Privacy Policy for no-ifs-no-buts.com
1. Introduction
At no-ifs-no-buts.com (“Website”, “we”, “our”, or “us”), we are firmly committed to safeguarding your personal data and respecting your right to privacy. In line with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws, this Privacy Policy outlines how we collect, process, and protect your personal information when you access or use our website or engage with our services. We adhere to principles of transparency, accountability, data minimization and privacy by design in everything we do.
2. Scope of This Policy and Role as Data Controller
This Privacy Policy applies to all users and visitors of the Website found at no-ifs-no-buts.com and to all personal data collected or processed through our digital properties. As the Data Controller, no-ifs-no-buts.com determines the purposes and means of processing your personal data, and bears the legal responsibility to ensure such processing complies with applicable data protection legislation.
3. Categories of Data We Process
We may collect and process the following types of personal data, depending on your interactions with our Website and services:
– Usage Data:
Includes data such as your browser type, operating system, IP address, access times, website interactions, referral URLs, and session durations. This is typically collected automatically through our analytics and log systems to improve our services and content.
– Account Data:
Information provided when you create or maintain an account with us, such as your full name, email address, home or billing address, phone number, and login credentials.
– Profile Data:
This includes information related to your preferences, interests, demographic insights, previous purchases, and behavioral usage patterns on our Website.
– Communication Data:
Encompasses the content and metadata of email communications, inquiries submitted via contact forms, customer service interactions, support tickets, and chat transcripts.
– Technical Data:
Includes your device information such as hardware type, operating system version, device identifiers, browser settings, screen resolution, and other system configurations.
– Transaction Data:
Contains records of products/services you purchase from us, shipping/delivery information, payment method, billing details, and transaction history (excluding full card or bank account numbers which are processed by third-party providers).
– Preference Data:
Includes choices regarding receiving marketing communications from us, product interest indicators, and opt-in/out status for various forms of outreach.
4. Legal Bases for Processing
We rely on a range of legal bases to lawfully process your personal data, including:
– Consent: when you provide clear, informed consent to a specific use of your data (e.g., marketing emails).
– Contractual necessity: to fulfill our contractual obligations to you, such as delivering purchased products or responding to service inquiries.
– Legal obligations: to comply with applicable laws or lawful requests from public authorities.
– Legitimate interest: for purposes such as enhancing Website functionality, cybersecurity, fraud prevention, and understanding user engagement—provided these interests are not overridden by your fundamental rights.
5. Your Rights
As a data subject, you have the right to:
– Access: Request a copy of your personal data held by us.
– Rectification: Request correction of inaccurate or incomplete data.
– Erasure (Right to be Forgotten): Request deletion of your personal data under certain circumstances.
– Restriction: Request limitation on the processing of your data in specific scenarios.
– Data Portability: Request transfer of your data to you or a third party in a structured, commonly-used format.
– Objection: Object to data processing carried out under legitimate interest or direct marketing grounds.
To exercise these rights, or if you have any inquiries about our use of your data, you may contact us at [email protected].
6. Security Measures
We implement robust technical and organizational measures to ensure your personal data is secure and protected from unauthorized access, disclosure, alteration, or destruction. These include:
– End-to-end encryption for data transmission.
– Regular system updates and security patches.
– Role-based access controls and authentication protocols.
– Firewalls, intrusion detection systems, and security monitoring.
– Secure data storage and regular backups.
– Employee training programs on data protection and confidentiality.
7. International Transfers
Certain third-party service providers or servers may be located outside of your jurisdiction, including countries not deemed to have adequate data protection standards under GDPR. In such cases, we ensure that adequate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or corresponding mechanisms validated by other regulatory authorities. We ensure that all data transfers comply with applicable legal requirements and preserve your rights.
8. Data Retention
We retain personal data only for as long as is necessary to fulfill the purposes for which it was collected, or to comply with legal, regulatory, tax, accounting, or contractual requirements. General retention periods by category are as follows:
– Account Data: retained while your account is active and for up to seven years thereafter.
– Transaction Data: retained for a minimum of seven years for statutory reporting.
– Communication Data: retained for up to three years after last contact.
– Cookies and Usage Data: retained for up to 26 months.
– Preference and Profile Data: retained for as long as necessary to deliver a personalized experience, up to five years, unless withdrawn or updated.
We routinely review our retention policies to ensure compliance and to remove data that is no longer necessary.
9. Cookie Policy
Our Website uses cookies and similar tracking technologies to enhance your user experience. Cookies may be categorized as:
– Essential Cookies: Required for core Website functionalities such as security, network management, and accessibility.
– Functional Cookies: Enable enhanced features based on your preferences (e.g., saving login sessions).
– Analytics Cookies: Allow us to collect aggregated metrics on Website usage, popularity of pages, and error diagnosis.
– Performance Cookies: Help us improve Website speed and responsiveness.
We do not use cookies to serve third-party advertising.
10. Cookie Management and Compliance
Upon your first visit to no-ifs-no-buts.com, and periodically thereafter, we present a cookie consent banner in compliance with GDPR and CCPA standards. You have the right to:
– Accept or decline non-essential cookies via the banner.
– Change or withdraw your consent at any time through our Cookie Settings interface.
– Configure your browser settings to block or delete cookies.
Under the CCPA, California residents may opt out of the sale of personal information. We do not “sell” personal data as defined under the CCPA.
11. Children’s Privacy
no-ifs-no-buts.com does not knowingly collect personal information from children under the age of 13. If we become aware that a child under 13 has provided personal data without verifiable parental consent, we will take steps to remove such data from our systems and terminate the associated account.
12. Policy Updates
We reserve the right to amend this Privacy Policy from time to time to reflect changing legal, technological, or operational developments. Users will be notified of material changes via our Website interface or via email where appropriate. We encourage regular review of this policy to remain informed about how personal data is handled.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy, your personal data, or our compliance practices, please contact us at:
Email: [email protected]
We are committed to complying with applicable privacy laws and to transparent, fair, and secure data practices. Please reach out to us with any concerns or requests related to your privacy at no-ifs-no-buts.com.