Privacy Policy
1. Introduction
At lizziejackson.com, we are committed to protecting your privacy and ensuring the highest level of security for your personal data. This Privacy Policy outlines how we collect, use, share, and safeguard your personal information, in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We uphold a strong privacy-first approach to data handling and are dedicated to transparency, accountability, and the responsible use of your data.
2. Scope of This Policy and Data Controller Responsibilities
This Privacy Policy applies to personal data collected through or in relation to your use of lizziejackson.com (“the Website”). The data controller responsible for the processing of your personal data is Lizzie Jackson and her authorized team. All inquiries concerning this policy or our data practices should be directed to [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data:
– Usage Data
Information about how visitors interact with the Website, including IP address, browser type, pages visited, referring/exit URLs, time zone settings, and browsing behavior.
– Account Data
Personal identifiers you provide when creating or managing an account, including your name, physical address, email address, telephone number, and login credentials.
– Profile Data
Information related to preferences, interests, purchase history, behavioral analytics, and feedback, enabling us to tailor our offerings and user experiences.
– Communication Data
Records of all communications with us, including customer support inquiries, contact form submissions, and correspondence history.
– Technical Data
System diagnostics and device information, including type of device, operating system, device identifiers, browser configurations, and plug-ins.
– Transaction Data
Details related to purchases or orders placed, delivery details, billing address, method of payment, transaction identifiers, and receipt records.
– Preference Data
Information reflecting your preferences for marketing communications, event participation, and product interest categories.
4. Legal Bases for Processing Personal Data
We rely on one or more of the following legal bases to process your personal data:
– Consent: Where you have explicitly provided permissions (e.g. for marketing emails).
– Contractual Necessity: When processing is required to fulfill a contract with you (e.g. purchase of goods or services).
– Legal Obligation: Where data processing is necessary for us to comply with applicable laws.
– Legitimate Interest: For purposes such as improving services, preventing fraud, maintaining security, and supporting Website functionality, provided these interests do not override your fundamental rights.
5. Your Rights
You have the following rights regarding your personal data:
– Right of Access: To request access to the personal data we hold about you.
– Right to Rectification: To correct inaccurate or incomplete data.
– Right to Erasure: To request deletion of your personal data, subject to certain legal exceptions.
– Right to Restriction of Processing: To ask us to stop or limit the processing of your data.
– Right to Data Portability: To request the transfer of your data to another service provider in a structured, commonly used, machine-readable format.
– Right to Object: To object to processing based on legitimate interest or for direct marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement robust technical and organizational security measures to protect personal data against unauthorized access, loss, misuse, or disclosure. These measures include:
– End-to-end encryption during data transmission.
– Role-based access controls and authentication.
– Regular backups of critical systems and data.
– Internal training for staff on data protection principles.
7. International Data Transfers
Where it is necessary to transfer your personal data outside of the European Economic Area (EEA) or California, we ensure such transfers comply with data protection legislation by implementing appropriate safeguards, such as:
– Standard Contractual Clauses (SCCs) approved by the European Commission.
– Data transfer agreements ensuring equivalent protection.
– Compliance with region-specific regulations, including data localization standards where applicable.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes for which it was collected, unless a longer period is required or permitted by law. Specific retention periods include:
– Usage Data: Retained for 12 months for analytics purposes.
– Account Data: Retained for the duration of the user relationship and 6 years thereafter for legal and audit purposes.
– Profile Data: Retained until deletion request or account closure.
– Communication Data: Retained for 3 years for service improvement and customer service resolution.
– Transaction Data: Retained for 7 years for financial, legal, and tax obligations.
– Preference Data: Retained until consent is withdrawn.
9. Cookie Policy
We use cookies on lizziejackson.com to enhance your browsing experience and ensure proper Website functionality. Categories of cookies include:
– Essential Cookies: Required for core functionality (e.g., login sessions).
– Functional Cookies: To remember user settings and preferences.
– Analytics Cookies: To gather anonymized statistics for Website optimization.
– Performance Cookies: To measure and assess system performance and user behavior.
10. Cookie Management and Compliance with GDPR & CCPA
You may manage cookie preferences through your browser settings or by using our cookie consent management tool available on the Website. Under GDPR and CCPA:
– You have the right to opt-in or opt-out of non-essential cookies.
– We will not store non-essential cookies unless explicit consent has been given.
– California residents may designate an authorized agent to submit requests relating to personal data access or deletion.
For more details or to update your preferences, please refer to the Cookie Settings link available at the footer of the Website.
11. Children’s Privacy
lizziejackson.com does not knowingly collect or solicit personal data from children under the age of 13. If we learn that personal information has been collected from a child without parental consent, we will delete such data promptly. Parents or guardians who believe that we might have collected personal data from a child under 13 should contact us immediately at [email protected].
12. Changes to This Privacy Policy
We may update or amend this Privacy Policy from time to time to reflect changes in legal requirements, our data practices, or Website functionality. Any material changes will be communicated via notice on the Website or by direct communication where appropriate. Continued use of the Website after such changes constitutes acceptance of the revised policy.
13. Contact
If you have any questions about this Privacy Policy, your personal data, or your rights under applicable data protection laws, please contact us at:
Email: [email protected]
Website: https://lizziejackson.com
We are committed to full compliance with GDPR, CCPA, and applicable global privacy standards. If you have privacy concerns or wish to exercise your rights, please reach out to us at the contact address above.
