Privacy Policy
1. Introduction
At iamwinterson.com (“we,” “our,” or “us”), we recognize and respect the importance of your privacy and are committed to protecting your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit and interact with iamwinterson.com (the “Website”). We seek to maintain the highest standards in data handling, transparency, and user control.
2. Scope and Data Controller
This Privacy Policy governs the processing of personal data collected from visitors, users, customers, and other individuals interacting with the Website. iamwinterson.com is the data controller in relation to this processing and is responsible for determining the purposes and means of processing your personal data.
If you have any questions regarding our data handling practices, you may contact us at: [email protected].
3. Categories of Data Processed
We collect and process the following categories of personal data:
a) Usage Data: Includes information such as browser type and version, Internet Protocol (IP) address, referring URLs, pages visited, time spent on pages, links clicked, and session timestamps.
b) Account Data: Includes identifying information voluntarily provided upon registration or account setup, such as full name, mailing address, email address, and phone number.
c) Profile Data: Includes preferences, language settings, purchasing history, and behavioral patterns on the Website.
d) Communication Data: Includes records of customer support inquiries, emails exchanged with our support team, feedback submissions, and records of other communications.
e) Technical Data: Includes device model and operating system, screen resolution, browser plug-ins, language preferences, and other device-specific diagnostic data necessary for accessing the Website.
f) Transaction Data: Includes details pertaining to purchases made through the Website, such as billing address, delivery address, payment method, and the last four digits of payment cards used.
g) Preference Data: Includes marketing preferences, product interests, and subscription settings voluntarily provided by the user.
4. Legal Bases for Processing
We process your personal data based on the following lawful bases:
– Contractual Necessity: Where processing is essential to fulfill a contract with you, such as delivering purchased goods or services.
– Legitimate Interests: Where we have a legitimate interest in performing business operations which is not overridden by your rights or interests (e.g., fraud prevention, service improvement).
– Consent: Where you have expressly given us permission to process specific data for one or more purposes (e.g., receiving marketing communications).
– Legal Obligation: Compliance with regulatory or legal obligations to which we are subject.
5. Your Rights
Subject to applicable laws and conditions, you have the following rights with respect to your personal data:
– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You are entitled to request corrections to inaccurate or incomplete personal data.
– Right to Erasure: You may request the deletion of your personal data under certain conditions.
– Right to Restriction: You may request limited processing of your personal information under specific circumstances.
– Right to Data Portability: You can obtain a copy of your data in a structured, machine-readable format and transmit it to another controller.
– Right to Object: You may object to our processing of your data where processed on legitimate interest or direct marketing grounds.
To exercise any of your rights, please contact us at [email protected]. We will respond in accordance with applicable legal timelines.
6. Security Measures
We implement appropriate technical and organizational measures to secure your data against unauthorized access, alteration, disclosure, or destruction. These include:
– Encryption of data transmissions over secure protocols (e.g., HTTPS)
– Role-based access controls and authentication mechanisms for internal systems
– Routine data backups and disaster recovery planning
– Ongoing privacy training and compliance awareness for personnel
7. International Transfers
Where necessary, personal data may be transferred to jurisdictions outside your country of residence. In such cases, we ensure an adequate level of data protection in accordance with applicable law through mechanisms such as:
– Standard Contractual Clauses approved by the European Commission
– Applicable adequacy decisions recognizing equivalent data protection levels
– Binding corporate rules and other legally compliant transfer instruments
8. Data Retention
We retain your personal data only for as long as necessary, based on the nature of the service, legal requirements, or legitimate interests. Specific examples include:
– Transaction Data: retained for up to 7 years to comply with financial regulations
– Account Data and Profile Data: retained while the account remains active, or until deletion is requested
– Communication Data: retained for up to 24 months for support history analysis
– Marketing Preferences: retained until consent is withdrawn
Once retention periods expire, your data is securely deleted or anonymized.
9. Cookie Policy
iamwinterson.com uses cookies and similar technologies to enhance user experience, facilitate website functionality, and analyze usage. These cookies fall into the following categories:
– Essential Cookies: Required for core Website functionality and to enable transactions or login sessions.
– Functional Cookies: Remember user preferences and settings to personalize the Website experience.
– Analytics Cookies: Collect aggregated usage data for internal analysis and service improvements.
– Performance Cookies: Help identify performance bottlenecks and monitor system stability.
Cookies do not generally identify you personally unless you voluntarily submit identifiable information on the Website.
10. Cookie Management and Compliance
Visitors may control or disable cookies at any time through browser settings or by opting out using the Website’s cookie management interface. In compliance with GDPR and CCPA, we obtain user consent for all non-essential cookies and provide clear options to reject or withdraw consent.
California residents may also exercise their right to opt out of the “sale” of personal information, where applicable, in accordance with CCPA regulations. Our website does not sell personal data for monetary consideration.
11. Children’s Privacy
iamwinterson.com does not knowingly collect or process personal data from children under the age of 13. If you are a parent or guardian and believe that a child under your care has provided us with personal data, please contact us promptly at [email protected], and we will take appropriate steps to remove the data.
12. Policy Updates and Notifications
We reserve the right to amend this Privacy Policy at any time to reflect evolving legal, regulatory, or business requirements. You are encouraged to review this Policy periodically for updates. Where material changes are made, we will notify users via prominent website disclosure or direct communication as appropriate.
13. Contact Us
For questions, concerns, or to exercise your rights under this Privacy Policy, please contact us at:
Email: [email protected]
We are committed to full compliance with applicable data protection laws and to resolving any concerns in a respectful and timely manner.