Privacy Policy
1. Introduction
At crossingthehorizonbook.com, we take your privacy seriously and are firmly committed to protecting your personal data. This Privacy Policy outlines how your personal information is collected, used, and safeguarded in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We adhere to a privacy-first approach in managing your data, ensuring transparency, fairness, and integrity in all our data processing activities.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users and visitors of the website crossingthehorizonbook.com (the “Site”). The entity responsible for the processing of your personal data as described herein (the “data controller”) is crossingthehorizonbook.com. For all data inquiries, you may contact us directly at: [email protected].
3. Categories of Data Processed
We may process the following categories of personal data either directly, via automated technologies, or through interactions with you on the Site:
a. Usage Data
This includes information about your interaction with the Site, such as IP address, browser type, operating system, geographic location, session duration, pages viewed, and referring URLs.
b. Account Data
Collected when you create an account or complete forms on the Site, including name, postal address, email address, and phone number.
c. Profile Data
Data relating to your preferences, reading history, product interests, and behavioral metrics derived from your engagement with our content.
d. Communication Data
Includes records of your inquiry submissions, support requests, and correspondence via contact forms, email, or customer service platforms.
e. Technical Data
Details regarding the device you use to access the Site, such as device model, language settings, time zone, browser plug-ins, and connection type.
f. Transaction Data
Information related to purchases made through the Site, including payment details (processed securely by third-party processors), billing/shipping address, order history, and delivery tracking data.
g. Preference Data
Includes your opted-in marketing consents, communications preferences, and selected interests regarding our book and related offerings.
4. Legal Bases for Processing
We process your personal data lawfully under one or more of the following legal bases:
– Contractual Necessity: When processing is required to fulfill contractual obligations (e.g., delivering a purchased book).
– Consent: Where we have obtained explicit consent to process your data (e.g., for email marketing).
– Legitimate Interests: For purposes such as website analytics, customer support improvement, and product development, provided such interests are not overridden by your rights.
– Legal Obligation: When processing is required to comply with applicable laws and legal requests.
5. Your Data Protection Rights
In accordance with the GDPR and CCPA, you have the following rights:
– Right of Access: Request a copy of the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data under certain conditions.
– Right to Restriction of Processing: Request a pause or limitation on data processing.
– Right to Data Portability: Receive your data in a structured, commonly used, and machine-readable format for transfer to another data controller.
– Right to Object: Object to data processing that relies on our legitimate interests or third-party profiling.
– Right to Withdraw Consent: Withdraw consent at any time, where consent has been provided.
To exercise any of these rights, contact us at [email protected].
6. Security Measures
We implement robust technical and organizational measures to secure your personal data, including:
– Data encryption during transmission and storage.
– Role-based access controls limiting internal data access.
– Regular data backups and recovery protocols.
– Staff training on data privacy policies and best practices.
While we strive to protect your information, no transmission method is 100% secure. We encourage users to take personal precautions.
7. International Data Transfers
If your personal data is transferred outside of the European Economic Area (EEA), we ensure adequate protection by:
– Incorporating Standard Contractual Clauses approved by the European Commission.
– Relying on certification mechanisms or other legally approved transfer methods, as required under applicable law.
8. Data Retention
We retain personal data only for as long as necessary and in compliance with legal, operational, and regulatory requirements. Retention periods by data category are as follows:
– Usage, Technical, and Profile Data: Up to 36 months for analytics and service improvement.
– Account and Transaction Data: 7 years for financial and compliance purposes.
– Communication Data: 24 months for support and dispute resolution records.
– Preference and Marketing Data: Until consent is withdrawn or up to 24 months after last interaction.
Upon expiration of the relevant retention period, data is securely deleted or anonymized.
9. Cookie Policy
We utilize cookies and related technologies on crossingthehorizonbook.com to enhance user experience and monitor website performance. Types of cookies include:
– Essential Cookies: Necessary for site operation, login functionality, and security.
– Functional Cookies: Improve usability based on your preferences (e.g., language settings).
– Analytics Cookies: Collect statistical, anonymized data to understand traffic and behavior, using services like Google Analytics.
– Performance Cookies: Optimize Site performance based on device and browser capabilities.
10. Cookie Management and Compliance
You will be presented with a cookie banner upon visiting our Site for the first time, allowing you to manage your cookie preferences in line with GDPR and CCPA requirements. You may update your preferences at any time through browser settings or by revisiting the cookie settings on our Site.
We honor Do Not Track (DNT) signals and adhere to mechanisms that provide consumers with the ability to opt-out of the sale of personal information under CCPA.
11. Children’s Privacy
The Site is not intended for use by children under the age of 13. We do not knowingly collect or process data from children. If we learn that personal data of a child has been inadvertently collected, we will take prompt action to delete the information.
12. Policy Updates and User Notification
We reserve the right to amend this Privacy Policy at our discretion and will notify users of material changes through appropriate channels such as email notifications or Site alerts. Continued use of the Site after such updates constitutes acceptance of the revised policy.
13. Contact
If you have questions about this Privacy Policy or how we handle your personal data, please contact us at:
Email: [email protected]
We are committed to full compliance with data privacy legislation and will respond diligently to all privacy inquiries or concerns.
