Privacy Policy for HarborSaga.com

1. Introduction

At Harbor Saga, accessible via harborsaga.com, we value your privacy and are fully committed to protecting your personal data in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, process, store, and safeguard your personal information when you interact with our website, products, and services. Our approach is guided by transparency, accountability, and respect for individual rights.

2. Scope and Data Controller

This Privacy Policy applies to your use of harborsaga.com and any related services offered by Harbor Saga. Harbor Saga is the data controller responsible for processing your personal data under GDPR and the equivalent role under CCPA where applicable. If you have questions or concerns about your data, you may contact us at [email protected].

3. Categories of Data We Process

We may collect and process the following categories of personal data, depending on your interactions with our website and services:

– Usage Data:
Includes information about how you access and use harborsaga.com, such as IP address, browser type and version, referral sources, length of visits, pages viewed, and session data.

– Account Data:
Includes personally identifiable information you provide when creating an account or making a purchase, such as full name, billing/shipping address, email address, and telephone number.

– Profile Data:
Includes information related to your interactions and preferences, such as items in your wishlist, purchase history, user behavior, saved settings, and demographic indicators.

– Communication Data:
Includes records of your communications with us, including inquiries, support requests, live chat logs, and email correspondence.

– Technical Data:
Includes details about the devices and systems you use to access harborsaga.com, including device type, operating system, browser settings, screen resolution, and language preferences.

– Transaction Data:
Includes payment and transaction details related to purchases and deliveries made through our platform, such as transaction IDs, payment method, and purchase timestamps.

– Preference Data:
Includes information you provide regarding your interests, communication preferences, and marketing consents for receiving updates, newsletters, and promotional offers.

4. Legal Bases for Processing Your Data

We process your personal data lawfully based on one or more of the following legal grounds:

– Consent: where you have explicitly granted us permission to process your data for specified purposes, such as receiving marketing communications.

– Contractual necessity: where processing is required to fulfill our contractual obligations to you, such as processing your order and delivering products.

– Legal obligation: where we are compelled to process your data to comply with applicable laws and regulations.

– Legitimate interests: where processing is necessary for our legitimate interests in operating and improving our services, while safeguarding your privacy rights.

5. Your Rights

Subject to applicable laws, you may exercise the following rights concerning your personal data:

– Right of Access: You have the right to request access to the personal data we hold about you.

– Right to Rectification: You may request that we correct inaccurate or incomplete data.

– Right to Erasure: Subject to certain conditions, you may request the deletion of your data (“right to be forgotten”).

– Right to Restrict Processing: You may request that we restrict how your data is used, where legally applicable.

– Right to Data Portability: You may request a copy of your data in a structured, commonly used, and machine-readable format and transmit it to another controller.

– Right to Object: Depending on the legal basis, you may object to processing that is based on our legitimate interests or opt out of direct marketing.

To exercise any of the above rights, please contact us at [email protected]. We may request verification of your identity before processing your request.

6. Security Measures

We implement robust technical and organizational security controls to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

– Encryption of personal data during transmission and at rest.
– Role-based access controls and authentication.
– Regular system and security audits.
– Secure data storage and backup protocols.
– Staff training in data privacy and cybersecurity best practices.

7. International Transfers

When your personal data is transferred outside your jurisdiction, we ensure such data transfers are compliant with applicable legal requirements through mechanisms such as:

– Use of Standard Contractual Clauses approved by the European Commission.
– Verification of the receiving party’s compliance with GDPR or equivalent standards.
– Implementation of additional safeguards as needed.

8. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this Policy:

– Usage Data: Up to 26 months from collection for analytics.
– Account and Profile Data: Retained as long as your account remains active.
– Communication Data: Retained for 3 years from the last interaction for support cases.
– Transaction Data: Retained for 7 years to comply with financial and tax obligations.
– Preference Data: Retained until consent is revoked or data is updated.
– Technical Data: Retained for the duration of a single session or as part of Usage Data.

We may anonymize or securely delete data after applicable retention periods expire.

9. Cookie Policy

We use cookies and similar technologies on harborsaga.com to enhance user experience, facilitate functionality, and gather analytics. Cookies we use fall into the following categories:

– Essential Cookies: Required for site functionality and login authentication.
– Functional Cookies: Enable customization based on previous interactions or choices.
– Analytical Cookies: Help us understand how users interact with our site to improve performance.
– Performance Cookies: Monitor uptime, loading times, and general system health.

10. Cookie Management & Compliance

In compliance with GDPR and CCPA, we provide users with the right to:

– Consent to or reject non-essential cookies at the time of first visit.
– Adjust cookie preferences through our Cookie Settings interface.
– Access detailed descriptions of each cookie and its purpose.

Most browsers also provide options to block or delete cookies entirely.

11. Children’s Privacy

Harbor Saga does not knowingly collect data from children under the age of 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately at [email protected]. We will promptly investigate and, if necessary, delete the information in accordance with applicable laws.

12. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in law or our practices. When material changes occur, we will notify users via our website or direct communication, where feasible, and request renewed consent as necessary.

13. Contact Us

If you have any questions, requests, or privacy-related concerns, please contact us at:

Email: [email protected]

We are committed to full compliance with all applicable data protection regulations, including the GDPR and CCPA. Your continued trust is of paramount importance, and we welcome any inquiries regarding the use and safeguarding of your personal information.