Privacy Policy for SiliconValleyWineAuction.com
SiliconValleyWineAuction.com (“we,” “our,” or “us”) is committed to safeguarding your privacy and ensuring the protection of your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We operate with transparency and a privacy-first approach, striving to give users control and clarity over their personal information.
1. Scope of Policy and Data Controller Role
This Privacy Policy applies to all individuals who access or use the services offered through siliconvalleywineauction.com (the “Site”), and it governs all personal data collected through this Site or through related communications. Silicon Valley Wine Auction is the data controller responsible for determining the purposes and means of processing your personal data.
2. Categories of Data Processed
We collect and process various categories of personal data in connection with your use of our services:
A. Usage Data
We may collect data about how you interact with our Site, such as IP address, browser type and version, device identifiers, referral source, pages visited, time spent on pages, and date/time stamps. This data helps us understand how users interact with our Site and is used for improving functionality and performance.
B. Account Data
When you interact with our services (e.g., register, make a purchase, or sign up for an event), we may collect your full name, mailing address, email address, telephone number, and password or authentication credentials.
C. Profile Data
Includes demographic information, interests, event participation history, previous purchases, and any stated preferences related to wine, causes, or auction bids.
D. Communication Data
Correspondence you send us, such as inquiries, support requests, and interaction data involving email support or contact forms, will be stored and associated with your profile where relevant.
E. Technical Data
We collect data on your device and its configuration, such as operating system, screen resolution, language settings, mobile carrier, and crash reports, to enhance platform compatibility and resolve issues.
F. Transaction Data
Includes records of payments, billing addresses, shipping details, donation amounts, and transaction history across our online platforms. Payment data is processed securely according to relevant standards.
G. Preference Data
Preferences relating to marketing communications, opt-in or opt-out statuses, and interests in particular auction items or wine products.
3. Legal Bases for Processing
We process your personal data under the following legal bases, pursuant to GDPR:
– Consent: Where you provide explicit consent (e.g., to receive marketing emails).
– Contractual Necessity: When processing is required to deliver services you request.
– Legal Obligation: When mandatory processing is required for compliance with applicable laws.
– Legitimate Interests: For purposes such as fraud prevention, platform security, and improving our services, unless overridden by your rights and interests.
Under CCPA, we do not “sell” personal data as defined in the statute.
4. Your Rights
Subject to local law, you have the following rights in relation to your personal data:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You can correct inaccuracies in your information.
– Right to Erasure: You may request the deletion of your personal data, subject to certain exceptions.
– Right to Restriction: You may request that we limit the processing of your data.
– Right to Data Portability: Upon request, we will provide your data in a structured, commonly used format.
– Right to Object: In some cases, you may object to our processing for reasons related to your situation.
– Right to Opt-Out (for California residents): You have the right to opt out of the sale or sharing of your personal information.
You may exercise these rights by contacting us at [email protected].
5. Security Measures
We implement appropriate technical and organizational security measures designed to protect your personal data against unauthorized access, disclosure, alteration, and destruction. These safeguards include, but are not limited to:
– Encryption of data in transit and at rest
– Multi-factor authentication and access restrictions for staff
– Regular data backups and audit logs
– Security awareness training for employees
– Secure development practices and penetration testing
6. International Transfers
To deliver our services, your data may be transferred to and processed by parties in jurisdictions outside of your own, including countries that may not have equivalent data protection frameworks. Where required, we implement Standard Contractual Clauses (SCCs) or rely on other approved transfer mechanisms to ensure an adequate level of protection.
7. Data Retention
We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:
– Usage Data: Retained for 12–24 months
– Account Data: Retained as long as account is active or services are provided
– Profile and Preference Data: Retained for 3 years from the last activity
– Communication Data: Retained for 2 years for customer service purposes
– Transaction Data: Retained for 7 years to comply with financial and tax obligations
– Technical Data: Retained for up to 12 months for system optimization
Upon expiration of the relevant retention period, data will be securely deleted or anonymized.
8. Cookie Policy
Our Site uses cookies and similar technologies to provide, analyze, and enhance user experiences. Cookies we deploy fall into the following categories:
– Essential Cookies: Necessary for the operation and navigation of the Site.
– Functional Cookies: Enable personalization and remember your preferences.
– Analytics Cookies: Help us understand usage patterns and improve functionality.
– Performance Cookies: Monitor performance metrics to optimize response times.
9. Cookie Management and Compliance
We offer cookie consent management in compliance with GDPR and CCPA requirements. Upon your first visit to the Site, you will have the option to accept or manage your cookie preferences through a consent banner. You can adjust your cookie settings at any time via browser controls or Site preferences.
Where consent is required for the placement of cookies or similar technologies, we will obtain your explicit consent before deploying them.
10. Special Protections for Children
Our Site and services are not directed to children under the age of 13, and we do not knowingly collect or process personal data from anyone under this age. If we become aware of such data being collected without verified parental consent, we will take steps to delete it promptly.
11. Policy Updates
We reserve the right to update this Privacy Policy as necessary to reflect changes in our practices or legal obligations. Users will be notified of material changes through a prominent notice on siliconvalleywineauction.com or via direct communication where applicable. Continued use of the Site following changes constitutes acceptance of the revised policy.
12. Contact
If you have any questions, comments, or concerns about this Privacy Policy or our data practices, or if you would like to exercise your rights, please contact us at:
Email: [email protected]
We are committed to maintaining full compliance with data privacy laws and ensuring that your personal data is handled with integrity and care. Please reach out if you have any privacy concerns—we are here to help.