Privacy Policy for aswathithomas.com
1. Introduction
At aswathithomas.com, we are committed to preserving the privacy, confidentiality, and security of your personal information. We understand the importance of protecting user data and strive to maintain the highest standards of compliance with global privacy regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines our data collection practices, usage, disclosure, and your rights regarding your personal information.
2. Scope of this Policy and Role as Data Controller
This Privacy Policy applies to all personal data collected through our website, aswathithomas.com, and any related services offered through it. For the purposes of applicable data protection laws, aswathithomas.com acts as the “data controller,” determining the purpose and means of processing your personal data. If you have any questions or concerns regarding this policy or your data, please contact us at [email protected].
3. Categories of Data We Process
We collect and process data falling into the following categories:
a) Usage Data
Information on how you interact with our website, including browser type, IP address, device type, date/time stamps, page interactions, and session duration.
b) Account Data
Personal identifiers you provide when creating an account, including your name, mailing address, email address, and phone number.
c) Profile Data
Details such as preferences, interests, purchase history, behavior patterns, and customer segmentation information.
d) Communication Data
Records of customer service interactions, user inquiries, and any communications exchanged with us via email or website forms.
e) Technical Data
Device identifiers, operating system, browser plugins, mobile platform information, and other technical attributes from the device you use to access aswathithomas.com.
f) Transaction Data
Payment details (processed through secure third-party platforms), product orders, shipping and billing information, and purchase amounts.
g) Preference Data
Marketing communication choices, language settings, loyalty program participation, and indicated product or service interests.
4. Legal Bases for Processing Personal Data
We rely on the following lawful bases to process your personal information:
– Consent: When you voluntarily provide your data or opt-in to marketing.
– Contractual Necessity: To fulfill agreements or provide services you request.
– Legal Obligation: To comply with statutory responsibilities.
– Legitimate Interests: To maintain and improve website performance, enhance user experience, prevent fraud, and ensure security (balanced against your rights and freedoms).
5. Your Rights Under Applicable Laws
If you are located in the European Economic Area or California, you are entitled to exercise the following rights concerning your data:
– Right of Access: Obtain a confirmation of whether we process your personal data and request a copy of that data.
– Right to Rectification: Request correction of inaccurate or incomplete information.
– Right to Erasure: Request deletion of your data, subject to legal exceptions.
– Right to Restrict Processing: Request a temporary or permanent block of data processing under certain conditions.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format, and transmit it to another controller.
– Right to Object: Object to data processing where we rely on legitimate interests or direct marketing.
– Right Not to Be Discriminated Against for Exercising Privacy Rights (CCPA).
To exercise these rights, please contact us at [email protected]. We may need to verify your identity before fulfilling your request.
6. Security Measures
We deploy appropriate technical and organizational measures designed to secure your information against unauthorized access, loss, or misuse. These include:
– End-to-end encryption of sensitive data,
– Role-based access control and authentication protocols,
– Secure data storage with regular encrypted backups,
– Ongoing employee training on data protection best practices.
7. International Data Transfers
As a global platform, personal data may be transferred to and processed in countries outside your jurisdiction. Where such transfers occur, we ensure compliance via standard contractual clauses approved by the European Commission or other lawful safeguards under applicable regulations. We take care to ensure that data handled outside your region receives an adequate level of data protection.
8. Data Retention
We retain personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. Specifically:
– Usage and analytics data: 26 months,
– Account and profile data: for the duration of the user’s account and up to 12 months after deletion (unless continued processing is required),
– Communication and support history: 36 months,
– Transaction data: up to 7 years for tax and legal compliance,
– Preference and marketing data: until consent is withdrawn or after 24 months of inactivity.
9. Cookies Policy
Our website uses cookies to distinguish you from other users, enhance site performance, and personalize user interactions. The types of cookies we use include:
– Essential Cookies: Required for core functionality such as security and authentication.
– Functional Cookies: Remember user settings and preferences.
– Analytics Cookies: Collect aggregated data on website usage for improvement purposes.
– Performance Cookies: Monitor system efficiency and page loading speeds.
10. Cookie Management and Compliance
Upon your first visit, our website presents a cookie banner allowing you to accept or customize preferences. You may withdraw consent at any time by updating your browser settings or revisiting the cookie preferences on aswathithomas.com. We honor both GDPR and CCPA requirements around transparency, consent, and user opt-out mechanisms, including respected signals such as the Global Privacy Control (GPC).
11. Protections for Children
aswathithomas.com does not knowingly collect or solicit personal data from individuals under the age of 13. If you are a parent or guardian and suspect that your child has provided us with information without your consent, please contact us immediately at [email protected], and we will delete the information promptly.
12. Changes to This Policy
We reserve the right to update this Privacy Policy at our discretion to reflect legal, technical, or business changes. In the event of material changes, users will be notified through appropriate means, such as a prominent notice on our website or direct communication where applicable. Continued use of our services and website constitutes acceptance of changes.
13. Contact Us
If you have any questions, concerns, or wish to exercise your data protection rights, please contact us at:
Email: [email protected]
Website: https://www.aswathithomas.com
We are committed to compliance with applicable privacy regulations. Please reach out if you feel your data is being processed in a manner inconsistent with this Policy or if you would like to discuss your privacy rights in detail.