Privacy Policy for The Creaking Chair
This Privacy Policy outlines the manner in which The Creaking Chair (“we,” “us,” or “our”), accessible via thecreakingchair.com, collects, uses, and protects personal data. We are firmly committed to the principles of privacy and data protection. We understand that your personal information is important, and we are dedicated to protecting your rights in accordance with applicable privacy and data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant regulations.
1. Commitment to Privacy and Data Protection
At The Creaking Chair, we believe privacy is a fundamental right. We are dedicated to handling your personal data responsibly and transparently. This Privacy Policy is designed to inform our users and visitors about how data is collected, used, stored, and shared when they interact with our website, thecreakingchair.com. We implement technical and organizational measures to ensure appropriate data security and compliance.
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to all visitors, customers, and users of thecreakingchair.com and associated services. As the Data Controller, we determine the purposes and means of processing your personal data collected via our website and services. Our role includes the responsibility for protecting that data according to regulatory obligations under applicable laws such as the GDPR and CCPA.
3. Categories of Personal Data We Process
We collect and process different categories of personal data to provide our services and ensure the functionality and personalization of the website:
a. Usage Data: Includes information such as IP address, browser type, browsing patterns, referring URLs, session time, and pages visited on the site. This is automatically collected when accessing thecreakingchair.com.
b. Account Data: Information you submit to create or manage an account, including full name, mailing address, email address, and telephone number.
c. Profile Data: Includes preferences, behavior on the site, purchase history, wishlists, product interest, and personalization choices.
d. Communication Data: Includes interactions with support services such as inquiries, messages, and call or chat history exchanged through [email protected] or via our contact forms.
e. Technical Data: Comprises information about the device and software used, such as operating system, device ID, browser settings, screen resolution, and system configuration.
f. Transaction Data: Details of purchases made through thecreakingchair.com, such as billing information, shipping addresses, order content, and payment method (note: payment details are processed using secure third-party services and not stored directly by us).
g. Preference Data: Includes consent status for newsletters, email communications, cookie preferences, and product interest categories.
4. Legal Bases for Processing Personal Data
We process your personal data under one or more of the following lawful bases:
– Legitimate Interests: For improving our services, marketing relevant products, fraud prevention, and enhancing website functionality.
– Contract Performance: To fulfill our contractual obligations, including processing orders, payments, and deliveries.
– Consent: When you provide explicit, informed consent (e.g., signing up for marketing emails or enabling non-essential cookies).
– Legal Obligation: Where processing is necessary for compliance with a legal requirement.
5. Your Rights Under Data Protection Laws
In accordance with the GDPR and CCPA, you have the following rights over your personal data:
– Right of Access: You can request a copy of the personal data we hold concerning you.
– Right to Rectification: You have the right to correct any incomplete or inaccurate data.
– Right to Erasure: Under certain circumstances, you may request that we delete your personal data (“right to be forgotten”).
– Right to Restriction of Processing: You may request that we limit our processing of your data.
– Right to Data Portability: You can request a transfer of your data in a commonly used, machine-readable format.
– Right to Object: You may object to our processing, especially when conducted under legitimate interest or direct marketing.
– Right to Non-Discrimination (under CCPA): You will not be discriminated against for exercising your privacy rights.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement industry-standard security protocols to protect personal data against loss, theft, unauthorized access, disclosure, or destruction. Our measures include, but are not limited to:
– Data encryption in transit and at rest
– Controlled access and identity management systems
– Secure cloud storage with restricted physical and digital access
– Regular backups and disaster recovery protocols
– Staff training in privacy and data protection practices
Despite our best efforts, no transmission method or data storage system is entirely secure. We encourage users to take individual precautions, such as choosing strong passwords and securing personal devices.
7. International Data Transfers
Personal data collected through thecreakingchair.com may be transferred and processed in countries outside of your residence, including the United States and other jurisdictions that may not provide an equivalent level of data protection. When we transfer data internationally, we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or adopt other lawful transfer mechanisms in accordance with GDPR and relevant regional guidelines.
8. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting obligations. Retention periods vary depending on the type of data:
– Usage and Technical Data: 12 months
– Account and Profile Data: Duration of account existence + 1 year
– Transaction Data: 7 years (for tax and audit purposes)
– Communication and Support Data: 3 years
– Marketing Consent and Preference Data: Until withdrawal of consent or up to 2 years of inactivity
Upon expiration of the applicable retention period, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies on thecreakingchair.com to enhance user experience, analyze site performance, and deliver personalized content. Cookies fall into the following types:
– Essential Cookies: Necessary for functionality, navigation, and security (e.g., cart processing, log-in).
– Functional Cookies: Remember user preferences and enhance user experience.
– Analytics Cookies: Collect aggregated data for usage statistics and site improvement (e.g. Google Analytics).
– Performance Cookies: Monitor system performance to troubleshoot issues and optimize speed.
10. Cookie Management and Compliance
You have full control over cookie usage through clear opt-in and opt-out options presented via a cookie consent banner upon your first visit. You may also manage cookie settings within your browser. In accordance with GDPR and CCPA, we do not enable non-essential cookies without consent and provide granular controls for adjusting preferences at any time.
California residents may also exercise their rights to opt out of “sale” of personal data and request information about how their data is used through [email protected].
11. Children’s Privacy
The Creaking Chair does not knowingly collect or process data from children under the age of 13. If we learn that personal data from a child has been submitted without verifiable parental consent, we will take prompt action to delete such information. Parents or guardians with concerns are encouraged to contact us immediately at [email protected].
12. Updates to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time in response to legal, regulatory, or operational requirements. Material changes will be communicated through prominent notices on thecreakingchair.com and, where appropriate, via email. Users are encouraged to revisit this page periodically for the latest information on our privacy practices.
13. Contact Us
If you have any questions, concerns, or complaints related to the use of your personal data or this Privacy Policy, please contact us at:
Email: [email protected]
We are committed to ensuring your privacy is respected and protected. Please do not hesitate to reach out regarding any privacy matter.
—
The Creaking Chair is committed to upholding the highest standards of privacy compliance. For any inquiries regarding your data or to exercise your rights under this policy, contact us at [email protected].