Privacy Policy for MainStreetPlace.com
1. Introduction
At MainStreetPlace.com, we are committed to protecting the privacy and security of your personal information. We respect your right to data protection and endeavor to safeguard all information you provide to us through lawful, fair, and transparent practices. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data when you interact with our website and services. We understand that your trust is foundational, and we are fully committed to honoring that trust through strict adherence to applicable international data privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, customers, and others who access or use MainStreetPlace.com or communicate with us via email or other channels. For purposes of GDPR and other applicable data protection legislation, MainStreetPlace.com is the data controller responsible for your personal data collected through this website. If you have questions regarding our data practices, please contact us at [email protected].
3. Categories of Data Processed
We process various categories of personal data, depending on how you interact with our website and services. These may include:
a. Usage Data:
Information automatically collected through your use of our website, including but not limited to your IP address, browser type and version, unique device identifiers, access times, pages viewed, and referring website addresses.
b. Account Data:
Information provided when you create an account or complete transaction processes, including your full name, mailing address, email address, and phone number.
c. Profile Data:
Information you provide voluntarily or generate through your interactions, such as user preferences, purchasing history, browsing behavior, and saved items.
d. Communication Data:
Any data shared with us in the course of customer service interactions, including emails, messages submitted via contact forms, and any support tickets.
e. Technical Data:
Details about the device you use to access our services, including hardware model, operating system, browser plug-ins, screen resolution, and mobile network information.
f. Transaction Data:
Information related to your purchases on MainStreetPlace.com, including payment method details (processed securely via third-party providers), delivery addresses, and order history.
g. Preference Data:
Marketing and communication preferences, including consent statuses for receiving newsletters, email alerts, and information about offers or surveys.
4. Legal Bases for Processing
We only process your personal data where a lawful basis exists under applicable data protection regulations, including:
– Contractual Necessity: Where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.
– Legitimate Interests: Where processing is necessary for our legitimate interests (such as to maintain and improve our services), provided those interests are not overridden by your rights.
– Consent: Where you have provided explicit consent to such processing for specific purposes (e.g., marketing communications).
– Legal Obligation: Where we are required to process your data to comply with a legal duty.
5. Your Rights
In accordance with the GDPR and CCPA, you have the following rights regarding the personal data we may hold about you:
– Right of Access – You have the right to request access to personal data we hold about you.
– Right to Rectification – You may request correction of inaccurate or incomplete data.
– Right to Erasure – You may request deletion of your personal data where it is no longer necessary for the purposes collected.
– Right to Restrict Processing – You have the right to request restriction of processing in certain circumstances.
– Right to Data Portability – You may request to receive your personal data in a structured, commonly used, and machine-readable format and to have those data transmitted to a third party.
To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before processing such requests to protect your personal data.
6. Security Measures
We implement rigorous technical and organizational security measures to prevent the unauthorized access, disclosure, alteration, or destruction of your personal data. These include, but are not limited to:
– Encryption of data during transmission and storage
– Role-based access controls and secure authentication
– Continuous monitoring and regular security audits
– Secure data backups and disaster recovery protocols
– Staff training on data protection compliance and best practices
7. International Transfers
Your personal data may be transferred to and processed in countries outside your jurisdiction, including to jurisdictions that may not provide the same level of data protection as your country. When we transfer your data internationally, we ensure such data is adequately protected through one or more of the following:
– Standard Contractual Clauses (approved by the European Commission)
– Binding Corporate Rules
– Adequacy decisions from the European Commission
– Other legal safeguards recognized under international law
8. Data Retention
We retain your personal data only for as long as necessary for the purposes set forth in this policy, in accordance with applicable legal and regulatory obligations. Retention periods include:
– Account and Profile Data: Retained while your account remains active and up to 36 months after account closure unless required longer by law.
– Transaction and Financial Records: Retained for at least 7 years to comply with tax and accounting obligations.
– Communication Data: Retained for up to 24 months for quality assurance and support tracking.
– Cookie and Tracking Data: Retained in accordance with our Cookie Policy and applicable laws; typically no longer than 13 months unless further consent is obtained.
9. Cookie Policy
MainStreetPlace.com uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and personalize content. These may include:
– Essential Cookies: Required for the operation of our website; they enable core functionalities like page navigation and secure login.
– Functional Cookies: Enable enhanced features such as remembering user settings and choices.
– Analytics Cookies: Collect information about how visitors use our website (e.g., page views, visitor sources) to improve site performance and usefulness.
– Performance Cookies: Monitor the effectiveness of content and assess site usability.
10. Cookie Management and Compliance
When you visit our website, we may display a cookie consent banner in compliance with GDPR and CCPA requirements. You have the option to opt-in or opt-out of non-essential cookies at any time through our cookie preference settings. You may also manage your cookie preferences through your browser settings. California residents are afforded additional controls under CCPA, including the right to opt-out of the “sale” of personal data, if applicable.
11. Children’s Privacy
MainStreetPlace.com does not knowingly collect personal data from children under the age of 13. If we obtain actual knowledge that we have inadvertently gathered information from a user under the age of 13, we will promptly delete such data unless required for legal compliance. Parents and guardians who believe we have collected information from their child may contact us at [email protected].
12. Policy Updates & User Notifications
We reserve the right to modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or enhancements to user privacy. Any material changes to this policy will be communicated through an update on MainStreetPlace.com and, where appropriate, notified to you via email or on-site alert. We encourage users to review this Privacy Policy periodically to stay informed of our data protection practices.
13. Contact
If you have any questions regarding this Privacy Policy, our data practices, or wish to exercise your privacy rights, you may contact us at:
Email: [email protected]
We are committed to compliance with all relevant privacy and data protection laws and welcome your inquiries and feedback regarding our handling of personal data.