Privacy Policy for IconsAmongUs.com
1. Introduction
At Icons Among Us (“we,” “us,” or “our”), accessible online at iconsamongus.com, we are committed to safeguarding the privacy and data protection rights of all individuals who interact with our website, services, and platform (“Services”). We recognize the importance of the personal data we collect, and we process such data lawfully, fairly, and transparently, in full alignment with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection legislation.
This Privacy Policy outlines how we collect, use, share, and protect personal data in connection with the use of our Services. Your privacy is paramount to us, and we strive to maintain the highest standards in our privacy practices.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through the website iconsamongus.com and any related communications or interactions. Icons Among Us acts as the “Data Controller” under the GDPR for the processing of personal data described in this Policy, which means we determine the purposes and means of processing your personal data.
If you reside in California, we are a “Business” under the CCPA and responsible for your “Personal Information” as defined under that statute.
3. Categories of Data We Process
We collect and process the following categories of personal data, depending on your interaction with our website and Services:
3.1. Usage Data
Information about your interaction with our website, such as IP address, browser type, domain names, access times, geographic location, session data, pages viewed, and referring URLs.
3.2. Account Data
Information you provide when creating an account or profile, including your full name, email address, phone number, billing/shipping address, and password.
3.3. Profile Data
Details related to your preferences, purchase history, browsing behavior, saved settings, and user-generated content.
3.4. Communication Data
Records of correspondence with us, including emails, support tickets, live chat interactions, social media messaging, and feedback or inquiries submitted via contact forms.
3.5. Technical Data
Device identifiers, operating system information, browser configuration, language settings, screen resolution, and similar technical device specifications.
3.6. Transaction Data
Details of transactions carried out through our Services, including product purchases, order details, payment methods (but not full credit card numbers), transaction amounts, delivery addresses, and billing history.
3.7. Preference Data
Your stated communication preferences, opt-in or opt-out status for direct marketing, product interest categories, and consent status for cookies and other tracking mechanisms.
4. Legal Bases for Processing
We process personal data under the following lawful bases:
– Contract: Processing necessary to enter into and fulfill our contractual obligations to you, such as account management and order fulfillment.
– Consent: Where you have given explicit consent, including for marketing communications or optional cookies.
– Legal Obligation: Where processing is required to comply with applicable laws, such as tax regulations or fraud prevention.
– Legitimate Interest: Where we have a legitimate business interest in processing data (e.g., improving our Services, securing our platform), balanced against your rights and interests.
5. Your Rights Under Data Protection Laws
You have the following rights under GDPR, CCPA, and other applicable laws:
– Right of Access: Obtain confirmation about whether we process your data and access a copy of such data.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Ask for your personal data to be deleted where relevant legal grounds apply.
– Right to Restrict Processing: Request suspension of data processing in certain circumstances.
– Right to Data Portability: Receive personal data you have provided in a structured, commonly used format and request transmission to another data controller.
– Right to Object: Object to processing where we rely on legitimate interest or use your data for direct marketing.
– Right Not to Be Subject to Automated Decisions: We do not use automated decision-making that produces legal or similarly significant effects without human involvement.
California residents may also exercise their rights to:
– Know what personal information is collected and shared;
– Opt out of the sale or sharing of personal information (Note: We do not sell personal data);
– Request deletion of personal data;
– Non-discrimination in exercising your rights.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational safeguards to protect your personal data against unauthorized access, disclosure, alteration, and destruction. These include but are not limited to:
– Data encryption during transmission (TLS/SSL);
– Access controls with role-based authorization;
– Secure server infrastructure with regular security patching;
– Periodic data backups;
– Staff training and confidentiality agreements;
– Third-party vendor assessments for data protection compliance.
7. International Data Transfers
Your personal data may be transferred and processed in countries outside the European Economic Area (EEA) or your state/country of residence. Where this occurs, we use:
– Standard Contractual Clauses approved by the European Commission;
– Other appropriate safeguards under applicable law;
– Contractual agreements with third parties to ensure data protection standards are met.
By using our Services, you consent to such transfers in accordance with this Policy.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements. Specific retention periods include:
– Account and Profile Data: Retained while your account is active or as needed to provide Services.
– Communication Data: Retained for up to 5 years for quality control and legal compliance.
– Transaction Data: Retained for up to 7 years to comply with financial and legal obligations.
– Usage and Technical Data: Retained for up to 2 years for analytics and security.
– Preference Data: Retained in accordance with your cookie and marketing consent history.
Upon expiry of retention periods or user request (where allowed by law), data will be securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies on iconsamongus.com for various purposes, including:
– Essential Cookies: Necessary for website functionality, such as session management and user authentication.
– Functional Cookies: Enhance website performance and remember user preferences.
– Analytics Cookies: Help us understand user behavior using aggregate data (e.g., Google Analytics).
– Performance and Optimization Cookies: Track and test features, page speed, and user experience.
10. Cookie Management and Compliance with GDPR & CCPA
You have control over the use of non-essential cookies through cookie consent banners and browser settings. Upon first visit to iconsamongus.com, you will be presented with options to accept, reject, or customize your cookie preferences in compliance with GDPR and CCPA requirements.
You can also disable or delete cookies at any time using your browser settings. Note that disabling some cookies may limit functionality and user experience.
For California residents, we honor opt-out requests for any sharing or use of personal information that may be considered a “sale” under CCPA, though we do not sell personal data in the traditional sense.
11. Special Protection for Children Under 13
Our Services and website are not directed to children under the age of 13, and we do not knowingly collect personal data from children under 13. If you are a parent or guardian and believe we may have collected information from your child, please contact us immediately at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. Continued use of iconsamongus.com following such updates constitutes acceptance of the revised terms. Material changes will be communicated via prominent notices on the website or by direct communication where feasible.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Icons Among Us
Email: [email protected]
We are committed to full compliance with applicable privacy laws and take all user privacy concerns seriously. Please do not hesitate to reach out to us for additional information or to exercise your data protection rights.