Privacy Policy for hearthstoneinnovators.com

1. Introduction

At Hearthstone Innovators, accessible via hearthstoneinnovators.com, we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. Our dedication to privacy-by-design ensures that your rights and freedoms are prioritized at every step of our operations.

2. Scope of Policy and Data Controller Role

This Privacy Policy governs the collection and processing of personal data through your use of hearthstoneinnovators.com and any related services. Hearthstone Innovators is the data controller responsible for your personal data, meaning we determine the purposes and means by which your data is processed.

If you have any questions about this Policy or how your data is handled, please contact us at:
[email protected]

3. Categories of Data Processed

We may collect and process the following categories of personal information:

a. Usage Data
Includes information such as your Internet Protocol (IP) address, browser type and version, pages visited, time stamp of visits, session duration, referring URLs, and diagnostic data used to analyze website performance and user behavior.

b. Account Data
Includes first and last name, email address, billing and shipping addresses, phone number, and any credentials you may use to log into your user account on hearthstoneinnovators.com.

c. Profile Data
Includes your product preferences, purchasing history, browsing behavior, wishlist items, and activity on your user profile.

d. Communication Data
Includes records of correspondence with our support or sales teams, including support tickets, chat transcripts, and email communications initiated via hearthstoneinnovators.com or to our official contact channels.

e. Technical Data
Includes device type, operating system and platform, system settings, and other diagnostic technical data that assist in product optimization and compatibility.

f. Transaction Data
Includes details of products purchased via hearthstoneinnovators.com, payment method (excluding full payment card numbers, which are processed via our secure payment gateway), delivery status, and invoice or order numbers.

g. Preference Data
Includes user selections for marketing communications, newsletter subscriptions, preferred product categories, and participation in promotions or events.

4. Legal Bases for Processing

We process your personal data only when there is a lawful basis for doing so. These bases include:

– Consent: Where you have explicitly agreed to data collection for specific purposes such as marketing communications.
– Contractual Necessity: To perform obligations arising from any purchase or service agreement with you.
– Legitimate Interests: For improving our website, enhancing user experience, fraud prevention, and internal analytics.
– Legal Obligations: Where required to comply with applicable laws or enforce our legal rights.

5. Your Rights

Under GDPR and CCPA, you may exercise the following rights concerning your personal data:

– Access: Request confirmation of whether your data is being processed and obtain a copy.
– Rectification: Request correction of inaccurate or incomplete personal data.
– Erasure (“Right to be Forgotten”): Request that we delete your data under certain circumstances.
– Restriction: Request we limit the processing of your data where appropriate.
– Portability: Request transfer of your data in a structured, commonly used, machine-readable format to another controller.
– Object: Object to processing where processing is based on our legitimate interests or direct marketing.

To exercise any of these rights, contact us at [email protected].

6. Security Measures

We employ rigorous technical and organizational measures to safeguard personal data:

– Encryption of data in transit using SSL/TLS protocols
– Role-based access control limiting employee data access
– Regular data backups and secure storage
– Mandatory privacy training for staff
– Monitoring systems for intrusion detection and remediation controls

Despite our best efforts, no electronic transmission or storage is 100% secure; however, we remain committed to continuous improvement in line with industry standards.

7. International Transfers

Personal data collected via hearthstoneinnovators.com may be processed in countries outside your jurisdiction, including in countries that may not provide the same legal protection as your country. In such cases, we ensure adequate safeguards are in place, such as:

– Standard Contractual Clauses approved by the European Commission
– Compliance with regional data protection frameworks, including supplementary contractual controls where necessary

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal and regulatory requirements.

– Usage Data: retained for 12 months for analytics and optimization
– Account Data: retained for duration of active user account and 36 months after final user interaction
– Transaction Data: retained for 7 years, pursuant to accounting and legal compliance requirements
– Communication Data: retained for 24 months for customer service quality assurance
– Preference Data: retained until you withdraw your consent or opt out

9. Cookie Policy

We use cookies and similar tracking technologies to improve the usability and performance of hearthstoneinnovators.com. Cookies serve important functions:

a. Essential Cookies
Enable functionality such as shopping cart access, site navigation, and secure sessions. Required for basic operation.

b. Functional Cookies
Store user preferences and enhance the personalization of your experience (e.g., preferred language or location settings).

c. Analytics Cookies
Help us understand how users interact with hearthstoneinnovators.com through aggregated and anonymized metrics (e.g., Google Analytics).

d. Performance Cookies
Enable monitoring of website speed and loading effectiveness devices and network capability.

10. Cookie Management and Compliance with GDPR & CCPA

On first visit, you will be presented with a cookie banner to provide or withhold consent for non-essential cookies. You may update your preferences at any time using our Cookie Settings tool found on hearthstoneinnovators.com or by adjusting your browser settings.

Under GDPR and CCPA, you have the right to opt out of non-essential tracking and to request disclosure of what personal information is collected via cookies.

To review or withdraw cookie consent at any time, visit our ‘Cookie Preferences’ link in the footer of our website.

11. Special Protections for Children

Our services are not intended for individuals under the age of 13, and we do not knowingly collect or process personal data from children. If we become aware of such data being provided by a child under 13, we will take reasonable steps to delete it promptly.

12. Policy Updates & User Notifications

We may modify this Privacy Policy to reflect changes in our operational or legal obligations. Any material changes will be communicated through hearthstoneinnovators.com via a banner notice or user email notification. Continued use after notification signifies acceptance of the updated terms.

We encourage users to periodically review this policy for updates.

13. Contact

For questions regarding this Privacy Policy, your personal data, or to exercise your rights, please contact:

Hearthstone Innovators
Email: [email protected]

We are committed to full compliance with data protection regulations and remain available to address any privacy-related inquiries or concerns.