Privacy Policy
1. Introduction
At Olivia Harris Photos, accessible at oliviaharrisphotos.com, we are deeply committed to protecting your privacy and safeguarding your personal information. We recognize the importance of data privacy in the digital era and adhere to the highest standards of data protection in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data when you visit or interact with our website or services.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access oliviaharrisphotos.com. For the purposes of the GDPR and similar regulations, Olivia Harris Photos is the Data Controller and is responsible for the processing of your personal data.
If you have any questions regarding how your data is handled, please contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a) Usage Data:
Includes information such as your IP address, browser type, referring/exit pages, date/time stamps, browsing behavior, session duration, and interaction data collected through analytics tools.
b) Account Data:
If you create an account or provide data through forms, we collect your full name, email address, mailing address, and phone number.
c) Profile Data:
Information related to your user preferences, purchase history, saved content, and on-site behavior.
d) Communication Data:
Includes your interactions with us through our contact forms, customer service requests, feedback submissions, email correspondence, and other forms of communication.
e) Technical Data:
Device type, operating system, browser version, timezone settings, and other system configurations.
f) Transaction Data:
Details pertaining to any purchases you make from oliviaharrisphotos.com, including payment method (processed via secure third-party platforms), billing details, shipping information, and order history.
g) Preference Data:
Marketing subscriptions, notification settings, and expressed product or content interests.
4. Legal Bases for Processing
We process your personal data based on one or more of the following legal bases:
– Consent: Where you have clearly and affirmatively given us permission (e.g., subscribing to marketing emails).
– Contractual Necessity: Where processing is necessary for entering into or performing a contract with you.
– Legitimate Interests: For purposes such as service improvement, fraud prevention, security, and direct marketing (where legally permissible).
– Legal Obligation: Where we are legally required to retain or disclose information to comply with regulatory or legal obligations.
5. Your Rights Under GDPR and CCPA
You have the following rights in relation to your personal data:
– Right of Access: You can request access to your personal data.
– Right to Rectification: You have the right to request corrections to inaccurate or incomplete data.
– Right to Erasure: Also known as the “right to be forgotten,” you can request deletion of your data where applicable.
– Right to Restriction: You may request that we limit processing of your personal data.
– Right to Data Portability: You may request your data be provided in a structured, commonly-used, machine-readable format.
– Right to Object: You may object to data processing where we rely on legitimate interests or for direct marketing.
– Right Not to Be Subject to Automated Decision-Making: We do not profile or make automated decisions without human involvement.
California residents may also exercise specific rights under the CCPA, including the right to know what personal information has been collected, to request deletion, to opt-out of data “sale,” and to receive notice about data collection practices.
To exercise your rights, contact us at [email protected]. We may require verification of identity before fulfilling your request.
6. Security Measures
We implement industry-standard security measures designed to protect your personal data, including:
– Encryption of sensitive data both in transit and at rest.
– Role-based access controls and multi-factor authentication.
– Regular backups, secure hosting, and SSL/TLS encryption.
– Routine security assessments and staff privacy training.
7. International Data Transfers
Where personal data is transferred outside your jurisdiction (for example, from the EEA to the United States), we implement appropriate safeguards, including the Standard Contractual Clauses approved by the European Commission, to ensure an adequate level of protection consistent with applicable law.
8. Data Retention
We retain your personal data only for as long as reasonably necessary for the purposes for which it was collected, including to satisfy legal, regulatory, tax, accounting, or reporting requirements. Retention periods vary depending on data type:
– Usage Data: Retained for up to 12 months for analytics and system diagnostics.
– Account and Profile Data: Retained for the duration of the account and up to 6 months following closure.
– Transaction Data: Retained for up to 7 years in compliance with financial and tax regulations.
– Communication and Technical Data: Retained for up to 2 years for support and service optimization.
– Marketing Preference Data: Retained until you withdraw consent or unsubscribe.
9. Cookie Policy
We use cookies and similar technologies to enhance your user experience on oliviaharrisphotos.com. Cookies are small text files placed on your device that collect information about browsing behavior.
Types of cookies used:
– Essential Cookies: Required for website functionality and cannot be turned off.
– Functional Cookies: Enable site personalization and enhanced functionality.
– Performance & Analytics Cookies: Help us understand user behavior and optimize performance.
– Advertising & Preference Cookies: Store your marketing preferences and display relevant content.
10. Cookie Management & Compliance
Upon your first visit to our website, a cookie banner informs you of our practice and allows you to accept or decline non-essential cookies. You may manage your cookie preferences at any time via the settings in your browser or through the website interface.
Our cookie practices adhere to GDPR consent standards and provide opt-out mechanisms in accordance with the CCPA. We do not sell personal data of visitors as defined under the CCPA.
11. Children’s Data
oliviaharrisphotos.com does not knowingly collect or solicit personally identifiable information from children under the age of 13. If we learn that we have inadvertently gathered data from a minor without appropriate consent, we will delete such data promptly. Parents or guardians who believe their child has submitted information may contact us at [email protected].
12. Updates to This Privacy Policy
We reserve the right to revise this Privacy Policy at any time. Modifications will take effect upon posting on oliviaharrisphotos.com. Where required by law, we will notify you of material changes. Continued use of our website indicates your acceptance of the updated policy.
13. Contacting Us
If you have questions, concerns, or requests relating to this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
We are committed to upholding your privacy rights and maintaining transparency in how your data is handled.
This Privacy Policy reflects our ongoing commitment to legal compliance, transparency, and privacy-first practices. We encourage users to reach out with any privacy-related inquiries or concerns.