Privacy Policy
At Amanda-Lauren.com, we are firmly committed to safeguarding your privacy and ensuring the protection of your personal data. This Privacy Policy outlines how we collect, use, disclose, and protect your information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We uphold the principles of transparency, accountability, and user empowerment in all aspects of our data-handling practices.
1. Scope of This Privacy Policy & Data Controller Information
This Privacy Policy applies to your use of amanda-lauren.com and all related services and interactions with our platform. Amanda-Lauren.com acts as the data controller for all personal data collected and processed via our website and associated communication channels.
For purposes of the GDPR, Amanda-Lauren.com determines the purposes for and means by which your personal data is processed. If you reside in California, we also ensure compliance with the CCPA as your service provider.
2. Categories of Data We Collect and Process
We collect and process the following categories of personal data to provide and improve our services, support user experience, perform transactions, and fulfill our legal and regulatory obligations:
2.1 Usage Data:
Information about your interactions with our website, including browser type, IP address, device identifiers, access dates/times, pages viewed, session durations, referral URLs, and similar diagnostic data.
2.2 Account Data:
When you create an account, we collect data such as your full name, billing and shipping addresses, email address, and telephone number.
2.3 Profile Data:
Data related to your preferences, behavior on the website, purchasing history, product interests, and saved settings.
2.4 Communication Data:
Records of all communications you initiate with us, including customer support requests, responses to surveys, and contact history.
2.5 Technical Data:
Information from your device used to access the site, such as device type, operating system, system language, time zone settings, browser version, and plug-in types.
2.6 Transaction Data:
Payment details and order-related information, including payment methods, order confirmations, invoices, delivery status, and service usage.
2.7 Preference Data:
Marketing preferences such as opted-in communications, mailing list participation, product alerts, and cookie choices.
3. Legal Basis for Processing Personal Data
Under the GDPR, we rely on the following legal bases to process your personal data:
– Contractual Necessity: To perform our obligations under any agreement with you, including provision of products and customer support.
– Legitimate Interests: To administer and improve the website, detect fraudulent activity, and inform business strategy.
– Consent: For marketing communications, usage tracking, and activation of non-essential cookies.
– Legal Obligation: Where the processing is necessary to comply with applicable legal or regulatory requirements.
4. Your Rights Under GDPR and CCPA
You have several rights concerning your personal data under applicable laws:
4.1 Right of Access – You may request access to your personal data held by us.
4.2 Right to Rectification – You may request correction of inaccurate or incomplete data.
4.3 Right to Erasure – You may request deletion of your data, subject to legal obligations.
4.4 Right to Restrict Processing – You have the right to limit how your data is used in certain situations.
4.5 Right to Data Portability – You can request to receive your personal data in a structured, commonly used machine-readable format, and to have it transferred to another controller.
4.6 Right to Object – You may object to processing based on legitimate interests, including profiling and direct marketing.
4.7 Right to Opt-Out (CCPA) – California residents may opt out of the sale or sharing of their personal information.
To exercise any of these rights, please contact us at [email protected].
5. Security Measures
We implement rigorous technical and organizational measures to protect your data, including:
– Encryption of data in transit and at rest
– Role-based access controls and multi-factor authentication
– Firewalls and system monitoring to detect suspicious activity
– Routine backups and disaster recovery protocols
– Training and awareness programs for all personnel involved in data handling
6. International Data Transfers
Where personal data is transferred outside of the European Economic Area (EEA) or other jurisdictions with robust privacy regulations, we apply appropriate safeguards under applicable law. These include Standard Contractual Clauses approved by the European Commission and compliance with the EU-U.S. Data Privacy Framework, where applicable.
7. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, or as required by law. Retention periods vary, depending on the type of data:
– Account Data: Retained until account deletion request or termination of services
– Transaction Data: Retained for 7 years to meet legal and tax obligations
– Communication Data: Retained for 2 years following last correspondence
– Usage and Technical Data: Retained for up to 12 months for analytics and security
After the applicable retention periods, data is securely deleted or anonymized.
8. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your user experience and improve website functionality. These include:
8.1 Essential Cookies: Required for basic functionality such as logins and shopping carts.
8.2 Functional Cookies: Enable personalization, including saved preferences and localized content.
8.3 Analytical Cookies: Track user behavior to help us improve website performance and user experience.
8.4 Performance Cookies: Measure and monitor system performance and errors.
You can find more information in our Cookie Policy, accessible from our website footer.
9. Managing Cookies and Compliance
In compliance with the GDPR and CCPA, we offer granular cookie consent options. On your first visit to amanda-lauren.com, you are prompted to accept or reject cookie categories according to your preference. You may update your consent choices at any time via the “Cookie Settings” link provided on the site.
For California users, we honor “Do Not Sell or Share My Personal Information” signals via consent banners and browser settings compliant with the CCPA.
10. Children’s Privacy
Amanda-Lauren.com does not knowingly collect or store any personal data from children under the age of 13. If we become aware that personal data from a child under 13 has been collected without verified parental consent, we will take appropriate steps to delete such information promptly. Parents or guardians who believe that their child has provided personal data should contact us at [email protected].
11. Policy Updates
We reserve the right to modify this Privacy Policy from time to time to reflect changes in legal requirements or business practices. Material changes will be posted on this page, and where required, we will notify you using the contact information you have provided or through a notice on amanda-lauren.com.
12. Contacting Us
For questions, concerns, or to exercise your data protection rights, please contact us at:
Email: [email protected]
Website: https://amanda-lauren.com
13. Compliance Statement
Amanda-Lauren.com is committed to maintaining compliance with GDPR, CCPA, and other applicable privacy laws. If you have any concerns regarding our privacy practices or wish to file a complaint, you may contact us via the email above, and we will respond diligently in accordance with applicable law.