Privacy Policy
Suntzuforwomen.com (“we”, “us”, or “our”) is committed to protecting your privacy and handling your personal data with the utmost care and in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you interact with our website at suntzuforwomen.com.
1. Commitment to Privacy and Data Protection
At suntzuforwomen.com, the privacy of our users is a top priority. We adhere to a privacy-first approach that respects your rights, ensures transparency, and places strict controls on the processing and sharing of your personal data. We strive to collect only the information necessary to provide our services, improve your experience, and fulfill our legal obligations.
2. Scope of This Policy and Data Controller Information
This Privacy Policy applies to all users of our website, customers, and visitors who access or interact with services through suntzuforwomen.com. Suntzuforwomen.com is the data controller within the meaning of applicable data protection laws and is responsible for determining the purposes and means of processing your personal data.
For any privacy-related queries, you can contact us at: [email protected].
3. Categories of Data Processed
We may process the following categories of personal data:
a. Usage Data
Includes information about your interactions with the website, such as IP address, browser type and version, time zone setting and location, operating system, referral source, pages visited, session duration, and other diagnostic data.
b. Account Data
Includes your name, email address, postal address, telephone number, and any other identifying information you provide when registering for an account or making a purchase.
c. Profile Data
Includes your preferences, interests, purchase history, and behavior on our website, including saved items and customized content.
d. Communication Data
Includes any correspondence you send to us, support tickets submitted, messages, and records of inquiries or feedback through our communication channels.
e. Technical Data
Includes device identifiers, system configurations, network type, and technologies used to access the site (e.g. hardware, operating system version).
f. Transaction Data
Includes details of any purchases or transactions carried out through the website, including payment information, billing address, shipping details, and receipts.
g. Preference Data
Includes information relating to your marketing and communication preferences, such as newsletters subscribed to, consents given or withdrawn, and stated product interests.
4. Legal Bases for Processing
We rely on several legal bases for processing your personal data, depending on the context:
– Contractual Necessity: When processing is required to fulfill our contractual obligations with you, such as completing purchases or providing customer support.
– Legitimate Interests: Where the processing is necessary for our legitimate business interests, provided your rights do not override those interests (e.g. improving our services, fraud prevention).
– Consent: For certain uses of your data (e.g. marketing communications, use of non-essential cookies), we will obtain your explicit consent and allow you to withdraw it at any time.
– Legal Obligations: Where we are required to process your data to comply with legal obligations.
5. Your Data Protection Rights
Subject to applicable laws, you may exercise the following rights regarding your personal data:
– Right of Access: Obtain confirmation whether we process your data and access to that data.
– Right to Rectification: Request correction of inaccurate or incomplete information.
– Right to Erasure: Request deletion of personal data under certain conditions (“Right to be Forgotten”).
– Right to Restriction: Request that we limit the processing of your personal data in specific circumstances.
– Right to Portability: Receive a structured, commonly used, machine-readable copy of your data and transmit it to another controller, where applicable.
– Right to Object: Object to processing based on our legitimate interests or direct marketing.
To exercise any of your rights, contact us at [email protected]. We may need to verify your identity before responding.
6. Security Measures
We implement appropriate technical and organizational measures to safeguard your personal data from unauthorized access, accidental loss, destruction, or alteration. Our measures include:
– Encryption of data in transit and at rest
– Role-based access control and authentication procedures
– Firewalls and intrusion detection systems
– Regular security audits and software patching
– Data backups and recovery procedures
– Staff privacy training and confidentiality agreements
7. International Data Transfers
When your data is transferred outside the European Economic Area (EEA) or other jurisdictions with equivalent data protections, we ensure an adequate level of protection through:
– The use of Standard Contractual Clauses approved by the European Commission
– Appropriate legal, technical, and organizational safeguards
– Compliance with local data protection frameworks, including those recognized by international regulatory bodies
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
– Account Data: Retained while your account remains active and for up to 6 years thereafter, unless required longer for legal reasons.
– Transaction Data: Retained for up to 7 years to comply with tax and accounting laws.
– Communication Data: Retained for up to 3 years following your last interaction.
– Usage and Technical Data: Stored for up to 2 years for analytics and performance optimization.
– Marketing & Preference Data: Retained until consent is withdrawn or after 2 years of inactivity.
We securely delete or anonymize data once the relevant retention period has lapsed.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance your browsing experience. Cookies are categorized as follows:
– Essential Cookies: Required for core functionality of the site (e.g. navigation, user authentication).
– Functional Cookies: Enhance usability and provide personalized features.
– Analytics Cookies: Collect information about usage patterns to improve the website’s performance (e.g. Google Analytics).
– Performance Cookies: Monitor application behavior and site load times.
Cookies may be placed by us or third-party providers.
10. Cookie Management and Compliance with GDPR and CCPA
Upon your first visit, we present a cookie banner that allows you to accept or configure your cookie preferences. You can change your settings or withdraw consent at any time through the cookie settings available on our site.
Under the CCPA, California residents may opt out of the sale of their personal information, if applicable. We do not sell personal data, but you can review or adjust your preferences at any time.
11. Children’s Privacy
Suntzuforwomen.com is not intended for children under the age of 13. We do not knowingly collect personal data from anyone under 13. If we become aware that we have collected data from a child without verified parental consent, we will promptly delete such data. Parents or guardians who believe their child has submitted personal data may contact us at [email protected].
12. Policy Updates
We reserve the right to modify or update this Privacy Policy at any time in our sole discretion. Any significant changes that affect your rights will be communicated in an appropriate manner, such as via notification on suntzuforwomen.com or through direct email.
We encourage you to review this Privacy Policy regularly to stay informed about how we protect your personal information.
13. Contact
If you have any questions, concerns, or requests relating to this Privacy Policy or the handling of your personal data, please contact:
Privacy Officer
Email: [email protected]
We are fully committed to compliance with applicable data protection regulations. Should you have any concerns about how your data is handled, we encourage you to reach out and we will address your inquiry promptly.