Privacy Policy
1. Introduction
At Little Voice West End (“we”, “us”, or “our”), accessible via littlevoicewestend.com (the “Website”), your privacy is of paramount importance. We are fully committed to protecting your personal data and ensuring transparency regarding our data processing practices. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of littlevoicewestend.com and all personal data collected through the Website or communication with us. For the purposes of data protection laws, Little Voice West End is the “data controller” of your personal data, meaning we determine the purposes and means of processing your personal information.
3. Categories of Data Processed
We collect and process a range of personal data to enhance user experience and provide our services. The categories of data may include:
a) Usage Data
Includes information such as your IP address, browser type and version, session identifiers, current region, referral source, time and length of visit, pages viewed, clickstream behavior, and other diagnostic data.
b) Account Data
Includes username, full name, postal billing and shipping address, email address, telephone number, password, and related credentials used to create or modify an account on our Website.
c) Profile Data
Includes purchase history, interests, user journey data, preferences, demographic information, event participation, and behavioral responses to marketing or content.
d) Communication Data
Includes emails, correspondence, support queries, telephone call logs (where applicable), and content of communications exchanged between you and us.
e) Technical Data
Includes operating system, browser plug-in types and versions, time zone settings, screen resolution, device identifier, and other technology on the devices you use to access our Website.
f) Transaction Data
Includes payment method details (handled securely via third-party payment processors), order history, delivery address, fulfilment status, and invoicing information.
g) Preference Data
Includes records of your consents, opt-in or opt-out selections, marketing communication preferences, newsletter subscriptions, and interest selections regarding content or products.
4. Legal Bases for Processing
We rely on the following legal bases to process your personal data as required by the GDPR:
– Performance of a Contract: To fulfill our contractual obligations, such as processing your orders and providing customer support.
– Consent: Where you have provided clear, informed consent for us to process your personal data, for example for direct marketing emails.
– Legitimate Interests: To conduct and develop our business, understanding Website usage, and improving services. Whenever we rely on this ground, we ensure our interests are not overridden by yours.
– Legal Obligations: Where we are required to collect or retain certain information under applicable laws.
For users in California, certain rights and descriptions also apply in accordance with the CCPA (see Section 5 below for details).
5. Your Rights
Under the GDPR and, where applicable, the CCPA, you have the following rights:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request corrections to inaccurate or incomplete information.
– Right to Erasure (“Right to Be Forgotten”): You may request we delete your data, subject to lawful retention obligations.
– Right to Restrict Processing: You may request that personal data be used only for limited purposes.
– Right to Data Portability: You may request the transfer of your personal data to another service provider in a structured, commonly-used format.
– Right to Object: You may object to processing based on legitimate interest or direct marketing.
– Right to Withdraw Consent: Where consent is our legal basis, you can withdraw it at any time.
– Non-Discrimination (CCPA): We will not discriminate against you for exercising your CCPA rights.
To exercise any of these rights, please email us at [email protected] with your request.
6. Security Measures
We implement reasonable technical and organizational security measures to protect your personal data from unauthorized access, unlawful processing, accidental loss, destruction, or damage. These include:
– End-to-end encryption of data transmissions.
– Secure server infrastructure and firewalls.
– Tiered access control to sensitive information.
– Regular data backups and system monitoring.
– Staff training and confidentiality commitments.
– Secure authentication procedures for platform access.
7. International Transfers
We may transfer data to, and store it in, countries other than your country of residence, including the United States or European Economic Area, for processing by our service providers. Where such transfers occur, we rely on EU Standard Contractual Clauses or other legally compliant mechanisms to ensure adequate protections are in place.
8. Data Retention
We retain personal information only for as long as necessary for the purposes it was collected or as required by applicable law. Generally:
– Usage and Technical Data: Retained for up to 24 months.
– Account and Transaction Data: Retained for up to 7 years for financial and legal compliance.
– Communication Data: Retained for up to 3 years following last contact.
– Marketing Preferences and Profile Data: Retained until opt-out or withdrawal of consent is requested.
9. Cookie Policy
We use cookies and similar technologies to personalize content, analyze traffic, and improve Website performance. Cookies may include:
– Essential Cookies: Necessary for Website functionality and secure login.
– Functional Cookies: Enhance usability and remember preferences.
– Analytics Cookies: Provide aggregated statistical insights into Website usage patterns.
– Performance Cookies: Improve Website speed and responsiveness.
10. Cookie Management and Compliance with GDPR & CCPA
Upon visiting our Website, you are presented with a cookie banner notifying you of cookie usage. You may accept or reject non-essential cookies. You can manage cookie preferences at any time using browser settings or dedicated cookie management tools made available on littlevoicewestend.com.
Under GDPR, users have the right to refuse cookies unless strictly necessary for Website operation. Under the CCPA, you have the right to opt-out of the sale or sharing of your personal information, including cookies used for cross-site behavioral advertising.
11. Special Protections for Children
Our Website and services are not intended for or directed at individuals under the age of 13. We do not knowingly collect or solicit personal data from children. If we discover that we have inadvertently collected data from a child under 13, we will delete it immediately. If you are a parent or guardian and become aware that your child has provided us with personal information, please contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to update or modify this Privacy Policy to reflect changes in our practices, legal requirements, or Website functionality. Substantive changes will be communicated via Website notifications or direct email, where appropriate. We encourage you to review this Privacy Policy periodically.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: [email protected]
Website: https://littlevoicewestend.com
We are dedicated to ongoing compliance with data protection laws and welcome any inquiries regarding how we handle your personal data.
