Privacy Policy
1. Introduction
At Little Moments Mom (“we,” “us,” “our”), we are committed to protecting and respecting your privacy. This Privacy Policy outlines the ways in which we collect, use, disclose, and protect the personal information of our users. Your trust is important to us, and we are fully committed to handling your data responsibly, transparently, and in accordance with all applicable privacy laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
By accessing or using the website located at littlemomentsmom.com (“Site”), you agree to the terms outlined in this Policy. If you do not agree with our practices, please refrain from using the Site.
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy governs the collection and processing of personal data through littlemomentsmom.com. It applies to all users who access or interact with our Site. Little Moments Mom is the “data controller” for personal data collected through this Site, meaning we determine the purposes and means of processing your personal data.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
– Usage Data: This includes information about how you use our Site, such as your browser type, IP address, pages viewed, session times, and referring URLs.
– Account Data: If you create an account, we may collect your name, mailing address, email address, and telephone number.
– Profile Data: Information relating to your preferences, past purchases, account settings, feedback, and browsing behavior on the Site.
– Communication Data: Includes any messages you send us, such as support inquiries, customer service interactions, and email correspondence.
– Technical Data: Details of the device and software you use to access the Site, including operating system, browser configurations, and device identifiers.
– Transaction Data: Includes records of product purchases, billing and delivery details, and payment confirmations (note: payment card data is typically processed securely via third-party processors and not stored directly by us).
– Preference Data: Information concerning your preferences for receiving marketing from us and your communication choices, as well as product interests based on your interaction with the Site.
4. Legal Bases for Processing Personal Data
Our legal grounds for processing your personal data may include:
– Consent: Where you have provided explicit permission for the processing of your personal data for specific purposes (e.g., receiving marketing communications).
– Contractual Necessity: Where the processing is necessary for the performance of a contract to which you are party (e.g., to fulfill your order).
– Legal Obligation: Where we are required to process your personal data to comply with legal or regulatory obligations.
– Legitimate Interests: Where processing is necessary to pursue our legitimate interests, provided that those interests are not overridden by your rights and interests (e.g., monitoring usage to ensure the stability and performance of our Site).
5. Your Rights
Under applicable laws, you have the following rights regarding your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request correction of any inaccurate or incomplete personal data.
– Right to Erasure: You may request deletion of your personal data, subject to legal or regulatory obligations requiring us to retain certain data.
– Right to Restrict Processing: You may request that we restrict processing of your data under certain circumstances.
– Right to Data Portability: You may obtain a copy of your personal data, in a structured, commonly used, and machine-readable format, and transmit it to another data controller.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request in accordance with applicable laws.
6. Security Measures
We implement appropriate technical and organizational safeguards to ensure a level of security appropriate to the risk, including but not limited to:
– Encryption of sensitive data in transit and at rest;
– Access control policies and authentication mechanisms;
– Regular system monitoring and vulnerability assessments;
– Secure backups and disaster recovery protocols;
– Staff training on data protection and privacy compliance.
While we strive to protect your personal data, no system can be guaranteed to be completely secure. Accordingly, we urge you to use caution and secure your login credentials when accessing the Site.
7. International Transfers
Your personal data may be transferred to and processed in jurisdictions outside the European Economic Area (EEA). We ensure that such transfers occur in accordance with applicable laws and are subject to appropriate safeguards, such as the European Commission’s Standard Contractual Clauses or similar legal mechanisms designed to ensure adequate protection of your data.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, or as required by law. Retention periods vary depending on data type and the nature of your relationship with us, as outlined below:
– Usage and Technical Data: retained for up to 14 months for analytics purposes;
– Account and Profile Data: retained as long as the account remains active and for up to 6 years thereafter for recordkeeping;
– Transaction Data: retained for up to 7 years to comply with tax and accounting obligations;
– Communication Data: typically retained for up to 2 years following the conclusion of the communication;
– Preference Data: retained until you change or withdraw your preferences.
9. Cookie Policy
Our Site uses cookies and similar tracking technologies to enhance user experience and analyze traffic. Cookies collect information such as preferences, session data, and usage statistics. We categorize cookies as follows:
– Essential Cookies: Necessary for the basic operation of the Site, such as navigation and access to secure areas.
– Functional Cookies: Enable personalization and enhanced features like remembering preferences.
– Analytical Cookies: Help us understand how you interact with the Site by collecting statistical data on usage patterns.
– Performance Cookies: Track performance metrics to improve the speed, responsiveness, and overall performance of the Site.
10. Cookie Management and Compliance
By default, only essential cookies are activated. Upon your first visit, you will be presented with options to manage your cookie preferences in compliance with the GDPR and CCPA. You may also adjust your settings within your browser to reject cookies. Please note that disabling certain cookies may affect your ability to use some features of the Site.
Users who are California residents may exercise their rights under the CCPA, including opting out of the sale of personal data (where applicable), by contacting us using the details provided in Section 13.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If you are under 13, please do not provide us any personal information. If we learn that we have collected data from a child under 13 without verified parental consent, we will promptly delete such data. If you believe we may have collected data from or about a minor, please contact us at [email protected].
12. Policy Updates
We reserve the right to modify or update this Privacy Policy at any time. Changes will take effect upon publication on this page. Where required by law, we will notify you of material changes. We encourage you to review this Policy periodically to stay informed about how we are protecting your data.
13. Contact Information
If you have any questions, requests, or concerns regarding this Privacy Policy or the handling of your personal data, please contact us at:
Email: [email protected]
We are committed to full compliance with applicable data protection laws and to safeguarding your personal privacy. Please do not hesitate to reach out with any privacy concerns.