Privacy Policy for oliverscorfecastle.com

This Privacy Policy explains how oliverscorfecastle.com (“we,” “our,” or “us”) collects, uses, discloses, and safeguards your personal data when you visit or interact with our website. We are committed to upholding the highest standards of privacy, transparency, and data protection in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable laws. We respect your privacy and are dedicated to protecting your personal information with integrity and diligence.

1. Introduction

At oliverscorfecastle.com, your privacy is a top priority. We understand the importance of trust in our digital interactions, and we implement comprehensive safeguards to protect your personal data. This Privacy Policy sets forth our practices regarding the collection, processing, use, and sharing of your data, and how you may exercise your rights.

2. Scope and Data Controller

This Privacy Policy applies to all users of oliverscorfecastle.com, including visitors, account holders, customers, and individuals who communicate with us via our website or email. Oliverscorfecastle.com acts as the Data Controller under applicable data protection law, determining the purposes and means by which your personal data is processed.

If you have any concerns or inquiries regarding your personal data, please contact us at [email protected].

3. Categories of Personal Data We Process

We may process the following categories of personal data depending on your interactions with the website:

a) Usage Data
Includes information about how you use our website, such as your IP address, browser type, device identifiers, access times, page views, referral URLs, and session length.

b) Account Data
Includes identifying information you provide when registering or making a purchase, such as full name, billing and/or shipping address, email address, and telephone number.

c) Profile Data
Includes preferences, purchase history, interests, user behavior, and activity logs established through interactions with services provided on oliverscorfecastle.com.

d) Communication Data
Includes information gathered through your communications with us, including support inquiries, complaints, feedback, service histories, and records of email or form correspondence.

e) Technical Data
Includes data about the devices and systems you use to access our website, including operating system, browser settings, screen resolution, and hardware specifications.

f) Transaction Data
Includes data related to orders placed via our site, including payment method details (processed securely via third-party gateways), order contents, fulfillment status, and invoicing data.

g) Preference Data
Includes your choices regarding marketing communications, areas of interest, promotional participation, and customer satisfaction survey responses.

4. Legal Bases for Processing

We process personal data in accordance with the following lawful bases as defined under GDPR and reflected in other jurisdictional laws:

– Consent: Where you have explicitly granted permission, particularly for the receipt of marketing communications or cookies that are not strictly necessary.
– Contractual Necessity: To fulfill purchases or respond to inquiries made through the website.
– Legitimate Interests: To improve website performance, personalize content, prevent fraud, and ensure security, provided such interests are not overridden by your data protection rights.
– Legal Obligation: Where necessary to comply with legal or regulatory requirements.

5. Your Rights Under Data Protection Laws

As a data subject, you have the following rights under applicable laws, including the GDPR and, where applicable, the CCPA:

– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete personal data.
– Right to Erasure: In certain circumstances, you may request deletion of your personal data.
– Right to Restrict Processing: You may request limitations on how your data is processed.
– Right to Data Portability: You have the right to receive your personal data in a machine-readable format and request its transfer to another controller.
– Right to Object: You may object to processing based on our legitimate interests or for direct marketing.
– Right Not to Be Subject to Automated Decision-Making: We do not use automatic profiling that significantly affects your legal rights or freedoms.

To exercise any of these rights, please contact [email protected]. We will handle your request in compliance with all applicable laws.

6. Security Measures

We employ organizational and technical safeguards designed to protect your personal data. These measures include but are not limited to:

– Secure Sockets Layer (SSL) encryption for data in transit
– Access controls and authentication for system access
– Routine security audits and vulnerability assessments
– Encrypted data storage and regular backups
– Staff training on data protection and incident response protocols

7. International Data Transfers

Your data may be transferred to and processed in countries outside of your jurisdiction, including countries that may not provide the same level of data protection. Where applicable, we implement Standard Contractual Clauses or other lawful transfer mechanisms to ensure the protection of your data when transferred internationally.

8. Data Retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy or as required by law. Retention periods vary based on the nature of the data:

– Usage Data: up to 12 months
– Account Data: retained while your account remains active and up to 6 years to comply with legal obligations
– Transaction Data: retained for up to 7 years for tax and accounting purposes
– Communication Data: retained up to 3 years after last contact
– Preference Data: retained until revoked or updated

Upon expiration of applicable retention periods, data is securely deleted or anonymized.

9. Cookie Policy

Our website uses cookies to enhance user experience and ensure proper functionality. Cookies fall into the following categories:

– Essential Cookies: Necessary for core website functions such as security, shopping cart, and session maintenance.
– Functional Cookies: Help personalize the site experience (e.g., language or region).
– Analytics Cookies: Collect aggregated user behavior data for statistical purposes.
– Performance Cookies: Monitor service uptime, responsiveness, and load issues.

10. Cookie Management and Compliance

You may manage or disable cookies via your browser settings or our website’s cookie consent tool. Use of non-essential cookies is based on your consent and compliant with GDPR and CCPA.

We honor Do Not Track (DNT) signals and allow California residents to opt-out of “sale” of personal data, consistent with CCPA definitions.

11. Children’s Privacy

We do not knowingly collect personal data from children under the age of 13. If we become aware that such data has been collected, we will promptly delete it. Parents or guardians who believe their child has provided personal information may contact us at [email protected] for immediate assistance.

12. Policy Updates

We reserve the right to update or modify this Privacy Policy at any time. Material changes will be communicated via notifications on our website or through your registered communication methods, where applicable. Continued use of oliverscorfecastle.com after updates constitutes acceptance of the revised Privacy Policy.

13. Contact

For questions, data access requests, or concerns regarding your privacy or this Privacy Policy, please contact us at:

Email: [email protected]

We are committed to maintaining full compliance with applicable data protection laws and invite you to reach out with any privacy-related inquiries you may have.