Privacy Policy
Welcome to Bring In The Community (“we,” “us,” or “our”). We are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
At bringinthecommunity.com, we prioritize the confidentiality, security, and integrity of your personal information. Our privacy practices are guided by the principles of transparency, fairness, lawfulness, and accountability, and we are committed to implementing high standards of data protection to preserve your trust.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through our website, bringinthecommunity.com, and any related services or communications. Bring In The Community acts as the data controller, responsible for determining the purposes and means of processing your personal data. If you have any questions about our data practices, you can contact us at [email protected].
3. Categories of Personal Data We Process
We collect and process the following categories of personal data in the course of providing our services:
(a) Usage Data
Includes: IP address, browser type and version, time zone setting, referring website URLs, clickstream data, pages viewed, time spent on pages, error messages, and other diagnostic data captured via analytics platforms.
(b) Account Data
Includes: first and last name, email address, physical address, phone number, and other identifiers you provide during registration or account creation.
(c) Profile Data
Includes: preferences, profile settings, purchase history, browsing behavior, and personalized content preferences.
(d) Communication Data
Includes: information contained in or related to inquiries, support requests, correspondence, and contact history via email or website forms.
(e) Technical Data
Includes: device type, operating system, hardware versions, browser plug-in types, system configuration information, and diagnostic data.
(f) Transaction Data
Includes: payment and billing details, order history, shipping and delivery details, and payment status from trusted third-party payment processors.
(g) Preference Data
Includes: marketing and communication preferences, product interests, survey responses, and consent records.
4. Legal Bases for Processing
We rely on several legal grounds to process your personal data, including:
– Consent: When you have explicitly provided consent for specific purposes (e.g., receiving marketing emails).
– Contractual necessity: When processing is necessary to perform our contractual obligations with you (e.g., account management, order fulfillment).
– Legal compliance: Where processing is required by law (e.g., tax records, regulatory obligations).
– Legitimate interests: Where processing serves our interests in a way that does not override your fundamental rights (e.g., service improvements, fraud prevention, website analytics).
5. Your Rights Under Data Protection Laws
You have the following rights under GDPR and, where applicable, under the CCPA:
– Right of Access: Obtain confirmation of whether your data is being processed and request a copy.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data, subject to legal exceptions.
– Right to Restrict Processing: Ask us to limit the use of your data under certain conditions.
– Right to Data Portability: Request the transfer of your data to another provider in a structured, machine-readable format.
– Right to Object: Object to processing based on legitimate interests, including direct marketing.
– Right Not to Be Discriminated Against (CCPA): You will not be denied goods or services or charged different prices if you exercise your rights.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational safeguards to ensure your personal data is secure and protected from unauthorized access, alteration, disclosure, or destruction. These include:
– Fully encrypted data at rest and in transit via TLS and SSL protocols
– Multi-factor access controls for systems and administrative tools
– Regular security assessments, firewalls, and intrusion detection systems
– Scheduled data backups and disaster recovery procedures
– Employee training on data protection responsibilities and incident response
7. International Data Transfers
Your personal data may be processed in jurisdictions outside of your country, including in the United States and other countries with different data protection standards. We utilize appropriate safeguards for international data transfers, including:
– European Commission Standard Contractual Clauses
– UK International Data Transfer Addendum
– Other legally compliant mechanisms as adopted and updated by regulatory authorities
8. Data Retention
We retain personal data for no longer than is necessary to fulfill the purposes outlined in this Privacy Policy. Retention periods vary by data category:
– Usage Data: Retained for up to 2 years for analytics and diagnostics
– Account and Profile Data: Retained until account closure and thereafter for up to 7 years to comply with legal obligations
– Transaction Data: Retained for 7 years in accordance with financial regulations
– Communication Data: Retained for 3 years from last user interaction
– Marketing and Preference Data: Retained until you withdraw your consent or object to processing
9. Cookie Policy
bringinthecommunity.com uses cookies and similar tracking technologies to enhance functionality, improve usability, understand user behavior, and provide personalized experiences.
Types of cookies used:
– Essential Cookies: Required for website functionality (e.g., authentication, login sessions).
– Functional Cookies: Enable preferences such as language settings and accessibility features.
– Performance Cookies: Collect aggregate data on how users interact with the site (e.g., Google Analytics).
– Analytical and Marketing Cookies: Measure the effectiveness of campaigns and tailor offers to user interests.
For details on specific cookies and providers, please consult our full Cookie Policy (available on bringinthecommunity.com).
10. Cookie Management and Compliance
Visitors to bringinthecommunity.com may manage cookie preferences via our consent management tool upon arrival or through browser settings. You may refuse non-essential cookies and withdraw consent at any time with effect for the future.
Our use of cookies complies with the ePrivacy Directive, GDPR, and CCPA standards. CCPA-compliant opt-out mechanisms are in place to prevent the sale or sharing of personal data.
11. Protections for Children Under 13
We do not knowingly collect or solicit personal data from individuals under the age of 13. If we become aware that a child under 13 has provided us with personal data, we will take steps to delete such information promptly. Parents or legal guardians who believe their child has submitted data without consent should contact us at [email protected].
12. Changes to This Privacy Policy
We reserve the right to update, modify, or amend this Privacy Policy from time to time to reflect changes in our practices or legal obligations. Any material changes will be communicated via prominent notices on bringinthecommunity.com or through direct communication where appropriate.
We encourage users to review this policy periodically to remain informed about how we are protecting their information.
13. Contact Us
If you have any questions about this Privacy Policy, your rights, or how we handle your personal data, you may contact us at:
Email: [email protected]
We are committed to handling your concerns with professionalism and resolve.
Thank you for trusting bringinthecommunity.com. We adhere to current data protection rules and will continue to uphold your rights and privacy in every interaction with our platform.