Privacy Policy for bobigelow.com
1. Introduction
At bobigelow.com, we are committed to protecting and respecting your privacy. We recognize the importance of safeguarding personal data and are dedicated to ensuring that your information is treated securely, transparently, and in full accordance with all applicable data protection laws. This Privacy Policy outlines how we collect, use, disclose, and manage your personal data when you access our website or interact with us in any capacity.
2. Scope of This Policy and the Role of Data Controller
This Privacy Policy applies to all users of bobigelow.com and any associated services provided through the website. We act as the “data controller” under applicable privacy laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”), determining the purposes and means by which your personal data is processed.
3. Categories of Data We Process
We may collect, use, store and transfer different kinds of personal data which we have grouped as follows:
a. Usage Data
Information about how you interact with our site including IP address, browser type, pages visited, session durations, and referral URLs.
b. Account Data
Personal details you provide when creating an account or signing up for services, such as your full name, address, email address, and phone number.
c. Profile Data
Details related to your user preferences, purchase history, browsing behavior, and interests that help personalize your experience on bobigelow.com.
d. Communication Data
Records of correspondence through contact forms, support requests, and other customer service interactions.
e. Technical Data
Information about the devices you use to access our website, such as hardware model, operating system, unique device identifiers, browser configuration, and network information.
f. Transaction Data
Details surrounding your payments and purchases, such as billing addresses, transaction history, delivery address, and order fulfillment status.
g. Preference Data
Information related to your consent settings for marketing communications, newsletter subscriptions, and preferences regarding products and services.
4. Legal Bases for Processing Personal Data
We process your personal data based on the following lawful grounds under GDPR and, where applicable, under CCPA:
– Consent: When you have given clear permission for us to process your data (e.g., for marketing emails).
– Contract: When processing is necessary to fulfill a service or product you have requested.
– Legitimate Interests: For business and operational functions that do not override your privacy rights, such as improving services or preventing fraud.
– Legal Obligation: Where we are required by law to process your data, including in relation to tax, fraud prevention, or regulatory compliance.
5. Your Data Protection Rights
In accordance with GDPR and other applicable laws, you have the following rights regarding your personal data:
– Right of Access – You have the right to request and obtain a copy of the personal data we hold about you.
– Right to Rectification – You may request that inaccurate or incomplete data be corrected.
– Right to Erasure – Also known as the “right to be forgotten”, you may request that your personal data be deleted in certain circumstances.
– Right to Restrict Processing – You can request a limitation on how we process your data.
– Right to Data Portability – Where applicable, you can request that we transfer your data to you or another data controller.
– Right to Object – You can object to processing where we rely on legitimate interest or where direct marketing is involved.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We implement robust security measures designed to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These include but are not limited to:
– Encryption during data transmission and storage
– Role-based access controls and authentication
– Secure server infrastructure and backups
– Regular security audits and vulnerability assessments
– Staff training in privacy best practices and data handling
7. International Data Transfers
Wherever we transfer your personal data outside of the European Economic Area (EEA), we ensure appropriate safeguards are in place. These may include the use of Standard Contractual Clauses approved by the European Commission, binding corporate rules, or other legally acceptable mechanisms to ensure adequate data protection consistent with this policy and applicable law.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which we collected it, including legal, reporting, or regulatory requirements. Retention periods vary according to the type of data:
– Usage and Technical Data: up to 24 months
– Account and Profile Data: for as long as your account remains active
– Transaction Data: for up to 7 years for accounting and tax compliance
– Communication Data: for up to 3 years following the last interaction
– Preference Data: retained until you update or withdraw your consent
9. Cookie Policy
We use cookies and similar tracking technologies on bobigelow.com to enhance your browsing experience and collect information about your usage patterns. Cookies are categorized as follows:
– Essential Cookies – Necessary for the functioning of the site (e.g., login session maintenance).
– Functional Cookies – Facilitate enhanced features such as remembering user preferences.
– Analytics Cookies – Collect data to help us understand how visitors interact with the site (e.g., Google Analytics).
– Performance Cookies – Monitor service performance and usability improvements.
10. Cookie Management and Legal Compliance
You have the ability to manage cookie preferences directly through your browser settings or via cookie consent banners appearing upon your first visit. We fully comply with GDPR requirements for cookie consent and provide Do Not Sell My Personal Information links in accordance with CCPA for California residents.
11. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect or solicit personal data from minors. If we become aware that we have inadvertently collected personal information from a child under 13, we will promptly delete such information. Parents or legal guardians who believe that their child has provided information to us without consent should contact us at [email protected].
12. Policy Updates
We may update this Privacy Policy from time to time to reflect changes in legislation, regulatory guidance, or our privacy practices. Major changes will be communicated through announcements on bobigelow.com or direct notifications to account holders where appropriate. We encourage you to periodically review this page to stay informed about how we are protecting your information.
13. Contact Information
For any questions, concerns, or requests relating to this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
We are committed to resolving any privacy-related complaints promptly and respectfully and to ensuring compliance with applicable data protection laws, including GDPR and CCPA. Your privacy matters to us. If you have any doubts or concerns about how your data is being handled, please do not hesitate to get in touch.