Privacy Policy for jpsmythe.com

1. Introduction

At jpsmythe.com, we are committed to safeguarding your privacy and protecting your personal data with the utmost care and transparency. This Privacy Policy outlines how we collect, use, disclose, and manage your personal information in alignment with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Respect for your privacy and your rights as a data subject is an integral part of our business and operations.

We strive to ensure that our data handling practices are transparent, fair, and secure, and are designed with your privacy in mind.

2. Scope of Policy and Role of the Data Controller

This Privacy Policy applies to all users, visitors, customers, and data subjects who interact with jpsmythe.com (the “Website”). It encompasses all personal data collected via our website, email communications, digital platforms, and related services.

For the purposes of GDPR and other applicable regulations, jpsmythe.com is the data controller for personal data collected through the Website. If you have any questions regarding this Privacy Policy or your data, you may contact us at [email protected].

3. Categories of Personal Data Processed

We collect and process the following categories of personal data:

a. Usage Data:
Information collected automatically about your interactions with the Website. This includes browser type, IP address, device identifier, time spent on pages, referring website addresses, and browsing session timestamps.

b. Account Data:
Information provided when you register or create an account, such as your full name, email address, phone number, and mailing address.

c. Profile Data:
Details related to your preferences, order history, user behavior, language settings, and other profile-based engagement with our Website or services.

d. Communication Data:
Records of your communications with us through contact forms, email messages, or customer support, including message content, timestamps, and support ticket history.

e. Technical Data:
Device-specific and system configuration data including operating systems, mobile device identifiers, browser configurations, and connectivity status.

f. Transaction Data:
Details related to purchases of products or services, billing and shipping information, payment method (e.g., last four digits of credit card), and invoicing history.

g. Preference Data:
Marketing and communication preferences, including opt-in statuses, product or topic interests, and consent for promotional outreach.

4. Legal Bases for Processing

We process personal data based on one or more of the following lawful bases under applicable data protection law:

– Contractual Necessity: To provide products and services you request, including e-commerce transactions and service management.
– Consent: When you explicitly agree to data processing (e.g., marketing communications or the use of non-essential cookies).
– Legitimate Interests: To enhance user experience, analyze Website usage, detect fraud, and improve product offerings, only if such interests are not overridden by your rights and freedoms.
– Legal Obligations: To comply with tax, regulatory, or legal duties imposed on us.

5. Your Legal Rights

Under GDPR, CCPA, and other laws, you may exercise the following rights in connection with your personal data:

– Right of Access: Request confirmation of whether we process your data and access to such data.
– Right of Rectification: Request corrections to any inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your data where legally permissible.
– Right to Restriction: Request the limitation of processing in specified circumstances.
– Right to Data Portability: Receive your data in a structured, commonly-used format for transmission to another provider.
– Right to Object: Object to certain data processing activities based on our legitimate interests or direct marketing.

To invoke any of these rights, contact us at [email protected]. We will respond to authorized and verified requests in accordance with applicable laws.

6. Security Measures

We implement appropriate organizational, technical, and physical safeguards to protect your personal data against unauthorized access, disclosure, alteration, or destruction. These measures include but are not limited to:

– End-to-end encryption of data transmission
– Role-based access controls and authentication mechanisms
– Regular system updates and patch management
– Data backup and recovery procedures
– Staff data privacy training and awareness

7. International Data Transfers

If personal data is transferred outside of the European Economic Area (EEA) or other applicable jurisdictions, such transfers are made:

– On the basis of Standard Contractual Clauses approved by the European Commission
– Pursuant to adequacy decisions where applicable
– With your explicit consent, when required

We take all reasonable steps to ensure your data is adequately protected regardless of transfer destination.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected. The specific timeframes are as follows:

– Usage and Technical Data: Retained for 12 months for analytics and traceability
– Account and Profile Data: Retained for active account duration and up to 6 years following closure
– Communication Data: Retained for 3 years following last contact
– Transaction Data: Retained for up to 7 years for financial record-keeping
– Preference Data: Retained until you withdraw consent or modify preferences

Data may be anonymized or securely deleted once it is no longer necessary.

9. Cookie Policy

Cookies are small text files stored on your browser when visiting websites. jpsmythe.com uses cookies for the following purposes:

– Essential Cookies: Necessary for website functionality (e.g., authentication, security, operational continuity)
– Functional Cookies: Enhance user experience by remembering preferences and settings
– Analytics Cookies: Gather information on how visitors interact with the Website to improve performance
– Performance Cookies: Monitor traffic sources and web page loading speeds

10. Cookie Management and Compliance

In compliance with GDPR and CCPA requirements, a cookie consent mechanism is presented upon your first visit to our Website. You may manage or withdraw your cookie consent at any time using the cookie settings tool accessible from any page of jpsmythe.com.

Browsers also provide control options for disabling or deleting cookies entirely. Doing so may impact certain functionality of the Website.

11. Children’s Privacy

We do not knowingly collect or process personal data from children under the age of 13. If a parent or guardian becomes aware that a child has provided us with personal data without appropriate consent, they should contact us at [email protected], and we will promptly delete such information.

12. Policy Updates and Notifications

This Privacy Policy may be updated or amended periodically to reflect legal, regulatory, or operational changes. Material updates will be communicated via notices on jpsmythe.com or through direct communication channels, where appropriate.

We encourage you to review this policy regularly to remain informed on how we protect your personal data.

13. Contacting Us

For questions, concerns, or requests concerning your personal data or privacy rights, please contact us at:

Email: [email protected]
Website: https://jpsmythe.com

We are fully compliant with applicable privacy laws and committed to protecting your rights and data. Please reach out with any concerns—we are here to ensure your information is treated with care and integrity.

© 2025 Jpsmythe, All rights reserved.