Privacy Policy for Sweet Mama Journey
1. Introduction
At Sweet Mama Journey, accessible at sweetmamajourney.com, we are committed to protecting your personal data and respecting your privacy rights. We recognize the importance of transparency and accountability in our use of personal information and uphold our responsibilities in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. Your trust is important to us, and we take the privacy-first approach in all aspects of data collection and processing.
2. Scope and Data Controller
This Privacy Policy applies to visitors, users, and customers of sweetmamajourney.com. It governs how we collect, use, disclose, and safeguard your personal data. Sweet Mama Journey acts as the “data controller” for the purposes of applicable data protection laws, meaning we determine the purposes and means of processing your personal data. If you have any questions regarding our policy or data practices, you can reach us at: [email protected].
3. Categories of Personal Data We Process
We may collect and process the following categories of personal data:
3.1 Usage Data
Collected automatically when you access our website. This includes browser type, IP address, geographic location, time zone, referring URLs, pages visited, duration of visits, and browsing behavior.
3.2 Account Data
Includes personal information provided when you create an account or place an order: full name, billing and shipping address, email address, and telephone number.
3.3 Profile Data
Includes preferences, interests, purchase history, feedback, browsing behavior, and saved items on sweetmamajourney.com.
3.4 Communication Data
Covers content of your messages, support inquiries, contact form submissions, and related correspondence with us.
3.5 Technical Data
Includes device type, operating system, system configurations, browser plug-in types and versions, mobile identifiers, and internet connection information.
3.6 Transaction Data
Includes payment information (processed securely through third-party processors), order history, delivery information, transaction identifiers, and invoice records.
3.7 Preference Data
Includes your preferences regarding marketing communications, product categories of interest, newsletter subscriptions, and advertising settings.
4. Legal Bases for Processing
We rely on the following legal grounds, as applicable under GDPR and CCPA, to collect and process your personal data:
– Consent: When you voluntarily provide data, such as subscribing to newsletters or consenting to non-essential cookies.
– Contractual necessity: To fulfill orders, process transactions, or provide services you request.
– Legal obligations: To comply with applicable financial, tax, and consumer laws.
– Legitimate interests: For analytics, usability improvement, fraud prevention, and internal administrative purposes, when not overridden by your data protection rights.
5. Your Data Protection Rights
In accordance with the GDPR and CCPA, you have the following rights over your personal data:
– Right of Access: You may request confirmation as to whether we process your personal data and obtain a copy of such data.
– Right to Rectification: You have the right to correct inaccurate or incomplete personal data.
– Right to Erasure: Also known as the “right to be forgotten,” you may request the deletion of personal data under certain conditions.
– Right to Restriction of Processing: You may request that we restrict the processing of your data, for example during a dispute regarding its accuracy.
– Right to Data Portability: You may request that we supply your personal data in a structured, commonly used, and machine-readable format and transfer it to another controller.
– Right to Object: You may object to our use of your data for direct marketing or processing based on legitimate interests.
To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before fulfilling your request.
6. Security Measures
We implement robust technical and organizational measures to secure your personal data, including but not limited to:
– SSL/TLS encryption for secure communication via sweetmamajourney.com
– Access controls and authentication protocols for internal data handling
– Encrypted storage of sensitive information
– Regular data backups
– Staff training in privacy principles and security practices
While we strive to ensure the integrity and security of your information, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
7. International Data Transfers
Sweet Mama Journey is based in the United States. If you are accessing the website from outside the United States, please note that your data may be transferred to and processed in jurisdictions that may not offer the same level of protection as under your local law. In such instances, we implement appropriate safeguards, including Standard Contractual Clauses approved by the European Commission, to ensure adequate levels of privacy protection.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with applicable legal, regulatory, contractual, and administrative obligations. Data is retained according to the following terms:
– Usage Data: 12 months
– Account and Transaction Data: 7 years from the last transaction for legal and tax compliance
– Communication Data: 24 months after the last contact
– Preference Data: Until withdrawn or updated by the user, or after 12 months of inactivity
9. Cookie Policy
We use cookies and similar tracking technologies for various purposes:
– Essential Cookies: Enable core site functionality such as security, account login, and shopping cart operations.
– Functional Cookies: Remember your preferences and settings to enhance your experience.
– Analytics Cookies: Collect anonymized usage statistics to understand website performance and user behavior (e.g., via Google Analytics).
– Performance Cookies: Help measure and improve the website’s responsiveness and operational integrity.
10. Cookie Management and GDPR/CCPA Compliance
When you visit sweetmamajourney.com, you can manage your cookie preferences via a consent banner or your browser settings. Under GDPR and CCPA, you have the right to accept or reject non-essential cookies. You can change these settings anytime or withdraw consent. Disabling cookies may impact certain site functions.
We honor “Do Not Track” signals and respect opt-out mechanisms available under applicable laws.
11. Children’s Privacy
We do not knowingly collect data from children under the age of 13. If we become aware that personal data from a child under 13 has been collected without verifiable parental consent, we will delete the information promptly. Parents or guardians with concerns about children’s data on sweetmamajourney.com are encouraged to contact us immediately.
12. Policy Updates
We may revise this Privacy Policy to reflect changes in our practices or legal requirements. Revisions will be posted to sweetmamajourney.com, and where required by law, we will provide notice via email or prominent website notification. Continued use of our services after updates constitutes acceptance of the revised policy.
13. Contact Us
If you have any questions, concerns, or requests regarding your privacy or this Privacy Policy, you may contact us at:
Email: [email protected]
Website: sweetmamajourney.com
We are committed to ensuring full compliance with the GDPR, CCPA, and other applicable privacy frameworks. We encourage users to stay informed and contact us with any concerns or inquiries about your personal data and privacy rights.