Privacy Policy
1. Introduction
At Fresh Reads HQ (accessible at freshreadshq.com), we are committed to safeguarding the privacy and personal data of our users. Protecting your information is a top priority, and we are dedicated to transparency, security, and full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines our practices regarding the collection, use, storage, and disclosure of personal data.
2. Scope of This Policy and Data Controller
This Privacy Policy applies to all visitors, users, and others who access or use the services provided through freshreadshq.com (“Website”). Fresh Reads HQ is the data controller responsible for processing your personal data as described in this document. For any inquiries regarding this policy or your data, please contact us at [email protected].
3. Categories of Data Processed
We collect personal data in accordance with the principles of data minimization and purpose limitation. The categories of data we collect include:
a. Usage Data
Information such as IP address, browser type, operating system, referral URLs, access times, and page interaction information to assess performance and user behavior on freshreadshq.com.
b. Account Data
Details provided when creating an account or making a purchase, such as full name, email address, billing/shipping address, and telephone number.
c. Profile Data
Information related to your preferences, reading habits, order history, or other behavioral data used to personalize your experience.
d. Communication Data
Content of communications sent to us, including emails, support tickets, and live chat messages. We may keep logs of these communications to improve customer support quality.
e. Technical Data
Device information, screen resolution, operating system configuration, language settings, and hardware identifiers used for diagnostics and service optimization.
f. Transaction Data
Data relating to purchases made via the Website, including items bought, payment method (excluding full card details which are handled securely by third-party payment processors), and delivery related information.
g. Preference Data
Records of user preferences, including marketing communications opt-ins or opt-outs and interests in particular categories of content or services.
4. Legal Bases for Processing
We process your personal data under one or more of the following lawful bases as permitted by GDPR and aligned with the CCPA:
– Consent: Where you have provided clear permission for us to process your data for specific purposes, such as receiving newsletters.
– Contractual Necessity: To fulfill our contractual obligations when you purchase or use services on our Website.
– Legitimate Interests: To improve our offerings, secure the Website against fraud or misuse, and provide customer service.
– Legal Obligation: To comply with applicable legal obligations, court orders, or regulatory requirements.
5. Your Rights
Subject to legal limitations, you have the following rights regarding your personal data:
– Right of Access: You may request access to your personal data that we hold.
– Right of Rectification: You are entitled to correct any inaccuracies in your data.
– Right to Erasure: You may request deletion of your personal data, subject to retention obligations.
– Right to Restriction: You may request that processing of your data be limited under certain circumstances.
– Right to Data Portability: You may request to receive your personal data in a structured, commonly used, and machine-readable format or request that it be transferred to another controller, where technically feasible.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We have implemented robust administrative, technical, and physical security mechanisms to protect personal data, including:
– Data encryption (both in transit and at rest)
– Secure user authentication procedures
– Access controls and role-based permissions
– Regular audits and vulnerability assessments
– Employee training on information security and privacy best practices
– Secure backups and disaster recovery protocols
7. International Transfers
Your personal data may be transferred to and processed in countries outside your jurisdiction, including areas not deemed to have equivalent data protection laws. In such events, we ensure appropriate safeguards are in place, such as EU Standard Contractual Clauses, to protect your rights and enforceable legal remedies.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including for the purposes of satisfying legal obligations. Typical retention periods include:
– Account and transaction data: 7 years (for legal and financial compliance)
– Communication and support data: 2 years after last interaction
– Usage and technical data: up to 2 years for analytics and diagnostics
– Marketing consent records: retained while an active relationship exists or until withdrawal of consent
Upon expiration of the applicable retention period, data is securely deleted or anonymized.
9. Cookie Policy
Our Website employs cookies and similar technologies to enhance user experience. The following categories of cookies may be used:
– Essential Cookies: Necessary for the operation of freshreadshq.com, such as login sessions and cart functions.
– Functionality Cookies: Facilitate personalization features such as saved preferences or remembering your reading history.
– Analytics Cookies: Help us understand usage trends and improve Website performance through anonymized tracking (e.g., Google Analytics).
– Performance Cookies: Monitor Website performance and load times to enhance operational stability.
10. Cookie Management and Compliance
In accordance with GDPR and CCPA, you will be presented with a clear cookie consent banner upon your first visit. You may accept or decline non-essential cookies. You may also configure cookie preferences at any time through your browser settings or our on-site Cookie Settings panel.
For California residents, we honor “Do Not Track” browser signals and provide a link for authorized data access or deletion requests under the CCPA.
11. Protection for Children Under 13
freshreadshq.com is not directed toward or intended for children under the age of 13. We do not knowingly collect personal data from individuals under 13 years of age. If we become aware that such data has been inadvertently collected, it will be promptly deleted.
12. Policy Updates and Notifications
We reserve the right to amend this Privacy Policy to reflect changes in legal requirements or business practices. Any substantial updates will be made available via this page, and in certain cases, users will be notified directly where legally required.
We encourage users to revisit this page periodically to stay informed about how we protect your data.
13. Contact
For questions, concerns, or to exercise your privacy rights, please contact us at:
Email: [email protected]
Website: freshreadshq.com
We take data protection seriously and are fully committed to upholding data privacy as required under GDPR, CCPA, and other applicable privacy regulations. If you have any questions or concerns about this policy or how your data is handled, we welcome your inquiry at the address above.