Privacy Policy
1. Introduction
At YourPennsylvania.com (“we”, “us”, or “our”), we are firmly committed to safeguarding the privacy and personal data of our users. We recognize the importance of protecting information in the digital landscape and adhere strictly to applicable data protection laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, share, and protect your personal information when you interact with our website.
2. Scope of This Policy and Role of the Data Controller
This Privacy Policy applies to all users of the website located at yourpennsylvania.com (“the Website”), including visitors, registered users, and customers. We operate as the Data Controller for all personal information collected through the Website. As the Data Controller, YourPennsylvania.com determines the purposes and means by which the personal data of users are processed.
3. Categories of Personal Data Processed
We may collect and process the following categories of personal data when you use the Website:
a. Usage Data
This includes details about how you use the Website, such as your IP address, browser type, referring/exit pages, operating system, session duration, and device type. This data is collected automatically through logging and analytics tools.
b. Account Data
When you create an account or make a purchase, we collect identifying details such as your full name, mailing address, email address, and telephone number.
c. Profile Data
We may process additional information you provide, such as your preferences, past purchases, and behavioral patterns on the Website.
d. Communication Data
This includes the content of any queries, feedback, or customer support interactions you initiate, as well as records of our correspondence.
e. Technical Data
We gather details on your device identifiers, browser settings, operating system, network type, and hardware specifications.
f. Transaction Data
If you engage in transactions via our Website, we process payment information (in compliance with PCI-DSS standards), order history, billing and delivery details.
g. Preference Data
We may record your preferences in relation to marketing communications, product categories, service improvements, and opt-in choices made.
4. Legal Bases for Processing
We collect and use your personal data based on one or more of the following legal bases:
– Performance of a Contract: To provide you access, services, and information as per your request;
– Legitimate Interests: To improve our Website, ensure security, and conduct business operations;
– Consent: Where you have explicitly agreed to the processing (e.g., marketing preferences);
– Legal Obligation: Where we are required to comply with applicable laws, judicial proceedings, or regulations.
5. Your Rights as a Data Subject
Depending on your jurisdiction and under GDPR and CCPA provisions, you may exercise the following rights concerning your personal data:
– Right of Access – Request a copy of the data we hold about you;
– Right of Rectification – Correct any inaccuracy in your personal data;
– Right to Erasure – Request deletion of data under specific conditions;
– Right to Restrict Processing – Limit how we use your data;
– Right to Data Portability – Receive your personal data in a structured, commonly used format;
– Right to Object – Oppose processing based on legitimate interests or direct marketing;
– Right to Withdraw Consent – Revoke any prior consent at any time;
– Right to Non-Discrimination – Exercising your rights will not result in discrimination or diminished service.
Users in California may also request information about the categories and specific pieces of personal information we have collected, disclosed, or sold (we do not sell data, as defined by CCPA).
To exercise these rights, please contact us using the information in Section 13 below.
6. Security Measures
YourPennsylvania.com employs organizational and technical measures to secure personal data against unlawful access, accidental loss, alteration, or destruction. These measures include but are not limited to:
– End-to-end encryption of data in transit and at rest;
– Role-based access controls;
– Regular data backups and secure storage;
– Employee training programs focused on data security and confidentiality.
7. International Data Transfers
Your personal data may be transferred to countries outside the European Economic Area (EEA) or California. When such transfers occur, we ensure that appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission and adherence to relevant adequacy decisions. For users within the U.S., data is handled according to relevant federal and state privacy standards.
8. Data Retention
We retain personal data for no longer than is necessary to fulfill the purposes for which it was collected or to comply with legal and regulatory obligations. Retention periods vary as follows:
– Usage & Technical Data: up to 12 months;
– Account & Profile Data: as long as the account remains active;
– Transaction Data: up to 7 years for tax and audit compliance;
– Communication Data: up to 2 years for service reference;
– Preference Data: until consent is withdrawn or updated.
Upon expiration of retention periods, data is securely destroyed or anonymized.
9. Cookie Policy
The Website uses cookies and similar tracking technologies. Cookies are small data files that are stored on your device when you visit our site. We use the following categories:
– Essential Cookies: Necessary for core site functionality and security;
– Functional Cookies: Enable enhanced usability and personalization;
– Analytics Cookies: Help us understand how visitors interact with the site (e.g., Google Analytics);
– Performance Cookies: Monitor uptime and responsiveness for site optimization.
10. Cookie Management and Legal Compliance
We ask for your consent to use non-essential cookies via our cookie banner when you first visit yourpennsylvania.com. You may withdraw or modify your consent at any time by managing your browser settings or cookie preferences. In compliance with GDPR, no cookies will be dropped on your device without prior consent, unless strictly necessary. As per CCPA, California users may opt out of cookie-based tracking and analytics.
11. Children’s Privacy
We do not knowingly collect personal data from children under the age of 13. If we become aware that such information has been collected without verified parental consent, it will be promptly deleted. Parents and guardians who believe their child may have submitted information should contact us directly.
12. Policy Updates
We reserve the right to modify this Privacy Policy at any time to reflect changes in our practices, technology, or legal obligations. If material changes are made, we will reasonably notify users via the Website or via email where feasible. Continued use of yourpennsylvania.com constitutes acknowledgment of the revised policy.
13. Contact Us
For questions, concerns, or to exercise any applicable right related to this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
We take all privacy inquiries seriously and aim to respond within a timely and compliant manner.
—
YourPennsylvania.com is dedicated to maintaining user trust and transparency. We are committed to upholding the highest standards of privacy and remain compliant with GDPR, CCPA, and all applicable data protection laws. For any privacy-related concerns or to exercise your rights under this policy, please contact us at [email protected].