Privacy Policy
1. Introduction: Our Commitment to Privacy
At Easter Eggsters, accessible through eastereggsters.com, we are committed to maintaining the highest standards of privacy and personal data protection. We recognize the importance of safeguarding your personal information and comply fully with applicable data protection laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, process, store, and share your personal data when you visit our website or engage with our services.
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to all personal data collected by Easter Eggsters (“we,” “us,” or “our”) from users (“you” or “your”) of the website eastereggsters.com. For the purposes of applicable data protection laws, Easter Eggsters is the Data Controller of your personal data and determines the purposes and means of processing such data.
3. Categories of Data We Process
We process the following categories of personal data:
a. Usage Data: Includes information about how you use our website, such as IP address, browser type, referral source, pages viewed, session data, and other diagnostic data.
b. Account Data: Collected when you create an account or place an order, including your full name, email address, shipping/billing address, and phone number.
c. Profile Data: Includes your interests, purchase history, browsing behavior, and saved preferences.
d. Communication Data: Encompasses records of your interactions with us, such as support requests, email correspondence, and other user-submitted communications.
e. Technical Data: Includes information about your device (e.g., device type, operating system, screen resolution), browser settings, and system configurations.
f. Transaction Data: Covers billing details, order history, payment method (without storing complete payment credentials), and delivery tracking information.
g. Preference Data: Comprises your opt-in and opt-out preferences, marketing communication choices, and product interest indicators.
4. Legal Bases for Processing
All processing of personal data by Easter Eggsters is grounded in lawful bases as provided under applicable data protection laws, including:
– Consent: Where you have provided explicit consent (e.g., for marketing purposes).
– Contractual Necessity: Where processing is necessary to fulfill a contractual obligation (e.g., processing your purchases).
– Legal Obligation: Where processing is required by legal or regulatory requirements.
– Legitimate Interests: Where processing is necessary for our legitimate business interests, provided such interests are not overridden by your fundamental rights and freedoms (e.g., fraud prevention, improvement of our services).
5. Your Rights
Subject to applicable legislation, you have the following rights in relation to your personal data:
– Right of Access: To request information about the processing and access to your personal data;
– Right to Rectification: To request correction of inaccurate or incomplete personal data;
– Right to Erasure: To request deletion of your personal data in certain circumstances;
– Right to Restriction: To restrict processing of your data under legally specified conditions;
– Right to Data Portability: To receive your personal data in a structured, machine-readable format or have it transferred to another controller.
You may exercise any of these rights by contacting us at [email protected].
6. Security Measures
We implement robust technical and organizational measures to protect your personal data, including but not limited to:
– Data encryption (in transit and at rest) to ensure confidentiality;
– Access controls to safeguard internal access to personal data;
– Secure data backups and recovery protocols;
– Regular training of staff on privacy and data protection responsibilities.
7. International Data Transfers
If personal data is transferred outside the European Economic Area (EEA) or other regions with comprehensive data protection laws, we ensure such transfers are made in compliance with applicable legal requirements, including:
– Use of Standard Contractual Clauses approved by the European Commission;
– Implementation of supplementary measures, where required;
– Safeguards to ensure data is handled lawfully and securely in recipient countries.
8. Data Retention
Personal data is retained only for as long as necessary to fulfill the purposes it was collected for, including legal, regulatory, tax, accounting, or reporting obligations. Specific retention periods include:
– Account and Transaction Data: up to 7 years after the last transaction;
– Communication and Support Records: up to 3 years for customer support;
– Cookie Data and Technical Logs: 13 months unless otherwise required;
– Marketing Preferences: until consent is withdrawn or considered expired under applicable law.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your browsing experience and help us understand how you interact with our website. The categories of cookies we use include:
– Essential Cookies: Necessary for website functionality (e.g., shopping cart behavior);
– Functional Cookies: Enable website personalization based on preferences;
– Analytics Cookies: Collect aggregated usage data to analyze website performance;
– Performance Cookies: Help optimize page load times and responsiveness.
For more details, please refer to our Cookie Policy section on the website.
10. Cookie Management and GDPR/CCPA Compliance
You have the right to manage your cookie preferences at any time. Upon your first visit and periodically thereafter, you will be presented with an option to accept or reject non-essential cookies. You can also configure your browser settings to disable or delete cookies. We respect global privacy signals, such as Do Not Track (DNT) and Global Privacy Control (GPC), as required under CCPA and similar laws.
11. Protection of Children’s Data
The services provided by eastereggsters.com are not intended for children under the age of 13. We do not knowingly collect or process personal data of children without verifiable parental consent. If you believe we have collected data from a child under 13, please contact us at [email protected] so we may take appropriate action.
12. Policy Updates and Notifications
We reserve the right to amend or update this Privacy Policy at our discretion. Where material changes are made, we will notify you through appropriate channels, such as the website or direct communication, to ensure that you are informed about how your data is processed. Your continued use of our services constitutes your acceptance of the updated policy.
13. Contacting Us
If you have any questions about this Privacy Policy, exercise your legal rights, or wish to lodge a privacy-related complaint, we encourage you to contact us:
Email: [email protected]
At Easter Eggsters, we are fully committed to upholding user privacy in all jurisdictions where we operate. For concerns or inquiries regarding your personal data and rights, please reach out to us at the contact information above.