Privacy Policy
At No Shoes Club (accessible at noshoes-club.com), we are firmly committed to protecting the personal data and privacy of our users. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data, in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We recognize the importance of your privacy and are committed to maintaining the confidentiality, integrity, and security of your personal information.
1. Introduction
We at No Shoes Club value your trust and are dedicated to safeguarding your privacy rights. This Privacy Policy is designed to provide transparency into our data practices and your rights regarding the personal data we collect. We implement privacy-by-design practices and strive to minimize data usage while maximizing service efficiency and compliance.
2. Scope of the Policy and Data Controller
This Privacy Policy applies to all personal data collected and processed through your access to and use of our website, noshoes-club.com, and any associated digital services. The data controller responsible for your personal data is No Shoes Club. If you have any questions or concerns, you may contact us at: [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data
Includes information about your interactions with our website and services, such as IP address, browser type, operating system, pages visited, session duration, referring URLs, and error logs.
b. Account Data
Includes personal details you provide when creating an account, such as your full name, billing and shipping address, email address, and phone number.
c. Profile Data
Includes your preferences, communication choices, historical behavior on our platform, purchase history, and product interests.
d. Communication Data
Includes messages received through support forms or email, inquiries, feedback, and communication logs.
e. Technical Data
Includes device identifiers, hardware models, operating system versions, system settings, language preferences, and connectivity data.
f. Transaction Data
Includes payment history, order information, billing and shipping data, delivery records, and associated receipts or confirmations. Note: We do not process or store full payment card details. All payments are processed securely by third-party providers.
g. Preference Data
Includes your marketing and notification preferences, consent indicators, and advertisement interaction behaviors.
4. Legal Bases for Processing
We rely on the following legal bases under GDPR and applicable laws when processing your personal data:
– Contractual Necessity: Processing required for fulfilling contractual obligations with you (e.g., order fulfillment).
– Consent: When you actively provide consent, particularly for optional communications, marketing, and customized offers.
– Legitimate Interests: Processing necessary for our legitimate interests, such as analyzing performance, safeguarding against fraud, and improving the website, provided these are not overridden by your fundamental rights.
– Legal Obligation: When processing is necessary to comply with a legal obligation, such as accounting or tax regulations.
5. Your Rights
You have specific rights concerning your personal data, subject to certain conditions provided under GDPR and the CCPA:
– Right of Access: To obtain confirmation as to whether or not we process your personal data and receive copies of such data.
– Right of Rectification: To request corrections of inaccurate, outdated, or incomplete data.
– Right to Erasure: To request deletion of your personal data under applicable legal grounds.
– Right to Restrict Processing: To request temporary cessation of data processing where there are legal grounds.
– Right to Data Portability: To receive your personal data in a structured, commonly used, and machine-readable format.
– Right to Object: To object to processing based on legitimate interests or direct marketing.
– California Rights: Under CCPA, you may also exercise rights to know, delete, and opt out of the sale of personal data, if applicable.
To exercise any of these rights, please contact us at: [email protected].
6. Security Measures
We take appropriate technical and organizational measures to protect your data, including but not limited to:
– Secure data transmission via SSL/TLS encryption
– Access controls, role-based data permissions, and multi-factor authentication
– Regular security audits and vulnerability testing
– Encrypted storage of sensitive data
– Secure backups and failover systems
– Staff training on data protection and breach response protocols
7. International Data Transfers
Where necessary, personal data may be transferred and processed outside of your country of residence, including to countries that may not offer the same level of data protection as your jurisdiction. In such cases, we ensure appropriate safeguards, including the use of Standard Contractual Clauses, binding corporate rules, or reliance on adequacy decisions as defined under GDPR.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes for which it was collected or to comply with legal, regulatory, contractual, or internal policy requirements. The retention durations are typically as follows:
– Account and Transaction Data: Retained for as long as your account remains active and for seven (7) years thereafter for tax and compliance purposes.
– Communication Data: Retained for up to two (2) years for quality assurance and support recordkeeping.
– Marketing Data: Retained for one (1) year from the last interaction or until opt-out is requested.
– Technical and Usage Data: Retained up to twelve (12) months for analytics purposes.
9. Cookie Policy
Our website uses cookies and similar technologies to ensure the proper functioning and performance of our site and to personalize user experience. We use the following categories of cookies:
– Essential Cookies: Required for core website functionality such as navigation, authentication, and security.
– Functional Cookies: Enhance usability by remembering choices and preferences (e.g., language or region).
– Analytics Cookies: Collect aggregated information on how visitors interact with our site to improve performance and content relevance.
– Performance Cookies: Monitor system performance and navigation patterns to optimize the website infrastructure.
Cookies are set either by us or by third-party services whose functionality is embedded on our website (e.g., analytics providers or payment services).
10. Cookie Management and Compliance
Upon your first visit to noshoes-club.com, you are presented with a cookie banner for managing your preferences in accordance with GDPR and CCPA regulations. You may choose to accept all cookies, reject non-essential cookies, or customize cookie settings. You may also modify or revoke your consent at any time by accessing the “Cookie Settings” link at the bottom of our site.
In compliance with the CCPA, we honor browser signals such as Global Privacy Control (GPC) to opt out of the sale of personal information and limit data usage.
11. Children’s Privacy
We do not knowingly collect, solicit, or process personal data from children under the age of 13. If you are a parent or guardian and suspect that we have collected personal data from a child under 13, please contact us immediately at [email protected]. We will take immediate steps to delete the data and prevent further collection.
12. Policy Updates
We reserve the right to revise this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. Users will be notified via appropriate channels (such as banners, pop-ups, or email, when applicable) any time material changes are made to this policy. Continued use of noshoes-club.com indicates acceptance of any changes to the Privacy Policy.
13. Contact Information
If you have questions about this Privacy Policy, your personal data, or how we manage your privacy, you may contact us at:
Email: [email protected]
No Shoes Club is committed to lawful, fair, and transparent processing of personal data and compliance with all applicable privacy regulations. We encourage you to reach out if you have any concerns regarding how we collect and handle your information.