Privacy Policy for LaraWeller.com
Your privacy is of utmost importance to us. This Privacy Policy outlines how Lara Weller (“we,” “us,” or “our”) collects, uses, stores, and protects your personal information when you visit and interact with our website, www.laraweller.com (“the Site”). We are committed to safeguarding your privacy and ensuring your personal data is handled in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
At Lara Weller, we hold a fundamental responsibility to protect any personal information you share with us. We adhere to the principles of transparency, accountability, and user empowerment. Whether you are browsing our content, signing up for services, contacting us, or making a purchase, we prioritize your data protection and privacy rights.
2. Scope of Policy and Data Controller Role
This Privacy Policy governs all personal data collected or processed through www.laraweller.com. Lara Weller is the data controller under the GDPR for the personal information collected via the Site and is responsible for determining the purposes and means of processing your data.
Residents of California, under the CCPA, are referred to as “Consumers,” and this policy addresses their rights accordingly. By using the Site, you consent to the practices outlined in this Privacy Policy.
3. Categories of Personal Data We Process
We may collect and process the following categories of personal information:
3.1 Usage Data:
Information automatically collected during your interaction with the Site, including IP address, browser type, language settings, date and time of access, pages visited, time spent on pages, and referral URLs.
3.2 Account Data:
Information used to register or maintain an account, including full name, email address, telephone number, mailing and billing addresses.
3.3 Profile Data:
Data relating to your preferences, purchase history, account behavior, interests or other profile-related information you provide or generated via your interaction with the Site.
3.4 Communication Data:
Records of communications with us, including emails, support inquiries, feedback, messages submitted via forms, and the history of responses provided.
3.5 Technical Data:
Information about the device or platform used to access the Site, such as operating system, device model, mobile identifiers, and configuration settings.
3.6 Transaction Data:
Details associated with purchases or service transactions, including payment card details (via secure third-party processors), order history, and delivery information.
3.7 Preference Data:
Marketing and communication preferences, subscription status, consent for receiving promotional materials, frequency selections, and product interest categories.
4. Legal Bases for Processing Personal Data (GDPR)
We rely on the following legal bases for processing your personal data under the GDPR:
– Consent: Where you have expressly agreed to our use of your personal data, such as signing up for newsletters or allowing cookies.
– Contractual Necessity: When processing is required to fulfill a contract with you (e.g., completing a purchase).
– Legal Obligation: When we are legally required to retain or disclose data.
– Legitimate Interest: For purposes such as improving our services, ensuring security, and analyzing performance, provided these do not override your data protection rights.
5. Your Rights Under Data Protection Laws
Under applicable laws including the GDPR and CCPA, you are entitled to the following rights:
– Right of Access: The right to request copies of your personal data held by us.
– Right to Rectification: The right to correct inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): The right to request deletion of your personal data, subject to legal exceptions.
– Right to Restriction of Processing: The right to request a halt in processing under certain conditions.
– Right to Data Portability: The right to receive your data in a structured, machine-readable format and transmit it to another controller.
– Right to Object: The right to object to processing where grounds exist (e.g., for marketing purposes).
California residents may also request:
– Disclosure of personal data collected in the past 12 months;
– Categories of third parties with whom data was shared;
– Opt-out of sale of personal information, if applicable; and
– Non-discrimination for exercising these rights.
To make a request, contact us at [email protected].
6. Security Measures
We implement organizational, physical, and technical safeguards to protect your data, including:
– Industry-standard encryption during data transmission and storage;
– Access controls and authentication procedures to protect internal systems;
– Regular system monitoring and logging for security auditing;
– Routine data backups and recovery mechanisms;
– Staff training in data protection standards and privacy compliance.
While we take every reasonable step to protect your data, no online platform can guarantee complete security.
7. International Data Transfers
Where personal data is transferred outside of the European Economic Area or other jurisdictions with adequacy regulations, we implement standard contractual clauses and other appropriate safeguards in compliance with GDPR requirements. We also align our practices with any applicable regional provisions to ensure consistent protection of your information.
8. Data Retention
We retain personal data only for as long as necessary to fulfill its intended purpose, unless a longer retention period is mandated or legally permissible. Approximate retention periods include:
– Account & Transaction Data: 6 years after the last transaction;
– Communication & Support Requests: 2 years from last contact;
– Technical Logs & Usage Data: 18 months;
– Marketing Preferences: Until consent is withdrawn or updated;
– Cookie identifiers: As per cookie duration (see Cookie Policy).
Upon expiration of these periods, data is irreversibly anonymized or securely deleted.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience on www.laraweller.com. These include:
– Essential Cookies: Required for website to operate (e.g., account login, cart functionality).
– Functional Cookies: Remember preferences and settings to improve usability.
– Analytics Cookies: Help us analyze website traffic and usage patterns (e.g., Google Analytics).
– Performance Cookies: Monitor site performance and user engagement to improve content and site features.
All non-essential cookies are used only with your consent.
10. Cookie Management and Compliance
When you first visit www.laraweller.com, you will be presented with a cookie banner allowing you to accept or reject non-essential cookies. You may also manage preferences through your browser settings or revisit the cookie banner at any time.
Our cookie practices comply with GDPR and CCPA standards for informed consent and user controls. Additionally, California users can exercise rights to opt-out of the “sale” of personal information as broadly defined under CCPA.
11. Children’s Privacy
The Site is not intended for children under the age of 13. We do not knowingly collect or solicit personally identifiable information from anyone under 13. If we learn that we have collected personal data from a child without verified parental consent, we will promptly delete such information. If you believe a child under the age of 13 has provided us with personal data, please contact us at [email protected].
12. Policy Updates
We may update this Privacy Policy from time to time to reflect changes in operational, legal, or regulatory requirements. Any material changes will be communicated via the website or, where appropriate, via email. We encourage users to regularly review this Privacy Policy to stay informed on how we are protecting their data.
13. Contact Information
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
Website: www.laraweller.com
We are committed to upholding your privacy rights and addressing your concerns in a prompt and transparent manner.
This Privacy Policy reflects our compliance with applicable data protection laws and our dedication to responsible data practices. We welcome your questions about privacy and invite you to reach out at any time.