Privacy Policy for christanburran.com
1. Introduction
At christanburran.com (“we,” “our,” or “us”), we are committed to safeguarding your privacy and ensuring the highest level of protection for your personal data. We understand that the confidentiality and security of your personal information is of paramount importance, and we are dedicated to processing all personal data in accordance with applicable data protection and privacy laws, including but not limited to the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
This Privacy Policy outlines how we collect, use, disclose, and safeguard your data when you interact with our website and services. By using christanburran.com, you acknowledge that you have read and understood this policy and agree to our data practices as detailed herein.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users and visitors of christanburran.com. It governs the collection, use, and disclosure of personal data obtained through our website, customer support, and other digital interactions.
christanburran.com is the data controller responsible for processing your personal data under applicable privacy laws. If you have any questions regarding this Privacy Policy or your personal information, please contact us at [email protected].
3. Categories of Data Processed
We may collect and process various types of personal data, including but not limited to:
a. Usage Data
Information automatically collected when you interact with our website, including IP address, browser type, internet service provider, referring/exit pages, date/time stamps, device identifiers, session data, and website navigation behavior.
b. Account Data
Details you provide when you register for an account or place an order, such as full name, billing and shipping addresses, email address, and phone number.
c. Profile Data
Information about your preferences, purchase history, account settings, review activity, and user behavior gathered through your interactions with christanburran.com.
d. Communication Data
Records and contents of your correspondence with us, including support inquiries, contact forms, and email communications.
e. Technical Data
Details about your hardware, software, and device configurations such as operating system, screen resolution, language preferences, and browser settings.
f. Transaction Data
Information associated with payments or order fulfillment, including payment method, billing details, transaction ID, and delivery information.
g. Preference Data
Data reflecting your consent choices, such as preferences for marketing communications, opt-in/opt-out status, and areas of interest related to our products and services.
4. Legal Bases for Processing
We rely on the following legal bases to process your personal data lawfully:
– Contractual necessity: Processing required to fulfill contractual obligations, such as delivering goods or managing your account.
– Legitimate interests: Processing necessary for internal business purposes including security, fraud prevention, and site optimization, provided your rights do not override these interests.
– Consent: Where we rely on your explicit consent for specific processing activities, such as sending marketing communications.
– Legal obligations: Processing required to comply with applicable statutory or regulatory duties.
5. Your Rights Under Applicable Law
In accordance with GDPR and CCPA, you are entitled to the following rights regarding your personal data:
a. Right of Access – You have the right to obtain confirmation as to whether or not your data is being processed and to access the personal data we hold about you.
b. Right to Rectification – You may request the correction of any inaccurate or incomplete data concerning you.
c. Right to Erasure – You can request the deletion of your data where there is no lawful reason for us to continue processing it.
d. Right to Restriction – You may request the restriction of processing under specific circumstances.
e. Right to Data Portability – You have the right to receive your data in a structured, commonly used, and machine-readable format, and to transmit that data to another data controller.
f. Right to Withdraw Consent – Where processing is based on consent, you may withdraw your consent at any time without affecting the legality of prior processing.
g. Right to Object – You may object to processing for direct marketing or where processing is based on our legitimate interests.
To exercise any of the above rights or to learn more, please contact us at [email protected].
6. Security Measures
We implement robust and industry-standard safeguards to ensure the confidentiality, integrity, and availability of your personal information. Our measures include:
– Data encryption (at rest and in transit)
– Secure access controls with role-based permissioning
– Regular data backups and disaster recovery protocols
– Staff privacy training and access auditing
We regularly review and update our security controls to maintain an appropriate level of protection.
7. International Data Transfers
If your data is transferred to countries outside the European Economic Area or California that may not offer equivalent data protection, we ensure that such transfers are conducted in compliance with applicable laws and use appropriate safeguards, including Standard Contractual Clauses approved by the European Commission and other legally recognized mechanisms.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including to comply with legal, accounting, or reporting requirements. In general:
– Account Data is retained as long as your account is active and up to 6 years thereafter.
– Transaction Data is retained for tax and regulatory purposes for up to 7 years.
– Communication and Support Data is retained for a minimum of 3 years after resolution.
– Cookie and Tracking Data is retained according to our cookie lifetimes and user preferences.
Where data is no longer needed, it is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance user experience, analyze performance, provide essential functions, and serve targeted content. Cookies may be categorized as:
a. Essential Cookies – Required for the operation of the site, including login and navigation.
b. Functional Cookies – Enable enhanced functionality and personalization, such as saving preferences.
c. Analytics Cookies – Collect information about how visitors use the site to improve quality and performance.
d. Performance Cookies – Monitor system performance and detect errors or bottlenecks.
For more information on how we use cookies and to view a detailed cookie list, please refer to our Cookie Notice available via the cookie banner on christanburran.com.
10. Cookie Management and Compliance with GDPR & CCPA
Upon your first visit, you will be presented with a cookie consent banner in compliance with GDPR and CCPA. You may accept, reject, or customize your cookie preferences at any time by visiting our Cookie Settings panel.
We honor Do Not Track browser signals and offer an opt-out mechanism where required under the CCPA.
11. Special Protections for Children
christanburran.com is not directed to children under the age of 13, and we do not knowingly collect personal data from individuals under this age. If we become aware that we have inadvertently collected information from a child without appropriate parental or guardian consent, we will take immediate steps to delete that information.
If you believe we may have collected such information, please contact us at [email protected].
12. Policy Updates and User Notifications
This Privacy Policy may be revised periodically to reflect changes in our practices, services, or legal requirements. Any significant changes to the policy will be communicated through the website interface or via email, where appropriate. We encourage you to review this policy periodically to remain informed about our data practices.
13. Contact Information
If you have any questions, concerns, or requests related to your personal data or this Privacy Policy, you may contact us at:
Email: [email protected]
We are committed to protecting your privacy and ensuring compliance with all relevant privacy regulations. Should you feel that your rights have been violated, you also have the right to lodge a complaint with your data protection authority.