Privacy Policy for mamajoywave.com
1. Introduction
At Mama Joy Wave, accessible at mamajoywave.com, we are committed to safeguarding your privacy and protecting your personal data. We hold your trust and individual rights in the highest regard and endeavor to handle your personal information responsibly, lawfully, and transparently. This Privacy Policy outlines how we collect, process, use, and disclose your data, in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through the mamajoywave.com website and services related to it. For the purposes of the GDPR, Mama Joy Wave is the data controller, determining the purposes and means of processing your personal data. Should you have any questions about your personal information or data protection practices, you may contact us at [email protected].
This Policy covers interactions with our website visitors, customers, subscribers, and any other individuals whose personal data we may process in the course of providing our services.
3. Categories of Data Processed
We collect and process the following categories of personal data:
a. Usage Data:
– IP address
– Browser type and version
– Referral source
– Device identifiers
– Pages viewed
– Time and date of access
– Duration of sessions
– Geographical location (approximate)
– Site interaction logs
b. Account Data:
– Full name
– Email address
– Shipping and billing address
– Telephone number
– Login credentials (encrypted)
c. Profile Data:
– Purchase history
– Wishlist items
– Saved preferences
– User behavior on mamajoywave.com
– Feedback and survey responses
d. Communication Data:
– Support inquiries
– Customer service interactions
– Emails and correspondence
– Submitted forms or messages via contact tools
e. Technical Data:
– Operating system
– Device type
– Network provider
– System and application settings
– Screen resolution, language, and time zone
f. Transaction Data:
– Order details
– Payment method (tokenized or third-party processed)
– Delivery address
– Order fulfillment status
– Invoicing and receipting information
g. Preference Data:
– Marketing communication selections
– Notification frequency settings
– Product and category interests
– Opt-in/opt-out history
4. Legal Bases for Processing
In accordance with the GDPR and CCPA, we process your personal data based on the following lawful grounds:
– Performance of Contract: To fulfill our obligations arising from any contracts entered into with you, such as processing purchases, delivering products, or managing account access.
– Legitimate Interests: To improve website functionality, protect system integrity, offer customer support, detect fraud, and optimize marketing effectiveness (provided such interests do not override your individual rights).
– Consent: When you have explicitly given us permission, particularly for email subscriptions, marketing communications, and cookie usage beyond strictly necessary categories.
– Compliance with Legal Obligations: To meet legal, regulatory, or operational requirements.
Where consent is required by applicable law, you have the right to withdraw it at any time, without affecting the lawfulness of processing before such withdrawal.
5. Your Rights
Under data protection legislation, you are entitled to the following rights:
– Right of Access: You may request details of personal data we hold about you.
– Right to Rectification: You may ask that we correct inaccurate or incomplete data.
– Right to Erasure: You may request the deletion of your personal data under certain conditions.
– Right to Restriction: You may request that the processing of your data be limited in specific instances.
– Right to Data Portability: You may receive your personal data in a structured, commonly used, machine-readable format and have it transmitted to another controller.
– Right to Object: You may object to our processing of your data based on legitimate interests or direct marketing.
To exercise any of your rights, please contact us at [email protected]. We may require verification of your identity before executing your request.
6. Security Measures
We implement industry-standard security practices to ensure the safety and confidentiality of your personal data, including:
– Data encryption during transmission and storage
– Secure server infrastructure
– Role-based user access controls
– Routine security audits and vulnerability assessments
– Regular backups and disaster recovery protocols
– Staff training on data minimization and governance
– Secure authentication mechanisms for internal systems
Despite our efforts, no method of transmission over the internet or method of electronic storage can be guaranteed 100% secure; however, we strive to use reasonable means to protect your data in accordance with our legal obligations.
7. International Transfers
Given the global nature of online services, your data may be transferred to, hosted in, or accessed from jurisdictions outside your country, including countries not deemed to provide an adequate level of data protection under GDPR. In such cases, we ensure that appropriate safeguards are in place, including:
– Standard Contractual Clauses approved by the European Commission
– Binding corporate rules (where available)
– Transfers to entities certified under recognized mechanisms (e.g., EU-US Data Privacy Framework, where applicable)
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or regulatory obligations. Retention periods include but are not limited to:
– Account and profile data: Retained for the duration of user registration and for up to 2 years after inactivity.
– Transaction data: Retained for 7 years for tax and legal compliance.
– Communication and support data: Retained for 3 years for service quality and dispute resolution.
– Marketing preference data: Retained until consent is withdrawn or modified.
– Cookie data: Variable retention depending on the cookie category (see Cookie Policy below).
Upon expiration of the relevant retention period, data is either securely deleted or anonymized.
9. Cookie Policy
mamajoywave.com uses cookies and similar technologies to enhance user experience, understand behavior, and deliver personalized services.
Types of Cookies Used:
– Essential Cookies: Required for the operation of our website. They enable core functionality such as page navigation and access to secured areas.
– Functional Cookies: Allow the website to remember choices you have made (e.g., language or region preferences).
– Analytics Cookies: Help us understand how visitors interact with our website by collecting information anonymously (e.g., Google Analytics).
– Performance Cookies: Used to measure the performance of our site and improve functionality by analyzing technical performance data.
10. Cookie Management & Compliance
In compliance with GDPR and CCPA:
– Users are presented with a cookie consent banner upon their initial visit.
– Consent for non-essential cookies is collected and can be adjusted at any time via our cookie preferences tool.
– Users have the right to opt-out of behavioral tracking or the sale of their personal information under CCPA.
– Browser settings can be used to block cookies; however, this may affect site functionality.
For more information about cookie preferences, or to withdraw previously granted consent, please refer to the cookie settings on mamajoywave.com.
11. Children’s Privacy
Our services are not directed to, and we do not knowingly collect personal data from, children under the age of 13. If we become aware that a child under 13 has provided us with personal information, we will take corrective action by deleting such data. If you believe a child under 13 has submitted personal information to mamajoywave.com, please contact us at [email protected].
12. Policy Updates and User Notifications
This Privacy Policy may be modified or updated to reflect legal changes, industry practices, or enhancements to our services. Updates will be posted on this page and, where appropriate, users will be notified via email or prominent website banners. Continued use of the site constitutes acceptance of changes.
Users are encouraged to review this policy periodically for the latest information on our privacy practices.
13. Contact Us
For questions, concerns, or requests related to this Privacy Policy or your personal data, please contact our data protection team:
Email: [email protected]
Mama Joy Wave remains fully committed to upholding your privacy rights and maintaining compliance with all relevant data protection regulations, including GDPR and CCPA.
We welcome your inquiries and will respond to your concerns in a timely and respectful manner.