Privacy Policy
1. Introduction
At sfmayor.com (“we,” “us,” or “our”), your privacy is our top priority. We are committed to safeguarding the personal information of our users and ensuring full compliance with all applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, store, and secure your personal data, as well as your rights and choices regarding the information we process.
2. Scope of the Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through our website, sfmayor.com, and associated services. For the purposes of the GDPR and other applicable laws, sfmayor.com is the data controller responsible for your personal data. If you have any questions about how your personal data is handled, please contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Information about how you use our website, including browser type and version, IP address, geographical location, referral source, page views, session duration, and site navigation paths.
b. Account Data
Information you provide when you register or update an account, including your full name, postal address, email address, and telephone number.
c. Profile Data
Information related to your preferences, purchase history, behavior on the site, and any interests you indicate.
d. Communication Data
Records of your communications with us, including inquiries, support requests, and contact history.
e. Technical Data
Details about the device you use to access our services, such as model, operating system, browser settings, screen resolution, and local time zone.
f. Transaction Data
Data related to any purchases made through sfmayor.com, including order information, payment method (excluding full card details), shipping addresses, and billing details.
g. Preference Data
Information concerning your consent to receive marketing communications, and preferences with respect to product and service offerings.
4. Legal Bases for Processing
We process your personal data based on the following legal foundations:
– Consent: Where you have expressly given us permission to process your information.
– Contract: Where processing is necessary to perform a contract with you or to take steps at your request prior to entering into a contract.
– Legitimate Interest: When processing is needed for our legitimate business interests, provided those interests are not overridden by your data protection rights.
– Legal Obligation: When processing is required for us to comply with applicable laws and regulations.
5. Your Rights
Under data protection laws such as the GDPR and CCPA, you have the following rights concerning your personal data:
– Right of Access: Obtain a copy of the personal information we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your personal information, subject to lawful retention requirements.
– Right to Restriction: Ask us to suppress the processing of your personal data under certain circumstances.
– Right to Data Portability: Request transfer of your data to another organization or directly to you.
– Right to Object: You may object to processing based on legitimate interest and to direct marketing at any time.
– Right to Non-Discrimination: Under CCPA, you may not receive discriminatory treatment for exercising your rights.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a range of technical and organizational security measures to protect your personal data. These include, but are not limited to:
– Secure encryption for data at rest and in transit
– Restricted access based on role and necessity
– Regular backups and data recovery processes
– Employee training and clear data protection procedures
– Periodic security audits and risk assessments
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA), we ensure adequate protection through mechanisms such as Standard Contractual Clauses approved by the European Commission, or other legally recognized frameworks. These safeguards are in place to ensure your privacy rights are upheld regardless of regional differences in data protection laws.
8. Data Retention
We retain your personal data only as long as necessary for the purposes for which it was collected, including to comply with legal, regulatory, tax, accounting, or reporting requirements. Data retention periods may vary by data category:
– Account Data and Profile Data: Stored until your account is closed or upon request for deletion
– Usage and Technical Data: Retained for a period of up to 12 months for analytics and security
– Transaction Data: Retained for up to 7 years to comply with financial and legal obligations
– Communication Data: Stored for up to 24 months from last activity
– Marketing Data: Maintained until you withdraw your consent or unsubscribe
9. Cookie Policy
We use cookies and similar tracking technologies to make your browsing experience more personalized and efficient. The types of cookies we use include:
– Essential Cookies: Necessary for core website features such as login authentication and security.
– Functional Cookies: Enhance website functionality such as remembering user preferences and settings.
– Analytics Cookies: Help us understand how users interact with our site, facilitating performance improvements.
– Performance Cookies: Measure and analyze website performance metrics to optimize speed and responsiveness.
10. Cookie Management and Compliance with GDPR & CCPA
You are provided with a choice regarding cookie usage through our cookie banner and preferences center. You may change your cookie preferences at any time in your browser settings or using the preference management tool provided on sfmayor.com. Under GDPR and CCPA, you may also request to opt out of data selling, profiling, or targeted advertising via designated Do Not Sell or Do Not Track mechanisms, which we honor to the fullest extent required by law.
11. Children’s Privacy
sfmayor.com is not intended for use by individuals under the age of 13. We do not knowingly collect or solicit personal data from children. If we become aware that we have inadvertently gathered information from a child under 13, we will take prompt steps to delete such information from our systems. Parents or guardians who believe their child has submitted personal data to us are encouraged to contact us at [email protected].
12. Updates to This Policy
We may revise this Privacy Policy from time to time to accommodate changes in our services, technology, or legal environment. When we make material changes, we will notify you through appropriate channels, including a notice on sfmayor.com or direct communication by email.
13. Contact Information
If you have questions, concerns, or would like to exercise your data protection rights, please do not hesitate to contact us:
Email: [email protected]
Website: https://sfmayor.com
We are committed to full transparency and compliance with applicable privacy laws. You may also lodge a complaint with a data protection authority if you believe your rights have been violated.
This Privacy Policy reflects our commitment to maintaining your trust and upholding your right to privacy. Please reach out to us at [email protected] with any privacy-related inquiries.
