Privacy Policy for Hearthline Designs
Hearthline Designs (“we,” “our,” or “us”) is committed to safeguarding the privacy and personal data of all visitors and users of our website, hearthlinedesigns.com. We respect your concerns about privacy and process your data in accordance with applicable data protection regulations, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act of 2018 (“CCPA”). This Privacy Policy outlines how we collect, use, store, and disclose your personal information, as well as your rights regarding that information.
1. Commitment to Your Privacy
At Hearthline Designs, we recognize the importance of your personal data and are fully committed to upholding the highest standards of privacy, security, and transparency. We handle your data with care, employing modern safeguards to ensure confidentiality, integrity, and restricted use aligned with legal obligations and your expectations.
2. Scope and Data Controller
This Privacy Policy applies to all personal data collected via hearthlinedesigns.com and related digital communications. Hearthline Designs determines the purposes and means of processing your personal data and thus acts as the Data Controller under GDPR. For inquiries or to exercise your rights, you may contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Includes information related to your interaction with our site and services, such as IP address, browser type and version, time zone, pages visited, session duration, referral sources, and navigation paths.
b. Account Data
Includes your full name, email address, phone number, mailing address, and any other information you provide during the creation or maintenance of an account on hearthlinedesigns.com.
c. Profile Data
Includes preferences, shopping history, saved items, behavioral interactions with content or products, reviews, and wish lists.
d. Communication Data
Includes the content and metadata of communications sent to us, such as contact form submissions, customer service inquiries, and email correspondence.
e. Technical Data
Includes device identifiers, operating system details, browser settings, plug-in types, mobile platform information, and other identifiers required for compatibility and functionality.
f. Transaction Data
Includes order details, billing address, payment method (limited to non-sensitive metadata such as payment status—no banking or credit card details are stored), shipping data, order confirmations, and invoice records.
g. Preference Data
Includes your opt-in or opt-out status for marketing communications, preferred communication channels, and selected product categories or interests.
4. Legal Bases for Processing Personal Data
We process your data under the following lawful bases:
– Consent: When you voluntarily provide data (e.g., for newsletters or exclusive offers).
– Contract: When processing is necessary to fulfill our obligations under a contract, such as completing your order or providing customer support.
– Legitimate Interests: For purposes such as preventing fraud, improving website functionality, customizing the user experience, and conducting internal analytics.
– Legal Obligation: When required to comply with applicable laws or legally binding requests (e.g., for tax or regulatory purposes).
5. Your Data Protection Rights
Under GDPR and CCPA, you have the following rights regarding your personal data:
– Right of Access: To request confirmation of and access to your personal data held by us.
– Right of Rectification: To correct any inaccurate or incomplete information.
– Right to Erasure: To request deletion of your personal data under certain circumstances.
– Right to Restrict Processing: To limit the way we use your data in specific situations.
– Right to Data Portability: To receive your data in a structured, commonly used machine-readable format.
– Right to Object: To object to data processing based on legitimate interests or for direct marketing purposes.
– Right not to be subject to automated decision-making or profiling, where applicable.
If you wish to exercise any of these rights, please contact us at [email protected]. We will respond in accordance with applicable data protection laws.
6. Security Measures
We implement robust physical, administrative, and technical safeguards to ensure your data is protected against unauthorized access, alteration, loss, or destruction. Measures include:
– SSL encryption to secure data transmissions.
– Access controls with authentication procedures.
– Routine system backups.
– Regular employee training on data protection policies.
7. International Data Transfers
Some of our service providers may be located outside the European Economic Area (EEA) or California. In such cases, we ensure adequate data protection by implementing Standard Contractual Clauses approved by the European Commission or by working with organizations certified under frameworks such as the EU-US Data Privacy Framework.
8. Data Retention
We retain personal data only as long as is necessary for the purposes described in this policy:
– Account Data: Retained as long as your account remains active.
– Transaction Data: Retained for 7 years for tax and legal compliance.
– Communication Data: Retained for 2 years post-resolution.
– Preference Data: Retained until you update your consent.
– Usage and Technical Data: Retained for up to 26 months for analytics and security purposes.
After these timeframes expire, your data is either anonymized or securely deleted.
9. Cookie Policy
Our website makes use of cookies and similar tracking technologies:
– Essential Cookies: Required for website operation (e.g., session control, authentication).
– Functional Cookies: Enhance features such as remembering your preferences.
– Analytics Cookies: Help us understand user behavior to improve performance (e.g., through Google Analytics).
– Performance Cookies: Collect data on site usage and technical performance.
10. Cookie Management and Compliance
By visiting hearthlinedesigns.com, you are presented with a cookie consent banner. You can manage or withdraw consent at any time via the Cookie Preferences tool located at the footer of our website. Visitors from jurisdictions such as the EU/EEA and California will see options specific to their regional privacy requirements.
You may also disable cookies through your browser settings, but some features of the site may not function properly as a result.
11. Children’s Privacy
Our website and services are not directed toward children under the age of 13. We do not knowingly collect personal data from children. If we become aware that we have inadvertently gathered information from a child under 13, we will take immediate steps to delete that information.
12. Policy Updates
We may update this Privacy Policy as needed to reflect changes in legal, technical, or business developments. We encourage you to revisit this policy periodically to remain informed of how we are protecting your data. Substantial changes will be communicated directly via prominent notice on the Site or through email, if applicable.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy or the way Hearthline Designs handles your personal data, please contact us at:
We are committed to ensuring your data is handled in compliance with applicable privacy standards, and we will respond to your inquiry as promptly and thoroughly as possible.
Hearthline Designs takes your privacy seriously and is dedicated to processing your personal information responsibly. For all matters relating to privacy, feel free to reach out directly—we’re here to help.