Privacy Policy
Shade Summit (“we,” “us,” or “our”) is committed to protecting your privacy and safeguarding your personal data. This Privacy Policy outlines how your personal information is collected, used, disclosed, and protected when you visit or interact with our website at shadesummit.com (“Website”). By using our Website or providing your personal data to us, you acknowledge that you have read and understood this policy.
We are dedicated to maintaining the trust and confidence of our users by adhering strictly to applicable data protection legislation, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act of 2018 (“CCPA”), as amended.
1. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to all personal data collected through or in connection with your use of shadesummit.com. Shade Summit is the data controller in respect of the personal data we process under this Policy. As the data controller, we are responsible for determining the purposes and means of processing your personal data.
2. Categories of Personal Data We Process
We collect and process the following categories of personal data:
a. Usage Data – Information regarding how you use our Website, including IP address, browser type, operating system, referral URLs, pages viewed, links clicked, and session identifiers.
b. Account Data – Information submitted when creating an account or placing an order, such as your name, email address, mailing address, billing address, phone number, and account login credentials.
c. Profile Data – Information related to your interactions with us, including your preferences, interests, past purchases, and behavioral data aggregated through cookies or similar technologies.
d. Communication Data – Records of correspondence, including customer support inquiries, contact forms, satisfaction surveys, and other communications.
e. Technical Data – Data from your device, including device type, operating system, device settings, and system configurations to ensure smooth website operation and troubleshooting.
f. Transaction Data – Details of purchases or payments made through the Website, including billing details, shipping information, and payment provider transaction identifiers. Payment card information is processed securely by our third-party payment processors and not stored directly by us.
g. Preference Data – Your marketing preferences, including permissions given for email or SMS communications, and preferences regarding products, services, or content.
3. Legal Bases for Processing Personal Data
We process personal data only where we have a legal basis to do so under applicable laws. The bases for processing may include:
– Consent – Where you have given us clear, informed, and unambiguous permission to process your personal data for a specific purpose (e.g., for marketing communications).
– Contractual Necessity – Where processing is necessary to perform a contract you have entered into with us (e.g., to process purchases or provide customer support).
– Legitimate Interests – Where processing is necessary for our legitimate business interests, provided your interests and fundamental rights do not override those interests (e.g., analytics, improving user experience, fraud prevention).
– Legal Obligation – Where we are required to process your personal data for compliance with a legal obligation (e.g., tax, accounting, regulatory requirements).
4. Your Data Protection Rights
Subject to applicable law, you have a range of rights over your personal data, including:
– Access – You have the right to obtain confirmation as to whether your personal data is being processed and to receive a copy of that data.
– Rectification – You may request correction of inaccurate or incomplete personal data.
– Erasure – You have the right to request deletion of your personal data, subject to applicable retention obligations.
– Restriction – You may request that we suspend the processing of your personal data in certain circumstances.
– Data Portability – You have the right to request that we provide your personal data in a structured, commonly used, machine-readable format, or transmit it to another data controller at your direction.
– Objection – Where processing is based on legitimate interest or direct marketing, you have the right to object.
If you wish to exercise any of the above rights, please contact us at [email protected].
5. Data Security Measures
We implement robust technical and organizational security measures to protect your personal data against unauthorized access, loss, destruction, alteration, or disclosure. These include:
– Data encryption in transit and at rest
– Firewall and intrusion detection systems
– Access controls based on need-to-know and least privilege principles
– Routine security audits and vulnerability assessments
– Regular staff data protection and cybersecurity training
– Secure data backup and disaster recovery protocols
While we strive to protect your information, no system is entirely secure. We encourage you to take precautions to protect your personal data online.
6. International Data Transfers
We may transfer your personal data outside of your country of residence, including to countries that may not provide the same level of protection for personal data as your jurisdiction. When such international transfers occur, we implement appropriate safeguards — including reliance on the European Commission’s Standard Contractual Clauses or other lawful mechanisms — to ensure that your rights and data remain protected.
7. Data Retention
We retain your personal data only for as long as necessary for the purposes for which it was collected, or to comply with legal, regulatory, tax, accounting, or other obligations. The retention periods differ by data category:
– Usage Data: Retained for 12 months to support analytics and diagnostic efforts
– Account Data: Retained for the duration of the active account and up to 7 years thereafter for record-keeping
– Profile Data: Retained for up to 3 years after last interaction
– Communication Data: Retained for 3 years following resolution of the interaction
– Technical Data: Retained up to 12 months
– Transaction Data: Retained for a minimum of 7 years to meet legal and financial obligations
– Preference Data: Retained until consent is withdrawn or after 2 years of inactivity
8. Cookie Policy
Our Website uses cookies and similar tracking technologies to provide essential functionality, improve performance, and personalize your browsing experience. The types of cookies we use include:
– Essential Cookies – Necessary for the core functionality of the site, such as page navigation and secure access.
– Functional Cookies – Enable the Website to remember your preferences, such as language and region.
– Analytics Cookies – Allow us to collect anonymized statistical data to understand how users engage with our Website (e.g., via Google Analytics).
– Performance Cookies – Help us monitor load times, uptime, and user interface responsiveness.
9. Cookie Management and Regulatory Compliance
On your first visit to shadesummit.com, you have the option to manage your cookie preferences through our cookie banner or settings page. You may also manage your preferences by adjusting your browser settings to block or delete cookies. Note that disabling certain cookies may impact the Website’s functionality.
We comply with the GDPR, CCPA, and other applicable laws governing the use of cookies, including offering prior notice, transparency, and the ability to opt in or out of non-essential cookies where required.
10. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If you are under 13, do not provide any information on this Website or engage with its features. If we learn that a child under 13 has submitted personal data in violation of this policy, we will delete such information promptly. Parents or legal guardians who believe their child may have provided us with personal data should contact us at [email protected].
11. Changes to This Privacy Policy
We may update or modify this Privacy Policy at our discretion to reflect changes in applicable laws, our data processing practices, or Website functionality. Any substantial changes will be communicated to you through appropriate means, which may include a notice on our Website or via email.
12. Contact Us
For any inquiries related to this Privacy Policy, your personal data, or to exercise your data protection rights, you may contact our privacy team at:
Email: [email protected]
We are firmly committed to upholding data protection principles and complying with all applicable privacy laws. If you have privacy-related concerns, please do not hesitate to reach out to us using the contact details above.