Privacy Policy for hillarypen.com
At hillarypen.com (“we,” “us,” or “our”), we are committed to safeguarding your personal data and respecting your privacy rights. This Privacy Policy outlines the nature of the personal information we collect, how we use and safeguard it, your rights under applicable privacy laws, and how you can contact us.
We are dedicated to maintaining transparency regarding our data processing activities in strict compliance with the General Data Protection Regulation (“GDPR”), the California Consumer Privacy Act (“CCPA”), and other applicable data protection regulations. We prioritize user privacy, implement data protection measures at all levels of our operations, and ensure that your personal information is handled with the utmost care and responsibility.
1. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal information collected via our website, hillarypen.com, and related services or communications. For the purposes of both GDPR and CCPA, the data controller responsible for your personal data is hillarypen.com. If you have any questions about the processing of your information or this policy, you may contact us at [email protected].
2. Categories of Personal Data We Process
We collect and process the following categories of personal data:
a) Usage Data
Information about how you interact with hillarypen.com, including but not limited to IP address, browser type and version, geographical location, time zone settings, referral sources, and device identification numbers.
b) Account Data
Data provided during account creation or registration, including your name, postal address, email address, phone number, and login credentials.
c) Profile Data
Details related to your personal user experience, including purchase history, saved preferences, site behavior, and interests.
d) Communication Data
Information exchanged when you contact us, including emails, support requests, queries via forms, and other messages. We keep records of all communications for internal purposes and customer service.
e) Technical Data
System-level data such as your device settings, operating system, device storage information, and browser plugin details.
f) Transaction Data
Information related to orders placed through our site, including billing and shipping addresses, and payment confirmation details. Note that payment processing is handled securely by third-party providers and we do not store full payment card information.
g) Preference Data
Details you voluntarily supply regarding your marketing and communication choices, subscription preferences, and product or service interests.
3. Legal Bases for Processing Your Data
We rely on the following legal bases under GDPR and CCPA to process your personal data:
– Consent: Where you have given explicit permission, such as for marketing communications or non-essential cookie use.
– Performance of a Contract: Where your data is required to fulfill our obligations under a service or purchase agreement.
– Legitimate Interests: For operational purposes including fraud prevention, network and information security, analytics, and improving user experience.
– Legal Obligation: When we are required to comply with legal or regulatory requirements.
4. Your Rights
Subject to local laws and regulations, you have the following rights over your personal data:
– Right of Access – Request access to the data we hold about you.
– Right to Rectification – Request correction of inaccurate or incomplete data.
– Right to Erasure – Request deletion of your data (“right to be forgotten”).
– Right to Restriction – Request a pause on data processing in certain circumstances.
– Right to Portability – Receive your data in a commonly used, machine-readable format.
– Right to Object – Object to our processing activities where we rely on legitimate interest.
Requests to exercise your rights can be submitted by emailing [email protected]. We will respond within applicable timeframes.
5. Security Measures
We employ administrative, technical, and physical safeguards to protect your data, including:
– Secure, encrypted data transmission via HTTPS
– Role-based access controls across systems
– Regular data backups and redundant storage
– Staff training in privacy-by-design and security principles
– Continuous monitoring of systems for anomalies or unauthorized access
6. International Data Transfers
If your data is transferred outside of your country of residence (including the European Economic Area or EEA), we implement appropriate safeguards in accordance with GDPR and other applicable laws. These may include Standard Contractual Clauses and agreements with service providers to maintain adequate levels of data protection.
7. Data Retention
We retain your data only as long as necessary for the purposes described:
– Usage and analytics data: Retained for a maximum of 24 months.
– Account and profile data: Retained while your account is active and for 12 months after termination.
– Communication data: Kept for up to 36 months from last interaction.
– Transaction data: Maintained for 7 years to satisfy accounting and tax obligations.
– Preference data: Retained as long as consent remains valid (you may revoke it at any time).
Once retention periods expire, data is securely deleted or anonymized.
8. Cookie Policy
Our website, hillarypen.com, uses cookies and similar tracking technologies to deliver a functional, secure, and optimized user experience. Cookies are categorized as follows:
– Essential Cookies: Required for website functionality (e.g., navigation, access to secure areas).
– Functional Cookies: Enhance usability by remembering your settings and choices.
– Performance Cookies: Aggregate data to help us understand usage patterns and improve performance.
– Analytics Cookies: Track visitor behaviors and metrics using tools like Google Analytics.
9. Cookie Management and Legal Compliance
We provide a cookie banner and preference management tool on our site to enable users to make informed decisions. Cookies (except strictly necessary ones) will not be placed without your consent. Under GDPR and CCPA:
– You may opt out of non-essential cookies.
– Browser settings can be modified to reject or delete cookies.
– CCPA grants you the right to opt out of sales of personal data—we do not sell your data.
10. Children’s Privacy
We do not knowingly collect or process personal information from children under the age of 13. If we discover that such data has been collected unintentionally, we will delete it promptly. Parents or guardians who believe we may have collected information from a child should contact us at [email protected].
11. Policy Updates
We reserve the right to update or amend this Privacy Policy at any time to reflect changes in legal requirements, our data processing practices, or the functionality of our website. Changes will be effective immediately upon posting on hillarypen.com. We encourage you to review this policy periodically. Where significant changes occur, we will notify you via email or other appropriate channels.
12. Contact Us
If you have any questions, concerns, or requests concerning this Privacy Policy or our privacy practices in general, please contact us at:
Email: [email protected]
Website: https://hillarypen.com
We are committed to full compliance with GDPR, CCPA, and other applicable privacy regulations. Protecting your data is our priority—please do not hesitate to reach out with any privacy concerns.