Privacy Policy
1. Introduction
At bettysheinbaum.com (“we,” “our,” or “us”), we are fully committed to respecting and protecting your personal data and privacy. In delivering our services and content, including through our website and communications, we ensure that your personal data is handled in accordance with applicable privacy laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”) as amended by the California Privacy Rights Act (“CPRA”). This Privacy Policy outlines the information we collect, how we use it, the rights you have, and the ways in which we safeguard your information.
2. Scope of Policy and Data Controller Role
This Policy applies to all visitors, users, and others who access bettysheinbaum.com (the “Website”). As the data controller, bettysheinbaum.com is responsible for determining the purposes and means of the processing of personal data. If you reside in the European Economic Area (EEA) or California, your data rights are further protected under applicable regional laws, and we process your data in compliance with these regulations.
3. Categories of Data Processed
We may process the following categories of personal data:
a. Usage Data
Includes information about your interaction with the Website such as IP address, browser type, device information, internet service provider (ISP), referring/exit pages, date and time of visit, and session duration.
b. Account Data
Includes identifying information provided directly by you such as your full name, email address, postal address, and phone number when creating an account or placing an order.
c. Profile Data
Includes preferences, purchase history, feedback, and behavioral patterns on the Website (e.g., product interest, viewing history, content interacted with).
d. Communication Data
Includes emails and messages submitted to our support team or through contact forms, customer service records, interaction logs, and communication preferences.
e. Technical Data
Includes device information such as operating system version, browser settings, screen resolution, device identifiers, plug-ins, and related system configurations.
f. Transaction Data
Includes billing information, payment methods, delivery details, order history, and transaction records to fulfill our contractual obligations.
g. Preference Data
Includes marketing consents, communication preferences, and product or service interests based on your interactions with our website or in response to surveys.
4. Legal Bases for Processing
We process personal data under the following lawful bases, where applicable:
– Consent: When you have given explicit and informed permission for a particular processing activity, such as for receiving marketing communications.
– Performance of a Contract: When your data is necessary to fulfill a service agreement or transaction.
– Legal Obligation: When processing is required to comply with laws or regulations.
– Legitimate Interest: When it is necessary for our legitimate business interests, except where overridden by your data protection rights, including security, fraud prevention, and internal analytics.
5. Your Rights
Subject to applicable data protection laws, you have the following rights:
– Right of Access: You may request to access your personal data that we hold.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): You may request that we erase your personal data under certain circumstances.
– Right to Restrict Processing: You have the right to restrict or suspend processing of your data.
– Right to Data Portability: You may request that your personal data be sent to you or another controller in a structured, commonly used format.
– Right to Object: You may object to processing based on our legitimate interests or direct marketing.
– Right to Non-Discrimination (under CCPA): You will not receive discriminatory treatment for exercising any of your rights.
To exercise any of your rights, please contact us at [email protected].
6. Security Measures
We implement robust organizational and technical security measures to protect your data, including but not limited to:
– End-to-end encryption of sensitive data in transit and at rest
– Role-based access controls and multi-factor authentication for authorized staff
– Firewall and intrusion detection systems to prevent unauthorized access
– Regular data backups and disaster recovery protocols
– Staff training in data protection and cybersecurity practices
While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
7. International Transfers
Your personal data may be processed outside of your jurisdiction, including in countries that may not offer the same level of protection as your local laws. Where required by law (e.g. GDPR), we ensure data is transferred using appropriate safeguards, including Standard Contractual Clauses approved by the European Commission or other legally recognized mechanisms.
8. Data Retention
We retain personal data only for as long as is necessary to fulfill the purpose for which it was collected, including for satisfying any legal, accounting, or reporting obligations. Specific retention periods include:
– Account Data: Maintained while your account remains active
– Transaction Data: Retained for up to seven (7) years for tax and legal compliance
– Communication Data: Retained for one (1) year after last contact
– Technical and Usage Data: Retained for a rolling period of twelve (12) months for analytics and security purposes
Once data is no longer required, it is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience on bettysheinbaum.com. Cookies help us improve website functionality, remember your preferences, and analyze web traffic.
Types of cookies used:
– Essential Cookies: Required for website operations and security
– Functional Cookies: Enable website customization and remember your settings
– Analytics Cookies: Help us understand how visitors interact with the Website
– Performance Cookies: Monitor the performance and user experience of the site
10. Cookie Management & Compliance
In accordance with GDPR and CCPA, you are given the option to manage and revoke your cookie preferences through a cookie consent banner and settings panel provided on the Website. You may also modify your browser settings to refuse or delete cookies. However, some essential functions of the Website may not operate correctly without cookies.
To exercise California-specific rights regarding the use of cookies for sale or sharing of data, or to opt-out of “Sale” as defined under CCPA, please use our cookie preference tool or send a request to [email protected].
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If we learn that we have collected personal information from a child without verified parental consent, we will delete that information as quickly as possible. If you believe we might have collected such data, please contact us at [email protected].
12. Policy Updates
We may update or modify this Privacy Policy from time to time to reflect changes to our practices, technologies, legal obligations, or for other operational reasons. Notice of any material changes will be communicated through a prominent notice on the Website or via email when applicable. Continued use of the Website following such changes constitutes your acknowledgment of the modified policy.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Email: [email protected]
We are committed to resolving privacy-related concerns quickly and transparently. For any issue not satisfactorily addressed, you also have the right to lodge a complaint with your local data protection authority where applicable.
This Privacy Policy is maintained in alignment with GDPR, CCPA, and other relevant privacy standards. For any questions regarding compliance, please reach out to us at the email above.
