PRIVACY POLICY
Home Haven HQ (“we”, “us”, or “our”), accessible at https://homehavenhq.com, is committed to protecting your privacy and safeguarding the personal data you entrust to us. This Privacy Policy explains how we collect, use, share, and protect your personal information when you interact with our website.
We are deeply committed to upholding the highest standards of data protection and privacy in accordance with applicable laws, including the General Data Protection Regulation (EU GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
At Home Haven HQ, your privacy is our priority. We take data protection seriously and process all personal information in a lawful, transparent, and fair manner. This policy sets forth how we handle your personal data to ensure your rights are respected and protected at every step.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through our website, https://homehavenhq.com, and associated online services. For the purposes of the General Data Protection Regulation (GDPR), Home Haven HQ is the data controller responsible for the handling of your personal data.
If you have any questions about this policy or how your personal data is handled, you can contact us at [email protected].
3. Categories of Data We Collect
We collect and process the following categories of personal data, which may be obtained directly from you or through automated technologies when you use our services:
a. Usage Data
Includes information about your interactions with our website, such as IP address, browser type and version, pages visited, duration of sessions, time zone settings, referring URLs, and other usage-related metrics.
b. Account Data
Includes information you provide to create an account or purchase from us, including your name, billing and shipping address, email address, phone number, and account credentials.
c. Profile Data
Includes preferences, shopping behavior, wish lists, order history, and other insights derived from your activity on our site.
d. Communication Data
Includes messages sent through our contact forms, customer service records, support tickets, and any interactions (email, chat, etc.) you’ve had with our team.
e. Technical Data
Includes device type, operating system, screen resolution, browser plug-ins, hardware identifiers, language, and mobile device IDs.
f. Transaction Data
Includes payment details (tokenized and processed via secure third parties), order confirmations, delivery addresses, and billing history.
g. Preference Data
Includes your communication and marketing preferences, opt-in status, subscribed categories, and responses to surveys or promotions.
4. Legal Bases for Data Processing
We process your personal data lawfully based on one or more of the following legal grounds:
– Consent: When you voluntarily provide us with information or opt-in to marketing communications.
– Contractual Necessity: To fulfill contractual obligations such as processing your orders or providing customer support.
– Legitimate Interests: To improve and tailor our services, detect fraud, or safeguard our digital assets—provided such interests are not overridden by your data protection rights.
– Legal Obligation: Where processing is required by applicable law or governmental request.
5. Your Rights Under GDPR and CCPA
Depending on your jurisdiction, you may have the following rights regarding your personal data:
– Right of Access: To request a copy of your personal information held by us.
– Right to Rectification: To correct inaccurate or incomplete data.
– Right to Erasure: To request deletion of your personal data, subject to legal limitations.
– Right to Restriction: To limit how we process your data where appropriate.
– Right to Data Portability: To receive your information in a standard, machine-readable format.
– Right to Object: To object to the processing of your data under certain circumstances.
– Right to Withdraw Consent: To revoke your consent where applicable.
– Right Not to Be Discriminated Against: Under CCPA, for exercising any of your consumer rights.
To exercise your rights, please contact us at [email protected]. We will respond in accordance with applicable legal timelines.
6. Security Measures
We implement a comprehensive suite of technical and organizational measures designed to secure personal data against unauthorized access, disclosure, loss, or alteration. These include:
– End-to-end encryption of data during transmission and storage
– Multi-factor authentication and role-based access control
– Regular security audits and vulnerability assessments
– Secure data center hosting with physical protection
– Staff training on privacy and data handling best practices
– Routine backups and business continuity protocols
7. International Transfers
Where personal data is transferred outside of the European Economic Area (EEA) or other jurisdictions with similar regulations, we ensure adequate safeguards in accordance with applicable law. These may include:
– Standard Contractual Clauses (SCCs) approved by the European Commission
– Memoranda of Understanding and certification under relevant frameworks
– Data processing agreements with reputable international providers
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected and to meet legal, regulatory, or accounting requirements.
Retention periods differ depending on the type of data:
– Usage Data: 12 months
– Account Data: 6 years following account closure
– Profile Data: 3 years from last activity
– Communication Data: 2 years
– Technical Data: 1 year
– Transaction Data: 7 years (per financial recordkeeping)
– Preference Data: Until withdrawal of consent or maximum 2 years
Data may be anonymized for statistical purposes and retained indefinitely in that form.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience on homehavenhq.com. Cookies are small text files placed on your device to provide a more tailored and efficient user experience. We categorize them as follows:
– Essential Cookies: Required for core website functionality (e.g., session management).
– Functional Cookies: Support enhanced functionality such as remembering preferences.
– Analytics Cookies: Help us understand user behavior via anonymized data.
– Performance Cookies: Monitor and improve website performance metrics.
10. Cookie Management and Compliance
Upon visiting our website, a cookie consent banner is presented in compliance with GDPR and CCPA. You can manage or withdraw your consent at any time via our cookie preference center or through your browser settings.
We honor “Do Not Track” signals where technically feasible, and allow users to opt out of any non-essential cookie use.
11. Children’s Privacy
We do not knowingly collect or process personal data from children under the age of 13. If we learn that we have inadvertently gathered personal data from a child, we will delete it promptly, unless legally obligated to retain such information.
Parents or guardians who believe their child may have provided us with information can contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to amend this Privacy Policy at any time to reflect changes in legal, regulatory, or operational requirements. Updates to this Policy will be posted on homehavenhq.com. Where material changes are made, users will be notified through the website or by direct communication where appropriate.
13. Contact Information
For any questions, requests, or concerns regarding this Privacy Policy, your data rights, or how we process your personal data, please contact us at:
Email: [email protected]
Website: https://homehavenhq.com
We are committed to ensuring your data is processed in a compliant, transparent, and honest manner.
—
This Privacy Policy reflects our ongoing compliance with data protection laws, including GDPR and CCPA. If you have privacy-related concerns, you are encouraged to reach out to us at [email protected]. We’re here to help you understand and exercise your data rights.