Privacy Policy for StockTiny.com
1. Introduction
At StockTiny.com, we are unwavering in our commitment to protecting your privacy and handling your personal data with the utmost transparency and care. We recognize your right to privacy and are fully compliant with applicable data protection legislation, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines the types of personal data we collect, how we process it, the purposes for which we use the data, and the rights you have with respect to your information.
2. Scope of This Policy and Data Controller Role
This Policy governs all personal data collected and processed by StockTiny.com through our website and related services. StockTiny.com acts as the “data controller” for the purposes of the GDPR, determining the purposes and means of processing your personal data. Any inquiries related to data protection may be directed to [email protected].
3. Categories of Data Processed
We collect and process various categories of personal data to provide our services, improve user experience, and fulfill legal obligations:
– Usage Data: Includes information about how users interact with our website such as IP address, browser type, date/time of visits, pages visited, referrer URLs, and session duration.
– Account Data: Includes name, mailing address, email address, and telephone number you provide during account registration or profile updates.
– Profile Data: Includes user preferences, behavioral data, order history, and interactive preferences within the platform.
– Communication Data: Includes records of support requests, live chat interactions, and email correspondence.
– Technical Data: Includes device type, hardware model, operating system, browser configuration, screen resolution, and system diagnostic logs.
– Transaction Data: Includes purchase records, billing and shipping information, order identifiers, and partial payment details processed through secure third-party providers.
– Preference Data: Includes marketing consents, newsletter subscriptions, product interests, and other settings determined by the user.
4. Legal Bases for Processing
Our processing activities are grounded in one or more of the following lawful bases, in accordance with Article 6 of the GDPR:
– Performance of Contract: Where data is necessary to fulfill a contract or to take steps at the request of the user prior to entering a contract.
– Legitimate Interests: Where processing is necessary for our legitimate interests—such as fraud prevention, improvement of services, or internal analytics—provided these do not override your rights.
– Legal Obligation: Where we are required to comply with a legal obligation or regulatory requirement.
– Consent: Where you have expressly consented to the processing of your data for a specific purpose, such as receiving marketing communications.
5. Your Data Protection Rights
Pursuant to the GDPR and, where applicable, the CCPA, you may exercise the following rights:
– Right of Access: To request access to personal data we hold about you.
– Right to Rectification: To request the correction or update of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): To request deletion of your personal data, subject to legal retention requirements.
– Right to Restriction: To request a temporary or permanent halt to the processing of all or some of your data.
– Right to Data Portability: To receive your personal data in a structured, commonly used format, or have it transferred to another data controller where feasible.
To exercise any of these rights, please contact us at [email protected]. We will respond to all valid requests in accordance with applicable law.
6. Security Measures
At StockTiny.com, we implement rigorous data security protocols to ensure the safety and confidentiality of your personal data. These include:
– SSL/TLS encryption for secure transmission of data,
– Role-based access control with audit logs,
– Regular data backups and integrity checks,
– Internal data protection training for employees,
– Continuous monitoring for unauthorized access or breaches.
7. International Data Transfers
Your data may be processed or stored in jurisdictions outside your country of residence, including in the United States. Where such transfers occur, we rely on appropriate safeguards consistent with data protection law, including Standard Contractual Clauses approved by the European Commission or adequacy decisions.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purpose for which it was collected, or as required by law. Approximate retention periods include:
– Usage and Technical Data: up to 12 months,
– Account and Profile Data: until account deletion,
– Transaction Data: up to 7 years for tax and audit purposes,
– Communication Data: up to 3 years,
– Preference Data: until consent is withdrawn.
Once no longer needed, data is securely erased or anonymized.
9. Cookie Policy
Our website uses cookies for various purposes:
– Essential Cookies: Required for core functionality such as authentication and navigation.
– Functional Cookies: Enable enhanced personalization such as saved preferences and login states.
– Analytics Cookies: Collect usage data for statistical and optimization purposes through services like Google Analytics.
– Performance Cookies: Monitor site performance and error diagnostics.
For more information about the specific cookies we use, please refer to our dedicated Cookie Notice available on the website.
10. Cookie Management and Regulatory Compliance
Upon first visit to StockTiny.com, users are presented with a cookie consent banner in accordance with GDPR and CCPA regulations. You may manage or withdraw your consent at any time via our Cookie Preferences Center, accessible from the website footer. California residents may also opt out of the “sale” of personal information under CCPA through our “Do Not Sell My Personal Information” feature.
11. Children’s Privacy
StockTiny.com does not knowingly collect or solicit personal data from individuals under the age of 13. If you are a parent or guardian and believe that your child has provided personal data, please contact us immediately at [email protected]. We will take prompt steps to delete such information.
12. Changes to this Privacy Policy
We may update or modify this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. Where pertinent changes occur, we will notify users through an in-site notification banner or via registered email addresses.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact:
Email: [email protected]
We take privacy seriously and are committed to maintaining full compliance with applicable data protection laws. If you believe your rights under GDPR or CCPA are not being fully observed, please reach out to us immediately for resolution.
Thank you for trusting StockTiny.com with your personal information.