Privacy Policy
1. Introduction
At Green Smoothie Habit (“we”, “us”, or “our”), accessible at greensmoothiehabit.com, we are firmly committed to safeguarding your privacy and ensuring the lawful, fair, and transparent processing of your personal data. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
We recognize the importance of privacy and data security and have implemented significant measures to protect the confidentiality and integrity of your personal information.
2. Scope of Policy & Data Controller Role
This Privacy Policy applies to your use of our website, greensmoothiehabit.com, and governs the processing of personal information through any web-based interactions, features, or services offered therein. Green Smoothie Habit is the data controller for all personal data collected and processed in connection with your use of our services, meaning we determine the purposes and means of processing your personal information.
3. Categories of Data Processed
We may collect and process the following categories of personal data, either directly from you or automatically through your interaction with our website:
a) Usage Data
Includes information such as IP addresses, browser type and version, time zone settings, session frequency, pages visited, referring/exit pages, and other diagnostic data gathered from your use of greensmoothiehabit.com.
b) Account Data
Comprises personally identifiable information voluntarily provided by you, including your full name, mailing address, email address, and telephone number, typically submitted during account registration or service inquiries.
c) Profile Data
Includes information relating to your preferences, purchase history, user behavior, and interactions with our content or digital products.
d) Communication Data
Covers data arising from any correspondence sent to us, including customer support communications, feedback or complaint submissions, and records of prior engagement.
e) Technical Data
Refers to data collected via system integrations and device interactions, such as your internet connection data, device model, operating system, browser plug-ins, and other technical identifiers.
f) Transaction Data
Encompasses information such as product or subscription purchases, delivery/billing addresses, partial payment card information (processed through third-party providers), and other purchase-related information.
g) Preference Data
Includes your expressed preferences related to communications, such as marketing consents, product interest selections, and newsletter subscription options.
4. Legal Bases for Processing
In accordance with GDPR Article 6 and relevant CCPA provisions, our lawful bases for processing your personal data include:
– Consent: When you have provided explicit permission for a specific type of processing (e.g., signing up for a newsletter).
– Contract Performance: When processing is necessary to fulfill contractual obligations or pre-contractual steps at your request (e.g., order fulfillment).
– Legitimate Interests: Where processing is necessary for our commercial interests, such as improving user experience, website performance, or protecting against fraud, provided that such interests are not overridden by your data protection rights.
– Legal Obligation: Where processing is necessary for compliance with a legal or regulatory obligation.
5. Your Rights
As a data subject under applicable privacy laws, you possess the following rights:
– Right of Access: You may request confirmation of whether we hold personal data about you and, if so, request a copy.
– Right to Rectification: You may request that inaccurate or incomplete data be corrected or supplemented.
– Right to Erasure: You may request deletion of your personal data, subject to statutory limitations.
– Right to Restriction: You may request limited processing of your data in certain circumstances.
– Right to Data Portability: You may request structured, machine-readable copies of your data to transmit to another controller.
– Right to Object: You may object to processing based on legitimate interests or direct marketing purposes.
– Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting the legality of prior use.
– Right to Non-Discrimination (CCPA): You have the right not to receive discriminatory treatment for exercising your data privacy rights.
You may exercise these rights by contacting us at [email protected].
6. Security Measures
We maintain robust organizational and technical measures to ensure the confidentiality, integrity, and availability of your data. These include:
– Data encryption in transit and at rest
– Role-based access controls and authentication protocols
– Regular data backups and secure storage processes
– Employee privacy training and access monitoring
– Logging and auditing of data access and processing activities
All reasonable measures are in place to prevent data loss, unauthorized access, disclosure, alteration, or destruction.
7. International Transfers
Where necessary, your data may be transferred to and processed in countries outside your jurisdiction, including jurisdictions that may not provide the same level of data protection by default. In such cases, we uphold standard contractual clauses approved by the European Commission or equivalent legal safeguards to ensure an adequate level of data protection.
Users from the European Economic Area (EEA) or the United Kingdom can contact us for more details regarding these safeguards.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes outlined in this Privacy Policy and to comply with legal, regulatory, and contractual obligations. The retention periods vary depending on the type of data:
– Usage & Technical Data: Retained for up to 12 months for analytics, diagnostics, and site optimization.
– Account & Profile Data: Retained for the duration of the user relationship and 3 years thereafter.
– Communication Data: Stored for up to 36 months, subject to auditing and legal obligations.
– Transaction Data: Retained for up to 7 years for financial records and tax compliance.
– Preference Data: Retained until consent is withdrawn or updated.
9. Cookie Policy
We use cookies and similar technologies on greensmoothiehabit.com to enhance functionality and improve your user experience. Cookies fall into the following categories:
– Essential Cookies: Necessary for website functionality, page navigation, and secure access.
– Functional Cookies: Enable personalized features and user preferences.
– Analytics Cookies: Collect aggregated data on site usage, performance metrics, and user behavior to help improve the site.
– Performance Cookies: Monitor and improve website responsiveness and interactions.
Cookie data may be processed by third-party vendors in accordance with our data protection commitments.
10. Cookie Management & Compliance with GDPR & CCPA
Users can manage cookie preferences directly via our cookie pop-up banner or through browser settings. Additionally, California residents may opt out of “sale” of their data as defined by the CCPA by contacting us or using applicable cookie management tools.
Your consent is requested for non-essential cookies in compliance with GDPR. You are free to withdraw your cookie consent at any time by adjusting settings in your browser or accessibility tools.
11. Special Protections for Children
greensmoothiehabit.com is not intended for children under the age of 13, and we do not knowingly collect personal information from individuals under 13. If we become aware that such data has been collected without verified parental consent, we will take appropriate steps to delete it.
12. Policy Updates
We may update this Privacy Policy from time to time to reflect changes in legal obligations, business processes, or technology. Significant changes will be communicated via updates to the Privacy Policy on our website and, where appropriate, additional notification channels. Continued use of our services constitutes your acceptance of any policy modifications.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, you may reach out to us at:
Green Smoothie Habit
Email: [email protected]
Website: greensmoothiehabit.com
We are committed to full legal compliance with applicable privacy and data protection laws and are here to support any concerns you may have about your data and privacy rights.