Privacy Policy for Hearth Dream Living
1. Introduction
At Hearth Dream Living, accessible via hearthdreamliving.com, we are firmly committed to maintaining the highest standards of privacy and data protection. We understand the importance of safeguarding your personal information and communicating transparently about how we collect, use, store, and share that information. This Privacy Policy outlines our practices in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Your privacy is our priority, and we are dedicated to handling your data in a fair, lawful, secure, and responsible manner.
2. Scope of This Policy and Data Controller Responsibility
This Privacy Policy applies to all users of hearthdreamliving.com and any associated services. Hearth Dream Living is the data controller for personal data collected and processed through this website. For any inquiries regarding this Policy or your data, you may contact us at [email protected].
3. Categories of Data Processed
We collect a variety of personal information to provide, optimize, and secure our services. This data may include the following categories:
a) Usage Data
Includes information such as browser type and version, IP address, location data (such as country or region), referral sources, access times, and patterns of navigation through hearthdreamliving.com. This is used to analyze trends, administer the website, and enhance user experience.
b) Account Data
Collected when you register or create an account, including your name, email address, mailing address, phone number, and login credentials.
c) Profile Data
Includes user behavior on hearthdreamliving.com, purchase history, saved preferences, product interests, and customized content usage patterns.
d) Communication Data
Collected through interactions such as submitting support requests, emailing us via [email protected], or participating in polls, promotions, or surveys. We maintain these records to manage user service and improve communication.
e) Technical Data
Includes data related to devices you use to access hearthdreamliving.com, such as device type, operating system version, unique identifiers, system settings, and mobile network information.
f) Transaction Data
Collected when you make purchases, including payment details (processed by secure third parties), billing and shipping information, and transaction history.
g) Preference Data
Encompasses your preferences in receiving marketing communications, alerts, newsletters, and expressed product interests or opt-in consents.
4. Legal Bases for Processing
We process personal data pursuant to various lawful bases under the General Data Protection Regulation (GDPR) and in accordance with CCPA requirements:
– Contractual Necessity: To facilitate account registration, product delivery, and service-related operations.
– Consent: For direct marketing, cookies (non-essential), and other processing not strictly necessary. Where required, consent will be requested in advance and can be withdrawn at any time.
– Legitimate Interests: To improve our website and services, ensure security and fraud prevention, and tailor user experience — provided such interests are not overridden by your fundamental rights.
– Legal Obligation: Where we are legally required to retain or disclose data in compliance with laws or regulatory mandates.
5. Your Rights
As a data subject under GDPR or a consumer under CCPA, you are entitled to the following rights:
– Right of Access: You may request confirmation of whether we process your personal data and obtain a copy of the data we hold.
– Right to Rectification: You can request updates or corrections to inaccurate or incomplete personal data.
– Right to Erasure (“Right to Be Forgotten”): You may request that we delete your personal information, subject to legal limitations.
– Right to Restrict Processing: You may request that we temporarily suspend processing of certain data.
– Right to Data Portability: You may request your data in a commonly used, machine-readable format and transmit it to another controller.
– Right to Object: You may object to certain forms of data processing, including direct marketing.
– Right Not to Be Subject to Automated Decision-Making: We do not use personal data in any form of automated profiling that produces legal effects or similarly significant impacts.
To exercise any of these rights, contact us at [email protected]. We will verify your identity before responding as required by law.
6. Security Measures
We take appropriate technical and organizational measures to safeguard your data from unauthorized access, alteration, disclosure, or destruction, including but not limited to:
– End-to-end encryption during data transmission
– Access control based on least privilege
– Regular system security audits and vulnerability scans
– Secure server infrastructure and firewalls
– Routine backups and disaster recovery protocols
– Staff privacy training and restricted data access
7. International Data Transfers
When transferring personal data outside your jurisdiction (including to third-party service providers located in the United States or other countries), we ensure appropriate safeguards are in place. These include entering into Standard Contractual Clauses approved by the European Commission and verifying that processing locations provide adequate levels of data protection in compliance with GDPR or CCPA adequacy standards.
8. Data Retention
We retain personal information only as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations.
– Usage and Technical Data: up to 24 months
– Account and Profile Data: retained while your account remains active, and for six years thereafter unless requested for earlier deletion
– Transaction Data: retained for 7 years for accounting and audit compliance
– Communication Data: retained for 3 years post-interaction
– Marketing Preference Data: retained until consent is withdrawn or for up to 2 years after last user activity
9. Cookie Policy
Our website utilizes cookies and similar tracking technologies to optimize user experience and personalize content. Cookies are categorized as follows:
– Essential Cookies: Critical for website functionality, security, and user session management (these cannot be disabled).
– Functional Cookies: Enable personalized features like saved preferences and remembered sessions.
– Analytics Cookies: Allow us to understand website usage, detect errors, and enhance performance. For example, we use cookies from Google Analytics.
– Performance Cookies: Measure website loading speed, responsiveness, and other technical performance metrics.
10. Cookie Management and Compliance
Upon your first visit to hearthdreamliving.com, you will be presented with a cookie consent banner allowing you to accept or reject non-essential cookies in compliance with GDPR and CCPA. You may adjust preferences at any time through the cookie settings link available on our site. Browsers also offer cookie control features to block or delete cookies.
11. Protection of Children’s Privacy
We do not knowingly collect or process personal data from children under the age of 13. If you believe a child has provided us with personal information without parental consent, please contact us at [email protected], and we will take steps to remove the data and restrict further access.
12. Policy Updates
We may periodically revise this Privacy Policy to reflect changes in legal requirements, technology, or our business operations. All changes will be posted on hearthdreamliving.com. Where required by law, we will notify users directly via email or website notifications. Continued use of the website after such updates constitutes your acceptance of the modified terms.
13. Contact
If you have any questions regarding this Privacy Policy, your data rights, or how your personal information is handled, you may contact us at:
Email: [email protected]
We are committed to ensuring that your privacy is protected and respected. If you are not satisfied with how we process your data, you also have the right to lodge a complaint with your local data protection authority.
Hearth Dream Living is fully committed to data privacy compliance under the EU GDPR and the California CCPA. We welcome your questions and concerns at any time regarding this policy or our data practices.