Privacy Policy
Guernsey2003.com (“we”, “our”, or “us”) is committed to safeguarding the privacy and personal data of its users, visitors, and customers. We uphold the highest standards of data protection in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the California Consumer Privacy Act of 2018 (“CCPA”), and other applicable data privacy laws. This Privacy Policy outlines how we collect, use, store, and protect your personal information. By interacting with our website, guernsey2003.com, you agree to the terms described herein.
1. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of our website, services, and related digital platforms. Guernsey2003.com acts as the “data controller” as defined under GDPR, determining the purposes and means of processing your personal data, and, for California residents, the “business” as defined under the CCPA.
If you are located in the European Economic Area (EEA), the UK, Switzerland, or California, this Policy provides you with details concerning your legal rights, and our obligations, with respect to your personal information.
2. Categories of Personal Data We Process
We may process the following categories of personal data, depending on your interactions with guernsey2003.com:
a) Usage Data
Information collected automatically when you interact with our website, including IP address, browser type, operating system, referral source, session duration, pages viewed, and clickstream behavior.
b) Account Data
Information you provide when you create or manage an account, such as your full name, postal address, email address, and phone number.
c) Profile Data
Details about your interests, purchase history, preferences, feedback, and activity patterns.
d) Communication Data
Records of any communications with us, including email interactions, customer support requests, and service history.
e) Technical Data
Device-specific data, including device identifiers, operating system versions, browser specifications, time zone settings, mobile and hardware credentials.
f) Transaction Data
Information related to purchases, billing address, delivery address, order history, payment methods (excluding full credit card numbers), and transaction confirmation.
g) Preference Data
Data relating to your opt-in/opt-out selections for marketing communications, preferred products or services, and customer engagement preferences.
3. Legal Bases for Processing Personal Data
We rely on one or more of the following lawful bases for processing your personal data:
– Consent: Where you have given clear and informed permission for specific uses of your data (e.g., subscribing to newsletters).
– Contractual Necessity: Where data processing is necessary to fulfill a contract with you or to provide a requested service.
– Legal Obligation: Where we are required to process data in compliance with legal or regulatory obligations.
– Legitimate Interests: Where data processing is necessary for our legitimate commercial or operational interests, and such interests are not overridden by your privacy rights.
4. Your Rights Under GDPR and CCPA
Subject to verification of your identity, you have the following rights:
– Right of Access: To request information regarding the personal data we hold about you.
– Right to Rectification: To correct inaccuracies or incomplete data.
– Right to Erasure (“Right to be Forgotten”): To request deletion of your personal data in certain circumstances.
– Right to Restriction: To limit the ways in which we process your personal data.
– Right to Data Portability: To receive your data in a structured, commonly used, machine-readable format and have it transferred to another controller.
– Right to Object: To object to processing conducted on the basis of legitimate interests or for direct marketing purposes.
– Right not to be subject to automated decision-making or profiling (where applicable under law).
California residents may also:
– Request disclosure of categories and specific pieces of personal data collected in the preceding 12 months.
– Request information about selling or sharing of personal data.
– Opt out of the sale of personal data, if applicable.
To exercise any of these rights, please contact us at [email protected].
5. Security Measures
We implement industry-standard technical and organizational security measures to protect your personal data, including:
– Encryption of data during transmission (TLS/SSL) and at rest where appropriate.
– Role-based access controls to limit employee access to personal data.
– Regular data backups and disaster recovery protocols.
– Routine vulnerability scanning, patching, and security audits.
– Mandatory privacy and data protection training for staff.
Despite our efforts, no systems can be 100% secure. Users are encouraged to use strong passwords and protect their own devices.
6. International Data Transfers
As part of our operations, your data may be transferred to and processed in jurisdictions outside of your country of residence, including the United States. Where such transfers occur, we ensure appropriate safeguards are in place under applicable data protection laws, such as:
– Use of Standard Contractual Clauses (SCCs) approved by the European Commission.
– Compliance with frameworks recognized by local data protection authorities.
– Implementation of adequate technical and organizational measures.
7. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, or as required by law. Retention periods vary based on the type of data:
– Usage and Technical Data: up to 12 months.
– Account, Profile, and Communication Data: retained for the duration of your account and up to 3 years thereafter.
– Transaction Data: retained for 7 years for regulatory and tax compliance.
– Preference Data: retained until you withdraw your consent or object to marketing communications.
Data deemed no longer necessary is securely deleted or anonymized.
8. Cookie Policy
Guernsey2003.com uses cookies and similar technologies to improve user experience. These include:
– Essential Cookies: Required for website functionality and security.
– Functional Cookies: Remember your settings and preferences (e.g., language or region).
– Analytics Cookies: Collect analytics information (e.g., Google Analytics) to help us understand how visitors interact with our website.
– Performance Cookies: Improve speed and performance reliability based on usage feedback.
9. Cookie Management & Compliance
You have the right to control the use of cookies. On initial access, guernsey2003.com provides a cookie consent banner, allowing you to accept, reject, or customize participation in optional cookies. You may also modify your cookie settings at any time by accessing your browser’s preferences.
We do not sell personal data, including via cookies, as defined under the CCPA. California users may opt-out of cross-context behavioral advertising under applicable law using identifiable settings or contact mechanisms.
10. Children’s Privacy
Our website is not directed at individuals under the age of 13. We do not knowingly collect or solicit personal data from children under 13. If we learn we have collected information from a child without appropriate consent, we will delete such data promptly. Parents and guardians who believe that a minor may have submitted personal data should contact us at [email protected].
11. Policy Updates
We reserve the right to update this Privacy Policy at any time to reflect changes in legal, operational, or technological frameworks. Material changes will be communicated via our website or by direct notice where appropriate. Continued use of guernsey2003.com after such changes indicates your acceptance of the updated Policy.
12. Contact
If you have any questions, privacy-related concerns, or if you wish to exercise your rights under this Privacy Policy or applicable law, please contact us at:
At Guernsey2003.com, we are firmly committed to transparency, compliance, and empowering our users with control over their personal information. Your privacy, trust, and security are of paramount importance to us.