Privacy Policy for SteadyEddys.com
1. Introduction
At Steady Eddys, we are committed to protecting your privacy and upholding the highest standards of data protection. We recognize the importance of transparency, accountability, and security when handling your personal data. This Privacy Policy outlines how SteadyEddys.com (“we,” “our,” or “us”) collects, uses, discloses, and safeguards your personal information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant data protection laws.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of our website, located at steadyeddys.com, and governs all personal data collected or processed through our online platforms, communications, and services.
For the purpose of applicable data protection laws, Steady Eddys is the Data Controller of your personal data, with responsibilities for determining the purposes and methods of data processing. Should you have any questions or require assistance, please contact us at [email protected].
3. Categories of Data We Collect and Process
We may collect and process the following categories of personal data:
a. Usage Data:
Information about how you use steadyeddys.com, including your IP address, browser type, operating system, referral source, pages viewed, and the time and duration of your visits.
b. Account Data:
Personal and contact information you provide during account creation or updates, such as your full name, email address, mailing address, and phone number.
c. Profile Data:
Details you submit or derive through your interactions, including purchase history, saved preferences, and behavioral patterns on our site.
d. Communication Data:
Records of support inquiries, email correspondence, feedback, and any other communication with our customer service or support channels.
e. Technical Data:
Device and system specifications collected automatically when using our site, such as hardware identifiers, mobile device type, browser plugins, and technical configuration data.
f. Transaction Data:
Payment-related details, billing address, delivery information, and payment confirmation records (processed via secure third-party providers).
g. Preference Data:
Information regarding your communication preferences, marketing opt-ins, and product or category interests based on your interactions with our marketing materials.
4. Legal Bases for Processing Personal Data
We process your personal data based on one or more of the following legal grounds, as permitted under the GDPR and applicable laws:
– Consent: When you have explicitly provided your consent for specific data processing activities (such as newsletter subscriptions or optional cookies).
– Contractual Necessity: When processing is required to fulfill our obligations under a contract with you, such as delivering goods or services.
– Legal Obligation: Where we are required to comply with applicable legal requirements or respond to lawful government requests.
– Legitimate Interests: When processing is necessary for the purposes of our legitimate interests, provided those interests are not overridden by your rights and freedoms (e.g., improving website performance or preventing fraud).
For California residents, we do not “sell” personal data as defined under the CCPA.
5. Your Data Protection Rights
Subject to applicable laws, you have the following rights regarding your personal data:
– Right of Access: To request confirmation and access to the personal data we hold about you.
– Right to Rectification: To correct or update inaccurate or incomplete personal information.
– Right to Erasure: To request deletion of your data, subject to certain exceptions.
– Right to Restrict Processing: To request limited use of your personal information under specific conditions.
– Right to Data Portability: To receive a copy of your data in a structured, machine-readable format and/or request transfer to another controller.
You may exercise these rights by contacting us at [email protected]. We will respond in accordance with applicable data protection laws.
6. Security Measures
We implement appropriate technical and organizational measures to ensure the confidentiality, integrity, and availability of personal data, including but not limited to:
– Data encryption at transit and rest;
– Access controls and user authentication protocols;
– Regular system audits and vulnerability assessments;
– Secure data backups and disaster recovery mechanisms;
– Employee training programs on data protection and privacy awareness.
7. International Data Transfers
Where necessary, we may transfer personal data to service providers or affiliates based outside the European Economic Area (EEA). In such cases, we ensure that appropriate safeguards are in place, including the use of Standard Contractual Clauses (SCCs) or the establishment of other recognized data transfer mechanisms, to protect your data in compliance with applicable privacy legislation.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, including compliance with legal, accounting, or reporting obligations. Retention periods vary by data type:
– Account and Profile Data: Retained while your account is active and for a reasonable period thereafter;
– Transaction Data: Retained for at least 7 years for audit and tax compliance;
– Communication and Support Data: Retained up to 5 years from the last interaction;
– Usage and Technical Data: Retained for analytic and operational purposes for no more than 24 months.
Upon expiry of retention periods, data is either securely deleted or anonymized in accordance with industry best practices.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience on steadyeddys.com. Cookies may be categorized as follows:
– Essential Cookies: Required for website functionality and secure login.
– Functional Cookies: Enable personalization and remember user preferences.
– Analytics Cookies: Collect aggregated data on website usage and performance.
– Performance Cookies: Help optimize website speed, responsiveness, and user flow.
10. Cookie Management and Legal Compliance
Upon your first visit to steadyeddys.com, we present a cookie notice and obtain your consent before setting non-essential cookies, in compliance with GDPR and CCPA standards.
You have the right to manage your cookie settings at any time by accessing the cookie preferences tool available on our website, or by adjusting your browser settings. Detailed information on cookie control is available in your browser’s support documentation.
Under the CCPA, California residents may request to know what personal data has been collected via cookies and may opt out of any sale or sharing of such data.
11. Children’s Privacy
We do not knowingly collect personal information from children under the age of 13. If you are a parent or guardian and believe that your child has provided us with information without your consent, please contact us immediately at [email protected], and we will take steps to remove such data in accordance with applicable law.
12. Changes to This Privacy Policy
We may revise or update this Privacy Policy from time to time in response to legal, technical, or commercial developments. Where appropriate, users will be notified of material changes via our website or direct communication. We encourage regular review of this policy to stay informed about how we are protecting your information.
13. Contact Information
If you have questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact us:
Email: [email protected]
Website: https://steadyeddys.com
We are fully committed to complying with all applicable privacy requirements and safeguarding your personal information. Please reach out if you need assistance exercising your rights or understanding how your data is handled.