Privacy Policy
At Crust by Stephanie Jayne (“we,” “our,” or “us”), accessible at crustbystephaniejayne.com (the “Website”), we value your privacy and are fully committed to safeguarding the personal data you entrust to us. We adhere to the highest standards of data protection as required under the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you interact with our Website, services, or communicate with us.
1. Introduction: Our Commitment to Your Privacy
Your trust is of paramount importance to us. Crust by Stephanie Jayne is committed to maintaining robust privacy protections for all users. This Privacy Policy is designed to help you understand how we collect personal data, the legal bases for processing it, the rights available to you, and the measures we take to ensure your information is treated securely, respectfully, and in full compliance with privacy laws.
2. Scope of This Policy & Role as Data Controller
This Privacy Policy applies to all personal data processed through crustbystephaniejayne.com, as well as any related customer service or marketing communications. Crust by Stephanie Jayne is the data controller responsible for your data. As a data controller, we determine the purposes and means of processing your personal information in accordance with prevailing data protection legislation.
For inquiries relating to this policy or the handling of your data, you may contact us at [email protected].
3. Categories of Data We Collect and Process
We collect and process the following categories of personal data:
a. Usage Data
Includes information about how you use our Website, such as browser type, IP address, pages visited, duration and time of visit, and interaction events.
Collected automatically via cookies, analytics scripts, server logs, and similar technologies.
b. Account Data
Identifying information provided when you create an account or make a purchase, such as full name, billing and shipping addresses, email address, and telephone number.
c. Profile Data
Includes your preferences, order history, wishlists, feedback, reviews, and behavioral patterns relating to browsing or purchases on crustbystephaniejayne.com.
d. Communication Data
Covers the content of communications made through the Website or via email, including customer support inquiries, feedback forms, return requests, and correspondence history.
e. Technical Data
Includes device information such as operating system, browser settings, time zone, screen resolution, and language settings.
f. Transaction Data
Includes details of products purchased, payment history, shipping information, and billing confirmations.
g. Preference Data
Covers your marketing preferences, including opt-in or opt-out choices for newsletters, promotional content, and product interests.
4. Legal Bases for Processing Personal Data
We process your personal data under the following lawful bases, as appropriate:
– Consent: Where you have given us explicit permission to do so (e.g., to receive marketing emails).
– Performance of a Contract: When data processing is necessary to fulfill an order or service you have requested.
– Legitimate Interests: To improve our services, prevent fraud, respond to queries, or perform analytics, provided these interests are not overridden by your rights.
– Legal Obligation: When processing is required to comply with applicable laws or enforce legal rights.
5. Your Rights Under Data Protection Legislation
As a data subject, you have the following rights, subject to applicable law:
– Right of Access: You may request confirmation on whether we process your personal data and access to that data.
– Right to Rectification: You have the right to correct inaccurate or incomplete personal information we hold.
– Right to Erasure: Also known as the ‘right to be forgotten’, you may request the deletion of your personal data under certain conditions.
– Right to Restriction: You may request restriction of processing where permissible.
– Right to Data Portability: Entitles you to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller.
– Right to Object: You may object to processing carried out on the basis of legitimate interests or for direct marketing purposes.
– Right to Lodge a Complaint: You also have the right to file a complaint with a supervisory authority.
6. Security Measures
We implement a range of technical and organizational safeguards to ensure your personal data is protected:
– Data encryption during transmission via SSL/TLS protocols
– Secure access controls and password policies
– Multi-factor authentication for administrative interfaces
– Data backups and disaster recovery protocols
– Regular audits and employee training on data protection
Although no online system can be guaranteed as completely secure, we continually monitor and enhance our security practices to protect your personal data.
7. International Data Transfers
Where personal data is transferred outside of the European Economic Area (EEA) or your local jurisdiction, we ensure such transfers are made in accordance with applicable data protection laws. This may include reliance on Standard Contractual Clauses approved by the European Commission and additional supplementary safeguards as necessary.
8. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including for legal, tax, accounting, or reporting requirements. The retention periods vary based on the category of data:
– Account and Transaction Data: Retained for seven (7) years to comply with tax and accounting obligations.
– Communication Data: Retained for two (2) years for customer service accountability.
– Usage and Cookie Data: Retained for up to twelve (12) months for performance and analytics.
– Marketing Preference Data: Maintained until you withdraw consent or opt out.
After these retention periods, data is securely deleted or anonymized.
9. Cookie Policy
Our Website uses cookies and similar technologies for the following purposes:
– Essential Cookies: Required for the operation of the Website, such as secure login and cart functionality.
– Functional Cookies: Help personalize content based on your previous interactions.
– Analytics Cookies: Collect information about usage patterns to help us improve the Website’s performance.
– Performance Cookies: Monitor technical performance, error logs, and responsiveness.
These technologies collect Usage, Technical, and Preference Data as outlined above.
10. Cookie Management & Compliance
Under GDPR and CCPA regulations, you have the right to opt-in or opt-out of certain cookies:
– Upon visiting crustbystephaniejayne.com, you are presented with a cookie consent banner.
– You may manage or withdraw your cookie preferences at any time through our Cookie Settings tool.
– California residents may further opt out of the sale of personal information via applicable mechanisms detailed in the “Do Not Sell My Personal Information” link provided on the Website.
11. Protection of Children’s Privacy
Our Website and services are not directed to children under the age of 13. We do not knowingly collect personal information from children. If we learn that a child under 13 has submitted personal data without verifiable parental consent, we will delete such data promptly. Parents or guardians who believe that their child has provided personal data may contact us at [email protected].
12. Changes to This Policy
We reserve the right to amend or update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or business practices. Any material changes will be posted on this page with appropriate notifications if required by law. Continued use of crustbystephaniejayne.com after updates constitutes acceptance of the revised Policy.
13. Contact Us
If you have questions, concerns, or wish to exercise your privacy rights, please contact:
Crust by Stephanie Jayne
Email: [email protected]
We are committed to processing your personal information transparently, securely, and in line with legal requirements. For any privacy-related concerns, we are here to assist you.