PRIVACY POLICY
At SweetGlowMama (“we,” “our,” or “us”), accessible at sweetglowmama.com, we are committed to safeguarding your privacy and protecting your personal data. This Privacy Policy outlines how we collect, use, disclose, and protect your information when you interact with our website and associated services. We place the highest value on privacy, aiming to maintain transparency and respect for your rights under applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Scope of this Policy & Data Controller Role
This Privacy Policy applies to all visitors, users, and customers of sweetglowmama.com. For the purposes of the GDPR, the data controller responsible for your personal data is SweetGlowMama, which you may contact via [email protected].
By interacting with our website, submitting information, purchasing products, or subscribing to communications, you acknowledge and consent to our practices described herein.
2. Categories of Data Processed
We collect and process personal data to provide and improve our services. The categories of data we process include:
– Usage Data: Information about your interactions with sweetglowmama.com, such as IP address, browser type, referring pages, visit duration, and clickstream behavior.
– Account Data: Personal identifiers submitted when creating an account or placing orders, including your full name, billing and shipping address, email address, and telephone number.
– Profile Data: Preferences, order history, product selections, site behavior, and feedback to enhance your experience and tailor our offerings.
– Communication Data: Records of your communications with us, including inquiries submitted through forms, emails, and customer service exchanges.
– Technical Data: Device identifiers, operating system, screen resolution, browser configuration, and internet connection details.
– Transaction Data: Information relevant to your purchases such as payment method, card details (processed securely by third-party processors), transaction amount, and delivery tracking details.
– Preference Data: Your consent status for marketing, promotional preferences, and expressed interests in products or services.
3. Legal Bases for Processing
We rely on the following lawful bases under GDPR and comparable principles under CCPA:
– Consent: For direct marketing and optional cookies, we obtain your explicit consent.
– Contractual Necessity: To fulfill your orders and manage your account, we process your data where it is necessary for the performance of a contract.
– Legal Obligation: We may process personal data to comply with applicable laws, such as tax or fraud prevention requirements.
– Legitimate Interest: We may process your data to improve our website, ensure security, and manage customer relationships in a way that does not override your rights.
4. Your Rights
Subject to applicable laws, you have the following rights regarding your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data, subject to legal exceptions.
– Right to Restriction: You may ask us to limit the processing of your personal data under certain circumstances.
– Right to Data Portability: You may request to receive your personal data in a structured, commonly used, machine-readable format.
– Right to Object: Where we process data on the basis of legitimate interest or for direct marketing, you may object to such processing.
California residents also have the right under the CCPA to know what categories of personal information we collect, the sources of collection, the purposes for using such data, and the third parties with whom we share data.
To exercise your rights, please contact us at [email protected].
5. Security Measures
We implement comprehensive security measures to protect your personal data, including:
– Encryption of data in transit and at rest
– Role-based access control and authentication mechanisms
– Regular backups and disaster recovery protocols
– Employee training on data protection and privacy standards
While we employ robust safeguards, no method of transmission or storage over the internet is fully secure. We encourage you to protect your login credentials and report any suspicious activity.
6. International Transfers
Where your personal data is transferred outside the European Economic Area (EEA) or other applicable jurisdictions, we implement appropriate safeguards in accordance with legal requirements. Such safeguards may include the use of Standard Contractual Clauses approved by the European Commission and compliance with regional data protection frameworks.
7. Data Retention
We retain your personal data for only as long as necessary for the purposes for which it was collected, including:
– Account Data: Retained for as long as you maintain your account and for a subsequent period for legal compliance (typically up to 6 years).
– Transaction Data: Retained for tax and financial recordkeeping purposes (up to 7 years).
– Communication Data: Retained for 2 years from the date of last contact.
– Preference and Usage Data: Retained for as long as relevant for personalization, or until you revoke consent.
When data is no longer needed, we securely delete or anonymize it.
8. Cookie Policy
Our website uses cookies and similar tracking technologies for the following purposes:
– Essential Cookies: Necessary for the operation of sweetglowmama.com, including login and cart functionality.
– Functional Cookies: Enhance your experience by remembering preferences and settings.
– Analytics Cookies: Help us understand how users interact with our site for performance and improvement insights (e.g., Google Analytics).
– Performance Cookies: Monitor site speed, errors, and server performance to ensure quality service.
We do not use cookies to knowingly collect sensitive personal data or track users across websites for persistent profiling.
9. Cookie Management & Compliance
Visitors are given the opportunity to manage cookie preferences upon their first visit and can update these choices at any time via the “Cookie Settings” link in the website footer. For GDPR compliance, we only activate non-essential cookies with your consent. Under CCPA, California residents may opt out of the “sale” of personal information, where applicable, via a “Do Not Sell My Personal Information” link.
10. Children’s Privacy
Our services are not directed to, nor do we knowingly collect information from, children under the age of 13. If we learn that we have inadvertently gathered personal data from a child under 13 without verified parental consent, we will take prompt steps to delete such data.
Parents or guardians who believe we may have collected data from a child should contact us at [email protected].
11. Policy Updates
We may update this Privacy Policy from time to time to reflect changes to legal frameworks, service offerings, or data processing activities. Updates will be posted on this page and, where appropriate, we will notify you through the website or other means.
We encourage you to review this policy periodically to stay informed of how we protect your personal data.
12. Contact Information
If you have questions, concerns, or requests regarding this Privacy Policy or the processing of your personal information, you may contact us at:
We are committed to addressing your privacy-related inquiries promptly and ensuring compliance with applicable data protection legislation.
SweetGlowMama is committed to respecting your privacy and complying with global data protection obligations, including the GDPR and CCPA. Should you have any concerns about how your personal data is handled, we welcome you to reach out to us directly.