Privacy Policy for QuestGiggle.com
1. Introduction
At QuestGiggle.com, we are committed to safeguarding your privacy and protecting your personal data. Your privacy is of paramount importance to us, and we are fully dedicated to compliance with all applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our website and services.
2. Scope of this Policy and Data Controller Role
This Privacy Policy applies to all users of QuestGiggle.com and its associated services. QuestGiggle.com is the data controller for the purposes of processing your personal data, which means we determine the purpose and manner in which your data is processed. If you have any questions about this policy or your data rights, you may contact us at [email protected].
3. Categories of Data We Process
We may collect and process the following categories of data:
a. Usage Data
Includes information about how you use our website, such as browser type, IP address, pages visited, session time, access time, and referring websites.
b. Account Data
Includes your full name, postal address, email address, phone number, username, and other identifying details when you create an account with us.
c. Profile Data
Includes your stated interests, product preferences, shopping behavior, past interactions, saved items, and purchase history.
d. Communication Data
Includes details from your messages and interactions with our support staff, including inquiries, complaints, customer service conversations, and communication preferences.
e. Technical Data
Includes information such as your device type, operating system, mobile platform, screen resolution, system settings, and other configurations.
f. Transaction Data
Includes payment details, billing and delivery addresses, order history, transaction ID numbers, and purchase amounts. Please note, we do not store credit card numbers or banking information on our servers.
g. Preference Data
Includes marketing and communication preferences, consents, event participation, age declarations, and product/service interests.
4. Legal Bases for Processing Personal Data
We process your personal data using one or more of the following lawful bases:
– Consent: Where you have actively agreed to data processing, e.g., by subscribing to our mailing list.
– Contractual Necessity: When processing is required to fulfill our obligations under a contract with you, such as fulfilling an order.
– Legitimate Interests: When necessary to support our business operations and to provide an optimal user experience, provided your rights and freedoms do not override our interests.
– Legal Obligation: When the law requires us to process your data, such as for compliance with tax or regulatory requirements.
5. Your Data Protection Rights
Under GDPR and CCPA, you possess certain rights relating to your personal data:
– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your data, subject to certain legal limitations.
– Right to Restriction: You may request limited processing under specific circumstances.
– Right to Data Portability: You may request to receive your data in a structured, commonly used format and transfer it to another controller.
You may exercise any of these rights by contacting us at [email protected]. Requests will be handled within applicable legal timeframes.
6. Security Measures
We have implemented appropriate technical and organizational security measures to protect your personal data from unauthorized access, loss, misuse, or alteration. These measures include:
– Use of encryption for data in transit and at rest
– Role-based access controls and authentication protocols
– Secure server infrastructure and regular security testing
– Backup procedures and disaster recovery planning
– Employee data privacy training and confidentiality agreements
7. International Data Transfers
If your personal data is transferred to third parties or service providers located outside your jurisdiction, including countries outside the European Economic Area (EEA) or the United States, we ensure that such transfers are subject to appropriate safeguards. These include standard contractual clauses approved by regulatory authorities or certification under recognized data protection frameworks.
8. Data Retention
We retain personal data for only as long as necessary to fulfill the purposes for which it was collected, including to satisfy any contractual, legal, accounting, or reporting requirements. Retention periods vary by data category:
– Usage Data: Up to 12 months
– Account & Profile Data: Retained as long as the account is active
– Communication Data: Retained for up to 3 years from last contact
– Technical Data: Up to 12 months
– Transaction Data: Retained for 7 years for legal and financial audit purposes
– Preference Data: Until revocation of consent or 2 years from last engagement
9. Cookie Policy
QuestGiggle.com uses cookies and similar technologies to enhance user experience, provide essential functionalities, and gather analytics. Cookies are small data files stored on your device.
Our cookies fall into the following categories:
– Essential Cookies: Necessary for website operation and core functionality.
– Functional Cookies: Help enhance performance and features, such as remembering preferences.
– Analytics Cookies: Track user behavior to improve our services (e.g., Google Analytics).
– Performance Cookies: Assist in load balancing and site optimization.
10. Cookie Management and Compliance
Under GDPR and CCPA, you have the right to manage your cookie preferences. Upon your first visit, you will see a cookie banner allowing you to accept or customize your cookie settings. You may withdraw consent or change preferences at any time through your browser or our cookie settings page.
California residents may opt out of the “sale” of personal information as defined under CCPA by using the cookie control tools on our website or contacting us directly at [email protected].
11. Protections for Children Under 13
QuestGiggle.com is not directed at or intended for children under 13 years of age. We do not knowingly collect or solicit personal data from children. If we discover that we have collected personal data from a child under 13, we will delete that information promptly. Parents or legal guardians with concerns may contact us at [email protected].
12. Policy Updates and Notification
We reserve the right to amend or modify this Privacy Policy at any time to reflect changes in the law or our data practices. Any material updates will be communicated via our website or direct notification methods within your account settings or contact details on record.
13. Contact Information
For any questions, concerns, or complaints regarding your personal data or this Privacy Policy, you may contact us:
Email: [email protected]
Website: https://questgiggle.com
We are committed to compliance with all applicable privacy laws and open communication. If you have questions about your rights or how we handle your personal information, please reach out to us using the contact information above.