Privacy Policy for HatchCozy.com

1. Introduction

At HatchCozy, accessible at https://hatchcozy.com, we are fully committed to safeguarding the privacy and personal data of our users. This Privacy Policy outlines the ways in which we collect, use, disclose, retain, and protect your personal information in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. We adhere to a privacy-first approach to ensure the security, transparency, and integrity of your personal data.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all individuals who visit, use, interact with, or purchase through our website, hatchcozy.com (the “Website”), or communicate with us via email or other means. For the purposes of applicable privacy legislation, HatchCozy is the “Data Controller” of your personal data. This means that we determine the purposes and means of processing your personal information.

3. Categories of Data Processed

We may collect and process the following categories of personal information:

a. Usage Data
Information about how you interact with the Website, including IP address, browser type, browsing behavior, pages visited, visit duration, geographical location, time zone, device IDs, session identifiers, and referral URLs.

b. Account Data
Data provided during sign-up or checkout, such as full name, shipping and billing addresses, email address, and telephone number.

c. Profile Data
Information created as a result of user preferences and interactions, including saved items, purchase history, and behavioral analytics.

d. Communication Data
Records of all communications between you and HatchCozy, including emails, support requests, live chat transcripts, and internal correspondence relating to your queries or submitted information.

e. Technical Data
Device and internet connection specifications such as operating system, platform, screen resolution, device manufacturer, and system configuration data.

f. Transaction Data
Information related to your purchases, including order history, payment method used (excluding full card numbers), delivery address, and logistics tracking data.

g. Preference Data
Your communication and marketing preferences, including opt-ins and opt-outs for newsletters, product alerts, or promotions, interests in specific product categories, and survey responses.

4. Legal Bases for Processing

We collect and process your personal data only when we have a legal basis to do so under GDPR and CCPA. These include:

a. Consent – when you explicitly agree to the use of your data for defined purposes, such as subscribing to email marketing or accepting optional cookies.

b. Contract – when data processing is necessary to fulfill a contract with you, such as processing and delivering your order.

c. Legitimate Interests – when processing is necessary for our legitimate business interests, such as website operation, fraud prevention, and analytics, provided those interests are not overridden by your privacy rights.

d. Legal Obligation – when we are legally required to retain or disclose certain data for compliance with applicable laws.

5. Your Rights

Under GDPR and CCPA, you have the following rights regarding your personal data:

– Right of Access – to obtain confirmation of whether or not your personal data is being processed and access to it.
– Right to Rectification – to correct any inaccurate or incomplete personal data we hold about you.
– Right to Erasure – to request deletion of your personal information under certain circumstances (“right to be forgotten”).
– Right to Restriction – to restrict further processing of your personal data where certain conditions apply.
– Right to Data Portability – to receive your personal data in a structured, commonly used, and machine-readable format and to have it transferred to another controller.
– Right to Object – to object to processing based on legitimate interests, direct marketing, or profiling.
– Right to Withdraw Consent – to revoke consent where provided, at any time, without affecting earlier lawful processing.

To exercise any of the above rights, please contact us at [email protected].

6. Security Measures

We implement and maintain appropriate technical and organizational security measures to safeguard your personal information against unauthorized access, disclosure, alteration, and destruction. These measures include:

– Encryption of sensitive data and communications.
– Secure server infrastructure with firewall and intrusion detection.
– Access control protocols to limit access to authorized personnel only.
– Regular data backups and recovery protocols.
– Staff training and confidentiality agreements to ensure high standards of privacy awareness.

7. International Transfers

Your personal information may be stored and processed in countries outside of your jurisdiction, including countries not offering the same level of data protection as your home country. Where we transfer your data internationally, especially outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your personal data.

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by law, including for tax, accounting, or legal compliance.

– Usage and Technical Data: Retained for up to 12 months for analytics and performance monitoring.
– Account and Profile Data: Retained as long as you have an open account with us.
– Transaction Data: Retained for at least 7 years for financial record-keeping.
– Communication and Preference Data: Retained for up to 3 years or until consent is updated or withdrawn.

9. Cookie Policy

Our website uses cookies and similar tracking technologies to enhance user experience, deliver personalized content, and analyze web traffic. These include:

– Essential Cookies – required for core site functionality such as checking out or signing in.
– Functional Cookies – enable enhanced features like remembered preferences.
– Analytics Cookies – collect data for statistical analysis on website usage and performance.
– Performance Cookies – used to monitor and improve loading speed and responsiveness.

10. Cookie Management and Compliance

Upon visiting hatchcozy.com, you are provided with a cookie consent banner enabling you to accept or adjust cookie settings in accordance with GDPR and CCPA requirements. You may update your preferences or withdraw consent at any time through the Cookie Settings link located in the website footer. You can also manage cookies via your browser settings.

11. Children’s Privacy

HatchCozy does not knowingly collect or solicit personal information from children under the age of 13. If we are informed that such data has been inadvertently collected, we will take immediate steps to delete it. Parents and guardians who believe that their child may have provided personal data are encouraged to contact us.

12. Policy Updates and User Notifications

We reserve the right to update this Privacy Policy at our discretion to reflect changes in regulatory requirements or our data processing practices. We encourage you to review this policy periodically. Significant changes will be communicated via notices on our website or by direct communication, if appropriate.

13. Contact

If you have any questions, requests, or concerns related to this Privacy Policy or our handling of your personal data, please contact us at:

Email: [email protected]
Website: https://hatchcozy.com

We take data protection seriously and are committed to full compliance with GDPR, CCPA, and all relevant standards. Users are encouraged to reach out with any privacy inquiries or concerns.