Privacy Policy
1. Introduction
At sosmorningsickness.com (“Website”, “we”, “us”, or “our”), we are firmly committed to protecting your privacy and ensuring the security of the personal data you share with us. This Privacy Policy outlines our practices regarding the collection, use, disclosure, and protection of your information, in full compliance with applicable privacy laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of sosmorningsickness.com and describes how we, as the data controller, collect and process personal data in connection with your use of our Website, services, communications, and transactions. If you have any questions regarding our data practices, you may contact us at [email protected].
3. Categories of Data Processed
We collect and process various categories of personal data depending on your interactions with our Website.
a. Usage Data
We collect data relating to your use of the Website, such as your IP address, browser type, geographical location, referral source, length of visit, and pages viewed.
b. Account Data
When you register, purchase products, or otherwise interact with our services, we may collect account data including your name, mailing address, email address, and phone number.
c. Profile Data
We may collect data reflecting your preferences, prior purchases, interactions with products, and behavioral patterns while navigating the Website.
d. Communication Data
Any data you provide to us when you submit support inquiries, engage in chat support, or send us emails, including the content of the communication and contact history.
e. Technical Data
Device and system configuration information such as operating system type, device model, time zone setting, and platform details.
f. Transaction Data
Details related to product purchases and deliveries, including billing addresses, payment confirmations, order history, and shipping details. No full credit card numbers are stored on our servers; secure transactions are processed through third-party payment platforms.
g. Preference Data
Information about your marketing preferences, newsletter opt-ins, and indicated interests in specific product categories.
4. Legal Bases for Processing
We process your personal data based on the following legal grounds:
– Consent: When you provide affirmative, opt-in consent for specific data uses (e.g., marketing communications).
– Contractual Necessity: When processing is required to fulfill a contract or pre-contractual request (e.g., order fulfillment).
– Legitimate Interest: For actions necessary for the proper running of our business, such as fraud prevention, service optimization, or Website analytics, provided they do not override your data protection rights.
– Legal Obligation: Where required for compliance with legal or regulatory duties.
5. Your Rights
Subject to legal limitations, you may have the following rights regarding your personal data:
– Right of Access: Obtain confirmation about whether we process your data and access a copy.
– Right to Rectification: Request correction of inaccurate or incomplete information.
– Right to Erasure: Request deletion of your data where there is no overriding justification for continued processing.
– Right to Restrict Processing: Ask us to restrict data processing in certain scenarios.
– Right to Data Portability: Obtain a copy of your data in a commonly used, machine-readable format and request that we transfer it to another controller.
– Right to Object: Object to processing based on legitimate interests or direct marketing at any time.
Residents of California may also have the right to request details about categories of personal information collected or shared and request to opt-out of the sale or sharing of data under the CCPA.
To exercise these rights, you may contact us at [email protected]. We may require verification of your identity.
6. Security Measures
We implement a range of organizational, administrative, and technical safeguards to maintain the security and integrity of personal data, such as:
– SSL encryption for secure communication
– Role-based access controls to limit internal data access
– Regular data backups and integrity audits
– Staff training on data protection principles and protocols
7. International Transfers
We may transfer your personal data outside the European Economic Area (EEA). In such cases, appropriate safeguards under GDPR are implemented, including the use of Standard Contractual Clauses (SCCs) or verification of adequacy decisions for certain jurisdictions.
If you are accessing sosmorningsickness.com from a region with data localization laws, we take necessary steps to comply with local requirements where applicable.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes of processing, comply with legal retention obligations, or resolve disputes.
– Usage and technical data: retained for up to 12 months
– Account and profile data: retained for up to 7 years after account closure
– Communication data: retained for up to 3 years following the last contact
– Transaction data: retained for accounting and legal compliance up to 7 years
– Preference and marketing data: retained until you withdraw consent or object
9. Cookie Policy
Our Website uses cookies and similar technologies to improve user experience and functionality. Types of cookies in use include:
– Essential Cookies: Necessary for the operation of the Website (e.g., login sessions).
– Functional Cookies: Personalize content and remember user preferences.
– Analytical Cookies: Collect anonymized data about traffic and usage trends (e.g., through Google Analytics).
– Performance Cookies: Optimize site performance and detect technical errors.
10. Cookie Management and Compliance
You are entitled to manage how your data is tracked via cookies. On your first visit to sosmorningsickness.com, you will be presented with a cookie banner that allows you to accept or reject non-essential cookies. You may, at any time, withdraw this consent or modify preferences through your browser settings or our cookie management tool.
We honor “Do Not Track” signals and provide opt-out functionality that complies with CCPA and GDPR requirements for user consent.
11. Special Protections for Children Under 13
Our Website is not intended for children under 13 years of age. We do not knowingly collect or solicit personal data from minors. If you are a parent or guardian and believe that your child has provided us with personal information, please contact [email protected] so we may take appropriate action, including deletion of such data.
12. Updates to this Policy
We reserve the right to make changes to this Privacy Policy to reflect legal, technical, or operational developments. In the event of material updates, we will provide clear notice via the Website and, where appropriate, via email notification or banners.
13. Contact
For any inquiries regarding this Privacy Policy or how your data is handled, you may contact us at:
Email: [email protected]
Website: https://sosmorningsickness.com
We are committed to ensuring your rights are respected and any privacy concerns are resolved in a timely and transparent manner.
This Privacy Policy reflects our commitment to safeguard your personal data and to operate in full compliance with global privacy regulations. Please do not hesitate to contact us for further information or to exercise your data rights.