Privacy Policy
1. Introduction
At Hearth Living Makers (“we”, “us”, or “our”), accessible at hearthlivingmakers.com, we are committed to respecting your privacy and safeguarding your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you access or use our website, products, and services. We recognize the importance of protecting your data rights and adhere strictly to applicable data protection laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Role of Data Controller
This Privacy Policy applies to all users and visitors of hearthlivingmakers.com. Hearth Living Makers is the data controller responsible for processing your personal data under applicable privacy legislation. This includes determining the purposes and means of data processing. This policy governs the data obtained through our website and any related digital channels.
3. Categories of Data Processed
We collect and process various categories of personal data as outlined below:
– Usage Data: Includes information about how you interact with our website, such as IP address, browser type, session duration, referring URLs, pages viewed, and time spent on site.
– Account Data: Includes personal identifiers you provide, such as your full name, postal address, email address, and phone number.
– Profile Data: Includes user preferences, purchase history, order details, browsing behavior on our site, and interests as communicated directly or inferred through use.
– Communication Data: Includes records of any communication you have with us, such as service inquiries, support tickets, email interactions, and customer service history.
– Technical Data: Includes device information such as operating system, hardware model, unique device identifiers, browser plugins, and configuration settings.
– Transaction Data: Includes payment transaction details excluding full card numbers (which are processed by secure third-party providers), billing address, shipping address, and order fulfillment status.
– Preference Data: Includes your choices in receiving marketing materials and promotional content, as well as products or categories that indicate your expressed interests.
4. Legal Bases for Processing
We process your personal data only when we have a lawful basis under applicable privacy laws. These bases include:
– Contractual Necessity: When processing your data is necessary to fulfill a contract with you (e.g., order fulfillment).
– Consent: When you have voluntarily provided consent for specific data processing, such as subscribing to our newsletter or allowing non-essential cookies.
– Legitimate Interest: When processing is necessary for our legitimate business interests, such as maintaining website functionality, fraud prevention, and customer service—where such interests do not override your fundamental rights and freedoms.
– Legal Obligation: When we are legally required to process your data to comply with applicable tax laws, consumer rights legislation, or regulatory authority requirements.
5. Your Data Protection Rights
You have several rights regarding your personal data under GDPR and CCPA. These include:
– Right to Access: You have the right to request access to your personal information we hold.
– Right to Rectification: You may correct or update inaccurate or incomplete personal data.
– Right to Erasure (Right to be Forgotten): You may request the deletion of your personal data, subject to certain exceptions.
– Right to Restrict Processing: You may request limiting the use of your data under certain circumstances.
– Right to Portability: You may request a copy of your personal data in a structured, commonly-used, machine-readable format.
To exercise any of these rights, please contact us at: [email protected].
6. Security Measures
We implement and maintain robust technical and organizational measures to ensure the ongoing confidentiality, integrity, availability, and resilience of our data processing systems and services. These measures include:
– Encryption of data during transmission and storage
– Secure user authentication protocols
– Controlled system access, limited to authorized personnel only
– Regular monitoring and system audits
– Data backup and disaster recovery procedures
– Staff training on data protection principles
7. International Data Transfers
We may transfer your personal data to countries outside of your country of residence, including to countries that may not provide the same level of data protection. In such cases, we ensure adequate safeguarding mechanisms, including Standard Contractual Clauses approved by the European Commission or reliance on CCPA-compliant processors and sub-processors.
By using hearthlivingmakers.com, you consent to the transfer, processing, and storage of your personal data outside your jurisdiction in accordance with this Privacy Policy and applicable laws.
8. Data Retention
We retain personal data only for as long as is necessary to fulfill the purposes for which it was collected or to comply with legal, regulatory, or operational requirements. Retention periods vary depending on the type of data:
– Account Data: Retained as long as your account remains active and for up to six (6) years after closure.
– Transaction Data: Retained for seven (7) years to meet tax and accounting obligations.
– Communication and Support Data: Retained for a maximum of three (3) years from the date of last correspondence.
– Usage and Technical Data: Retained for up to two (2) years for analytical and improvement purposes.
Once data retention periods expire, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance the user experience and analyze website performance.
Categories of cookies used:
– Essential Cookies: Necessary for website functionality and cannot be disabled.
– Functional Cookies: Enable website customization and remember user preferences.
– Analytics Cookies: Help us understand how users interact with our site using tools such as Google Analytics (data is aggregated and anonymized).
– Performance Cookies: Assist us in optimizing site performance through load times and navigation flow.
10. Cookie Management and Compliance
On your first visit to hearthlivingmakers.com, you will be presented with a cookie consent banner enabling you to accept or manage cookie preferences.
Under GDPR and CCPA, users have the right to:
– Withdraw cookie consent at any time
– Opt out of sale or sharing of personal information via cookies (CCPA)
– Limit tracking practices using built-in browser tools or our cookie settings panel
To manage your preferences, use the cookie settings link located in the footer of our website. You may also configure browser settings to block or delete cookies altogether.
11. Children’s Privacy
Our services are not directed to children under the age of 13, and we do not knowingly collect personal data from minors. If we become aware that a child under 13 has provided personal data to us without verifiable parental consent, we will take steps to delete such information promptly.
If you believe we may have collected such data, please contact us at [email protected].
12. Policy Updates
We reserve the right to amend or update this Privacy Policy at any time to reflect changes in our practices, technologies, legal requirements, or other factors. Whenever changes are made, we will update the policy on hearthlivingmakers.com and, where appropriate, notify users through the contact information provided or on-site notifications.
Continued use of our website following any changes constitutes acceptance of the revised policy.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or the use of your personal data, please contact us at:
Email: [email protected]
We are fully committed to ensuring that your privacy rights are respected and upheld in accordance with data protection laws. Please do not hesitate to reach out for any privacy-related concerns or to exercise your data subject rights.