Privacy Policy for eatcrispgreens.com
EatCrispGreens (“we,” “our,” or “us”) respects your privacy and is committed to safeguarding the personal data we collect when you use our website, eatcrispgreens.com (the “Site”). This Privacy Policy outlines how we collect, use, disclose, and protect your information, as well as your rights in relation to that data. We are dedicated to processing your data fairly, transparently, and in full accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Our Commitment to Privacy
Your privacy is of paramount importance. We implement industry-standard security, maintain clear data handling practices, and uphold individual rights. We collect only the data required to provide our services effectively and never sell personal data to third parties.
2. Scope of this Policy & Role of Data Controller
This Privacy Policy applies to all personal data collected through your interactions with eatcrispgreens.com. EatCrispGreens is the data controller responsible for determining the purposes and means of processing your personal data under GDPR and a “business” under the CCPA, as applicable.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a) Usage Data
Information about your interaction with the Site, including browser type, IP address, date/time stamps, referring pages, visited pages, length of sessions, and general geolocation.
b) Account Data
Identifiers you provide when creating an account or placing an order, such as your full name, email address, mailing address, and telephone number.
c) Profile Data
Details generated as part of your user profile and activity on the Site, such as dietary preferences, product selections, saved carts, and purchase history.
d) Communication Data
Records of your communications with us, including customer support requests, queries sent via contact forms, and email correspondence.
e) Technical Data
Data relating to the device and system configurations you use to access our Site, such as device type, operating system version, browser version, browser agent strings, and screen resolutions.
f) Transaction Data
Financial and logistical information related to transactions, such as billing address, shipping address, order details, payment providers used, and payment confirmation data (note: sensitive payment data is processed through secure third-party payment gateways and not stored by us).
g) Preference Data
Information about your marketing and communication preferences, product interests, and opt-in or consent records that you provide via forms or cookie consent banners.
4. Legal Bases for Processing
We process personal data under the following lawful bases as required by the GDPR:
– Performance of a Contract: Where processing is necessary for services you have requested (e.g., product purchases, servicing your user account).
– Consent: When you affirmatively opt into certain uses (e.g., marketing emails, cookies).
– Legal Obligation: Where we are required to comply with legal or regulatory obligations.
– Legitimate Interests: Where we process your data for purposes such as fraud prevention, IT security, service improvement, and account management, provided those interests are not overridden by your rights.
5. Your Rights
Subject to applicable law, you have the following rights in relation to your personal data:
– Right of Access: Obtain a copy of your personal data held by us.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data where legally required.
– Right to Restriction: Limit processing of your data under certain conditions.
– Right to Data Portability: Receive your personal data in a structured, machine-readable format and transfer it to a third party.
– Right to Object: Object to certain processing operations, including direct marketing.
– Right to Withdraw Consent: Revoke previously given consent at any time without affecting the lawfulness of prior processing.
California residents also have rights under the CCPA, including the right to opt out of sale of personal data (we do not sell your personal data), and the right to non-discrimination for exercising CCPA rights.
To exercise any privacy right, please contact us at [email protected].
6. Security Measures
We maintain appropriate technical and organizational security measures to protect your personal data. These safeguards include, but are not limited to:
– Secure Socket Layer (SSL) encryption
– Role-based access controls
– Endpoint security and intrusion detection
– Regular data backups
– Staff data protection training and confidentiality obligations
While we take extensive precautions, no system is completely infallible. You are encouraged to take basic online safety steps and notify us of any suspected breach.
7. International Transfers
Your personal data may be processed or stored outside your country of residence, including in countries that may not provide the same level of data protection. In such cases, we implement standard contractual clauses approved by the European Commission or rely on other safeguards in accordance with applicable law to protect your data during international transfers.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes it was collected for, including legal, accounting, or regulatory requirements. Retention periods generally follow this schedule:
– Account Data: Retained while account remains active and for 6 years thereafter.
– Transaction Data: Retained for up to 7 years for tax and audit purposes.
– Communication and Profile Data: Retained for 3 years after last user interaction.
– Usage and Technical Data: Retained for up to 2 years in aggregated or anonymized form.
– Marketing Preferences: Maintained until you withdraw consent or opt out.
9. Cookie Policy
We use cookies and similar technologies to provide, enhance, and customize your browsing experience. Cookies fall under the following categories:
– Essential Cookies: Necessary for functionality and security of the Site (e.g., login, checkout).
– Functional Cookies: Enable personalization (e.g., saved preferences).
– Analytics Cookies: Collect aggregated usage statistics to measure and improve Site performance (e.g., via Google Analytics).
– Performance Cookies: Track user engagement to optimize navigation and user experience.
Some cookies are set by third-party services integrated into eatcrispgreens.com. You can view a full list of cookies used in your browser settings or via our cookie banner.
10. Cookie Management
Upon visiting the Site, you will be presented with a choice to accept or manage your cookie preferences in accordance with GDPR Article 7 and CCPA transparency provisions. You may adjust your consent at any time via cookie settings or your browser controls.
Most browsers allow customization of cookie behavior, including setting Do Not Track signals, deleting stored cookies, and blocking certain domains. Note that disabling essential cookies may affect core website functionality.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If we learn that we have unlawfully gathered data from a minor, we will promptly delete that information. Parents or guardians who believe their child has provided data should contact us immediately at [email protected].
12. Updates to This Privacy Policy
This Privacy Policy may be revised periodically to reflect changes in technology, legal requirements, or our services. We encourage you to review the policy on eatcrispgreens.com periodically. Where material changes occur, we will take reasonable steps to inform you via prominent announcements or direct notification where feasible.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy or your personal data, please contact our Data Protection Team:
Email: [email protected]
Website: https://eatcrispgreens.com
We are committed to achieving and maintaining full compliance with data protection laws applicable to our users. If you have any concerns about your privacy or our practices, we welcome your inquiry.