Privacy Policy for Born to Be Right
Born to Be Right (“we”, “our”, or “us”) values and respects your individual privacy. We are committed to protecting the confidentiality, integrity, and security of personal data entrusted to us. This Privacy Policy outlines how we collect, use, disclose, retain, and safeguard your information in compliance with relevant data protection laws, including but not limited to the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
By accessing or using our website (borntoberight.com), you agree to the terms of this Privacy Policy.
1. Commitment to Privacy and Data Protection
We uphold your privacy as a fundamental right. At borntoberight.com, we implement privacy-by-design principles and strive to ensure that your personal data is processed lawfully, fairly, and transparently.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of borntoberight.com and associated services. Born to Be Right is the data controller responsible for the collection and processing of your personal data as described in this policy. If you have any questions, please contact us at [email protected].
3. Categories of Data We Process
We collect and process the following categories of personal data:
a) Usage Data
Includes information about how you use our website, such as browser type, IP address, device identifiers, session time stamps, referring URLs, and pages visited.
b) Account Data
Collected when you create or manage an account. This includes your first and last name, email address, phone number, and mailing address.
c) Profile Data
Covers your user profile and preferences, such as interests, purchase history, behavior on the site, saved items, and any custom settings.
d) Communication Data
Includes all interactions with our support and communication channels. This may involve support requests, emails, chat transcripts, and message history.
e) Technical Data
Covers information about the devices and systems you use to access our site, including operating system, screen resolution, browser plugins, and language settings.
f) Transaction Data
Includes details related to purchases made through borntoberight.com, such as billing information, delivery addresses, payment methods (processed through third-party payment gateways), and order numbers.
g) Preference Data
Includes records of your preferences regarding marketing communications, opt-in/opt-out choices, and product interest data collected via surveys or usage patterns.
4. Legal Bases for Processing
We process your personal data on the following legal grounds, as applicable:
– Consent: Where you have given clear, unambiguous permission for us to process your data (e.g., for marketing communications).
– Contract: Where the processing is necessary to fulfill a contract or take steps before entering into a contract with you.
– Legal Obligation: Where we are required to comply with legal or regulatory obligations.
– Legitimate Interests: Where processing is necessary for our legitimate interests and does not override your fundamental rights (e.g., fraud prevention, site improvement).
5. Your Rights Under GDPR and CCPA
You have the following rights in relation to your personal data:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your data where lawful grounds allow.
– Right to Restriction: You may limit the processing of your data under specific circumstances.
– Right to Data Portability: You may request your data be transferred to another service provider in a structured, machine-readable format.
– Right to Object: You can object to certain processing, including for direct marketing purposes.
– Right to Non-Discrimination: Under the CCPA, you will not be discriminated against for exercising your privacy rights.
To exercise any of your rights, please contact us at [email protected].
6. Security Measures
We employ appropriate technical and organizational security measures to protect your data, including:
– Encryption of data in transit and at rest when applicable;
– Role-based access controls and authentication mechanisms;
– Secure development practices and code reviews;
– Regular security audits and system patching;
– Staff privacy training and confidentiality agreements;
– Encrypted backups and business continuity protocols.
7. International Data Transfers
Where data is transferred outside your local jurisdiction (for example, from the EU or California to the United States), such transfers are protected via approved mechanisms, including the European Commission’s Standard Contractual Clauses or other lawful safeguards ensuring a comparable level of data protection.
8. Data Retention
We retain your personal data only as long as necessary for the purposes outlined in this policy and to comply with our legal and contractual obligations:
– Usage and Technical Data: Up to 12 months;
– Account and Profile Data: For the duration of your account, and up to 3 years after closure;
– Communication Data: 3 years;
– Transaction Data: 7 years for tax and accounting compliance;
– Preference Data: Until revoked or 2 years after your last activity.
After these periods, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience and improve the functionality of borntoberight.com. Cookies we use include:
– Essential Cookies: Necessary for basic site operation and service delivery (e.g., session management, authentication).
– Functional Cookies: Enhance usability by remembering your preferences and settings.
– Statistical and Analytics Cookies: Collect aggregated data to understand how users engage with our website and to improve services.
– Performance Cookies: Monitor site performance metrics and diagnostic data.
10. Cookie Management and Compliance
Upon your first visit to borntoberight.com, you will be presented with a cookie consent banner in compliance with GDPR and CCPA. You may manage and update your cookie preferences at any time through the cookie settings link or by adjusting your browser settings. We honor “Do Not Track” signals and U.S. legal requirements regarding sale of personal information.
11. Protection of Children’s Privacy
borntoberight.com is not intended for use by children under the age of 13. We do not knowingly collect or solicit personal data from children. If we learn that we have collected data from a child without verified parental consent, we will promptly delete that information. If you believe we have obtained data from a child, please contact us at [email protected].
12. Policy Updates & Notification
This Privacy Policy may be updated from time to time to reflect legal, technological, or operational changes. Material modifications will be communicated through appropriate means, such as revised content on borntoberight.com or direct notification through email where required.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or how your data is handled, please contact us at:
Email: [email protected]
Website: https://www.borntoberight.com
We are committed to facilitating your privacy rights and maintaining high standards of data protection in everything we do.
Born to Be Right carefully complies with applicable privacy and data protection standards, including GDPR and CCPA. If you have concerns regarding your personal data, please reach out to us — your privacy is our priority.
