Privacy Policy
This Privacy Policy describes how we collect, use, and protect your personal information when you visit and interact with our website, dwain-chambers.com. We are committed to upholding the highest standards of data protection and safeguarding your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy
At dwain-chambers.com, your privacy is of paramount importance. We understand the need to protect the integrity of your personal information and are committed to being transparent about how we handle your data. We adhere to strict policies to ensure all personal data is processed responsibly and securely.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of dwain-chambers.com and covers all personal data collected through our website, services, communications, and any associated features. We act as the “data controller” for the purposes of the GDPR, meaning we determine the purpose and manner by which your personal data is processed.
For queries related to data protection or this Privacy Policy, you may contact us at [email protected].
3. Categories of Data We Process
We may process the following categories of personal data:
– Usage Data: Information about how you use our website, such as IP address, browser type and version, time zone setting, referring/exit pages, and interaction data (clickstreams, visit duration, etc.).
– Account Data: Information you provide when creating an account or ordering from us, including full name, postal address, email address, and telephone number.
– Profile Data: Information related to your preferences, past purchases, behavioral patterns, and product interests.
– Communication Data: Records of interactions with us, including emails, enquiry forms, customer support communications, and feedback.
– Technical Data: Information about the device you use to access dwain-chambers.com, such as operating system, platform, device identifiers, and system settings.
– Transaction Data: Details of purchases, billing and shipping addresses, payment card details (processed securely via third parties), and order history.
– Preference Data: Data related to your marketing preferences, cookie consent, and expressed interests in our products and services.
4. Legal Bases for Processing
We process your personal data lawfully, under one or more of the following legal bases:
– Consent: Where you have explicitly given us permission to process your data (e.g., for marketing communications or non-essential cookies).
– Contractual Necessity: Where processing is required to enter into or execute a contract with you (e.g., fulfilling an order or providing customer support).
– Legal Obligation: Where we must comply with a legal requirement (e.g., auditing, regulatory reporting, fraud prevention).
– Legitimate Interests: Where processing is necessary for our legitimate business interests, provided your rights do not override those interests (e.g., website performance analytics, fraud detection, responding to inquiries).
5. Your Rights
Subject to applicable data protection laws, you have the following rights regarding your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You can request correction of inaccurate or incomplete information we hold.
– Right to Erasure (‘Right to be Forgotten’): You may request deletion of your personal data, subject to our legal obligations.
– Right to Restriction of Processing: You may request that we limit processing of your data in certain situations.
– Right to Data Portability: You can request to receive your personal data in a structured, commonly used, machine-readable format.
To exercise any of these rights, please submit your request to [email protected]. We may require verification of your identity before fulfilling such requests.
6. Security Measures
We implement robust organizational and technical safeguards to protect your data against unauthorized access, disclosure, alteration, and destruction. These measures include:
– End-to-end encryption for data transmission.
– Access control policies, role-based access permissions, and secure authentication mechanisms.
– Secure data backups and system recovery protocols.
– Ongoing employee training in data protection and cybersecurity best practices.
7. International Data Transfers
Your information may be transferred to, stored in, or accessed from jurisdictions outside your country. Where such transfers occur, we employ standard contractual clauses or other applicable legal safeguards to ensure an adequate level of protection in compliance with GDPR and other relevant data protection laws.
8. Data Retention
We retain data only for as long as necessary for the purposes outlined in this policy or as required to meet legal, regulatory, or contractual obligations. Specifically:
– Account and Transaction Data: Retained for up to 7 years for financial and legal recordkeeping.
– Communication Data: Retained for 3 years to manage support history.
– Profile and Preference Data: Retained for 2 years from the last interaction unless consent is withdrawn sooner.
– Technical and Usage Data: Retained for a maximum of 12 months for analysis and security monitoring.
Upon expiry of the applicable retention periods, data is securely deleted or anonymized.
9. Cookie Policy
dwain-chambers.com uses cookies and similar technologies to enhance your experience. Cookies are small data files placed on your device, which may include:
– Essential Cookies: Necessary for website functionality and security, such as session handling and authentication.
– Functional Cookies: Allow the site to remember user preferences (e.g., language, login status).
– Analytical Cookies: Help us understand how visitors use the site, enabling improvements in performance and usability.
– Performance Cookies: Track errors or delays in the website functionality to ensure smoother user interactions.
10. Cookie Management and Legal Compliance
In compliance with GDPR and CCPA, all non-essential cookies are set only after obtaining your explicit consent via our cookie management tool. You have the ability to manage or withdraw cookie consent at any time through your browser settings or by revisiting our cookie banner.
California residents may also opt out of the “sale” or “sharing” of their personal data, as defined under CCPA. For more information or to exercise applicable rights, please contact [email protected].
11. Children’s Privacy
We do not knowingly collect or process personal data relating to children under the age of 13. If we become aware that such information has been inadvertently collected, we shall promptly delete it. Parents or guardians who believe their child has submitted information are encouraged to contact us immediately at [email protected].
12. Policy Updates
We reserve the right to update this Privacy Policy to reflect changes in legal, technical, or business developments. Continued use of dwain-chambers.com after such updates signifies your acceptance of the revised policy. We will make efforts to inform you of significant policy changes via email or on-site notifications, where appropriate.
13. Contacting Us
If you have questions, concerns, or wish to exercise your privacy rights under applicable data protection laws, you may contact us at:
Email: [email protected]
We take your privacy seriously and are committed to maintaining compliance with GDPR, CCPA, and other relevant privacy frameworks. Your trust is important to us, and we are here to ensure your personal data is handled responsibly and transparently.