Privacy Policy
At GiggleCozy (“we”, “us”, or “our”), accessible at gigglecozy.com, we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and protect your personal information when you access and interact with the website. It also describes your rights and choices in relation to your personal data, ensuring our compliance with applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
We are firmly committed to safeguarding your privacy and upholding your data protection rights. Your personal information is processed lawfully, fairly, and transparently. We only collect data necessary to deliver our services, and we employ industry-standard practices to secure it. We prioritize your privacy in all aspects of our operations and strive to ensure that your personal data is handled with diligence and care.
2. Scope of This Policy and Role of Data Controller
This Privacy Policy applies to any user of our website, gigglecozy.com, and any services provided through it. GiggleCozy acts as the “Data Controller” with respect to personal data collected through the website. This means we determine the purposes and means of processing your personal information.
3. Categories of Data We Process
We may collect and process the following categories of data:
a. Usage Data:
Collected automatically as you navigate the site, including IP address, browser version, device type, operating system, referring URL, and page interaction behavior.
b. Account Data:
Information provided when you create an account, including your name, email address, phone number, and residential or shipping address.
c. Profile Data:
Preferences, wish lists, purchase history, product reviews, demographic data, and behavioral insights derived from your use of our services.
d. Communication Data:
Any communication you initiate with us, including customer service interactions, support tickets, queries sent via [email protected], or messages via contact forms.
e. Technical Data:
Includes device identifiers, system settings, time zone, operating platform, and other diagnostic data.
f. Transaction Data:
Details of purchases made, billing and shipping addresses, payment method tokens, transaction reference numbers, and order history.
g. Preference Data:
Marketing subscription status, communication preferences, product interest tags, and consent to promotional outreach.
4. Legal Bases for Processing
We only process your personal data when a legal basis under GDPR and CCPA exists, including:
– Consent: When you give explicit permission to process specific data (e.g., for marketing communications).
– Contractual necessity: To fulfill a service or transaction you requested (e.g., product delivery).
– Legal obligation: Where required to comply with a legal or regulatory obligation.
– Legitimate interests: For operational purposes such as improving site performance or preventing fraud, provided these interests do not override your rights and freedoms.
5. Your Rights
Subject to applicable laws, you may exercise the following rights in relation to your personal data:
– Right to Access: Obtain confirmation of whether your data is being processed and access to that data.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data (“right to be forgotten”) where we have no lawful basis for continuing to process it.
– Right to Restrict Processing: Limit how your data is processed under certain circumstances.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format to transfer to another provider.
– Right to Object: Object to the processing of your data based on public interest or legitimate interest, including for marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a variety of technical, administrative, and organizational safeguards to ensure the confidentiality, integrity, and availability of your data, including:
– End-to-end data encryption during transmission and storage.
– Role-based access restrictions to internal systems, ensuring only authorized personnel can access data.
– Regular system backups and disaster recovery protocols.
– Privacy awareness training for staff and contractors.
– Ongoing security reviews and third-party vulnerability assessments.
7. International Data Transfers
Data collected through gigglecozy.com may be transferred to, and processed in, jurisdictions outside your country of residence, including the United States and other territories. Where international transfers occur, we rely on standard contractual clauses approved by the European Commission and implement equivalent safeguards to ensure lawful and secure cross-border data flow.
8. Data Retention
We retain personal data for as long as necessary to fulfill the original purposes of collection and as required to comply with legal, contractual, or regulatory obligations. Retention periods vary depending on the data category:
– Account Data: Maintained while your account is active and for 6 years thereafter for recordkeeping.
– Transaction Data: Retained for up to 7 years for tax and financial auditing compliance.
– Communication & Support Data: Retained for a maximum of 3 years from last interaction.
– Preference and Marketing Data: Retained until consent is withdrawn or updated.
Anonymized or aggregated data that does not identify individuals may be retained indefinitely.
9. Cookie Policy
gigglecozy.com uses cookies and similar technologies to enhance user experience, analyze trends, and tailor content. Cookies are categorized as follows:
– Essential Cookies: Required for core website functionality (e.g., navigation, security, login sessions).
– Functional Cookies: Enable personalization features (e.g., remembering your preferences).
– Analytics Cookies: Collect usage metrics to understand site performance and user flows.
– Performance Cookies: Optimize loading times and responsiveness across devices.
10. Cookie Management and Legal Compliance
In line with GDPR and CCPA, you are provided with clear options to manage your cookie preferences upon first site visit and at any time thereafter. You may:
– Accept or reject non-essential cookies via the cookie consent banner.
– Adjust settings in your browser to delete or block cookies.
– Use “Do Not Track” settings where available.
Please note, disabling essential cookies may affect the website’s functionality.
11. Children’s Privacy
Our services are not intended for children under the age of 13, and we do not knowingly collect personal information from individuals in this age group. If you are a parent or legal guardian and believe your child has provided us with personal data, please contact us at [email protected], and we will take steps to remove such information promptly.
12. Policy Updates and User Notifications
We may periodically update this Privacy Policy to reflect legal, regulatory, or operational changes. Revised versions will be posted on gigglecozy.com, and where appropriate, users will be notified via email or an on-site banner. Continued use of the site after such changes constitutes your acceptance of the revised policy.
13. Contact Information
If you have any questions, requests, or concerns regarding this Privacy Policy or the handling of your personal data, please contact our team via:
Email: [email protected]
Website: https://gigglecozy.com
Compliance Statement
We are dedicated to maintaining compliance with applicable data protection regulations, including GDPR and CCPA. If you have concerns about our data practices, please contact us directly for resolution.
Thank you for trusting GiggleCozy with your personal information.