Privacy Policy for RockingHorseWine.com
1. Introduction
At Rocking Horse Wine, accessible at rockinghorsewine.com, we are unwavering in our commitment to safeguarding the privacy and personal information of all users, customers, and visitors. We recognize the fundamental importance of data protection and are resolute in our compliance with applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines our approach to data privacy, our practices surrounding the processing of personal information, and the rights available to you as a data subject or consumer.
2. Scope of This Policy and Role as Data Controller
This Privacy Policy applies to personal data collected through your use of rockinghorsewine.com, whether you are browsing our site or interacting with us through purchases, contact forms, subscription services, or other features. Rocking Horse Wine acts as the Data Controller for personal data collected directly through these interactions, determining the purposes and means of processing such information. For any inquiries about this policy or how we process data, please contact us at [email protected].
3. Categories of Data Processed
We collect and process a range of personal data from users of rockinghorsewine.com, categorized as follows:
a) Usage Data
Includes data about how you interact with our website, such as your IP address, browser type and version, time zone settings, operating system, referral URLs, length of visits to pages, page interaction information, and browsing patterns.
b) Account Data
Includes information provided when you register an account, such as your name, billing and shipping address, email address, and phone number.
c) Profile Data
Includes your user preferences, historical purchases, saved items or wishlists, behavioral patterns, and other information related to your site experience.
d) Communication Data
Includes information contained in communications with us, including queries submitted via our contact form, email correspondence, customer support interactions, and user feedback.
e) Technical Data
Includes information about your device and system configuration such as device type, operating system, screen resolution, network settings, and crash diagnostics.
f) Transaction Data
Includes data pertaining to purchases made on rockinghorsewine.com, such as payment method (processed via third parties), shipping address, order history, and delivery tracking.
g) Preference Data
Includes your preferences in receiving marketing from us and your communication preferences, as well as indicative preferences toward products and services based on your activity.
4. Legal Bases for Processing
We process your personal data pursuant to the following legal bases under GDPR and comparable provisions applicable under CCPA:
– Performance of contract: Processing necessary for the performance of a contract with you or to take pre-contractual steps at your request.
– Consent: Where you have given clear affirmative consent for us to process your data for a specific purpose, such as subscribing to marketing communications.
– Legal obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.
– Legitimate interests: Where processing is necessary for our legitimate business interests, such as improving our services, detecting fraudulent activity, or expanding our operations, provided these interests do not override your rights and freedoms.
5. Your Rights
Subject to the GDPR, CCPA, and applicable data protection laws, you may exercise the following rights:
– Right to Access: Obtain a copy of personal data we hold about you.
– Right to Rectification: Request corrections to inaccurate or incomplete data.
– Right to Erasure: Ask us to delete your personal data, subject to certain legal exceptions.
– Right to Restrict Processing: Request limitations on the way we use your data.
– Right to Data Portability: Receive your data in a structured, commonly used format and transmit it to another controller.
– Right to Opt-Out (CCPA): California residents may request to opt out of the sale or sharing of personal data for cross-contextual behavioral advertising (we do not sell personal data as defined under CCPA).
– Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights.
You may submit any rights-related request by writing to [email protected].
6. Security Measures
We employ industry-standard technical and organizational measures to ensure a level of security appropriate to the risk associated with the processing of your personal data. These measures include:
– Encryption of transmitted and stored data;
– Access controls and authentication mechanisms;
– Routine security audits and penetration testing;
– Employee privacy and security training;
– Regular backups to ensure data integrity.
Despite our best efforts, no system can be guaranteed to be 100% secure, and you are encouraged to exercise caution when sharing personal data online.
7. International Transfers
Your personal data may be transferred to, and maintained on, servers located outside of your jurisdiction, including jurisdictions that may not provide the same level of protection as your home country. Where the GDPR applies, we use appropriate safeguards such as:
– Standard Contractual Clauses approved by the European Commission;
– Data transfer agreements with appropriate jurisdictional protections;
– Ongoing monitoring for compliance with international and regional data privacy standards.
8. Data Retention
We retain personal data only for as long as is necessary for the fulfillment of the purposes for which it was collected or as required by legal, regulatory, or legitimate business obligations. General retention periods include:
– Account and Transaction Data: Retained for 7 years for compliance with tax, accounting, and legal obligations.
– Communication Data: Retained for up to 3 years after last contact.
– Technical and Usage Data: Retained for up to 2 years for analytics and performance optimization.
– Marketing Preferences: Retained until you withdraw consent or object to further processing.
9. Cookie Policy
We use cookies and similar technologies on rockinghorsewine.com to enhance user experience and collect analytics data. Cookies may be categorized as follows:
– Essential Cookies: Required for the operation of our website, including access to secure areas and checkout functionality.
– Functional Cookies: Allow us to remember your preferences (e.g., language settings, region).
– Analytics Cookies: Collect aggregate data on user behavior to help improve site performance (e.g., page visits, session length).
– Performance Cookies: Monitor and analyze website efficiency, load speed, and reporting metrics.
10. Cookie Management and Compliance
Upon your initial visit to rockinghorsewine.com, you will be presented with a cookie consent banner, allowing you to accept or reject non-essential cookies in compliance with GDPR and CCPA. You may also adjust or withdraw your consent at any time via the Cookie Settings link or by modifying your browser settings. California users may exercise Do Not Sell or Share rights through a dedicated form on our site or by contacting [email protected].
11. Special Protections for Children Under 13
rockinghorsewine.com is not intended for use by children under the age of 13, and we do not knowingly collect or solicit personal data from minors. If we become aware that we have inadvertently collected data from a child under 13, we will take immediate steps to delete such information. If you believe your child has provided us with personal data, please contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to update or amend this Privacy Policy to reflect changes in our practices or legal requirements. Any material changes to the Policy will be communicated via prominent notices on the rockinghorsewine.com homepage or via email where appropriate. Your continued use of the website constitutes acceptance of the revised policy.
13. Contact
If you have any questions or concerns regarding this Privacy Policy or your personal data, please contact:
Rocking Horse Wine
Email: [email protected]
We are committed to full compliance with applicable data protection laws including the GDPR and CCPA. Your privacy and trust are important to us, and we welcome your feedback or concerns regarding how we handle your personal data.