Privacy Policy
Leeds at Chelsea (“we”, “our”, or “us”) is committed to safeguarding the privacy and personal data of visitors and users of our website, leedsatchelsea.com. We recognize the fundamental importance of data protection and take our responsibilities seriously under applicable data privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
This Privacy Policy outlines how we collect, use, store, share, and safeguard your personal information, and explains your rights and choices concerning your data. By using leedsatchelsea.com, you acknowledge that you have read and understood the practices described in this Privacy Policy.
1. Scope of this Policy and Our Role as Data Controller
This Privacy Policy applies to all personal data collected through our website, leedsatchelsea.com, and related digital services. As the entity responsible for determining the purposes and means of processing your personal data, Leeds at Chelsea acts as a data controller under relevant data protection legislation.
If you have any questions regarding your data or this policy, you may contact us at [email protected].
2. Categories of Personal Data We Process
We may collect and process the following categories of personal data depending on how you interact with our website:
a. Usage Data
Information automatically collected when you browse our website, including your IP address, browser type and version, access times, pages visited, referring links, and session duration.
b. Account Data
Details you provide when creating an account or registering on leedsatchelsea.com, including your full name, postal address, email address, and telephone number.
c. Profile Data
Information about your preferences, purchase history, browsing patterns, and user activity on our site to support personalized experiences and content.
d. Communication Data
Records of any correspondence with us, including customer support requests, inquiries, and other forms of direct communication.
e. Technical Data
Details related to the devices and systems you use to access our site, such as your device’s hardware model, operating system, unique device identifiers, and software configuration.
f. Transaction Data
Payment information and related communication to support order fulfillment, including billing addresses, transaction histories, delivery information, and confirmation details.
g. Preference Data
Marketing and communication preferences, product interests, and user consent information regarding receiving promotional or personalized content.
3. Legal Bases for Processing
We process personal data only when permitted by applicable law. The lawful bases for processing include:
– Contractual Necessity: To perform a contract with you or provide requested services.
– Legitimate Interest: To operate, improve, and secure our website, while ensuring minimal intrusion on your rights.
– Consent: Where you have provided clear permission for a specific form of data processing (e.g., newsletter enrollment).
– Legal Obligations: To comply with mandatory legal requirements and defend our legal rights.
4. Your Data Protection Rights
Subject to applicable laws, you have the following rights in relation to your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request corrections to inaccurate or incomplete personal data.
– Right to Erasure: You may request deletion of your personal data, where lawful to do so.
– Right to Restriction: You may request us to limit the processing of your personal data under certain conditions.
– Right to Data Portability: You may request to receive personal data you have provided in a structured, commonly used, machine-readable format, and to transmit it to another controller.
To exercise any of these rights, please contact us at [email protected]. We may ask for additional information to verify your identity before fulfilling your request.
5. Security Measures
We implement a combination of technical and organizational security measures to protect your personal data against unauthorized access, disclosure, alteration, and destruction. These include, but are not limited to:
– Encryption of data during transmission and at rest;
– Access control procedures and user authentication;
– Regular security audits and system monitoring;
– Routine backups and recovery systems;
– Ongoing staff training in data security and privacy compliance.
6. International Data Transfers
When transferring your data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place. These may include the use of Standard Contractual Clauses approved by the European Commission or other mechanisms compliant with GDPR and relevant jurisdictional standards. We endeavor to ensure that all international recipients of your data provide an equivalent level of privacy protection.
7. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including compliance with legal, regulatory, accounting, and reporting requirements. Retention periods vary by data type:
– Usage Data – up to 12 months;
– Account and Profile Data – maintained while user accounts remain active, and deleted within 90 days of account termination;
– Transaction Data – retained for seven years to comply with financial regulations;
– Communication Data – retained for 36 months post-interaction;
– Preference Data – until withdrawal of consent or 24 months of inactivity.
8. Cookie Policy
We use cookies and similar technologies to enhance site functionality, analyze usage, and personalize content. Cookies we utilize fall into the following categories:
– Essential Cookies – Necessary for the operation of leedsatchelsea.com (e.g., session authentication, cart functions);
– Functional Cookies – Enable new features or remember your preferences;
– Analytics Cookies – Provide data on how users interact with the website to improve services (e.g., Google Analytics);
– Performance Cookies – Assess application performance and system responsiveness.
9. Cookie Management and Regulatory Compliance
Upon first visit to leedsatchelsea.com, users are presented with a cookie banner allowing the option to accept, decline, or configure non-essential cookies. You may also manage cookie preferences via browser settings.
We ensure compliance with GDPR prior consent requirements and honor the Do Not Sell My Personal Information provisions under the CCPA. Where applicable, users may exercise their right to opt out of cookie-based tracking by contacting [email protected] or using our consent management tools.
10. Children’s Privacy
Protecting the privacy of children is a key priority. Our website is not intended for use by persons under the age of 13. We do not knowingly collect or solicit personal data from children. If you believe that a child under 13 has provided personal information through leedsatchelsea.com, please contact us immediately at [email protected] and we will take appropriate action to delete such data.
11. Policy Updates
We reserve the right to revise this Privacy Policy to reflect changes in law, technology, or business operations. Material changes that affect your data rights or our obligations will be communicated by appropriate means including, where required, notification on the website or by contacting you directly.
We encourage regular review of this Policy to stay informed about how your data is handled.
12. Contacting Us
If you have questions, concerns, or complaints about our privacy practices, or if you wish to exercise any of your rights, please reach out to:
Email: [email protected]
We are committed to resolving all privacy-related concerns in a timely and transparent manner.
Compliance Statement
We strive to uphold the highest standards of privacy and data protection, in compliance with all applicable laws including GDPR and CCPA. Should you have any concerns about your personal data while using leedsatchelsea.com, we encourage you to contact us at [email protected].