This Privacy Policy outlines how Charlotte’s Closet (“the Company”) collects, stores, protects, and uses user data in accordance with international data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). By using our website or services, you consent to the practices described in this policy.
1. Data Collection and Storage
The Company collects and stores user data for legitimate, specified, and explicit purposes. This data may include:
- Personal information (e.g., name, email address, phone number) provided voluntarily by users during account registration, purchases, or communication with the Company.
- Non-personal information such as device and browser information, IP address, location, and other technical data automatically collected through cookies and similar tracking technologies.
The Company ensures that data collected is limited to what is necessary, relevant, and not excessive for the intended purpose. Data will be retained only for the duration necessary to fulfill these purposes or as required by law.
2. Data Protection
The Company implements appropriate technical and organizational measures to protect user data from unauthorized access, disclosure, alteration, or destruction. These measures include encryption, access controls, regular system monitoring, and staff training on data security.
Reasonable precautions are taken to ensure the confidentiality and integrity of user data. However, the Company cannot guarantee absolute security due to the inherent risks associated with the transmission and storage of data over the internet.
3. Use of User Data
The Company uses user data for the following purposes:
- To provide, operate, and maintain the services offered by the Company.
- To personalize and improve user experience on the website.
- To communicate with users and respond to their inquiries, requests, feedback, or provide updates.
- To send promotional and marketing messages with users’ consent.
- To comply with legal obligations or enforceable governmental requests.
User data shall not be processed in a manner incompatible with these purposes, nor shall it be shared or disclosed to third parties without user consent, except where required by law.
4. Users’ Rights
Users have the following rights regarding their data:
- Right to access: Users can request information about the data the Company holds pertaining to them.
- Right to rectification: Users can request the correction of inaccurate or outdated data.
- Right to erasure: Users can request the deletion of their data, subject to legal restrictions.
- Right to object: Users can object to the processing of their data for certain purposes, such as direct marketing.
- Right to data portability: Users can request their data in a structured, machine-readable format or transfer it to another service provider, if technically feasible.
- Right to withdraw consent: Users can withdraw their consent to the processing of their data at any time.
5. Data Security Measures
The Company ensures the following data security measures are implemented:
- Strict access controls and authentication mechanisms.
- Encryption of personal data during transmission and storage.
- Regular system security assessments and audits.
- Ongoing staff training on data protection practices.
- Procedures for incident response and data breach notification.
6. Third-Party Data Sharing
The Company may share user data with trusted third-party service providers that assist in operating or improving our services. These providers are contractually obligated to handle data securely and use it solely for the agreed purposes.
Additionally, the Company may disclose data if required by law, in response to valid legal requests, or to protect its rights, property, or the safety of users or the public.
If you have any questions about these Terms, please Contact Us.