Privacy Policy
1. Introduction
At LaraWeller.com, we are committed to safeguarding the privacy and personal data of our users. We recognize the importance of data protection and accountability and are dedicated to processing your personal data in a lawful, fair, and transparent manner. This Privacy Policy outlines the types of personal data we collect, the purposes for which we process such data, and the rights you have in relation to your personal information.
We adhere to the principles and requirements of applicable privacy and data protection laws, including the General Data Protection Regulation (EU) 2016/679 (GDPR) and the California Consumer Privacy Act (CCPA), with a privacy-first approach in all of our activities.
2. Scope of this Policy and Data Controller
This Privacy Policy applies to all users of and visitors to the website located at https://laraweller.com (the “Website”), and governs how personal data is collected, processed, used, and shared in connection with your access to and usage of the Website.
For the purposes of data protection laws, the data controller responsible for your personal data is LaraWeller.com. You may contact us with any privacy-related concerns at [email protected].
3. Categories of Data Processed
We collect and process the following categories of personal data when you interact with our Website or services:
a) Usage Data
Information automatically collected when you visit our Website, including your browser type and version, IP address, geolocation data, login times, referral URLs, and session duration.
b) Account Data
Data provided when creating an account or updating profile settings (if applicable), including full name, email address, phone number, billing or shipping address, and other identifiers.
c) Profile Data
Data related to the personalization of your experience, such as order history, saved preferences, product interactions, and behavioral usage patterns on the Website.
d) Communication Data
Records of communications, such as messages sent through contact forms, support requests, email correspondence, and communication metadata.
e) Technical Data
Device identifiers, operating system details, screen resolution, browser settings, language preferences, and other system configurations obtained via your interactions with the Website.
f) Transaction Data
Information related to purchases or financial interactions, including masking details of payment methods used, transaction amounts, dates of purchase, delivery addresses, and order history.
g) Preference Data
Data regarding marketing preferences, consent statuses, newsletter subscriptions, and expressed interests related to our content, offerings, or campaigns.
4. Legal Bases for Processing Personal Data
We process your personal data based on one or more of the following lawful bases:
– Contractual necessity: where processing is required to deliver the services or fulfill a purchase.
– Legitimate interests: where processing supports operational functions, fraud prevention, or customer service, provided such interests are not overridden by your data protection rights.
– Consent: where you have given explicit permission, such as for marketing communications or cookie tracking beyond essentials.
– Legal obligation: where processing is necessary to comply with applicable laws and regulations.
5. Your Rights
Under applicable data protection legislation, you have the following rights:
– Right of Access: Obtain confirmation of whether we process your data and access a copy of your personal data.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your data when no longer necessary or lawfully processed.
– Right to Restriction: Request limitation on how your data is used in certain circumstances.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format to transmit to another controller.
– Right to Object: Object to processing where we rely on legitimate interests or direct marketing.
– Right to Withdraw Consent: Withdraw any previously provided consent without affecting the lawfulness of prior processing.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We employ robust technical, organizational, and administrative security measures to protect your personal data. These include:
– Data encryption in transit and at rest.
– Access controls and authentication.
– Secure data backups and disaster recovery plans.
– Regular staff training on data protection and privacy.
– Monitoring mechanisms to detect unauthorized activity.
Although no method of transmission or storage is ever 100% secure, we take all reasonable steps to minimize risks and respond promptly to any suspected breach.
7. International Data Transfers
If your data is transferred outside of the European Economic Area (EEA), we ensure such transfers are performed in accordance with applicable regulations using mechanisms like:
– Standard Contractual Clauses approved by the European Commission.
– Adequacy decisions issued by regulatory authorities.
– Binding corporate rules or other recognized safeguards, ensuring a similar degree of data protection.
8. Data Retention
We retain personal data only as long as is necessary for the purposes for which it was collected, or as required by applicable law.
– Account and Profile Data: Retained for as long as your account is active or you remain a user of the Website.
– Transaction Data: Retained for a minimum of 7 years to comply with accounting and tax obligations.
– Communication Data: Retained for 3 years from the last contact to manage records of support and compliance audits.
– Usage and Technical Data: Retained between 12 and 24 months, depending on analytics and security retention cycles.
– Consent and Preference Data: Retained until consent is withdrawn or the user’s profile is deactivated.
9. Cookie Policy
Our Website uses cookies and similar technologies to enhance performance, personalize content, and provide analytics. Cookies fall into the following categories:
– Essential Cookies: Necessary for basic Website functionality such as login, navigation, or secure transactions.
– Functional Cookies: Enable personalization, save settings, and enhance user experience.
– Performance Cookies: Collect anonymous data about site usage to improve performance.
– Analytics Cookies: Gather data on user interactions using third-party services (e.g., Google Analytics) with IP anonymization where possible.
10. Cookie Management and Compliance
You can manage cookie settings through your browser preferences or via the settings panel on our Website. Where consent is required under GDPR or the CCPA for non-essential cookies, we provide appropriate mechanisms for obtaining and managing user consent.
For residents of California, we honor your right to opt out of the sale or sharing of your personal data via a dedicated link or preference management tool, as defined by the CCPA.
11. Children’s Privacy
We do not knowingly collect personal data from children under the age of 13. If you are a parent or guardian and believe we may have inadvertently collected such data, please contact us immediately at [email protected] so that we can take appropriate action.
12. Policy Updates and Notifications
We may update this Privacy Policy to reflect changes in applicable laws, regulations, or our operations. Where changes materially affect your rights or the handling of your data, we will inform you via prominent notice on the Website or other appropriate communication channels.
We encourage you to review this Privacy Policy periodically to stay informed about our data handling practices.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy, or if you wish to exercise any of your data protection rights, you may contact us at:
Email: [email protected]
Website: https://laraweller.com
We are committed to ensuring your privacy is respected and protected. Please do not hesitate to reach out if you have any questions about how your data is handled.