Privacy Policy for jameswoodsforcongress.com
1. Introduction: Our Commitment to Privacy and Data Protection
At jameswoodsforcongress.com (“we,” “our,” or “us”), protecting your privacy and ensuring the security of your personal information is of paramount importance. This Privacy Policy outlines how we collect, use, disclose, and protect your personal data when you interact with our website, services, or otherwise engage with us. We are committed to handling your data transparently, responsibly, and in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to all visitors, users, and others who access jameswoodsforcongress.com or provide information via our digital platforms. As the data controller, we determine the purposes and means of processing your personal data in accordance with applicable legal obligations. Where required by law, we may act as a data processor on behalf of a third party.
3. Categories of Personal Data Processed
We collect and process various categories of personal data, depending on your interaction with our website or services. The types of data collected include:
a. Usage Data
Collected automatically through your visit to our website, including IP address, browser type and version, time zone setting, pages viewed, referring URLs, access times, and other diagnostic data.
b. Account Data
When you create an account or sign up for communications, we may collect your name, email address, postal address, and phone number.
c. Profile Data
Includes information such as preferences, behavioral interactions on the website, and purchase or donation history, which may help tailor your experience with jameswoodsforcongress.com.
d. Communication Data
Comprises information contained in email correspondence, contact forms, customer service inquiries, and related interactions.
e. Technical Data
Includes information about the device you use to access our website (such as hardware model, operating system, browser fingerprint, and system configurations) that helps optimize your user experience.
f. Transaction Data
In relation to purchases or campaign contributions, this includes billing details, donation records, payment method data, and delivery information, processed through our secure payment partners.
g. Preference Data
Covers data related to your marketing and communication preferences, content interests, and choices made in privacy settings.
4. Legal Bases for Processing Personal Data
We ensure that the processing of personal data is grounded on lawful bases, which may include:
– Consent: Explicit permission granted by you to process specific personal data for a given purpose.
– Contractual Necessity: When data is required to perform a contract with you or to take steps at your request prior to entering into a contract.
– Legitimate Interests: For purposes such as improving website functionality, securing our services, and communicating relevant information, provided these interests do not override your rights and freedoms.
– Legal Obligations: Compliance with legal requirements or court orders.
5. Your Rights under Data Protection Laws
You have the following rights concerning your personal data:
– Right of Access: You may request access to the data we hold about you.
– Right to Rectification: You may request correction of inaccurate data.
– Right to Erasure: You may request the deletion of your data under certain conditions (“right to be forgotten”).
– Right to Restriction: You may restrict the processing of your data in certain scenarios.
– Right to Data Portability: You have the right to obtain your data in a structured, commonly used, machine-readable format and to transmit that data to another controller.
– Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time without affecting the lawfulness of prior processing.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We implement technical and organizational measures designed to safeguard your personal data. These include:
– Secure socket layer (SSL) encryption for data transmission
– Role-based access control and authentication measures
– Regular data backups and testing of recovery systems
– Staff training on data security best practices
– Periodic security assessments and vulnerability monitoring
These safeguards help prevent unauthorized access, disclosure, alteration, or unlawful destruction of your personal information.
7. International Transfers
In some instances, your data may be processed outside the jurisdiction in which you reside, including to countries that do not provide the same level of data protection as your home country. Where such transfers occur, we rely on appropriate safeguards, including Standard Contractual Clauses approved by the European Commission or other lawful mechanisms to ensure adequate data protection standards.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the relevant purposes outlined in this Privacy Policy or as required by law. Specific retention periods include:
– Account Data is retained for the duration of your account and up to 12 months thereafter.
– Transaction and Communication Data are kept for up to 7 years for compliance and audit purposes.
– Technical and Usage Data are stored for no longer than 24 months unless required for investigation or legal purposes.
– Marketing Preference Data is retained until you withdraw consent or opt-out.
Upon expiry of retention periods, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies for the following purposes:
– Essential Cookies: Necessary for site functionality and performance.
– Functional Cookies: Enable personalization and preferences (e.g. language, region).
– Analytics Cookies: Collect aggregated usage data to analyze and improve website performance.
– Performance Cookies: Help monitor system responsiveness and user flow metrics.
These technologies improve your overall experience on jameswoodsforcongress.com and facilitate optimized interaction with our content.
10. Cookie Management and GDPR/CCPA Compliance
You have control over how cookies are used:
– In compliance with GDPR, we do not deploy non-essential cookies without obtaining affirmative consent.
– California residents may opt out of the sale or sharing of personal data via our Do Not Sell My Info link or similar mechanisms.
– You can manage cookie preferences through our cookie banner or through your browser settings at any time.
Please note that disabling certain cookies may affect the performance or usability of our website.
11. Children’s Privacy Protections
Our website and services are not directed toward children under the age of 13, and we do not knowingly collect personal information from such individuals. If we become aware that we have inadvertently received data from a child under 13, we will take immediate steps to delete such information from our records.
12. Updates to This Privacy Policy
We may modify or update this Privacy Policy from time to time in response to evolving legal, technical, or operational requirements. Where changes are significant, we will provide reasonable notice via the jameswoodsforcongress.com website or by other appropriate means.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
13. Contacting Us
If you have questions, concerns, or requests regarding your privacy or this Privacy Policy, please contact us at:
Email: [email protected]
Website: https://jameswoodsforcongress.com
We are committed to full compliance with applicable data protection laws and strive to uphold the highest standards in privacy practices. Please do not hesitate to reach out if you have any concerns or inquiries about your personal data.