Privacy Policy for Curry-Chef.com
1. Introduction
Curry-Chef.com (“we”, “us”, or “our”) is committed to safeguarding the privacy and personal data of our website visitors, users, and customers. We place a high priority on data protection and are dedicated to ensuring that your personal information is handled with the highest standards of care, confidentiality, and transparency in accordance with applicable laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through our website, curry-chef.com, and any related online services. Curry-Chef.com acts as the data controller for the purposes of GDPR and the business subject to CCPA, depending on your location.
By using our website and services, you acknowledge the practices outlined in this Privacy Policy. If you have questions regarding this policy or data practices, please contact us at [email protected].
3. Categories of Personal Data We Process
Depending on how you interact with curry-chef.com, we may collect and process the following categories of personal data:
a. Usage Data
Information automatically collected about your interactions with our website, including your IP address, browser type, device identifiers, referring and exit pages, pages viewed, session duration, and other diagnostic data.
b. Account Data
Data submitted when creating an account or placing an order, including your full name, billing and shipping address, email address, and telephone number.
c. Profile Data
Information related to your preferences, past orders, account behavior, interests, and user settings on our site.
d. Communication Data
Records of your communications with us, such as email exchanges, contact forms, support queries, and chat interactions.
e. Technical Data
Information about your device and software, such as operating system, browser version, time zone settings, and hardware configurations.
f. Transaction Data
Details relating to your orders, payments made through curry-chef.com, delivery addresses, payment confirmation, and refund status.
g. Preference Data
Data concerning your marketing consents, email/newsletter subscription choices, product category preferences, and browsing behavior as it pertains to product offerings.
4. Legal Bases for Processing Personal Data
We process your personal data under the following legal bases, as applicable under privacy legislation:
– Consent: Where you have actively given permission (e.g., subscribing to newsletters).
– Contractual Necessity: Where the processing is required to perform a contract with you, such as order fulfillment or account management.
– Legal Obligation: Where we are under a legal obligation to retain or share data (e.g., financial auditing).
– Legitimate Interests: Where it is reasonably necessary to operate our business, provided that such interests are not overridden by users’ rights or expectations (e.g., fraud prevention, website security, and analytics).
5. Your Data Protection Rights
Depending on your jurisdiction, you have the following rights regarding your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request corrections to inaccurate or outdated data.
– Right to Erasure (“Right to be Forgotten”): You may request deletion of your data where lawfully applicable.
– Right to Restrict Processing: You may request that we limit the way we process your data under certain conditions.
– Right to Data Portability: You may obtain a copy of your processed data in a machine-readable format to transfer to another service provider.
– Right to Object: You may object to processing where we rely on legitimate interest or for direct marketing purposes.
– Non-Discrimination (CCPA): We will not discriminate against users for exercising their rights under applicable laws.
To exercise any of your rights, please contact us at [email protected]. We reserve the right to verify your identity before responding to such requests.
6. Security Measures
Curry-Chef.com has implemented industry-standard security measures to ensure the integrity, confidentiality, and availability of your personal data. These measures include:
– Data encryption during transmission (SSL/TLS)
– Access controls and user authentication protocols
– Secure server infrastructure with routine backups
– Physical and digital safeguards for data centers
– Employee training on data protection policies and privacy awareness
Despite these efforts, no system is completely infallible. We encourage users to also take personal measures to protect their data.
7. International Data Transfers
Where your data is transferred outside your home jurisdiction (particularly outside the European Economic Area or California), such transfers are conducted using valid legal safeguards, such as:
– Standard Contractual Clauses approved by the European Commission
– Data transfer agreements with service providers
– Compliance with relevant local and international data protection regulations
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations. Specific retention periods include:
– Account Data: Retained for as long as the account remains active or until deletion is requested.
– Transaction Data: Retained for a minimum of 7 years for tax and audit purposes.
– Communication Data: Retained for 2 years from the date of last contact.
– Marketing Preference Data: Retained until consent is withdrawn or data is updated.
Anonymized or aggregated data that cannot identify an individual may be retained indefinitely.
9. Cookie Policy
We use cookies and similar technologies on curry-chef.com to enhance your browsing experience and provide essential website functionality. The types of cookies include:
– Essential Cookies: Required for basic functions like page navigation and security.
– Functional Cookies: Assist with remembering preferences, local settings, or language choices.
– Performance Cookies: Collect anonymous data on website performance and usage patterns.
– Analytics Cookies: Help us understand visitor activity and improve website optimization and marketing efforts.
10. Cookie Management and Compliance with GDPR and CCPA
When you first visit curry-chef.com, you are presented with a cookie consent tool that allows you to manage cookie preferences in accordance with GDPR and CCPA requirements. You can modify your preferences at any time through your browser settings or by accessing the cookie banner on our site.
Based on your jurisdiction, certain cookies may be disabled or enabled only with explicit opt-in consent. We strictly honor Do-Not-Track settings and “opt-out” signals required under California law.
11. Children’s Privacy
Curry-Chef.com is not intended for children under the age of 13. We do not knowingly collect or solicit personal data from individuals under 13 years old. If we discover that personal data of a child under 13 has been collected without verifiable parental consent, we will take steps to delete such information as soon as possible. Parents or guardians who believe their child may have provided data without consent may contact us at [email protected].
12. Changes to This Policy
We reserve the right to revise this Privacy Policy as needed to reflect evolving legal, regulatory, or business requirements. Users will be notified of significant changes through appropriate communication channels, such as a banner notice on curry-chef.com, or via email where applicable.
Your continued use of our website and services constitutes acceptance of any updates to this Privacy Policy.
13. Contact Us
If you have any questions, concerns, or requests concerning this Privacy Policy or our handling of your personal data, please contact our privacy team at:
Email: [email protected]
We are committed to resolving privacy concerns promptly and transparently.
—
Curry-Chef.com operates in adherence with the principles of lawful, fair, and transparent data processing, and is committed to full compliance with GDPR, CCPA, and all other applicable privacy laws. Please do not hesitate to reach out with privacy-related questions or complaints using the contact information provided above.