.wix.com/en/article/cookies-and-your-wix-site
The following links explain how to access cookie settings in various browsers:
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
When you conduct a transaction on our website, as part of the process, we collect personal information you give us such as your name, address and email address. Your personal information will be used only to facilitate payment and shipment of purchased goods. Payment information is processed by Wix, and The Chrysalis Imagery never receives full credit/debit card details.
Websites built on Wix offer around-the-clock-monitoring and use the strongest encryption standard commercially available to safeguard businesses and their clients online. Supported by anti-fraud protection, Wix sites are also compliant with the highest Payment Card Industry Data Standards. Therefore, businesses like ours that use the Wix platform receive enterprise-grade security managed by experts. Read more about Wix’s security measures here: https://support.wix.com/en/article/wix-security-measures-overview
We use Google Analytics for aggregated, anonymized website traffic analysis. In order to track your session usage, Google drops a cookie (_ga) with a randomly-generated ClientID in your browser. This ID is anonymized and contains no identifiable information like email, phone number, name, etc. We also send Google your IP Address. We use GA to track aggregated website behavior, such as what pages you looked at, for how long, and so on. This information is important to us for improving the user experience and determining site effectiveness.
To opt out of being tracked by Google Analytics across all websites, visit this link: http://tools.google.com/dlpage/gaoptout.
When our newsletters are opened, as well as clicks on links in our newsletters may be recorded. This helps us determine the interest level of individuals subscribed to our newsletter.
We use the "visitor action pixels" from Facebook Inc (1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are based in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”)) on our website. This allows user behavior to be tracked after they have been redirected to the provider’s website by clicking on a Facebook ad. This enables us to measure the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, i.e. we do not see the personal data of individual users. However, this data is stored and processed by Facebook, which is why we are informing you, based on our knowledge of the situation. Facebook may link this information to your Facebook account and also use it for its own promotional purposes, in accordance with Facebook's Data Usage Policy. You can allow Facebook and its partners to place ads on and off Facebook. A cookie may also be stored on your computer for these purposes. The legal basis for the use of this service is Art. 6 paragraph 1 sentence 1 letter f GDPR. You can object to the collection of your data by Facebook pixel, or to the use of your data for the purpose of displaying Facebook ads by contacting the following address: https://www.facebook.com/settings?tab=ads. Facebook is certified under the Privacy Shield Agreement and thus guarantees compliance with European data protection legislation (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).
Who we share your data with
The Chrysalis Imagery staff and contractors are restricted to viewing information relevant and required to perform their specific job duties, such as seeing contact information when replying to queries, or shipping information when fulfilling orders. They are also held to privacy standards so that personal data is not shared or discussed with those who do not need to know it for the performance of their roles.
We never sell or trade your information to third-parties.
In the few and rare cases where information is shared with third party business partners, it is with the understanding that that information be used solely to assist us in providing you with the services associated with The Chrysalis Imagery.
What third parties we receive data from
We receive anonymized data from Google Analytics regarding where people are accessing the site from, what browsers and devices are used when accessing the site, what portions of the site see the most traffic, and durations of sessions. This information is not personally identifiable to you and instead gives us an "in general" data view about how the site is used over time.
Your contact information
On rare occasions, we may use your provided contact information (email) to contact you off-site. This includes "transactional" messages (such as receipts,) and questions or notices regarding your account.
How we protect your data
Securing a website requires many different types of threats to be minimized and prepared for. This includes securing the website code, the server that the website is hosted on, and the transfer of data between the user's access device and our service. It also includes having appropriate data-handling policies in place and a culture of security for staff that must handle user data. We've made efforts to address all of these areas, and continue to educate ourselves on evolving best-practices and update our procedures or code accordingly.
All connections to the site are done via https:// with a valid third party SSL certificate to prevent attackers from "listening in" or changing data as it is sent between your computer and our server, and vice versa.
All passwords for customer accounts are stored by Wix using one-way encryption.
Our customer service procedures are written to require that when someone contacts us about an account, we may only discuss account information or provide password resets or other assistance with the email address associated with the account. If for some reason this is not possible, then other methods of identification must be provided. Simply telling us you no longer have access to your email account is insufficient, as anyone could tell us this. If a member is requesting assistance changing the email associated with their account, we will email the old email address first, in addition to asking for other methods of identification.
We have been assured by Wix that their hosting service has been properly hardened against attackers, and have received further assurances that if a security breach occurs on their end we will be immediately notified so that we can pass this information on to any of our customers that may be affected by such breach. See more about Wix’s security here: https://support.wix.com/en/article/wix-security-measures-overview
In addition to our continued efforts to keep the site safe and secure, we urge our users to make use of good password hygiene practices, including not re-using passwords between different sites or accounts. This is one of the most important steps an individual can take to avoid losing control of more sensitive accounts, such as email and banking.
What data breach procedures we have in place
If we discover or suspect that a data breach has taken place, we will notify all potentially affected users as soon as possible, and no later than 36 hours after becoming aware of the data breach. This will allow potentially affected users to take immediate action to protect themselves such as by changing their passwords on any other site where they re-used their The Chrysalis Imagery password.
We will provide further updates to affected members should any new information of relevance come to light. Where possible, we will also take corrective action to prevent a similar breach from reoccurring. However, these remedies will not delay our initial alert to members.
If we have a reason to suspect that an individual account has been compromised on the user's end (ex. having your laptop that was logged into our service stolen, having your password known or guessed by a jealous ex) we may initiate a password reset and contact the account owner.
How to contact us