Privacy Policy
1. Introduction
At New Hearth Living (“we,” “us,” “our”), accessible via newhearthliving.com, your privacy is of the utmost importance to us. We are committed to protecting your personal data and handling it with transparency, integrity, and compliance with applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”). This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit our website or engage with our services. We are devoted to maintaining a privacy-first approach, ensuring that your personal data is treated with the highest level of security and responsibility.
2. Scope of This Policy and Role of the Data Controller
This Privacy Policy applies to all personal data processed through newhearthliving.com for visitors, customers, and users who interact with our website or services. For purposes of the GDPR, New Hearth Living is the data controller of your personal data. As the data controller, we determine the purposes and means of processing your personal information. For California residents, we act as a “business” under the CCPA, responsible for determining the purposes and means of processing personal information.
3. Categories of Data Processed
We may collect and process the following categories of personal data when you visit newhearthliving.com or engage with our services:
3.1 Usage Data
Includes information such as IP address, browser type, geographical location, time zone, access times, referring URLs, pages visited, and user interactions on our website.
3.2 Account Data
Includes personal identifiers such as your full name, billing/shipping address, email address, phone number, and other details provided when you create an account or place an order.
3.3 Profile Data
Encompasses data such as your preferences, previous purchases, browsing behavior, and activity patterns while using our website.
3.4 Communication Data
Includes information you provide when you contact our support team, submit inquiries, or interact with us through email, forms, or other channels. This may include your communication history and the data contained in your messages.
3.5 Technical Data
Includes data about the device you use to access newhearthliving.com, such as operating system, hardware model, browser version, screen resolution, and other diagnostic data.
3.6 Transaction Data
Comprises details related to the products or services you purchase, payment details (excluding full credit card numbers, which are processed securely by third-party payment providers), and delivery information.
3.7 Preference Data
Covers information regarding your marketing and communication preferences, product interests, subscription choices, and consent status for receiving promotional communications.
4. Legal Bases for Processing Personal Data
We rely on the following legal bases under the GDPR to collect and process your personal data:
– Performance of a Contract: When processing is necessary for fulfilling a contract with you, including order fulfillment and account management.
– Legitimate Interests: To operate, improve, and secure our website, detect fraud, and provide customer service, except where overridden by your rights.
– Consent: Where required, we will seek your explicit consent for processing, particularly for marketing and analytics purposes.
– Compliance with Legal Obligations: When processing is necessary to comply with applicable laws and regulatory requirements.
Under the CCPA, we do not sell your personal data. We use your information solely for the purpose of providing and optimizing our services.
5. Your Rights
Under applicable privacy laws, you have specific rights concerning your personal data:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request the correction of any inaccurate or incomplete data.
– Right to Erasure: You may request the deletion of your personal data, subject to legal limitations.
– Right to Restriction: You may request that we restrict the processing of your data under certain conditions.
– Right to Data Portability: You may request a structured, commonly used format of your personal data to transfer to another data controller.
– Right to Object: You may object to processing based on our legitimate interests, particularly in the context of direct marketing.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request in accordance with applicable data protection laws.
California residents may also have the right to opt-out of the use of personal information for targeted advertising and access additional disclosures under the CCPA.
6. Security Measures
We implement appropriate technical and organizational measures to ensure the security and confidentiality of your personal data. Such measures include:
– Data encryption through SSL/TLS for data transmission.
– Access controls and authentication standards for internal staff and systems.
– Secure server environments, firewall protections, and regular systems monitoring.
– Routine data backups and disaster recovery planning.
– Employee training on data protection and privacy obligations.
While we take appropriate steps to secure your personal data, no transmission or storage system can be guaranteed to be 100% secure.
7. International Transfers
Your personal data may be transferred and processed outside your country of residence, including countries outside the European Economic Area (EEA). In such cases, we ensure that appropriate safeguards are in place, including:
– The use of standard contractual clauses as approved by the European Commission.
– Transfers to countries deemed to provide an adequate level of data protection.
– Binding corporate rules or other recognized transfer mechanisms.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:
– Usage Data: up to 12 months from the date of collection.
– Account Data: for the duration of your account and up to 6 years thereafter for legal or compliance purposes.
– Profile and Preference Data: up to 3 years after the last activity on your account.
– Communication Data: up to 3 years from the last contact.
– Technical Data: 12 months from the date of access.
– Transaction Data: 6 years for financial recordkeeping and compliance.
Once the applicable retention period concludes, your data will either be securely deleted or anonymized.
9. Cookie Policy
We use cookies and other tracking technologies to enhance the performance and functionality of newhearthliving.com. Cookies may be categorized as follows:
– Essential Cookies: Required for the website to function, such as those enabling user logins and secure transactions.
– Functional Cookies: Enable improved personalization and user experience settings.
– Analytics Cookies: Collect information about website usage to help us optimize performance and usability.
– Performance Cookies: Monitor site reliability and loading metrics to ensure system efficiency.
10. Cookie Management and Compliance with GDPR & CCPA
You can manage your cookie preferences via the pop-up consent banner or by adjusting your browser settings. Under GDPR, we seek your affirmative consent for non-essential cookies before they are placed on your device. Under the CCPA, you have the right to opt-out of certain tracking and data usage. Instructions on how to revoke or modify consent are available within our site footer or cookie management interface.
11. Children’s Privacy
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal data from children. If you believe that a child under 13 has provided us with personal data, please contact us at [email protected] and we will take steps to delete such information as required by law.
12. Policy Updates and Notifications
We reserve the right to amend this Privacy Policy to reflect legal, technological, or operational changes in our practices. Any changes will be made in accordance with applicable data protection laws. Continued use of newhearthliving.com constitutes your acceptance of any changes. Where material changes occur, we will notify you through prominent notices on our website or by email when appropriate.
13. Contact Us
If you have any questions, concerns, or requests in relation to this Privacy Policy or the way your personal data is handled, please contact us at:
Email: [email protected]
Website: https://newhearthliving.com
We are fully committed to complying with all applicable data protection legislation, including the GDPR and CCPA. Your trust is important to us, and we welcome your questions regarding how we protect your privacy.