Privacy Policy
Pixel Hearth (“we,” “our,” “us”) is committed to safeguarding your personal data and respecting your privacy rights. This Privacy Policy outlines how we collect, use, disclose, safeguard, and retain your personal data when you engage with our website, https://pixelhearth.com (“Website” or “Service”). We aim to handle your data transparently and in full compliance with applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”), as well as other applicable privacy frameworks.
1. Commitment to Privacy and Data Protection
We recognize the importance of your personal information and are fully committed to protecting your privacy. All personal data is handled securely, in accordance with applicable laws, and only for specified, explicit, and legitimate purposes. Transparency and trust are central to our approach toward data handling, and we make every reasonable effort to ensure your privacy rights are maintained and respected.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of our Website, services, and communications. Pixel Hearth is the data controller responsible for the collection and processing of your personal data as described in this Policy. This Policy does not apply to third-party websites or services that may be linked through our Website.
For inquiries related to your data, you may contact us at: [email protected].
3. Categories of Personal Data Processed
We may collect and process the following categories of personal data:
A. Usage Data
Information related to how users interact with our Website, such as IP address, device identifier, browser type, language settings, referring/exit pages, session timestamps, and activity logs.
B. Account Data
Information provided during account registration or purchase, including full name, mailing address, email address, and telephone number.
C. Profile Data
Information regarding user preferences, browsing habits, product interests, shopping behavior, and purchase history.
D. Communication Data
Messages and correspondence sent via email, support forms, or other contact methods, including the contents, timestamps, and contact history.
E. Technical Data
Details about the devices and systems used to access our Website—such as device type, operating system, screen resolution, browser configuration, and connection details.
F. Transaction Data
Purchase details, billing information, shipping address, and identifiers associated with payment processing (e.g., transaction ID, payment card issuer).
G. Preference Data
Data reflecting your responses to marketing preferences, opt-ins or opt-outs, product wishlists, alerts, and communications subscriptions.
4. Legal Bases for Processing
We rely on the following lawful bases, as permitted under the GDPR and other applicable laws:
– Performance of Contract: When processing is necessary to fulfill a transaction or provide services as requested by the user.
– Legitimate Interests: For internal business purposes such as analytics, fraud prevention, service improvement, and personalized content.
– Legal Obligation: When processing is required for compliance with applicable legal or regulatory obligations.
– Consent: When you expressly consent to data processing, such as opting into marketing communications or cookie usage. You may withdraw your consent at any time.
5. Your Rights
Subject to applicable law, you have the following rights concerning your personal data:
– Right of Access – You may request confirmation and a copy of your personal data that we process.
– Right to Rectification – You may request corrections to incomplete or inaccurate data.
– Right to Erasure – Also known as the “right to be forgotten,” you may request deletion of certain data held about you.
– Right to Restriction – You may limit the ways in which we process your data under specific circumstances.
– Right to Data Portability – You may request to receive your personal data in a structured, commonly used, and machine-readable format, to transmit it to another provider.
To exercise any of these rights, you may contact us directly at: [email protected].
6. Security Measures
We implement a range of robust security practices, including but not limited to:
– End-to-end encryption of personal and transactional data
– Role-based access controls and multi-factor authentication for system access
– Daily data backups and secure offsite storage
– Regular security audits and employee privacy training
We continually assess and enhance our safeguards to ensure data integrity and confidentiality.
7. International Data Transfers
Where data must be transferred to jurisdictions outside the European Economic Area (EEA) or equivalent data protection regions, we ensure compliance by using:
– European Commission-approved Standard Contractual Clauses (SCCs)
– Adequacy decisions for recognized jurisdictions
– Other mechanisms approved by data protection authorities
We ensure such transfers are made securely and in accordance with applicable law.
8. Data Retention
We retain personal data for only as long as necessary to fulfill the purposes for which it was collected, including legal, regulatory, and security obligations. Retention periods are as follows:
– Usage Data: up to 12 months for analytics and troubleshooting
– Account Data: retained for the life of your account, and up to 6 years afterward for legal compliance
– Profile Data: up to 2 years from last interaction
– Communication Data: up to 3 years from resolution of request
– Technical Data: up to 12 months
– Transaction Data: up to 7 years to meet tax and accounting obligations
– Preference Data: stored until preferences are updated or withdrawn by the user
Upon expiry of these periods, data is securely deleted or anonymized.
9. Cookie Policy
Our Website uses cookies and tracking technologies, including:
– Essential Cookies: Required for functionality such as cart management, login sessions, and payment handling.
– Functional Cookies: Enable enhanced features like personalized suggestions and language settings.
– Analytics Cookies: Collect anonymized data to understand user interactions, navigate trends, and improve site performance.
– Performance Cookies: Measure uptime, load times, responsiveness, and technical operations.
For more information on the specific cookies used, please refer to our Cookie Settings interface accessible on our website.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, we obtain user consent for non-essential cookies via a cookie consent banner upon first visit. Cookies can be managed via:
– Your browser settings (to delete or block cookies)
– Our cookie preference center (available at the bottom of every webpage)
California residents may further opt out of “sale” or “sharing” of personal data under CCPA by accessing our “Do Not Sell or Share My Information” link on the Website.
11. Children’s Privacy
Our services are not directed at children under the age of 13. We do not knowingly collect or solicit personal data from individuals under 13 years of age. If we become aware that we have collected data from a child without verified parental consent, we will delete such data promptly. Parents or legal guardians may contact us at [email protected] to request the deletion of a child’s data.
12. Policy Updates
We reserve the right to amend this Privacy Policy at any time in response to operational, legal, or regulatory developments. When updates are made, changes will be posted on this page and, when significant, users will be notified through appropriate channels. Continued use of our Website after such updates constitutes acceptance of the revised policy.
13. Contacting Us
For any privacy-related questions, data requests, or concerns about how your personal data is processed, please contact:
Email: [email protected]
Website: https://pixelhearth.com
We take privacy seriously and are committed to maintaining your trust through continued compliance with GDPR, CCPA, and all other applicable privacy regulations.