Privacy Policy

At HMStanley.com, we recognize the importance of protecting your personal information and are committed to respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data when you access or use our website and services. We are dedicated to maintaining the highest standards of privacy and data protection in compliance with applicable data protection laws, including the European Union General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

1. Our Commitment to Privacy and Data Protection

We are committed to processing your personal data responsibly, transparently, and in full accordance with applicable data privacy laws. We aim to provide you with clear and accurate information regarding how your data is handled and to provide you with tools to control and manage your privacy preferences.

2. Scope of the Policy and Data Controller Responsibility

This Privacy Policy applies to all data collected through HMStanley.com and associated services. For the purposes of the GDPR, the data controller is HMStanley.com. As data controller, we determine the purposes and means by which your personal data is processed.

3. Categories of Personal Data Processed

We collect and process various types of personal data to provide and improve our services:

3.1 Usage Data
Collected when you interact with HMStanley.com, including browser type, operating system, IP address, geographic location, session duration, pages visited, and access timestamps.

3.2 Account Data
Provided by you during account registration or profile setup, including your full name, postal address, email address, telephone number, and login credentials.

3.3 Profile Data
Information relating to your user preferences or behavior, including past purchases, browsing activities, saved items, wishlists, and customer feedback.

3.4 Communication Data
Data arising from your interactions with our support services, including emails, chat logs, support requests, and message history.

3.5 Technical Data
Device-related data such as operating system settings, browser configurations, screen resolution, and other diagnostic data derived from device use.

3.6 Transaction Data
Payment and delivery-related data, such as billing details, transaction identifiers, order history, shipping addresses, and payment information secured through third-party processors.

3.7 Preference Data
Marketing consents, product or service interests, channel preferences, and communication frequency settings provided by you.

4. Legal Bases for Processing Personal Data

We process your personal data under the following legal bases:

– Performance of a Contract: To fulfill our obligations under a contract with you, including order processing and delivery.
– Legitimate Interests: For activities necessary to our business operations such as preventing fraud, analyzing traffic patterns, and enhancing our services.
– Consent: When you have given explicit permission for specific purposes, such as subscribing to our newsletter.
– Legal Obligation: To comply with legal and regulatory requirements to which we are subject.

5. Your Data Protection Rights

In accordance with GDPR and CCPA, you have the following rights concerning your personal data:

– Right of Access: Request details of the personal information we hold about you.
– Right to Rectification: Correct any inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data where applicable.
– Right to Restrict Processing: Ask us to limit the use of your data under certain conditions.
– Right to Data Portability: Obtain and reuse your data across different services or providers.
To exercise any of these rights, please contact us at [email protected].

6. Security Measures

We have implemented robust security measures to ensure the protection of your personal data. These measures include data encryption, secure data storage, access control protocols, routine backups, and mandatory staff training in data protection practices. We employ industry-standard technology to prevent unauthorized access, loss, misuse, or alteration of personal information.

7. International Data Transfers

Where data is transferred outside of the European Economic Area (EEA) or other regions with comprehensive data protection laws, we ensure appropriate safeguards are in place. These may include the use of Standard Contractual Clauses approved by the European Commission and adherence to relevant cross-border data transfer mechanisms.

8. Data Retention

We retain personal data only for as long as needed for the purpose for which it was collected, or to meet legal, accounting, or reporting requirements. Specific retention periods include:

– Usage Data: Up to 12 months.
– Account Data: Retained for the duration of the user’s account and up to 6 months thereafter.
– Profile and Preference Data: Up to 24 months after last user interaction.
– Communication and Transaction Data: Up to 7 years, where necessary for business and legal purposes.

Data is securely deleted or anonymized once retention periods expire.

9. Cookie Policy

HMStanley.com uses cookies and similar technologies to enhance user experience, analyze performance, and personalize content. The types of cookies used include:

– Essential Cookies: Necessary for site operation and service delivery.
– Functional Cookies: Enable enhanced functionality and personalization.
– Analytics Cookies: Collect aggregated data about page usage and user behavior.
– Performance Cookies: Monitor site speed, traffic sources, and interaction models.

10. Cookie Management and Compliance

Cookie usage on HMStanley.com is managed according to GDPR and CCPA standards. You may configure your cookie preferences via the cookie management banner accessible upon your first visit and at any time thereafter. Users can also control cookies at the browser level, including opting out of specific types. Certain features may become unavailable if cookie consent is withdrawn.

11. Special Protections for Children

We are committed to protecting the privacy of minors. HMStanley.com is not intended for children under 13 years of age, and we do not knowingly collect personal information from children without verifiable parental consent. If we become aware that we have collected personal data from a child under 13, we will delete it promptly.

12. Changes to This Privacy Policy

We may revise this Privacy Policy from time to time to reflect legal, technological, or business developments. If material changes occur, we will notify users by updating this page and, where applicable, providing prominent notice on HMStanley.com or contacting you via email.

13. Contacting Us

Should you have any questions, concerns, or wish to exercise your data rights under this Privacy Policy, please contact us at:

Email: [email protected]
Website: https://hmstanley.com

We are committed to ensuring full compliance with all relevant data protection regulations and welcome your inquiries regarding our privacy practices.