Privacy Policy for ironharley.com
1. Introduction
At Iron Harley, accessible via ironharley.com, we are committed to safeguarding the privacy and personal data of our visitors, users, and customers. As a privacy-first organization, we recognize the importance of your personal information and are fully committed to protecting it in accordance with applicable global data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
This Privacy Policy outlines the types of personal data we collect, how we use it, the legal basis for doing so, and your rights regarding your information. Our aim is to be transparent, fair, and accountable in the treatment of your data.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of the services, products, and features offered via ironharley.com, whether accessed through desktop, mobile, or other platforms. Iron Harley acts as the data controller under GDPR and as the business under CCPA in relation to the personal data we collect and process.
Should you have any questions or concerns regarding this policy or our use of personal data, please contact us at [email protected].
3. Categories of Data We Process
We collect and process the following categories of personal data depending on your interaction with ironharley.com:
a. Usage Data
Information collected automatically when you visit or use the website, including browser type and version, IP address, session data, time zone setting, operating system, and website interactions.
b. Account Data
Personal data provided when you create an account or complete a transaction, such as your full name, billing and shipping addresses, email address, and phone number.
c. Profile Data
Information related to your use of our site and services, including preferences, purchase history, saved items, and behavioral patterns.
d. Communication Data
Records of communication between you and Iron Harley, such as customer service inquiries, support tickets, messages sent to our email, and contact form submissions.
e. Technical Data
Device and system-level information, including hardware specifications, configuration settings, browser plug-in types/versions, and diagnostic logs.
f. Transaction Data
Details of transactions and orders placed through ironharley.com, including payment information, order confirmations, delivery status, and related fulfillment details.
g. Preference Data
Data that reflects your responses to marketing prompts, consent to receive newsletters, and expressed interests in specific product types or features.
4. Legal Bases for Processing
We process your personal data based on one or more of the following legal grounds:
– Contractual Necessity: To fulfill our contractual obligations when you purchase products or services.
– Consent: When you provide clear, informed consent (such as subscribing to marketing communications).
– Legitimate Interests: For purposes that are in our legitimate interest and not overridden by your privacy rights, such as enhancing the website experience or preventing fraud.
– Legal Obligation: To comply with applicable laws and regulatory requirements.
5. Your Rights
Subject to jurisdictional laws, you have the following rights regarding your personal data:
– Right of Access: Request a copy of the personal data we hold about you.
– Right to Rectification: Correct any inaccurate or incomplete information.
– Right to Erasure: Request deletion of your personal data, where legally applicable.
– Right to Restriction: Limit the processing of your data under certain conditions.
– Right to Data Portability: Receive your data in a structured, commonly used format and transmit it to another controller.
– Right to Object: Object to the processing of your personal data based on legitimate interests or for marketing purposes.
– Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.
– Right Not to Be Subject to Automated Decision-Making: You have the right not to be subject to decisions based solely on automated processing that affects your legal rights.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We implement comprehensive technical and organizational safeguards to protect your personal data from unauthorized access, disclosure, loss, or misuse, including:
– Data encryption in transit and at rest
– Secure access controls and authentication processes
– Regular security audits and vulnerability scanning
– Automatic and secure data backups
– Staff training in data protection best practices
7. International Data Transfers
If your personal data is transferred outside of the jurisdiction in which it was collected, we ensure appropriate safeguards are in place. These may include Standard Contractual Clauses approved by the European Commission or other lawful transfer mechanisms that guarantee an adequate level of protection for your data.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected or to comply with legal, regulatory, or internal policy requirements. Retention periods vary depending on the data type:
– Usage and Technical Data: Up to 24 months
– Account and Profile Data: While the account is active and up to 6 years after closure
– Transaction Data: Retained for at least 7 years for compliance
– Communication Data: Up to 3 years following final interaction
– Preference and Marketing Data: Until consent is withdrawn
9. Cookie Policy
Iron Harley uses cookies and similar technologies to enhance your user experience, analyze website traffic, and deliver relevant advertisements. Our cookies fall into the following categories:
– Essential Cookies: Required for basic website functionality and account access.
– Functional Cookies: Help remember your choices, such as your region or preferred language.
– Analytics Cookies: Collect information on how visitors use the site (e.g. Google Analytics).
– Performance Cookies: Assist in optimizing site speed and usability.
10. Cookie Management and Compliance
We comply with GDPR and CCPA requirements related to cookie usage. When you first visit ironharley.com, you will be prompted with a cookie consent banner. You can manage or withdraw your consent at any time via the cookie settings available on our site or by adjusting your browser preferences. Under CCPA, California residents may opt out of the sale or sharing of their personal data.
11. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect or process data from children. If we become aware that we have collected personal data from a child under 13 without verified parental consent, we will take steps to delete such information promptly.
12. Policy Updates
We reserve the right to amend this Privacy Policy periodically to reflect changes in our practices or applicable laws. Material changes will be communicated via the website or email when appropriate. Your continued use of ironharley.com following any such changes constitutes your acceptance of the revised policy.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please reach out to us at:
Email: [email protected]
We are fully committed to ensuring that your personal data is handled with the highest standards of privacy and transparency and in full compliance with applicable data protection legislation, including the GDPR and CCPA. Please do not hesitate to contact us should you have any privacy-related inquiries.