Privacy Policy for matthewtivy.com

1. Introduction

At matthewtivy.com, we value and respect your privacy. This Privacy Policy outlines our firm commitment to protecting the personal data of all visitors, users, and customers who interact with our website. We are dedicated to maintaining the confidentiality, integrity, and security of your information in compliance with global privacy standards, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all data collected, used, shared, or otherwise processed through your use of matthewtivy.com and any communication you have with us. The data controller responsible for processing your personal data is the operator of this website, who can be contacted at [email protected]. As the data controller, we determine the purposes and means for processing your personal data.

3. Categories of Data We Process

We collect and process the following categories of personal data:

a. Usage Data
Information about how you interact with our website, such as IP addresses, browser type, pages visited, time spent on pages, navigation paths, referral URLs, and login frequency.

b. Account Data
Information you provide when creating an account, such as your name, email address, postal address, and contact telephone number.

c. Profile Data
Details about your preferences, login behavior, interactions with the site, and any purchases or activity history used to personalize your experience.

d. Communication Data
Records of correspondence between you and us—such as email support requests and contact form submissions.

e. Technical Data
Data about your device and system environment, including operating system, hardware type, screen resolution, device identifiers, and browser configurations.

f. Transaction Data
Details relating to purchases or order placements, including payment information (processed securely through third-party providers), shipping addresses, and transaction verification.

g. Preference Data
Marketing preferences, communication subscriptions, and product or service interests you have specified or inferred through activity on the site.

4. Legal Bases for Processing

We process your data in accordance with one or more of the following legal grounds under the GDPR:

– Consent: Where you have explicitly granted permission (e.g. for email newsletters or cookies).
– Contractual Necessity: When data processing is necessary to perform a contract with you.
– Legal Obligation: Where processing is required by applicable laws or regulations.
– Legitimate Interests: For purposes such as improving website functionality, ensuring security, fraud prevention, and customer service, where these do not override your privacy rights.

5. Your Privacy Rights

In accordance with applicable laws, you have the following rights regarding the personal data we hold about you:

– Right of Access: Request a copy of your personal data processed by us.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data, subject to applicable legal retention obligations.
– Right to Restriction: Request restriction of processing under certain circumstances.
– Right to Data Portability: Obtain and reuse your personal data across different services.
– Right to Object: Object to the processing of your personal data where we rely on legitimate interests or direct marketing.
– Right to Withdraw Consent: If processing is based on consent, you may withdraw it at any time.
– Right to Lodge a Complaint: Contact your local data protection authority if you believe your rights have been violated.

To exercise your rights, please contact us via [email protected].

6. Security Measures

We implement intensive security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These include, but are not limited to:

– Industry-standard encryption (TLS/SSL) for data in transit
– Access controls and authentication protocols
– Regular system updates and vulnerability patching
– Secure server environments with continuous monitoring
– Staff training in privacy best practices

7. International Data Transfers

Your information may be stored and processed in countries outside your jurisdiction. Where data is transferred internationally, we ensure it is safeguarded through the use of Standard Contractual Clauses or by confirming that the country offers adequate data protection standards as determined by the European Commission or other relevant authorities.

8. Data Retention

We only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, regulatory, tax, accounting, or reporting requirements. Specific retention timeframes include:

– Usage & Technical Data: retained for up to 12 months
– Account & Profile Data: retained as long as your account remains active, or for 3 years after your last interaction with the site
– Communication Data: retained for 2 years for service and business improvement
– Transaction Data: retained for 7 years for legal and accounting compliance
– Preference Data: retained until you update or withdraw your preferences

9. Cookie Policy

We use cookies and similar tracking technologies for various purposes on matthewtivy.com:

– Essential Cookies: Necessary for website functionality, such as secure login and shopping cart.
– Functional Cookies: Enhance user experience by remembering preferences and settings.
– Analytics Cookies: Collect aggregated data to understand website traffic, used anonymously for performance evaluation.
– Performance Cookies: Help track usage patterns and error reporting to optimize performance.

10. Cookie Management

You have full control over how cookies are used on matthewtivy.com. Upon your first visit, and periodically afterward, we present a cookie consent banner allowing you to accept or reject different categories of cookies in compliance with GDPR and CCPA regulations. You may also adjust your browser settings to manage cookies at any time or opt out from analytics using tools provided by our third-party partners.

11. Children’s Data

matthewtivy.com does not knowingly collect personal data from children under the age of 13. If we become aware that we have inadvertently received data from a child without verified parental consent, we will delete such information immediately. If you believe a child has provided us with data, please contact us at [email protected].

12. Policy Updates

This Privacy Policy may be amended to reflect changes in our practices, technology, or legal requirements. Any significant modifications will be communicated to you via prominent website notices or direct communication when required. Continued use of matthewtivy.com following an update will indicate your consent to the modified terms.

13. Contact

If you have any questions, concerns, or requests related to this Privacy Policy or the handling of your personal data, you may contact us at:

Email: [email protected]
Website: https://matthewtivy.com

We are committed to maintaining transparency and compliance. Please reach out at any time with concerns about privacy or data protection.