Privacy Policy
1. Introduction
At harveyhoutkin.com, we are committed to safeguarding your personal data and respecting your privacy rights. The security and confidentiality of your information are of paramount importance to us. This Privacy Policy outlines how we collect, use, disclose, and safeguard your data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users who interact with harveyhoutkin.com, including visitors, customers, and users of our products, services, and platforms. We act as the “data controller” of your personal data when you access our website, meaning we are responsible for deciding how your personal data is used and for ensuring compliance with relevant laws and principles.
If you have questions about our data handling practices, please contact us at [email protected].
3. Categories of Data Processed
We collect and process the following categories of personal data:
3.1 Usage Data
Data about how you use our website, which may include:
– IP address
– Browser type and version
– Geographic location
– Time zone settings
– Device identifiers and session times
– Referring/exit pages and clickstream data
3.2 Account Data
Data provided when creating an account or placing an order, such as:
– Full name
– Physical address
– Email address
– Telephone number
– Login credentials (encrypted)
3.3 Profile Data
Data related to your interactions and preferences including:
– Purchase history
– Preferences and settings
– Behavior on our website
– Saved items or interests
3.4 Communication Data
Correspondence or data provided through support channels:
– Support queries
– Service feedback
– Contact history
3.5 Technical Data
Information collected from your device used to access our site, such as:
– Device type and operating system
– Platform and hardware details
– System configuration
– Network type and performance
3.6 Transaction Data
Data relating to purchases made through harveyhoutkin.com, including:
– Payment method details (tokenized or PCI-DSS compliant mechanisms only)
– Billing and shipping addresses
– Order details
– Delivery confirmation and tracking
3.7 Preference Data
Information you provide or we infer regarding your marketing choices and interests:
– Marketing subscription status
– Product or service interests
– Communication preferences
4. Legal Bases for Processing
We rely on the following legal bases under GDPR to process your personal data:
– Consent: Where you have given explicit consent to processing (e.g., for marketing emails).
– Contract: Where processing is necessary for the performance of a contract with you (e.g., fulfilling orders).
– Legitimate Interest: Where necessary for our legitimate interests and those interests do not override your fundamental rights (e.g., website analytics, fraud detection).
– Legal Obligation: Where processing is required for compliance with applicable laws.
5. Your Rights
Under GDPR and CCPA, you have the following rights over your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure (Right to Be Forgotten): You may request the deletion of your personal data.
– Right to Restriction: You may ask us to restrict processing of your data.
– Right to Data Portability: You may request a copy of the personal data you provided to us in a machine-readable format.
– Right to Object: You may object to our processing where it is based on legitimate interest or direct marketing.
To exercise any of these rights, please contact us at [email protected].
California residents additionally have the right to request the categories and specific pieces of personal data collected, disclose data sold/shared for business purposes, and opt-out of such sales (where applicable).
6. Security Measures
We implement and maintain appropriate technical and organizational safeguards to protect your personal data. This includes:
– Secure Socket Layer (SSL) encryption protocols
– Role-based and password-protected data access
– Regular data backups and recovery protocols
– Staff data protection awareness training
– Secure third-party services vetted for compliance
While we endeavor to protect your information, no system can guarantee complete security. We encourage you to take steps to protect your data online.
7. International Transfers
If we transmit personal data outside the European Economic Area (EEA) or California, we ensure its protection through:
– Standard Contractual Clauses approved by the European Commission
– Third parties certified under data protection adequacy frameworks
– United States vendors who comply with CCPA requirements for service providers
We ensure any such transfers are conducted in full compliance with data protection legislation.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting obligations:
– Usage Data: up to 12 months for analytics
– Account Data: for the duration of the account plus 6 years
– Profile & Preference Data: active use plus 2 years
– Communication Data: 3 years post-closure
– Transaction Data: 7 years for financial/legal compliance
– Technical Data: 12 months
– Marketing Data: until opt-out or 24 months after inactivity
We anonymize or securely erase personal data once retention periods expire.
9. Cookie Policy
We use cookies and similar technologies on harveyhoutkin.com to enhance your experience and measure website performance. The types of cookies include:
– Essential Cookies: Enable site navigation and ensure basic functionality
– Functional Cookies: Remember your preferences and choices
– Analytics Cookies: Help us understand user behavior and improve tools (e.g., Google Analytics)
– Performance Cookies: Measure site speed, interactions, and technical issues
These technologies may automatically collect identifiers and usage patterns when you visit harveyhoutkin.com.
10. Cookie Management and Compliance
Under GDPR and CCPA, you have the right to control and manage your cookie preferences. Upon first visit, we provide a cookie banner enabling you to accept or reject non-essential cookies. You may also modify your choices at any time via our Cookie Settings link.
Browsers often allow cookie refusal as well. Please note that disabling some cookies may impact your user experience.
We do not sell personal data derived from cookies to third parties without consent.
11. Special Protections for Children
harveyhoutkin.com is not intended for use by individuals under the age of 13. We do not knowingly collect or process personal data from children. If advised or discover data collected from a child, we will take immediate steps to delete such information. Parents or guardians may contact us via [email protected] with any concerns.
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time to reflect changes in our operations or legal requirements. Material changes will be communicated via an on-site notification or direct contact when appropriate. You are encouraged to periodically review this page to stay informed.
Continued use of harveyhoutkin.com constitutes agreement to the current version of this Privacy Policy.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Data Protection Officer
Email: [email protected]
We are fully committed to ensuring your privacy is respected and safeguarded at all times. You may contact us at any time with concerns related to data privacy or this Policy.