Privacy Policy for The Bauhaus SF
At The Bauhaus SF (thebauhaussf.com), we are deeply committed to safeguarding your personal information and maintaining your trust. Protecting your privacy is a core aspect of our mission. This Privacy Policy outlines how we collect, use, disclose, and protect the personal data of users who visit or interact with our website. We adhere to the highest standards of data protection, including those set forth under the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Introduction
The Bauhaus SF values your privacy. We are committed to maintaining the confidentiality, integrity, and security of your personal data. This Privacy Policy applies to all visitors, users, and others accessing thebauhaussf.com (hereinafter the “Site”).
2. Scope of Policy and Data Controller
This Privacy Policy governs the processing of personal data on the Site and applies to all users worldwide. For the purposes of the GDPR, The Bauhaus SF is the “Data Controller” responsible for determining the purposes and methods of processing personal data collected through the Site. Should you have questions or concerns, you may contact us at [email protected].
3. Categories of Data Processed
We collect and process a variety of data categories to provide and improve our services:
a. Usage Data
We automatically collect certain information when you interact with the Site, which may include your IP address, browser type, access times, referring URL, and interactions with the Site. This data is used for security, analytics, and optimization purposes.
b. Account Data
When you register or create an account on the Site, we collect information you provide such as your name, email address, phone number, and mailing address.
c. Profile Data
To personalize your experience, we gather data related to your preferences, purchase history, browsing behavior, and responses to marketing communications.
d. Communication Data
We collect data when you contact us for support or otherwise correspond with us. This may include email records, contact forms, chat messages, and other communications.
e. Technical Data
This includes device identifiers, operating system type and version, browser type, hardware model, and other technical diagnostics used for system administration and maintenance.
f. Transaction Data
We process details related to your transactions on the Site, including billing information, payment card details (processed through secure third-party processors), order history, and delivery information.
g. Preference Data
This includes records of marketing and communication preferences, consent choices, newsletter subscriptions, and product interests.
4. Legal Bases for Processing
We process your personal data based on one or more of the following legal grounds:
– Consent: When you have given clear consent (e.g., marketing emails).
– Contractual Necessity: Processing necessary to perform obligations under a contract.
– Legitimate Interests: For purposes such as defense against legal claims, fraud detection, and improving services.
– Legal Obligations: Compliance with a legal or regulatory requirement.
5. Your Rights
You have the following rights under applicable data protection laws:
– Right of Access: Ask for copies of your personal data.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data where legally permissible.
– Right to Restrict Processing: Request temporary halt to the processing of data.
– Right to Data Portability: Receive your data in a structured, commonly used format and transfer it to another controller.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We implement comprehensive technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These include but are not limited to:
– Encryption of data in transit and at rest
– Role-based access controls
– Secure server infrastructure and firewalls
– Regular security assessments and audits
– Staff training on privacy and data protection
7. International Transfers
If your data is transferred outside of the European Economic Area (EEA) or California, such transfers are conducted in accordance with applicable data protection laws, including the use of Standard Contractual Clauses and other appropriate safeguards designed to ensure adequate protection of personal data.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:
– Account and Profile Data: Retained while your account is active and for a maximum of 5 years thereafter.
– Transaction Data: Retained for 7 years to comply with financial regulations.
– Communication and Support Data: Retained for 3 years.
– Marketing and Preference Data: Retained until you withdraw your consent.
Data may be retained longer if required by applicable laws or for the defense of legal claims.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience on the Site. Cookies help us:
– Ensure the Site functions properly (Essential)
– Offer user preferences and site customization (Functional)
– Analyze traffic and performance (Analytics)
– Understand and improve the effectiveness of our content (Performance)
For more detailed information, you may refer to our full Cookie Policy, which details each cookie category and your available options.
10. Cookie Management and Compliance
Under GDPR and CCPA, you have the right to manage cookie preferences. Upon your first visit, you will see a cookie banner that enables you to:
– Accept or reject non-essential cookies
– Access your preferences and make changes at any time
– Withdraw consent for cookies at your discretion
We also provide a “Do Not Sell or Share My Personal Information” link for California residents under CCPA.
11. Children’s Privacy
The Site is not directed to children under the age of 13, and we do not knowingly collect personal data from individuals in this age group. If we become aware that a child under 13 has provided us with personal data, we will promptly delete it. If you believe we may have received data from a child under 13, please contact us immediately at [email protected].
12. Policy Updates and Notification
We may update this Privacy Policy from time to time to reflect legal, technical, or business developments. When material changes are made, we will provide notice through appropriate channels, which may include prominent postings on the Site or email communications.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact our team at:
Email: [email protected]
Website: https://thebauhaussf.com
The Bauhaus SF is committed to complying with all applicable data protection laws, including GDPR and CCPA. For any privacy concerns or to exercise your rights, please reach out to us directly.