Privacy Policy for iambrownroyal.com
1. Introduction
At iambrownroyal.com, we are deeply committed to protecting your privacy and safeguarding your personal information. This Privacy Policy outlines how we collect, use, disclose, and secure your data when you interact with our website. We adhere strictly to applicable data protection regulations, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy laws. Your trust is important to us, and we take your privacy seriously by integrating security and transparency into all of our data practices.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users and visitors of the website iambrownroyal.com (the “Site”) and any services provided through it. For the purposes of data protection law, iambrownroyal.com acts as the “Data Controller” with respect to the personal data we collect and process through the Site. If you have any questions regarding this Privacy Policy, you may contact us at [email protected].
3. Categories of Personal Data We Process
We collect and process various categories of personal data depending on your interaction with our Site and services. These categories include:
a. Usage Data: This includes information such as your IP address, browser type, time zone setting, referring/exit pages, pages visited, session duration, and user interaction events.
b. Account Data: When you create an account or make a purchase, we collect your name, email address, billing address, shipping address, phone number, and other necessary personal identifiers.
c. Profile Data: We collect data related to your preferences, purchase history, and behavior on the Site, including product interests and feedback you provide.
d. Communication Data: This includes any information you submit through contact forms, support requests, and customer service interactions, including your communication and correspondence history.
e. Technical Data: Includes data collected from your device, such as your operating system, device type, device identifiers, browser plug-in types, screen resolution, and other system configuration data.
f. Transaction Data: Includes details about payments you make through the Site, including payment method (processed via secure third-party providers), order amounts, delivery information, receipts, and order tracking history.
g. Preference Data: Includes your marketing preferences, communication opt-ins, and interest categories you select or that we infer based on interactions with the Site.
4. Legal Bases for Processing Your Personal Data
We process your personal data only when a valid legal basis applies, which includes:
– Performance of a contract: When data is necessary to fulfill your requests, such as processing orders or delivering products.
– Consent: Where you have given explicit permission, such as subscribing to newsletters or accepting optional cookies.
– Legal obligation: Where we are required to retain or disclose information to comply with regulatory responsibilities.
– Legitimate interests: Where processing is necessary for our business purposes and such interests are not overridden by your privacy rights (e.g., fraud prevention, analytics, customer service improvements).
5. Your Rights
Under data protection laws, you have certain rights regarding your personal information. Subject to verification, you have the right to:
– Access: Request access to the personal data we hold about you.
– Rectification: Request that we correct inaccuracies in your personal data.
– Erasure: Request that we delete your personal data, subject to specific exceptions.
– Restriction: Request the limitation of how we use your data under certain circumstances.
– Data Portability: Request your personal data in a structured, commonly used, and machine-readable format for transfer to another service provider.
To exercise any of these rights, you may contact us at [email protected]. We will respond to all legitimate requests in accordance with applicable timeframes under GDPR and CCPA.
6. Security Measures
We implement comprehensive security measures designed to protect your personal data. These measures include encryption (SSL/TLS) for data in transit, secure access controls, password protection, regular system backups, firewalls, anti-malware defenses, and staff training on data privacy practices. We monitor our systems regularly for vulnerabilities and threats to ensure the continued integrity and confidentiality of your information.
7. International Transfers
Where we transfer your personal data outside of the European Economic Area (EEA), we implement appropriate safeguards in accordance with GDPR. These safeguards may include Standard Contractual Clauses approved by the European Commission and additional technical and organizational protections to ensure adequate levels of data protection. The same commitment applies to data transfers in compliance with CCPA and other regional requirements.
8. Data Retention
We retain your personal data only as long as necessary for the purposes for which it was collected. The duration varies depending on the nature and category of the data:
– Usage and Technical Data: Retained for up to 12 months for analytics optimization and performance monitoring.
– Account and Profile Data: Retained for the lifecycle of your account and for up to 6 years thereafter for compliance purposes.
– Transaction Data: Retained for a minimum of 7 years to comply with financial and regulatory requirements.
– Communication Data: Retained for 3 years following the date of your last interaction with us.
– Preference Data: Retained until you update or delete your preferences.
Where data is no longer required, it will be securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies on iambrownroyal.com to enhance your online experience. Cookies may be categorized as follows:
– Essential Cookies: Required for the proper functioning of the Site, such as maintaining session integrity and payment processing.
– Functional Cookies: Enable features such as remembering login details, language settings, and customization preferences.
– Analytics Cookies: Help us understand Site usage patterns, refine content, and optimize performance using anonymized metrics (such as those provided by Google Analytics).
– Performance Cookies: Allow us to improve the user interface, load times, and interactivity across different devices and networks.
10. Cookie Management and Compliance
Consent for non-essential cookies is obtained through a cookie banner when you first visit the Site, in compliance with GDPR and CCPA requirements. You may manage or withdraw your preferences at any time using the cookie settings available on our Site. Browser-level cookie controls can also be used to block or delete cookies. Note that blocking essential cookies may limit your ability to use certain features of the Site.
For California residents, we process cookies that may qualify as “personal information” consistent with applicable rights under the CCPA. You may opt out of the sale or sharing of such data, where applicable.
11. Children’s Privacy
We do not knowingly collect or solicit personal information from individuals under the age of 13. If we discover that a child under 13 has provided us with personal data without verifiable parental consent, we will delete such information promptly. If you believe we may have collected such data in error, please contact us immediately at [email protected] for assistance.
12. Changes to This Policy
We reserve the right to update this Privacy Policy to reflect changes in our practices, services, or legal obligations. We encourage you to review this Policy periodically. Where material changes are made that affect your rights or the way we use your data, we will provide clear notification via the Site or by contacting you directly if you are a registered user.
13. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices more broadly, please contact us at:
Email: [email protected]
Website: https://iambrownroyal.com
We are committed to full compliance with applicable privacy laws and dedicated to addressing your privacy-related concerns in a timely and responsible manner.