Privacy Policy for fourseassons.com
1. Introduction
At fourseassons.com (“we,” “our,” “us”), we are firmly committed to protecting the privacy, confidentiality, and security of your personal information. We uphold the highest standards of data protection in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use our website and related services.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use the services provided through fourseassons.com (the “Site”). For the purposes of applicable data protection legislation, including the GDPR, we act as the “data controller” for all personal data collected through the Site. Should you have any questions about how your data is handled, you may contact us at [email protected].
3. Categories of Personal Data Processed
We may collect, store, and process the following categories of personal data:
– Usage Data: Includes information about how you interact with our Site, such as IP address, browser type and version, pages visited, time and date of access, session duration, and referring websites.
– Account Data: Includes identifying information provided when you register or transact on our Site, such as full name, residential address, email address, and phone number.
– Profile Data: Includes your product preferences, purchase history, frequency and nature of site use, and behavioral trends related to browsing and transactions.
– Communication Data: Includes records of your interactions with our customer support team, submitted inquiries, feedback, and history of communications.
– Technical Data: Includes data about your device, operating system, screen resolution, language preferences, system configurations, and internet connection settings.
– Transaction Data: Includes details related to purchases made on our Site, payment methods used, billing and shipping addresses, and order fulfillment data.
– Preference Data: Includes information you provide regarding marketing preferences, product and content interests, and consent to receive newsletters or promotional materials.
4. Legal Bases for Processing
We process your personal data under different legal bases, depending on the purpose:
– Consent: Where legally required, we process your data based on your freely given, specific, informed, and unambiguous consent (e.g., for marketing communications or analytics cookies).
– Performance of Contract: Certain data is necessary to fulfill a contract with you, such as completing and delivering your orders or managing your account.
– Legitimate Interests: We may process your data to pursue our legitimate interests, including to improve our services, maintain network security, conduct analytics, and personalize content—provided such interests are not overridden by your fundamental data rights.
– Legal Obligations: When required to comply with legal or regulatory obligations, such as tax, reporting, and fraud prevention measures.
5. Your Rights
As a data subject under GDPR and CCPA, you have the following rights:
– Right of Access: You have the right to request a copy of the personal data we hold about you.
– Right to Rectification: You can request correction of inaccurate or incomplete data.
– Right to Erasure (“Right to Be Forgotten”): You may request deletion of your data in certain circumstances.
– Right to Restrict Processing: You may ask us to temporarily halt the processing of your data.
– Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format, and/or have it transmitted to another controller.
– Right to Object: Where processing is based on legitimate interest or direct marketing, you have the right to object at any time.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational measures to protect your data, including:
– Encryption of data in transit and at rest.
– Role-based access controls and authorization systems.
– Secure data storage and backup mechanisms.
– Regular security audits and vulnerability assessments.
– Employee training on data protection and secure handling practices.
7. International Transfers
Your personal data may be transferred and processed outside of your jurisdiction, including in countries not deemed to provide adequate data protection. Where such transfers occur, we rely on approved Standard Contractual Clauses or implement equivalent safeguards in line with GDPR and other international standards.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
– Usage and Technical Data: Up to 12 months.
– Account, Profile, and Transaction Data: Retained for a minimum of 6 years after final interaction for legal and contractual obligations.
– Communication and Preference Data: Retained for up to 3 years following final interaction or until consent is withdrawn.
Data may be anonymized or securely deleted upon expiration of retention periods.
9. Cookie Policy
The Site uses cookies and similar technologies to enhance your browsing experience. Cookies may include:
– Essential Cookies: Required for the operation of the Site (e.g., session cookies).
– Functional Cookies: Enable personalization features and site preferences.
– Analytics Cookies: Help us understand user engagement and improve performance.
– Performance Cookies: Monitor site responsiveness, bug detection, and optimization.
10. Cookie Management and Compliance
Users are provided with clear options to control cookie preferences upon visiting fourseassons.com. You may accept or decline non-essential cookies using our consent management system and further configure your browser settings to manage cookies. Under GDPR and CCPA, non-essential cookies are only set with user consent.
11. Protection of Children’s Data
Our Site is not intended for individuals under the age of 13. We do not knowingly collect personal data from children without verified parental or guardian consent. If we become aware that a child has provided us with data, we will take steps to delete such information promptly.
12. Updates to This Policy
We may review and update this Privacy Policy from time to time to reflect changes in legal obligations, technology, or our data practices. Substantive changes will be communicated through appropriate channels, and continued use of the Site constitutes acceptance of the revised policy.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us at:
Email: [email protected]
We are committed to resolving privacy concerns in a timely and transparent manner. Our adherence to privacy laws such as GDPR and CCPA reflects our dedication to responsible data stewardship and user empowerment.