Privacy Policy for stratfordlondonapp.com
1. Introduction: Our Commitment to Your Privacy
At stratfordlondonapp.com (“we”, “our”, or “us”), we are committed to safeguarding your personal data and upholding your privacy rights. This Privacy Policy outlines how we collect, use, secure, and disclose personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Your trust is paramount to us, and we strive to ensure transparency, accountability, and lawful processing in all aspects of your interaction with our platform.
2. Scope of This Policy and Role of the Data Controller
This Privacy Policy applies to all users and visitors of the stratfordlondonapp.com website and associated services. We act as the Data Controller for the personal data processed through our website, meaning we determine the purposes and means of processing your data.
If you have questions or concerns regarding the processing of your personal information, you may contact us at: [email protected].
3. Categories of Personal Data We Process
We collect and process several categories of personal data to operate our services effectively:
a. Usage Data
This includes data automatically collected when you interact with our website, such as browser type, IP address, device identifiers, dates and times of access, pages viewed, and user session logs.
b. Account Data
This covers identifying information you provide when creating an account or using our services, such as full name, postal address, email address, and telephone number.
c. Profile Data
Information gathered through your interactions and preferences, such as your activity history, interests, saved profiles, purchase patterns, and behavioral tendencies.
d. Communication Data
Records of all communications with us, including customer support interactions, inquiries, emails, and submitted forms.
e. Technical Data
Device-specific information, such as operating system, hardware model, browser configuration, and diagnostic logs.
f. Transaction Data
Details related to payment processing, including billing information, order details, product delivery information, and payment confirmations. Financial data is processed via secure third-party providers and not stored directly on our servers.
g. Preference Data
Marketing preferences, such as opt-ins/opt-outs for communications, product interest areas, and notification settings.
4. Legal Bases for Processing Personal Data
Under the GDPR, we rely on a range of lawful bases for processing personal information:
– Consent: When you affirmatively agree to specific processing activities, such as receiving marketing communications.
– Contractual Necessity: When processing is essential for fulfilling a contract or providing requested services.
– Legal Obligation: When we are required to process data to comply with legal or regulatory responsibilities.
– Legitimate Interests: Where processing is necessary for our legitimate interests, provided such interests are not overridden by your fundamental rights and freedoms. Examples include fraud prevention, site analytics, and service improvements.
For users subject to the CCPA, we do not sell your personal data as defined under California law.
5. Your Rights
As a data subject, you have the following rights under applicable data protection laws:
– Right of Access: To request access to your personal data and information on how it is processed.
– Right to Rectification: To correct inaccuracies or incomplete information.
– Right to Erasure (“Right to Be Forgotten”): To request deletion of your data under lawful grounds.
– Right to Restriction of Processing: To limit the way we use your data under certain circumstances.
– Right to Data Portability: To receive your data in a structured, machine-readable format and transmit it to another controller.
– Right to Object: To object to processing based on legitimate interests or direct marketing.
– Right to Withdraw Consent: At any time, where consent is the legal basis for processing.
To exercise your rights, contact us at [email protected]. We will respond promptly and in accordance with legal obligations.
6. Security Measures
We implement rigorous technical and organizational measures to protect your data, including:
– End-to-end encryption during data transmission and storage
– Access controls and authentication protocols for administrative roles
– Regular data backups and disaster recovery mechanisms
– Employee training on data protection and privacy practices
– Monitoring and testing of systems to ensure vulnerability mitigation
Despite our efforts, no data transmission or storage system can be guaranteed to be 100% secure. We encourage users to also maintain best practices with password and device security.
7. International Data Transfers
Where personal data is transferred outside of the European Economic Area (EEA), including to jurisdictions with differing data protection laws, we implement appropriate safeguards, which may include:
– Standard Contractual Clauses approved by the European Commission
– Transfer mechanisms compliant with prevailing legal requirements
– Ongoing risk assessments and contractual obligations with processors
We comply with all jurisdictional mandates for lawful cross-border data transfers.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes outlined in this policy, and in accordance with applicable legal, regulatory, and contractual obligations.
– Usage Data: Up to 12 months for analytics and security purposes
– Account Data: Retained for the duration of the user relationship plus six years
– Profile and Preference Data: Retained during your active use and up to two years following inactivity
– Communication Data: Stored for up to three years for recordkeeping and dispute resolution
– Transaction Data: Retained for seven years for tax, auditing, and fraud prevention
– Technical and Diagnostic Data: Retained up to 24 months for service functionality and improvement
We periodically review retention schedules and securely delete or anonymize data when it is no longer required.
9. Cookie Policy
Our website uses cookies and similar technologies to improve performance, provide functionality, and analyze user behavior. Cookies fall into several categories:
– Essential Cookies: Required for website operation, security, and account management.
– Functional Cookies: Enhance user experience, such as language settings or saved preferences.
– Analytics Cookies: Track usage patterns to help us improve functionality and content delivery.
– Performance Cookies: Measure site performance, loading times, and responsiveness.
Third-party service providers may set analytics or tracking cookies, subject to our oversight.
10. Cookie Management and Compliance
On your first visit to stratfordlondonapp.com, you will be provided with options to accept, decline, or customize your cookie preferences via our consent management platform. You can modify your cookie settings at any time through your browser or the cookie settings link on our site.
In compliance with GDPR and CCPA, we honor “Do Not Track” signals and user opt-out preferences. California residents may also request a list of disclosures regarding data sharing practices under CCPA provisions.
11. Special Protections for Children
We do not knowingly collect data from individuals under the age of 13. If you are a parent or guardian and believe your child has provided personal data without your consent, please contact us at [email protected]. We will promptly investigate and delete such information where required by law.
12. Policy Updates and Communication
We may amend this Privacy Policy from time to time in order to reflect changes in legal requirements, enhancements to our services, or operational practices. Material changes will be posted on stratfordlondonapp.com and, where appropriate, users will receive a notification.
We encourage users to review this page periodically to remain informed of how we are protecting your information.
13. Contacting Us
If you have questions, requests, complaints, or concerns about privacy or how your data is handled, please contact our Data Privacy Officer via email at:
We respect your privacy rights and are committed to resolving privacy-related matters in a timely and transparent manner.
—
This Privacy Policy reflects our dedication to compliance, trust, and accountability. If you have any concerns about the data we collect or how it is used, you are welcome to reach out at any time to [email protected].