Effective: May 25, 2018
WHO WE ARE
Global Products Inc. and its affiliated entities; Global Products FFInternational Inc., Global Products Euro, Inc., Global Products do Brasil, GPI Canada Company, GPIA Inc. in Australia, (“GPI,” “we,” “us,” or “our”) is a premier provider of promotional items, fundraiser items, logoed apparel and merchandise. We are also a dealer-exclusive designer, manufacturer and distributor of Harley-Davidson(R) official licensed merchandise. We primarily operate on a business-to-business sales and distribution model.
We are committed to securing any data that we collect concerning you (“you”) and complying with applicable data protection and privacy laws. We maintain strict customer information privacy policies and use technologies to safeguard your information and communications from unauthorized intrusions and access.
WHY WE COLLECT PERSONAL INFORMATION
We collect and share information from users of our Site to manage our contractual relationships, comply with legal obligations and/or because we have a legitimate business interest to do so. We collect and share information to: (a) provide our products and services; (b) provide information about our products and services; (c) learn more about our customer’s preferences; (d) enhance, personalize and support your experience on our Site; (e) enhance and develop our products and services; and (f) analyse the traffic to our Site.
We may also provide you the opportunity to consent to receive commercial email from us related to the Services or information that we deem you may be interested in when you seek more information from us. We will give you the opportunity to “opt out” of receiving any unsolicited information from us or to limit the unsolicited information you receive from us to information regarding the products or services you specifically request or information we determine you may find useful as a result of your use of the Site.
For certain products, GPI serves as a service provider to its customers. In our capacity as a service provider, we will receive, store, and/or process personal information that is owned and/or controlled by our customers, including information about their employees, clients, customers, agents, or other individuals. In such cases, we are acting as a data processor and will process the personal information on behalf of and under the direction of each customer. The information we collect from our customers in this capacity is used for managing transactions, reporting, invoicing, renewals, other operations related to providing services to the customer, and as otherwise requested by the customer.
PROTECTING YOUR PRIVACY GENERALLY
We take measures to monitor and update our privacy and data collection and storage policies and procedures to consistently meet or exceed industry security standards.
USA Our servers are located in the United States. Any information collected through our website is stored and processed in the United States. If you use our website or otherwise provide us with information from outside of the United States, you understand that your data will be transferred to, processed and stored in the United States.
Industry-Standard Protection. We utilize industry-standard Secure Socket Layer (SSL) encryption technology to safeguard ordering and account information. Other security measures include, but are not limited to, firewalls, virus detection, spam filtering, annual training and additional data encryption.
Limitation on Access. Access to any personal information we collect and store is generally restricted to those employees and/or contractors who require it to perform a job or other contracted function. We require vendors and contractors we work with to use reasonable, industry standard protocols to maintain the confidentiality, security, and integrity of information.
Children. We do not intentionally collect any personal information from children under the age of sixteen (16). If you are under 16, please do not use or website or provide personal information to us. If you wish to provide information to us and are under sixteen (16) years old, we first need verifiable parental consent. If we discover any personal information of children under sixteen has been collected without verifiable parental consent, we will immediately delete the information.
COLLECTION OF PERSONAL INFORMATION
We collect and process the following information about you:
|Personal information you give to us||Personal information we collect from you||Personal information we collect from other sources|
|You provide personal information to us when you affirmatively provide it to us. You provide personal information each time you: (a) purchase a product or service from us; (b) download any information or brochures from our site; (c) fill in a form on our site to contact us with an inquiry or submit a job application; (d) correspond with us by phone, e-mail or otherwise; (e) use our online services on our website; (f) provide us with information requested by us for the verification of your identity; and (g) when you report a problem with our site. We may also collect information about you when you participate in or register for one of our competitions, promotions, events or surveys.|
The type of information you give us may include your:
|Each time you visit our site, we may automatically collect the following information:|
The type of information required to be provided may be dependent upon the country in which the position is located. The type of information which may be required includes but is not limited to:
|We may also collect personal information about you from the following sources:|
WHAT HAPPENS IF YOU DON’T PROVIDE YOUR PERSONAL INFORMATION?
Please be aware that, if you choose to limit the personal information you provide to us (or, in some circumstances, provide no personal information at all, then we may be unable to provide you with the products, services or information you have expressed an interest in, or which we have a contract to provide to you. We may also be unable to provide you with access to some or all of our Site (or its functionality).
SECURING YOUR PERSONAL INFORMATION
We maintain strict security measures in order to protect personal information. These measures include technical and procedural steps to protect your data from misuse, unauthorised access or disclosure, loss, alteration or destruction.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
RETAINING YOUR PERSONAL INFORMATION
We will take steps to ensure that the personal information we hold about you is retained for only as long as it is necessary for the purpose for which it was collected. We apply criteria to determine the appropriate retention period for different categories of personal information that we hold about you. For example, we will keep information necessary to protect us in a legal claim up to 7 years after termination of the contract. After this period it will be deleted to the extent reasonably possible, in accordance with applicable local, federal, and state jurisdictional requirements.
For curriculum vitae (C.V.), resume, or application received for a position within the United States we will retain your information for a period of up to 2 years from the date the position was filled in order to contact you about further job opportunities for which you may be an appropriate candidate or if necessary to defend against legal claims.
SOCIAL MEDIA AND OTHER WEBSITES YOU VISIT
any social media posts or comments that you make which are about us, or addressed to us on social media platforms or websites (for example, Twitter, LinkedIn and Facebook). Any such posts or comments will be shared by you under the terms of the relevant social media platform or website on which they are published.
Links contained on our site, to other recognised and respected organisations’ websites, including any advertisers.
We recommend that you review the terms and conditions and privacy policies of the relevant social media platforms and other websites which you visit, to understand how they use your information.
We may monitor and record telephone calls, emails and other communications in accordance with applicable law for business purposes, such as for quality assurance, training, for legal or regulatory reasons and to prevent or detect crime.
We use “cookies;” a small text file transferred to your device, along with similar technologies (e.g., internet tag technologies, web beacons, embedded scripts) to help provide you a better, more personalized user experience.
These technologies are used to:
Make the user experience more user friendly;
Remember your preferences (e.g., browsing language, usage preferences); or
Help us understand and improve how visitors use our website, including which of our pages and products are viewed most frequently.
The Options/Settings section of most internet browsers will tell you how to manage cookies and other technologies that may be transferred to your device, including how to disable such technologies. You can disable our cookies or all cookies through your browser settings. Please be advised that disabling cookies through either method may impact many of our website’ features.
DO NOT TRACK
Some internet browsers incorporate a “Do Not Track” feature that signals to websites you visit that you do not want to have your online activity tracked. Given that there is not a uniform way that browsers communicate the “Do Not Track” signal, the Site does not currently interpret, respond to or alter its practices when it receives “Do Not Track” signals.
HOW THE LAW PROTECTS YOU
Our business, systems and Site are designed to comply with all relevant and appropriate national and international legislation with regards to data protection and user privacy, including (without limitation) the General Data Protection Regulation (“GDPR”). As part of our ongoing effort to maintain the privacy of our Customers’ information and to comply with the GDPR and other applicable regulatory frameworks, we voluntarily self-certify and adhere to the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework (“Principles,” “Privacy Shield,” or “Privacy Shield Program”). You may read our GDRP and Privacy Shield Statement here.
The GDPR allows us to collect and use personal information from residents within the European Economic Area only for one or more of the following reasons:
To fulfill a contract we have with you;
When we have a legal duty
When it is in our legitimate interest; or
When you provide consent.
If you reside in the European Economic Area, and we have a business or commercial reason to use your personal information, this is considered a legitimate interest. We will tell you what that is, if we are going to rely on it as the reason for using your data. Even then, we will not use your personal information if such use is against your own interest.
The GDPR and other regulations treat some types of sensitive personal information as particularly sensitive, including information about racial or ethnic origin, sexual orientation, religious beliefs, trade union membership, health data and criminal records. We will not collect or use these types of data without your consent unless the law allows us to do so. If we do, it will only be when necessary for reasons of substantial public interest or to establish, exercise or defend legal claims.
YOUR RIGHTS IF YOU RESIDE IN THE EUROPEAN ECONOMIC AREA
If you reside in the European Economic Area, you have a number of rights under data protection laws in relation to the way we process your personal data. These are set out below. You may contact our Data Protection Officer (“DPO”) directly (whose details are below) to exercise any of these rights, and we will respond to any request received from you within one month from the date of the request. In very exceptional circumstances we may need to extend this timescale, but we will always tell you in advance if we do, and our reasons why.
|Number||Description of your rights|
|Right 1||A right to access personal data held by us about you, as well as information about how we are using your data.|
|Right 2||A right to require us to rectify any inaccurate personal data held by us about you.|
|Right 3||A right to require us to erase personal data held by us about you, and where the personal data has been made public, for other controllers processing the personal data to also erase links to, or copy or replication of, such personal data. This right will only apply where (for example): we no longer need to use the personal data to achieve the purpose we collected it for; or where you withdraw your consent if we are using your personal data based on your consent; or where you object to the way we process your data (in line with Right 6 below).|
|Right 4||A right to restrict our processing of personal data held by us about you. This right will only apply where (for example): you dispute the accuracy of the personal data held by us; or where you would have the right to require us to erase the personal data but would prefer that our processing is restricted instead; or where we no longer need to use the personal data to achieve the purpose we collected it for, but you require the data for the purposes of dealing with legal claims.|
|Right 5||A right to receive personal data, which you have provided to us, in a structured, commonly used and machine readable format. You also have the right to require us to transfer this personal data to another organization, at your request.|
|Right 6||A right to object to our processing of personal data held by us about you (including for the purposes of sending marketing materials to you).|
|Right 7||A right to withdraw your consent, where we are relying on it to use your personal data (for example, to provide you with marketing information about our services or products).|
If you have consented to receive communications from us, you can contact us at any time to have your details removed from lists used by us or to update your marketing preferences. Please email firstname.lastname@example.org and provide your name, email/telephone number/account number in the body of the email, telling us what you would like us to do.
If you have any concerns regarding our processing of your personal information or are not satisfied with our handling of any request by you in relation to your rights, please get in touch with our Data Protection Officer at the contact details set out below.
CONTACT US AND COMPLAINTS
Please address any questions, comments and requests regarding our data processing practices to our Data Protection Officer. You can write to us at any time in relation to your rights. Please contact us at
Please provide your name and account number (if you have one). If you are requesting information, please also include details of the information you require a copy of as this will help us locate the relevant information. Please be aware that we will take all reasonable steps to confirm your identity before providing you with the information you have requested.
CONSENT TO RECEIVE ELECTRONIC NOTIFICATIONS
Electronic communication is the most effective and timely way to provide users of our website with any optional or required notifications and disclosures. In some circumstances, however, state and/or federal laws may require us to send you disclosures or communications in paper format unless you have affirmatively consented to receiving electronic notifications only in advance of the notification. Through this Policy, pursuant to 15 U.S.C. § 7001, you hereby affirmatively consent to receive electronic notifications and disclosures from us only (without requiring a paper copy) and you represent that, to date, you have not withdrawn such consent. You have the right to change your mind and withdraw your consent at any time. If you would like to withdraw your consent to receive electronic notifications and/or would like to request paper copies of any electronic notifications you receive, please contact: email@example.com. To receive electronic records, you will need access to a smart phone, tablet, laptop or computer with Internet access and either email software (such as Microsoft Outlook) or access to a web-based electronic mail software platform, such as Gmail, Yahoo or other electronic mail provider.
DISCLAIMER OF WARRANTIES
YOU EXPRESSLY AGREE THAT YOUR USE OF THE GPI WEBSITE IS AT YOUR SOLE RISK. THE WEBSITE AND SERVICES PROVIDED THEREON ARE PROVIDED TO YOU ON AN “AS IS” AND “AS AVAILABLE” BASIS. WE EXPRESSLY DISCLAIM ALL WARRANTIES OF ANY KIND, WHETHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, ANY WARRANTIES REGARDING DATA PRIVACY OR DATA SECURITY.
LIMITATION OF LIABILITY
YOU EXPRESSLY AGREE THAT GPI SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL OR CONSEQUENTIAL DAMAGES, INCLUDING, BUT NOT LIMITED TO, DAMAGES FOR LOSS OF DATA, DATA BREACH, OR DISCLOSURE OF PERSONAL INFORMATION, EVEN IF GPI HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOU SPECIFICALLY AGREE THAT GPI IS NOT RESPONSIBLE OR LIABLE TO YOU OR ANYONE ELSE FOR ANY VIOLATION OF YOUR RIGHTS OR THE RIGHTS OF ANY OTHER PARTY, INCLUDING, BUT NOT LIMITED TO, INTELLECTUAL PROPERTY RIGHTS, RIGHTS OF PUBLICITY, OR RIGHTS OF PRIVACY. SOME JURISDICTIONS DO NOT ALLOW THE LIMITATION OR EXCLUSION OF LIABILITY FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES, THEREFORE SOME OF THE ABOVE LIMITATIONS MAY NOT APPLY TO USER. IN ANY EVENT, IF GPI IS FOUND TO HAVE VIOLATED ANY OF YOUR RIGHTS, YOU ACKNOWLEDGE AND AGREE THAT ANY DAMAGES RECOVERABLE AGAINST GPI ARE LIMITED TO YOUR ACTUAL, PROVEN DAMAGES.
NOTICE TO CALIFORNIA RESIDENTS
Except as expressly identified in this Policy, we do not disclose personal information to any third-party for such third-party’s direct marketing purposes. Thus, under California Civil Code Sections 1798.80-1798.84, GPI has no obligation to a California resident to provide further information regarding Owner’s use of the California resident’s personal data.
NOTICE TO UTAH RESIDENTS
Except as expressly identified in this Policy, we do not disclose a user’s personal data to any third-party for such third-party’s direct marketing purposes.
we are making substantial changes, or
Phone: (001) 314.218.2332 · Toll Free: 1.800.458.1481 · Fax: (001) 314.218.2339 · Fax Toll Free: 1.800.782.8691 · firstname.lastname@example.org
© 2017 H-D or its Affiliates. HARLEY, HARLEY-DAVIDSON and the Bar & Shield Design are among the trademarks of H-D U.S.A., LLC
Global Products, Inc. is a licensee of Harley-Davidson Motor Company. © 2017 Global Products, Inc. All Rights Reserved.