Privacy Policy

Last updated: December 14, 2025

Introduction

J&H Novelties ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website pensnov.com.

Information We Collect

Personal Information

When you create an account or place an order, we collect:

  • Name and contact information (email, phone number)
  • Shipping and billing addresses
  • Payment information (processed securely)
  • Order history and preferences

Automatically Collected Information

When you visit our website, we automatically collect:

  • IP address and approximate geographic location (country, city)
  • Browser type and device information
  • Pages visited and time spent on site
  • Referral source (how you found our website)
  • Product views and browsing behavior

How We Use Your Information

We use the collected information to:

  • Process and fulfill your orders
  • Communicate with you about your account and orders
  • Improve our website and user experience
  • Analyze visitor behavior and traffic patterns
  • Provide customer support
  • Prevent fraud and enhance security

Analytics and Tracking

We use analytics tools to understand how visitors interact with our website. This includes:

  • IP Geolocation: We collect your approximate location based on your IP address to understand our customer base and improve service. This data is processed in accordance with applicable data protection laws.
  • Page Views: We track which products and pages you view to improve our product offerings and user experience.
  • Session Data: We monitor browsing patterns to enhance website performance and security.
  • Device Information: Browser type, operating system, device model, and resolution.
  • Traffic Sources: How you reached our website (direct, search engine, referral).

Important: This data is used solely for internal analytics and website improvement. We do not sell, trade, or share your personal information with third parties for marketing purposes. Aggregated, non-personally identifiable data may be used to improve our services.

Data Security

We implement appropriate security measures to protect your personal information:

  • Secure password hashing
  • Encrypted data transmission
  • Regular security updates
  • Limited access to personal data

Your Rights

You have the following rights regarding your personal information:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your account and data (subject to legal retention requirements)
  • Opt-out of marketing communications at any time
  • Withdraw consent for non-essential data collection (though this may limit site functionality)
  • Request a copy of your data in a portable format
  • Object to certain types of data processing

Note: These rights may be subject to limitations based on applicable laws and our legal obligations. See the "Legal Rights" section for jurisdiction-specific rights.

Third-Party Services

We use third-party services for specific functions:

  • IP Geolocation: ip-api.com (free tier) - Used to determine visitor location based on IP address. View their privacy policy. We do not share personally identifiable information with them, only general IP logs.
  • Payment Processing: Your payment information is processed by secure third-party payment processors and is never stored on our servers.
  • Content Delivery: We use Leaflet.js and OpenStreetMap for map visualization. No personal data is sent to these services.

These third parties are contractually obligated to use your information only as necessary to provide services to us.

Data Retention

We retain your personal information only for as long as necessary to:

  • Fulfill orders and provide customer service
  • Comply with legal and tax obligations (typically 7 years)
  • Resolve disputes and enforce agreements
  • Analyze trends and improve services (anonymized data only)

After the necessary retention period, we securely delete or anonymize your personal data. You may request earlier deletion of your account at any time by contacting us, except where we must retain data for legal compliance.

Children's Privacy

Our website is not intended for children under 13 years of age (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under the applicable age limit, we will take steps to delete such information and terminate the child's account.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of our website following the posting of revised Privacy Policy means that you accept and agree to the changes.

Legal Rights (GDPR, CCPA, and Other Regulations)

Depending on your location, you may have specific rights regarding your personal information:

For European Union Residents (GDPR)

  • Right of Access: You can request a copy of the personal data we hold about you
  • Right to Rectification: You can request correction of inaccurate personal data
  • Right to Erasure: You can request deletion of your personal data (right to be forgotten)
  • Right to Restrict Processing: You can request we limit how we use your data
  • Right to Data Portability: You can request your data in a structured, commonly used format
  • Right to Object: You can object to certain types of data processing
  • Right to Lodge a Complaint: You can file a complaint with your local data protection authority

For California Residents (CCPA/CPRA)

  • Right to Know: You can request what personal information we collect and how it's used
  • Right to Delete: You can request deletion of personal information we've collected
  • Right to Correct: You can request correction of inaccurate personal data
  • Right to Opt-Out: You can opt out of the sale or sharing of your personal information
  • Right to Limit Use: You can limit our use of your sensitive personal information

To Exercise Your Rights

To exercise any of these rights, please contact us with:

  • Your full name and email address associated with your account
  • A clear description of your request
  • Proof of identity (for account deletion requests)

We will respond to verified requests within 30-45 days as required by law. You will not be discriminated against for exercising your rights.

Data Processing and Lawful Basis

We process your personal information on one of the following lawful bases:

  • Performance of Contract: To fulfill orders and provide services you request
  • Legitimate Interests: To improve our website, prevent fraud, and ensure security
  • Consent: For analytics and non-essential cookies (you can withdraw this at any time)
  • Legal Compliance: To comply with applicable laws and regulations

International Data Transfers

Your data may be transferred to, stored in, and processed in countries other than your country of residence. These countries may not have equivalent data protection laws. By using our website, you consent to the transfer of your information to countries outside your country of residence, which may provide a lower level of data protection than your home country.

Cookies and Similar Technologies

We use the following types of cookies:

  • Essential Cookies: Required for site functionality (login, shopping cart, security). Cannot be disabled.
  • Performance Cookies: Help us understand how you use our site to improve performance.
  • Preference Cookies: Store your preferences and choices.
  • Analytics Cookies: Track site usage for improvement purposes.

You can control cookies through your browser settings. Be aware that disabling cookies may affect your ability to use certain features of our website. Most browsers provide instructions on how to manage cookies in their help sections.

Contact Us

If you have questions about this Privacy Policy, wish to exercise your rights, or have concerns about how we handle your data, please contact us:

Email: david.enns.neufeld@gmail.com
Website: pensnov.com
Response Time: We aim to respond to inquiries within 10 business days

Dispute Resolution

If you believe we have violated this Privacy Policy or applicable privacy laws, please contact us first. If we cannot resolve your concern, you may have the right to file a complaint with the appropriate regulatory authority in your jurisdiction:

  • EU/EEA: Your local Data Protection Authority
  • California: California Attorney General or California Privacy Protection Agency
  • Other US States: Your state's attorney general

Accessibility

This Privacy Policy is available in accessible formats. If you need this policy in a different format, please contact us.

Return to Home