Privacy Policy for KevinLewisOnline.com
1. Introduction
At KevinLewisOnline.com, we are committed to protecting your privacy and handling your personal data with the utmost care and in full compliance with applicable privacy legislation, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines the types of information we collect, how we use, disclose, and protect that information, and your rights in relation to your personal data. Your trust is paramount, and we are dedicated to maintaining the confidentiality, integrity, and security of your information.
2. Scope of This Privacy Policy and Our Role as Data Controller
This Privacy Policy applies to all users of the website located at https://kevinlewisonline.com (“Website”), and to all personal data collected or processed through this Website and any associated services. For the purposes of applicable data protection laws, KevinLewisOnline.com is the “data controller” of your personal information, which means we determine the purposes and means of processing your data. By using the Website, you consent to the practices described in this policy.
3. Categories of Data Processed
In the course of operating our Website and providing our services, we may collect and process the following categories of personal data:
a. Usage Data – Includes information about how you use the Website, access times, pages viewed, browser type and version, referring URLs, IP address, session duration, and similar diagnostic data.
b. Account Data – Includes name, email address, phone number, and physical address provided when registering for an account or communicating with us.
c. Profile Data – Includes preferences, purchase history, product interests, feedback, page interaction behavior, and other user-specific activity on the Website.
d. Communication Data – Includes communications you send to us through contact forms, support inquiries, email correspondences, and other user engagement records.
e. Technical Data – Includes information related to the device used to access the Website such as device model, operating system, system language settings, timezone, and device identifiers.
f. Transaction Data – Includes details of payments made (excluding full payment card numbers), purchase dates, items purchased, and shipping/fulfillment data.
g. Preference Data – Includes information on your marketing and communication preferences, language preferences, and the types of content or products you are interested in.
4. Legal Bases for Processing
We only process your personal data when permitted by law. Depending on the context, we rely on the following lawful bases:
– Consent: Where you have given clear and informed consent for the processing.
– Performance of Contract: When processing is necessary to fulfill a contractual obligation to you.
– Legal Obligations: Where processing is required to comply with relevant legal or regulatory obligations.
– Legitimate Interest: Where processing is necessary for our legitimate business interests, provided that such interests do not override your rights and interests.
5. Your Privacy Rights
Subject to certain legal conditions and limitations, you have the following rights concerning your personal data:
– Right of Access: You may request access to your personal data and obtain a copy of what we hold.
– Right to Rectification: You have the right to request correction of inaccurate or incomplete data we hold about you.
– Right to Erasure: In some circumstances, you may request the deletion of your personal data (“right to be forgotten”).
– Right to Restrict Processing: You may request that we suspend the processing of your personal data under certain conditions.
– Right to Data Portability: You have the right to request that your data is transferred to another service provider in a structured, commonly used, machine-readable format.
– Right to Object: You have the right to object to certain types of processing, including direct marketing.
– Right Not to Be Subject to Automated Decisions: You can request not to be subject to a decision based solely on automated processing that has legal or similarly significant effects.
You may exercise any of these rights by contacting us at [email protected].
6. Security Measures
We implement industry-standard security safeguards to ensure that your personal data is adequately protected against unauthorized access, disclosure, modification, or destruction. These measures include:
– Data encryption in transit and at rest
– Role-based access control and authorization reviews
– Regular system security audits and software updates
– Database backups and disaster recovery systems
– Staff training on data protection and privacy compliance
7. International Transfers
If your data is transferred outside of the European Economic Area (EEA) or your country of residence, such transfers will only occur where adequate protections are in place. Where applicable, we rely on Standard Contractual Clauses approved by the European Commission or other legally recognized mechanisms to ensure the lawful transfer of personal data.
8. Data Retention
We retain personal data only for as long as it is necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. The retention timelines vary depending on the data type:
– Usage and Technical Data: Retained for up to 26 months for analytics and performance monitoring unless required longer for legal reasons.
– Account Data: Stored for 6 years from the end of user relationship or last activity on the platform.
– Communication Data: Retained for 2 years after the last communication event.
– Transaction Data: Retained for 7 years to comply with accounting and tax obligations.
– Preference Data: Retained until you withdraw your consent or update your preferences.
9. Cookie Policy
We use cookies and similar technologies to improve the functionality and performance of our Website. The types of cookies used include:
– Essential Cookies: These are necessary for the Website to function correctly and cannot be disabled.
– Functional Cookies: Enhance Website experience by remembering user settings and choices.
– Analytics Cookies: Help us understand how visitors interact with our Website (e.g., Google Analytics).
– Performance Cookies: Used to monitor website performance and visit statistics for optimization purposes.
10. Cookie Management and GDPR/CCPA Compliance
Upon your first visit to kevinlewisonline.com, you will be presented with a cookie consent banner allowing you to accept or refuse the use of non-essential cookies. You may also change or withdraw your consent at any time via our Cookie Settings feature. Our cookie practices are designed to comply fully with GDPR and CCPA requirements, offering opt-in consent for EU users and opt-out capabilities for California residents.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If we learn that a child under 13 has provided us with personal information, we will delete such information as soon as reasonably possible. Parents or guardians who believe that their child may have submitted personal information to KevinLewisOnline.com should contact us at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time in order to reflect changes in law, technology, business practices, or data usage. Any material changes will be prominently notified to users through the Website or by direct communication, where appropriate.
13. Contact Us
If you have any questions, concerns, or complaints about this Privacy Policy, the handling of your personal data, or to exercise your rights as outlined above, please contact us at:
Email: [email protected]
We are committed to upholding the highest standards of privacy compliance and user trust. Should you believe that your data is not being handled in accordance with this policy or applicable law, we encourage you to reach out directly so we can address your concerns promptly and transparently.
