Privacy Policy
1. Introduction
At Sea Dreamer The Label (hereinafter referred to as “Sea Dreamer”, “we”, “our”, or “us”), accessible at seadreamerthelabel.com, we are fully committed to safeguarding your personal data and respecting your privacy. We place the highest importance on confidentiality, data integrity, and transparency. This Privacy Policy outlines how we collect, use, store, and protect your personal information in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of seadreamerthelabel.com and covers all personal data collected through our website, including when you make a purchase, create an account, contact us, or otherwise interact with our services. Sea Dreamer is the data controller for your personal data, determining the purposes and means of processing.
For any queries relating to the control or processing of your data, you may contact us at [email protected].
3. Categories of Data Processed
We may collect, use, and store the following categories of personal data:
Usage Data:
Includes information about your interactions with our website, such as IP address, browser type and version, time zone setting, pages visited, referring URLs, and website navigation patterns.
Account Data:
Includes your first and last name, billing and shipping address, email address, and phone number, provided when registering or purchasing.
Profile Data:
Includes data such as order history, saved items, personal preferences, behavioral patterns, and product interests.
Communication Data:
Includes records of correspondence with us, including customer support communications, inquiries, feedback, and complaint history.
Technical Data:
Includes data collected from your device or connection method, such as device type, operating system, browser specifications, and other technical identifiers.
Transaction Data:
Includes payment information (processed via secure third-party gateways), order details, delivery tracking, and transaction history.
Preference Data:
Includes marketing and communication preferences, opt-in status for newsletters, interest selections, and user engagement with promotional content.
4. Legal Bases for Processing
We process personal data based on the following legal grounds under the GDPR:
– Consent: When you have given express permission, such as subscribing to a newsletter.
– Contract: Where processing is necessary to perform a contract with you or to take steps at your request prior to entering into a contract, e.g., completing a purchase.
– Legitimate Interests: When processing is necessary for our legitimate interests (or those of a third party), provided your rights do not override those interests. For example, fraud prevention or improving user experience.
– Legal Obligation: Where we are required to comply with legal or regulatory obligations.
5. Your Rights under GDPR and CCPA
Consistent with applicable law, you have the following rights:
Access: You may request access to your personal data and information about how it is processed.
Rectification: You may request correction of inaccurate or incomplete data.
Erasure (“Right to be Forgotten”): You may request the deletion of your personal data under certain circumstances.
Restriction: You may request the restriction of processing of your data.
Portability: You may request to receive your data in a structured, commonly used, and machine-readable format and/or request its direct transfer to another controller.
Objection: You have the right to object to processing for direct marketing purposes or where we rely on legitimate interests as a legal basis.
Non-Discrimination: Under CCPA, we will not discriminate against you for exercising any of your privacy rights.
To exercise these rights, please contact [email protected].
6. Security Measures
We employ appropriate technical and organizational safeguards to protect your personal data. These measures include:
– Encryption of data in transit and at rest
– Secure access controls to systems and data
– Regular security audits and monitoring
– Role-based data access and employee training programs
– Regular data backups to secure, restricted environments
Security threats are constantly evolving, and while we cannot guarantee complete security, we remain committed to continually assessing and enhancing our cybersecurity posture.
7. International Transfers
When transferring personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as the use of European Commission-approved Standard Contractual Clauses or reliance on an adequacy decision. Our third-party partners and service providers are contractually obligated to handle data in compliance with global privacy regulations.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, and as required for legal, accounting, or reporting obligations. Typical retention periods include:
– Account Data: retained while the account is active and for up to 6 years thereafter
– Transaction Data: retained for up to 7 years for tax and record-keeping compliance
– Communication Data: retained for 2 years after resolution of inquiry
– Marketing Preferences: retained until consent is withdrawn
– Usage and Technical Data: retained for analytics purposes for 24 months
Data no longer required is securely deleted or anonymized.
9. Cookie Policy
Our website utilizes cookies and similar technologies to enhance your browsing experience. Cookies are small data files stored on your device used for a variety of purposes:
Essential Cookies: Necessary for the operation of the website, enabling core functionalities such as shopping cart management and secure login.
Functional Cookies: Enhance usability by remembering user choices like region or language.
Analytics Cookies: Collect anonymized data to analyze website usage and measure performance, helping us improve our content and navigation.
Performance Cookies: Enable us to monitor and improve response time and user interactions with key website features.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, you have the right to manage your cookie preferences. Upon your first visit to seadreamerthelabel.com, a consent banner allows you to accept or decline non-essential cookies. You may change these preferences at any time by accessing your browser settings or our Cookie Settings tool on the website.
You may also configure your browser to reject all or certain cookies; however, doing so may impact website functionality.
11. Protection of Children’s Privacy
We do not knowingly collect, use, or disclose personal data from children under the age of 13. If you are a parent or guardian and believe that a child under your care has provided us with personal data, please contact us immediately at [email protected] and we will take steps to remove such data.
12. Policy Updates and Notifications
We may revise this Privacy Policy at our discretion to reflect changes in legal, technical, or business developments. Updates will be implemented seamlessly on seadreamerthelabel.com, and we advise users to regularly review this Policy. Where required by law, material changes will be communicated to you directly via email or website notices.
13. Contact Us
If you have any questions, requests, or concerns regarding this Privacy Policy or your personal data, you may contact us at:
Sea Dreamer The Label
Email: [email protected]
Website: https://seadreamerthelabel.com
We are committed to complying with GDPR, CCPA, and all relevant privacy legislation and are here to assist you in exercising your privacy rights.