Privacy Policy for HearthMind Homes
1. Introduction
At HearthMind Homes, accessible via hearthmindhomes.com, we are committed to protecting your personal data and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). By accessing or using our website or services, you agree to the terms of this Privacy Policy.
We uphold the core principles of data transparency, data minimization, and user autonomy, and we process your data lawfully, fairly, and in a transparent manner.
2. Scope of Policy and Role as Data Controller
This Privacy Policy applies to all personal data collected through hearthmindhomes.com and affiliated services. HearthMind Homes is the “data controller” with respect to the personal data processed under this Policy. This means we determine the purposes and means of processing your data. If you have any questions about this Policy or want to exercise your rights, you may contact us at [email protected].
3. Categories of Data We Process
We may collect, use, store, and transfer the following categories of personal data:
a. Usage Data
Information about how you interact with our website and services, including your browser type, referring URLs, IP address, time zone settings, pages visited, and session duration.
b. Account Data
Information provided when creating or managing an account, such as your full name, email address, billing address, shipping address, and phone number.
c. Profile Data
Details about your preferences, behavior patterns, past purchases, and service selections.
d. Communication Data
Information included in your communications with us, including customer support emails, inquiry submissions, and contact history.
e. Technical Data
Device-related information including operating system, platform, screen resolution, mobile identifiers, system configurations, and error logs.
f. Transaction Data
Records related to purchases and other financial interactions, including payment method (limited to non-sensitive identifiers), transaction time, payment status, and delivery information.
g. Preference Data
Consent choices regarding marketing, your expressed interests related to properties or services, newsletter subscriptions, and participation in surveys or promotions.
4. Legal Bases for Processing Personal Data
We rely on one or more of the following legal bases when processing your personal data:
– Consent: When you affirmatively opt in to receive communications or allow cookies.
– Contractual Necessity: To perform a contract with you or to take steps at your request before entering into a contract.
– Legitimate Interests: To improve our services, prevent fraud, market our offerings (where legally permitted), and maintain security.
– Legal Obligation: Where we are required to comply with laws, regulatory orders, or court decisions.
5. Your Privacy Rights
In accordance with GDPR, CCPA, and applicable laws in your jurisdiction, you have the following rights regarding your personal information:
– Right to Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request corrections of inaccurate or incomplete data.
– Right to Erasure: You can request deletion of your personal data under certain conditions.
– Right to Restriction: You may request limited processing where accuracy is contested or processing is unlawful.
– Right to Data Portability: You may obtain and reuse your data across different services.
– Right to Object: You can object to processing based on legitimate interest or for direct marketing purposes.
– Right to Withdraw Consent: Where consent is the legal basis, you may withdraw it at any time.
You may exercise these rights by contacting us at [email protected].
6. Security Measures
We implement appropriate technical and organizational security measures to protect your data against unauthorized access, alteration, disclosure, or destruction. These measures include:
– Encryption of data in transit and at rest;
– Role-based access controls to limit internal access to data;
– Regular data backups and secure storage solutions;
– Privacy training and awareness programs for employees.
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA) or your jurisdiction, we ensure compliance with data protection requirements by:
– Implementing Standard Contractual Clauses approved by relevant regulatory bodies;
– Transferring data only to jurisdictions that provide adequate levels of data protection, or with supplemental technical and organizational safeguards where needed.
8. Data Retention
We retain your personal data only for as long as necessary for the purposes outlined in this Policy. Specific retention periods include:
– Usage/Technical Data: up to 24 months
– Account/Profile/Preference Data: for as long as your account is active, plus 6 years
– Communication Data: retained for 3 years post interaction
– Transaction Data: retained for 7 years to meet financial and tax obligations
Once data is no longer required, it will be securely deleted or anonymized.
9. Cookie Policy
Cookies are small text files stored on your device when you visit hearthmindhomes.com. We use cookies to enhance user experience and analyze performance.
Types of cookies we use:
– Essential Cookies: Required for basic site functionality and access to secure areas.
– Functional Cookies: Remember your choices and preferences to customize site features.
– Analytics Cookies: Help us understand how users interact with the site through aggregated statistics.
– Performance Cookies: Monitor site performance, detect bugs, and enhance user experience.
10. Cookie Management and Compliance
Upon visiting our website, you may encounter a cookie banner or preference center that allows you to manage your cookie settings. You may opt-in or opt-out of non-essential cookies in compliance with GDPR and CCPA. You can also manage cookies at the browser level by adjusting your settings.
Do Not Track (DNT) signals are honored where applicable under local laws. We do not sell your personal information within the scope of the CCPA definition of “sale.”
11. Children’s Privacy
Our services are not directed to children under the age of 13. We do not knowingly collect personal data from children under 13. If we learn that a child under 13 has provided us with personal information, we will delete that data promptly. Parents or guardians with concerns may contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to revise this Privacy Policy to reflect changes in legal obligations, technological practices, or company operations. Any substantial changes will be communicated via a notice on hearthmindhomes.com or directly via email, where appropriate.
You are encouraged to review this Policy periodically to stay informed of how we protect your privacy.
13. Contact Information
For any privacy-related inquiries, data access requests, or concerns about how your personal information is managed, please contact:
HearthMind Homes
Email: [email protected]
We are committed to resolving privacy complaints in a timely and transparent manner.
—
This Policy is written in accordance with applicable data protection regulations including the GDPR and CCPA. If you have any questions or feel your data has been processed inappropriately, please don’t hesitate to contact us.