Privacy Policy
HowdenCastle.com (“we,” “us,” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy outlines the ways in which we collect, use, disclose, and safeguard your personal data when you visit our website, howdencastle.com, and interact with its content and services. We actively uphold data protection and privacy rights in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy frameworks.
1. Our Commitment to Your Privacy
We prioritize your right to privacy and the protection of your personal data. This Privacy Policy details our practices to ensure transparency, trust, and legal compliance. We implement the highest standards of data protection and only process your data where necessary, lawful, and fair.
2. Scope of This Policy and Data Controller Identification
This Privacy Policy applies to all visitors, users, and others who access our services on howdencastle.com. For purposes of data protection legislation, HowdenCastle.com acts as the “data controller” with regard to the personal data that is collected through this website. We determine the purposes and means of processing your personal data, and we are responsible for processing such data in compliance with relevant laws and obligations.
3. Categories of Personal Data We Process
We may collect and process the following categories of personal data:
a. Usage Data
Includes information about how you use our website, such as IP address, browser type and version, time zone setting, pages visited, referring URLs, session duration, and interaction patterns.
b. Account Data
Includes identifying and contact information provided upon account creation, such as full name, billing and shipping address, email address, and telephone number.
c. Profile Data
Includes information such as purchase history, saved preferences, behavior patterns, and feedback.
d. Communication Data
Includes records of correspondence with us, including support inquiries, complaints, and messages sent via email or contact forms.
e. Technical Data
Includes device identifiers, operating system, browser plug-in types, diagnostic logs, and system configuration data.
f. Transaction Data
Includes records of products ordered, payment details (excluding full payment card information), and delivery tracking details.
g. Preference Data
Includes marketing and communication preferences, subscription opt-ins or opt-outs, and details about products or services that interest you.
4. Legal Bases for Processing
We process your personal data only when there is a legal basis to do so. These legal bases include:
– Contract: When processing is necessary to fulfill a contract with you, including providing the services you request and managing your transactions.
– Legitimate Interest: Where processing is necessary for our legitimate interests, provided that your interests and fundamental rights do not override those interests. For example, we may use your data to improve the functionality of howdencastle.com.
– Consent: Where you have given your explicit permission to process your data for specific purposes (e.g., to send you marketing communications).
– Legal Obligation: Where processing is required to comply with applicable legal and regulatory obligations.
5. Your Rights
Subject to applicable laws, you have the following data protection rights:
– Right of Access: You can request confirmation of whether we process your personal data and obtain a copy of such data.
– Right to Rectification: You may request correction of inaccurate or incomplete personal data.
– Right to Erasure (“Right to be Forgotten”): You may request the deletion of your personal data under certain circumstances.
– Right to Restrict Processing: You may request that we restrict processing of your personal data in specific scenarios.
– Right to Data Portability: You may request to receive your personal data in a structured, commonly used, and machine-readable format for transmission to another data controller.
– Right to Object: You may object to the processing of your personal data on grounds relating to your particular situation, including direct marketing purposes.
To exercise these rights, please contact us at [email protected].
6. Security Measures
We are committed to safeguarding your personal data through:
– Encryption of data at rest and in transit;
– Controlled access with multi-factor authentication for systems storing personal data;
– Frequent and secure data backups;
– Regular security testing and audits;
– Staff training in privacy and data protection principles.
7. International Data Transfers
If we transfer personal data outside of the European Economic Area (EEA) or other jurisdictions with data transfer restrictions, we ensure adequate protection through standard contractual clauses or other lawful transfer mechanisms compliant with applicable laws.
8. Data Retention
We retain personal data only as long as necessary for the purposes outlined in this policy. Retention periods vary depending on the type of data:
– Usage and Technical Data: 12 months;
– Transaction and Account Data: 7 years (to comply with tax and financial regulations);
– Profile and Preference Data: 2 years after last user interaction;
– Communication Data: 3 years after resolution or last contact.
After such periods, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance the user experience, analyze traffic, and personalize content.
Types of cookies used:
– Essential Cookies: Required for core functionality such as navigation and account login.
– Functional Cookies: Enable website customization and settings retention (e.g., language preference).
– Analytical Cookies: Help us understand how users interact with the website via tools such as Google Analytics (data collected is aggregated and anonymized).
– Performance Cookies: Improve speed and optimize performance by minimizing loading times.
10. Cookie Management and GDPR/CCPA Compliance
Upon your first visit to howdencastle.com, a cookie banner will provide options to manage your cookie preferences in compliance with GDPR and CCPA. You may withdraw or adjust your consent at any time through our cookie settings panel or by adjusting your browser settings.
CCPA Notice: California residents can opt out of the “sale” or “sharing” of personal data, request disclosure about categories collected, and request deletion. We do not sell your data in the conventional sense but honor opt-outs to comply with CCPA.
11. Protection of Children’s Privacy
We do not knowingly collect personal data from children under the age of 13. If we learn that personal data of a child under 13 has been collected, we will delete such information promptly. Parents or guardians who believe that their child has submitted personal data may contact us directly at [email protected] for assistance.
12. Updates to This Privacy Policy
We reserve the right to update or amend this Privacy Policy from time to time in response to legal, technical, or business developments. When changes occur, we will provide prominent notice on the website or via other appropriate communication channels, depending on the nature of the change.
13. Contact Information
If you have any questions, concerns, or wish to exercise any of your legal rights regarding your personal data, please contact us at:
Email: [email protected]
Website: https://howdencastle.com
We are committed to full compliance with data protection laws and welcome your inquiries or feedback regarding our privacy practices.