Privacy Policy for keystonesandrivets.com
1. Introduction
At keystonesandrivets.com, we are committed to upholding the highest standards of data protection and privacy. We understand the importance of safeguarding your personal information and are dedicated to ensuring transparency, integrity, and accountability in all aspects of our data processing activities. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use the website located at keystonesandrivets.com (the “Website”). For the purposes of applicable data protection legislation, the data controller is Keystones & Rivets, which determines the purposes and means of processing your personal data. You may contact us regarding any data protection concerns at [email protected].
3. Categories of Data Processed
We may process and collect the following categories of personal data about you:
a. Usage Data
Information about how you use our Website, including but not limited to your IP address, browser type and version, geographic location, time zone setting, session durations, pages visited, navigation paths, and other diagnostic data collected via automated technologies and analytic services.
b. Account Data
Identifiable information provided by you during account creation or sign-in processes, including your full name, postal address, email address, and contact phone number.
c. Profile Data
Information generated in connection with your interactions on the Website, such as demographic details, purchase history, lifestyle preferences, and behavioral data obtained through your browsing and transactional activities.
d. Communication Data
Records of communications you send to us, including enquiries, service requests, or feedback submitted via support forms, social media messages, or email correspondence.
e. Technical Data
Device identifiers, operating system type and version, browser plug-in types, system configurations, connection information, screen resolutions, and other technical metrics pertaining to the devices you use to access the Website.
f. Transaction Data
Details of goods and services you have purchased from us, including order confirmations, billing addresses, payment card information processed through secure third-party processors, and shipping or delivery details.
g. Preference Data
Your consents and preferences related to marketing communications, newsletter subscriptions, advertising settings, and product interest indicators derived from behavioral analytics and surveys.
4. Legal Bases for Processing
We rely on the following lawful bases for processing your personal data:
– Consent: For marketing emails, non-essential cookies, and processing sensitive data where required.
– Contractual Necessity: For processing necessary to fulfill a contract with you, including order fulfillment, account creation, and delivery logistics.
– Legitimate Interests: For internal analytics, fraud prevention, business development, security enhancement, and improvement of our services, provided these interests are not overridden by your rights.
– Legal Obligation: For processing required to comply with applicable laws and regulatory requirements.
5. Your Rights
Subject to applicable data protection laws, you have the following rights in relation to your personal data:
– Right to Access – You may request access to the personal data we hold about you.
– Right to Rectification – You may request that we correct any inaccuracies in your data.
– Right to Erasure – You may request the deletion of your personal data, subject to legal or contractual obligations.
– Right to Restriction – You may request restrictions on how we process your data.
– Right to Data Portability – You may request to receive your personal data in a structured, commonly used, machine-readable format.
– Right to Object – Where we rely on legitimate interests or send you direct marketing, you have the right to object to such processing.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
– End-to-end encryption of data at rest and in transit.
– Secure access control measures and role-based permissions.
– Routine data backups and off-site storage redundancy.
– Staff training programs and access monitoring protocols.
– Vendor and third-party due diligence on data processors.
While we take reasonable precautions, no digital transmission or storage system is completely secure. Users are advised to practice safe online behavior.
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA), we ensure such transfers are subject to appropriate safeguards, including the use of Standard Contractual Clauses approved by the European Commission or other legally recognized mechanisms. We comply with cross-border data transfer principles in line with relevant jurisdictional requirements.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
– Usage, Technical, and Preference Data: Retained for up to 12 months for analytics and traffic diagnostics.
– Account and Profile Data: Retained as long as your account remains active or for 6 years thereafter for legal compliance and audit purposes.
– Transaction Data: Retained for 7 years for tax and contractual obligations.
– Communication Data: Stored for up to 3 years following closure of the enquiry or support matter.
Data may be anonymized for research or statistical analysis beyond applicable retention periods.
9. Cookie Policy
Our Website uses cookies and similar technologies to enhance user experience and provide contextual functionality. The categories of cookies used include:
– Essential Cookies: Required for fundamental Website operations (e.g., login authentication, session management).
– Functional Cookies: Enable personalization features such as saved preferences and UI enhancements.
– Performance Cookies: Collect aggregated, anonymized data for load balancing, service optimization, and troubleshooting.
– Analytics Cookies: Enable us to understand user behavior and improve the Website through services such as Google Analytics.
10. Cookie Management and Compliance
On your first visit to keystonesandrivets.com, you will be prompted to give consent for cookies in accordance with GDPR and CCPA regulations. You may adjust your cookie preferences at any time through our Cookie Settings interface. Under CCPA, California residents may opt-out of the “sale” of personal information by toggling appropriate settings or using Do Not Track mechanisms, which we honor where applicable.
11. Children’s Privacy
keystonesandrivets.com does not knowingly collect personal data from children under the age of 13. If we discover that personal data from a child under 13 has been collected, we will promptly delete such data. Parents or guardians who believe their child has provided us with personal information without consent should contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to modify or update this Privacy Policy at our discretion. Material changes will be communicated to users via appropriate methods, including website banners, alerts, or email notices where applicable. Continued use of the Website after changes signifies acceptance of the updated policy.
13. Contact Us
If you have any questions, concerns, or complaints regarding this Privacy Policy, or wish to exercise your data protection rights, please contact us at:
Keystones & Rivets
Email: [email protected]
Web: www.keystonesandrivets.com
We take your privacy seriously and remain committed to complying with international and local data protection laws. Please do not hesitate to reach out with any privacy-related concerns.