Privacy Policy for MerseyWaterfront.com
1. Introduction
At MerseyWaterfront.com, we are committed to upholding the highest standards of privacy and data protection. Your trust is of paramount importance to us, and we are dedicated to safeguarding your personal information in accordance with all applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant legislation. This Privacy Policy outlines how we collect, process, and protect your personal data when you engage with our website and services.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all users of MerseyWaterfront.com and governs the processing of personal data through our website and associated services. MerseyWaterfront.com acts as the data controller for the purposes of data protection legislation, meaning we determine the purposes and means of processing your personal data.
Should you have any questions or concerns regarding the processing of your personal information, you may contact us at [email protected].
3. Categories of Personal Data We Process
We collect and process the following categories of personal data:
a. Usage Data:
Information collected automatically through your use of our website, including browser type, IP address, device identifiers, referring URLs, length of visit, pages viewed, the date and time of access, session duration, and general site usage activity.
b. Account Data:
Information you provide by creating an account with us, such as your full name, residential address, email address, telephone number, and user credentials.
c. Profile Data:
Preferences you set in your account, purchase history, activities on the website, saved products, and behavioral patterns exhibited through your interactions with the site.
d. Communication Data:
Records of your communications with us, including support inquiries, contact forms, customer service requests, and correspondence history.
e. Technical Data:
Device information including operating system, browser version, screen resolution, language settings, time zone, and system configurations tied to your browsing environment.
f. Transaction Data:
Data relating to the purchase of products or services, including billing details, transactions, order contents, and shipping information.
g. Preference Data:
Data used to tailor content and marketing, such as marketing communication preferences, interests in specific products or services, and opt-in/opt-out statuses.
4. Legal Bases for Processing Personal Data
We rely on the following lawful bases to process your personal data:
– Consent: Where you provide clear and informed consent (e.g., to receive marketing communications).
– Contractual Necessity: When processing is required to fulfill our contractual obligations to you, such as providing services or fulfilling orders.
– Legal Obligation: Where we are required to process data in accordance with legal or regulatory obligations.
– Legitimate Interests: To pursue our legitimate interests where these are not overridden by your rights and interests (e.g., product improvements, fraud prevention, direct marketing).
5. Your Rights
Under applicable law, including GDPR and CCPA, you have the following rights:
– Right of Access: Request access to the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data, subject to legal obligations.
– Right to Restrict Processing: Request that we temporarily cease processing your personal information in certain circumstances.
– Right to Data Portability: Request to receive your personal data in a structured, commonly used, and machine-readable format so you can transmit that data to another controller.
– Right to Object: Object to certain forms of data processing such as direct marketing.
– Right to Withdraw Consent: Withdraw consent at any time where processing is based on your consent.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We use industry-standard security measures to protect your personal data, including:
– Data encryption at rest and in transit.
– Multi-level access controls limiting internal access on a need-to-know basis.
– Routine backups and secure disaster recovery solutions.
– Ongoing employee training around data security and privacy compliance.
While no system is completely secure, we implement all appropriate technical and organizational measures to ensure data confidentiality, integrity, and availability.
7. International Transfers
Your data may be processed outside the jurisdiction in which you reside, including locations that may not afford the same level of data protection. Where data is transferred internationally, we ensure that adequate safeguards are in place, such as standard contractual clauses approved by the European Commission or other lawful transfer mechanisms permitted under GDPR and CCPA.
8. Data Retention
We retain your personal data only for as long as necessary for the purposes outlined in this Policy, including:
– Usage and Technical Data: 26 months after last activity.
– Account and Profile Data: Retained while your account remains active and for a maximum of 6 years thereafter.
– Communication and Support Data: Retained for up to 5 years to ensure service quality and dispute resolution.
– Transaction Data: Retained for financial and tax compliance purposes for at least 7 years.
– Marketing Preferences: Retained until opt-out or withdrawal of consent.
Upon expiration of the applicable retention period, personal data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance your user experience. These cookies fall into the following categories:
– Essential Cookies: Required for website functionality, such as user authentication and shopping cart integrity.
– Functional Cookies: Enable enhanced features such as remembering user preferences.
– Analytical Cookies: Collect statistical insights on website usage to improve design and performance.
– Performance Cookies: Facilitate faster loading times and responsiveness through caching and content optimization tools.
10. Cookie Management and Compliance
We obtain your consent before placing non-essential cookies on your device in compliance with GDPR regulations and the CCPA. You can manage your cookie preferences via the cookie banner upon arrival or through your browser settings at any time. Opting out of certain cookies may degrade the performance or functionality of parts of our website.
Do Not Track (DNT) signals are recognized where technically feasible, although interpretation may vary across jurisdictions and browsers.
11. Children’s Privacy
MerseyWaterfront.com is not directed at or intended for use by children under the age of 13. We do not knowingly collect personal data from individuals under this age. If you are a parent or guardian and believe that a child has submitted personal data through our website, please contact us at [email protected], and we will take appropriate action to remove such data.
12. Policy Updates and User Notifications
We reserve the right to modify or update this Privacy Policy at our discretion. Material changes will be conveyed prominently through our website or via direct communication if appropriate. Continued use of MerseyWaterfront.com subsequent to such updates will signify acceptance of the revised terms.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our processing of your personal data, you may contact us at:
Email: [email protected]
Website: https://merseywaterfront.com
We take your privacy seriously and are committed to addressing inquiries in a timely and transparent manner.
This Privacy Policy is designed in accordance with applicable privacy laws, and we remain committed to compliance, transparency, and safeguarding your data throughout your engagement with MerseyWaterfront.com.