Privacy Policy
Urban Hearth Homes (“we”, “us”, or “our”) is committed to protecting and respecting your privacy. This Privacy Policy outlines the types of personal data we collect, how we use and secure it, and your rights as a data subject. We prioritize transparency, accountability, and the highest standards of data protection in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws.
1. Commitment to Privacy and Data Protection
Your privacy is important to us, and we are dedicated to safeguarding your personal information. We process your data with care, ensuring it is collected lawfully, used transparently, and securely protected from unauthorized access or misuse.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all users of our website, www.urbanhearthhomes.com, and to services we offer through the website or other related digital platforms. Urban Hearth Homes is the data controller for personal data collected and processed through this website.
If you have any questions regarding data processing or your rights, you may contact us at [email protected].
3. Categories of Data We Process
We collect and process various types of data depending on your interaction with our services. The categories of data include:
a. Usage Data
This includes information about how you use our website: IP addresses, browser types, geographical locations, page views, session durations, and referring URLs.
b. Account Data
Information provided when creating an account or purchasing services, including full name, billing and shipping addresses, email address, and telephone number.
c. Profile Data
Details about your interests, purchase history, preferences, feedback responses, and browsing behavior when interacting with our website features.
d. Communication Data
Content of your communications with us, including support inquiries, chat sessions, and email correspondence.
e. Technical Data
Information collected automatically from your device, such as device type, operating system, screen resolution, system settings, and internet service provider.
f. Transaction Data
Information related to purchases or financial transactions, including payment method details (processed via secure third-party providers), delivery information, and transaction records.
g. Preference Data
Marketing and communication preferences, including whether you’ve opted into newsletters, promotional offerings, or product updates.
4. Legal Bases for Processing
We process your personal data lawfully, using the following bases as appropriate:
– Consent: When you provide clear consent for processing specific data (e.g., for marketing communications).
– Contractual Necessity: When data is needed to fulfill our contract with you (e.g., shipping a product).
– Legitimate Interests: When processing is necessary for our legitimate interests, provided your rights and freedoms do not override those interests.
– Legal Obligation: Where processing is required to comply with legal or regulatory requirements.
5. Your Data Protection Rights
As a data subject, you have the following rights under the GDPR and CCPA, subject to certain limitations:
– Right of Access: You may request information about the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete information.
– Right to Erasure (“Right to Be Forgotten”): You may request deletion of your personal data.
– Right to Restrict Processing: You may ask us to limit how your data is used in certain scenarios.
– Right to Data Portability: You may request a copy of your personal data in a machine-readable format.
– Right to Object: You may object to processing based on legitimate interest or direct marketing purposes.
– Right to Non-Discrimination: Under CCPA, you will not be discriminated against for exercising your privacy rights.
Requests may be submitted to [email protected]. We aim to address all requests in accordance with applicable laws.
6. Security Measures
We implement comprehensive organizational, technical, and administrative safeguards to protect your data, including:
– Encryption of data in transit and at rest
– User access controls and role-based permissions
– Firewall and intrusion detection systems
– Regular backups and secure storage policies
– Staff privacy training and confidentiality agreements
Although no system is completely immune to threats, we employ industry-standard practices to reduce risk.
7. International Data Transfers
If your data is transferred outside of your jurisdiction (including from the European Economic Area to the United States), we ensure an adequate level of protection through the use of:
– European Commission’s Standard Contractual Clauses
– Compliance with regional legal requirements
– Transfers only to partners or vendors who can demonstrate robust data protection practices
8. Data Retention
Personal data will be retained only as long as reasonably necessary for the purposes for which it was collected, including to meet legal, regulatory, or contractual obligations. Retention periods are as follows:
– Usage & Technical Data: Up to 12 months
– Account & Profile Data: Retained for the duration of the account and up to 3 years after closure
– Communication Data: Up to 24 months
– Transaction Data: Maintained for at least 7 years for taxation and auditing purposes
– Marketing Preference Data: Until user withdraws consent or becomes inactive for 24 months
9. Cookie Policy
We use cookies and similar tracking technologies for several purposes. These may include:
– Essential Cookies: Necessary for proper website function (authentication, session management).
– Functional Cookies: Enhance site usability (e.g., saving preferences).
– Analytics Cookies: Collect anonymized data to understand user behavior and improve site performance (e.g., Google Analytics).
– Performance Cookies: Track conversions, optimize load times, and maintain service levels.
10. Cookie Management and Consent
Upon your first visit to www.urbanhearthhomes.com, you will be prompted to select cookie preferences. You may manage cookie settings at any time via your browser or in-site controls. We comply with GDPR’s requirement for prior consent to non-essential cookies and honor CCPA’s “Do Not Sell My Personal Information” mechanisms.
11. Children’s Privacy
Our services are not directed to children under 13 years of age. We do not knowingly collect personal information from individuals in this age group. If we become aware that we have collected such information, we will promptly delete it.
12. Policy Updates
We reserve the right to change or update this Privacy Policy at any time to maintain compliance with applicable laws and to reflect changing business practices. Material changes may be communicated via email or through prominent website notifications for registered users.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: [email protected]
We are committed to complying with all applicable privacy laws and maintaining transparent communication regarding your data. Your trust is important to us, and we encourage you to reach out with any privacy-related inquiries or concerns.