Privacy Policy for PalomaHollywood.com
1. Introduction
At Paloma Hollywood, accessible via palomahollywood.com, we are committed to protecting your personal data and upholding your privacy rights with the highest standards of care and transparency. This Privacy Policy outlines how we collect, use, store, and protect your personal data when you visit our website, interact with our services, or contact us. We take our legal obligations under the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws with the utmost seriousness.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and customers of palomahollywood.com. The data controller responsible for your personal data is Paloma Hollywood. If you have any questions about this policy or how your data is handled, you may contact us at [email protected].
As the data controller, we determine the purposes and methods by which your personal data is collected, used, and safeguarded in accordance with relevant data protection frameworks.
3. Categories of Data We Process
We may collect, use, and store the following categories of personal data when you interact with palomahollywood.com:
a. Usage Data:
Information including your browser type, IP address, device identifiers, session details, referral sources, time zone settings, and site navigation patterns.
b. Account Data:
Details provided when creating an account or making a purchase, such as your name, email address, mailing address, and contact number.
c. Profile Data:
Preferences, behavioral insights, purchase history, and interactions on our website, including wish lists, shopping behaviors, and content engagement.
d. Communication Data:
Records of your correspondence with us, including customer service inquiries, support tickets, feedback, or messages sent through our contact forms or via email.
e. Technical Data:
Device type, operating system, browser settings, language preferences, diagnostics, and other configurations gathered through our systems or analytics tools.
f. Transaction Data:
Details of payments made, order confirmations, billing information, and shipping details collected during the course of a sale or service fulfillment.
g. Preference Data:
Information about your marketing preferences, selected communication channels, newsletter subscriptions, and stated product or content interests.
4. Legal Bases for Processing
We rely on the following legal grounds under the GDPR and CCPA for processing your personal data:
– Legitimate Interests: For purposes such as website optimization, security monitoring, and customer relationship management.
– Contractual Necessity: Processing that is required to fulfill sales transactions or deliver a service you have requested.
– Consent: When you subscribe to newsletters, opt-in to marketing communications, or accept cookies (other than strictly necessary ones).
– Legal Obligations: To comply with applicable legislation, such as tax, regulatory reporting, and consumer rights protections.
5. Your Rights
Under GDPR and CCPA, you are entitled to the following rights:
– Access: You may request access to personal data we hold about you.
– Rectification: You have the right to request that inaccurate or incomplete data be corrected.
– Erasure: You may request the deletion of your personal data, subject to legal retention obligations.
– Restriction: You may request the temporary suspension of data processing under certain conditions.
– Portability: You may receive your data in a structured, machine-readable format and request that we transfer it to another service provider.
To exercise any of these rights, please contact us at [email protected]. We will respond to verified requests in line with applicable laws.
6. Security Measures
We implement comprehensive security controls to protect your personal data from unauthorized access, alteration, disclosure, and destruction. These measures include:
– End-to-end encryption in data transit and at rest.
– Role-based access limits and authentication protocols.
– Regular system backups and data integrity checks.
– Employee confidentiality training and privacy awareness programs.
7. International Transfers
If your personal data is transferred outside your jurisdiction (for example, to third-party processors or service providers located outside the EEA or California), we use approved mechanisms such as Standard Contractual Clauses (SCCs), Privacy Shield participation, or other safeguards recognized under GDPR and CCPA to ensure your data is afforded equivalent protection.
8. Data Retention
We will retain your personal data only for as long as necessary for the purposes for which it was collected, including:
– Usage Data: Stored for up to 24 months for analytics purposes.
– Account Data: Retained as long as the account remains active or as required by tax and regulatory obligations.
– Profile Data: Retained for up to 36 months of inactivity, or until you withdraw your consent.
– Communication Data: Retained for a period of 18 months post-resolution for quality assurance.
– Technical Data: Retained for up to 12 months.
– Transaction Data: Kept for a minimum of 7 years for financial audit compliance.
– Preference Data: Retained until you update your preferences or unsubscribe.
9. Cookie Policy
PalomaHollywood.com employs the use of cookies and tracking technologies to enhance your online experience. The categories include:
– Essential Cookies: Required to provide core functionalities such as security, session management, and navigation.
– Functional Cookies: Used to remember language settings, shopping preferences, and user-selected options.
– Analytics Cookies: Help us understand website usage patterns so we can improve performance and content.
– Performance Cookies: Monitor system responsiveness, load times, and troubleshoot issues.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, we inform users about cookie usage and provide options to control preferences. Upon your first visit to palomahollywood.com, you may accept, reject, or customize cookie settings. You can also manage cookie preferences in your browser settings or via our dedicated cookie management tool located on the site.
We do not sell or share your personal data for cross-context behavioral advertising under the CCPA definition, and we provide transparent opt-in and opt-out options.
11. Children’s Privacy
Our website and services are not intended for use by children under the age of 13. We do not knowingly collect or solicit personal data from anyone under the age of 13. If we learn that we have collected personal data from a child without appropriate consent, we will promptly delete the information. Parents or guardians who believe their child has submitted personal information may contact us at [email protected].
12. Policy Updates & User Notification
We may update this Privacy Policy to reflect changes to our practices, laws, or technological advancements. All changes will be posted on this page. You are encouraged to review this page periodically. Where required by law, we will notify you of significant changes and request your renewed consent if applicable.
13. Contact Information
If you have questions, concerns, or would like to exercise your rights under this Privacy Policy, please contact us via email at:
[email protected].
We are committed to maintaining full compliance with data protection laws and ensuring that your privacy remains safeguarded at all times. Your trust is of paramount importance to us.