Privacy Policy
At Steyerville (“we,” “our,” or “us”), accessible from steyerville.com, we are committed to maintaining the privacy, integrity, and security of personal data entrusted to us by users of our website. The protection of your personal information is a fundamental responsibility, and we process all your data with the utmost care and in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Introduction
Your privacy is a priority at Steyerville. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you interact with steyerville.com or our services. We handle personal data lawfully, transparently, and for specific, legitimate purposes only.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through steyerville.com. Steyerville is the data controller responsible for determining the purposes and means of processing your personal data under the GDPR. For CCPA compliance, we may act as a “business” that determines the purposes and means of collecting consumers’ personal information.
3. Categories of Data Processed
We collect and process the following categories of data when you visit steyerville.com or interact with our services:
a) Usage Data
Information about your interaction with our website, including IP address, browser type, page views, access times, referring URLs, session durations, and navigation paths.
b) Account Data
Personal identifiers necessary to create and maintain an account, such as full name, email address, postal address, and phone number.
c) Profile Data
Data related to your interactions and preferences, including saved products, purchase history, personal settings, loyalty status, and behavioral trends.
d) Communication Data
Records of your interactions with customer support, including the content and metadata of support tickets, feedback forms, chat transcripts, and email correspondence.
e) Technical Data
Device-specific information such as operating system, device model, network type, browser plug-ins, system configurations, and error logs.
f) Transaction Data
Data related to product orders and payments, including payment method details (processed by third-party providers), delivery and billing addresses, order status, and shipping tracking information.
g) Preference Data
Information you provide regarding marketing preferences, notification settings, communication formats, interest categories, and survey responses.
4. Legal Bases for Processing
We process personal data under the following legal bases:
– Vital interest or legal obligation: To comply with legal requirements or defend our legal rights.
– Contractual necessity: For the performance of a contract (e.g., account setup, order fulfillment, customer support).
– Legitimate interests: To improve services, prevent fraud, personalize content (unless overridden by your rights and freedoms).
– Consent: For marketing purposes, non-essential cookies, or when required by law.
5. Your Rights (Under GDPR & CCPA)
You have certain rights over your personal data:
– Access: Request access to the personal data we hold about you.
– Rectification: Request correction of inaccurate or incomplete data.
– Erasure: Request deletion of your personal data under certain circumstances (“right to be forgotten”).
– Restriction: Request restriction of processing where accurate or lawful processing is under dispute.
– Portability: Receive personal data in a structured, commonly used, machine-readable format.
– Objection/Opt-Out: Object to the processing of data under legitimate interest or withdraw consent where previously given.
– Non-Discrimination: Under CCPA, you will not be penalized for exercising your data rights.
To exercise any of these rights, please contact us at: [email protected].
6. Security Measures
We implement physical, technical, and organizational security measures to protect personal data against loss, misuse, unauthorized access, disclosure, or destruction. These include strong encryption protocols, secure socket layer (SSL) technology, role-based access control, regular security audits, data backups, and employee training programs centered on data protection.
7. International Transfers
Your data may be transferred and processed in countries outside of your country of residence, including those not deemed to have adequate data protection by relevant authorities. In such cases, we apply safeguards such as Standard Contractual Clauses (SCCs), binding corporate rules, or rely on adequacy decisions where applicable to ensure continued protection of your personal data.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, regulatory, tax, accounting, or reporting requirements. Retention periods by data type include:
– Usage & Technical Data: Up to 24 months
– Account & Profile Data: As long as the account is active + 6 years
– Transaction Data: 7 years, in line with financial regulations
– Communication Data: 3 years post-resolution
– Preference Data: Until consent is withdrawn or no longer relevant
9. Cookie Policy
Our website uses cookies and similar technologies to enhance your user experience. Cookies are small data files stored on your browser used for various functions.
We use the following categories of cookies:
– Essential Cookies: Necessary for website functionality (e.g., login, navigation).
– Functional Cookies: Remember preferences and settings to personalize your experience.
– Analytics Cookies: Collect aggregate data on website usage to improve performance (e.g., Google Analytics).
– Performance Cookies: Monitor technical performance of the site and detect outages or errors.
10. Cookie Management & Legal Compliance
Upon your first visit (and periodically thereafter), steyerville.com will prompt you with a cookie consent banner. You have the right to accept or reject non-essential cookies and can modify your preferences at any time via our Cookie Settings panel. Our cookie practices align with GDPR and CCPA requirements, including respecting “Do Not Track” signals and opt-out mechanisms.
11. Children’s Privacy
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that such data has been collected without verified parental consent, we will take reasonable steps to delete it as quickly as possible in accordance with applicable laws.
12. Policy Updates
We reserve the right to update this Privacy Policy as our practices evolve or as required by law. Notifications regarding substantive changes will be provided through steyerville.com or via direct communication where legally required. We encourage you to revisit this page periodically to stay informed of how we protect your data.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact:
Steyerville
Email: [email protected]
Website: https://steyerville.com
We are committed to full compliance with data protection laws and welcome the opportunity to address any privacy-related concerns. Please do not hesitate to reach out.