Privacy Policy for tiffanymyer.com

1. Introduction

At tiffanymyer.com, we are firmly committed to protecting and respecting your privacy. We recognize the importance of safeguarding personal information and upholding the rights of individuals regarding their data. This Privacy Policy outlines how we collect, use, store, and protect personal data, and it reflects our commitment to compliance with all applicable data protection frameworks, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We are dedicated to transparency, accountability, and privacy-first principles as part of the services we provide through our website.

2. Scope of this Policy and Data Controller Information

This Privacy Policy applies to all visitors, users, and others who access or use the website tiffanymyer.com (“Site”). The data controller responsible for your personal data is Tiffany Myer Media (referred to as “we”, “us”, or “our”). As the data controller, we determine the purposes and means of processing personal data collected via this Site.

Questions, concerns, or data-related inquiries may be directed to: [email protected].

3. Categories of Data We Process

We may collect and process the following categories of personal data:

a) Usage Data
Includes information about how you use the Site, such as IP address, browser type/version, session identifiers, pages viewed, and other diagnostic data. This helps us analyze web traffic and improve user experience.

b) Account Data
Includes information you provide when creating an account or registering for services, such as your full name, email address, telephone number, and residential or business address.

c) Profile Data
Includes your preferences, purchase history, choices, behavior on the Site, and other information submitted through forms or participation in Site features.

d) Communication Data
Includes messages, inquiries, support tickets, chat logs, email correspondence, and other records of communications with us.

e) Technical Data
Includes device identifiers, operating system, hardware model, browser specifications, language settings, time zone, and configuration data necessary for Site optimization.

f) Transaction Data
Includes payment information (processed securely through third-party vendors), order details, delivery information, and billing address.

g) Preference Data
Includes your consent for marketing communications, subscription status, product and service interests, and interaction with newsletters or promotional content.

4. Legal Bases for Processing

We rely on valid legal grounds for all personal data processing activities, as required under GDPR and CCPA:

– Consent: When you provide your explicit consent, such as signing up for newsletters or accepting cookies.
– Contractual Necessity: When processing is necessary to fulfill a contract, such as account creation, service provision, or purchase transactions.
– Legitimate Interests: When processing is required for business operations, security, fraud prevention, or improving the Site, provided such interests are not overridden by your rights.
– Legal Obligation: When we must comply with applicable laws or regulatory requirements.

5. Your Rights

In accordance with GDPR, CCPA, and other applicable laws, you have the following rights regarding your personal data:

– Right of Access: Obtain a copy of the personal data we hold about you.
– Right of Rectification: Request correction of inaccurate or incomplete personal data.
– Right of Erasure (“Right to be Forgotten”): Request deletion of your personal data when lawful to do so.
– Right to Restrict Processing: Request limitation of how we process your personal data under certain conditions.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format and have it transmitted to another controller where legally permitted.
– Right to Object: Object to certain types of data processing, including direct marketing.
– California Rights (CCPA): California residents may request a list of categories and specific pieces of personal data collected, request deletion, or opt out of data selling or sharing, if applicable.

To exercise any of these rights, please contact [email protected]. We will respond in accordance with applicable legal timeframes.

6. Data Security Measures

We implement a range of technical and organizational measures to protect your data:

– Encryption: Secure transport (HTTPS) and storage of sensitive data.
– Access Controls: Access to personal data is restricted to authorized personnel only.
– Regular Backups: Routine backups to prevent data loss.
– Staff Training: Privacy and data protection training for staff and contractors.

While we strive to protect your information with commercially reasonable efforts, no digital transmission or storage can be guaranteed as 100% secure.

7. International Data Transfers

Your personal data may be transferred to and processed in countries outside your jurisdiction, including countries that may not offer equivalent levels of data protection. In such cases, we implement appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission or compliance with frameworks recognized under the CCPA for international data transfers. Your data will always be treated securely and in accordance with this Privacy Policy.

8. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, or as otherwise required by applicable laws. Retention periods typically include:

– Usage and Technical Data: 24 months
– Account and Profile Data: Until the account is deleted, plus 12 months
– Communication Data: 3 years from date of last contact
– Transaction Data: 7 years for tax and audit purposes
– Marketing and Preference Data: Until consent is withdrawn or 2 years of inactivity, whichever comes first

Data no longer required is securely deleted or anonymized.

9. Cookie Policy

We use cookies and similar technologies on our Site to enhance your browsing experience and collect information.

Types of cookies used include:

– Essential Cookies: Necessary for site functionality and security.
– Functional Cookies: Enable personalization features and remember choices.
– Analytics Cookies: Help us understand visitor interactions and improve content.
– Performance Cookies: Monitor system performance and diagnose issues.

10. Cookie Management and Compliance

Upon visiting tiffanymyer.com, you are presented with a banner offering the choice to manage cookie preferences. You can modify your consent settings at any time using the cookie management tool accessible on the Site or through your browser settings. We honor Do Not Track (DNT) signals and provide opt-out mechanisms in compliance with GDPR and CCPA requirements.

11. Protection of Children’s Data

Our services and Site are not directed at or intended for children under the age of 13. We do not knowingly collect personal data from children. If we become aware that a child under 13 has provided us with personal data without verified parental consent, we will take steps to delete such information immediately. Parents or guardians who believe their child has submitted data should contact us at [email protected].

12. Policy Updates

We may revise this Privacy Policy from time to time to reflect changes in law, technology, or our business practices. All updates will be posted on this page. You are advised to review the Privacy Policy periodically. Where required, we will notify users of significant material changes through notices on the Site or by other means.

13. Contact Us

For questions regarding this Privacy Policy, to exercise your privacy rights, or to address any data protection concerns, please contact:

Email: [email protected]
Website: https://tiffanymyer.com

We are committed to ensuring that your privacy is protected. If you believe we have not addressed your concern adequately, you may also have the right to lodge a complaint with a relevant supervisory authority.

This Privacy Policy reflects our dedication to compliance with data protection regulations including GDPR, CCPA, and applicable international privacy laws. We welcome your feedback and questions regarding our privacy practices.