Privacy Policy for Side of Ginger
1. Introduction
At Side of Ginger (“we”, “our”, or “us”), accessible via sideofginger.com, we are committed to protecting your privacy and safeguarding your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you interact with our website, in full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We firmly adhere to a privacy-first philosophy and ensure that your data is handled responsibly and with transparency.
2. Scope of Policy and Role of Data Controller
This Privacy Policy applies to all visitors, users, and others who access sideofginger.com (“Website”). Side of Ginger acts as the Data Controller in relation to the personal data collected through the Website, meaning we determine the purposes and means of processing your personal information. If you have questions about how your data is handled, you may contact us at [email protected].
3. Categories of Data We Process
We collect and process various categories of personal data, as outlined below:
a. Usage Data
Includes data about how you use our Website, such as your IP address, browser type, referring/exit pages, time zone, device identifiers, operating system, page views, site navigation patterns, and session information.
b. Account Data
Comprises personal identifiers such as your full name, email address, phone number, billing and shipping addresses, and other information you provide when registering for an account or making a purchase.
c. Profile Data
Includes data such as your preferences, feedback, past purchases, items added to wish lists or carts, and behavioral patterns while using the Website.
d. Communication Data
Includes records and contents of communications with us, such as customer support requests, emails, and messages sent through our contact forms or chat interfaces.
e. Technical Data
Covers device information such as your device type, operating system, screen resolution, system configurations, app version data, and performance diagnostics.
f. Transaction Data
Includes payment information (processed securely through third-party processors), order confirmation details, product deliveries, and billing history.
g. Preference Data
Involves your consent choices, opt-in/opt-out settings for marketing communications, and stated or inferred product and content interests.
4. Legal Bases for Processing
We process your personal data under the following legal bases:
– Consent: Where you have given your explicit permission (e.g., subscribing to newsletters or accepting cookies not strictly necessary).
– Contractual Necessity: To fulfill our obligations to you, such as processing purchases or delivering services.
– Legitimate Interests: For purposes such as Website analytics, fraud prevention, service improvement, and ensuring IT security and operations.
– Legal Obligation: Where we are legally required to process your data, such as for tax or compliance purposes.
5. Your Data Protection Rights
You have the right to exercise, where applicable under GDPR and CCPA:
– Right of Access: Request a copy of the personal data we hold about you.
– Right to Rectification: Correct inaccuracies in your personal data.
– Right to Erasure (“Right to Be Forgotten”): Request deletion of your personal data, subject to certain legal exclusions.
– Right to Restriction: Ask us to suspend processing of your personal data in certain circumstances.
– Right to Data Portability: Receive your data in a structured, commonly used format for transfer to another provider.
– Right to Object: Object to processing carried out on the basis of our legitimate interests or direct marketing.
– Right to Non-Discrimination (under CCPA): You will not be discriminated against for exercising your data rights under California law.
To exercise any of these rights, please contact [email protected].
6. Security Measures
We employ robust technical and organizational measures to protect your personal data. These include:
– Industry-standard encryption protocols (TLS/SSL) for data transmission.
– Multi-level access controls to restrict employee access to sensitive data.
– Secure data storage and backup protocols.
– Regular staff training on privacy and data protection.
– Continuous monitoring and review of security systems.
While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure.
7. International Data Transfers
Data collected may be transferred and stored outside the European Economic Area (EEA). In such cases, we implement safeguards to ensure data protection, such as Standard Contractual Clauses approved by the European Commission, and ensure our third-party processors comply with equivalent regional privacy laws.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including legal, regulatory, tax, accounting, or reporting requirements. Retention periods include:
– Account Data: Retained for as long as your account remains active and for up to 6 years thereafter.
– Transaction Data: Retained for a minimum of 7 years for legal compliance.
– Communication Data: Retained for up to 2 years to improve support services.
– Technical and Usage Data: Anonymized and stored for up to 3 years for Website optimization and analytics.
– Cookie Data: Retained per cookie expiration settings (see Section 9).
We may anonymize data for statistical or research purposes in which case it may be retained indefinitely.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience on sideofginger.com. These fall into the following categories:
– Essential Cookies: Necessary for the core functionality of the Website (e.g., user login, shopping cart).
– Functional Cookies: Enhance usability (e.g., remembering settings, user preferences).
– Analytics Cookies: Help us understand user behavior and measure traffic (e.g., Google Analytics).
– Performance Cookies: Support website optimization and performance diagnostics.
You will be provided clear notice of our use of cookies and asked to give consent for non-essential cookies.
10. Cookie Management & Legal Compliance
Visitors can manage cookie preferences using the cookie management tool on our Website or by adjusting browser settings. Under GDPR and CCPA, you have the right to:
– Be informed about the types of cookies used.
– Provide or withdraw consent for specific categories.
– Request deletion of cookie data (see Your Rights section).
We honor “Do Not Track” signals and provide mechanisms to opt out of analytics and marketing cookies.
11. Children’s Privacy
Side of Ginger does not knowingly collect or solicit personal information from children under the age of 13. If we learn that we have inadvertently collected personal data from a child under 13, we will take immediate steps to delete such information. If you believe we may have collected such data, please contact us at [email protected].
12. Changes to This Privacy Policy
We reserve the right to amend or update this Privacy Policy from time to time. Significant changes affecting your rights will be communicated through notices on our Website or via your provided contact information. Continued use of sideofginger.com after such changes indicates your acceptance of the updated terms.
13. Contact Information
For questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Email: [email protected]
Website: https://sideofginger.com
We are committed to ongoing compliance with all applicable privacy laws, including GDPR and CCPA. If you have any concerns about privacy or data handling, please reach out—your privacy matters to us.