Privacy Policy
1. Introduction
At PopSerious (“we,” “us,” or “our”), accessible via https://popserious.com, we are committed to upholding the highest standards of privacy and data protection. We respect the privacy of our users and visitors and are dedicated to handling your Personal Data in a secure, responsible, and transparent manner, in compliance with all applicable laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of This Policy & Data Controller Role
This Privacy Policy applies to all users and visitors of popserious.com and governs the collection, use, storage, and disclosure of personal information in both online and offline interactions with our services. For the purposes of applicable data protection legislation, PopSerious is the Data Controller of your Personal Data as described in this policy.
3. Categories of Personal Data We Process
We collect and process the following categories of Personal Data:
a. Usage Data
This includes information about how you use popserious.com, such as browser type and version, IP address, referral source, pages visited, session duration, and interactions with site elements.
b. Account Data
When you create an account or engage with our services, we may collect your name, email address, postal address, phone number, and login credentials.
c. Profile Data
This includes information related to your activities on popserious.com, such as purchase history, browsing preferences, saved items, and behavior-based attributes inferred from engagement.
d. Communication Data
Includes records of support interactions, customer service inquiries, emails to and from [email protected], and other forms of correspondence.
e. Technical Data
We collect device-specific information such as your operating system, hardware model, device identifiers, screen resolution, and browser system settings to ensure optimal functionality.
f. Transaction Data
This comprises payment and billing information, shipping addresses, order history, and other financial interactions related to transactions completed on popserious.com.
g. Preference Data
We keep track of your preferences regarding newsletters, marketing communication, language choice, and product interests when explicitly provided by you or inferred through usage behavior.
4. Legal Bases for Processing
We rely on the following lawful bases to process your Personal Data:
– Consent: When you have given clear permission for us to process your data, such as opting into marketing emails.
– Contractual necessity: To perform our obligations under a contract with you, for example, delivering products you purchase.
– Legitimate interests: Processing is necessary for our legitimate interests, such as improving site functionality or detecting fraudulent activity, provided these interests do not override your fundamental rights.
– Compliance with legal obligations: To fulfill legal requirements, such as tax or regulatory obligations.
5. Your Rights
In accordance with GDPR and CCPA, you have the following rights regarding your Personal Data:
– Right of Access: You may request access to your Personal Data we hold.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: Also known as the “right to be forgotten.”
– Right to Restriction: You may request limits on processing your data.
– Right to Data Portability: You may request your data in a structured, commonly-used format to transmit to another controller.
– Right to Object: You may object to processing where we rely on legitimate interests or direct marketing.
– Right not to be subject to automated decision-making or profiling.
– Right to Withdraw Consent: Where we rely on your consent, you may withdraw it at any time by contacting us at [email protected].
California residents additionally have the right:
– To know what personal data is collected, disclosed, or sold.
– To opt out of the sale of personal information.
– To equal service and price, even if rights under the CCPA are exercised.
6. Security Measures
We implement appropriate technical and organizational safeguards to ensure a level of security appropriate to the risks of data processing. These measures include, but are not limited to:
– TLS encryption for data in transit.
– Role-based access control and authentication.
– Secure cloud infrastructure compliant with industry standards.
– Daily automated backups and disaster recovery protocols.
– Ongoing security training for staff with data access.
7. International Data Transfers
Where your Personal Data is transferred outside the EEA, UK, or California, we utilize Standard Contractual Clauses approved by the European Commission and implement supplementary safeguards as required. We ensure that all international transfers are conducted in accordance with the applicable data protection laws to maintain data integrity and protection.
8. Data Retention
Your Personal Data is retained only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The general guidelines include:
– Account Data: Retained for as long as your account is active.
– Transaction Data: Retained for 7 years for tax and auditing purposes.
– Communication Records: Retained for 2 years post-resolution of your inquiry.
– Technical and Usage Data: Retained for up to 13 months for analytics.
– Preference and Profile Data: Retained until consent is withdrawn or the profile becomes inactive for 24 months.
9. Cookies and Similar Technologies
We use cookies and tracking technologies to improve user experience, analyze our traffic, personalize content, and support marketing efforts. Cookies used include:
– Essential Cookies: Critical for website functionality.
– Functional Cookies: Enhance user experience but not strictly necessary.
– Analytics Cookies: Help us understand user behavior and optimize the site.
– Performance Cookies: Track the performance of our services and detect bugs.
Third-party analytics services (e.g., Google Analytics) may also collect data under their own privacy policies.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, popserious.com enables users to manage their cookie preferences through our cookie banner and settings panel. Upon your first visit, you may accept or reject non-essential cookies. You can also modify your settings or withdraw consent at any time by revisiting our cookie preferences interface or adjusting your browser settings.
California residents may exercise their right to opt out of “sale” of personal data by using the “Do Not Sell My Personal Information” link when applicable.
11. Children’s Privacy
PopSerious does not knowingly collect or solicit personal information from children under the age of 13. If we become aware that information has been collected from a child under 13 without verified parental consent, we will delete it promptly. Parents or guardians with concerns should contact us at [email protected].
12. Changes to the Privacy Policy
We reserve the right to revise this Privacy Policy to reflect changes in legal requirements, technology advancements, or our practices. Any substantive changes will be communicated through our website or via direct communication in accordance with applicable law. Continued use of popserious.com signifies acceptance of the revised policy.
13. Contact Us
If you have questions about this Privacy Policy, how we process your Personal Data, or would like to exercise your privacy rights, you may contact us at:
Email: [email protected]
We are committed to complying with GDPR, CCPA, and all applicable privacy laws. Please do not hesitate to reach out with any questions or concerns regarding your personal data and privacy.