Privacy Policy for GearLedger.com
1. Introduction
At GearLedger.com (“GearLedger”, “we”, “us”, or “our”), we value your privacy and are committed to protecting the personal data you entrust to us. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information when you visit our website, interact with our services, or communicate with us. We are committed to processing your data lawfully, fairly, and transparently, in strict accordance with applicable privacy regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to personal data collected through your use of the website located at gearledger.com and any related services, features, or online communications. GearLedger acts as the data controller with respect to personal information collected via our website and in the course of providing services to users, meaning we determine the purposes and means of processing your personal data.
3. Categories of Data Processed
We collect various categories of personal data in the operation of our website and the delivery of our services, including:
– Usage Data: Information about your interactions with gearledger.com, such as your IP address, browser type and version, operating system, referring URLs, page views, and session durations.
– Account Data: Personal information you provide when creating an account, including your name, billing and shipping addresses, email address, and phone number.
– Profile Data: Information collected based on your interactions with the website, including purchase history, product preferences, behavioral patterns, and saved items.
– Communication Data: Any communications you have with us, such as support inquiries, feedback, and correspondence through email or contact forms.
– Technical Data: Device identification details (e.g., unique device IDs), internet service provider details, system configuration, language, time zone settings, and screen resolution.
– Transaction Data: Records of payments made, billing and delivery details, order numbers, and transaction history.
– Preference Data: Marketing preferences, product interest categories, and consent for promotional communications.
4. Legal Bases for Processing
We rely on the following legal grounds to process your personal data:
– Consent: Where you have granted us explicit permission for specific processing purposes (e.g., receiving email marketing communications).
– Contractual Necessity: When processing your information is required for the performance of a contract with you (e.g., fulfilling an order).
– Legitimate Interests: For purposes that are necessary for our business operations, provided such interests are not overridden by your fundamental rights and freedoms (e.g., preventing fraud or improving our services).
– Legal Obligation: When processing is necessary to comply with applicable legal obligations, such as financial or regulatory requirements.
5. Your Rights
Subject to applicable laws and relevant limitations under GDPR and CCPA, you have the following rights:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request corrections to inaccurate or incomplete personal data.
– Right to Erasure (“Right to be Forgotten”): You may request the deletion of your personal data, subject to certain exceptions.
– Right to Restriction of Processing: You may request the temporary suspension of processing under certain conditions.
– Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit that data to another controller.
To exercise your rights, please contact us at [email protected]. We reserve the right to verify your identity before fulfilling data subject requests.
6. Security Measures
We apply stringent technical and organizational measures to protect your personal data, including but not limited to:
– Encryption of data both in transit and at rest.
– Role-based access control to personal data repositories.
– Routine backups and disaster recovery protocols.
– Employee awareness and training on data handling best practices.
– Secure authentication procedures for user accounts.
7. International Transfers
Personal data we collect may be transferred and processed in countries outside your jurisdiction, including but not limited to the United States. When we conduct such transfers, we implement appropriate safeguards, including the use of Standard Contractual Clauses approved by the European Commission and other relevant mechanisms to ensure that your rights remain protected.
8. Data Retention
We retain personal data only for as long as necessary for stated purposes, or as required by applicable laws. Retention periods vary by data type:
– Usage Data: 12 months for analytical review unless required for security.
– Account and Profile Data: Retained for the life of the user account and up to 3 years post-deletion.
– Communication Data: Retained for up to 24 months from last interaction.
– Transaction Data: Retained for up to 7 years in accordance with financial and tax regulations.
– Marketing Preference Data: Retained until you withdraw consent or request deletion.
Upon expiration of retention periods, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar tracking technologies for various purposes:
– Essential Cookies: Enable basic website functionality, such as navigation and secure access to login-protected areas.
– Functional Cookies: Remember your choices and settings to enhance usability.
– Analytics Cookies: Collect aggregated statistical data to analyze website usage.
– Performance Cookies: Monitor the performance of gearledger.com and identify improvements.
10. Cookie Management and Compliance
In accordance with GDPR and CCPA, you have the right to choose how cookies are used. Upon visiting gearledger.com, you will be presented with a cookie consent banner allowing you to accept, reject, or customize cookie usage.
You may also set or change your cookie preferences via your browser settings. Detailed cookie disclosures and a preference management tool are available in our Cookie Settings section on the website.
11. Children’s Privacy
GearLedger does not knowingly collect or solicit personal data from children under the age of 13. Individuals under 13 are not permitted to use our services or submit personal data through gearledger.com. If we become aware of such data collection, we will delete the information promptly and take steps to prevent future collection.
12. Policy Updates and User Notification
We reserve the right to revise or update this Privacy Policy as our services and legal obligations evolve. Significant changes will be communicated to users via notifications displayed on gearledger.com or via direct communication, where appropriate. Continued use of our site following such updates constitutes your acknowledgment and agreement to the new terms.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, you may contact us at:
Email: [email protected]
Website: https://gearledger.com
We are fully committed to fair and lawful data processing practices that uphold your privacy and your rights. Thank you for trusting GearLedger.