Privacy Policy
Last Updated: 2024 November 11
Who we are
Our website address is: https://duskblossoms.com
Dusk Blossoms
[email protected]
What personal data we collect and why we collect it
Comments
When visitors leave comments on our site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Contact forms
When you submit a contact form on our website:
- We collect your name, email address, and any message content you provide
- This information is retained for [specific time period] for customer service purposes
- We do not use this information for marketing purposes unless you explicitly consent
Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year.
Analytics
We use Google Analytics to track website usage and patterns. This service may record:
- Pages you visit
- Time spent on each page
- Your approximate location (city/country level)
- Technical information about your device and internet connection
You can opt out of Google Analytics tracking by using the Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout
Who we share your data with
We do not sell your personal information to third parties. However, we may share your data with:
- Payment processors (if applicable)
- Analytics services
- Email service providers
[WP Mail SMTP]
How long we retain your data
- Comments: Comments and their metadata are retained indefinitely
- Contact form submissions: three months
- Analytics data: indefinitely
- Account data: For users that register on our website, we store the personal information they provide indefinitely. Users can request deletion of their data at any time.
What rights you have over your data
If you have an account on this site or have left comments, you can request:
- An exported file of the personal data we hold about you
- Erasure of any personal data we hold about you
- Correction of any inaccurate data we hold about you
This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where your data is sent
Visitor comments may be checked through an automated spam detection service. Our website is hosted on Hostinger servers located in North America (USA MA).
Contact information
For privacy-specific concerns, please contact:
[email protected]
Additional information
How we protect your data
We implement several measures to maintain the safety of your personal information:
- SSL encryption for all data transmission
- Regular security updates and patches
- Limited access to personal information by staff
- Secure password policies
What data breach procedures we have in place
In the event of a data breach, we will:
- Notify affected users within 72 hours of becoming aware of the breach
- Provide information about the extent of the breach and what data was potentially exposed
- Take immediate steps to secure any vulnerable points
- Work with relevant authorities as required
What third parties we receive data from
We receive data from the following third-party services:
Forminator
We use Forminator for our website forms. Through Forminator, we may receive:
- Form submission data
- User input information
- Technical information related to form submissions
For more information about how Forminator handles data, please refer to their privacy policy: https://wpmudev.com/privacy-policy/
PayPal
As our payment processor, we receive transaction-related data from PayPal, including:
- Payment confirmation details
- Transaction amounts
- PayPal email addresses
- Transaction IDs
- Order details
This information is necessary to process and verify your payments and deliver our services. For more information about how PayPal handles your data, please refer to PayPal’s privacy policy: https://www.paypal.com/us/legalhub/privacy-full
MyCred
We use MyCred for managing user points, rewards, and digital currency on our website. Through MyCred, we may receive:
- User account information
- Point balances
- Transaction history related to points or rewards
- User activity data that triggers point earnings or deductions
This information is used to manage and display user points, facilitate reward redemptions, and track user engagement on our platform. MyCred is a WordPress plugin, and its data handling is governed by our website’s overall data management practices.
What automated decision making and/or profiling we do with user data
Our website does not currently engage in any automated decision-making or profiling activities. While we collect basic analytics data to improve our services, we do not use this information to make automated decisions about our users or create user profiles.
Industry regulatory disclosure requirements
Our website operates as a standard e-commerce platform and is not subject to any specific industry regulatory requirements beyond standard data protection and e-commerce laws.