Michael Kors Privacy Notice

Effective Date: January 1, 2023

Last Updated: August 29, 2024

Contents

Michael Kors Privacy Notice

  1. What Our Privacy Notice Covers
  2. What Information Do We Collect, Use or Otherwise Process
  3. Where Do We Get Information About You
  4. How We Use Information We Collect or Process
  5. How We Disclose or Share Information
  6. Your Privacy Rights
  7. How We Protect Your Information
  8. Notice of Financial Incentive
  9. Changes to This Privacy Notice
  10. Contact Us

1. What Our Privacy Notice Covers

Privacy Notice Scope

This Privacy Notice applies to information that Michael Kors (USA), Inc. and Michael Kors (Canada) Holdings, Ltd. (referred to herein as “Michael Kors”, “we,” “us” or “our”) collects, uses, shares or otherwise processes that identifies, relates to, describes, or can otherwise be associated with individuals (individually and collectively referred to herein as “you”, “your and “yours”) (“personal information” or “PI”) in connection with the following customer facing operations in the United States and Canada (individually, “Service” and collectively, “Services”):

  1. in one of our stores, at one of our events or otherwise offline;
  2. through interactions with our customer service representatives in store, online or over the phone/mobile;
  3. in connection with our marketing mail or e-mail lists, store communications, or our customer loyalty program known as “KORSVIP”; or
  4. on or through our websites (michaelkors.com or destinationkors.com or michaelkors.ca (or any subdomain thereof)) including any virtual assistant tools, chatbots or similar functionality available on our websites), native mobile applications (such as our KORSVIP Mobile Application ("KORSVIP App")) or other internet websites, applications or services (including social media, surveys, sweepstakes, contests, product rating submissions or reviews) from which you are accessing this version of the Privacy Notice or which link directly to this version of the Privacy Notice (each referred to herein as a “Site,” and collectively, the “Sites”)

This Privacy Notice provides you details about the PI we collect, use, share or otherwise process, the purposes for which we use that PI, to whom and for what purposes we may disclose that PI, how we protect that PI, the rights and choices you have with respect to that PI, and how you can reach us to get answers to your questions.

Importantly, we use service providers to help us operate, administer and provide our various Sites and Services. Thus, where relevant, our service providers collect, use and otherwise process your PI and Site Usage information on our behalf. As such, the use of the terms “we,” “us,” or “our” throughout this Privacy Notice shall be interpreted to include our service providers acting on our behalf.

Where certain states, provinces, geographic regions or territories require additional terms, you will see those additional location-specific or region-specific terms addressed in Section 6 (“Additional State or Country Specific Privacy Rights”) and they shall only apply to customers who are residents of those specific locations.

Additional privacy notices may be provided by us to you in connection with certain activities, programs, offerings, or websites. We may also provide additional notice, prior to or at the time of collection of personal information, where new purposes for processing your personal information arise or to clarify our practices regarding your personal information.

Out of Scope of this Privacy Notice

Children’s Privacy. The Sites are not directed or targeted to children under the age of sixteen (16) nor do we knowingly collect on the Site any personal information from children under sixteen. If you are under sixteen, do not provide your personal information to us or the Sites.

Personal Information Related to Employment or Business Dealings with Michael Kors. This Privacy Notice does not apply to PI collected in the employment context or in a business context. To the extent required and applicable, such PI is processed in accordance with a separate privacy notice, which may be obtained either on the applicable portal or by contacting us to request a copy of the applicable notice.

Third-Party Websites/Content The Sites may contain links (which may take the form of hyperlinks, widgets, clickable logos, plug-ins, images or banners) to, or content and other information from, websites or services operated by entities other than us (e.g., social media platforms). This Privacy Notice does not apply to such other websites or services. Michael Kors does not own or control such content or information practices, and we recommend that you review their posted privacy policies so that you understand their relevant PI collection, use, disclosure and processing practices.

2. What Information Do We Collect, Use or Otherwise Process

Categories of PI

The PI we collect, use, share, or otherwise process about you depends on the Service(s) or the circumstances of your interaction with us.

The following are the categories of PI that we may collect or otherwise process:

Basic Identifiers including your name, home address, mailing address, billing address, shipping address, telephone numbers, email address, month and date of birth, gender,* signature, social media handle(s), or other similar identifiers.

Pseudonymous Identifiers or Device Information including IP Address, unique personal identifier, online identifier, hashed email, device identifier or other similar identifiers.

Demographic Data including household information.

Commercial information including transactional information (including payment information, products or services purchased, obtained, returned, exchanged), virtual shopping cart details, clothing or footwear sizing, activity related to KORS VIP account (including account log-in credentials*), contests, sweepstakes, other purchasing or consumer histories, or other similar preferences or tendencies (including product recommendations and search results).

Internet or Other Electronic Network Activity Information including browsing and search history on our Sites, social media activity, activity obtained in the course of providing you the products or Services, activity related to your interactions with our advertisements, emails or Sites.

Geolocation Data** including information to allow us to determine your location, like zip code, IP address, area code

Audio, Electronic, Visual or Similar Information including images or recordings of you or your voice in connection with events, in-store security cameras (where applicable), during customer service calls/communications, etc.

Inferences including those drawn from the information above, or information collected from or about you reflecting your preferences or characteristics.

*Categories denoted with a (*) may be considered a Characteristics of Protected Classifications under California or Federal law or Sensitive Personal Information.

** When you download or use our KORSVIP App, we may receive information about your location (for example, to find our nearest store location). Most mobile devices (and mobile apps) allow you to turn off location services if you do not want your location information collected.

Site Usage Information

“Site Usage Information” includes, but is not limited to: (i) your browser type, device type, carrier (if applicable), device address, operating system, IP address, domain name from which you accessed a Site, etc.; (ii) general location information, including region, continent, country, city, zip code and time zone; (iii) information about your browsing activities on and through a Site, such as (a) the date and time you visit one of the Sites, (b) the areas or pages of a Site that you visit, (c) the amount of time you spend viewing a Site or specific areas of a Site, (d) the number of times you return to a Site or a specific area of a Site, (e) the web sites or pages you visited prior to visiting a Site, (f) the websites or pages you visit after you leave a Site; (g) searches you have performed on the Site and on other websites that led you to our Site; (h) social plug-ins with which you have interacted on our Site; and (j) other similar Site usage data.

As part of the standard operation of the Sites, we collect certain Site Usage Information automatically or passively (see Section 3. Cookies and Other Tracking Technologies below) during your visit to our Sites. We consider Site Usage Information, on its own, to be non-personal information in nature, unless otherwise specified under applicable law. However, where we combine Site Usage Information with personal information about you in a manner that allows you to be reasonably identified, we would consider the combined information to be personal information and will treat that information accordingly.

3. Where Do We Get Information About You

Sources of Information

We collect, use or otherwise process information directly from you in connection with the Sites and Services as described above in Section 1 of this Privacy Notice. We also, from time to time, collect, use and process information from other sources, as permitted by applicable law, including the following: from someone else on your behalf (for example, when someone purchases a gift for you and requests that we deliver it to you); through our Tracking Technologies (as further described in the Cookies and Other Tracking Technologies sub-section below); from third-party partners or providers, such as social media platforms, data brokers, analytics providers, marketing providers, address update services and co-promotion partners; and from our corporate affiliates and subsidiaries (who may have collected the information from or about you and have the rights to provide the same to us). We may combine the information we collect directly from you with information we collect about you from these other sources.

Cookies and Other Tracking Technologies

Through cookies, web beacons, internet tags, clear GIFs, pixels and other similar tracking technologies (collectively, “Tracking Technologies”), we gather information about you and/or the device used in connection with your Site visit and your interactions with our marketing campaigns, advertisements or email communications.

  • What are Tracking Technologies?

    • Cookies. A cookie is a small data file that is placed on your web browser, or your computer or device, when you access and/or use a web site, which stores text that can later be read back by our Web server or third parties. Cookies are used for various purposes, such as to recognize your geographic location, your browser or the type of device from which you are accessing our Site (i.e., mobile or desktop). Cookies also may enable us to recognize you as the same user who was at our Site in the past and relate your use of our Site to browsing preferences previously set (i.e., language, currency, store preference, etc.) or other information about you
    • Local Shared Objects (e.g., Flash Cookies). A local shared object is similar to a cookie, except it is stored locally on your computer or mobile device, instead of your browser, using a media player or other software installed on your computer or device. A local shared object can store more than just text. Like cookies, it is also used to recognize you as the same user who was at our Sites in the past and relate your use of our Sites to other information about you.
    • Web Beacons and other Tags. Web beacons or tags are typically tiny, one-pixel images that are embedded on a page of a website or in electronic communications, such as an email message. These technologies help to verify when a certain page (or area) of a website is viewed, when a message is opened and/or when links or other content are clicked or viewed.
    • To learn more about managing Tracking Technologies, visit http://www.allaboutcookies.org/manage-cookies/

  • Why do we use Tracking Technologies? Generally, we use Tracking Technologies for the following purposes:

    • Strictly Necessary. These Tracking Technologies are necessary in order to operate our Site(s) and make them available to you for use/access, to provide you a Service, feature or functionality in connection with the Sites or to ensure the security of our Sites (including the security of your transactions on our Sites). For example, we may use cookies as you move through different pages on our Sites to load content, to manage internet traffic through the correct servers, or to allow or block access to restricted parts of our Sites, etc.
    • Functional. These Tracking Technologies provide enhanced functionality and personalization, such as honoring your request to keep you automatically logged in until you log-out or remembering your preferences (like preferred language or currency) or items left in your cart, assist in filling out forms, etc.
    • Performance & Analytics. These Tracking Technologies are used to monitor and analyze how you use our Sites and Services (such as our emails or our KORSVIP App or program). For example, we may place cookies that allow us (i) to measure the time of your requests to our servers and our responses, (ii) to test new features, improve or fix technical issues on our Sites, (iii) to record statistics about Site Usage, (iv) to track your activities on our Sites and emails, (v) to track the places from which you come to our Sites, and (vi) to monitor the effectiveness of our online advertisements and marketing efforts by tracking when users have made a purchase after following a link to our website from another online location, so that we can compensate the other party for sending us their business.
    • Targeting. These Tracking Technologies are used by us or our authorized third parties to deliver advertisements to you, both on our Sites and elsewhere online, based on your online or offline activities and interests, also known as Targeted Advertising. For example, our Site(s) contain cookies used to deliver ads to you when using other sites or services regarding products you previously showed interest in when browsing our Site. We also maintain integrations with social media platforms (including, Facebook, Instagram, Snapchat, TikTok and Pinterest), and enable those platforms to place cookies, tags and local shared objects on your browser, computer or device used in connection with Targeted Advertising. (see Section 4. Targeted Advertising).
    • Third Party Sale. In certain jurisdictions, privacy laws broadly define the “Sale” of data to include disclosing PI to unaffiliated third parties for monetary or other valuable consideration. Where such “Sale” definition applies, the information collected via Third Party Sale Cookies is used by us for Performance & Analytics or Targeting (as described in the categories above) and may also be used by unaffiliated third parties for their own purposes, including Targeted Advertising activities.

Most web browsers enable users to decline or block certain cookies when browsing a website (check the “Help” or “Settings” menus of your browser to learn more). On our Site(s), you may manage or decline certain cookies by following the steps outlined in Section 6 (Managing Tracking Technologies (Cookies)). Declining certain cookies may prevent you from taking full advantage of all features of our Sites and Services.

4. How We Use Information We Collect or Process

Purpose of Processing

We may use the information we collect from or about you (including both PI and Site Usage Information), for a variety of business and commercial purposes, to the extent permitted by law, including as described below:

PURPOSE WHAT WE MAY USE

To better understand or improve your experience in our stores and on the Sites including, for example: to track your activities on Sites, to monitor or track Site Usage, to recognize your computer or device(s) so that your preferences and items in your shopping cart are saved, to keep you logged in to the Site unless you log out, to remind you about items left in your cart or when items of interest are discounted, to provide you personalized content, tailored offers, and Targeted Advertising, for general market research and to update, improve or otherwise enhance our Sites or Services. We use features or provide functionality on our Sites or Services that use or leverage artificial intelligence or machine learning to provide enhanced search results, product recommendations or to facilitate our customer service live chat experience.

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Demographic Data, Internet or Other Electronic Network Activity Information; Geolocation Information, Site Usage Information

To process and fulfill your requests for products and services, process returns, replacements, exchanges, repairs and alterations, and other customer service-related issues such as keeping you informed about your requests or orders, assisting you with setting up or managing your online account (including, for example, to send password reminders or notifications to changes to your account details) and to process your communication and privacy preferences.

Basic Identifiers, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Site Usage Information

To administer our Sites and Services, and to communicate with you about the same (via postal mail, email, phone, text/SMS, social media or any other method you have elected) about your relationship or interactions with us, including, for example, regarding: your KORSVIP Account; your participation in other programs such as contests or sweepstakes; your attendance to our events; personal shopping or other in-store experiences; your ratings or reviews; or in regards to promotional or marketing materials related to us or our Services, etc.

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Internet or Other Electronic Network Activity Information; Site Usage Information

To contact you (via postal mail, email, phone, text/SMS, social media or any other method you have elected) with, about or in regards to promotional or marketing materials, our Sites, Services, stores, products, events, contests, sweepstakes and select partner offers

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Site Usage Information

To enforce our terms and conditions, to protect the security or integrity of the Sites, or stores and for our general business functions or operations (such as protecting against illegal or fraudulent activity, maintaining business records, to collect monies owed to us, etc.)

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Demographic Data, Internet or Other Electronic Network Activity Information; Geolocation Information, Audio, Electronic, Visual or Similar Information, Site Usage Information

As permitted by, or as necessary to comply with, applicable laws and legal requirements

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Demographic Data, Internet or Other Electronic Network Activity Information; Geolocation Information, Audio, Electronic, Visual or Similar Information, Site Usage Information

Targeted Advertising

Targeted Advertising” (sometimes called online behavioral advertising, interest-based advertising or cross-context behavioral advertising) refers to the practice of collecting information about an individual’s visits across multiple, unaffiliated websites or applications over time for the purpose of predicting their preferences or inferring their interest in order to show them ads that are more likely to be relevant. Typically, Targeted Advertising doesn’t use information that is personally identifiable in a traditional sense, such as name, home address, etc. Rather, Targeted Advertising uses a combination of Pseudonymous Identifiers or Device Information along with Site Usage Information to match an individual’s web browser or device with their online activity or interest categories. To learn more about Targeted Advertising in general, please visit the Network Advertising Initiative (NAI) at www.networkadvertising.org and the Digital Advertising Alliance (DAA) at www.aboutads.info. Additionally, the NAI and the DAA each offer consumers choices with respect to their privacy in the context of Targeted Advertising; please visit the NAI Consumer Opt Out page or the DAA’s Consumer Choice Tool for more information and resources.

We use Adobe Marketing Cloud Device Co-op to better understand how you use our Sites and apps across the various devices you use, and to deliver tailored promotions. To learn more about the Adobe Marketing Cloud Device Co-Op and available privacy controls, click here.

We also utilize Meta (Facebook, Instagram), Google, Snap (Snapchat), TikTok and Pinterest’s Targeted Advertising programs that match users of their respective platforms with users of our Sites or Services or with individuals that could have an interest in Michael Kors, based on their interactions or preferences across various other websites. To learn more about the Targeted Advertising programs of each social network we participate in and how you can manage your preferences for these programs directly with them, click on the following: for Facebook click here, for Instagram click here, for Google click here, for Snapchat click here, for TikTok click here and for Pinterest click here

Where specific states or regions provide additional privacy rights for their residents related to Targeted Advertising, we address those in Section 6 (Additional State or Country Specific Privacy Rights)

5. How We Disclose or Share Information

Information Disclosure

We may disclose information (including Site Usage Information and PI) in the following ways, or otherwise with your permission, to the extent permitted by law:

RECIPIENT / PURPOSE OF DISCLOSURE WHAT WE MAY SHARE

To Service Providers. To our service providers who collect or use such information on our behalf (including, but not limited to, website or database hosting companies, address list hosting companies, email and other communications service providers, customer service providers, advertising agencies, chat or messaging service providers, stylists, analytics companies, distribution companies, fulfillment companies, and other similar entities) in order to help us manage, maintain and operate the Sites and Services and/or other general business functions

Basic Identifiers, Pseudonymous Identifiers or Device Information, Demographic Data, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Audio, Electronic, Visual or similar information, Inferences, Sensitive Personal Information, Site Usage Information

To Protect Our Site, Services and Users. As necessary, to provide/maintain fraud detection and prevention services, or if we believe that there has been a violation of the Site Terms and Conditions, our KORSVIP Program Terms and Conditions, or any other Site or company Notice, or if we have reason to believe that our rights or property, or the rights or property of any third party, may be or have been harmed.

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Audio, Electronic, Visual or similar information, Site Usage Information

To Law Enforcement. To provide information to, or as required by, local law enforcement agencies, other local government authorities to protect the rights and safety of our property, company and customers

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Audio, Electronic, Visual or similar information, Site Usage Information

In Connection with a Corporate Transaction. In the event that Michael Kors or substantially all of its assets are acquired by one or more third parties as a result of an acquisition, merger, sale, consolidation, bankruptcy, liquidation or other similar corporate reorganization, where your information may be one of the transferred assets

Basic Identifiers, Pseudonymous Identifiers or Device Information, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Site Usage Information

Third Parties for Targeted Advertising. To third parties, including technology providers and social media networks, for marketing and advertising, including Targeted Advertising. Please see Section 4, Targeted Advertising for further information.

Pseudonymous Identifiers or Device Information, Internet or Other Electronic Network Activity Information, Site Usage Information

With our Corporate Affiliates. With our corporate affiliates, including our parent company, sister companies and subsidiaries, as permitted or required by law.

Basic Identifiers, Pseudonymous Identifiers or Device Information, Demographic Data, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Audio, Electronic, Visual or similar information, Inferences, Sensitive Personal Information, Site Usage Information

If you choose to contribute to one of our social media campaigns, interact with us on a community or social forum or other publicly available area or feature of our Site, the information you submit may be made available to the general public depending on your settings or the forum used. We recommend that you not submit or post any PI to such forums, such as your full name, home address, phone number and/or other information that would enable others to contact or locate you.

6. Your Privacy Rights

Consistent with applicable laws and further to our commitment to honor the trust you place in us regarding your information, you have certain rights in relation to our processing of your PI. These rights are explained below along with the applicable processes you may follow to exercise your rights.

We will not discriminate against you for exercising any of your applicable privacy rights.

Accessing, Correcting, and Deleting Personal Information

  • Access to Your Personal Information: You have the right to confirm whether or not we have collected or otherwise process personal information about you and to request a copy of the personal information we collect about you, which we will provide back to you in electronic form.
  • Data Correction: You have the right to request we correct factually incomplete or inaccurate personal information that we process about you. Note that you can make certain corrections to some of your personal information directly through your online account.
  • Deletion of Personal Information: You have the right to request that we delete personal information that we process about you, except under certain circumstances (i.e. if we need to retain such PI in order to fulfill an order or a contract, comply with a legal obligation or to establish, exercise or defend legal claims).

  • Process to Submit an Access, Deletion or Correction Request: You may submit an access, deletion, or correction request directly or through an Authorized Agent as follows:

    • Directly by You:

    • Authorized Agent: If you designate an authorized agent to submit a request on your behalf, you must (1) complete and sign this Authorized Agent Designation Form and (2) have the authorized agent attach the signed form when they submit a Request Form on your behalf.

For your own privacy and security, and in our discretion, we may require you to verify your identity before providing copies of your personal information, deleting or correcting the requested information. Additionally, we will only provide a copy of your PI to you, even where you utilize an Authorized Agent to submit the request.

Managing Tracking Technologies (Cookies)

  • Cookies

    • You can manage / communicate your cookie preferences to us by either (i) updating your preferences via the Cookie Consent Preference Center or by clicking the “Your Privacy Choices” link at the footer of our Site, at any time, or (ii) broadcasting a legally recognized opt-out preference signal, such as the Global Privacy Control (GPC) (when accessing our Site using a browser and/or browser extension that supports such signals)
    • To learn more about cookies in general, including how to manage or delete them using your device or browser settings, click here. Additionally, through your device or browser settings, you may be able to (i) receive notifications when you are receiving new cookies, (ii) disable cookies or (iii) delete cookies from all websites you visit, not just ours. Please refer to your web browser's help section or your device’s settings menu for information on how to do this.
  • Local Shared Objects. The methods for managing local shared objects are different than the methods for managing cookies. Depending on how local shared objects are enabled on your computer or device, you may be able to manage them using your computer or device’s software settings.
  • Web Beacons and Other Tags. You may limit the use or placement of web beacons or tags by managing or deleting the cookies that interact with them. As such, the same process you follow to manage or delete cookies using your applicable browser or device settings may be used to affect web beacons and other tags.
  • Browser Do-Not-Track Signals. Some web browsers and devices permit you to broadcast a preference that you not be “tracked” online (this is different than the GPC signal noted above). At this time, we do not modify your experience based on whether a Do Not Track signal is broadcast. To learn more about browser tracking signals and “Do Not Track,” please visit http://allaboutdnt.org

Managing Marketing Communications

  • Opt-Out / Unsubscribe– Direct Mail: If you would like to opt out of receiving direct mail from us, please contact us at customerservice@michaelkors.com (for US customers) or customerservice@michaelkors.ca (for Canadian customers) and specify “Opt-Out of Direct Mail” in the subject line.

    Please note we may still contact you via direct mail in connection with your account, relationship, activities, transactions and communications with us

  • Unsubscribe from Email Marketing: If you would like to unsubscribe from receiving promotional emails from us, you should follow the unsubscribe instructions located in each promotional email you receive from us, or you may contact us at customerservice@michaelkors.com (for US customers) or customerservice@michaelkors.ca (for Canadian customers) and specify “Unsubscribe from Email Marketing” in the subject line.

    Please note we may still contact you in connection with your accounts, relationship, activities, transactions and communications with us.

  • Opt-Out – Text Messages (SMS or MMS): To opt out of our Text Messages, reply “STOP” directly to one of the Text Messages you receive.

    Please note that Text Messages are distributed via third party mobile network providers, therefore, we cannot control certain factors relating to message delivery or guarantee availability or performance of this service, including liability for transmission delays or message failures. See our Terms and Conditions for more information about our Text Messages. To receive HELP with Text Messages, contact us customerservice@michaelkors.com (for US customers) or customerservice@michaelkors.ca(for Canadian customers) and specify “Help With Text Messages” in the subject line.

Additional State or Country Specific Privacy Rights

Residents of specific countries, provinces, states or locations may be afforded additional rights. Please read below for a description of those rights and the processes to follow in order to exercise those rights:

Canadian Residents

  • Withdrawal of Consent to Process: Canadian Residents have the right to withdraw consent to processing similar to the deletion right. To withdraw consent to processing, please submit a deletion request using the process described above (Process to Submit an Access, Deletion or Correction Request).

California Residents

  • California Shine the Light: Residents of California may request that we stop sharing their personal information with third parties for their direct marketing purposes. Such request will apply as of the date of your request, and we will not be responsible for any communications that you may receive from third parties that received your personal information prior to that request. In these cases, please opt out from or contact that third party directly.

  • Process to Submit a Request under CA’s Shine the Light Law:

    • Please submit a written request via email to: customerservice@michaelkors.com

    • Include the following:

      • Email Subject Line Must Contain: Exercising my rights under CA Shine the Light
      • Email Body Must Contain: your first name, last name and email address associated with your Michael Kors account

California Privacy Rights (CCPA and CPRA) Notice Rights. The California Consumer Privacy Act of 2018 (CCPA) and the California Privacy Rights Act of 2020 (CPRA) require that businesses provide certain notice to consumers about their information practices concerning personal information. The information specified in such notice requirements can be found follows:

  • a list of the categories of PI that we collect is located in Section 2 “What Personal Information We Collect, Use, or Otherwise Process;”
  • details regarding the sources form which we obtain PI can be found in Section 3 “Where Do We Get Information About You;”
  • details regarding the business or commercial purposes for which we collect or process PI can be found in Section 4. “How We Use Information We Collect or Process;” and

  • details regarding what PI we share with other parties and the purpose of the sharing can be found in Section 5. “How We Disclose or Share Information.”

    • For purposes of clarity, categories of PI disclosed that may be considered “sale”/ “share” under CCPA or CPRA include: Basic Identifiers, Pseudonymous Identifiers or Device Information, Demographic Data, Commercial Information, Internet or Other Electronic Network Activity Information; Geolocation Information, Site Usage Information
    • Categories of third parties to whom personal information was disclosed that may be considered “sale”/ “sharing” under California law: advertisers and marketing partners, data analytics providers, performance and metrics providers, and social media networks.

Right to Opt-Out of the Sale or Share of Personal Information for Targeted Advertising. In addition to your rights regarding Accessing, Correcting and Deleting your Personal Information listed above, the CCPA and CPRA provide California “consumers” with the rights to direct a “business” not to “sell” their PI with third parties and to direct a business not to “share” their PI with third parties for the purpose of Targeted Advertising.

  • Process to Submit an Opt-Out of “Sale” or “Targeted Advertising”: There are two separate processes to follow in order to request to be opted out of “Sale” or Targeted Advertising:

    • For opting-out of Sale or Targeted Advertising Tracking Technologies, you can update your preferences at any time by either (i) updating your preferences via the Cookie Consent Preference Center here or by clicking the Your Privacy Choices at the footer of our Site, at any time, or (ii) broadcasting a legally recognized opt-out preference signal, such as the Global Privacy Control (GPC) (when accessing our Site via the browsers and/or browser extensions that support such signals).
    • For opting-out of “Sale” or Targeted Advertising activities based on PI collected by us (e.g. activity related to shopping in store or on our Sites, participating in promotional or marketing activities, creating an account on our Site(s), in connection with KORSVIP, registering to receive email communications from us, etc.), please submit a request using the Opt-Out of Sale/Targeted Advertising Request Form.

Residents of Colorado, Connecticut, Montana, Oregon, Texas, Virginia and Utah (and as may be updated by state or federal laws, from time to time)

Depending on your state of residence, in addition to the rights of Accessing, Correcting, and Deleting your Personal Information listed above, you may have additional rights related to opt-out of the “Sale” of Personal Data to unaffiliated third parties and the right to opt-out of Targeted Advertising (as those rights are defined in the applicable state laws).

  • Process to Submit an Opt-Out of “Sale” or “Targeted Advertising”: There are two separate processes to follow in order to request to be opted out of “Sale” or Targeted Advertising:

  • For opting-out of Sale or Targeted Advertising Tracking Technologies, you can update your preferences at any time by either (i) updating your preferences via the Cookie Consent Preference Center here or by clicking the Your Privacy Choices at the footer of our Site, at any time, or (ii) broadcasting a legally recognized opt-out preference signal, such as the Global Privacy Control (GPC) (when accessing our Site via the browsers and/or browser extensions that support such signals).
  • For opting-out of “Sale” or Targeted Advertising activities based on PI collected by us (e.g. activity related to shopping in store or on our Sites, participating in promotional or marketing activities, creating an account on our Site(s), in connection with KORSVIP, registering to receive email communications from us, etc.), please submit a request using the Opt-Out of Sale/Targeted Advertising Request Form.

7. How We Protect Your Information

Length of Processing:

Your personal information is stored by us and/or our service providers for as long as necessary to fulfill the specific purposes described herein and to the extent permitted by applicable laws. When we no longer have a legitimate business purpose for your PI, or when you request that we delete your PI (except where we need to retain it in order to comply with a legal obligation, are permitted to retain it under applicable law or need to retain it to establish, exercise or defend legal claims), we will remove such information from our systems and records, which includes taking steps to anonymize it so that you can no longer be identified from it.

Information Processing in the U.S. and Other Countries

Your PI and other information may be stored, transferred and processed by us in the United States and in other countries by our affiliates or our service providers. By providing personal information to us, you consent to the collection, maintenance, processing and transfer of such information in and to the United States and other countries and territories, pursuant to the laws of the United States or such other jurisdictions, which may provide lesser privacy protections than the laws of other countries, and you acknowledge that your information may thus be subject to U.S. and foreign laws and accessible to U.S. and foreign governments, courts, law enforcement and regulatory agencies.

Information Security:

While we endeavor to protect our systems, Sites, Services and information against unauthorized access, use, modification and disclosure, due to the inherent nature of the Internet as an open global communications vehicle and other risk factors, we cannot guarantee that any information, during transmission or while stored on our (or a service provider's) systems, will be absolutely safe from intrusion by others, such as hackers. Nonetheless, we understand and value the trust you place in us to protect your personal information and have implemented reasonable security measures appropriate to the data we hold in an effort to safeguard the personal information in our custody and control. Such measures include, for example, limiting access to PI only to employees and authorized service providers who need to know such information for the purposes described in this Privacy Notice, as well as other administrative, technical and physical safeguards. Additionally, our service providers are not authorized to use or disclose your personal information for any purpose other than providing the services to us or on our behalf, or as otherwise may be required by applicable law.

To provide you with increased security, access to certain personal information stored in your Account is protected with your username and password. You are responsible for maintaining the confidentiality of your Account credentials, and we strongly recommend that you utilize a complex password that includes a combination of letters, numbers, and characters and that you do not disclose your account username or password to anyone. We will never ask you for your password in any unsolicited communication. Please notify us immediately of any unauthorized use of your account credentials or any other suspected breach of security.

Phishing, Spoofing & Other Schemes

It has become increasingly common for hackers, cyber-criminals and other unauthorized individuals to send emails and other communications to consumers purporting to represent a legitimate company, such as a bank or an online retailer, and requesting through those communications that the consumer provide personal, often sensitive, information. Click here to learn more about how to recognize and avoid such scams.

If you receive a request to provide sensitive information (including your account password, or any payment information) via email or to a website or individual that does not seem to be affiliated with the Sites or Michael Kors, or that otherwise seems suspicious to you, please do not respond or disclose your information. Michael Kors will never send you an email requesting that you verify any credit card information, financial information or other sensitive personal information. Please immediately report any such communication or request to us at customerservice@michaelkors.com.

8. Notice of Financial Incentive

We offer our customers a loyalty program (interchangeably, “KORSVIP” or the Program”) that provides certain perks, such as gifts, rewards or designated discounts. From time to time, we may also offer exclusive invitations to events, sweepstakes, contest, or other similar promotional campaigns. When you sign up for KORSVIP or chose to participate in one of these Services, we typically require you provide your name and contact information for access. Under certain laws, these Services might be interpreted as a “financial incentive.” The value of your personal information is related to the value of the discounts provided, or other benefits that you obtain or that are provided as part of the applicable Services, less the expense related to offering those products, benefits, or Services, participants.

You may withdraw from participating in the Program at any time by clicking on the unsubscribe link in one of the KORSVIP emails you receive. By unsubscribing from KORSVIP you will be opting out from receiving all future communications about the Program and you will be effectively cancelling your Membership. At this time, you are not able to opt-out of Program-related emails without cancelling your Membership, since such Program communications are a core part of the Program Membership. If you wish to unsubscribe from general Michael Kors marketing communications (i.e., not specific to the Program) but not the cancel KORSVIP membership, please follow the instructions set forth in Section 6 (Managing Marketing Communications).

9. Changes to This Privacy Notice

We may change this Privacy Notice from time to time and the amended Notice will be posted to the Sites. Under certain circumstances (for example, in connection with certain material changes to this Privacy Notice), we may also notify you through additional means, such as posting a notice on the home page of the Sites or contacting you via email.

10. Contact Us

To exercise your rights, please follow the procedures described in Section 6. Your Privacy Rights above.

If you have any specific questions or concerns about this Privacy Notice or our Cookie Notice, please contact us at privacy@michaelkors.com, or at: Michael Kors, 11 West 42nd Street, New York, New York 10036, Attn: Privacy Officer.