Privacy Policy
This Privacy Policy explains how we, at Mistress Trinity LA (“we”, “our”, or “us”), collect, use, disclose, and safeguard your personal data when you visit and interact with our website at mistresstrinityla.com. We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Policy articulates our practices regarding your personal data and your associated rights.
1. Commitment to Privacy and Data Protection
Your privacy matters to us. We are dedicated to handling your personal information with care, transparency, and sensitivity. We implement strict data protection principles to ensure the confidentiality, integrity, and security of your personal data when processed through mistresstrinityla.com.
2. Scope of This Policy and Role of the Data Controller
This Privacy Policy applies to all visitors, users, and others who access mistresstrinityla.com. We act as the “data controller” under GDPR and “business” under CCPA for the collection and usage of personal data through our website. This Policy covers information collected through direct interactions, automated technologies, and third-party integrations on our site.
3. Categories of Data We Collect and Process
We may collect and process the following categories of personal data:
a. Usage Data
Includes details about how you use our website, such as your IP address, browser type and version, operating system, referral source, page views, interaction patterns, and session metadata.
b. Account Data
Includes information you provide when registering or maintaining an account with us, such as your full name, physical address, email address, phone number, and other identifiable details.
c. Profile Data
Includes purchase history, your preferences, feedback, survey responses, behavioral interactions, and custom content associated with your profile.
d. Communication Data
Includes records of your correspondence with us, including support requests, customer service inquiries, and related contact history.
e. Technical Data
Includes device information such as device type, screen resolution, language settings, internet service provider or mobile carrier, date/time stamps, and software configurations through which you access mistresstrinityla.com.
f. Transaction Data
Includes details related to any purchases or payments made, including billing details, transaction amount, delivery details, and payment method (processed through third-party payment providers).
g. Preference Data
Includes any marketing communication preferences, consent records, and information about your interest in products or services.
4. Legal Bases for Processing Personal Data
We rely on the following legal bases under GDPR to lawfully process your personal data:
– Consent: Where you have provided clear consent for specific processing activities (e.g., email marketing).
– Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request prior to entering into such a contract.
– Legal Obligation: Where required to comply with a legal or regulatory obligation.
– Legitimate Interests: Where processing is necessary for our legitimate interests—such as improving website functionality, enhancing user experience, and ensuring network and data security—unless those interests are overridden by your rights and freedoms.
5. Your Rights Under Applicable Laws
As a data subject under GDPR and a consumer under CCPA, you have the following rights concerning your personal data:
– Right of Access: To request access to the personal data we hold about you.
– Right to Rectification: To correct inaccurate personal data about you.
– Right to Erasure (“Right to be Forgotten”): To request deletion of your data, under specified circumstances.
– Right to Restriction: To limit processing under certain conditions.
– Right to Object: To object to our processing based on legitimate interests or direct marketing purposes.
– Right to Data Portability: To receive your data in a structured, commonly used format or transfer it to another controller.
– Right to Non-Discrimination: To not be discriminated against for exercising your CCPA rights.
– Right to Opt-Out: You may direct us not to sell or share your personal information.
Requests to exercise any of these rights may be submitted by contacting us at [email protected].
6. Security Measures
We employ robust technical and organizational safeguards to protect your data, including:
– Encryption in transit and at rest
– Role-based access controls
– Regular data backups
– Secure server configurations
– Ongoing employee training on data protection obligations
Although we strive for a high level of security, no system is entirely immune to unauthorized access. We encourage you to use complex passwords and to notify us if you suspect any security issues.
7. International Data Transfers
Your personal information may be transferred to and processed in countries outside of your residence, including jurisdictions where data protection laws may be less stringent than those of your own. Where such transfers occur, we implement lawful data transfer mechanisms such as standard contractual clauses (SCCs) approved by the European Commission to ensure your data is appropriately safeguarded.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, unless otherwise required by law. Specific retention periods include:
– Account and Profile Data: Retained while your account remains active and for 24 months thereafter.
– Transaction Data: Retained for a minimum of seven years for tax and accounting compliance.
– Communication Data: Retained for up to 36 months.
– Technical and Usage Data: Retained for analytics purposes for up to 12 months.
– Legal or Regulatory Obligations: Retention extended where applicable under law.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to improve user experience and analyze site activity. Cookies fall into the following categories:
– Essential Cookies: Required for site functionality, including session management and security.
– Functional Cookies: Enable preferences to be remembered (e.g., language settings).
– Analytical Cookies: Help us measure and improve performance by gathering usage statistics.
– Performance Cookies: Enhance the responsiveness and reliability of the site.
Cookies are stored on your device and may be managed or deleted at your discretion.
10. Cookie Management and Compliance with GDPR & CCPA
You may customize or withdraw your cookie preferences at any time using the cookie management banner upon your initial visit or by adjusting your browser settings. Where required, we seek your prior consent before setting non-essential cookies. Under both GDPR and CCPA, we honor user opt-out preferences and implement consent management tools to ensure compliance with regional requirements.
11. Special Protections for Children Under 13
Our website is not directed toward children under the age of 13, and we do not knowingly collect personal data from those under 13. If you are a parent or guardian and believe your child has provided personal information, please contact us at [email protected] so we can take appropriate action.
12. Privacy Policy Updates and User Notifications
We reserve the right to modify this Privacy Policy from time to time to reflect updates to our practices or to comply with legal or regulatory changes. Significant changes will be posted prominently on mistresstrinityla.com, and where legally required, we will notify you and obtain consent for material changes that affect your rights.
13. Contact Us
For any questions, concerns, or requests relating to this Privacy Policy or the processing of your personal data, please contact us at:
Email: [email protected]
We are committed to privacy, and we aim to ensure that your rights are respected and upheld when interacting with our platform. Mistresstrinityla.com complies with all relevant GDPR and CCPA provisions, and we strive to be transparent and user-focused in our data practices. Please do not hesitate to reach out with any privacy-related concerns.