Privacy Policy

Privacy Policy for howiestore.com

1. Introduction

At Howie Store, accessible at howiestore.com, we take your privacy seriously. We are committed to safeguarding your personal data and upholding your rights in accordance with the European Union’s General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. This Privacy Policy explains how we collect, use, store, and protect your information when you interact with our website and services. We maintain a privacy-first approach and strive to process data lawfully, transparently, and fairly.

2. Scope of This Policy and Data Controller

This Privacy Policy applies to all users of howiestore.com and governs the collection and processing of personal data related to your use of our website, services, and any direct communication with us. For GDPR purposes, Howie Store is the data controller responsible for processing your personal information. Should you have any questions regarding our data practices, you may contact us at [email protected].

3. Categories of Data We Process

We may collect and process the following categories of personal data:

a. Usage Data
Includes information about how you access and use howiestore.com, such as IP addresses, browser type, pages visited, session information, timestamps, and referring URLs.

b. Account Data
Includes identifying details provided when you create an account: full name, billing and shipping addresses, email address, and telephone number.

c. Profile Data
Includes your preferences, purchase history, browsing behavior, saved items, and account settings related to our products and services.

d. Communication Data
Includes information contained in your correspondence with us, including customer support interactions, contact forms, and other communications.

e. Technical Data
Includes data from the device or system used to access our site, such as operating system, device identifiers, screen resolution, language settings, and system configurations.

f. Transaction Data
Includes payment information (processed through secure third-party platforms), order details, shipping data, and returns information.

g. Preference Data
Includes marketing consent status, product and communication preferences, and survey responses, if applicable.

4. Legal Bases for Processing

We process your personal data only where we have a lawful basis to do so, under both GDPR and applicable U.S. laws:

– Consent: For data processed based on your opt-in, such as receiving newsletters or marketing communications.
– Contractual Necessity: For fulfilling a contract with you, including order fulfillment, customer service, and account management.
– Legal Obligation: For compliance with legal requirements, including fraud prevention and tax compliance.
– Legitimate Interests: For usage analytics, site functionality, improving services, and fraud detection, provided our interests do not override your data protection rights.

5. Your Rights Under GDPR and CCPA

Subject to applicable laws, you have the following rights regarding your personal data:

– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request corrections to incomplete or inaccurate data.
– Right to Erasure (“Right to be Forgotten”): You may request the deletion of your personal information, subject to retention obligations.
– Right to Restriction: You may request limitations on how we use your personal data.
– Right to Data Portability: You may request to receive your personal data in a portable, machine-readable format.
– Right to Object: You may object to the processing of your data in certain circumstances, such as direct marketing.
– Right to Non-Discrimination (CCPA): You will not be discriminated against for exercising your rights.
– Right to Opt-Out of Sale (CCPA): We do not sell your personal information. If this changes, we will provide appropriate notice and opt-out mechanisms.

To exercise these rights, contact us at [email protected]. We will respond in accordance with applicable legal timelines.

6. Security Measures

We have implemented robust technical and organizational measures to ensure the confidentiality, integrity, and availability of your personal data, including but not limited to:

– End-to-end data encryption during transmission and at rest.
– Role-based access controls for personnel.
– Secure cloud infrastructure with multi-layered authentication.
– Routine data backups to ensure business continuity.
– Staff privacy training and access monitoring.

While we aim to protect your data, no transmission over the internet is completely secure. We encourage users to take appropriate personal security measures.

7. International Transfers

We may transfer your personal data to countries outside your region of residence, including to the United States. Where such transfers occur, we implement safeguards such as Standard Contractual Clauses approved by the European Commission, or rely on mechanisms approved by relevant authorities to ensure an adequate level of data protection.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purpose for which it was collected and to comply with legal obligations. Retention periods vary by data type:

– Account and Transaction Data: Retained for up to 7 years for tax, audit, and legal purposes.
– Communication and Support Data: Retained for 3 years after resolution.
– Marketing Consent and Preferences: Retained until revoked by the data subject.
– Technical and Analytics Data: Retained for 12–24 months for performance monitoring.

Upon expiration of retention periods, data is securely deleted or anonymized.

9. Cookie Policy

We use cookies and similar tracking technologies to ensure proper site functionality and to enhance user experience. Our use of cookies falls into the following categories:

– Essential Cookies: Necessary for basic website functions such as page navigation and secure account access.
– Functional Cookies: Enable site personalization, account remembering, and live chat features.
– Analytics Cookies: Help us understand how visitors interact with howiestore.com by collecting usage data.
– Performance Cookies: Used to improve site speed and measure technical errors and responsiveness.

10. Cookie Management and Legal Compliance

Users can manage cookie preferences directly through our cookie banner or within their browser settings. Consent for non-essential cookies is obtained under GDPR guidelines. California residents may opt-out of the sharing of cookie-related identifiers as outlined under CCPA. Further instructions regarding cookie preference management are available on our site’s cookie settings page.

11. Children’s Privacy

howiestore.com does not knowingly collect or solicit data from individuals under the age of 13. If you are a parent or guardian and become aware that your child has provided us with personal data without your consent, please contact us immediately at [email protected]. We will promptly take steps to remove such data from our systems.

12. Policy Updates

We reserve the right to amend this Privacy Policy to reflect changes in legal requirements, business practices, or technology. Any substantive updates will be communicated through this webpage and, where relevant, via email or on-site notifications.

13. Contact

For any questions, concerns, or requests related to this Privacy Policy or our data practices, please contact:

Email: [email protected]
Website: https://howiestore.com

We remain committed to complying with applicable privacy laws and fostering trust through transparency. If you have concerns about how we handle your data, we welcome all inquiries at the above contact information.