Privacy Policy for FreshWorldReads.com
1. Introduction
At Fresh World Reads (accessible via freshworldreads.com), we are firmly committed to upholding your privacy and protecting your personal data. This Privacy Policy outlines our practices regarding the collection, use, and disclosure of your information and reflects our dedication to transparency and compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data processed by Fresh World Reads through its website, services, communications, and interactions with users. Fresh World Reads is the data controller responsible for your personal data processed in connection with your use of freshworldreads.com. If you have questions or requests relating to our data processing practices, please direct your inquiries to [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data:
– Usage Data: Information about your browser type, IP address, operating system, referring URLs, pages visited, and session duration.
– Account Data: Data provided when creating or managing an account such as your full name, billing and shipping address, email address, and phone number.
– Profile Data: Information reflecting your reading preferences, browsing behavior, bookmarked content, and previous purchases.
– Communication Data: Records of your interactions with our customer support, including emails, chat messages, and submitted forms.
– Technical Data: Details regarding your device, browser settings, operating system, and system configurations.
– Transaction Data: Payment transactions and purchase histories, including delivery addresses, order dates, and payment methods (excluding full card numbers).
– Preference Data: Marketing preferences, opt-in consents, and interests related to our products and services.
4. Legal Bases for Processing
We rely on the following legal grounds for processing your personal data:
– Legitimate Interests: To improve our website, ensure security, carry out direct marketing (within lawful boundaries), respond to inquiries, and prevent fraud.
– Contractual Necessity: To fulfill our obligations when you place orders, create an account, or make service-related requests.
– Consent: For direct marketing communications, cookies (where required), and other activities not covered under alternative legal bases.
– Legal Obligation: When required to comply with applicable laws, such as tax, regulatory, or court-mandated disclosures.
5. Your Data Protection Rights
In accordance with GDPR and CCPA, you have the following rights concerning your personal data:
– Right of Access: Obtain confirmation and access to your personal data held by us.
– Right to Rectification: Request correction of incomplete or inaccurate data.
– Right to Erasure: Request deletion of your personal information, subject to certain legal exceptions.
– Right to Restrict Processing: Ask us to limit processing under specific circumstances.
– Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format where technically feasible.
– Right to Object: Object to processing based on legitimate interests or direct marketing.
– Non-Discrimination: You will not be discriminated against for exercising your privacy rights under CCPA.
To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before fulfilling your request.
6. Security Measures
We implement robust technical and organizational measures to ensure the confidentiality, integrity, and availability of your personal data. These include but are not limited to:
– Secure data encryption (in transit and at rest)
– Role-based access controls and multi-factor authentication
– Regular backups and disaster recovery protocols
– Regular staff privacy and security training
– Monitoring and response procedures for potential incidents
7. International Data Transfers
Where data is transferred outside the European Economic Area (EEA), we implement appropriate safeguards, including use of Standard Contractual Clauses approved by the European Commission. Where required, we conduct Transfer Impact Assessments to ensure local laws do not undermine these protections and ensure compliance with both GDPR and regional requirements such as the UK GDPR and CCPA.
8. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including to satisfy any legal, regulatory, or reporting obligations, and to resolve disputes.
– Account Data: Retained as long as your account remains active or until deletion is requested.
– Transaction Data: Retained for a minimum of 7 years to comply with financial and tax record-keeping obligations.
– Communication Data: Retained for 2 years following the final interaction.
– Technical and Usage Data: Stored for up to 12 months for analytical and performance purposes.
– Preference Data: Maintained until preferences are updated or unsubscribed.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance user experience and collect usage data. Cookies are categorized as follows:
– Essential Cookies: These are necessary to enable core functionalities like secure log-in and shopping cart features.
– Functional Cookies: Enable the website to remember user preferences such as your username or region.
– Analytics Cookies: Collect anonymous statistical data to understand how visitors interact with our website.
– Performance Cookies: Improve site speed and responsiveness based on user interaction metrics.
10. Cookie Management and Compliance
We provide you with tools to manage your cookie preferences on freshworldreads.com. You may accept or reject non-essential cookies at any time through our cookie banner or settings panel. Per GDPR, users in the EU will only be issued non-essential cookies after obtaining affirmative consent. Under CCPA, users may opt out of the “sale” or “sharing” of personal data via cookies, where applicable, by using our “Do Not Sell or Share My Information” feature.
11. Protection of Children’s Privacy
Our website and services are not intended for use by children under the age of 13. We do not knowingly collect personal data from children. If we become aware that a child under 13 has provided us with personal information without verifiable parental consent, we will promptly delete such data. Parents or guardians who believe we may have collected such information should contact us at [email protected].
12. Policy Updates
This Privacy Policy may be revised from time to time to reflect legal, technical, or operational changes. Material updates will be communicated via our website or direct communication where legally required. By continuing to use freshworldreads.com following such changes, you agree to be bound by the updated policy.
13. Contact Us
For questions regarding this Privacy Policy, to exercise your rights, or to raise privacy concerns, please contact us:
Fresh World Reads
Email: [email protected]
We maintain a proactive approach to privacy matters and continually assess our data protection strategies to ensure compliance with applicable laws, including the GDPR and the CCPA.
At Fresh World Reads, your privacy is a priority. We welcome all privacy inquiries at the contact information above.