Father's Day Fun
0

Privacy policy for Father's Day Fun

This Privacy Policy explains how Father's Day Fun ("we", "us", or "our") collects, uses, and protects personal data through our website. It complies with the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA), and the California Consumer Privacy Act (CCPA) for residents of California.

1. Personal Data Collected

1.1 Log Data

  • We collect IP address, browser type, access time, referring URLs.
  • Purpose: Ensure technical delivery, analyze usage, detect fraud, and maintain security.

1.2 Cookies and Tracking Technologies

  • Types: Session, Persistent, Third-party (e.g. Google, Facebook).
  • Purpose: Save preferences, analytics, remarketing, and personalized experiences.
  • Legal Basis: Consent (GDPR Art. 6.1.a), Legitimate Interest (GDPR Art. 6.1.f).
  • Opt-out: Via browser settings or "Cookie Settings" banner.

2. Orders and User Accounts

2.1 Data We Collect

  • Name, address, email, phone, payment details, order history.
  • Purpose: Fulfilling contracts, customer service, legal and tax compliance.
  • Legal Basis: Contractual necessity (GDPR Art. 6.1.b), Legal obligation (GDPR Art. 6.1.c).

2.2 Third-Party Processors

  • Fulfillment: UPS, USPS, DHL, local carriers.
  • Payments: PayPal (see their privacy policy).
  • Address accuracy: Google Maps Autocomplete.

2.3 Reviews and Feedback

  • Platforms: Mailchimp, TrustPilot, Google Customer Reviews.
  • Shared Data: Name, email, order details.
  • Legal Basis: Legitimate interest (GDPR Art. 6.1.f), Consent if applicable.
  • Opt-out: Unsubscribe links or contact us.

3. Customer Communication

3.1 Contact Channels

  • Email, contact forms, social media, live chat.
  • Tools: Zendesk (email/chat), Hootsuite (social media).
  • Purpose: Responding to inquiries and support.
  • Legal Basis: Contractual necessity or consent.

4. Web Analytics

4.1 Google Analytics

  • Collects anonymized behavioral data.
  • IP anonymization enabled.
  • Opt-out: Google opt-out

4.2 Hotjar

  • Tracks mouse movement, click patterns (no keystroke capture).
  • Data anonymized and stored for 365 days.
  • Opt-out: Hotjar Do Not Track

5. Email Marketing and Recommendations

5.1 Newsletters

  • Provider: Mailchimp.
  • Consent required (double opt-in).
  • Data Tracked: Opens, clicks, device type.
  • Legal Basis: Consent (GDPR Art. 6.1.a).
  • Opt-out: Unsubscribe at any time.

5.2 Product Recommendations

  • Based on purchase history.
  • Legal Basis: Legitimate interest (GDPR Art. 6.1.f).
  • Opt-out: Email footer or account settings.

6. Online Advertising & Tracking Tools

We use cookies and pixels from:

  • Google Ads & Remarketing
  • Meta (Facebook Pixel, Custom Audiences)
  • Pinterest Tag
  • Microsoft Bing Ads

Purpose: Ad performance, retargeting. Legal Basis: Consent (GDPR), Legitimate Interest (CCPA). Opt-out: Browser settings or provider-specific opt-out tools.

7. Your Rights (GDPR & CCPA)

You may:

  • Access your data
  • Request correction or deletion
  • Withdraw consent
  • Object to processing
  • Request data portability (GDPR)
  • File complaints with your data protection authority

CCPA Rights (California residents):

  • Right to know, delete, opt-out of data sale
  • Submit requests via [email protected] or the “Do Not Sell My Info” link

Verification: We may require ID or account verification.

8. Data Sharing

  • Only with trusted service providers under Data Processing Agreements.
  • For order fulfillment, marketing, analytics, customer support.
  • Legal Disclosures: Required by law or legal process.
  • Aggregated/anonymized data may be used for business insights.

9. Data Security

  • SSL/TLS encryption
  • Access control, monitoring, employee training
  • No method is 100% secure. You are responsible for safeguarding your login credentials.

10. Do Not Track (DNT)

We do not respond to browser DNT signals due to lack of standardized protocols.

11. Children’s Privacy

  • We do not knowingly collect data from children under 13.
  • If discovered, data will be deleted immediately.

12. Data Retention

  • We retain personal data only as long as necessary for processing, legal, or contractual purposes.
  • Example: Order data retained for 10 years for tax compliance.

13. International Transfers

  • Data may be transferred outside your country (e.g., to the U.S.).
  • Safeguards include Standard Contractual Clauses (SCCs) and DPA agreements.

14. Contact

Father's Day Fun Email: [email protected] Address: 11 Douglas Ave Suite 253, Elgin, IL 60120, United States