Privacy Policy for nialynn.com
1. Introduction
At nialynn.com, we are committed to respecting your privacy and protecting your personal data. We recognize the importance of safeguarding your personal information and are dedicated to ensuring transparency, accountability, and compliance with applicable data protection regulations, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act of 2018 (“CCPA”), as amended. This Privacy Policy outlines how we collect, use, disclose, and safeguard your data when you access or interact with our website.
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to all personal data collected through nialynn.com and in the context of our business operations relating to the services offered on or through our website. For the purposes of GDPR and other applicable data protection laws, nialynn.com is the “data controller” responsible for determining the purposes and means of processing your personal data.
If you have any questions about our practices or this Privacy Policy, you may contact us at: [email protected].
3. Categories of Personal Data We Process
We collect and process various categories of information depending on how you interact with our website and services. The types of personal data we process may include:
a) Usage Data
Information about how you use our website, such as your browser type, internet protocol (IP) address, operating system, referring URLs, date/time of visits, page views, and website navigation paths.
b) Account Data
Information you provide when creating an account or completing a transaction, such as your full name, billing/shipping address, email address, and telephone number.
c) Profile Data
Details related to your preferences, previous purchases, and behavioral interactions on the website, which help us personalize your experience and improve our services.
d) Communication Data
Records of your communications with us, including customer support requests, emails, and any other correspondence or inquiries received via our forms, email channels, or customer service tools.
e) Technical Data
Device-specific data, configuration settings, browser plugins, operating system versions, screen resolution, and other technical identifiers.
f) Transaction Data
Details related to your orders and financial transactions made through our website, such as payment methods, order history, delivery instructions, and confirmation records. Payment card information is processed by our secure third-party payment processors and not retained by us.
g) Preference Data
Marketing communication preferences, consent to receive newsletters or promotional content, and stated interests in specific products or categories.
4. Legal Bases for Processing Personal Data
Under GDPR, we rely on the following legal bases for processing your personal data:
– Consent: When you have given us explicit permission to process your personal data, such as by subscribing to our newsletter.
– Contractual Obligation: Where processing is necessary to perform a contract with you, such as fulfilling an order or providing customer service.
– Legal Obligation: Compliance with legal responsibilities or lawful requests.
– Legitimate Interests: When necessary for our legitimate business interests, provided your fundamental rights and freedoms are not overridden—such as for security, fraud prevention, and website analytics.
Under CCPA, you have the right to know what personal data is collected and to opt-out of the sale of personal information. However, we do not sell your personal data.
5. Your Rights
Subject to applicable data protection laws, you have the following rights regarding your personal data:
– Right of Access – to obtain a copy of the personal data we hold about you.
– Right to Rectification – to request correction of inaccurate or incomplete data.
– Right to Erasure – to request deletion of your data where it is no longer necessary for us to retain it.
– Right to Restriction – to request limited processing of your data under certain circumstances.
– Right to Data Portability – to receive your data in a structured, commonly used, and machine-readable format, and to transmit it to another controller.
– Right to Object – to object to our processing where we rely on legitimate interest as a lawful basis.
– Right to Withdraw Consent – to withdraw consent at any time where we rely on your consent to process data.
– Right Not to Be Subject to Automated Decision-Making – to opt out of any automated processing that significantly affects you.
To exercise these rights, please contact us at [email protected].
6. Security Measures
We employ appropriate organizational, technical, and administrative security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These include but are not limited to:
– Secure encryption of data in transit and at rest
– Access controls and authentication procedures
– Regular cybersecurity training for our personnel
– Periodic data backup and redundancy procedures
– Ongoing security assessments and audits
While we strive to use commercially acceptable means to safeguard your information, no system can guarantee 100% security.
7. International Data Transfers
Your personal data may be transferred to and processed in countries outside of your jurisdiction, including jurisdictions that may have different data protection laws. We ensure that any such transfers are made in accordance with applicable data protection laws and safeguarded by appropriate legal mechanisms, such as:
– Standard Contractual Clauses approved by the European Commission
– Adequacy decisions from regulatory authorities
– Binding corporate rules or certifications by our third-party service providers
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
– Usage and analytics data: retained for up to 24 months
– Account and profile data: retained for the life of the account and up to 6 months after deletion
– Communication records: retained for up to 36 months
– Transaction data: retained for up to 7 years for accounting and regulatory compliance
– Technical logs: retained for up to 12 months
– Preference and consent data: retained for the duration of consent and for audit purposes
After expiration of the retention period, your data will be securely deleted or anonymized.
9. Cookies and Tracking Technologies
We use a variety of cookies and tracking technologies on nialynn.com to enhance your browsing experience:
– Essential Cookies: Required for website functionality, security, and accessibility.
– Functional Cookies: Enable enhanced features and personalization.
– Analytics Cookies: Collect anonymous data to help us understand website performance and visitor interactions.
– Performance Cookies: Measure system performance and improve speed and responsiveness.
Please see our Cookie Management section for further information on how to control or disable cookies.
10. Cookie Management and Compliance
Upon visiting nialynn.com, a cookie consent banner enables you to manage your preferences in accordance with GDPR and CCPA requirements. You can:
– Accept all cookies
– Reject non-essential cookies
– Customize your preferences per cookie category
You may also manage or disable cookies through your browser settings. Note that disabling cookies may impact the functionality of certain website features.
We do not sell personal information collected via cookies or trackers.
11. Children’s Privacy
nialynn.com is not intended for use by individuals under the age of 13. We do not knowingly collect or process personal data from children under the age of 13. If we learn that we have inadvertently collected data from a child, we will promptly delete it from our records. A parent or legal guardian who believes their child has shared information with us should contact us immediately at [email protected].
12. Policy Updates and Notifications
We reserve the right to modify this Privacy Policy from time to time in order to reflect changes in our practices, technology, legal obligations, or for other operational reasons. Users will be notified of material changes through a prominent notice on the website or by email, where appropriate. Continued use of nialynn.com following an update constitutes your acceptance of the revised policy.
13. Contacting Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, we encourage you to contact us at:
Email: [email protected]
We are committed to complying with all applicable data protection laws and ensuring that your personal data is treated with the utmost care and transparency. If you believe your data rights have been violated, you may lodge a complaint with your local data protection authority.
Thank you for trusting nialynn.com with your data.
