Privacy Policy for Electric Matchbox
1. Introduction
At Electric Matchbox, accessible via electricmatchbox.com, we are committed to safeguarding your privacy and ensuring the security of your personal data. We recognize the importance of protecting your information and handling it responsibly in compliance with applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, store, and protect your data when you engage with our website or services.
2. Scope of this Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access electricmatchbox.com (the “Website”) or utilize any of our services. For the purposes of applicable data protection legislation, Electric Matchbox is the data controller responsible for the personal data we collect and manage. If you have any questions regarding this Policy or how your data is handled, you may contact us at [email protected].
3. Categories of Data We Process
We collect and process various categories of personal data depending on your interactions with our Website:
– Usage Data: Includes your IP address, browser type and version, time zone setting, operating system, referring URLs, page interaction, and other diagnostic data gathered through analytics technologies.
– Account Data: Includes your name, postal address, email address, phone number, and login credentials when you create an account.
– Profile Data: Covers preferences, purchase history, feedback, and behavioral insights derived from your interaction with the Website.
– Communication Data: Encompasses emails, support requests, messages, and records of interactions with our customer service team.
– Technical Data: Includes device type, plugin details, system configuration, and connection data used when accessing our services.
– Transaction Data: Covers payment methods, billing addresses, order details, delivery records, and other order-related information.
– Preference Data: Reflects your choices relating to newsletters, marketing, communication preferences, and product or service interests.
We collect this data directly from you, through technological tools (like cookies), or via third-party services integrated into the Website.
4. Legal Bases for Processing
In accordance with the GDPR, our lawful bases for processing your personal data may include:
– Consent: Where you have provided your explicit consent, such as subscribing to our newsletter or accepting cookies.
– Contract: Where processing is necessary to fulfill a contract with you, such as processing transactions or delivering products.
– Legal Obligation: Where we are required to comply with applicable laws or regulatory obligations.
– Legitimate Interests: Where processing is required for the operation, optimization, or security of our Website and business, provided your rights do not override these interests.
Under the CCPA, we do not sell your data and only use your information for purposes consistent with those outlined herein.
5. Your Rights
In line with data protection laws, you have the right to:
– Access: Request confirmation as to whether your data is being processed and gain access to such data.
– Rectification: Request correction of inaccurate personal data.
– Erasure: Request deletion of your data where there is no longer a legal justification to retain it.
– Restrict Processing: Request limited use of your data under certain conditions.
– Data Portability: Receive your personal data in a commonly used, machine-readable format and transmit it to another controller where feasible.
To exercise these rights, please contact us at [email protected].
6. Security Measures
Electric Matchbox implements rigorous security measures designed to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These include:
– Encrypted data transmission via HTTPS/SSL protocols;
– Role-based access controls and restricted data access;
– Regular security audits and vulnerability assessments;
– Routine data backups and secure storage;
– Employee training in data protection and privacy awareness.
7. International Transfers
When your personal data is transferred outside of the European Economic Area or your local jurisdiction, we ensure that adequate safeguards are in place. These may include the use of European Commission–approved Standard Contractual Clauses, legally binding corporate rules, or regional adequacy decisions, in accordance with applicable data protection law.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations. Retention schedules may vary:
– Usage and Technical Data: up to 26 months for analytics purposes;
– Account and Profile Data: for the duration of the user’s account and up to 5 years post-deactivation;
– Communication Data: maintained for a period of 3 years;
– Transaction Data: maintained for up to 7 years for compliance and audit purposes.
Once data is no longer required, it is securely deleted or anonymized.
9. Cookie Policy
electricmatchbox.com uses cookies and similar technologies to enhance user experience and collect relevant data. Cookies may be classified as:
– Essential Cookies: Required for the proper functioning of the Website (e.g., login, navigation, security);
– Functional Cookies: Enable modifications or personalizations in user experience;
– Analytics Cookies: Help us understand how users engage with our content, track visitor statistics, and optimize performance;
– Performance Cookies: Assess the effectiveness of features, load times, and usability improvements.
10. Cookie Management and GDPR/CCPA Compliance
Upon your first visit, and periodically thereafter, the Website presents a cookie banner allowing you to manage your consent preferences in compliance with GDPR and CCPA. You can:
– Accept all, deny all, or select specific cookie categories;
– Withdraw consent at any time using our Cookie Management Panel;
– Adjust browser settings to refuse cookies and delete stored ones.
These controls ensure transparency, user autonomy, and legal compliance.
11. Special Protections for Children Under 13
Electric Matchbox does not knowingly collect or solicit personal data from children under the age of 13. If we discover that such data has been collected without verifiable parental consent, we will promptly delete it. Parents or guardians who believe that their child has provided personal information should contact us at [email protected].
12. Policy Updates and User Notifications
We may amend this Privacy Policy periodically to ensure legal compliance and reflect changes to our practices and technologies. Substantive changes will be communicated via updated postings on electricmatchbox.com and, where appropriate, we may notify users directly. Continued use of the Website following such updates implies acceptance of the revised Policy.
13. Contact Information
If you have any privacy-related questions, concerns, or requests, please direct them to:
Email: [email protected]
Subject Line: Privacy Inquiry
We are committed to addressing your concerns in a timely and transparent manner, and to ensuring full compliance with all applicable privacy regulations.
—
Electric Matchbox remains fully compliant with GDPR, CCPA, and other applicable privacy frameworks. Your privacy is our priority. Please contact us at [email protected] with any questions or privacy concerns.