Privacy Policy for SammiBrown.com
1. Introduction
At SammiBrown.com, we are deeply committed to safeguarding your personal information and upholding your right to data protection and privacy. We recognize the importance of transparency, trust, and respect when handling personally identifiable information. This Privacy Policy outlines how we collect, use, disclose, and protect your personal data in accordance with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope and Data Controller
This Privacy Policy applies to all personal data collected via Sammibrown.com and related services offered through our website. SammiBrown.com, acting as the Data Controller, determines the purposes and means of processing your personal information. This policy governs all users who access or interact with the website, regardless of geographic location.
If you have any questions or concerns regarding our privacy practices, please contact us at [email protected].
3. Categories of Data Processed
We may collect and process a variety of personal data across the following categories:
a. Usage Data
Includes data such as your browser type and version, IP address, device identifiers, language preferences, time zone settings, operating system, referring URLs, and details of your navigation through our website, including pages viewed, time spent, and clicks.
b. Account Data
Includes your full name, billing and shipping addresses, email address, and phone number when you create an account or make a purchase.
c. Profile Data
Includes your preferences, purchase history, user behavior, saved items, and interactions across our services.
d. Communication Data
Includes records and transcripts of your interactions with our customer support, responses to queries, and other contact history.
e. Technical Data
Includes device type, mobile platform, hardware model, network information, operating system configurations, browser plugins, and system errors.
f. Transaction Data
Includes payment history, order details, shipping data, credit card or other payment method details (processed securely via third parties), billing address, and delivery confirmations.
g. Preference Data
Includes your expressed preferences for receiving marketing from us, your communication preferences, product and style interests, and engagement history with promotional material.
4. Legal Bases for Processing
We process your personal data only when legally permitted, including under the following lawful bases:
– Contractual Necessity: To fulfill a contract with you, such as processing transactions or providing customer service.
– Legitimate Interest: To operate and improve our services, prevent fraud, and personalize your user experience, except where overridden by your rights.
– Consent: Where required, such as marketing communications or cookies (you may withdraw your consent at any time).
– Legal Obligation: To comply with applicable laws and regulations.
5. Your Rights
Under GDPR and CCPA, you may have the following rights in connection with your personal data:
– Right of Access: You may request a copy of your personal data held by us.
– Right of Rectification: You can request correction of inaccurate or incomplete data.
– Right of Erasure: You may request deletion of your personal data, subject to legal limitations.
– Right to Restrict Processing: You may limit how we use your data under certain conditions.
– Right to Data Portability: You may obtain and reuse your data for other services.
– Right to Opt-Out (CCPA): California residents may opt out of the sale of personal information.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We implement a range of administrative, technical, and physical safeguards to protect your data:
– Data is transmitted using encrypted connections (HTTPS/TLS)
– Access to data is restricted based on the principle of least privilege
– User authentication and role-based access protocols are enforced
– Data is routinely backed up with disaster recovery protocols in place
– Employees receive regular training on data protection responsibilities
7. International Transfers
As Sammibrown.com may utilize providers and services outside your home jurisdiction, personal data may be transferred internationally. Where data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place — including Standard Contractual Clauses (SCCs) and assessments of third-country legal environments — to ensure an adequate level of protection.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. After the applicable retention period expires, data is securely deleted or anonymized in a non-reversible manner.
Retention periods by category:
– Usage and Technical Data: up to 12 months for analytics purposes
– Account and Profile Data: retained while account remains active; deleted 12 months after inactivity
– Transaction Data: retained for 7 years for accounting and legal purposes
– Communication Data: retained for up to 2 years to support customer service records
– Preference Data: retained until consent is withdrawn or data is updated
9. Cookie Policy
SammiBrown.com uses cookies and similar tracking technologies for the following purposes:
– Essential Cookies: Required for core site functionality (e.g., login, navigation)
– Functional Cookies: Enable personalized features and settings
– Analytical Cookies: Provide aggregated data on site usage and performance
– Performance Cookies: Help improve site speed and user experience
Cookies may be set by us (first-party) or by third parties acting on our behalf (third-party cookies).
10. Cookie Management and Compliance
We provide a cookie consent banner that allows users to opt-in or opt-out of non-essential cookies in accordance with GDPR and CCPA. Users can also manage cookie preferences through browser settings or designated cookie management tools provided on the website.
11. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect personal data from minors. If we become aware that personal information has been collected from a child without verifiable parental consent, we will promptly delete such data. Parents or guardians who believe their child has submitted data should contact us at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy periodically to reflect changes in our data practices or applicable laws. Updates will be posted on SammiBrown.com, and we will notify users of material changes via email or prominent website notifications, where required by law.
13. Contact Us
If you have questions, requests, or concerns about this Privacy Policy or our data practices, please reach out to us at:
Email: [email protected]
Website: https://www.sammibrown.com
We are committed to ensuring your personal information is handled in a lawful, fair, and transparent manner. Your trust is important to us, and we welcome all questions related to your privacy and data protection rights.