PRIVACY POLICY FOR DAVIDHORSEY.COM
1. INTRODUCTION
At DavidHorsey.com (“we,” “our,” “us”), we respect your privacy and are firmly committed to protecting your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, and safeguard your information, and explains your rights regarding your personal data.
2. SCOPE OF THIS POLICY AND OUR ROLE AS DATA CONTROLLER
This Privacy Policy applies to all personal information collected through our website (www.davidhorsey.com) and related services. For the purposes of GDPR and other regulatory frameworks, DavidHorsey.com is the Data Controller of your personal information. This means we determine the purposes and methods of processing your personal data.
3. CATEGORIES OF DATA WE PROCESS
We may collect and process the following categories of personal data through your interactions on davidhorsey.com:
a) Usage Data
Includes information about how you use our website, such as your browser type, IP address, device identifiers, page visits, session duration, referral URLs, and interactions.
b) Account Data
Includes information you provide when creating an account or making a purchase, such as your full name, postal address, email address, and telephone number.
c) Profile Data
Includes your account preferences, past purchases, browsing behavior, and other information used to personalize your experience.
d) Communication Data
Includes records of your correspondence with us, such as support queries, feedback, or other communications submitted via forms or email exchanges.
e) Technical Data
Includes data from your device such as operating system, device model, screen resolution, language settings, and browser configurations.
f) Transaction Data
Includes details of purchases or services obtained through the website, payment confirmation data (excluding full card details), and delivery or billing information.
g) Preference Data
Includes marketing subscription preferences, opt-in or opt-out status, and any data related to your product interests or communication preferences.
4. LEGAL BASES FOR PROCESSING PERSONAL DATA
We rely on the following legal bases to process your personal data:
– Consent: Where you have explicitly provided consent (e.g., for marketing emails or cookies not essential to functionality).
– Contract: Where processing is necessary to fulfill a service or product you have requested or purchased.
– Legal Obligation: Where processing is required under a legal duty.
– Legitimate Interests: Where processing is necessary for our legitimate business purposes, provided such interests are not overridden by your rights and freedoms.
5. YOUR RIGHTS UNDER GDPR AND CCPA
If you are a resident within applicable jurisdictions, you have the following data protection rights:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request correction of any inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal information where there is no lawful reason for retention.
– Right to Restrict Processing: In certain circumstances, you may request that we limit the use of your data.
– Right to Data Portability: You may request to receive your information in a structured, machine-readable format.
– Right to Object: You can object to processing based on legitimate interests or direct marketing.
– Right to Opt-Out (CCPA): California residents may opt out of the sale or sharing of personal information.
You may exercise these rights by contacting us at [email protected].
6. SECURITY MEASURES
We implement technical and organizational security measures commensurate with industry standards to protect personal data, including:
– Data encryption in transit and at rest.
– Access controls and authentication procedures for all internal systems.
– Regular data backups with secure storage.
– Employee training on data protection and confidentiality protocols.
7. INTERNATIONAL DATA TRANSFERS
Where we transfer personal data outside your jurisdiction (including transfers from the UK or EU to other countries), we ensure adequate safeguards are in place, such as:
– Standard Contractual Clauses approved by the European Commission.
– Privacy Shield (where applicable).
– Other lawful mechanisms that ensure your data rights remain protected.
8. DATA RETENTION
We retain your personal data only for as long as necessary for the purposes for which it was collected, or as required by applicable law. Examples include:
– Account Data and Transaction Data: Retained for up to 7 years for tax and legal compliance.
– Communication Data: Retained for up to 3 years after last correspondence.
– Technical and Usage Data: Retained for up to 2 years for system diagnostics and analytics.
– Marketing and Preference Data: Retained until you withdraw consent or for up to 24 months.
9. COOKIE POLICY
Our website uses cookies to improve your experience and deliver essential functionality. Cookies are categorized as follows:
– Essential Cookies: Required for basic operations such as user login, navigation, and website security.
– Functional Cookies: Enhance usability and remember preferences.
– Analytics and Performance Cookies: Help us measure website traffic and usage patterns via aggregated anonymous data (e.g., Google Analytics).
10. COOKIE MANAGEMENT AND COMPLIANCE
Upon your first visit to davidhorsey.com, we present a cookie consent banner to comply with GDPR and CCPA requirements. You may accept or reject non-essential cookies through this banner. You can also manage cookie settings through your browser preferences.
California residents may use the “Do Not Sell or Share My Personal Information” link to exercise their rights under the CCPA.
11. CHILDREN’S PRIVACY
DavidHorsey.com is not intended for or directed to children under the age of 13. We do not knowingly collect personal information from children without verifiable parental consent. If you believe a child under 13 has provided us personal data without consent, please contact us immediately at [email protected], and we will promptly delete such data.
12. UPDATES TO THIS POLICY
We reserve the right to update or modify this Privacy Policy at any time. Changes will be posted on this page, and where appropriate, we will notify users directly of significant updates. You are encouraged to review this Privacy Policy periodically.
13. CONTACT US
If you have questions about this Privacy Policy, your data rights, or how we process your personal data, please contact us at:
Email: [email protected]
Website: www.davidhorsey.com
We take our privacy obligations seriously and are committed to ensuring the transparent and lawful processing of your personal data. Please reach out if you have any concerns related to your privacy or this Policy.