Privacy Policy for cowboy-junkies.com
Cowboy Junkies (“we”, “our”, “us”) is committed to protecting and respecting the privacy of all visitors, users, and customers who interact with our website at cowboy-junkies.com. We are dedicated to upholding the highest standards of data protection and complying with all applicable privacy and data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy describes how we collect, use, store, protect, and share personal data.
1. Commitment to Privacy and Data Protection
We understand the importance of privacy and the need for individuals to retain control over their personal information. Our privacy-first approach ensures that only the data necessary to provide and improve our services is collected and processed. We maintain a rigorous data governance framework to ensure the confidentiality, integrity, and lawful processing of all personal data entrusted to us.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through cowboy-junkies.com and related services. Cowboy Junkies is the data controller for the purposes of the GDPR and is responsible for determining the purposes and means of processing your personal data.
If you have questions about this policy or your data, you may contact us at [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal information:
a. Usage Data:
– Internet Protocol (IP) address
– Browser type and version
– Time zone settings
– Date and time of visits
– Pages viewed and navigation paths
– Session frequency and interaction data
– Referral sources
b. Account Data:
– Full name
– Shipping and billing addresses
– Email address
– Telephone number
– Account credentials
c. Profile Data:
– Purchase history and shopping behavior
– Wishlist and item preferences
– User profile settings
d. Communication Data:
– Customer service messages
– Feedback submissions
– Email or form correspondences
e. Technical Data:
– Device type and model
– Operating system and platform
– System and browser configurations
– Diagnostic data
f. Transaction Data:
– Payment information (processed via secure third parties)
– Order and invoice history
– Delivery status and logistics details
g. Preference Data:
– Marketing consents and opt-in choices
– Product category preferences
– Event participation and survey responses
4. Legal Bases for Processing
We process personal data only when a valid legal basis exists. Depending on the context, your data is processed on one or more of the following grounds:
– Consent: Where legally required, we seek your explicit permission before collecting and using your data.
– Contractual necessity: To fulfill contractual obligations, such as processing orders or providing support.
– Legitimate interest: For activities that are necessary to our operational interests in ways that do not override your privacy rights, such as website optimization or analytics.
– Legal obligation: To comply with applicable laws and legal obligations.
5. Your Data Protection Rights
Under applicable data protection laws, you may exercise the following rights:
– Right of Access: You may request information about the personal data we hold about you.
– Right to Rectification: You can request correction of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data under certain conditions.
– Right to Restrict Processing: You may request limited use of your data in specific circumstances.
– Right to Data Portability: You can request to receive your data in a structured, machine-readable format.
– Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: Where processing is based on your consent, you may withdraw this at any time.
These rights can be exercised by contacting us at [email protected].
6. Security Measures
We maintain a comprehensive information security program designed to protect personal data. Our protective measures include:
– Encryption of data during transmission and storage
– Role-based access controls and authentication
– Regular data backups and disaster recovery protocols
– Staff training on privacy and security best practices
– Vulnerability assessments and monitoring systems
7. International Data Transfers
When transferring personal data outside of the European Economic Area (EEA) or other jurisdictions with data transfer restrictions, we implement safeguards including:
– Standard Contractual Clauses approved by the European Commission
– Data processing agreements with third-party vendors
– Jurisdictional compliance by destination countries
– Technical and organizational controls to ensure transferred data remains secure
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes it was collected for, including the following retention periods:
– Usage Data: 26 months (or shorter, where required by law)
– Account Data: Retained until account closure, plus 6 years for tax/legal compliance
– Profile Data: Retained while account is active or until user deletes profile preferences
– Communication Data: 3 years from last interaction
– Technical Data: 2 years for diagnostic and support purposes
– Transaction Data: 7 years for financial auditing and compliance
– Preference Data: Retained until user updates consent preferences
9. Cookie Policy
cowboy-junkies.com uses cookies and similar technologies to provide a reliable and personalized browsing experience. Cookies are used for the following purposes:
– Essential Cookies: Necessary for site functionality (e.g., shopping cart, login)
– Functional Cookies: Remember user choices and preferences
– Analytics Cookies: Collect anonymous usage data to improve site performance
– Performance Cookies: Monitor system errors and user engagement
10. Cookie Management & GDPR/CCPA Compliance
Upon your first visit, we provide clear notice of cookie usage with the ability to manage consent. You may modify preferences via our cookie banner or by adjusting your browser settings. Where required under the GDPR and CCPA, non-essential cookies will only be activated after you provide opt-in consent.
You may also opt out of certain third-party advertising cookies via links such as the Digital Advertising Alliance (DAA) or Network Advertising Initiative (NAI).
11. Children’s Privacy
Our website and services are not directed to individuals under the age of 13. We do not knowingly collect personal data from children without verified parental consent. If we become aware that a child under 13 has provided personal information, we will delete such data promptly.
12. Policy Updates and Notifications
We reserve the right to revise this Privacy Policy to reflect changes in legal or operational requirements. We will notify you of material updates by posting the revised policy on cowboy-junkies.com and, where appropriate, through direct communication. You are encouraged to review this Privacy Policy periodically.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
Website: https://www.cowboy-junkies.com
We are committed to addressing any privacy-related inquiries promptly and transparently.
Closing Statement
At cowboy-junkies.com, your privacy is paramount. We remain fully committed to complying with all applicable data protection laws and upholding the rights of all users. Should you have any concerns regarding your privacy or data, we encourage you to contact us directly at [email protected].