Privacy Policy
1. Introduction
At irobotskins.com (“we,” “our,” or “us”), we are firmly committed to safeguarding your privacy and ensuring the highest standards of data protection in accordance with applicable laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines the types of personal data we collect, the purposes for processing, and the rights that you have in relation to your personal information.
Protecting your privacy is a core value of our business practices and product ecosystem. Whether you are browsing our website or engaging with our products and services, rest assured that your data is handled securely and transparently.
2. Scope of Policy and Data Controller Role
This Privacy Policy governs the processing of personal data collected through irobotskins.com and related services. We act as the data controller of your personal information, meaning we are responsible for determining the purposes and means of the processing activities. This policy applies to all visitors, users, and customers who interact with our website.
For purposes of this policy, our contact address for data protection inquiries is:
Email: [email protected]
3. Categories of Data Processed
We collect and process the following categories of personal data:
a. Usage Data:
Includes your browser type, IP address, device type, referring URLs, pages visited, interaction duration, and website behavior. This data is collected automatically through cookies and analytics tools to optimize performance and diagnose issues.
b. Account Data:
Collected when you create an account or place an order. Includes your full name, billing and shipping address, email address, and phone number.
c. Profile Data:
Includes preferences such as language choice, saved items, browsing behavior, order history, and personalization settings.
d. Communication Data:
Includes the content and metadata of communications conducted via contact forms, email inquiries, and customer support requests.
e. Technical Data:
Includes device identifiers, operating system versions, screen resolutions, system settings, and browser configurations.
f. Transaction Data:
Includes payment method (e.g., credit card type—not the full card number), order confirmations, shipping tracking numbers, and delivery status.
g. Preference Data:
Includes your marketing preferences, notification settings, consent choices, and information about product categories or features of interest to you.
4. Legal Bases for Processing
We process your personal information using one or more of the following legal bases as defined under applicable law:
– Consent: Where you have actively provided permission for us to process your data (e.g., subscribing to newsletters).
– Contract: Where processing is necessary to fulfill a contract with you (e.g., fulfilling an order).
– Legal Obligation: Where processing is required by applicable law (e.g., tax or accounting regulations).
– Legitimate Interest: Where we have a lawful interest in processing your data, provided it does not override your privacy rights (e.g., website analytics and fraud prevention).
5. Your Rights
In accordance with GDPR, CCPA, and other applicable regulations, you have the following rights concerning your personal data:
– Right of Access: You may request confirmation and access to the personal data we hold about you.
– Right of Rectification: You may request corrections to inaccurate or incomplete personal data.
– Right to Erasure: You may request the deletion of your personal information under certain conditions, such as withdrawal of consent.
– Right to Restriction: You may limit the ways in which we process your data under specific circumstances.
– Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format for transmission to another controller.
To exercise any of the above rights, you may contact us at [email protected]. We will respond in compliance with applicable legal timelines and requirements.
6. Security Measures
We employ industry-standard security controls to safeguard your data, including:
– Data encryption at rest and in transit using secure cryptographic protocols.
– Access controls and authentication systems for authorized personnel only.
– Regular data backups and disaster recovery procedures.
– Staff training on secure data handling and phishing awareness.
– Vulnerability scanning and cybersecurity audits.
Despite our efforts, no system is entirely impenetrable. We advise users to remain vigilant and report any suspected misuse to us promptly.
7. International Transfers
If personal data is transferred to countries outside the European Economic Area (EEA) or the United States, we ensure adequate protection through:
– Standard Contractual Clauses approved by the European Commission.
– Contractual safeguards compliant with provisions under the CCPA.
– Data protection impact assessments where required.
All cross-border data transfers are conducted in a manner that ensures your rights and confidentiality are maintained.
8. Data Retention
We retain personal data for no longer than is necessary for the purposes for which it was collected. Retention periods vary by category:
– Usage and Analytics Data: Up to 24 months for trend analysis.
– Account and Transaction Data: Retained for at least 7 years to comply with legal and accounting standards.
– Communication Data: Retained for up to 5 years for quality assurance and dispute resolution.
– Marketing and Preference Data: Retained until consent is withdrawn or 2 years of inactivity.
Once retention periods expire, data is either anonymized or securely deleted.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your browsing experience and collect analytics. Categories include:
a. Essential Cookies:
Necessary for core functionalities such as account logins, secure transactions, and cart management.
b. Functional Cookies:
Enable features such as remembering preferences, saved settings, and localized content display.
c. Analytics Cookies:
Used to gather aggregated performance data from platforms like Google Analytics to improve site usability.
d. Performance Cookies:
Monitor metrics such as load times and server response rates.
Third-party cookies may also be deployed, subject to their own privacy terms.
10. Cookie Management and Compliance
Upon your first visit to irobotskins.com, you will be presented with a Cookie Consent Banner in compliance with GDPR and CCPA requirements. Depending on your location, you can:
– Accept or decline non-essential cookies.
– Customize your preferences.
– Modify or withdraw consent at any time through our cookie settings panel.
You may also control cookie behavior via your browser settings. Please note that disabling certain cookies may affect site functionality.
11. Children’s Privacy
Our services are not directed to, and we do not knowingly collect personal data from, children under the age of 13. If we discover such data has been inadvertently collected, we will delete it promptly. Parents or legal guardians may contact us at [email protected] to request removal of a child’s information.
12. Policy Updates and Notification
We reserve the right to update this Privacy Policy to reflect changes in our practices or legal obligations. Changes will be posted on this page, and where material, users may be notified via email or on-site notices. You are responsible for reviewing this policy periodically to remain informed.
13. Contact Us
If you have any questions, comments, or concerns about this Privacy Policy or our data processing practices, you may contact us at:
Email: [email protected]
We are committed to full compliance with data protection laws and welcome all inquiries regarding your privacy.