Privacy Policy for HavenTerrace.com
1. Introduction
At HavenTerrace.com (“we”, “us”, “our”), we are committed to safeguarding your personal data and upholding your privacy rights. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and related regulatory requirements. We adopt a privacy-first approach in all operations, treating your data responsibly and securely.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through your use of our website at haventerrace.com and related services and functionalities. For the purposes of the GDPR and other relevant privacy legislation, Haven Terrace is the “data controller” responsible for your personal information. If you reside in California, this policy applies equally to your rights under the CCPA.
3. Categories of Data We Process
We only collect data strictly necessary for the purposes detailed in this policy. The categories of personal data we process include:
a. Usage Data
Information about your interaction with haventerrace.com, such as IP addresses, browser types, operating systems, device identifiers, geographic information, pages viewed, clickstream data, and session durations.
b. Account Data
Identifiable details provided when you create or manage an account, including your full name, billing and shipping address, phone number, and email address.
c. Profile Data
Details about your preferences, interests, past orders, shopping habits, and feedback, used to personalize your experience.
d. Communication Data
Records of correspondence with us, such as support inquiries, messages via contact forms, email threads, and chat transcripts.
e. Technical Data
Data related to the technology you use to access our services, such as internet protocol (IP) addresses, browser plug-in types and versions, time zone settings, screen resolution, and operating system configuration.
f. Transaction Data
Information connected to your purchases, including payment method (excluding full payment card numbers), product or service details, delivery status, and transaction history.
g. Preference Data
Marketing consents, notification settings, and expressed interests related to products or services you wish to hear about.
4. Legal Bases for Processing
We process your personal data only when required and lawful under applicable regulation. The legal bases on which we rely include:
– Consent: When you have given us clear permission to process your personal data.
– Contract: Where processing is necessary to fulfill a contract with you or take pre-contractual steps at your request.
– Legal Obligation: Where processing is needed to comply with legal duties.
– Legitimate Interests: When it serves our lawful business interests (e.g., to improve services), provided those interests are not overridden by your data protection rights.
5. Your Rights Under Data Protection Laws
Subject to applicable law, you have certain rights in relation to your personal information:
– Right of Access: To request confirmation of whether we process your data and to obtain a copy.
– Right to Rectification: To ask us to correct inaccurate or incomplete personal information.
– Right to Erasure (“Right to be Forgotten”): To request deletion of your personal data where processing is no longer necessary or consent has been withdrawn.
– Right to Restriction: To request temporary suspension or limitation of processing in specific circumstances.
– Right to Data Portability: To request transmission of your data to you or to another controller in a structured, commonly used format.
To exercise these rights, you may contact us at [email protected]. We will respond in accordance with applicable law.
6. Security Measures
We implement appropriate technical and organizational security measures to protect your personal data against accidental loss, unauthorized access, misuse, alteration, or disclosure. This includes:
– Encrypted data transfer via HTTPS protocols
– Access controls with authentication and authorization layers
– Secure data backups and disaster recovery systems
– Regular staff training and security audits
Although no system can guarantee absolute security, we strive to maintain best industry practices to protect your information.
7. International Data Transfers
Where personal data is transferred outside of the European Economic Area (EEA), we ensure that adequate safeguards are in place, such as the European Commission’s Standard Contractual Clauses or other legally compliant mechanisms. Users accessing haventerrace.com from jurisdictions outside their residence do so at their own initiative and are responsible for compliance with local laws.
8. Data Retention
We retain your personal data only for as long as necessary for the purposes stated in this policy or as required by law. The retention periods vary by category:
– Usage, Technical, and Profile Data: up to 26 months for analytics and optimization
– Account and Transaction Data: retained for 7 years to satisfy contractual and legal accounting obligations
– Communication Data: preserved for 3 years to address support history and potential claims
– Preference Data: retained until you withdraw consent or update settings
All data is securely deleted or anonymized once no longer required.
9. Cookie Policy
HavenTerrace.com uses cookies and similar technologies to enhance your experience and analyze site usage. We categorize cookies as follows:
– Essential Cookies: Required for the operation of our website (e.g., login authentication, shopping cart functionality).
– Functional Cookies: Enable site personalization and remember your settings.
– Performance and Analytics Cookies: Help analyze user interaction and traffic patterns via tools like Google Analytics.
– Marketing Cookies: Enable interest-based advertising and marketing campaign assessment.
10. Cookie Management & GDPR/CCPA Compliance
Upon visiting haventerrace.com, you are presented with a cookie banner that allows you to accept or customize your preferences. Under GDPR and CCPA, you may:
– Withdraw cookie consent at any time via cookie settings in your browser or our on-site preference center
– Request information about third parties with whom collected cookie data is shared
– Opt-out of the sale or sharing of personal information (as applicable to CCPA)
11. Children’s Privacy
We do not knowingly collect or process personal information from children under the age of 13. If we become aware that data from a child under 13 has been unintentionally collected, we will immediately delete such information. Parents or legal guardians who believe their child has provided us with personal data may contact us at [email protected] for appropriate action.
12. Policy Updates and User Notification
We may update this Privacy Policy from time to time to reflect changes in legal obligations, our practices, or services. Updates will be prominently communicated via this page. Continued use of haventerrace.com following modifications indicates your acceptance of the updated terms.
13. Contact Us
For any privacy-related questions, concerns, or to exercise your data rights, please contact us:
Email: [email protected]
Website: https://haventerrace.com
—
HavenTerrace.com is committed to full compliance with all applicable data protection laws and to responsibly handling your personal information. Please contact us at [email protected] if you have any questions regarding this Privacy Policy or wish to assert your rights under applicable law.