Privacy Policy
1. Introduction
At Jernademiah.com, we are deeply committed to protecting the privacy, integrity, and security of your personal data. We believe in transparency and accountability and adhere to the highest legal standards of data protection, including the European Union General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”). This Privacy Policy outlines the types of data we collect, how we use it, your rights regarding your personal information, and how we ensure your data remains secure.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users who access or use our website, jernademiah.com (the “Site”), and to all personal information collected or processed in connection with your use of our services. Jernademiah.com acts as the data controller under relevant data protection laws, which means we determine the purposes and means of processing your personal data.
If you have any questions about this Policy or want to exercise your rights, you may contact us at [email protected].
3. Categories of Data Processed
We may collect, use, store, and transfer the following categories of personal data:
a) Usage Data: This includes information on how you interact with the Site such as browser type, IP address, time zone setting, page visits, navigation patterns, access times, and referring URLs.
b) Account Data: Collected when users register or interact with the Site. Includes name, email address, mailing address, phone number, and login credentials.
c) Profile Data: Includes preferences, purchase history, content engagement, product interests, and behavioral data tailored to your activities on jernademiah.com.
d) Communication Data: Consists of all communications between you and us, including inquiries, support requests, and messages sent via contact forms or email correspondence.
e) Technical Data: Includes details about the devices used to access the Site, such as the operating system, browser version, screen resolution, hardware model, and system configurations.
f) Transaction Data: Includes payment data (handled securely via third-party processors), billing details, order confirmations, shipping addresses, and delivery tracking.
g) Preference Data: Encompasses your choices regarding marketing communications, newsletter subscriptions, and indicated interests in products or services.
4. Legal Bases for Processing
We rely on the following lawful bases for the collection and processing of your personal data:
– Consent: Where applicable, we obtain your explicit consent before processing certain personal data, such as for marketing activities or non-essential cookies.
– Contractual Necessity: Processing that is essential to fulfill obligations under a contract, such as completing orders or providing customer support.
– Legitimate Interests: Processing necessary for the operation and improvement of the Site, fraud prevention, and ensuring network and information security, provided these do not override your fundamental rights and freedoms.
– Legal Obligation: Processing required to comply with legal or regulatory obligations, including tax and financial disclosures.
5. Your Rights
Under GDPR and CCPA, you have the following rights regarding your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You have the right to request correction of inaccurate or incomplete personal information.
– Right to Erasure: Also known as the “right to be forgotten,” this allows you to request deletion of your data where legally applicable.
– Right to Restriction: You may request that we limit the processing of your data, for instance, while we verify accuracy or legal claims.
– Right to Data Portability: You may request that we provide your data in a structured, machine-readable format, and/or transfer it directly to another data controller.
– Right to Object: You may object to the processing of your personal data for direct marketing or processing based on legitimate interest.
– Right to Non-Discrimination (CCPA): You will not be discriminated against for exercising any of your privacy rights.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We employ a combination of industry-leading security protocols and internal policies to keep your personal data safe. These measures include:
– Encryption of personal data in transit and at rest
– Role-based access control to restrict access to authorized personnel only
– Daily data backups to secure storage systems
– Regular internal audits, penetration testing, and secure coding practices
– Employee training programs focusing on data privacy and security awareness
7. International Transfers
If you are located outside the jurisdiction where our servers are based (which may include jurisdictions outside the European Economic Area), your data may be transferred internationally. In such cases, we implement adequate safeguards, including Standard Contractual Clauses and ensuring that the receiving party offers adequate levels of data protection consistent with GDPR requirements.
8. Data Retention
We retain your personal data only for as long as reasonably necessary to fulfill the purposes for which it was collected and in accordance with applicable legal and regulatory obligations. Specific retention periods are as follows:
– Usage and Technical Data: Up to 12 months
– Account and Profile Data: As long as your account is active plus up to 24 months post-deletion
– Transaction Data: Retained for at least 7 years to comply with tax and invoice regulations
– Communication Data: Retained for up to 24 months to support customer service continuity
– Preference Data: Until you update or withdraw your consent
Upon expiration of the relevant retention periods, your data will be securely anonymized or deleted.
9. Cookie Policy
We use cookies and similar technologies to enhance your browsing experience, analyze traffic, and personalize content. The cookies used on jernademiah.com may include:
– Essential Cookies: Required for the basic operation of the Site, such as login and shopping cart functionality.
– Functional Cookies: Allow the Site to remember user choices (e.g., region or language).
– Analytics Cookies: Help us understand how visitors interact with the Site, enabling performance improvements.
– Performance Cookies: Monitor the efficiency of pages and site elements for optimization purposes.
10. Cookie Management and Compliance
You have full control over cookie usage. Upon your first visit to the Site, we provide you with a cookie consent banner in compliance with the GDPR and CCPA. You may choose to accept, decline, or customize your preferences through our cookie management settings at any time. Additionally, your browser may allow you to refuse some or all browser cookies.
11. Special Protections for Children
Jernademiah.com does not knowingly collect personal data from children under the age of 13. If we become aware that a child under 13 has provided us with personal information without verifiable parental consent, we will take steps to delete such data promptly. If you believe we may have inadvertently collected information from a child, please contact us at [email protected].
12. Policy Updates & Notifications
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. Any material changes will be communicated to you via a prominent notice on the Site or by direct communication, where legally required.
13. Contact Information
If you have any questions about this Privacy Policy, the data we hold about you, or if you wish to exercise your privacy rights, please reach out to us via email at:
We are committed to full compliance with applicable data protection laws and welcome any concerns or requests related to your privacy.