Privacy Policy
Hearth Vibes Home (“we,” “our,” or “us”) is committed to protecting your privacy and maintaining the security of your personal information. This Privacy Policy outlines how we collect, use, store, and protect your data when you access or use our website, hearthvibeshome.com (the “Website”). We honor your privacy rights and seek transparency in our data handling practices in accordance with applicable data protection regulations, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Commitment to Privacy and Data Protection
At Hearth Vibes Home, we value your trust and commit to handling your personal information with care, integrity, and in compliance with relevant privacy laws. Whether you are browsing our site, making a purchase, or engaging with our services, we prioritize your right to privacy and data security.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who interact with hearthvibeshome.com. Hearth Vibes Home is the data controller for all personal information collected through the Website. This means we determine the purposes and means of processing your personal data.
3. Categories of Personal Data We Collect
We may collect and process the following categories of personal data:
a) Usage Data
This includes data about your browser type and version, operating system, referral source, time zone setting, page views, site navigation paths, and IP address. These data are collected to ensure the secure and efficient operation of the Website.
b) Account Data
When you register an account, we collect identifying details such as your full name, billing and shipping addresses, email address, and phone number.
c) Profile Data
We gather information about your preferences, purchase history, browsing behavior, saved items, and feedback to enhance and personalize your shopping experience.
d) Communication Data
This includes any correspondence you initiate with us, including support tickets, customer service interactions, and content of emails or messages submitted via contact forms.
e) Technical Data
Collected through analytics tools and session monitoring, this data includes your device type, device identifiers, browser configurations, session duration, mobile network information, and diagnostics.
f) Transaction Data
If you make a purchase, we collect payment card information (securely via payment processors), order history, shipping details, and billing verification information.
g) Preference Data
We track information on marketing preferences, opt-in/opt-out choices, and stated interests in our products and promotions.
4. Legal Bases for Processing
We process your personal data under the following legal bases:
– Consent: With your explicit permission, for marketing emails, non-essential cookies, and optional features.
– Contractual Necessity: To fulfill your orders, manage your account, and deliver our services.
– Legitimate Interests: To analyze Website performance, detect fraud, maintain security, and improve user experience.
– Legal Obligation: To comply with applicable laws, regulations, and legal proceedings.
5. Your Rights Under Data Protection Laws
You are entitled to the following rights with respect to your personal data:
– Access: Request a copy of the personal data we hold about you.
– Rectification: Request corrections to inaccurate or incomplete data.
– Erasure: Request deletion of your personal data, under certain circumstances.
– Restriction: Request limitation of data processing where accuracy or legality is contested.
– Portability: Receive personal data in a structured, machine-readable format to transfer it elsewhere.
– Objection: Object to processing based on grounds relating to your particular situation or for direct marketing purposes.
– Withdrawal of Consent: Withdraw consent at any time where processing is based on consent.
To exercise these rights, please contact us at [email protected].
6. Data Security Measures
We implement appropriate technical and organizational safeguards to secure your information, including:
– SSL/TLS encryption of data in transit.
– Access control and authentication protocols.
– Secure cloud storage with monitored backups.
– Role-based access to personal data.
– Staff training on data protection and privacy best practices.
Despite these efforts, no transmission over the internet is entirely secure. You use our Website at your own risk.
7. International Data Transfers
Where personal data is transferred outside of your jurisdiction, including to the United States, we implement appropriate safeguards in compliance with GDPR, such as Standard Contractual Clauses approved by the European Commission or equivalent data protection mechanisms to ensure adequate data protection.
8. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required by law. Retention periods vary by data type:
– Account and Transaction Data: Retained for a minimum of 7 years for tax and audit purposes.
– Usage and Technical Data: Retained for up to 24 months.
– Communication Data: Retained for up to 36 months for reference and dispute resolution.
– Marketing Preferences: Retained until revoked or adjusted by the user.
9. Our Cookie Policy
Cookies are small data files placed on your device. We use cookies and similar technologies to enhance our Website’s functionality and analytics:
– Essential Cookies: Required for core site functionality such as login, cart, and checkout.
– Functional Cookies: Remember preferences and improve your user experience.
– Analytics Cookies: Collect aggregated data on Website usage to monitor and improve performance.
– Performance Cookies: Allow analysis of user behavior to enhance site speed and responsiveness.
10. Cookie Management & Legal Compliance (GDPR & CCPA)
Users are provided with transparent options to accept or reject specific cookie categories via a cookie consent banner. Under GDPR, you have the right to withdraw cookie consent at any time. Under CCPA, California residents may opt out of the “sale” or “sharing” of personal information gathered through cookies.
To manage cookies, you may adjust your browser settings or use our cookie management tools available on the Website.
11. Children’s Privacy
Hearth Vibes Home does not knowingly collect or solicit personal data from individuals under the age of 13. If we learn that we have inadvertently collected personal information from a child, we will delete such information promptly. Parents or guardians with concerns may contact us at [email protected].
12. Policy Updates
We reserve the right to update this Privacy Policy to reflect changes in our practices or applicable legal requirements. You are encouraged to review this Policy periodically. Any material updates affecting your rights will be communicated via prominent notice on hearthvibeshome.com or direct communication, where appropriate.
13. Contact Us
For inquiries, concerns, or to exercise any of your data protection rights, you may contact us at:
Email: [email protected]
Postal Addresses or phone numbers are not required but may be provided upon request for identity verification or additional support.
We are committed to privacy compliance and safeguarding the personal data of all our users. If you have any questions regarding this Policy or our data practices, do not hesitate to reach out to us.