Privacy Policy
1. Introduction
At The Cosey (thecosey.com), we are firmly committed to safeguarding the privacy of our website visitors, users, and customers. We recognize the importance of protecting your personal information and ensuring your rights to privacy and data protection in accordance with applicable laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”). This Privacy Policy explains how your personal data is collected, used, shared, and safeguarded, and outlines your rights with respect to that data.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal information collected through this website, thecosey.com, and any associated digital properties.
For the purpose of data protection laws, The Cosey is the “data controller” of your personal information. This means that we determine the purposes and means of the processing of such personal data. If you have any questions about this policy or how we handle your personal data, you may contact us at: [email protected].
3. Categories of Data Processed
We may collect, use, store, and transfer the following categories of personal data:
– Usage Data: Includes information about how you use our website, such as your IP address, browser type, geographic location, time zone, referring URLs, page views, navigation paths, session durations, and interactions with thecosey.com.
– Account Data: Includes details you provide during account registration or transactions, such as your full name, email address, postal address, phone number, and account credentials.
– Profile Data: Includes your interests, preferences, purchase history, product reviews, interactions with content, and behavioral data derived from your engagement with our platform.
– Communication Data: Includes emails, messages, support requests, contact forms, direct communications, and records of interactions with our support and customer service teams.
– Technical Data: Includes data about your device, such as operating system, platform, system configuration, device identifiers, and other diagnostic or traffic data used for support and analysis.
– Transaction Data: Includes information related to payments, orders, billing data, delivery addresses, and purchase confirmation records.
– Preference Data: Includes marketing and communications preferences, subscription settings, survey responses, and interests you express through your interactions with thecosey.com.
4. Legal Bases for Processing
We process personal data only when a lawful basis exists. The lawful bases under the GDPR that may apply include:
– Consent: Where you provide explicit consent for specific data processing activities, such as receiving marketing communications.
– Contractual Necessity: Where the processing is required for the performance of a contract to which you are a party, or to take pre-contractual steps at your request (e.g., fulfilling your order).
– Legal Obligation: Where we are required by applicable law to process your personal data.
– Legitimate Interests: Where processing is necessary for our legitimate business interests, such as improving our services, fraud prevention, and website analytics, provided those interests are not overridden by your fundamental rights and freedoms.
5. Your Rights
Subject to applicable data protection law, you have the following rights regarding your personal data:
– Right of Access: You can request access to the personal data we hold about you.
– Right of Rectification: You have the right to request correction of any inaccurate or incomplete data.
– Right to Erasure: You may request that we delete your personal data, provided there is no legal requirement for us to retain it.
– Right to Restriction: You can ask us to restrict the processing of your data in certain situations.
– Right to Data Portability: You have the right to receive a copy of your data in a commonly used, machine-readable format and to request transfer of your data to a third party.
– Right to Object: Where we rely on legitimate interests for processing, you can object to such processing. You may also object to processing for direct marketing purposes at any time.
To exercise your rights, please contact us at [email protected]. Proof of identity may be required for verification purposes.
6. Security Measures
We employ appropriate technical and organizational measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These include:
– Transport Layer Security (TLS) encryption for data-in-transit.
– Role-based access restrictions on backend systems.
– Regular system backups and secure data storage.
– Routine staff training on privacy and data security best practices.
Despite our best efforts, no online transmission can be guaranteed to be entirely secure. Users are responsible for safeguarding their passwords and login information.
7. International Transfers
Personal data collected through thecosey.com may be stored and processed on servers located in jurisdictions outside your country of residence. Where applicable, we ensure adequate protections are in place, such as Standard Contractual Clauses approved by the European Commission and compliance with relevant international data transfer regulations.
8. Data Retention
We only retain personal data for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, regulatory, or contractual obligations.
Retention periods by data category include:
– Account and Profile Data: retained while the account is active and up to 3 years post-deactivation.
– Transaction Data: retained for up to 7 years to comply with financial and tax regulations.
– Communication Data: retained for 2 years following the resolution of an inquiry or dispute.
– Marketing Preference Data: retained as long as consent is valid or until you unsubscribe.
– Technical & Usage Data: anonymized or deleted after 24 months.
Once retention periods expire, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies for various purposes:
– Essential Cookies: Required for core functions such as navigation and login. Disabling these may impact website performance.
– Functional Cookies: Allow us to remember your preferences and settings to enhance your user experience.
– Analytics Cookies: Help us understand how users interact with our site (e.g., Google Analytics) to monitor performance and optimize content.
– Performance Cookies: Collect data to improve speed and usability, such as page load times and interaction metrics.
10. Cookie Management and GDPR/CCPA Compliance
In accordance with GDPR and CCPA, users are given clear choices with respect to cookie settings. Upon first visit to thecosey.com, you are prompted to accept or modify cookie preferences.
You may also manage or disable cookies via your browser settings at any time. Certain third-party services (e.g., Google) may provide additional opt-out tools. For California residents, we honor “Do Not Sell My Personal Information” requests according to CCPA obligations.
To manage your privacy and cookie preferences on our site, please access our Cookie Settings panel located in the footer of every page.
11. Children’s Privacy
The Cosey does not knowingly collect or solicit personal data from children under the age of 13. If we become aware that a user under 13 has provided personal data without verified parental consent, we will delete such data promptly and in accordance with applicable regulations.
If you believe we may have collected data from a child under 13, please contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to amend this Privacy Policy as needed to comply with legal obligations or business requirements. Substantive updates will be communicated to users through our website or via email, where required. Continued use of thecosey.com after such changes signifies your acceptance of the updated Privacy Policy.
We encourage you to review this page periodically to remain informed about how your data is protected.
13. Contact
If you have any questions, concerns, or requests related to this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
We are committed to full compliance with data protection laws and endeavor to uphold your privacy rights to the highest standards. Please do not hesitate to reach out if you have any questions or concerns about how your personal information is handled at The Cosey.