Privacy Policy for GracefulMamaHQ.com

1. Introduction

At Graceful Mama HQ, accessible at gracefulmamahq.com, we are deeply committed to protecting your personal data and upholding your privacy rights. We value the trust you place in us and strive to process your data transparently, securely, and in full compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit or interact with our website or services.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all personal data processed by Graceful Mama HQ via its digital properties, including gracefulmamahq.com. Graceful Mama HQ acts as the data controller for the personal information you provide, which means we determine the purposes and means of processing your data in connection with our website, products, services, and related offerings.

By accessing gracefulmamahq.com, submitting information, or using any functionality, you acknowledge the practices described herein.

3. Categories of Personal Data Processed

We collect and process the following categories of personal data:

a. Usage Data
This includes data about how you use our website, such as your IP address, browser type, operating system, device identifiers, session duration, page views, and referring URLs.

b. Account Data
When you create an account or interact with us, we collect your name, billing and shipping addresses, email address, telephone number, and other identity-related data.

c. Profile Data
Information related to your preferences, product interests, purchase history, saved items, and user behavior on gracefulmamahq.com.

d. Communication Data
Any inquiries, support requests, email communications, chat history, feedback, or complaints you send or submit via our contact forms or communication channels.

e. Technical Data
We may collect log files, diagnostic information, device type, operating system settings, browser settings, and other system-level data relevant to your browsing experience.

f. Transaction Data
Details of orders, payment method (e.g., last 4 digits of credit card), shipping information, transaction status, purchase timestamps, and related payment confirmations.

g. Preference Data
Your marketing preferences, opt-in/opt-out status, newsletter subscriptions, and any indications of specific topics, categories, or products you’ve expressed interest in.

4. Legal Bases for Processing

We only process your personal data when we have a legal basis to do so. Depending on the nature of the data and your interactions with us, we rely on the following legal grounds:

– Performance of a Contract: To process orders, provide services, manage user accounts, and deliver products.
– Consent: For marketing communications, cookies (except strictly necessary ones), and personalization features, where your explicit consent has been obtained.
– Legitimate Interests: For internal administration, fraud prevention, service improvement, and ensuring security, provided such interests are not overridden by your rights.
– Legal Obligations: Where processing is necessary for compliance with laws, regulatory inquiries, tax, or legal requirements.

5. Your Rights

As a data subject under GDPR and CCPA, you are entitled to the following rights:

– Right of Access: Request confirmation of whether we process your personal data and access to such data.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): Request the deletion of your personal data under certain conditions.
– Right to Restrict Processing: Limit our processing where applicable laws allow such restriction.
– Right to Data Portability: Obtain a copy of your data in a structured, commonly used format and transfer it to another controller.
– Right to Object: Object to the processing of your personal data where based on legitimate interest or for direct marketing purposes.
– Right to Non-Discrimination: Under the CCPA, you have the right to receive equal service and price, regardless of exercising your privacy rights.

To exercise any of these rights, please email us at [email protected].

6. Security Measures

We implement robust technical and organizational safeguards to protect your personal data, including but not limited to:

– Encrypted transmission using SSL/TLS
– Role-based access controls and password protection
– Secure servers and firewalls
– Periodic security audits
– Staff training on data protection and privacy
– Regular data backups and integrity protocols

7. International Data Transfers

Your personal data may be transferred to and processed in countries outside your jurisdiction, including those that do not offer the same level of data protection as your home country. Where such transfers occur, we ensure they follow recognized international data transfer mechanisms, including Standard Contractual Clauses approved by the European Commission or compliance with the UK GDPR or other regional frameworks.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Retention periods vary by data category:

– Usage and Technical Data: 14 months
– Account and Transaction Data: 7 years (for compliance and auditing)
– Communication Data: 3 years from last interaction
– Preference Data: until opt-out or withdrawal of consent
– Profile Data: while your account remains active, or until erased upon request

9. Cookie Policy

Graceful Mama HQ uses cookies and similar tracking technologies to enhance user experience and analyze website performance. These cookies fall into the following categories:

– Essential Cookies: Required for the website to function properly, such as authentication and session management.
– Functional Cookies: Enable personalization and remember your preferences.
– Analytics Cookies: Help us understand visitor behavior and improve our content and site structure (e.g., Google Analytics).
– Performance Cookies: Monitor load speeds and technical performance metrics.

10. Cookie Management and Legal Compliance

In compliance with GDPR and CCPA, you are given control over your cookie preferences upon visiting gracefulmamahq.com. Through our cookie consent management tool, you may:

– Accept or deny different types of cookies (except strictly necessary cookies)
– Update your consent settings at any time
– Request deletion of any personal data derived via cookies

You may also configure your browser settings to reject cookies or alert you when cookies are being set.

11. Special Protections for Children Under 13

Our services are not directed to, and we do not knowingly collect data from, children under the age of 13. If we become aware that personal data has been collected from a child without verifiable parental consent, we will take prompt steps to delete such data. If you believe a child has provided us with personal data, please contact us immediately at [email protected].

12. Policy Updates and Notification

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal obligations. Any material changes will be communicated through appropriate channels, which may include notices on gracefulmamahq.com or direct notices to registered users. You are encouraged to review this policy periodically to stay informed.

13. Contact Us

If you have any questions about this Privacy Policy, your personal data, or wish to exercise your rights, please contact us at:

Email: [email protected]
Website: https://gracefulmamahq.com

We are committed to handling your concerns promptly and responsibly.

—

Graceful Mama HQ is dedicated to complying with all applicable data protection laws and ensuring that your privacy is safeguarded. Should you have any privacy-related questions, you are always welcome to contact us at the email provided above.