Privacy Policy for Travis Stevens Nerd Crafts

1. Introduction

At Travis Stevens Nerd Crafts, accessible via travisstevensnerdcrafts.com, we are committed to safeguarding the privacy, integrity, and accessibility of personal information entrusted to us. This Privacy Policy outlines how we collect, use, store, and share the personal data of our users in accordance with applicable data protection laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We prioritize transparency and data minimization, and we are dedicated to protecting your rights and autonomy with respect to the data you share with us.

2. Scope of This Policy and Role as Data Controller

This Privacy Policy applies to all visitors, users, and others accessing or interacting with travisstevensnerdcrafts.com, as well as services offered through our website. Travis Stevens Nerd Crafts is the data controller in relation to all personal data that is collected through the website, meaning we determine the purposes and means of the processing of your personal data.

If you have any questions or concerns regarding your personal data, please contact us at [email protected].

3. Categories of Personal Data We Process

We collect and process the following categories of personal data:

a. Usage Data
Includes data about how you use our website and services; such as IP address, browser type, time zone settings, referring URLs, pages viewed, access times, and clickstream data.

b. Account Data
Includes information submitted when creating an account, such as your name, email address, physical address, and telephone number.

c. Profile Data
Includes your preferences, interests, purchase history, website interactions, and personalized content and product selections.

d. Communication Data
Includes records of your communications with us, including customer support inquiries, live chat messages, submitted forms, and the history of such communications.

e. Technical Data
Includes device identifiers, system configurations, hardware specifications, operating system information, and browser plug-in details.

f. Transaction Data
Includes data relating to your purchases, such as billing and shipping addresses, payment method details (processed via secure third parties), order history, and delivery status information.

g. Preference Data
Includes your marketing and communication preferences and product interest information, including opt-in/opt-out choices and user-specified topics of interest.

4. Legal Bases for Processing

We process personal data lawfully and pursuant to one or more of the following legal bases:

– Legitimate Interests: To operate, improve, and secure our website and services, including analytics and fraud prevention;
– Contractual Necessity: To provide you with services or products you have requested or purchased;
– Consent: Where you have explicitly provided it for specific processing activities such as marketing communications and cookie preferences;
– Legal Obligation: To comply with applicable duties under law, regulatory requirements, or official orders.

5. Your Rights

Subject to applicable legislation, particularly under GDPR and CCPA, you have the following rights regarding your personal data:

– Right of Access – You may request access to your personal data held by us.
– Right to Rectification – You may request correction of inaccurate or incomplete data.
– Right to Erasure – Under certain conditions, you may request deletion of your personal data (“Right to be Forgotten”).
– Right to Restriction – You may restrict processing where data accuracy is contested or processing is unlawful.
– Right to Portability – You may obtain and reuse your personal data across services, where applicable.
– Right to Object – You may object to processing of your data based on our legitimate interests or for direct marketing purposes.

To exercise any of these rights, please reach out to [email protected].

6. Security Measures

We implement comprehensive security measures to ensure the confidentiality, integrity, and availability of your data, including:

– SSL/TLS encryption across all web traffic;
– Access control with role-based permissions;
– Regular data backups and secure storage;
– Staff training on data security and confidentiality practices;
– Monitoring of systems for unauthorized access and data breaches.

7. International Data Transfers

Where personal data is transferred beyond the European Economic Area (EEA) or State of California, we ensure adequate protection through:

– Standard Contractual Clauses approved by the European Commission;
– Binding corporate rules where applicable;
– Verification that recipient countries offer equivalent privacy safeguards, or certification under appropriate compliance frameworks.

8. Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting obligations. Retention periods vary as follows:

– Usage Data: up to 36 months for analytics and security purposes.
– Account and Profile Data: retained while the account is active and for up to 24 months thereafter.
– Communication Data: retained for 24 months for support quality and legal recordkeeping.
– Transaction Data: retained for 7 years for tax and audit compliance.
– Technical and Preference Data: retained for 12 months from the last site visit or until withdrawal of consent.

9. Cookie Policy

We use a range of cookies on travisstevensnerdcrafts.com:

– Essential Cookies: Necessary for the operation of our website (e.g., login, shopping cart functions).
– Functional Cookies: Enhance website usability (e.g., saved preferences).
– Analytics Cookies: Provide statistical insights into user behavior (e.g., Google Analytics).
– Performance Cookies: Monitor and improve website performance.

10. Cookie Management and Compliance

In compliance with GDPR and CCPA, visitors are presented with a cookie consent mechanism upon first visit. You may accept or reject non-essential cookies or customize settings. Cookies can also be disabled through browser options. Consent preferences are honored and stored securely. California residents may opt out of the “sale” of personal data, where applicable, using the mechanism provided on our website.

Users can manage cookie settings at any time directly from our Cookie Settings page or by adjusting preferences in their browser.

11. Children’s Privacy

Our website, services, and products are not intended for individuals under 13 years of age. We do not knowingly collect or solicit personal data from anyone under 13. If we learn that we have collected personal information from a child under 13, we will promptly take steps to delete this information. Parents or guardians who believe their child has provided us personal data should contact us at [email protected].

12. Policy Updates and Notifications

We reserve the right to modify or update this Privacy Policy to reflect changes in legal obligations or processing practices. Where changes materially affect your rights, we will notify you via email (if contact details are provided) or prominently on our website. Continued use of our services after such updates constitutes your acceptance of the revised policy.

13. Contact Us

For questions regarding this Privacy Policy, to exercise your rights, or to raise a privacy concern, please contact us at:
Email: [email protected]

—

We are committed to full compliance with international data protection laws and to protecting your privacy and personal information. Please do not hesitate to contact us should you have any questions or require assistance regarding your personal data.