Privacy Policy
At Great Lakes Teardrops (greatlakesteardrops.com), we are committed to respecting your privacy and safeguarding your personal data. This Privacy Policy outlines how we handle your personal information in a manner that is transparent, secure, and compliant with global data protection standards, including the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). By visiting and using our website, you agree to the practices described herein.
1. Commitment to Privacy and Data Protection
Great Lakes Teardrops values your trust. Your privacy is not only a fundamental legal right but also a critical part of our commitment to ethical responsibility. We take proactive steps to ensure any data you provide to us is collected, processed, stored, and protected with the highest standards of security and respect.
2. Scope of the Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through our website, greatlakesteardrops.com, including all its pages, features, online services, and interactions. Great Lakes Teardrops is the data controller, responsible for determining the purposes and means of processing your personal data.
For any questions or concerns related to data protection, please contact us at [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data
Information on how you use our website, including your IP address, browser type, pages visited, session duration, referring pages, geographic location, and interaction patterns.
b. Account Data
Data you provide during account registration or customer interaction, including name, address, email address, phone number, and authentication information.
c. Profile Data
Details about your product preferences, past purchases, account settings, and user behaviors, which help us personalize your experience and better understand your interests.
d. Communication Data
Records of your interactions with us, including inquiries, support requests, email correspondence, and chat conversations.
e. Technical Data
Details regarding the device you use to access our site, such as the device type, operating system, screen resolution, device identifiers, and browser configurations.
f. Transaction Data
Information concerning your purchases, payment processing details, billing and shipping information, and order histories. We do not store full payment card details.
g. Preference Data
Marketing and communication preferences, consent status, product or service interest markers, survey responses, and opt-in history.
4. Legal Bases for Processing
We process your personal data under the following lawful bases:
– Performance of a Contract: When processing is necessary to fulfill a service or transaction you have requested, including purchases or bookings.
– Legitimate Interests: For business development, fraud prevention, website improvements, and customer relationship management (provided such interests are not overridden by your rights).
– Consent: Where you have provided explicit permission, such as signing up for newsletters or accepting cookies.
– Legal Obligations: To comply with statutory or regulatory requirements.
5. Your Rights
In accordance with the GDPR and CCPA, you may exercise the following rights with respect to your personal data:
– Right of Access: Request a copy of the personal data we hold about you.
– Right to Rectification: Request corrections to inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data (subject to exceptions).
– Right to Restriction of Processing: Ask us to restrict the processing of your data under certain conditions.
– Right to Data Portability: Request your data in a structured, commonly used format to transmit to another controller.
– Right to Object: Object to the processing of your data in certain situations, including for direct marketing.
– Right to Non-Discrimination: We will never discriminate against individuals for exercising their data protection rights.
To exercise your rights, please contact us at [email protected]. We will respond in accordance with applicable laws.
6. Security Measures
We implement strict organizational and technical measures to safeguard your personal data, including but not limited to:
– End-to-end encryption during data transmission and storage.
– Role-based access controls and administrative safeguards.
– Regular vulnerability assessments and security audits.
– Data backup and disaster recovery planning.
– Staff privacy training and secure access protocols.
7. International Transfers
We may transfer personal data to trusted service providers located outside your local jurisdiction. Where such transfers occur, we ensure compliance with applicable international data protection laws, including the use of EU Commission-approved Standard Contractual Clauses (SCCs) and other appropriate safeguards to maintain an adequate level of protection.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal, tax, and regulatory obligations.
Retention periods by category:
– Account & Profile Data: Retained for 5 years after account inactivity or deletion.
– Transaction Data: Retained for 7 years to meet financial and tax obligations.
– Communication & Support Data: Retained for 3 years following the last communication.
– Technical & Usage Data: Aggregated or anonymized within 12 months.
– Marketing Preferences: Retained until consent is withdrawn or unsubscribed.
9. Cookie Policy
greatlakesteardrops.com uses cookies and similar technologies to provide a better, faster, and safer experience. These include:
– Essential Cookies: Necessary for functionality, such as session management, login, and form submissions.
– Functional Cookies: Enable enhanced features like user preferences and saved configurations.
– Analytics Cookies: Collect anonymized usage data to understand user behaviors and improve functionality.
– Performance Cookies: Monitor performance metrics, such as load time and interaction errors, for optimization.
We do not use cookies to engage in profiling or surveillance beyond site functionality and performance monitoring.
10. Cookie Management and Compliance
In accordance with GDPR and CCPA:
– Upon first visit to our website, you will be prompted to manage your cookie preferences.
– You may adjust or withdraw your consent at any time via our cookie settings or your browser.
– We honor browser-based “Do Not Track” signals and Global Privacy Control (GPC) mechanisms where technically feasible.
11. Children’s Data Protection
Our website is not intended for children under the age of 13. We do not knowingly collect or process personal data from minors. If we become aware that data from a child under the age of 13 has been collected, we will take steps to delete it promptly. Parents or guardians who believe their child’s data has been improperly collected should contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to update this Privacy Policy to reflect changes in our practices, technologies, or legal obligations. Users are encouraged to check this policy periodically at greatlakesteardrops.com. Where required by law, material changes will be communicated directly via email or through a prominent notice on our site prior to becoming effective.
13. Contact Information
If you have questions, concerns, or complaints regarding this Privacy Policy or your personal data, please reach out to us at:
Great Lakes Teardrops
Email: [email protected]
Website: https://www.greatlakesteardrops.com
We are committed to full compliance with applicable data protection laws and will make every effort to respond and resolve your concerns in a timely, respectful, and legally compliant manner.