PRIVACY POLICY
At Modern Mama HQ, accessible at modernmamahq.com, your privacy and the protection of your personal information are of paramount importance to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit our website or engage with our services. We are committed to upholding the highest standards of data protection in accordance with applicable laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
Modern Mama HQ values your trust and is committed to protecting your personal data with transparency, integrity, and respect. This Privacy Policy outlines our approach to handling your data responsibly, ensuring that your rights are fully protected.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through your use of our website (modernmamahq.com) and associated services. Modern Mama HQ acts as the “data controller” for the purposes of the GDPR, meaning we determine how and why your personal data is processed. For users within the scope of CCPA, Modern Mama HQ qualifies as a “business” under applicable statutes.
3. Categories of Data We Process
We may collect the following categories of personal data from you directly or automatically through your interaction with modernmamahq.com:
– Usage Data: includes data about your interactions with our website, such as IP addresses, browser type, operating system, access times, pages viewed, and referring URL.
– Account Data: includes identifying information such as your full name, email address, mailing address, and telephone number.
– Profile Data: includes demographic info, purchase history, preferences, account settings, and behavioral data based on interactions with products or services.
– Communication Data: includes your messages, emails, support requests, customer service dialogues, and contact history.
– Technical Data: includes information about your device, browser plug-ins, internet connection, hardware model, OS version, and mobile network.
– Transaction Data: includes billing details, purchase information, order history, payment data (last four digits of payment method), and shipment details.
– Preference Data: includes marketing preferences, communication selections, survey responses, and interest in specific product categories.
4. Legal Bases for Data Processing
We process your personal data under the following lawful grounds as defined under the GDPR and in compliance with CCPA provisions:
– Performance of Contract: when processing is necessary to fulfill contractual obligations (e.g., delivering goods or services).
– Consent: when you have voluntarily provided affirmation (e.g., marketing communications). Consent can be withdrawn at any time.
– Legitimate Interests: where processing is essential to operate, enhance, or secure our services, provided these interests do not override your data rights.
– Legal Obligations: when needed to comply with statutory or regulatory duties.
5. Your Rights Under Data Protection Laws
Depending on your jurisdiction, you may exercise the following rights:
– Right of Access: obtain confirmation, and a copy, of the personal data we hold about you.
– Right to Rectification: request correction of any inaccurate or incomplete data.
– Right to Erasure: request deletion of your personal data where legally applicable (“right to be forgotten”).
– Right to Restrict Processing: limit how your data is used when specific conditions apply.
– Right to Data Portability: request to receive your data in a structured, machine-readable format or to have it transferred to another data controller.
– Right to Object: to processing based on legitimate interests, or direct marketing.
– Non-Discrimination (CCPA): exercise these rights free from discriminatory treatment.
To exercise any of these rights, please contact us at [email protected]. We will verify your identity before fulfilling such requests.
6. Security Measures
We implement robust security measures to protect your data from unauthorized access, misuse, alteration, or loss:
– Use of encryption technologies (SSL/TLS) during data transmission.
– Secure storage infrastructure with limited and monitored access.
– Regular data backups and disaster recovery planning.
– Strict access control protocols across customer and employee data.
– Regular privacy and data protection training for staff and contractors.
7. International Data Transfers
Your personal data may be transferred to, and processed in, countries outside of your location, including the United States. In such cases, we ensure the protection of your data through:
– Standard Contractual Clauses (SCCs) approved by the European Commission.
– Assessments to ensure receiving countries offer adequate safeguards.
– Additional technical and organizational measures as required.
8. Data Retention Policy
We retain personal data only for as long as necessary for the purposes outlined herein or to comply with legal, regulatory, or reporting obligations:
– Usage and Technical Data: up to 24 months.
– Account and Profile Data: for the duration of your relationship with us and up to 5 years after inactivity.
– Communication and Transaction Data: for up to 7 years due to legal and tax requirements.
– Preference and Marketing Data: until consent is withdrawn or after 2 years of inactivity.
Once data is no longer needed, we securely delete or anonymize it.
9. Cookie Policy
Modern Mama HQ uses cookies and similar technologies to enhance user experience, analyze website performance, and offer personalized content. We group these into:
– Essential Cookies: necessary for website functionality (e.g., shopping cart, secure login).
– Functional Cookies: remember your choices and enhance usability.
– Analytics Cookies: provide insight into visitor behavior and site performance (e.g., Google Analytics).
– Performance Cookies: help us measure and improve site responsiveness, often in an aggregated format.
10. Cookie Management and Compliance
When visiting modernmamahq.com, you will be prompted to manage your cookie preferences. You may accept, reject, or customize categories of cookies. Your consent is collected in compliance with GDPR, and opt-out options are provided per CCPA guidelines. You may also control cookies via your browser settings or privacy preference centers available on our website.
11. Children’s Privacy
Our services are not directed to individuals under the age of 13. We do not knowingly collect or process personal data from children under this age. If we discover such data has been submitted, it will be promptly deleted. Parents or guardians may contact us at [email protected] to request data removal.
12. Policy Updates and User Notification
We may update this Privacy Policy from time to time to remain compliant with regulations or to reflect changes to our data handling practices. Any substantive changes will be communicated via email or a notification on modernmamahq.com. Continued use of our website post-notification constitutes your consent to those modifications.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy, or would like to exercise your data rights, please contact our Privacy Officer:
Email: [email protected]
Modern Mama HQ strives to maintain full compliance with GDPR, CCPA, and all relevant data protection laws. Your privacy matters, and we welcome any inquiries regarding how your information is handled.