Privacy Policy

Privacy Policy – Your Data Rights and Our Commitments

Your Privacy Rights – In Plain Language

At Jennykitchenshop, we believe your personal information belongs to you. This policy explains exactly what data we collect, why we need it, who we share it with (spoiler: almost no one), and how you can control it.

Contact our Privacy Rights Teamsupport@jennykitchenshop.com

What Information We Collect and Why

Information You Give Us Directly

Why We Need It: To process your orders and provide customer service

What We Collect:

  • Name and Contact Information: For shipping and communication
  • Billing/Shipping Addresses: To deliver your orders
  • Payment Information: To process payments (we don’t store credit card details)
  • Order Preferences: Size, color, customization requests
  • Communication Records: Your emails, chat messages, and phone calls with us

Your Rights: You can update, correct, or delete this information at any time.

Information We Collect Automatically

Why We Need It: To improve website function and prevent fraud

What We Collect:

  • Website Usage: Pages visited, time spent, items viewed
  • Device Information: Browser type, operating system, IP address
  • Order History: Past purchases to help with future orders
  • Location Data: General location for shipping estimates and tax calculation

Your Rights: You can opt out of tracking, request data deletion, or access all stored data.

Information We Don’t Collect

We deliberately don’t collect:

  • Social media information (unless you specifically connect accounts)
  • Browsing history from other websites
  • Personal photos or files
  • Biometric data
  • Unnecessary personal details

How We Protect Your Information

Technical Security Measures

  • Encryption: All data transmitted using SSL/TLS encryption
  • Secure Storage: Data stored on encrypted, secure servers
  • Access Controls: Limited employee access on need-to-know basis
  • Regular Updates: Security systems updated continuously
  • Monitoring: 24/7 monitoring for unauthorized access attempts

Organizational Security

  • Staff Training: All employees trained on data privacy requirements
  • Background Checks: Security verification for staff with data access
  • Access Logging: Every access to your data is logged and monitored
  • Regular Audits: Third-party security audits performed annually
  • Incident Response: Detailed plan for handling any security breaches

Your Financial Security

  • Payment Processing: We use PayPal and Stripe – we never store credit card details
  • PCI Compliance: Meet all payment card industry security standards
  • Fraud Protection: Advanced fraud detection on all transactions
  • Secure Communication: All payment communication encrypted

Who Gets Access to Your Information

Internal Access

Customer Service Team: Access to order and contact information to help you Shipping Team: Access to shipping information to fulfill orders Management: Access to anonymized data for business improvement Owner: Full access for legal compliance and customer issue resolution

External Partners (Limited)

Shipping Companies: Only shipping address and package details Payment Processors: PayPal, Stripe for payment processing Email Service: For order confirmations and customer communication Legal Authorities: Only when required by law with proper legal documentation

Who We NEVER Share With

❌ Marketing companies
❌ Data brokers
❌ Social media companies
❌ Advertising networks
❌ Analytics companies (beyond basic website function)
❌ Anyone else not listed above

Communication and Marketing

What We Send: Order confirmations, shipping notifications, delivery confirmations Your Rights: You cannot opt out of these (they’re necessary for service) Frequency: Only when there’s order-related news

Marketing Communication

What We Send: New product announcements, sales notifications, company updates Your Rights: Completely optional – opt in or out anytime Frequency: Maximum once per week, typically less Unsubscribe: One-click unsubscribe that works immediately

Customer Service Communication

What We Send: Responses to your questions, follow-up on issues Your Rights: Necessary for providing support you request Response Time: Maximum 2 hours during business hours

International Privacy Rights

United States Customers

  • CCPA Rights (California): Right to know, delete, opt out, and non-discrimination
  • State Laws: Compliance with all applicable state privacy laws
  • Federal Protections: Full compliance with federal consumer protection laws

Canadian Customers

  • PIPEDA Compliance: Full compliance with Personal Information Protection Act
  • Provincial Laws: Compliance with applicable provincial privacy laws
  • Data Residency: Canadian customer data can be stored in Canada upon request

European Union Customers

  • GDPR Rights: Right to access, rectification, erasure, portability, and restriction
  • Data Protection Officer: Available for EU customer privacy concerns
  • Legal Basis: Clear legal basis for processing all personal data
  • Data Retention: Automatic deletion after retention periods expire

UK Customers

  • UK GDPR: Full compliance with UK data protection laws
  • Data Rights: Same comprehensive rights as EU customers
  • ICO Compliance: Registered with UK Information Commissioner’s Office

Australian Customers

  • Privacy Act: Full compliance with Australian Privacy Principles
  • Data Breach: Automatic notification system for eligible data breaches
  • Complaint Process: Access to Australian privacy complaint resolution

Your Specific Privacy Rights

Right to Know

  • What Data: Complete list of data we have about you
  • Why Collected: Specific reason for each piece of information
  • Who Has Access: Everyone who has accessed your data
  • How Long Stored: Retention timeline for each data type

Right to Correct

  • Update Information: Change any incorrect information immediately
  • Data Accuracy: We’ll verify and correct data upon request
  • Automatic Updates: Some information (like addresses) can be auto-updated

Right to Delete

  • Account Deletion: Complete account and data deletion available
  • Selective Deletion: Delete specific pieces of information
  • Retention Limits: Legal requirements may prevent some deletions
  • Confirmation: You’ll receive confirmation when data is deleted

Right to Portability

  • Data Export: Get all your data in standard formats
  • Transfer: Help transferring data to other services
  • Timeline: Data export provided within 30 days

Right to Opt Out

  • Marketing: Unsubscribe from all non-essential communication
  • Tracking: Opt out of website analytics and tracking
  • Data Sharing: Prevent sharing with external partners (where legally possible)

Data Retention and Deletion

How Long We Keep Your Data

Order Information: 7 years (legal requirement for business records) Communication Records: 3 years (for customer service quality) Website Usage Data: 2 years (for website improvement) Marketing Data: Until you unsubscribe or request deletion Inactive Accounts: Automatically deleted after 5 years of inactivity

Automatic Deletion

  • Scheduled Reviews: Regular review of data retention needs
  • Policy Updates: Data deletion when no longer needed for stated purposes
  • Legal Changes: Deletion when legal retention requirements expire
  • User Requests: Immediate processing of deletion requests

What Happens When You Delete Your Account

  1. Immediate: Login access removed, marketing stopped
  2. 7 Days: Personal contact information deleted
  3. 30 Days: Order history anonymized (legal compliance)
  4. 90 Days: All deletable data permanently removed
  5. Confirmation: Email confirmation of deletion completion

Policy Updates and Changes

How We Handle Changes

Advance Notice: 30 days notice before any material changes Your Consent: Significant changes require your explicit consent Easy Comparison: Clear summary of what’s changing and why Opt-Out Option: Right to delete account if you disagree with changes

Types of Changes

Technical Updates: Improvements to security or functionality Legal Updates: Changes required by new laws or regulations Business Changes: Changes to business model affecting data use Rights Expansion: Additional rights or protections (no notice required)

How You’ll Be Notified

  • Email: Direct notification to your email address
  • Website: Prominent notice on our website
  • Account Portal: Notice when you log in
  • Order Communication: Notice with next order communication

How to Exercise Your Rights

Contact Methods

Emailsupport@jennykitchenshop.com (preferred) Mail: Privacy Rights Team, 571 W 7th St, Cheyenne, WY 82007, USA Phone: Available through customer service Online Portal: Privacy rights request form (coming soon)

What to Include in Your Request

  • Your Name: As it appears on your account
  • Email Address: Associated with your account
  • Specific Request: What you want (delete, export, correct, etc.)
  • Verification: We may ask for additional verification for security

Response Timeline

Acknowledgment: Within 24 hours Simple Requests: Within 7 days (corrections, opt-outs) Complex Requests: Within 30 days (data export, major deletions) Legal Requests: Within timeline required by applicable law

Privacy Questions and Concerns

Privacy Rights Team

Emailsupport@jennykitchenshop.com Subject Line: Use “Privacy Rights” for fastest response Response Time: Within 24 hours for privacy-related inquiries Escalation: Privacy concerns get priority management attention

Data Protection Officer

Role: Independent review of privacy practices Contact: Available through customer service Authority: Can override business decisions for privacy protection Reporting: Direct reporting to ownership on privacy matters

External Resources

Regulatory Complaints: We’ll provide appropriate regulatory contact information Legal Rights: Information about your legal rights beyond our policies Independent Advice: Resources for getting independent privacy advice

Governing Law

This policy is governed by the laws of Wyoming, USA, and applicable federal laws, as well as the privacy laws of your country of residence.

Regulatory Compliance

We comply with all applicable privacy laws including GDPR, CCPA, PIPEDA, and others based on your location.

For legal inquiries related to privacy: support@jennykitchenshop.com

This privacy policy was written to be clear, comprehensive, and honest about how we handle your personal information. If anything is unclear or you have concerns, please contact us immediately.

Your privacy is not just our policy – it’s your right.