Privacy Policy for New Hearth Living
1. Introduction
At New Hearth Living, accessible via newhearthliving.com, we are committed to safeguarding your personal information and upholding your privacy rights. This Privacy Policy describes how we collect, use, disclose, and protect your personal data in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. Our aim is to maintain the trust of our users by handling personal data with the highest level of diligence and transparency.
2. Scope of this Policy and Role of the Data Controller
This Privacy Policy applies to all data collected when you visit newhearthliving.com, communicate with us, or purchase our products or services. For the purposes of applicable data protection legislation, New Hearth Living acts as the “data controller,” which means we determine the purposes and means of processing your personal data. We may also act as a “data processor” when processing data on behalf of third parties.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data
Includes information about your interactions with our website, such as IP address, browser type and version, pages visited, time spent on pages, referral URLs, and general site analytics.
b. Account Data
Includes personal information used to set up and manage your user account, including full name, email address, billing and shipping addresses, and telephone number.
c. Profile Data
Includes your preferences, feedback, purchase history, interests, and behavioral data relevant to your engagement with our products and services.
d. Communication Data
Includes messages and support queries submitted through contact forms, emails, and transcripts from customer service interactions including responses and status tracking.
e. Technical Data
Includes device type, operating system, browser type, language settings, screen resolution, and other configuration data collected through your use of our services.
f. Transaction Data
Includes payment and transaction details, including payment card information (processed securely through third-party providers), delivery addresses, and purchase records.
g. Preference Data
Includes information you provide regarding your email subscription preferences, marketing communication choices, and product or service interests.
4. Legal Bases for Processing Personal Data
We process your personal data only when a valid lawful basis applies. These include:
– Contract Performance: To fulfill our contractual obligations to you, such as delivering a purchased product.
– Legitimate Interests: To operate, enhance, and secure our services and improve user experience (e.g., fraud prevention, internal analytics).
– Consent: Where you have granted explicit consent (e.g., for receiving marketing communications).
– Legal Obligation: Where processing is necessary to comply with applicable legal requirements (e.g., for tax or accounting obligations).
5. Your Data Protection Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
– Right of Access: Obtain confirmation as to whether your data is being processed and request a copy of your personal data.
– Right to Rectification: Request correction of inaccurate or outdated data.
– Right to Erasure (“Right to be Forgotten”): Request the deletion of your data, subject to certain exceptions.
– Right to Restriction of Processing: Request a temporary or permanent halt to the processing of your data under specified circumstances.
– Right to Data Portability: Request a structured, commonly used, and machine-readable format of your data or have it transferred directly to another controller.
– Right to Object: Object to data processing based on legitimate interest or direct marketing.
– Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting the legality of processing before withdrawal.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We implement industry-standard organizational, technical, and administrative safeguards to protect your data, including:
– Encryption of sensitive data in transit and at rest.
– Access control policies to restrict data access to authorized personnel only.
– Regular data backups and disaster recovery systems.
– Security training for staff and incident monitoring protocols.
Please be aware that while we take commercially reasonable steps to secure your data, no method of transmission over the Internet or electronic storage is entirely secure.
7. International Transfers
Personal data collected through newhearthliving.com may be transferred to and processed in countries outside your jurisdiction. Where such transfers occur, we adopt appropriate safeguards, such as the European Commission’s Standard Contractual Clauses, and ensure that data protection standards consistent with applicable laws are upheld.
8. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes outlined in this Policy, including for legal, regulatory, tax, accounting, or reporting obligations. The specific retention periods are:
– Usage & Technical Data: up to 12 months
– Account, Profile, and Transaction Data: retained for 6 years after last interaction/purchase
– Communication Data: retained for 3 years post-resolution
– Preference Data: retained until opt-out or withdrawal of consent
Upon expiry of the retention periods, personal data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies to enhance your browsing experience, analyze site usage, and deliver tailored content. The types of cookies we use include:
– Essential Cookies: Necessary for site functionality and operation.
– Functional Cookies: Enhance usability by remembering user preferences.
– Analytics Cookies: Help us understand website traffic and user behavior via tools such as Google Analytics.
– Performance Cookies: Monitor and improve load times and server responsiveness.
10. Cookie Management and Regulatory Compliance
Upon your first visit to newhearthliving.com, you will be presented with a cookie consent banner allowing you to accept or customize your preferences. You may change your cookie settings at any time via your browser or through our on-site cookie management tools.
In accordance with the GDPR and CCPA:
– We obtain explicit opt-in consent before placing non-essential cookies.
– You may opt out of the sale or sharing of personal data where applicable under CCPA.
– “Do Not Track” browser settings are honored in accordance with regulatory obligations.
11. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect or solicit personal data from children. If we learn that personal data of a child under 13 has been collected without verified parental consent, we will delete the information promptly. Parents or guardians who believe their child has provided personal data may contact us at [email protected].
12. Policy Updates and User Notification
We reserve the right to modify this Privacy Policy periodically to reflect changes in our practices, technologies, legal obligations, or for other operational reasons. Material changes will be communicated through our website or via direct communication where appropriate. Continued use of newhearthliving.com after changes are published constitutes consent to the updated policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
New Hearth Living
Email: [email protected]
—
New Hearth Living is committed to maintaining your trust and compliance with applicable data protection laws. For any privacy-related inquiries or to exercise your rights, please email us directly at [email protected].