Privacy Policy for ursulasebastine.com
1. Introduction
At ursulasebastine.com (“we,” “our,” or “us”), we are dedicated to protecting and respecting your privacy. We understand the importance of maintaining the confidentiality, integrity, and security of your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information, and it reflects our commitment to complying fully with applicable privacy laws and regulations, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant data protection laws.
2. Scope of This Policy and Data Controller
This Privacy Policy applies to all users and visitors of ursulasebastine.com (the “Website”) and governs the processing of personal data collected through your interaction with the Website and related services. For the purposes of the GDPR, ursulasebastine.com is the data controller responsible for determining the purposes and means of processing your personal data. If you have any questions regarding this Privacy Policy, you may contact us at [email protected].
3. Categories of Data We Process
We may collect, process, and store the following categories of personal data, depending on your interaction with the Website and our services:
a. Usage Data
Information about how you use the Website, including IP address, browser type and version, time zone settings, geographic location, device identifiers, pages visited, and session history.
b. Account Data
Details you provide when creating an account or contacting us, such as your full name, email address, phone number, billing address, and shipping address.
c. Profile Data
Information relating to your preferences, interests, reviews, feedback, language preferences, purchase history, and behavior on the Website.
d. Communication Data
Records of communications between you and us, including support requests, inquiries, responses to surveys, and any other information exchanged via email at [email protected] or submission forms on the Website.
e. Technical Data
Device information, operating system type and version, browser plugin details, time zone, and other system configuration data that help optimize and troubleshoot our services.
f. Transaction Data
Details of transactions and purchases conducted on or through the Website, including products ordered, delivery address, payment method (processed via secure third-party providers), and transaction identifiers.
g. Preference Data
Information regarding your consent for marketing communications, newsletter preferences, language selection, and product interest indicators.
4. Legal Bases for Processing Personal Data
We collect and process your personal data based on the following legal grounds:
– Contractual Necessity: To fulfill our contractual obligations to you—such as processing and delivering your orders.
– Legitimate Interests: To operate, improve, and secure the Website; to conduct analytics; and to communicate effectively with you where these interests do not override your privacy rights.
– Consent: For specific purposes such as direct marketing, newsletter subscriptions, use of non-essential cookies, or surveys, where required by law.
– Legal Obligation: To comply with applicable laws, enforce legal claims, and adhere to regulatory requirements.
5. Your Rights
Subject to applicable legal regulations, you have the following rights in relation to your personal data processed by us:
– Right to Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may correct incomplete or inaccurate data about yourself.
– Right to Erasure: You may request deletion of your data where there is no compelling reason for us to continue processing it.
– Right to Restrict Processing: You may limit our use of your data under certain conditions.
– Right to Data Portability: You may receive a copy of your personal data in a structured, machine-readable format and transmit it to a third party.
– Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.
If you wish to exercise any of these rights, please contact us at [email protected]. We will respond in accordance with applicable data protection laws.
6. Security Measures
We implement robust security measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction. These measures include, but are not limited to:
– Encryption of data in transit and at rest
– Role-based access controls and authentication protocols
– Regular system audits and vulnerability assessments
– Scheduled backups and secure storage of data
– Employee privacy training and confidentiality obligations
7. International Transfers
To deliver services effectively, your data may be transferred to, and processed in, countries outside of your jurisdiction, including countries that do not offer the same level of data protection. In such cases, we implement appropriate safeguards such as:
– Standard Contractual Clauses approved by the European Commission
– Binding corporate rules (where applicable)
– Ensuring service providers meet adequacy standards or participate in appropriate frameworks (e.g., Privacy Shield, where still valid)
Users accessing ursulasebastine.com from the European Economic Area (EEA), the United Kingdom, or other jurisdictions with data transfer restrictions can contact us for more information on these safeguards.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, as mandated by applicable legal, accounting, or reporting obligations.
– Usage Data: Retained for up to 12 months for analytics and system tuning
– Account Data: Retained until account deletion or as required for legal compliance
– Profile Data: Retained for 2 years from last activity or account deletion
– Communication Data: Retained for 3 years for audit and support tracking
– Technical Data: Retained for 6 months for fault-diagnosis and system logs
– Transaction Data: Retained for 7 years for tax and legal compliance
– Preference Data: Retained until consent is withdrawn
9. Cookie Policy
Our Website uses cookies and similar technologies to improve user experience and performance. These include:
– Essential Cookies: Necessary for core Website functionality and to establish secure sessions
– Functional Cookies: Remember your preferences and enhance usability
– Analytics Cookies: Collect anonymized data on site usage (e.g., Google Analytics)
– Performance Cookies: Monitor technical performance and load times
For more details on the types of cookies we use, please refer to our Cookie Notice available on the Website.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, you may control cookies through the cookie consent tool available on the Website. You may also configure your browser to refuse or delete cookies. Please note that some functionalities may be impacted if essential cookies are disabled.
Users from California have the right to opt-out of the sale of their personal data, access their information, and request deletion. We do not sell personal data, as defined under CCPA.
To manage your cookie preferences or exercise your CCPA rights, you may contact us at [email protected].
11. Children’s Privacy
ursulasebastine.com does not knowingly collect or solicit personal data from children under the age of 13. If you believe that we may have collected data from a child without proper consent, please contact us immediately at [email protected].
12. Changes to This Policy
We reserve the right to update or modify this Privacy Policy from time to time to reflect changes in our practices, technologies, or regulatory obligations. Updated versions will be posted on the Website. We encourage you to review this Policy periodically for any changes.
If we make material changes, we will endeavor to notify users as appropriate, such as via email or a prominent notification on the Website. Continued use of the Website after updates constitutes acceptance of the revised Policy.
13. Contact Us
If you have any questions or concerns regarding this Privacy Policy, our data handling practices, or your personal data, please contact us at:
Email: [email protected]
Website: ursulasebastine.com
We are committed to ensuring your privacy is protected with diligence and transparency. Your data protection rights are important, and we are here to support them effectively.