All orders and payments made through thankyoubookshop.com are processed and stored locally at our physical location or in the form of asymmetrically encrypted (RSA) backup data in the physical possession of Thank You Bookshop. The decryption key to this data is known only to Thank You Bookshop and is not stored or recoverable by third parties.
Customers may opt to use a third-party to process financial transactions, such as Paypal. While we ensure that the connections to these services are properly secured, we have no control over how your information is stored or shared by PayPal, and encourage you to view the privacy policies of these parties before engaging in any such transaction.
We collect and store our customers' information at their discretion. This information may include home and/or business address(es), contact names, email addresses, phone numbers, and credit card information. We use RSA encryption for credit cards, 2048 bit, and the private key is blowfish-cbc encrypted. All customer information collected is encrypted and stored locally on the Thank You Bookshop premises.
We do not provide, share, or sell customer information to third parties. The information we collect at the time of checkout or account creation is used for order fullfillment, communications about orders or purchases, and for occasional email marketing. We do not provide our customer's information or activity to any third parties for analytical use.