Privacy Policy
At Needles and Pins Voyage (“Company”, “we”, “us”, or “our”), accessible at needlesandpinsvoyage.com (“Website”), we are committed to safeguarding the privacy and personal data of our users, visitors, and customers. We recognize the importance of privacy and are dedicated to protecting all personal data in compliance with the European Union’s General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection and privacy laws.
This Privacy Policy outlines how we collect, process, use, and safeguard your personal data when you access or use our Website, including information you may provide through forms, purchases, or communication with us.
1. Introduction – Our Commitment to Privacy and Data Protection
We value your trust and take your privacy seriously. Our practices are designed to ensure your personal data remains secure, confidential, and used only in ways that align with applicable law and your expectations. This Privacy Policy details your rights and choices relating to your personal data and the steps we take to ensure compliance with data protection standards.
2. Scope of Policy and Role of Data Controller
This Privacy Policy applies to all personal data collected through needlesandpinsvoyage.com or through our communications with you via email or other channels. For the purposes of applicable data protection regulations, including the GDPR and CCPA, Needles and Pins Voyage is the data controller of your personal data.
3. Categories of Personal Data We Process
We may collect, process, and store the following categories of personal data:
– Usage Data:
Includes information automatically collected about your use of our Website, such as IP address, browser type, language preference, geographic location, device type, pages visited, session duration, and referral URLs.
– Account Data:
Includes name, postal address, email address, phone number, and login credentials you provide when creating or managing an account with us.
– Profile Data:
Includes your preferences, purchase history, product interactions, and other behavioral information derived from using our Website or services.
– Communication Data:
Includes records of your correspondence with us, such as support requests, submitted forms, messages, and other communications exchanged via email or through contact forms.
– Technical Data:
Includes information about your device and configuration, such as operating system, browser version, screen resolution, time zone setting, and other settings relevant to system compatibility and security.
– Transaction Data:
Includes details about orders you place with us, products purchased, payment methods (excluding full payment card numbers), billing and delivery information.
– Preference Data:
Includes information about your marketing preferences, expressed interests in products or services, and consent or opt-in status for receiving communications.
4. Legal Bases for Processing Personal Data
We rely on a combination of the following legal bases for processing your personal data:
– Performance of a Contract: To fulfill contractual obligations related to purchases, support services, or account management.
– Legitimate Interests: To improve our services, maintain site security, and tailor communications, where such interests are not overridden by your rights.
– Consent: For the sending of marketing communications, placement of certain cookies, and the processing of specific data points where legally required.
– Legal Obligation: To comply with statutory or regulatory requirements.
5. Your Rights
As a data subject, you have the following rights:
– Right of Access: You may request access to information we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete personal data.
– Right to Erasure (“Right to Be Forgotten”): You may request deletion of your personal data under certain conditions.
– Right to Restriction: You may request that we temporarily or permanently cease processing your data under specific circumstances.
– Right to Data Portability: You may request to receive your personal data in a structured, commonly used, machine-readable format.
– Right to Object: You may object to the processing of your personal data based on legitimate interests or for direct marketing purposes.
To exercise any of the above rights, please contact us at: [email protected].
6. Security Measures
We implement industry-standard security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These include:
– HTTPS encryption during data transmissions
– Role-based access controls and account authentication protocols
– Regular data backups and secure storage measures
– Employee training in data protection and privacy compliance
Despite our efforts, no system can guarantee 100% security, and users are advised to take appropriate caution when transmitting personal data online.
7. International Data Transfers
To deliver our services, we may transfer your data outside your jurisdiction (e.g., to servers or service providers located in the United States or other countries). When doing so, we implement Standard Contractual Clauses or equivalent safeguards to ensure an appropriate level of data protection in accordance with GDPR and other relevant international laws.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, or as required by legal, accounting, or regulatory obligations. Retention periods include:
– Account and Profile Data: Retained until account closure or deletion request
– Transaction Data: Retained for seven (7) years to comply with tax and accounting laws
– Communication Data: Retained for two (2) years following the last contact
– Technical and Usage Data: Retained for twelve (12) months for performance analytics
– Marketing Preference Data: Retained until user modifies consent or unsubscribes
9. Cookie Policy
Our Website uses cookies to enhance performance, user experience, and security. These may include:
– Essential Cookies: Necessary for the Website to function properly (e.g., login functionality, cart persistence)
– Functional Cookies: Enable advanced features like language selection and saved preferences
– Analytics Cookies: Help us understand how visitors interact with the site (e.g., page views, referral sources)
– Performance Cookies: Measure Website speed and usability to improve performance
Cookies may be placed by us or third-party service providers operating on our behalf.
10. Cookie Management and Compliance with GDPR & CCPA
Users can manage cookie preferences through their browser settings or via provided consent banners in accordance with GDPR and CCPA compliance requirements. EU visitors are offered opt-in consent for non-essential cookies, and California visitors may opt-out of the “sale” or “sharing” of personal data using our Do Not Sell or Share My Information link where applicable.
11. Special Protections for Children
Our Website is not directed to children under 13 years old. We do not knowingly collect personal data from anyone under the age of 13. If we become aware that such data has been collected, we will take prompt steps to delete the information from our systems. If you believe that a child under 13 has provided us with personal data, please contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to update or modify this Privacy Policy at any time. Any significant changes will be communicated through prominent notices on our Website or via direct email communication where legally required. Continued use of needlesandpinsvoyage.com after any such updates constitutes your acceptance of the revised Privacy Policy.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us at:
Email: [email protected]
Website: https://needlesandpinsvoyage.com
We are committed to full compliance with privacy principles and laws that protect your data. You may contact us at any time to inquire about how your personal data is processed or to exercise your legal rights related to privacy and data protection.