PRIVACY POLICY
1. Introduction
At Leeds at Chelsea (“we”, “us”, or “our”), accessible at leedsatchelsea.com, we recognize the importance of protecting your personal data. We are committed to processing your information responsibly, with respect for your privacy and in full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data when you interact with our website, products, and services. We adopt a privacy-first approach, ensuring transparency and control over your personal information.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to your use of leedsatchelsea.com and any associated services. Leeds at Chelsea is the data controller responsible for processing your personal data for the purposes described in this policy.
If you have any questions about this policy or the processing of your data, please contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data, depending on your interactions with our website and services:
a. Usage Data
Includes information about your browser type and version, IP address, time zone setting, device identifiers, pages visited, session durations, and referral URLs.
b. Account Data
Includes your name, email address, billing and shipping addresses, phone number, and any other data provided when creating or managing an account.
c. Profile Data
Covers preferences, past orders, product interests, browsing behavior, and feedback or reviews submitted.
d. Communication Data
Includes the content and history of communications you send to us, including support tickets, inquiries, and chat interactions.
e. Technical Data
Comprises data related to your device, such as operating system, system configurations, screen resolution, browser plug-ins, and mobile device platform.
f. Transaction Data
Includes purchase details, payment methods, transaction identifiers, delivery addresses, and invoices.
g. Preference Data
Includes your consents for marketing communications, push notifications, and any expressed interests or likes related to our offerings.
4. Legal Bases for Processing
We process personal data based on one or more of the following legal bases:
– Consent: Where you have provided express consent, such as subscribing to marketing updates.
– Contractual Necessity: To fulfill pre-contractual or contractual obligations, including order fulfillment and account management.
– Legitimate Interest: To improve our services, ensure security, and conduct business operations in ways that do not override your rights.
– Legal Obligation: To comply with applicable laws and regulations.
5. Your Rights
Under data protection laws, you have the following rights regarding your personal data:
– Right of Access: You may request a copy of the personal data we hold about you;
– Right to Rectification: You have the right to request corrections to inaccurate or incomplete data;
– Right to Erasure (“Right to be Forgotten”): You can request the deletion of your data under qualifying circumstances;
– Right to Restrict Processing: You may limit how we process your data;
– Right to Data Portability: You may receive your data in a structured, commonly-used, and machine-readable format and request transfer to another controller, where technically feasible;
– Right to Object: You may object to the processing of your data based on legitimate interests or for direct marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational measures to ensure the security of your data, including:
– Data encryption in transit and at rest;
– Role-based access control and authentication procedures;
– Regular data backups and recovery protocols;
– Staff training on data protection and security best practices.
We continually assess our privacy and security policies in light of evolving threats and industry standards.
7. International Transfers
Where necessary, we may transfer personal data to jurisdictions outside of the European Economic Area (EEA) or the United States. In such cases, we ensure appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or rely on other lawful mechanisms under GDPR and CCPA to guarantee an adequate level of data protection.
8. Data Retention
We retain personal data only as long as it is necessary for the purposes for which it was collected, or as required by law:
– Account and Profile Data: Retained while your account is active, and up to 5 years thereafter;
– Transaction Data: Retained for legal and tax purposes for up to 7 years;
– Communication Data: Retained for up to 3 years from your last contact;
– Preference Data: Retained for as long as your consent is valid or until revoked;
– Technical and Usage Data: Retained for analytics and website optimization purposes for up to 2 years.
9. Cookie Policy
leedsatchelsea.com uses cookies and similar technologies to enhance your experience. These include:
– Essential Cookies: Required for website functionality, such as logging in and completing purchases;
– Functional Cookies: Enable enhanced personalization features;
– Analytics Cookies: Help us understand usage patterns and improve performance;
– Performance Cookies: Track website performance metrics and issues.
Cookies may be set by us or by authorized third-party service providers.
10. Cookie Management and Compliance
You may control or disable cookies through your browser settings or access our cookie preference center when visiting our website for the first time. For users subject to GDPR or CCPA, consent is obtained for non-essential cookies, and you may revoke or update preferences at any time via our website.
Under CCPA, California residents may opt-out of the sale or sharing of their data, if applicable. Although we do not sell personal data in the traditional sense, you can contact us at [email protected] for further details.
11. Children’s Privacy
We do not knowingly collect or process data from individuals under the age of 13. If you believe a child has provided us with personal data without parental consent, please contact us at [email protected] so we can promptly remove the information.
12. Policy Updates
We reserve the right to revise this Privacy Policy at any time, to reflect changes in our practices or legal obligations. We will notify users of material changes via our website or direct communication. We encourage you to review this policy periodically to stay informed.
13. Contact Us
If you have any questions about this Privacy Policy, your rights, or how we handle your personal data, you may contact us at:
Email: [email protected]
Website: leedsatchelsea.com
We are committed to privacy compliance and welcome your feedback. Please reach out if you have any privacy-related concerns or require further information about how your data is handled.