Privacy Policy for patchynyc.com
1. Introduction
At patchynyc.com (“we”, “our”, “us”), your privacy is of paramount importance. We are fully committed to safeguarding the personal data you entrust to us and to ensuring compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you visit or interact with patchynyc.com (the “Website”).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all individuals who access or use patchynyc.com and governs the processing of personal data collected through the Website. For purposes of data protection law, patchynyc.com is the “Data Controller” of your personal data where we determine the purposes and means of processing.
If you are located in the European Economic Area (EEA) or the United Kingdom, we process your personal data in accordance with GDPR. If you are a resident of California, USA, we process your information in accordance with CCPA.
3. Categories of Data Processed
We collect and process various categories of personal data to provide you with an optimized, secure, and personalized browsing and shopping experience. These categories include:
a) Usage Data:
– IP address
– Browser type and version
– Device type
– Operating system
– Session duration and timestamps
– Referral URLs
– Website navigation paths and interaction metrics
b) Account Data:
– Full name
– Email address
– Billing and shipping addresses
– Telephone number
– Login credentials (hashed and encrypted)
c) Profile Data:
– Purchase history
– Wishlist items
– Product interaction data
– Review contributions
– Loyalty program participation and preferences
d) Communication Data:
– Support inquiries and messages
– Contact forms
– Email or chat transcripts
– Complaint history and resolution activity
e) Technical Data:
– Device identifiers
– Internet service provider data
– System configurations
– Error logs and diagnostic information
f) Transaction Data:
– Payment method and authorization details (via secure third-party processors)
– Transaction dates and amounts
– Delivery and order fulfillment details
g) Preference Data:
– Newsletter subscriptions
– Marketing and communications preferences
– Product category interests
– Consent records
4. Legal Bases for Processing
We process your personal data based on the following lawful grounds, as applicable under GDPR and CCPA:
– Performance of a Contract: To fulfill orders and provide requested services.
– Legitimate Interests: To optimize our Website, prevent fraud, and improve user experience.
– Consent: For marketing activities and the use of non-essential cookies.
– Legal Obligation: To comply with applicable laws and regulations.
5. Your Rights
Pursuant to data protection legislation, you are entitled to the following rights:
– Right of Access: To obtain confirmation and access to your personal data we hold.
– Right to Rectification: To correct inaccurate or incomplete personal data.
– Right to Erasure: To request deletion of personal data no longer necessary for the purposes collected.
– Right to Restriction: To limit how we process your data, under certain conditions.
– Right to Data Portability: To receive your personal data in a structured, commonly used format for transfer.
– Right to Object: To object to processing based on legitimate interest or direct marketing.
California residents also have the right to:
– Know which personal data we collect and with whom it is shared.
– Opt out of the sale of personal data.
– Not be discriminated against for exercising these rights.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We implement a combination of technical and organizational measures to safeguard your personal data:
– End-to-end encryption during transmission and storage
– Role-based access control to sensitive systems
– Secure network infrastructure with firewalls and intrusion detection
– Frequent data backups and disaster recovery procedures
– Employee training and access audits to prevent unauthorized access or manipulation
While we employ robust measures, no system can guarantee absolute security. We urge users to also take precautions when providing personal information online.
7. International Transfers
Your information may be stored and processed in countries outside of your place of residence, including locations outside the EEA. When such transfers occur, we ensure:
– Use of Standard Contractual Clauses approved by the European Commission
– Adequate safeguards and compliance mechanisms for international data transfers
– Ongoing risk assessment and monitoring of vendors and partners
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. The following guidelines apply:
– Account Data: Retained while your account is active and for up to 6 years following closure
– Transaction Data: Retained for 7 years for accounting and tax requirements
– Communication Data: Retained for up to 3 years for recordkeeping and service improvement
– Cookies and Analytics Data: Stored for varying periods, typically up to 24 months
– Preference Data: Retained until choices are updated or consent is withdrawn
9. Cookie Policy
patchynyc.com uses cookies and similar technologies to enhance your experience. These include:
a) Essential Cookies:
– Necessary for website functionality, including shopping cart and account access
b) Functional Cookies:
– Support personalized content and remember user selections
c) Analytics Cookies:
– Collect data on website usage to improve functionality and relevance
d) Performance Cookies:
– Monitor performance and load times to enhance user experience
10. Cookie Management & Compliance
Upon your first visit to patchynyc.com, we present a cookie banner requesting your consent in accordance with GDPR and CCPA. You may update preferences at any time using our cookie settings tool, accessible in the footer of the Website.
Browsers also offer tools to manage cookies and block non-essential data collection. Please note that disabling certain cookies may affect Website performance and functionality.
11. Special Protections for Children Under Age 13
We do not knowingly collect or process personal data from children under the age of 13. If you are a parent or guardian and believe your child has provided personal data on our Website, please contact us at [email protected] and we will take immediate steps to remove such data.
12. Policy Updates & Notifications
We may revise this Privacy Policy from time to time to reflect changes to our data practices, legal obligations, or technological advancements. Updates will be posted to this page and, where material changes occur, we will notify users through website banners or direct notification. We encourage you to review this Privacy Policy regularly.
13. Contact
If you have questions, concerns, or requests related to this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
Website: https://patchynyc.com
We are committed to complying with applicable privacy regulations and to maintaining the trust and confidence of our users. Please do not hesitate to reach out regarding your privacy rights or any aspect of this policy.