Privacy Policy
At obamatattoos.com (“we,” “us” or “our”), we are firmly committed to protecting the privacy, confidentiality, and security of the personal data of our users (“you” or “your”). This Privacy Policy outlines how we collect, use, and protect your information in full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We are dedicated to maintaining a privacy-first approach in all our operations.
1. Introduction
Your trust is paramount to us at obamatattoos.com. This Privacy Policy sets out how we respect your data, ensure lawful processing, and uphold your rights. We believe that protecting personal data is not just a legal obligation, but a fundamental responsibility.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users and visitors accessing obamatattoos.com. We act as the data controller for the personal data collected via our website and associated services. As data controller, we determine the purposes and means of processing your personal information.
3. Categories of Data Processed
We may collect and process the following categories of information:
a. Usage Data
We collect data regarding your interactions with obamatattoos.com, including your IP address, browser type and version, time zone setting, referral sources, page views, duration of visits, clickstream patterns, and system errors.
b. Account Data
Data you voluntarily provide when creating an account, including your name, postal address, email address, and telephone number.
c. Profile Data
Data related to your preferences, purchasing history, browsing activity, saved content, and personalization settings.
d. Communication Data
Correspondence data including the content of messages you send to us via contact forms, support chats, or emails, and metadata associated with such communications.
e. Technical Data
Details on the device, operating system, browser plug-in types, screen resolution, language settings, and diagnostic information.
f. Transaction Data
Records of purchases, including billing details, order history, delivery addresses, and payment confirmation data. Note that card data is processed through PCI-DSS compliant third-party payment processors.
g. Preference Data
Data concerning your marketing preferences, notification settings, subscription consents, and product interests.
4. Legal Bases for Processing
We process your personal data under the following lawful bases, consistent with Article 6 of the GDPR:
– Contractual Necessity: Where processing is necessary for the performance of a contract with you, including order fulfillment and user account management.
– Consent: Where you provide explicit consent, such as for receiving newsletters or marketing communications.
– Legitimate Interest: For purposes such as fraud prevention, improving our website, and maintaining business operations, without adversely affecting your rights.
– Legal Obligation: Where we are required to comply with legal or regulatory requirements.
5. Your Rights
Under data protection laws, including the GDPR and CCPA, you have specific rights with respect to your personal information, which include:
– Right of Access: You may request confirmation of whether we process your personal data and access to that data.
– Right to Rectification: You have the right to request the correction of inaccurate or incomplete data about you.
– Right to Erasure: You may request that we erase your personal data, subject to our legal obligations.
– Right to Restriction: You may request restriction of processing under certain conditions.
– Right to Data Portability: You may request a copy of your personal data in a structured, machine-readable format.
– California Residents: You may also request disclosure of categories of data collected, sources of data, your rights under CCPA, and opt-out options.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement industry-standard security practices to protect your data, including:
– SSL/TLS encryption for data transmission
– Role-based access control, endpoint security, and multi-factor authentication
– Regular staff training on data protection and information security
– Routine security audits and vulnerability monitoring
– Redundant backups to prevent data loss
7. International Transfers
We may transfer your data outside your country of residence, including to the United States and other jurisdictions. Where such transfers occur, we implement appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission or ensure the recipient jurisdictions are deemed as providing adequate levels of data protection.
8. Data Retention
We retain your personal data only for as long as necessary for the purposes outlined in this Privacy Policy or to comply with legal, regulatory, tax, or accounting obligations. Specific retention periods include:
– Account and Profile Data: 5 years after the last user interaction
– Transaction and Payment Data: 7 years for accounting compliance
– Communication Data: 3 years after correspondence closure
– Cookie and Technical Data: 12 months
– Marketing Preferences: Until withdrawal of your consent
9. Cookie Policy
obamatattoos.com uses cookies and similar technologies for various purposes:
– Essential Cookies: Necessary for site functionality and transactional integrity.
– Functional Cookies: Enhance usability and personalization.
– Analytics Cookies: Gather aggregated data on site usage for performance insights.
– Performance Cookies: Measure response times, error rates, and overall system health.
10. Cookie Management and Compliance
In accordance with GDPR and CCPA requirements, the website presents a cookie banner to all visitors within applicable jurisdictions. You may manage cookie settings directly through your browser or via our cookie consent tool, accessible through the site’s footer. You may also opt out of certain types of non-essential cookies at any time.
11. Children’s Privacy
obamatattoos.com is not directed toward, nor do we knowingly collect personal data from, children under the age of 13. If we become aware that we have inadvertently obtained personal data from a child under 13, we will take immediate steps to delete such information.
12. Policy Updates & Notifications
We reserve the right to update this Privacy Policy as necessary to reflect internal practices or regulatory changes. When substantial alterations are made, we will notify users through the website or via email where appropriate. Continued use of our website after such changes indicates your acceptance of the updated Privacy Policy.
13. Contact Information
If you have questions, concerns, or requests regarding this Privacy Policy or our use of your personal information, please contact our Data Privacy team at:
Email: [email protected]
We are committed to complying with all applicable data protection laws and respecting your fundamental rights to data privacy. Thank you for trusting obamatattoos.com.