PRIVACY POLICY
At Chicks in Aprons (https://chicksinaprons.com), we are fully committed to maintaining the highest standards of privacy and data protection. We believe in transparency, security, and user control when handling your personal data. This Privacy Policy outlines how we collect, use, share, and protect your information in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws.
1. INTRODUCTION
We prioritize your trust and are dedicated to safeguarding your personal information. This Privacy Policy describes how Chicks in Aprons processes your data when you access our website, use our services, or communicate with us. We are committed to fair and lawful processing and implementing strong safeguards around your data.
2. SCOPE & DATA CONTROLLER
This Privacy Policy applies to all visitors, users, and any parties accessing the https://chicksinaprons.com website. Chicks in Aprons acts as the “data controller” with respect to the personal data collected through our website, meaning we determine the purposes and means of processing your personal data. For all inquiries regarding privacy rights, data control, or questions concerning this policy, you may contact us at [email protected].
3. CATEGORIES OF DATA PROCESSED
We collect the following categories of data to provide you with a personalized, efficient, and secure experience:
a. Usage Data
Information about how you use our website is collected automatically. This includes IP addresses, browser type, session duration, pages visited, geolocation, and activity logs.
b. Account Data
When you register or communicate with us, we collect your name, email address, phone number, billing and shipping address, and other identifying contact information.
c. Profile Data
This includes details about your preferences, language settings, browsing behavior, wishlist, and purchase history.
d. Communication Data
We maintain records of your inquiries, customer support interactions, feedback, and correspondence with us by email or through contact forms.
e. Technical Data
We collect device data such as operating system, internet connection settings, screen resolution, browser configuration, and system identifiers used to optimize your experience on our platform.
f. Transaction Data
This covers payments made, orders processed, delivery dates, billing status, and transaction metadata associated with the purchase of products or services.
g. Preference Data
We collect marketing preferences, newsletter sign-up status, opted-in communication types, and indicated product or service interests.
4. LEGAL BASES FOR PROCESSING
We may process your personal data under one or more of the following lawful bases, as permitted by the GDPR and other applicable privacy laws:
– Consent: When you voluntarily provide information or opt into marketing communications.
– Contractual Necessity: When processing is necessary to fulfill a contract with you (e.g., processing a purchase).
– Legal Obligation: For compliance with regulatory or legal requirements.
– Legitimate Interests: To enhance user experience, ensure security, and understand website performance; always balanced with your fundamental rights and freedoms.
5. YOUR RIGHTS
Subject to applicable laws, you have the following privacy rights regarding your personal data:
– Right of Access: You may request a copy of personal data we hold about you.
– Right to Rectification: You have the right to request corrections to inaccurate data.
– Right to Erasure: You may request the deletion of your personal data where no legitimate reason for its retention exists.
– Right to Restriction: You may request us to restrict processing under certain circumstances.
– Right to Data Portability: You can request your personal data in a structured, commonly used, machine-readable format.
– Right to Object: You may object to data processing where the lawful basis is our legitimate interest or for direct marketing purposes.
– Right to Withdraw Consent: Where consent is the basis for processing, you may withdraw it at any time without affecting prior processing.
To exercise any of your rights, please contact us at [email protected].
6. SECURITY MEASURES
We implement industry-standard security measures to protect your information. These include:
– Data encryption in transit and at rest
– Multi-factor access controls
– Employee training in privacy and data security practices
– Regular security audits and vulnerability testing
– Secure backup systems for data integrity
While no system is completely secure, we continuously evaluate and enhance our systems to mitigate potential vulnerabilities.
7. INTERNATIONAL TRANSFERS
Where data is transferred outside of the European Economic Area (EEA) or other jurisdictions with comprehensive data protection laws, we implement appropriate safeguards. These may include Standard Contractual Clauses approved by the European Commission or equivalent protective frameworks recognized under applicable international privacy regimes.
8. DATA RETENTION
We retain personal data only for as long as it is necessary for the purposes outlined in this policy:
– Account Data: While your account remains active and for 1 year after inactivity
– Transaction Data: For a period of 7 years, in accordance with accounting obligations
– Communication Data: Retained for 2 years from last contact
– Technical and Usage Data: Retained for 18 months for analytics purposes
– Marketing Preference Data: For as long as you remain subscribed to communications
Data no longer required is securely deleted or anonymized where appropriate.
9. COOKIE POLICY
We use cookies and similar tracking technologies to optimize performance and personalize content. The types of cookies we employ include:
– Essential Cookies: Necessary for site functionality (e.g., shopping cart, account login)
– Functional Cookies: Enhance user preferences and ease of navigation
– Analytics Cookies: Measure site usage with tools like Google Analytics
– Performance Cookies: Collect aggregated data to improve site speed and performance
10. COOKIE MANAGEMENT & COMPLIANCE
In accordance with GDPR and CCPA, we provide clear cookie consent tools. On your first visit, you are prompted to accept or manage cookies. You may also manage or withdraw consent at any time through your browser settings or our Cookie Preferences Center available on our website.
Under CCPA, California residents may also opt out of the “sale” or sharing of their personal data by clicking on the “Do Not Sell or Share My Personal Information” link available on our homepage.
11. CHILDREN’S PRIVACY
We do not knowingly collect or solicit personal information from individuals under the age of 13. In accordance with the Children’s Online Privacy Protection Act (COPPA) and similar international legislation, our services are not intended for children without verifiable parental consent. If we discover we have mistakenly collected information from a child under 13, we will promptly delete it.
12. POLICY UPDATES & USER NOTIFICATIONS
We reserve the right to amend this Privacy Policy from time to time in response to legal, technical, or business developments. Any material changes will be posted on this page and, where required by law, we will notify you via email or on-site notification. Users are encouraged to periodically review this policy to remain informed about how their data is protected.
13. CONTACT US
If you have any questions about this Privacy Policy, your rights, or the practices of our website, please contact us directly:
Email: [email protected]
Website: https://chicksinaprons.com
We take your privacy seriously and are committed to ensuring full compliance with applicable data protection laws. Please do not hesitate to contact us with any privacy-related concerns.