Privacy Policy
At Happy Roots Mama (https://happyrootsmama.com), we are firmly committed to protecting your privacy and ensuring the accuracy, confidentiality, integrity, and availability of your personal information. This Privacy Policy outlines how we collect, use, disclose, store, and safeguard your personal data, consistent with the highest standards of data protection, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), among other applicable privacy laws. By using our website and services, you consent to the collection and use of information in accordance with this policy.
1. Commitment to Privacy and Data Protection
We recognize the importance of privacy and data security to all individuals interacting with our website. Happy Roots Mama is dedicated to processing personal data with transparency, fairness, and in accordance with data protection regulations. We apply a privacy-by-design and privacy-by-default approach to all our operations, constantly reviewing our data processing practices to ensure proper safeguards are implemented.
2. Scope of Policy & Data Controller
This Privacy Policy applies to all personal data collected through our website, https://happyrootsmama.com, and through related interactions, digital assets, and services offered by Happy Roots Mama. For the purposes of applicable data protection laws, Happy Roots Mama acts as the “Data Controller,” responsible for the processing and protection of your personal information. If you have any questions or require additional details about the processing of your data, contact us at [email protected].
3. Categories of Personal Data We Process
We collect the following types of personal data from users and visitors to our website:
a. Usage Data
Includes details on how you interact with our website, such as your IP address, browser type, browsing habits, session time, referring URLs, and interactions with page content.
b. Account Data
Consists of personally identifiable information provided when you create an account or place an order, such as your full name, residential or shipping address, email address, and phone number.
c. Profile Data
Includes preferences, purchase history, shopping behaviors, feedback, and interests related to our products and services.
d. Communication Data
Covers all interactions you have with us via the website or email, including contact form submissions, support inquiries, and correspondence history.
e. Technical Data
Includes device type, operating system, browser settings, mobile device identifiers, language settings, and screen resolutions that help us optimize your experience on our website.
f. Transaction Data
Consists of payment details (processed securely via third-party gateways), purchase history, delivery tracking, invoicing details, and return/refund records.
g. Preference Data
Includes your marketing preferences, communication choices, and product or content interests as expressly submitted or inferred through your interactions.
4. Legal Bases for Processing
We process your personal data lawfully under the following GDPR bases:
– Consent: When you opt-in explicitly for marketing communications or non-essential cookies.
– Contractual Necessity: To perform a contract with you, such as fulfilling an order or delivering purchased products.
– Legal Obligations: To comply with legal and regulatory requirements, including tax and accounting records.
– Legitimate Interests: For purposes such as improving our website, preventing fraud, and securing our platform, provided such interests are not overridden by your rights.
5. Your Data Protection Rights
Depending on your jurisdiction, you have rights concerning your personal data. These include:
– Right to Access: Request access to the personal data we process about you.
– Right to Rectification: Request corrections to any inaccurate or incomplete data.
– Right to Erasure (“Right to Be Forgotten”): Request the deletion of personal data under certain circumstances.
– Right to Restrict Processing: Request limited processing where accuracy or lawfulness is in question.
– Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format, and request transmission to another controller.
– Right to Object: Object to processing based on legitimate interest or direct marketing.
– Right to Withdraw Consent: Where processing is based on consent, you may withdraw that consent at any time.
To exercise your rights, please email [email protected].
6. Security Measures
Happy Roots Mama uses rigorous security measures to safeguard personal data:
– Data Encryption: All transmission of data is conducted over secure protocols (HTTPS). Sensitive information is encrypted at rest and in transit.
– Access Controls: Access to personal data is restricted to authorized personnel only and governed by role-based privileges.
– Regular Backups: Data is backed up routinely and stored securely to ensure integrity.
– Employee Training: Our staff receive regular training in data protection and incident response procedures.
Despite all efforts, no system can guarantee 100% security. However, we take all reasonable measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of personal data.
7. International Data Transfers
If we transfer your personal data outside of your country of residence, we ensure such transfers are compliant with applicable legal requirements. For transfers from the European Economic Area (EEA), we rely on approved mechanisms such as Standard Contractual Clauses (SCCs), adequacy decisions, or explicit user consent. Data handling by third-party processors, including marketing and infrastructure service providers, is governed by strict contractual obligations to uphold data protection standards.
8. Data Retention
We retain personal data only for as long as necessary for the purposes outlined below:
– Usage Data: Retained for 12 months for analytics and performance improvement.
– Account and Profile Data: Retained for the duration of your account and six years thereafter for tax and legal compliance.
– Transaction Data: Retained for seven years in accordance with financial and accounting retention laws.
– Communication Data: Retained for up to three years following resolution for quality assurance and legal purposes.
– Marketing Preferences: Retained until you opt out or withdraw your consent.
Once data is no longer needed, we securely delete or anonymize it.
9. Cookie Policy
Our website uses cookies and similar technologies to provide a tailored browsing experience:
– Essential Cookies: Required for core website functionality and security.
– Functional Cookies: Enable enhanced features such as user preferences and login status.
– Analytics Cookies: Collect aggregated data on how users navigate our site. These help us improve content and functionality.
– Performance Cookies: Monitor site performance and help identify technical issues or popular pages.
10. Cookie Management & Compliance
Visitors from jurisdictions subject to GDPR or CCPA are provided with granular choices regarding the collection of cookies. Upon visiting https://happyrootsmama.com, you will be presented with a cookie banner allowing you to enable or disable non-essential cookies. You may amend preferences at any time via the Cookie Settings link found in the website footer.
Additionally, those under CCPA may opt out of the “sale” (as broadly defined under CCPA) of personal data through a “Do Not Sell My Personal Information” link, where applicable.
Most internet browsers also allow users to manage cookies through browser settings. Please consult your browser’s help documentation for further details.
11. Children’s Privacy
We do not knowingly collect, process, or store personal information from children under the age of 13 without verifiable parental consent. If we learn that a child under this age has submitted personal data through the site, we will take appropriate steps to delete such information promptly. If you are a parent or guardian and believe your child has provided us with personal data, please email [email protected].
12. Policy Updates and Revisions
We reserve the right to review and update this Privacy Policy to reflect legal, technological, or operational changes. If material changes are made, we will provide prominent notification, including, when required, obtaining renewed consent. Continued use of https://happyrootsmama.com after such updates constitutes acknowledgment and agreement with the revised policy.
13. Contacting Us
If you have any questions or concerns about this Privacy Policy, the ways in which we process your personal data, or your rights, please contact us:
Email: [email protected]
Website: https://happyrootsmama.com
We are committed to complying with all relevant laws and protecting your data. Should you have any complaints, we will respond promptly, and you also have the right to raise concerns with your local data protection authority.