Privacy Policy for HearthZone Living
1. Introduction
At HearthZone Living, we are committed to safeguarding your personal privacy and protecting your personal information in accordance with applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines our practices concerning the collection, use, and safeguarding of your personal data when you visit or interact with our website, hearthzoneliving.com, or communicate with us via any channel.
HearthZone Living operates with a privacy-first philosophy. We aim to be transparent about the data we collect and provide you with meaningful choices regarding its use and disclosure.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of the website hearthzoneliving.com and to all data collected through the website, including but not limited to any services, features, or communications related to it.
HearthZone Living is the data controller in relation to all personal data handled under this policy. As the controller, we determine the purposes and means of data processing and ensure that your rights are fully respected.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Includes information about how you use our website, such as IP address, browser type, referring URLs, date/time stamps, pages viewed, and session data.
b. Account Data
When you create an account or make purchases, we may collect your full name, postal address, email address, and telephone number.
c. Profile Data
Covers your preferences, interests, order history, feedback, and behavioral insights gathered via interactions with hearthzoneliving.com.
d. Communication Data
Includes messages you send via forms, email communications, live chat support, customer service interactions, and your communication history with us.
e. Technical Data
Encompasses details about your device and technology stack, such as operating system, browser information, screen resolution, language settings, and installed plugins.
f. Transaction Data
Relates to payments made through our site, including payment card information (processed securely by third-party providers), billing and shipping details, and order confirmations.
g. Preference Data
Involves data related to your marketing consents, subscriptions, product preferences, and other personalized content choices.
4. Legal Bases for Processing
We rely on the following legal grounds under applicable data protection laws:
– Contractual Necessity: To process purchases, provide customer service, or facilitate delivery of goods.
– Legitimate Interest: To improve website security, enhance user experience, and prevent fraudulent activity.
– Consent: For email marketing and optional cookies as governed by your explicit preferences.
– Legal Obligation: Where necessary to comply with regulatory or legal requirements.
5. Your Data Protection Rights
Depending on your jurisdiction, you may have the following rights:
– Right of Access: You have the right to obtain confirmation of whether your personal data is being processed and to request a copy of that data.
– Right to Rectification: You can request correction of inaccurate or incomplete information about you.
– Right to Erasure: You can request that your data be deleted, subject to certain legal exceptions.
– Right to Restrict Processing: You may request that we limit how we process your data in certain contexts.
– Right to Data Portability: You can request that your data be provided to you or transferred to another controller in a machine-readable format.
– Right to Object: You may object to our processing of your data where it is based on legitimate interest or for direct marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a range of technical and organizational measures designed to protect your data, including:
– Encryption of data in transit and at rest
– Role-based access control with authentication protocols
– Regular security assessments and updates to our infrastructure
– Ongoing staff privacy and data protection training
– Periodic system and data backups for disaster recovery
Despite our best efforts, no system can be guaranteed to be 100% secure. We encourage you to use your own security precautions when sharing your information online.
7. International Data Transfers
Your personal data may be transferred to and processed in countries outside your jurisdiction, including countries that may not provide the same level of data protection as your home country.
Where such transfers occur, we ensure adequate protection through the use of:
– Standard Contractual Clauses approved by the European Commission or other relevant authorities
– Other lawful mechanisms approved under applicable data protection regulations
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, including:
– Usage and Technical Data: Retained for up to 12 months for analytics and security
– Account and Transaction Data: Retained for 6 years for legal obligations and financial recordkeeping
– Communication and Profile Data: Retained for 3 years from the last user interaction
– Marketing Preference Data: Retained until you revoke consent or opt out of communications
When personal data is no longer required, it is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies on hearthzoneliving.com to enhance user experience and analyze website usage. Our cookies fall into the following categories:
– Essential Cookies: Necessary for navigation and basic site functionality. These cannot be disabled.
– Functional Cookies: Enable personalization, language settings, and remembering preferences.
– Analytics Cookies: Collect aggregate data on how visitors use our site to help us improve content and performance.
– Performance Cookies: Optimize load speeds and user interface responsiveness across various devices and browsers.
10. Cookie Management and Compliance
On your first visit and periodically thereafter, you will be prompted to manage your cookie preferences in compliance with GDPR and CCPA requirements. You can modify these settings at any time via our cookie banner or through your browser settings.
Specifically, under CCPA, California residents have the right to opt out of the sale of their personal information. We do not sell personal data, but we honor “Do Not Track” and similar signals where legally required.
11. Children’s Privacy
Our services are not directed at, and we do not knowingly collect data from, children under the age of 13. If we become aware that personal data of a child has been collected without verified parental consent, we will take steps to delete such information promptly.
12. Updates to This Privacy Policy
We may revise this Privacy Policy in response to changes in technology, legal requirements, or our data protection practices. Users are encouraged to periodically consult this page. Where required by law, material updates will be accompanied by appropriate notifications via the website or direct communication.
13. Contact
If you have any questions about this Privacy Policy, including concerns about how your data is handled, or wish to exercise your privacy rights, you may contact us at:
Email: [email protected]
Website: https://hearthzoneliving.com
We are dedicated to maintaining compliance with all applicable data protection laws and to acting transparently and responsibly in relation to your information. Please do not hesitate to reach out to us with any privacy concerns.