Privacy Policy for tonguesucker.com

1. Introduction

At tonguesucker.com (“we”, “us”, or “our”), your privacy is of paramount importance. We are committed to protecting and respecting your personal data and ensuring transparency in how we handle information. This Privacy Policy sets out the principles by which we collect, use, disclose, and safeguard your personal data in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

2. Scope of Policy and Role as Data Controller

This Privacy Policy applies to personal data that is collected and processed through your use of tonguesucker.com and its related services. We operate as the data controller, meaning we determine the purposes and means by which your personal data is processed. If you have questions about our data practices, please contact us at [email protected].

3. Categories of Data Processed

We may collect, use, store, and transfer the following categories of personal data:

a. Usage Data – Information automatically collected when you browse our website, including but not limited to your browser type, Internet Protocol (IP) address, access times, referring website addresses, and page interaction data.

b. Account Data – Information you provide when creating an account such as your name, billing address, email, phone number, and other contact details.

c. Profile Data – Information associated with your user profile including preferences, browsing behavior, product interests, and purchase history.

d. Communication Data – Records of your communications with us, including support queries, feedback, or any correspondence through our customer service channels.

e. Technical Data – Details regarding your device, operating system, hardware model, browser settings, and other technical configurations used to access our services.

f. Transaction Data – Data relating to orders placed on our website, including details of products purchased, payment confirmations, and delivery addresses.

g. Preference Data – Marketing preferences, consents for communication, and information you provide to personalize your experience.

4. Legal Bases for Processing

We process your personal data under the following legal bases, as permitted under the GDPR:

– Contract: To fulfill obligations arising from contracts entered into with you, including the provision of our services or products.
– Consent: Where applicable, we seek your explicit consent to process personal data for specific purposes such as direct marketing.
– Legitimate Interest: We may process your data to serve our legitimate business interests, provided these interests are not overridden by your rights.
– Legal Obligation: Where necessary to comply with applicable legal requirements or court orders.

5. Your Rights

In accordance with GDPR and CCPA, you possess the following rights with respect to your personal data:

– Right of Access – To request access to your personal data and obtain a copy.
– Right to Rectification – To correct inaccurate or incomplete data.
– Right to Erasure – To request deletion of your personal data in certain circumstances.
– Right to Restriction – To request restriction of data processing under specific conditions.
– Right to Data Portability – To receive personal data in a structured, commonly used format and to have that information transmitted to another controller.
– Right to Object – To object to the processing of your personal data for purposes such as direct marketing.
– Right Not to Be Discriminated Against – For exercising rights under the CCPA.

To exercise any of these rights, please contact us at [email protected].

6. Security Measures

We implement appropriate technical and organizational measures to ensure the security of personal data, including but not limited to:

– Data encryption in transit and at rest
– Role-based access controls
– Regular data backups and system monitoring
– Ongoing employee privacy and security training
– Secure socket layer (SSL) technology for secure communications

7. International Transfers

Your data may be processed or stored in countries outside the jurisdiction of your residence. When such transfers occur, we utilize Standard Contractual Clauses and similar legal mechanisms to ensure that your data is afforded a level of protection consistent with EU and other regional requirements.

8. Data Retention

We retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy, subject to applicable legal and regulatory requirements:

– Usage and Technical Data: retained for 12 months
– Account and Profile Data: retained for the duration of account activity plus 2 years
– Communication Data: retained for 24 months
– Transaction Data: retained for 7 years for tax and financial compliance
– Preference Data: retained for 2 years from last interaction or until consent withdrawn

9. Cookie Policy

Our website uses cookies and similar technologies to enhance user experience and analyze site traffic. Cookies used include:

– Essential Cookies – Necessary for the functioning of the site
– Functional Cookies – Enable features like language selection and remembered preferences
– Analytics Cookies – Help us understand user behavior on the site
– Performance Cookies – Improve speed and responsiveness

10. Cookie Management and Compliance

You can manage your cookie preferences at any time via the cookie consent banner upon your first visit, or by adjusting your browser settings. We comply with GDPR and CCPA cookie consent, including the requirement for prior consent for non-essential cookies and opt-out mechanisms for U.S. users.

11. Children’s Privacy

We do not knowingly collect or solicit personal information from individuals under the age of 13. If we become aware that data has been collected from a child under 13 without verified parental consent, we will delete such data promptly. Parents or guardians who believe that their child has provided us with personal data may contact us at [email protected].

12. Policy Updates and Notifications

We reserve the right to update this Privacy Policy as changes in legal, technical, or business requirements arise. Where material changes are made, we will notify users through prominent notices on tonguesucker.com or via email, if applicable.

13. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

Email: [email protected]
Website: https://www.tonguesucker.com

We are committed to complying with all relevant data protection legislation and ensuring your data is handled with the highest degree of care and transparency.