Privacy Policy
At Ecology Labo, accessible at ecologylabo.com, we are firmly committed to safeguarding the privacy, integrity, and security of your personal data. This Privacy Policy outlines how we collect, use, store, and disclose personal information in accordance with applicable privacy laws, including the European General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). By using our website, you consent to the practices described herein.
1. Commitment to Privacy and Data Protection
Your privacy is of paramount importance to us. Ecology Labo adheres to a privacy-first philosophy, ensuring that all collection and handling of personal data is conducted with transparency and responsibility. We only collect personal information necessary to provide quality services, maintain compliance with the law, and improve user experience while protecting your rights and freedoms.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected via ecologylabo.com and its associated services. Ecology Labo is the data controller responsible for processing your personal information in compliance with applicable data protection law. If you have questions or concerns regarding the processing of your personal data, we encourage you to contact us using the details provided at the end of this policy.
3. Categories of Data Processed
We may collect and process the following categories of personal data for the purposes set out under Section 4:
– Usage Data: This includes information about how you interact with our website, such as IP address, browser type, referring URLs, pages visited, and session durations. This data is collected automatically through analytics and server logs.
– Account Data: If you create an account or make a purchase, we may collect your full name, billing and shipping address, email address, and phone number.
– Profile Data: This encompasses information you provide voluntarily, including account preferences, order history, saved items, wishlists, profile images, and behavioral data like product interactions.
– Communication Data: Includes records of communications with you, such as support requests and email contact history.
– Technical Data: Covers device-specific data such as your operating system, hardware model, mobile device identifiers, and browser configurations.
– Transaction Data: This includes payment information, order details, delivery records, and transaction history. Please note that all payment processing is handled securely via third-party payment processors and we do not store full payment card data.
– Preference Data: We process data related to your selected marketing preferences, product interest categories, and subscription settings.
4. Legal Bases for Processing
We rely on the following lawful bases when processing personal data:
– Consent: Where applicable, we obtain your explicit consent for activities such as marketing communications and the use of certain cookies.
– Performance of a Contract: To fulfill obligations arising from any contracts entered into between you and Ecology Labo, such as order delivery or account management.
– Legal Obligation: To comply with statutory requirements, such as tax reporting and fraud prevention.
– Legitimate Interest: Where processing is necessary for our legitimate business interests, such as improving website usability, ensuring network security, or enhancing customer service—provided such interests do not override your rights and freedoms.
5. Your Rights
You have specific rights under GDPR and CCPA, which we are committed to honoring:
– Right of Access – You may request confirmation of whether we process your personal data, and obtain a copy of such data.
– Right to Rectification – You can request corrections to incomplete or inaccurate information.
– Right to Erasure – Also known as the ‘right to be forgotten’, you may ask us to delete your personal data where lawful grounds exist.
– Right to Restriction – You can request limited processing of your personal data where certain conditions apply.
– Right to Data Portability – You may request to receive your personal data in a structured and commonly used format and to transfer that data to another controller.
– Right to Object – Where processing is based on consent or legitimate interest, you have the right to object at any time.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a variety of advanced technical and organizational safeguards to ensure the confidentiality, integrity, and availability of personal data:
– Data encryption during transmission and at rest
– Role-based access control and secure login systems
– Regular data backups and recovery protocols
– Continuous monitoring and auditing of access logs
– Staff privacy awareness training and clear internal data management policies
7. International Transfers
When we transfer personal data outside of the European Economic Area (EEA) or other jurisdictions with differing data protection laws, we apply appropriate safeguards. These include the use of Standard Contractual Clauses (SCCs), compliance with the EU-U.S. Data Privacy Framework (where applicable), and contractual commitments from service providers to ensure adequate protection of personal data.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting obligations. Specific retention periods include:
– Usage and Technical Data: 26 months from the date of collection
– Account, Profile, and Transaction Data: 7 years following last activity for audit and regulatory purposes
– Communication Data: 3 years after final correspondence
– Preference Data: Until revoked or updated by the user
9. Cookie Policy
Our website uses cookies and related technologies:
– Essential Cookies: Required for core functionality including login, navigation, and shopping cart features.
– Functional Cookies: Enable personalization features such as saved preferences or language settings.
– Analytics Cookies: Help us understand site performance through metrics like session duration and page views.
– Performance Cookies: Monitor site reliability and responsiveness, enabling improved user experience.
10. Cookie Management and Compliance with GDPR & CCPA
Upon your first visit to ecologylabo.com, a cookie banner notifies you of our use of cookies and allows you to manage your preferences in compliance with GDPR and CCPA guidelines. You may adjust your settings at any time via our Cookie Settings interface or through your browser controls. Opting out of non-essential cookies will not impact necessary site functionality.
11. Special Protections for Children Under 13
Ecology Labo does not knowingly collect personal information from children under the age of 13. If we become aware that such data has been collected inadvertently, we will take immediate steps to delete it. Parents or guardians who believe their child may have submitted personal data may contact us directly at [email protected].
12. Policy Updates & User Notifications
We reserve the right to update this Privacy Policy periodically to reflect changes in legal or regulatory requirements, operational practices, or service offerings. Substantive changes will be communicated via prominent notice on ecologylabo.com or through direct email notices, where appropriate.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us at:
Email: [email protected]
We are dedicated to ensuring that your personal data is handled in accordance with the highest standards of privacy and transparency. If you wish to raise a concern or exercise your privacy rights, please don’t hesitate to reach out.