Call Us: 212.737.5560

Privacy Policy

Last updated: 05.25.2018

Introduction

Zitomer Pharmacy Inc. (hereinafter ‘Zitomer’) takes the privacy of your personal information very seriously and will use your information only in accordance with the terms of this Privacy Policy. We will not sell or rent your personally identifiable information or a list of our customers to third parties. However, there are limited circumstances in which some of your information will be shared with third parties, under strict restrictions and in accordance with our Privacy Policy, so it is important for you to review this Privacy Policy. We require, in writing that all third parties conform to, at a minimum, our Privacy Policy. This Privacy Policy applies to all services that are hosted on the Zitomer.com web site and extend to all services used, and individuals accessing same, in conjunction with the personal information gathered from this web site.

So as to leave no doubt, personal data, as defined in myriad law, including but not limited to Article 4(1) of the EU General Data Protection Regulation, is:

"(1) 'personal data' means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person".

Where definitions, as outlined by applicable law from an authority of competent jurisdiction, alter this definition, the broadest definition applies.

If you have questions or concerns regarding this Privacy Policy, you should contact Zitomer’s Principal Privacy Officer by email at ppo@zitomer.com. By accepting the Privacy Policy and the Terms and Conditions agreement with your registration and/or your request for information, you expressly consent to our use and disclosure of your personal information in the manner described in this Privacy Policy. This Privacy Policy is incorporated into and subject to the Terms and Conditions agreement. This Privacy Policy will take effect on January 1, 2000. This Privacy Policy was last updated on May 25, 2018.

Please note that your personal information will be stored and processed on computers in the United States. The laws on holding personally identifiable data in the United States may be less stringent than the laws of your country but Zitomer will hold and transmit your personal information in a safe, confidential and secure environment, and in a manner that is compliant with the laws of your country. If you object to your personal information, being transferred or used as described in this Privacy Policy, please do not register for, or use the Zitomer Web site.

Notification of Changes

This policy may be revised over time as laws and regulations require, or as new features are added to the Zitomer web site. If we are going to use or disclose your personally identifiable information in a manner materially different from that stated at the time we collected the information, you will have a choice as to whether or not we use or disclose your information in this new manner. Any material changes will be effective only after we have posted the changes to our Web site at least 30 days in advance of the amended Privacy Policy.

We will post the amended Privacy Policy prominently on our web site so that you can always review what information we gather, how we might use that information, and whether we will disclose it to anyone. Please check the Zitomer Web site at www.zitomer.com at any time for the most current version of our Privacy Policy.

Pages on the Zitomer web site may include links to third party Web sites. These sites are governed by their own privacy statements, and Zitomer is not responsible for their operations, including but not limited to their information practices. Users submitting information to or through these third party Web sites should review the privacy statement of these sites before providing them with personally identifiable information.

Who are we?

Zitomer is a one-of-a-kind destination for beauty and beyond.

Established in 1950 as an upscale New York pharmacy, Zitomer is now a landmark on Manhattan's chic Upper East Side. Today the bustling shop fills a vast amount of prescriptions while offering an unparalleled selection of everyday essentials and specialty merchandise. Our online presence allows customers from all around the world to access our unique inventory from the comfort of their home, or while on the go.

When do we collect personal data about you?

  • when you are using our website to order products.
  • when you interact with us in person, through correspondence, by phone, by social media, or through our website.

What information do we collect?

To open a Zitomer account or purchase Zitomer goods and services, you must provide your name, address, phone number, e-mail address and/or credit card information. This required information is necessary for us to manage your account, ship goods, provide services and to contact you should the need arise in administering your account.

We may collect, store and use the following kinds of information:

  • information about your visits to and use of this website (including your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths);
  • information that you provide to us for the purpose of creating an account with us;
  • information that you provide to us for the purpose of purchasing products; and
  • any other information that you choose to send to us.

Zitomer does not collect personally identifiable information on individuals for anyone other than the data subject themselves. As such, law and regulation pertaining to such practices do not apply.

Zitomer does not transfer data personally identifiable information internationally. As such, law and regulation pertaining to such practices do not apply.

Cookies.

What are Cookies?

Cookies are small text files used by websites and stored on your devices, with your consent, that remember your registered login, help you resume where your last browsing session left off, display pages correctly, and keep track of your preferences within the website.

Our Use of "Cookies"

Cookies allow us to recognize you as a Zitomer user if you return to the any of the Zitomer sites using the same computer and browser. We use session cookies if and when you log in to your Zitomer account by entering your e-mail address and password. These cookies allow us to recognize you if you visit multiple pages in our site during the same session, so that you don't need to re-enter your password multiple times. Once you log out or close your browser, these cookies expire and no longer have any effect. Cookies are also used to display your e-mail address on our sign-in form, so that you don't have to retype the e-mail address each time when you log in to your Zitomer account. Our cookie files are encoded so that your e-mail address and other information can only be interpreted by Zitomer.

A visit to a page on our website may generate the following types of cookies:

Registration cookies - These let us know which account you are signed in with and whether or not you are allowed access to a particular service, and they help us associate any comments you post with your username.

Site performance cookies - This is how we remember your preferences for the tools found on our website so you don’t have to reset them each time you visit our site.

Anonymous analytics cookies - These tell us whether or not someone has visited our site in the past so we can track the number of site users and how often they visit for statistics. Note that these cookies can’t be used to identify any individual.

Advertising cookies -We use these to target our advertisement more accurately by telling us whether or not you have seen our ad and how long it is since you have seen it. These cookies store information about what you are looking at on our site, not your personal information.

How to accept, reject or turn off cookies

You can accept or reject cookies on our website via the pop-up cookies banner on our homepage or by emailing our Principal Privacy Officer at ppo@zitomer.com

If you would like to turn off cookies from all the websites you visit, you can do so via your browser’s settings. However, the websites you visit will not be able to tell whether you are signed in if cookies are turned off, which means you will not be able to post comments or access certain parts of the website.

Follow the links below to learn about all of your browser's Cookies settings:

Note: These links are for reference only and may not work as they not controlled by Zitomer and may change based on the company who developed the browser.

How to turn off third-party advertising cookies?

Zitomer partners with industry leaders to develop its suite of product. To inform you of our relationships, from time to time we may display our partners’ branding and collateral. We prohibit the use of advertising cookies by our partners, but links to our partner’s sites may take you to a site that includes their cookies. Some of those websites may include advertisement cookies that anonymously track who has viewed their ad.

The Network Advertising Initiative (NAI), a leading self-regulatory association dedicated to responsible data collection and its use for digital advertising, lets you opt out of third-party advertisements

Note: This link is for reference only and may not work as they not controlled by Zitomer and may change based on the company who maintains their site.

Using your personal information.

We may use your personal information to:

  • administer the website;
  • improve your browsing experience by personalizing the website;
  • enable your use of the services available on the website, eg, the store functionality, fulfilling orders;
  • send you non-marketing commercial communications, eg, customer support communications;
  • send you email notifications which you have specifically requested;
  • send you marketing communications relating to our business (you can inform us at any time if you no longer wish to receive marketing communications);
  • statistical and other anonymous, non-personally identifiable information about website use will be stored by Google for marketing analytics purposes; this information will not be used to identify any individual user; and
  • address complaints or questions made by you relating to the website.
We collect, store and process your personal information on servers located in the United States. We use the information we collect about you in order
  1. to provide our products and services,
  2. to provide customer service, and
  3. to improve our products and services. We give access to individually identifiable information about our users only to those employees who require it to fulfill customer service requests.

For data collected from legal and/or natural persons of participating European Union countries, Article 13(1) of the GDPR provides that:

"(1) Where personal data relating to a data subject are collected from the data subject, the controller shall, at the time when personal data are obtained, provide the data subject with all of the following information: ... (c) the purposes of the processing for which the personal data are intended as well as the legal basis for the processing; (d) where the processing is based on point (f) of Article 6(1), the legitimate interests pursued by the controller or by a third party".

and Article 6(1)(f) of the GDPR provides that:

"(1) Processing shall be lawful only if and to the extent that at least one of the following applies: ... (f) processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child."

Disclosures.

We may disclose information about you to our employees, officers, agents, suppliers or subcontractors insofar as is reasonably necessary for the purposes of providing you services and delivering you products.

Except as is reasonably necessary in the performance of providing Zitomer’s goods and services, and as outlined herein and above, Zitomer will not sell or rent any of your personally identifiable information to any third parties. Zitomer will not share any of your personally identifiable information with third parties except in the limited circumstances described below, or with your express permission. These third parties are limited by law or by contract from using the information for secondary purposes beyond the purposes for which the information is shared.

  1. We disclose information that we in good faith believe is appropriate to cooperate in investigations of fraud or other illegal activity, or to conduct investigations of violations of our Terms and Conditions agreement.
  2. We disclose information in response to a subpoena, warrant, court order, levy, attachment, order of a court-appointed receiver or other comparable legal process, including subpoenas from private parties in a civil action.
  3. We disclose information to your agent or legal representative (such as the holder of a power of attorney that you grant, or a guardian appointed for you).
  4. We share aggregated statistical data with our business partners or for public relations. For example, we may disclose that a specific percentage of our users live in California. However, this aggregated information is not tied to personally identifiable information.
  5. As with any other business, it is possible that Zitomer in the future could merge with or be acquired by another company. If such an acquisition occurs, the successor company would have access to the information maintained by Zitomer, including customer account information, but would continue to be bound by this Privacy Policy unless and until it is amended as described in Section A above.

For data collected from legal and/or natural persons of participating European Union countries, Article 13(1)(e) of the GDPR provides that personally identifiable information collected from the data subject, the data controller must provide the data subject with information about "the recipients or categories of recipients of the personal data." Pertaining thereto, such categories of recipients are noted outlined above. You may exercise any of your rights in relation to notification of recipients, as provided for in EU GDPR 13(1)(e) if you need more detailed information than what is otherwise provided for herein, and such information does not infringe upon the rights of others or is in conflict with any non-disclosure, where such does not contradict governing law, by contacting Zitomer’s Principal Privacy Officer by email at ppo@zitomer.com or by way of written notice to:

Principal Privacy Officer
c/o Zitomer
969 Madison Ave
New York, NY 10021

How long do we keep your personal data?

We store personal data that our customers provide perpetually to process orders, allow customer order history to be accessible to our users, aid in our ability to answer questions or resolve possible problems, to comply with legal requirements under applicable laws, to attend to any legal claims/complaints, and for safeguarding purposes.

We store same in a safe, encrypted manner in compliance with strictest applicable law.

Security of your personal information.

We take reasonable technical and organizational precautions to prevent the loss, misuse or alteration of your personal information.

We store all the personal information you provide on our hosting provider’s secure (password- and firewall- protected & SSL 256-bit encrypted) servers, and in facilities that are SSAE 16, and meet SOC 2 and 3 auditing standards.

This information is used solely for the purposes of e-commerce – it will never be shared with any commercial third party without your expressed consent.

Data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet. That said, where we are able to control the communication we will only communicate in an encrypted form.

You are responsible for keeping your password and user details confidential. We will never ask you for your password (except when you login to the website).

Your rights to your data.

Broadly, by law you have the right to:
  • the right to access;
  • the right to correction;
  • the right to removal;
  • the right to restrict or object to processing;
  • the right to data portability;
  • the right to raise a formal complaint with Zitomer’s Principal Privacy Officer by contacting them at ppo@zitomer.com and
  • the right to withdraw your use consent.

You have the right to confirmation as to whether or not we process your personally identifiable data and, where we do, access to the personally identifiable data, together with certain additional information. That additional information includes details of the purposes of the processing, the categories of personally identifiable data concerned and the recipients of the personally identifiable data. Providing the rights of others are not infringed upon, we will supply to you a copy of your personally identifiable data. The first copy will be provided free of charge, but additional copies may be subject to a reasonable fee. You may request your personally identifiable data that we store by contacting Zitomer’s Principal Privacy Officer by email at ppo@zitomer.com.

You have the right to have any inaccurate personally identifiable data about you corrected and, taking into account the purposes of the processing, to have any incomplete personally identifiable data about you completed.

In some circumstances, without unreasonable delay you have the right to the removal of your personally identifiable data. These include:

  • the personally identifiable data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
  • you withdraw consent to consent-based processing;
  • you object to the processing under certain rules of applicable data protection law;
  • the processing is for direct marketing purposes; and
  • the personally identifiable data have been unlawfully processed.

However, there are exclusions of the right of removal where processing is necessary including:

  • for exercising the right of freedom of expression and information;
  • for compliance with a legal obligation; or
  • for the legal purposes.

In some circumstances you have the right to restrict the processing of your personally identifiable data. These include:

  • contesting the accuracy of the personally identifiable data;
  • processing is unlawful but you oppose removal;
  • Zitomer no longer has a need for the personally identifiable data for processing purposes, but you require personally identifiable data for legal purposes; and
  • you have objected to processing, pending the verification of that objection.

Where this has restricted processing, we may continue to store your personally identifiable data. However, we will only otherwise process it:

  • with your consent;
  • for the legal purposes;
  • for reasons of important public interest; or
  • for the protection of the rights of another person.

You have the right to object to our processing of your personally identifiable data, but only to the extent that processing is for legal purposes and or necessary for:

  • the performance of a task carried out in the public interest;
  • the performance of a task is in the exercise of any official authority vested in us; or
  • the purposes of the legitimate interests pursued by us or by a third party.

If the event you raise such objection, we will cease processing of your personal information unless and until we can demonstrate compelling legitimate grounds for the processing which override your objection, or the processing is for legal purposes.

You have the right to object to our processing of your personally identifiable data for direct marketing, at which time we will cease to process your personally identifiable data for these purposes.

You have the right to object to our processing of your personally identifiable data for scientific, historical research or statistical purposes, unless the processing is for the public interest.

To the extent that the legal basis for Zitomer’s processing of your personally identifiable data is:

  • consent; or
  • necessary for the performance of a contract to which you are party or in order to take steps at your request prior to entering into a contract,

and such processing is carried out in an automated fashion, you have the right to receive your personally identifiable data from us in a structured, commonly used and machine-readable format. However, this right does not apply where it infringes upon the rights of others.

If you believe Zitomer’s use of personally identifiable information infringes on data protection laws, you have a legal right to lodge a complaint with an authority of competent jurisdiction who is responsible for the data protection violation you deem to have allegedly occurred.

You may exercise any of your rights in relation to your personally identifiable data contacting Zitomer’s Principal Privacy Officer by email at ppo@zitomer.com or by way of written notice to:

Principal Privacy Officer
c/o Zitomer
969 Madison Ave
New York, NY 10021

Third party websites.

The website may contain links to other websites. We are not responsible for the privacy policies or practices of third party websites.

Policy amendments.

We may update this privacy policy from time-to-time by posting a new version on our website. Please check this page occasionally.  If we change any part of our privacy practice substantially, we will notify you either my email or via notification on the website.

Contact.

If you have any questions about this privacy policy, your rights, or our treatment of your personal information, please Contact Us, or email ppo@zitomer.com or write to us at Principal Privacy Officer, c/o Zitomer, 969 Madison Ave, New York, NY 10021.