Privacy Policy
1. Introduction
Darling Starling Gifts (“we,” “us,” or “our”) is committed to protecting your privacy and safeguarding your personal data in compliance with applicable privacy laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”). This Privacy Policy explains how we collect, use, store, and protect your personal data when you interact with us through our website, darlingstarlinggifts.com.
We are dedicated to maintaining the confidentiality, integrity, and security of your information and to ensuring transparency in how your data is handled. By using our services or visiting our website, you agree to the terms set forth in this Privacy Policy.
2. Scope and Role as Data Controller
This Privacy Policy applies to all users of darlingstarlinggifts.com, including customers, visitors, and service users located both within and outside of the European Economic Area (EEA) and the United States.
For the purposes of GDPR, we are the “data controller” of your personal data, which means we determine the purposes and means of the processing of such data. If you have any questions or concerns regarding this policy or your personal data, you may contact us at [email protected].
This policy does not apply to third parties we do not own or control.
3. Categories of Personal Data We Process
We process the following categories of personal information collected directly from you or automatically through your use of darlingstarlinggifts.com:
a. Usage Data
Information about how you interact with our website, including IP addresses, browser types, operating systems, referring URLs, access times, pages viewed, and session duration.
b. Account Data
Information you provide when registering or placing an order, such as your full name, billing and shipping address, email address, and phone number.
c. Profile Data
Details related to your preferences, browsing behavior, shopping history, wish lists, and product interests.
d. Communication Data
Records of your communications with us, including email correspondence, chat transcripts, query submissions, customer support inquiries, and message history.
e. Technical Data
Data about the devices you use to access our website, such as hardware model, operating system version, unique device identifiers, language settings, and browser configurations.
f. Transaction Data
Details about your purchases, including payment card details (collected and processed securely by third-party payment processors), shipping information, transaction dates, order history, and order status.
g. Preference Data
Information regarding your communication preferences, such as email marketing consent, cookie preferences, and product categories of interest.
4. Legal Bases for Processing Your Data
We process your personal data only when legally permitted to do so under the following legal bases, as outlined under the GDPR:
– Consent: Where you have given clear and informed consent, such as subscribing to marketing communications.
– Contract: When processing is necessary to perform or enter into a contract, such as fulfilling orders or responding to service requests.
– Legal Obligation: When required to comply with a legal obligation, including tax or accounting requirements.
– Legitimate Interests: For purposes such as improving our website experience, preventing fraud, conducting marketing consistent with your preferences, and ensuring business operations, provided these interests do not override your fundamental rights and freedoms.
For California residents, we comply with the CCPA, which allows the collection and use of data under similar lawful bases, including with appropriate notice and the right to opt out.
5. Your Rights
Under GDPR and CCPA, you have the following rights concerning your personal information:
a. Right of Access
You have the right to request access to the personal data we hold about you.
b. Right to Rectification
You may request correction of your data if it is incomplete or inaccurate.
c. Right to Erasure
You may ask us to delete your personal data, subject to certain legal obligations.
d. Right to Restrict Processing
You can limit the way we process your data under certain conditions.
e. Right to Data Portability
You can request a copy of your information in a structured, machine-readable format and transfer it to another provider.
f. Right to Object
You can object to the processing of your data where we rely on legitimate interests or perform profiling.
g. Right to Opt-Out (CCPA)
California residents can opt out of the “sale” of personal information.
To exercise these rights, please contact us at [email protected]. We may require you to verify your identity before processing your request.
6. Data Security Measures
We utilize a variety of technical and organizational security measures to safeguard your personal data, including but not limited to:
– Secure Socket Layer (SSL) encryption of data transmitted to and from the website.
– User authentication systems and role-based access controls to limit internal access to personal data.
– Regular system and software updates and vulnerability scanning.
– Regular backups and redundancy systems to ensure business continuity and data recovery.
– Staff training and awareness programs on data protection and secure data handling practices.
7. International Data Transfers
If you are located outside the United States, your data may be transferred to and processed in jurisdictions outside your country of residence, including the United States. Where personal data is transferred from the European Economic Area to countries that do not provide an adequate level of protection, we use Standard Contractual Clauses approved by the European Commission or other lawful transfer mechanisms to ensure your privacy rights are adequately protected.
8. Data Retention
We retain personal data only as long as it is necessary to fulfill the purposes for which it was collected. Retention periods are assessed based on the following criteria:
– Usage, Account, and Profile Data: Retained for up to 24 months from last interaction, unless voluntarily deleted earlier.
– Transaction and Billing Data: Retained for at least 7 years to comply with accounting and tax regulations.
– Communication and Support Data: Retained for up to 36 months to manage support lifecycle effectively.
– Preferences and Marketing Data: Retained until you opt out or withdraw consent.
When data is no longer required or upon request, it is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your user experience on darlingstarlinggifts.com. Cookies are small files stored on your device’s browser that help us recognize repeat visitors, track usage patterns, and deliver personalized content. The types of cookies we use include:
– Essential Cookies: Necessary for basic site functionality, such as account login and shopping cart management.
– Functional Cookies: Help personalize settings and remember preferences.
– Analytics Cookies: Allow us to understand website traffic and usage through services like Google Analytics.
– Performance Cookies: Optimize site speed and functionality, tracking performance metrics.
10. Cookie Management and Compliance
Upon first visit, you will be presented with a cookie consent banner in accordance with GDPR and CCPA requirements. You have the right to accept or reject non-essential cookies. Consent preferences can be modified at any time in your browser settings or through our Cookie Settings interface available on the website.
California residents may exercise their cookie rights as part of their Do Not Sell My Personal Information rights. We honor Global Privacy Control (“GPC”) signals where supported.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If we learn that we have collected personal information from a child under 13 without verified parental consent, we will promptly delete such information. If you believe we have collected such data, please contact us immediately at [email protected].
12. Policy Updates
We reserve the right to amend this Privacy Policy at any time to reflect changes in our practices, applicable laws, or regulatory requirements. Any changes to this policy will be posted on this page. We encourage you to review this policy periodically to remain informed of how your data is protected.
Material changes that significantly affect your rights will be communicated where appropriate.
13. Contact Information
If you have questions or concerns about this Privacy Policy or your personal data, or you wish to exercise your data protection rights, please contact us at:
Email: [email protected]
Website: https://darlingstarlinggifts.com
We are committed to maintaining your privacy and ensuring your rights are respected. Please do not hesitate to reach out with any data protection inquiries or concerns.