Privacy Policy
At nickicornwell.com (“we”, “our”, or “us”), your privacy is of the utmost importance. We are dedicated to protecting and respecting your personal data and ensuring transparency in how we collect, use, and safeguard your information. This Privacy Policy outlines our practices regarding the collection, use, and disclosure of personal information through your interaction with our website, and demonstrates our commitment to legal compliance and privacy-first principles, especially under the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of our website, nickicornwell.com. The data controller responsible for your personal data is:
Nicki Cornwell
Website: https://nickicornwell.com
Email: [email protected]
As the data controller, we determine the purposes and means by which your personal data is processed and ensure such processing complies with applicable laws and regulations.
2. Categories of Personal Data We Process
We may collect and process various types of personal data, either directly from you or automatically through your use of our website:
a. Usage Data
We collect information about how you use nickicornwell.com, including but not limited to your browser type and version, operating system, referral source, IP address, date/time of visits, session duration, and the pages viewed.
b. Account Data
When you create an account or interact with us, we may collect identifying information such as your name, postal address, email address, and phone number.
c. Profile Data
We collect data generated by your activity on the website, such as preferences, purchases (if applicable), and browsing behavior to enhance your user experience.
d. Communication Data
When you contact us through forms, email, or other correspondence, we retain the content of these communications, including your contact history and any follow-up interactions.
e. Technical Data
Technical information pertaining to the device and systems you use, such as your device type, system configuration, screen resolution, and operating environment may be collected to support and secure your interactions with our site.
f. Transaction Data
Should our services involve payments or deliveries, we collect transaction details including billing and shipping addresses, payment confirmations, and other relevant financial data. Sensitive financial data (e.g., credit card numbers) is never stored directly on our servers.
g. Preference Data
We process your marketing preferences, product interests, and your consent for receiving communications for analytical and direct marketing purposes.
3. Legal Bases for Processing Personal Data
We rely on various legal bases under GDPR for processing your personal data:
– Consent: Where you have explicitly granted us permission to process data for specific purposes.
– Contract: In cases where processing is necessary for the performance of a contract with you or to take pre-contractual steps at your request.
– Legitimate Interest: For the operation and improvement of nickicornwell.com, provided such interests are not overridden by your fundamental rights or interests.
– Legal Obligation: When we are legally required to process data in accordance with applicable laws or regulatory obligations.
Processing for CCPA purposes is conducted in alignment with applicable California privacy rights and is subject to user opt-out provisions where applicable.
4. Your Rights under GDPR and CCPA
Subject to certain limitations, you may exercise the following rights:
– Right to Access: You may request details of the personal data we hold about you.
– Right to Rectification: You may correct inaccurate or incomplete personal data.
– Right to Erasure: You may request the deletion of your personal data, subject to data retention policies and legal exceptions.
– Right to Restriction: You may request restrictions on how your data is processed.
– Right to Data Portability: You may request your data be transferred in a machine-readable format to another controller.
– Right to Object (GDPR): You may object to processing based on legitimate interests or direct marketing.
– Right to Opt-Out (CCPA): California residents have the right to opt out of the sale or sharing of personal information.
To exercise any of these rights, email [email protected].
5. Security Measures
We employ robust technical and organizational measures to secure your personal information, including:
– Encryption of data in transit and at rest.
– Access control and authentication mechanisms.
– Regular security audits and vulnerability assessments.
– Secure data backup and disaster recovery protocols.
– Staff training to ensure awareness of privacy and security best practices.
Despite our efforts, no method of digital transmission or storage is entirely secure, and we cannot guarantee absolute security.
6. International Data Transfers
If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as:
– The use of Standard Contractual Clauses (SCCs) approved by the European Commission.
– Compliance with local data protection frameworks in the destination jurisdiction.
– Ensuring recipients have adequate data protection measures in place.
7. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. General retention periods are as follows:
– Usage Data: Up to 12 months
– Account and Profile Data: Retained for the lifetime of your account and up to 24 months after account closure
– Communication Data: Retained for up to 36 months after last contact
– Technical and Transaction Data: Retained for up to 7 years for legal and tax compliance
– Preference Data: Updated periodically and stored while relevant
Upon expiration of the retention period, data is securely deleted or anonymized.
8. Cookie Policy
Our website uses cookies and similar tracking technologies to improve functionality and user experience:
– Essential Cookies: Required for core website functionality
– Functional Cookies: Enable enhanced functionality and personalization
– Analytical Cookies: Help us analyze site usage and performance
– Performance Cookies: Optimize webpage load and improve speed
9. Cookie Management and Compliance
In compliance with GDPR and CCPA, users may manage cookie preferences directly via the cookie banner presented on visiting nickicornwell.com. You may:
– Accept or reject non-essential cookies
– Withdraw consent at any time
– Modify browser settings to manage cookies
Please note that disabling certain cookies may affect site usability or performance.
10. Protection of Children’s Privacy
We do not knowingly collect or solicit personal information from individuals under the age of 13. If you are a parent or guardian and believe we have unintentionally collected a child’s personal data, please contact us immediately at [email protected], and we will promptly delete such information.
11. Policy Updates
We reserve the right to amend this Privacy Policy at any time. When we make material changes, we will notify users via the website or through direct communications, where appropriate. Continued use of nickicornwell.com implies agreement with the revised terms.
12. Contact
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Email: [email protected]
Website: https://nickicornwell.com
We are committed to full compliance with global privacy regulations, including the GDPR and CCPA, and to maintaining open lines of communication. If you have concerns about our privacy practices, we are here to help and resolve them promptly.