Privacy Policy for nancyclarke.com
1. Introduction
At nancyclarke.com (“we”, “us”, or “our”), we are committed to respecting and protecting your privacy. Our principles are rooted in transparency, accountability, and user empowerment. We adhere to globally recognized privacy regulations including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), and we strive to process your personal data lawfully, fairly, and in a manner that ensures its security and confidentiality.
This Privacy Policy outlines how we collect, use, store, and disclose your personal data, as well as the rights and choices you have regarding your information.
2. Scope and Data Controller Role
This Privacy Policy applies to your use of our website, nancyclarke.com, and related services. For the purposes of EU data protection law, we are the data controller of the personal data you provide when interacting with our website and related offerings.
By accessing our website or submitting your personal data, you acknowledge and consent to the practices described herein.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data
We gather data about your interactions with nancyclarke.com, including your browser type and version, IP address, referral source, pages visited, session duration, and other diagnostic information. This information helps us analyze website traffic and improve user experience.
b. Account Data
If you create an account, we collect personal identifiers such as your full name, billing and shipping addresses, email address, and phone number.
c. Profile Data
We retain information related to your preferences, shopping history, products viewed or purchased, and behavioral patterns on our site. This allows us to offer tailored services and content.
d. Communication Data
Correspondence you initiate with us—such as support tickets, inquiries via contact forms, email exchanges, or other communications—will be retained securely and used for resolution and customer support purposes.
e. Technical Data
This includes device-specific information such as operating system, screen resolution, browser plug-in types, system language, and time zone settings, which supports compatibility and performance optimization.
f. Transaction Data
We process payment details (excluding full payment card information, which is securely handled by third-party payment processors), order histories, delivery addresses, VAT records, and other transaction-related metadata.
g. Preference Data
Where applicable, we store your marketing communication preferences, product interests, opt-in/opt-out status for newsletters or promotional materials, and consent history.
We do not knowingly collect sensitive personal data (e.g., health, biometric, or race-related information) through nancyclarke.com.
4. Legal Bases for Processing
We process your personal data on the following lawful bases, as required by applicable data protection law:
– Consent: When you provide clear and informed consent for a specific purpose, such as receiving marketing communications.
– Contract: When processing is necessary to fulfill a contract to which you are a party, such as completing a purchase.
– Legal Obligation: Where we are legally required to retain or submit certain information.
– Legitimate Interests: Where processing is necessary for our legitimate interests, provided such interests do not override your fundamental rights and freedoms. Examples include website analytics, fraud prevention, and improving service quality.
5. Your Rights
Under applicable law, including the GDPR and CCPA, you have certain rights over your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request that we correct or update any inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): Subject to legal retention obligations, you may request that we delete your personal data.
– Right to Restriction: You may request the restriction of processing where accuracy is contested, processing is unlawful, or you have objected to processing.
– Right to Data Portability: You may receive your personal data in a structured, commonly used format and transmit it to another controller without hindrance.
– Right to Object: You may object to the processing of your data on grounds relating to your particular situation.
– Right to Withdraw Consent: Where consent is the basis of processing, you may withdraw it at any time without affecting the lawfulness of processing prior to withdrawal.
To exercise any of these rights, email us at [email protected]. We may require verification of your identity before fulfilling your request in order to protect your data privacy.
6. Security Measures
We implement high-standard technical and organizational measures to secure your personal data against unauthorized access, loss, misuse, alteration, and disclosure. These include, but are not limited to:
– SSL encryption for data in transit
– Firewalls and intrusion prevention technologies
– Access control policies and multi-factor authentication
– Regular security audits and penetration testing
– Secure data hosting with restricted access only to authorized personnel
– Employee privacy training and confidentiality agreements
Despite our efforts, no digital transmission or storage system can be guaranteed 100% secure. Users should also take adequate precautions when browsing the internet.
7. International Data Transfers
Your personal data may be transferred to, and processed in, countries outside your jurisdiction, including countries that may not provide the same level of data protection as your home country. In such cases, we rely on legally recognized safeguards, including:
– EU-approved Standard Contractual Clauses when transferring from the EEA
– Data processing agreements with service providers ensuring adequate protection
– Robust contractual and operational controls on subprocessors
By interacting with nancyclarke.com, you acknowledge and consent to international data transmissions as defined above.
8. Data Retention
We retain personal data only for as long as reasonably necessary to fulfill the purposes for which it was collected, including:
– Usage Data: 14–24 months for analytics and performance insights
– Account Data: Retained until the account is deleted, with financial records retained longer as per applicable tax laws
– Profile and Preference Data: Retained until consent is withdrawn or profile is deleted
– Communication Data: 3 years from last interaction
– Transaction Data: Retained for at least 7 years due to financial and legal reporting obligations
– Technical Data: Up to 2 years for security and troubleshooting purposes
Data is securely deleted or anonymized after the relevant retention period.
9. Cookie Policy
nancyclarke.com uses cookies and similar technologies to enhance your browsing experience and deliver personalized content. Cookies are small text files placed on your device that assist in website functionality and user experience.
We classify cookies as follows:
– Essential Cookies: Required for core website functionality such as secure login and shopping cart operations.
– Functional Cookies: Improve usability by remembering your preferences.
– Analytics Cookies: Help us understand website traffic, usage trends, and improve performance (e.g., Google Analytics).
– Performance Cookies: Support site optimization by tracking load times, errors, and usage paths.
Cookies may be first-party (served by our domain) or third-party (set by external service providers).
10. Cookie Management and Compliance
Upon your first visit to nancyclarke.com, we display a cookie consent banner in compliance with GDPR and CCPA, allowing you to accept, reject, or customize your preferences.
You may also adjust your cookie settings through:
– Your browser settings (clearing or blocking cookies)
– The cookie preference tool available on our website footer
– Emailing us at [email protected] if assistance is required
We honor “Do Not Track” signals and similar internet settings.
11. Children’s Privacy
nancyclarke.com is not intended for children under the age of 13. We do not knowingly collect or solicit personal data from minors. If we become aware that personal data has been collected from a child under 13, we will promptly delete such information.
If you are a parent or guardian and believe your child has provided personal data on our site, please contact us at [email protected].
12. Policy Updates
We may update this Privacy Policy to reflect changes in legal obligations, technological advancements, or modifications to our services. All material updates will be posted on nancyclarke.com, and where appropriate, notification will be provided through email or on-site banners. Continued use of the website after such updates signifies your acceptance of the revised policy.
13. Contact
If you have questions, concerns, or complaints regarding your personal data, or wish to exercise your privacy rights, please contact us at:
Email: [email protected]
We are committed to resolving complaints promptly and transparently, and we welcome all inquiries relating to data protection.
nancyclarke.com remains committed to full compliance with GDPR, CCPA, and broader data protection best practices. Your trust and privacy are of paramount importance to us. Please contact us at any time with concerns related to privacy or data processing.
