Privacy Policy
At The Brain Chancery (thebrainchancery.com), we recognize the paramount importance of safeguarding personal data and maintaining the trust and confidence of our visitors and users. This Privacy Policy describes how we collect, use, disclose, and protect personal information through our website and associated services, in full alignment with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We prioritize privacy and transparency at every stage of our data processing activities.
1. Commitment to Privacy and Data Protection
We are committed to processing personal data lawfully, fairly, and transparently. Our operations are grounded in privacy-first principles, ensuring that your information is handled with utmost care and is protected by appropriate security mechanisms. We collect only data that is necessary, store it securely, and use it solely for legitimate purposes expressed in this Policy.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors to and users of our website, thebrainchancery.com, and to the data processed through our digital interactions and services. The Brain Chancery acts as the “Data Controller” in relation to personal data collected via the website, meaning we determine the purposes and means of the processing of your personal data. Where relevant, we may also act as a “Data Processor” on behalf of third parties under separate contractual agreements.
3. Categories of Data We Process
We collect and process the following categories of personal data:
a. Usage Data
Includes browser type, version, device identifiers, Internet Protocol (IP) address, time zone setting, location, pages viewed, session duration, navigation history, and other diagnostic data related to how users interact with the website.
b. Account Data
Includes full name, mailing address, email address, phone number, and login credentials when users register or maintain an account on thebrainchancery.com.
c. Profile Data
Includes user-generated preferences, feedback, purchase behavior, product interests, order history, and personal responses to surveys and user experience tools.
d. Communication Data
Includes the contents of any inquiries, messages, support requests, chat logs, and other correspondence or communication history between users and The Brain Chancery.
e. Technical Data
Includes device type, operating system, screen resolution, system configuration, browser plug-in types, diagnostic logs, and API usage.
f. Transaction Data
Includes payment details (payment method, transaction timestamps, billing information), order confirmations, and physical delivery addresses in relation to purchases or paid services.
g. Preference Data
Includes user consent preferences regarding cookies, newsletters, marketing communications, and product interest settings provided voluntarily.
4. Legal Bases for Processing
We rely on the following lawful bases for processing personal data under GDPR and CCPA equivalents:
– Contract: Where processing is necessary for the performance of a contract with you, such as fulfilling orders or providing requested services.
– Consent: Where you have given explicit consent to the processing, such as by subscribing to a newsletter or accepting optional cookies.
– Legitimate Interests: Where processing is necessary for our legitimate business interests (e.g., analytics, fraud prevention, service improvement), and those interests do not override your data protection rights.
– Legal Obligation: Where processing is required to comply with applicable legal obligations, including recordkeeping and reporting duties.
5. Your Rights
We fully support and facilitate the exercise of your data protection rights, which include:
– Right of Access — You may request a copy of your personal data that we hold.
– Right to Rectification — You have the right to request corrections of incomplete or inaccurate data.
– Right to Erasure — You may be entitled to request deletion of your data in certain circumstances (“right to be forgotten”).
– Right to Restrict Processing — You have the right to request a restriction of how we process your personal data in specific contexts.
– Right to Data Portability — You may obtain your data in a commonly structured, machine-readable format and transmit it to another controller.
To exercise any of these rights, contact us directly at [email protected]. We commit to responding to verified requests without undue delay and in accordance with applicable legal timelines.
6. Security Measures
We implement and maintain industry-standard administrative, technical, and physical safeguards to protect personal data. These include but are not limited to:
– End-to-end encryption during transmission
– Role-based access control to limit internal data access
– Regular vulnerability assessments and security audits
– Secure data storage infrastructure including firewalls and intrusion detection
– Regular backup mechanisms to prevent data loss
– Ongoing privacy and security training for relevant personnel
7. International Transfers
Personal data that we collect may be transferred to and stored in countries outside your jurisdiction, including the United States or other international data centers. In such events, we ensure adequate protection under prevailing international data transfer mechanisms, including Standard Contractual Clauses (SCCs), adequacy decisions, or other lawful safeguards recognized by the GDPR and equivalent standards under the CCPA.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which we collected it. The retention schedule is as follows:
– Usage and Technical Data: retained for up to 12 months for analytics
– Account and Profile Data: retained for the duration of the user’s account and securely archived for up to 6 years post-account closure, unless otherwise legally required
– Transaction Data: retained for 7 years to comply with accounting and taxation obligations
– Communication and Support Data: retained for up to 36 months for service quality assurance and dispute resolution
– Consent and Preference Data: stored as long as consent remains valid or until revoked by the user
Thereafter, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies to optimize user experience. Our cookies fall into the following categories:
– Essential Cookies: Necessary for the website to function; cannot be disabled.
– Functional Cookies: Enable enhanced functionality and personalization.
– Analytics Cookies: Help us understand how users interact with the site to improve design and experience.
– Performance Cookies: Support load balancing and interface responsiveness.
For information on specific cookies used and how they function, please refer to our Cookie Declaration available on thebrainchancery.com.
10. Cookie Management and Lawful Consent
We offer a user-first cookie consent banner in compliance with GDPR and CCPA. Upon visiting thebrainchancery.com, users are presented with options to accept, reject, or customize cookie settings. You may withdraw consent at any time via our Cookie Preferences Center or by adjusting your browser settings to block or delete cookies. We honor Do Not Track (DNT) signals and implement appropriate opt-out mechanisms for behavioral targeting.
11. Protection of Children’s Data
The Brain Chancery does not knowingly collect or solicit personal information from children under the age of 13. If we become aware that we have collected data from a child without verifiable parental consent, we will promptly delete such information. If you believe that a child under 13 has provided us with personal data, please contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to amend this Privacy Policy to reflect legal, operational, or technological changes as needed. Users will be notified of material changes through prominent notices on thebrainchancery.com or via direct email communication when applicable. Continued use of our services following such updates constitutes agreement to the revised terms.
13. Contact Us
For any privacy-related inquiries, data subject right requests, or concerns regarding this Privacy Policy, please contact us:
Email: [email protected]
Website: https://thebrainchancery.com
We are fully committed to complying with all relevant data protection and privacy regulations. If you have any questions or wish to exercise your rights, do not hesitate to reach out to us.