PRIVACY POLICY
At Suite Exclusive, accessible via suiteexclusive.com, we are fully committed to protecting your privacy and ensuring that your personal data is handled with the utmost care and in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, share, and safeguard your information when you interact with our website, services, and communications.
1. Introduction
Suite Exclusive stands by a privacy-first philosophy. We understand the importance of maintaining the confidentiality, integrity, and security of our users’ personal data. This Privacy Policy reflects our commitment to transparent data practices built on trust and legal compliance, prioritizing your rights and privacy.
2. Scope and Data Controller Responsibility
This Privacy Policy applies to all visitors, users, and customers of suiteexclusive.com. The data controller responsible for your personal data is Suite Exclusive. For all privacy-related inquiries, you may contact us at [email protected].
This policy governs how personal data is collected and processed through your use of the suiteexclusive.com website and its associated services, whether through browsing, creating an account, making purchases, or engaging with customer support.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a) Usage Data
Includes information about how you interact with our site, such as IP address, browser type, access times, page views, referring URLs, and session duration.
b) Account Data
Comprises data you provide when registering or updating an account, including your full name, email address, mailing address, and telephone number.
c) Profile Data
May include your preferences, past purchase history, browsing behavior, saved items, and other interactions that help personalize your experience.
d) Communication Data
Covers all information within support tickets, emails, chat conversations, and contact history, which enables us to track our engagement and improve service quality.
e) Technical Data
Collected from your devices, such as hardware models, operating system type and version, browser plug-in types, system configuration, and other diagnostic data.
f) Transaction Data
Encompasses payment details (processed via secure third parties), billing and shipping addresses, order identifiers, and product fulfillment information.
g) Preference Data
Refers to your marketing consents, communication preferences, and product interest selections—used to ensure relevant engagement and adherence to your choices.
4. Legal Bases for Processing
We process your personal data on the following legal bases, as applicable under GDPR:
– Consent: When you voluntarily provide your information and authorize specific processing (e.g., subscribing to marketing emails).
– Contractual Necessity: For performance of a contract or to take pre-contractual steps at your request (e.g., processing orders).
– Legitimate Interests: For business purposes such as analytics, service improvement, fraud prevention, and marketing (where such interests do not override your rights).
– Legal Obligation: Where processing is necessary for compliance with legal and regulatory obligations.
Where required under CCPA, we operate under the standard of “Notice at Collection” and ensure that you have control over the personal data we collect about you.
5. Your Rights
As a data subject under the GDPR, and a consumer under the CCPA, you are entitled to exercise the following rights:
– Right of Access: You may request confirmation and a copy of the personal data we hold about you.
– Right to Rectification: You have the right to request correction of inaccurate or incomplete data.
– Right to Erasure: Also known as the ‘right to be forgotten’, you may request that we delete your data under certain conditions.
– Right to Restriction: You can request that we temporarily suspend processing of your data.
– Right to Data Portability: You may request your data in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to our processing based on legitimate interests or direct marketing.
– Right to Opt-Out (CCPA): California residents have the right to opt-out of the sale or sharing of personal information.
To exercise any of these rights, or to appoint an authorized agent to act on your behalf where applicable, please contact us at [email protected].
6. Security Measures
We implement rigorous technical and organizational measures to protect your personal data, which include:
– Encryption of data in transit and at rest.
– Secure web hosting and firewall protection.
– Role-based access control for employees and contractors.
– Regular security audits and system updates.
– Data backups stored securely and disaster recovery protocols.
– Staff training programs focused on data protection and cybersecurity best practices.
7. International Data Transfers
If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission. For users located in other jurisdictions, we comply with local data protection frameworks to the extent applicable.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Retention periods may vary by data type:
– Usage and Technical Data: Retained for 12 months for analytics purposes.
– Account and Profile Data: Retained while the account is active and for up to 6 years thereafter.
– Transaction Data: Retained for 7 years to meet accounting and tax obligations.
– Communication Data: Retained for 3 years after the last interaction.
– Preference Data: Retained until you update your consent or unsubscribe.
9. Cookie Policy
Our website uses cookies, which are small text files placed on your device, for various purposes:
– Essential Cookies: Allow core site functionality such as security, authentication, and order processing. These cannot be disabled.
– Functional Cookies: Enhance usability and remember preferences.
– Analytics Cookies: Collect statistical data on user behavior to improve our website performance.
– Performance Cookies: Monitor site responsiveness and system load.
10. Cookie Management & Compliance
You have control over cookie settings. Upon your first visit to suiteexclusive.com, a cookie banner will allow you to manage and customize preferences. You can also adjust your browser settings to refuse or delete cookies. We honor Do-Not-Track (DNT) signals and offer opt-outs in compliance with GDPR and CCPA.
11. Children’s Data
suiteexclusive.com is not directed toward, nor intended for, children under the age of 13. We do not knowingly collect personal information from children. If we become aware that data has been collected from a minor without verifiable parental consent, we will delete such data promptly.
12. Policy Updates
This Privacy Policy may be updated periodically to reflect changes in technology, legal obligations, or our data practices. Substantive changes will be communicated via the website or your registered contact method. Continued use of suiteexclusive.com following such updates indicates your acceptance of the revised policy.
13. Contact Us
Should you have any privacy-related questions, concerns, or requests, please contact us at:
Email: [email protected]
We are committed to resolving any issues promptly and transparently. Your privacy is important to us, and we strive to uphold the highest standards in data protection.
This Privacy Policy is designed in accordance with GDPR and CCPA requirements. For any privacy concerns or to exercise your legal rights, do not hesitate to reach out to [email protected].