PRIVACY POLICY
1. Introduction
We at johnbrocheler.com are firmly committed to safeguarding the privacy and personal data of all individuals who interact with our website. Respect for your fundamental rights to data protection and privacy is at the core of our operations. This Privacy Policy outlines how we collect, use, store, and protect your personal data in accordance with the General Data Protection Regulation (“GDPR”), the California Consumer Privacy Act (“CCPA”), and other applicable data protection laws. By using johnbrocheler.com, you agree to the practices set out herein.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data processed by johnbrocheler.com via our website, services, or communications. For the purposes of data protection legislation, johnbrocheler.com is the Data Controller with respect to the personal data collected through the website and associated services. For any inquiries related to data processing or to exercise your data protection rights, you may contact us at: [email protected].
3. Categories of Personal Data Processed
We process the following categories of personal data, each used for clearly defined purposes:
a. Usage Data: Includes information such as your IP address, browser type and version, operating system, referral sources, device type, geographical location, pages visited, and user interaction session data. This data is collected automatically via cookies and analytics tools.
b. Account Data: Includes your name, email address, postal address, phone number, and any other contact details provided for registration or communication purposes.
c. Profile Data: Includes your preferences, interests, purchase history, behavioral data on site usage, and feedback you may provide.
d. Communication Data: Includes emails, support tickets, chat logs, and any correspondence or contact history between you and johnbrocheler.com.
e. Technical Data: Includes your IP address, login identifiers, browser settings, time zone setting and location, browser plug-in types, device identifiers, and other technology used to access the site.
f. Transaction Data: Includes payment history, billing addresses, details of purchased products or services, and delivery information.
g. Preference Data: Includes your marketing consents, product or service interests, and communication preferences.
4. Legal Bases for Processing Personal Data
We rely on the following legal grounds for processing your personal data:
– Consent: Where required, we obtain your explicit consent before collecting and processing specific categories of personal data (e.g., for targeted marketing or non-essential cookies).
– Contract Performance: Certain personal data is processed to fulfill contractual obligations (e.g., purchases, service delivery).
– Legal Obligation: We may process your data to comply with legal and regulatory requirements.
– Legitimate Interests: We process data to pursue legitimate interests such as improving our site functionality, securing our operations, and understanding user behavior—provided your rights and freedoms do not override those interests.
5. Your Rights Under Applicable Law
In accordance with GDPR and CCPA (where applicable), you have the following rights regarding your personal data:
– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request that inaccurate or incomplete data be corrected.
– Right to Erasure (“Right to be Forgotten”): You may request the deletion of your personal data under certain conditions.
– Right to Restrict Processing: You may request restriction of processing under specific circumstances.
– Right to Data Portability: You may request to receive your data in a structured, commonly-used, and machine-readable format and have it transmitted to another controller.
– Right to Object: You may object to the processing of your data based on legitimate interests or direct marketing purposes.
– California Rights: Residents of California have the right to request disclosure of categories and specific pieces of personal information collected, the sources, purposes, and sharing practices, as well as the right to opt out of sale of personal information and not be discriminated against for exercising CCPA rights.
To exercise any of these rights, please contact us at [email protected]. We may request reasonable verification of your identity before fulfilling certain requests.
6. Security Measures
We implement comprehensive technical and organizational security measures to protect your data, including but not limited to:
– End-to-end encryption for data in transit and at rest.
– Role-based access control ensuring only authorized personnel access your data.
– Regular system audits and vulnerability assessments.
– Secure software development practices.
– Frequent backups and disaster recovery protocols.
– Staff awareness and training programs in data protection and cyber hygiene.
While we endeavor to safeguard your data, no system is entirely immune to threats and vulnerabilities. We continually improve our security practices to adapt to emerging risks.
7. International Data Transfers
Due to the global nature of internet services, your data may be transferred and stored outside of your jurisdiction, including in countries that may not offer the same level of legal protections as those within the European Economic Area (EEA).
When we transfer data internationally, we implement appropriate safeguards such as:
– Standard Contractual Clauses (SCCs) approved by the European Commission.
– Binding Corporate Rules (BCRs) where applicable.
– Adequacy decisions from the European Commission.
– Supplemental security measures, such as encryption or data minimization.
By using johnbrocheler.com, you acknowledge and consent to such transfers.
8. Data Retention
We retain your personal data only as long as necessary for the purposes outlined in this Policy and in accordance with applicable legal or regulatory obligations. Specific retention periods include:
– Usage Data: Retained for up to 36 months for analytics and security purposes.
– Account Data: Retained as long as your account is active, and for up to 6 years thereafter to comply with legal obligations.
– Profile Data: Retained for 24 months following your last activity with us.
– Communication Data: Retained for up to 5 years for record-keeping and dispute resolution.
– Transaction Data: Retained for 7 years for tax, payment, and auditing purposes.
– Preference Data: Retained for 24 months or until consent is withdrawn.
Upon expiration of these timeframes, data is securely deleted or anonymized.
9. Cookie Policy
To enhance your browsing experience, johnbrocheler.com uses cookies and similar technologies. These include:
– Essential Cookies: Necessary for proper site functionality and security. Without these, services you have requested cannot be provided.
– Functional Cookies: Enable site personalization, such as language or region selection.
– Analytics Cookies: Help us analyze site usage behavior and improve our services (e.g., Google Analytics).
– Performance Cookies: Improve load speeds, responsiveness, and system reliability.
10. Cookie Management and Compliance
Upon visiting johnbrocheler.com, you will be presented with a clear cookie consent banner, allowing you to accept, reject, or customize cookie settings in compliance with GDPR and CCPA. You may revise your consent choices at any time by accessing our Cookie Settings or by configuring your browser settings to block or delete cookies.
Note: Some features of the website may not function properly if certain cookies are disabled.
11. Children’s Privacy
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal data from children. If we become aware that a child under 13 has provided us with personal data, we will delete such information from our systems without undue delay. If you believe personal data from a child has been collected, please contact us immediately at [email protected].
12. Policy Updates
We may update this Privacy Policy from time to time to reflect changes in law, practices, or our services. Any material updates will be communicated through our website or directly where appropriate. Continued use of johnbrocheler.com after such changes constitutes acceptance of the revised policy.
13. Contact
If you have any questions regarding this Privacy Policy, our data practices, or wish to exercise your privacy rights, you may contact us at:
Email: [email protected]
We are fully committed to upholding the highest standards in data protection. If you have any concerns about how your personal data is handled, we encourage you to reach out so that we may promptly address your request.