Privacy Policy
1. Introduction
New Hope Mommy (“we,” “us,” or “our”) is firmly committed to safeguarding your privacy and protecting your personal data. This Privacy Policy describes how we collect, use, disclose, and secure personal information through our website, newhopemommy.com. Our data handling practices comply with all applicable privacy laws and regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), with a strong emphasis on transparency, fairness, and respect for your rights.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data submitted to or collected via newhopemommy.com and any associated services or communications. For purposes of the GDPR and other applicable legislation, New Hope Mommy is the “Data Controller” responsible for your personal information.
3. Categories of Data Processed
We may collect and process the following categories of personal data when you interact with newhopemommy.com:
a. Usage Data: Includes information about how you use our website such as browser type, device identifiers, IP address, referral URLs, date/time stamps, and session duration.
b. Account Data: Information you provide when creating or managing your account, including your full name, email address, postal address, and telephone number.
c. Profile Data: Includes your interests, preferences, browsing patterns, product choices, and interaction history with our website and services.
d. Communication Data: Records of correspondence with our support team or any queries submitted via email or webforms, including support tickets and message logs.
e. Technical Data: Device attributes and configurations, operating system information, network settings, and system errors relevant to website functionality.
f. Transaction Data: Includes billing and purchase history, payment method details (processed via secure, PCI-compliant providers), and shipping addresses for order fulfillment.
g. Preference Data: Marketing communication preferences, product interest indications, and opt-in or opt-out choices related to contact and promotional offers.
4. Legal Bases for Processing
In compliance with Article 6 of the GDPR, we process your personal data only when there is a valid legal ground:
– Consent: Where you have provided your explicit consent (e.g., to receive marketing communications).
– Contractual Necessity: Where the processing is necessary to perform a contract with you or to take steps at your request prior to entering into such a contract.
– Legal Obligation: To comply with legal responsibilities or regulatory inquiries.
– Legitimate Interests: For purposes such as fraud prevention, network security, website analytics, and customer service, provided such interests do not override your fundamental rights and freedoms.
5. Your Rights
Under GDPR and CCPA, you possess specific rights regarding your personal data:
– Right of Access: To know what personal data we hold about you and for what purposes.
– Right to Rectification: To request immediate correction of any inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): To request deletion of your data under qualifying circumstances.
– Right to Restriction: To limit processing of your data under specified conditions.
– Right to Data Portability: To receive a structured, commonly used format of your data or have it transmitted to another entity.
– Right to Object: Where processing is based on legitimate interests or involves direct marketing, you may object at any time.
– Right Not to Be Subject to Automated Decision-Making, including Profiling: We do not engage in automated decisions that produce legal effects without human input.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We employ rigorous technical and organizational safeguards to ensure data confidentiality, integrity, and availability. These include:
– SSL encryption for data in transit
– Role-based and restricted access control mechanisms
– Secure backup procedures
– Regular security monitoring and threat detection
– Staff training on privacy practices and data handling
7. International Transfers
In cases where your information is transferred outside your jurisdiction (e.g., from the EU to the United States), safeguards compliant with international privacy law are employed, such as EU Standard Contractual Clauses or equivalent mechanisms. We ensure that service providers maintain adequate protection of your data regardless of their geographic location.
8. Data Retention
We retain personal data only for as long as is necessary to fulfill the purposes outlined in this Privacy Policy, including:
– Customer account and profile data: Retained for as long as the account remains active and for a maximum of 5 years post-inactivity.
– Transaction and payment records: Retained for 7 years to meet tax and financial compliance.
– Communication logs and support records: Retained for 3 years for quality assurance and potential legal requirements.
– Marketing preference data: Retained until you change your preferences or withdraw consent.
9. Cookie Policy
newhopemommy.com uses cookies and similar tracking technologies to enhance user experience and analyze website traffic. Cookies are categorized as follows:
– Essential Cookies: Necessary for core functionality, including security and navigation.
– Functional Cookies: Enable enhanced features such as remembering user preferences.
– Analytics Cookies: Help us measure and analyze usage statistics to improve website performance.
– Performance Cookies: Monitor page load speeds, responsiveness, and technical errors.
10. Cookie Management and Compliance
Upon initial visit to newhopemommy.com, users are presented with a cookie consent banner in accordance with GDPR and CCPA requirements. You may modify or withdraw your consent at any time by adjusting your browser settings or using our cookie management tool available on the website. Disabling certain cookies may affect site functionality.
11. Special Protections for Children
We do not knowingly collect or solicit personal information from children under the age of 13. If we become aware that a child has provided personal data without verified parental consent, we will delete such information promptly. If you believe a child under 13 may have submitted personal data to us, please contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to amend this Privacy Policy in response to evolving legal, technical, or business developments. Material changes will be communicated clearly via updates on newhopemommy.com or, where appropriate, directly to you via the communication channels we have on file.
13. Contact Us
If you have any questions about this Privacy Policy, wish to exercise your data rights, or raise a concern about our data practices, please contact us at:
Email: [email protected]
In our commitment to privacy and legal compliance, we strive to ensure that your personal data is handled with care, transparency, and responsibility. We welcome your inquiries and feedback regarding our privacy practices.