Privacy Policy for gfmom.net
1. Introduction
At gfmom.net (“we,” “our,” or “us”), we are fully committed to protecting and respecting your privacy. This Privacy Policy sets forth our practices regarding the collection, use, disclosure, and safeguarding of your personal information in accordance with applicable data protection legislation, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We are dedicated to promoting transparency, informed consent, and accountability in how we handle your data.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all users of the gfmom.net website (the “Site”), and any services or interactions you may have with us through the Site, via email, or other forms of communication. For the purposes of applicable data protection laws, gfmom.net is the data controller responsible for determining the purposes and means of processing your personal data.
If you have any questions about this policy or wish to exercise your data subject rights, you may contact us at [email protected].
3. Categories of Personal Data We Process
We collect and process personal data for various legitimate purposes. Depending on your interactions with gfmom.net, we may process the following categories of personal information:
a. Usage Data
Information collected automatically through your interaction with our Site, including IP address, browser type and version, time zone setting, browser plug-in types, location data, operating system and platform, and other technology on the devices you use to access gfmom.net.
b. Account Data
Details you provide when you register or update an account, such as your full name, email address, mailing address, and telephone number.
c. Profile Data
Information related to your preferences, shopping behavior, purchase history, items saved or added to your cart, feedback, and responses to surveys or participation in promotions.
d. Communication Data
Records of your correspondence with us, including emails, support requests, chat interactions, and contact history related to customer service or feedback.
e. Technical Data
Device-specific information such as hardware model, operating system, mobile network information, and system configuration data.
f. Transaction Data
Details of purchases or transactions carried out on our Site, such as payment information (processed via third-party payment gateways), order history, shipping and delivery details.
g. Preference Data
Your preferences in receiving marketing from us, your customer service preferences, and product interest information derived from your behavior or interactions with marketing communications.
4. Legal Bases for Processing Personal Data
We process your personal data only when we have one or more of the following legal bases:
– Performance of a Contract: Where processing is necessary to fulfill a contract we have with you or to take steps at your request before entering into such a contract.
– Consent: Where you have given clear consent for us to process your personal data for specific purposes.
– Legitimate Interests: Where processing is necessary for our legitimate business interests, and these interests do not override your fundamental rights and freedoms.
– Legal Obligation: Where necessary for compliance with a legal or regulatory obligation to which we are subject.
5. Your Rights Under Data Protection Laws
Subject to applicable data protection laws, you have the following rights in relation to your personal data:
– Right of Access: You may request copies of your personal data that we hold.
– Right to Rectification: You can ask us to correct any inaccurate or incomplete data.
– Right to Erasure: In certain circumstances, you may request the deletion of your data.
– Right to Restrict Processing: You may request that we limit the way in which we process your data.
– Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
– Right to Object: You may object to certain types of processing, such as direct marketing.
– Right Not to Be Subject to Automated Decision-Making: gfmom.net does not engage in automated decision-making that produces legal or similarly significant effects.
To exercise any of these rights, please contact us at [email protected]. We will respond in accordance with applicable legal requirements.
6. Security Measures
We implement appropriate technical and organizational security measures to protect your personal data, including:
– Encryption of data both in transit and at rest
– Role-based access control and multi-factor authentication
– Regular data backups and secure storage
– Staff training on data privacy and confidentiality
– Monitoring and logging of access to sensitive information
Despite these measures, no system can be completely secure. Therefore, we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential.
7. International Data Transfers
Your information may be processed in countries outside of your country of residence, including the United States and other jurisdictions that may not provide the same level of data protection as your home country. Where personal data is transferred outside of the European Economic Area (EEA), we rely on legally approved mechanisms such as Standard Contractual Clauses approved by the European Commission, and seek assurances that similar safeguards are in place.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including meeting any legal, accounting, or reporting obligations. Specific retention periods include:
– Account and Profile Data: For as long as your account remains active
– Transaction and Communication Data: Up to 7 years to comply with accounting obligations
– Usage and Technical Data: Up to 2 years for analytics and performance
– Marketing and Preference Data: Until you withdraw your consent or request deletion
Upon expiration of the retention periods, data is securely deleted or anonymized unless further retention is required by law.
9. Cookie Policy
gfmom.net uses cookies and similar technologies to enhance your browsing experience and analyze Site performance. Cookies fall into the following categories:
– Essential Cookies: Necessary for Site functionality and to provide services you have requested.
– Functional Cookies: Enable personalization, such as remembering your preferences.
– Analytics Cookies: Help us understand visitor behavior and Site usage to improve performance.
– Performance Cookies: Measure Site speed, responsiveness, and optimize performance.
10. Cookie Management and Compliance
You can manage your cookie preferences by adjusting your browser settings or using cookie consent tools provided on gfmom.net. Under GDPR and CCPA regulations, users are entitled to:
– Know what data is being collected
– Opt-in or out of non-essential cookies
– Revoke consent at any time
– Access information regarding third parties receiving cookie data
We honor Do Not Track (DNT) browser signals to the extent required under applicable law.
11. Protection of Children’s Data
We do not knowingly collect personal information from children under the age of 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such data. Parents or guardians who believe their child has provided personal information can contact us at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or Site functionality. When changes are made, they will be published on gfmom.net, and where required by law, we will notify you through an appropriate channel (e.g., email or banner notice on the Site).
13. Contact Us
If you have questions or concerns regarding this Privacy Policy or your personal data, please contact:
Email: [email protected]
We are committed to complying with all applicable data protection laws and ensuring your personal data is handled with care and respect. Please reach out to us at any time to exercise your rights or raise privacy-related concerns.