Privacy Policy for My Minx (my-minx.com)
1. Introduction
At My Minx, we are deeply committed to safeguarding your privacy and ensuring the highest standards of data protection. We recognize the importance of your personal information and are devoted to ensuring that your personal data is collected, used, disclosed, and protected in accordance with applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how information is collected, used, and shared when you use our website located at my-minx.com. We encourage you to read this Policy carefully.
2. Scope of This Policy and Data Controller Role
This Privacy Policy governs all data processing activities carried out through the website my-minx.com. My Minx acts as the “Data Controller” for the purposes of the GDPR, meaning we determine the purposes and means of processing your personal data. This Policy applies to all users, visitors, and customers who access or interact with our website and services, whether as individuals or on behalf of an organization.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a) Usage Data
Includes information such as IP addresses, browser types and versions, geographic location, referral sources, pages viewed, time spent on pages, and navigation paths. There is no attempt to link this data to specific identities unless required by security protocols or fraud detection.
b) Account Data
This includes your name, billing and shipping addresses, phone number, email address, and account credentials. It is collected when you register or manage an account with us.
c) Profile Data
Covers your saved preferences, purchase history, wish lists, and activity on our site. This information helps us personalize your user experience and make product recommendations.
d) Communication Data
Encompasses any communication you send to us, including support tickets, email correspondence, and other inquiries. We keep records to manage customer relationships and ensure service quality.
e) Technical Data
Includes data about your device and connection such as device model, operating system, browser version, language settings, screen resolution, and system configurations.
f) Transaction Data
Covers details of purchases made, payment methods used (excluding full credit card numbers), transaction identifiers, fulfillment status, and delivery tracking.
g) Preference Data
Includes marketing communication preferences, opt-in or opt-out indications, product interest tags, and consent-based data regarding advertising preferences.
4. Legal Bases for Processing
We process your personal data lawfully under the following recognized bases:
– Consent: When you give clear, voluntary permission for us to process your data for a specific purpose.
– Contractual necessity: Where processing is necessary for the performance of a contract with you, such as fulfilling a product order.
– Legal obligations: Where we are required to process data in accordance with laws or regulations.
– Legitimate interests: When processing is necessary for our legitimate business interests, such as improving services and preventing fraud, and these do not override your fundamental rights.
5. Your Rights
Pursuant to GDPR and CCPA, you have the following rights regarding your personal data:
– Right to Access: You may request copies of your personal data that we hold.
– Right to Rectification: You may request correction of inaccurate or incomplete data concerning you.
– Right to Erasure (Right to be Forgotten): You may request the deletion of your personal data, subject to certain legal exemptions.
– Right to Restriction of Processing: You may request that we temporarily suspend processing of your data under specified circumstances.
– Right to Data Portability: You may request transmission of your personal data in a structured, portable, and machine-readable format to another controller.
– Right to Object: You may object to processing based on legitimate interests or direct marketing at any time.
– Right to Non-Discrimination: Under CCPA, you may not be discriminated against for exercising your rights.
To exercise these rights, please contact us at [email protected]. We may require verification of your identity before responding to your request.
6. Security Measures
We employ a wide array of physical, electronic, and administrative safeguards to secure your information. Measures include, but are not limited to:
– Data encryption at rest and in transit
– Role-based access controls with audit trails
– Regular system patching and vulnerability assessments
– Secure password protocols and multi-factor authentication
– Staff privacy awareness and data protection training
– Daily data backups and off-site storage
7. International Data Transfers
Your information may be transferred to and maintained on servers located outside your jurisdiction, including regions that may not offer the same level of data protection as your home country. In such cases, we take appropriate steps to ensure your data is treated securely and subject to safeguards such as the EU Standard Contractual Clauses or other approved transfer mechanisms in compliance with GDPR and applicable laws.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes for which it was collected or as required by applicable law. General retention timelines include:
– Account Data: Retained while the account remains active and for up to 5 years thereafter.
– Transaction Data: Maintained for up to 7 years for financial and audit purposes.
– Communication Data: Retained for up to 3 years following last contact.
– Cookie-related identifiers: Storage durations vary by cookie type, generally lasting from session-only to 2 years.
– Legal or security logs: Maintained as per applicable jurisdictional requirements.
9. Cookie Policy
We use cookies and similar technologies on my-minx.com for several purposes:
– Essential Cookies: Necessary for site functionality and security features.
– Functional Cookies: Enable enhanced personalization and remember your choices.
– Analytics Cookies: Help us understand website performance and visitor behavior (e.g., using Google Analytics).
– Performance Cookies: Improve speed and performance of site functionalities.
These technologies may collect pseudonymized or aggregate data and do not typically enable us to identify you directly.
10. Cookie Management and Compliance
Upon first visit to my-minx.com, you are provided with a cookie banner explaining the use of cookies, where you can grant or deny consent in compliance with GDPR and CCPA. You can manage your consent preferences through our Cookie Settings panel or by adjusting your browser settings.
Under CCPA, you may exercise your right to opt out of the “sale” of personal data by using the “Do Not Sell My Personal Information” link where offered. While we do not directly sell personal information for monetary value, some third-party analytics or advertising partners may receive data that could fall under the CCPA’s definition of “sale.”
11. Children’s Privacy
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal data from children without verified parental consent. If we become aware that data has been collected from an individual under 13 without parental authorization, we will delete that data promptly.
If you are a parent or guardian and believe your child has submitted information to us, please contact us at [email protected].
12. Policy Updates and Notifications
This Privacy Policy may be revised over time to reflect changes in regulatory requirements or our data management practices. Any substantive changes will be posted on my-minx.com, and where required under applicable laws, we will notify you directly, such as by email or a notification on our homepage.
We encourage you to periodically review our Privacy Policy to stay updated on how your information is protected.
13. Contact Us
If you have any questions about this Privacy Policy, your rights, or our data practices, please do not hesitate to contact:
My Minx
Email: [email protected]
Compliance Statement
My Minx is committed to complying fully with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and all applicable global data privacy laws. Your trust is important to us, and we welcome your inquiries regarding your privacy and data security at any time via [email protected].