Privacy Policy for baxter-house.com
1. Introduction
Baxter House (“we,” “our,” “us”) is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and disclose personal data when you visit or interact with our website, baxter-house.com (the “Website”), and any related services. We prioritize data protection and actively implement principles of transparency, accountability, and integrity in accordance with applicable data privacy laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of the Policy and Data Controller Role
This Privacy Policy applies to all personal data collected or processed through the Website. For purposes of GDPR and other applicable laws, Baxter House is the data controller with respect to your personal data. You can contact us at [email protected] with any questions regarding our privacy practices.
3. Categories of Data We Process
We may collect, use, store, and transfer various categories of personal data, including but not limited to the following:
a. Usage Data
Information concerning your use of the Website, including your IP address, geographic location, browser type and version, operating system, referral source, length of visit, and pages viewed.
b. Account Data
Information provided when registering or managing an account, such as your full name, billing and shipping address, email address, phone number, and other contact details.
c. Profile Data
Data related to your preferences, interests, purchase history, and behavior while using baxter-house.com, including wishlists and items saved for future reference.
d. Communication Data
Any information disclosed when contacting us via email or through customer support forms, including the content of your messages and related communication history.
e. Technical Data
Device identifiers, browser settings, internet service provider, system configuration details, and other metadata automatically collected for system administration and security.
f. Transaction Data
Details regarding orders placed through the Website, including payment method, billing address, product details, shipping address, and transaction records.
g. Preference Data
Marketing and communications preferences, product interest selections, consent to receive newsletters or advertising, and responses to surveys or promotions.
4. Legal Bases for Processing
We process your personal data using one or more of the following legal bases:
– Contractual Necessity: To provide and fulfill services requested, such as processing orders or delivering goods.
– Legitimate Interest: To improve site performance, prevent fraud, analyze customer behavior, and secure our infrastructure, without compromising your data rights.
– Consent: Where required by law or for specific uses (e.g., marketing communications), we rely on your explicit consent.
– Legal Obligation: In rare instances, to comply with legal and regulatory requirements.
5. Your Data Privacy Rights
Subject to applicable laws, you may exercise the following rights in relation to your personal data:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You have the right to request correction of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your data, subject to legal or contractual obligations requiring retention.
– Right to Restriction: You may restrict processing under certain circumstances.
– Right to Data Portability: You may request that we provide your data in a structured, commonly used, and machine-readable format.
– Right to Object: You have the right to object to data processing based on legitimate interests or for direct marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We apply robust technical and organizational security measures to protect your personal data. These measures include, but are not limited to:
– Data encryption during storage and transmission
– Access control via authenticated accounts and roles
– Regular data backups and disaster recovery protocols
– Staff confidentiality agreements and ongoing privacy training
7. International Data Transfers
Your data may be transferred to and processed in countries outside your jurisdiction. In such cases, we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission and ensure third-party processors comply with equivalent data protection obligations.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal, contractual, or regulatory requirements:
– Usage Data: 12 months
– Account and Profile Data: While your account is active or for up to 24 months after termination
– Communication and Technical Data: 24 months
– Transaction Data: 7 years for financial and legal auditing purposes
– Preference Data: Until consent is withdrawn or up to 24 months if inactive
After the applicable retention period, data will be securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience on baxter-house.com. These may include:
– Essential Cookies: Required for site functionality, including secure login and shopping cart features.
– Functional Cookies: Used to remember preferences and enhance the user interface.
– Analytics Cookies: Provide aggregated data on usage patterns and areas for improvement.
– Performance Cookies: Help evaluate site speed and responsiveness.
These cookies may be first-party or established via trusted partners.
10. Cookie Management and GDPR/CCPA Compliance
You have the right to manage your cookie preferences. Upon accessing baxter-house.com, you will be presented with cookie consent options. You may choose to accept or reject non-essential cookies. Additionally, your browser settings may permit you to disable specific cookie categories. Choices made will not restrict essential site functionality.
Under the CCPA, residents of California may opt-out of the “sale” of personal information by adjusting cookie settings or requesting assistance at [email protected].
11. Children’s Data
Baxter House does not knowingly collect personal information from children under the age of 13. If we become aware that a child has provided us with personal data without parental consent, we will take immediate steps to delete such information. If you believe a child may have submitted personal data to us, please contact [email protected].
12. Policy Updates and Notifications
We reserve the right to modify or update this Privacy Policy from time to time. Any material changes will be communicated through baxter-house.com or via email where appropriate. Continued use of the Website following updates signifies acceptance of the revised policy.
13. Contact Us
For any questions, concerns, or requests about this Privacy Policy or how your data is handled, please contact us at:
Email: [email protected]
Website: https://www.baxter-house.com
We are committed to respecting your privacy and safeguarding your personal information. For compliance requests or data subject access rights, reach out at the contact details above.