Privacy Policy

Privacy Policy for GrangeLane.com

1. Introduction

At GrangeLane.com, we are committed to protecting your privacy and personal data. Your trust is of paramount importance to us, and we ensure that your information is handled responsibly and in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, store, and share your personal data, and affirms our dedication to respecting your rights and freedoms.

2. Scope of This Policy and Data Controller Role

This Privacy Policy applies to your use of the website grangelane.com and any related services (“the Site” or “Services”). GrangeLane.com is the data controller for the personal data collected through the Site. As the data controller, we determine the purposes and means of processing your personal data.

For any inquiries related to this Privacy Policy, please contact us at [email protected].

3. Categories of Data Processed

We collect and process the following categories of personal data, depending on how you interact with our Site:

a. Usage Data
Includes information such as your IP address, browser type, pages visited, access dates and times, session duration, referring URLs, and diagnostic data used to analyze how our Site is accessed and used.

b. Account Data
Includes full name, billing and shipping address, email address, phone number, and other contact details provided when creating an account or placing an order.

c. Profile Data
Includes your preferences, order history, feedback, behavioral data, and interests collected through your interactions with our Site and services.

d. Communication Data
Includes customer support messages, email history, and any communications made via contact forms or other interactive features.

e. Technical Data
Includes details about the device you use to access our Site, such as operating system, device model, network type, system settings, and other device identifiers.

f. Transaction Data
Includes payment method (excluding full card numbers), billing details, shipping address, order content, and delivery tracking information.

g. Preference Data
Includes marketing preferences, consent status, product viewing history, wish lists, and survey responses regarding interests and purchasing behavior.

4. Legal Bases for Processing

We rely on the following lawful bases to collect and process your personal information:

– Consent: Where required under law, we will obtain your affirmative consent before processing specific types of information (e.g., email marketing).
– Performance of a Contract: Where processing is necessary to fulfill our contractual obligations to you, such as order processing and delivery.
– Legitimate Interest: Where we have a legitimate business interest that does not override your rights and freedoms, such as fraud prevention and improving our services.
– Legal Obligation: Where processing is necessary to comply with a legal obligation, including regulatory and tax requirements.

5. Your Rights

Subject to applicable laws, you have the following rights with respect to your personal data:

– Right of Access: You may request confirmation of whether we process your personal data and seek access to such data.
– Right to Rectification: You have the right to correct any inaccurate or incomplete personal data.
– Right to Erasure: You may request deletion of your personal data, subject to legal limitations.
– Right to Restriction: You may request restrictions on the processing of your personal data under certain circumstances.
– Right to Data Portability: When applicable, you can request the transfer of your personal data to another controller in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to certain processing, such as direct marketing.
– Right Not to Be Subject to Automated Decision-Making: We do not process your data in a manner that subjects you to decisions based solely on automated processing without human intervention.

To exercise your rights, please contact [email protected].

6. Security Measures

We employ robust security measures to protect your personal data, including:

– Encryption in transit and at rest to prevent unauthorized access;
– Role-based access control restricting data access only to authorized personnel;
– Routine backups to ensure data resilience and business continuity;
– Staff training in data protection and secure practices.

7. International Transfers

Where your personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with data protection requirements, we do so in compliance with applicable legal safeguards, including the use of Standard Contractual Clauses (SCCs), adequacy decisions, or other legally recognized transfer mechanisms.

8. Data Retention

We retain your data only for as long as necessary for the purposes for which it was collected and to comply with legal, accounting, or regulatory requirements:

– Usage Data: Up to 12 months;
– Account Data: As long as your account is active or as required by legal obligations;
– Profile Data: Retained as long as relevant to your interactions with us;
– Communication Data: Up to 5 years;
– Technical Data: Up to 12 months;
– Transaction Data: Up to 7 years for accounting and regulatory compliance;
– Preference Data: Until you update or revoke your preferences.

We regularly review and securely delete unnecessary or outdated personal data.

9. Cookie Policy

GrangeLane.com uses cookies and similar technologies to enhance user experience and analyze site performance. Cookies may include:

– Essential Cookies: Required for core functionality such as login and checkout.
– Functional Cookies: Enable personalized features such as remembering preferences.
– Analytics Cookies: Collect anonymous data about Site usage to improve our services.
– Performance Cookies: Help us understand how visitors interact with the Site for optimization purposes.

10. Cookie Management and Compliance

You can control and manage cookies through your browser settings. We honor opt-out signals from global privacy controls where applicable. Upon your initial visit to grangelane.com, you are presented with options to manage your cookie preferences in compliance with GDPR and CCPA regulations. You may also withdraw consent at any time by adjusting your settings or contacting us directly.

11. Special Protections for Children

GrangeLane.com does not knowingly collect or solicit personal data from individuals under the age of 13. If you believe that a child under 13 has provided us with personal information without parental consent, please contact us at [email protected] and we will take steps to delete such information.

12. Policy Updates

We may periodically update this Privacy Policy to reflect operational, legal, or regulatory changes. Substantive changes will be communicated through our website or via direct communication where appropriate. Continued use of our Site after such updates constitutes your acceptance of the revised Privacy Policy.

13. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us at:

Email: [email protected]

We are committed to maintaining the highest standards of data protection and will address your privacy-related concerns promptly and transparently.