Privacy Policy
1. Introduction
At Hearth Living Makers (“we”, “us”, “our”), accessible at hearthlivingmakers.com, we are committed to safeguarding the privacy and personal data of our users. This Privacy Policy explains how we collect, use, disclose, and protect personal information provided through our website and related services. We are dedicated to maintaining transparency and accountability, and to processing personal data lawfully, fairly, and securely. Your privacy is not just a legal obligation—it is a core component of our values and commitment to our customers.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to users of the hearthlivingmakers.com website and all services offered through or in connection with it. This policy governs the processing of personal data that comes into our possession through your engagement with our digital platforms.
Hearth Living Makers acts as the Data Controller in respect of the personal data collected and processed in accordance with this Privacy Policy. As Data Controller, we are responsible for determining the purposes and means of processing your personal data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
3. Categories of Data We Process
We may process the following categories of personal data in order to provide and improve our services:
a. Usage Data
Information regarding your interactions with our website, such as IP address, browser type, operating system, session duration, pages visited, referring URLs, and clicks. This data helps us analyze performance and usage trends.
b. Account Data
Information you provide when creating an account or completing an order, including your full name, email address, telephone number, billing and shipping addresses.
c. Profile Data
Information about your preferences, behavior on the site, product reviews, wish lists, and purchase history to personalize your experience.
d. Communication Data
Records of your communications with us, including inquiries, support requests, and email correspondence.
e. Technical Data
Device-level information, including internet connection type, time zone, browser plug-ins, and hardware identifiers to assist compatibility and service delivery.
f. Transaction Data
Details related to purchases made on hearthlivingmakers.com, such as products ordered, payment information (processed securely via third-party providers), delivery status, and refunds issued.
g. Preference Data
Information provided in relation to marketing preferences, such as newsletter opt-ins, product category interests, and responses to promotional campaigns.
4. Legal Bases for Processing
We process personal data under the following legal bases, where applicable:
– Contractual necessity: where processing is essential to fulfill our obligations to you under a contract (e.g., fulfilling an order).
– Consent: where you have freely given us permission to process your personal data, especially for email marketing and cookie-based analytics.
– Legitimate interests: where processing is necessary for our legitimate business interests, such as improving our website, fraud prevention, and customer support, unless these are overridden by your rights and freedoms.
– Legal obligation: where we are required to process data under applicable law or regulatory requirements.
5. Your Rights
Subject to applicable data protection laws, you have the following rights in relation to your personal data:
– Right of Access: You may request to access the personal data we hold about you.
– Right to Rectification: You have the right to have inaccurate or incomplete information corrected.
– Right to Erasure: You may request that we delete your personal data under certain circumstances.
– Right to Restriction: You can request restricted processing of your data in certain scenarios.
– Right to Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.
– Right to Object: You have the right to object to processing based on our legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: If you have consented to processing, you can withdraw that consent at any time without affecting the lawfulness of prior processing.
To exercise these rights, please contact us at [email protected].
6. Security Measures
We undertake comprehensive security procedures to ensure that your personal data is protected against unauthorized access, alteration, disclosure, or destruction. These measures include but are not limited to:
– Encryption of data during transit and at rest
– Role-based and access-limited credentials
– Regular data backups and recovery systems
– Secure hosting infrastructure
– Staff confidentiality protocols and privacy training
Despite our efforts, no online data transmission is entirely secure, and we cannot guarantee absolute security of your information.
7. International Data Transfers
Your personal data may be processed in jurisdictions outside of your country of residence, including the United States and other jurisdictions that may not provide the same level of data protection. When we transfer data internationally, we ensure appropriate safeguards are in place, such as:
– Standard Contractual Clauses (SCCs) endorsed by the European Commission
– Additional contractual and technical security measures
– Regional or national regulatory compliance mechanisms where required
By using our website, you acknowledge and agree to such international data transfers where necessary for service delivery.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations. Data retention periods may vary:
– Account and Profile Data: maintained while your account remains active
– Transaction and Payment Data: retained for a minimum of seven (7) years for legal and tax compliance
– Communication and Support Data: retained for two (2) years from the date of communication
– Cookie and Usage Data: retained as specified in our Cookie Policy, generally no longer than thirteen (13) months
After applicable retention periods, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies for the following purposes:
– Essential Cookies: Required for the proper functioning of the website (e.g., session management, shopping cart functionality)
– Functional Cookies: Enable enhanced features such as user preferences and account settings
– Analytics Cookies: Help us understand how users interact with our website (e.g., visitor statistics, bounce rates)
– Performance Cookies: Improve speed and responsiveness across devices and networks
Some cookies are set by third-party service providers to assist in analytics, advertising, and social integrations.
10. Cookie Management and Compliance with GDPR & CCPA
We provide users with control over their cookie preferences. On your first visit, a cookie banner enables you to accept or decline non-essential cookies. You may update your preferences at any time through the link available in the website footer.
In compliance with GDPR and CCPA:
– We obtain prior consent before setting cookies not strictly necessary
– We provide clear and specific information on cookie usage
– Verified California residents can opt out of the sale or sharing of personal information under “Do Not Sell or Share My Personal Information” provisions by emailing [email protected]
11. Children’s Privacy
Our website is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children. If we become aware that we have inadvertently received data from a child under 13, we will take appropriate steps to delete such information.
Parents or guardians who believe we may have collected such data can contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to modify or update this Privacy Policy at any time. Any changes will be posted on hearthlivingmakers.com. Where required by law, we will also seek your consent to material changes. We encourage you to periodically review this Policy to remain informed of how we protect your information.
13. Contact
If you have any questions, concerns, or privacy-related requests regarding this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
We are fully committed to protecting your privacy and ensuring that your data is handled responsibly and in compliance with applicable laws. Please reach out to us with any inquiries, and we will respond promptly to address your concerns.