Privacy Policy
1. Introduction
At Growth Parent HQ (accessible at growthparenthq.com), we are firmly committed to protecting your personal privacy and handling your data with transparency, accountability, and respect. We recognize the importance of safeguarding personal data and dedicate ourselves to compliance with applicable data protection legislation, including but not limited to the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines the types of personal data we collect, how we process such data, and your rights regarding the information you entrust to us.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal information collected through your use of growthparenthq.com and associated communication with us, including through email or support inquiries. For the purposes of the GDPR and CCPA, the entity responsible for processing your personal data—the Data Controller—is Growth Parent HQ.
If you have any questions about this policy, please contact us at [email protected].
3. Categories of Data Processed
We collect several categories of personal data to provide personalized, efficient, and secure access to growthparenthq.com and its services:
a) Usage Data
Includes information about your browser type, IP address, geographic location, pages visited, referring/exit URLs, dates and times of site visits, time spent on each page, and interactions with on-site features.
b) Account Data
If you choose to create an account or provide information during registration, we may collect your full name, email address, postal address, phone number, and other identifiers needed for account setup and management.
c) Profile Data
Includes demographics such as age range, preferences, feedback, past purchases, behavior patterns, and survey responses. This data helps tailor your experience and recommend relevant content or products.
d) Communication Data
Comprises any messages you send us directly, such as via our email at [email protected] or through contact forms. This may include support requests, inquiries, or feedback and the resulting correspondence and resolutions.
e) Technical Data
Covers device models, operating systems, browser settings, screen resolution, mobile carrier, connection type, and similar system data captured through cookies or similar technologies.
f) Transaction Data
Pertains to purchases or transactions including payment methods, billing information, payment status, delivery addresses, and order history. Payments themselves may be processed via trusted third-party payment platforms, which comply with PCI-DSS obligations.
g) Preference Data
Includes your communication preferences such as opting in or out of marketing communications, newsletter subscriptions, and stated interests in parenting topics or recommended content.
4. Legal Bases for Processing
We rely on several lawful bases to process your personal data:
– Consent: Where you have given your explicit consent, for instance by ticking a box to receive emails or accepting cookies.
– Contract: Where processing is necessary to fulfill a contract with you, such as account creation, order fulfillment, or user-requested services.
– Legal Obligation: To comply with legal and regulatory requirements.
– Legitimate Interests: Where we process data to advance our legitimate interest in delivering quality products and services, ensuring the security of our platform, preventing fraud, or improving user experience — provided these interests are not overridden by your data protection rights.
5. Your Rights
Under the GDPR and CCPA, you have the following rights concerning your personal data:
– Right of Access: Request a copy of the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your data under certain conditions.
– Right to Restrict Processing: Request that we limit how your personal data is used.
– Right to Data Portability: Request the transfer of your data in a structured, commonly used format.
– Right to Object: Object to specific types of processing, including direct marketing.
– Right to Withdraw Consent: Withdraw your consent at any point, when processing is based on consent.
– Right Not to Be Subject to Automated Decisions: You have the right not to be subject to a decision based solely on automated processing.
To exercise any of the above rights, please contact us at: [email protected].
6. Security Measures
We implement appropriate technical and organizational security measures to protect your personal data against accidental or unlawful destruction, loss, unauthorized disclosures, or access. These include:
– TLS/SSL encryption of transmitted data.
– Restricted access to personal data on a need-to-know basis.
– Firewalls, endpoint protection, and intrusion detection systems.
– Regular data backups on secure servers.
– Staff privacy training and access monitoring.
7. International Transfers
We may transfer personal data to countries outside the European Economic Area (EEA) or California where necessary for processing. In such cases, we implement appropriate safeguards such as Standard Contractual Clauses or rely on the adequacy decisions made by the European Commission or other regulatory authorities. All transfers are conducted in accordance with applicable data privacy laws.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes described in this policy unless a longer retention period is required or permitted by law. Specific retention periods include:
– Usage and Technical Data: retained for up to 12 months for analytics purposes.
– Account and Profile Data: retained for the lifetime of your account plus 6 years thereafter (for legal compliance).
– Communication Data: retained for 3 years post-resolution.
– Transaction Data: retained for 7 years to meet financial regulations.
– Marketing and Preference Data: retained until consent is withdrawn or after 24 months of inactivity.
9. Cookie Policy
Growthparenthq.com uses cookies and similar technologies to enhance user experience. These fall into the following categories:
– Essential Cookies: Required for core functionality such as navigation and authentication.
– Functional Cookies: Enable basic site features and user preferences.
– Analytics Cookies: Collect information on how visitors use the site (e.g., Google Analytics).
– Performance Cookies: Monitor system performance and identify areas for improvement.
We do not use cookies to collect personally identifiable information without your explicit consent.
10. Cookie Management and Compliance
Upon accessing growthparenthq.com, you will be presented with a cookie consent banner allowing you to customize preferences in accordance with the GDPR and CCPA. You can update or withdraw consent at any time by adjusting cookie settings in your browser or via our Cookie Preferences page where applicable.
We honor Do Not Track (DNT) signals and provide California residents with the ability to opt-out of the “sale” of personal information as defined under CCPA.
11. Children’s Privacy
Growthparenthq.com is not intended for, nor do we knowingly collect data from, children under the age of 13. If we discover we have inadvertently collected personal data from a child under 13, we will take steps to delete it promptly. Parents or guardians who believe their child has submitted personal data may contact [email protected].
12. Policy Updates & Notifications
We may revise this Privacy Policy periodically in response to legal, technical, or business developments. Any changes to this Policy will be posted on this page. Where legally required, we will notify you of material changes and seek your renewed consent for relevant purposes.
13. Contact Information
For any privacy-related questions, requests, or concerns, please contact:
Growth Parent HQ
Email: [email protected]
Website: growthparenthq.com
We strive to comply fully with all applicable data protection regulations and are dedicated to protecting your privacy. If you believe we have failed to do so, you have the right to lodge a complaint with your data protection authority or reach out to us directly so we can resolve the issue promptly.