Privacy Policy for samicakesboutique.com
1. Introduction
Sami Cakes Boutique (“we,” “our,” or “us”) is committed to safeguarding the privacy and personal data of our users. Your trust is of paramount importance to us, and we are fully dedicated to maintaining the security, confidentiality, and integrity of the information we collect. This Privacy Policy outlines how we process your personal data in compliance with applicable legislation, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant laws.
2. Scope and Data Controller
This Privacy Policy applies to all personal data collected via samicakesboutique.com (the “Website”) and associated communication channels related to our products and services. Sami Cakes Boutique is the data controller responsible for determining the purposes and means by which your personal data is processed.
For any questions or concerns about how your data is handled, you may contact us at [email protected].
3. Categories of Personal Data Processed
We may collect and process the following categories of personal data:
3.1 Usage Data
Includes information about how you interact with samicakesboutique.com, such as IP address, browser type, operating system, referring URLs, pages visited, session duration, and geographic location.
3.2 Account Data
Includes information provided during registration or purchase, such as your name, billing and shipping address, email address, and phone number.
3.3 Profile Data
Includes preferences, purchase history, browsing behavior, saved products, and wishlist details to enhance your experience and recommend relevant products.
3.4 Communication Data
Includes records of communications with us including emails, support tickets, feedback, or other contact forms.
3.5 Technical Data
Includes device identifiers, system settings, browser plug-in types and versions, screen resolution, and internet connection data.
3.6 Transaction Data
Includes purchase details, order history, payment confirmation (note: we do not store credit card details directly), and delivery information.
3.7 Preference Data
Includes your preferences for receiving marketing communications, notification settings, and product interests as indicated on the Website or through communications.
4. Legal Bases for Processing
We collect and process your personal data under the following legal bases:
– Consent: When you provide it explicitly, such as by subscribing to newsletters.
– Contractual Necessity: For processing orders, handling payments, and delivering goods or services.
– Legitimate Interests: For improving our services, preventing fraud, and securing our Site.
– Legal Obligation: To comply with applicable laws, tax regulations, or enforceable governmental requests.
5. Your Data Protection Rights
Depending on your jurisdiction and subject to applicable laws, you have the following rights:
– Right of Access: Obtain access to your personal data and a copy of how it is processed.
– Right to Rectification: Correct inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data where there’s no overriding legal reason for us to retain it.
– Right to Restriction: Limit further processing of your data in certain circumstances.
– Right to Data Portability: Request your personal data in a structured, commonly used and machine-readable format.
– Right to Object: Object to processing based on legitimate interests or for marketing purposes.
– Right to Withdraw Consent: Withdraw your consent at any time where processing is based on consent.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We employ robust technical and organizational measures to safeguard your data, including but not limited to:
– Encryption of data in transit and at rest.
– Role-based access control and secure authentication procedures.
– Regular system monitoring, endpoint protection, and firewalls.
– Secure data backups and disaster recovery protocols.
– Staff training and regular compliance audits.
7. International Data Transfers
We may transfer your personal data to countries outside of your jurisdiction, including to service providers located in jurisdictions that are not deemed to provide the same level of data protection. When we do, we rely on appropriate safeguards including the use of Standard Contractual Clauses (SCCs), data transfer agreements, and recipients subject to GDPR/CCPA-compliant obligations.
8. Data Retention
Your personal data will be retained only for as long as necessary to fulfill the purposes for which we collected it, including for legal, accounting, or reporting requirements:
– Usage and Technical Data: retained for up to 12 months.
– Account and Transaction Data: retained for up to 7 years post final transaction.
– Profile and Preference Data: retained while user account is active or upon request for deletion.
– Communication Data: retained for up to 3 years for audit and support purposes.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience on samicakesboutique.com, which include:
– Essential Cookies: Necessary for website functionality, such as login, cart, and secure payment.
– Functional Cookies: Enable personalization features and retain user preferences.
– Analytical & Performance Cookies: Collect anonymized data for insight into user behavior and site performance analytics.
– Marketing Cookies: Facilitate delivery of relevant advertisements across platforms.
10. Cookie Management and Compliance
We uphold full compliance with GDPR and CCPA by enabling you to manage cookies according to your preference. Upon visiting our Website, a cookie banner is displayed allowing you to accept or configure your cookie preferences. You can also modify preferences anytime via your browser settings or our cookie consent tool. Residents of California have the right to opt-out of the sale of personal data as defined under CCPA.
11. Children’s Privacy
We do not knowingly collect data from children under the age of 13. If we discover that we have inadvertently collected such information, we will promptly delete it. Parents or guardians who believe that their child has submitted personal data to samicakesboutique.com may contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to update this Privacy Policy due to changes in law, technology, or business operations. Significant changes will be communicated via notification on samicakesboutique.com or through associated communications channels. We encourage you to review this policy regularly.
13. Contact Us
If you have any questions about this Privacy Policy, your data rights, or our data handling practices, please contact:
Sami Cakes Boutique
Email: [email protected]
Website: https://samicakesboutique.com
We are committed to upholding your privacy and ensuring your data is handled with utmost care and legal compliance under applicable privacy laws. Please reach out with any concerns or requests regarding your personal data.