PRIVACY POLICY
This Privacy Policy outlines how Song for Marion (“we,” “us,” or “our”) collects, uses, stores, and safeguards your personal data when you visit or interact with our website at songformarion.com (the “Website”). We are committed to protecting your privacy and handling your personal data transparently, securely, and in accordance with applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
Please read this Privacy Policy carefully to understand your rights and how your personal data is processed.
1. Commitment to Privacy and Data Protection
Your privacy is of paramount importance to us. We uphold the principles of fairness, transparency, integrity, and accountability in the collection and use of personal information. We implement strict internal controls and policies to maintain the confidentiality, integrity, and availability of your data. At songformarion.com, we process personal data only as necessary to provide you with an optimal user experience and to fulfill our contractual and legal obligations.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors and users of songformarion.com and to all personal data collected via the Website and related services. For the purposes of the GDPR, Song for Marion is the “data controller” of your personal data, meaning we determine the purposes and means of processing.
If you have any questions regarding this Policy or our data practices, you may contact us at: [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a) Usage Data
Data related to your interaction with the Website, including IP address, browser type and version, geographic location, referral source, pages visited, and session details.
b) Account Data
Information provided when registering or managing a user account, such as name, email address, postal address, telephone number, and login credentials.
c) Profile Data
Information about your behavior and preferences, such as purchase history, song engagement, content preferences, and feedback submissions.
d) Communication Data
Data arising from your communication with us through support requests, emails, surveys, feedback forms, or customer service interactions, including retention of communication history.
e) Technical Data
Technical information concerning the devices you use to access the Website, including operating system, device type, hardware specifications, language settings, and screen resolution.
f) Transaction Data
Details linked with purchases or other financial transactions made through the Website, including payment method, transaction ID, delivery address, and billing information.
g) Preference Data
Data related to your marketing and subscription preferences, product interest indications, and your consent status for communications and data processing.
4. Legal Bases for Processing
We process your personal data only when a lawful basis exists under applicable data protection legislation. These bases may include:
– Consent: Where you have expressly granted us permission to collect and process your data.
– Contractual Necessity: Where processing is necessary to fulfill an agreement or provide you with requested services.
– Legal Obligation: Where we are required to comply with legal or regulatory responsibilities.
– Legitimate Interests: When processing serves our legitimate interests—such as enhancing the Website, marketing, or fraud prevention—without overriding your rights and freedoms.
5. Your Rights
Under GDPR and, where applicable, CCPA, you have the following rights regarding your personal data:
– Right of Access: You may request confirmation of whether we process your data and obtain a copy of it.
– Right to Rectification: You may request correction of inaccurate or incomplete personal data.
– Right to Erasure: You may request that your data be deleted where permitted by law.
– Right to Restriction: You may request that we limit the processing of your data where only necessary.
– Right to Portability: You may request a transfer of your data in a structured, commonly used, and machine-readable format to another data controller.
– Right to Object/Opt-Out: You may object to processing based on legitimate interests or for marketing purposes.
To exercise any of these rights, please email us at [email protected]. We may request verification of your identity in connection with any request.
6. Security Measures
To protect the integrity, confidentiality, and availability of personal data, we have implemented a series of technical and organizational security measures including:
– End-to-end encryption during data transmission.
– Role-based access controls and secure authentication mechanisms.
– Regular system audits and security monitoring tools.
– Comprehensive backup solutions and disaster recovery plans.
– Periodic staff training programs to ensure data confidentiality and awareness of security procedures.
7. International Transfers
If personal data is transferred outside of the European Economic Area or your jurisdiction (e.g., to servers or service providers in other countries), we will ensure it receives the same level of protection through mechanisms such as:
– Standard Contractual Clauses approved by the European Commission.
– Verification of recipient countries’ adequacy status under GDPR.
– Additional binding corporate rules or data sharing agreements where applicable.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including fulfilling legal, contractual, and operational obligations. The general retention periods are as follows:
– Usage and Technical Data: Up to 12 months
– Account and Profile Data: Until account closure and up to 5 years thereafter
– Communication Data: Up to 3 years following last interaction
– Transaction Data: 7 years for financial compliance
– Preference and Consent Data: Maintained until withdrawn or updated
Where relevant, retention periods may be extended or reduced in accordance with legal obligations or your directions.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your browsing experience on songformarion.com. Cookies are small pieces of data stored on your device. We use the following categories:
– Essential Cookies: Necessary for basic Website functionality, including secure login and session management.
– Functional Cookies: Enable personalization features such as remembering user preferences.
– Analytics Cookies: Help us understand user behavior through aggregated metrics and site usage statistics (e.g., via Google Analytics).
– Performance Cookies: Assist in improving website speed, responsiveness, and troubleshooting issues.
10. Cookie Management and Compliance
You may manage or disable cookies at any time via your browser settings. On your first visit, we display a cookie banner in compliance with GDPR and CCPA requirements, enabling you to accept, reject, or customize your cookie preferences. You may withdraw your consent at any time using the cookie management tool available on songformarion.com.
For California residents, we also honor do-not-track preferences and offer opt-out options relevant to the “sale” or “sharing” of personal data under CCPA.
11. Children’s Privacy
Our Website and services are not intended for children under the age of 13. We do not knowingly collect personal data from individuals under 13 years of age without verifiable parental consent. If we learn that personal information was collected from a child under 13 without parental consent, we will delete the information promptly.
12. Policy Updates & Notifications
We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. Material changes will be communicated via prominent notices on songformarion.com or by direct communication, where necessary.
We encourage you to review this Policy periodically to remain informed about how we protect your data.
13. Contacting Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, you can reach us at any time at:
Email: [email protected]
We remain committed to maintaining full compliance with applicable privacy laws and ensuring that all users of songformarion.com can interact with our platforms in a secure and privacy-respecting environment.