Privacy Policy for OurKitchenTales.com
1. Introduction
At Our Kitchen Tales, accessible via ourkitchentales.com, we are fully committed to protecting the privacy, confidentiality, and security of your personal data. We understand the sensitivity of your information and prioritize a transparent, privacy-first approach in how we process and safeguard your data. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with applicable laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and account holders who access or interact with ourkitchentales.com. For the purposes of the GDPR, Our Kitchen Tales is the “data controller,” meaning we determine the purposes and means of processing your personal data. If you are located in California, we may also act as a “business” as defined under the CCPA.
3. Categories of Data Processed
We collect and process the following categories of personal data:
a. Usage Data
Includes information about how you use our website, such as browser type, referring URLs, IP address, session duration, pages viewed, time stamps, and clickstream data.
b. Account Data
Includes personal identifiers provided when you register or make a purchase: full name, email address, billing and shipping address, and phone number.
c. Profile Data
Includes preferences, saved items, cuisine interests, dietary requirements, historical purchases, and behavioral data tied to user profiles.
d. Communication Data
Includes the content and metadata of communications you send to us through email, forms, or other channels, including customer support queries and contact history.
e. Technical Data
Includes data regarding your device, including device type, operating system version, screen resolution, browser version, language settings, and mobile network information.
f. Transaction Data
Includes details about your orders, such as items purchased, payment method (limited to tokenized or anonymized identifiers), delivery instructions, and related correspondence.
g. Preference Data
Includes marketing preferences, opt-ins, opt-outs, survey selections, and expressed interests in products and services.
4. Legal Bases for Processing
Under the GDPR, we rely on the following lawful bases for processing your personal data:
– Performance of a Contract: To fulfill contractual obligations when you purchase goods or services through ourkitchentales.com.
– Consent: For specific optional processing activities, such as receiving newsletters or participating in surveys.
– Legal Obligation: Where we are required to process your data to comply with applicable legal and regulatory requirements.
– Legitimate Interests: For purposes such as improving services, ensuring website security, detecting fraud, and maintaining business continuity, provided that your fundamental rights do not override our interests.
5. Your Rights
Pursuant to the GDPR and CCPA, you may exercise the following rights at any time:
– Right of Access: You may request details regarding the personal data we hold about you.
– Right to Rectification: You may request that inaccurate or incomplete data be corrected.
– Right to Erasure: Under certain conditions, you may request that we delete your personal data (“right to be forgotten”).
– Right to Restriction: You may request that we suspend the processing of your information in specific circumstances.
– Right to Portability: You may request a structured, commonly used and machine-readable version of your personal data.
– Right to Object: You may object to processing based on our legitimate interests or for direct marketing purposes.
– Right to Non-Discrimination (CCPA): You will not be discriminated against for exercising any of your data rights.
To exercise your rights or make a privacy-related request, please contact us at [email protected].
6. Security Measures
We implement robust administrative, technical, and physical safeguards to ensure the confidentiality, integrity, and availability of your personal data. These measures include, but are not limited to:
– Data encryption in transit and at rest
– Secure access controls and authentication mechanisms
– Routine system audits and penetration testing
– Regular staff training on data protection principles
– Real-time threat monitoring and incident response protocols
– Periodic backup and secure storage of sensitive data
7. International Transfers
Your data may be transferred to and stored in countries outside of your jurisdiction, including jurisdictions that may not offer the same level of data protection laws. In such cases, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission or another appropriate safeguarding mechanism to ensure lawful and secure transfer of your data.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. The retention periods vary by category:
– Usage Data: Up to 12 months post-collection for analytics and security purposes.
– Account Data: Retained as long as your account remains active, then securely deleted within 90 days of account deletion.
– Profile and Preference Data: Up to 24 months of user inactivity, unless deleted earlier at your request.
– Communication Data: Retained for 3 years for customer service continuity and legal compliance.
– Transaction Data: Retained for 7 years to meet tax and financial reporting obligations.
9. Cookie Policy
We use cookies and similar technologies for various purposes:
– Essential Cookies: Necessary for the basic operation of our website and to enable key functionalities (e.g., shopping cart, login sessions).
– Functional Cookies: Enhance performance and personalization, such as language preferences and saved settings.
– Analytics Cookies: Help us understand visitor behavior through aggregate data, allowing us to improve site usability and content (e.g., Google Analytics).
– Performance and Optimization Cookies: Monitor system performance and detect bugs, improving loading times and user experience.
Cookies may be first-party (set by ourkitchentales.com) or third-party (set by integrated services like payment processors or ad platforms).
10. Cookie Management and Compliance
In compliance with the GDPR and CCPA, we provide the ability to:
– Accept or reject non-essential cookies via the cookie consent banner
– Change your cookie preferences at any time through our Cookie Settings page
– Opt out of analytics and marketing cookies without affecting website functionality
You may also configure your browser settings to automatically refuse cookies or alert you when cookies are set. Please note that blocking certain types of cookies may impact user experience.
11. Children’s Privacy
Our Kitchen Tales does not knowingly collect personal information from children under 13 years of age. If we learn that a child under 13 has provided us with personally identifiable information, we will take immediate steps to delete such information. Parents or guardians who believe their child has submitted data should contact us at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. Any material changes will be communicated through appropriate channels, including a notice on ourkitchentales.com. Continued use of the website constitutes acceptance of the updated Privacy Policy.
13. Contact Information
For any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact us at:
Email: [email protected]
We take data privacy seriously and strive to maintain full compliance with all applicable regulations. Please do not hesitate to reach out with any privacy concerns or rights requests.