Privacy Policy
1. Introduction
At SF Sounds Media (“we”, “us”, or “our”), accessible via sfsoundsmedia.com, we are fully committed to safeguarding the privacy and personal data of our users. We recognize and respect the importance of your privacy and are dedicated to ensuring the confidentiality, integrity, and security of your personal information in accordance with the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”). This Privacy Policy outlines how we collect, use, store, disclose, and protect your personal data when you interact with our website and services.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all website visitors, users, customers, and others who interact with the digital properties and services offered by SF Sounds Media at sfsoundsmedia.com. For the purpose of applicable data protection laws, SF Sounds Media is the data controller of your personal information. Any questions regarding this policy or requests to exercise your rights should be directed to our contact email listed in Section 13 of this Policy.
3. Categories of Personal Data Processed
We may collect and process the following categories of personal data:
3.1 Usage Data
Information about how you access and use our website, including your IP address, browser type and version, operating system, referral sources, time zone settings, page interaction data, and duration of visits.
3.2 Account Data
Personal details voluntarily provided when creating an account or making a purchase, such as your name, billing address, shipping address, email address, and telephone number.
3.3 Profile Data
Data relating to your preferences, interests, browsing behavior, product selections, and purchase history.
3.4 Communication Data
Records of your correspondence with us, including inquiries, support tickets, and service feedback.
3.5 Technical Data
Device and system-related information such as device type, operating platform, system configurations, and diagnostic logs.
3.6 Transaction Data
Details of products or services you have purchased from us, including payment method, billing details, and shipping information. Note: We do not store full payment information; such transactions are securely processed via third-party providers.
3.7 Preference Data
Your preferences regarding marketing communications, newsletter subscriptions, and product or content interests.
4. Legal Bases for Processing
Under the GDPR, we rely on the following legal grounds to process your personal data:
– Contractual Necessity: Processing necessary to perform our contractual obligations with you.
– Legitimate Interests: For purposes including website optimization, fraud prevention, and improving customer experience, provided that such interests are not overridden by your rights and interests.
– Consent: Explicit consent given by you for specified purposes, such as marketing communications.
– Legal Obligation: When we are legally required to collect or disclose personal data.
For California residents, our collection and processing of personal data aligns with rights granted under the CCPA and includes notice at the point of collection and clear opt-out mechanisms.
5. Your Rights
You have the following rights in relation to your personal data:
– Right of Access: You may request access to the personal information we hold about you.
– Right to Rectification: You may request corrections to inaccurate or incomplete personal data.
– Right to Erasure (Right to Be Forgotten): You may request deletion of your personal information, subject to legal and contractual constraints.
– Right to Restriction of Processing: You may request that we limit the processing of your personal data in certain circumstances.
– Right to Data Portability: You have the right to request data portability for your information in a structured, commonly used format.
– Right to Object: You may object to processing based on legitimate interest or direct marketing purposes.
Requests to exercise any of the above rights should be submitted via email to [email protected]. We will respond in accordance with applicable data protection law.
6. Security Measures
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:
– End-to-end encryption protocols during data transmission and storage
– Role-based access controls to restrict data access
– Routine data backups and disaster recovery systems
– Employee privacy training and internal data handling policies
7. International Data Transfers
In cases where personal data is transferred outside the European Economic Area (EEA) or other jurisdictions offering similar legal protections, we ensure adequate safeguards are in place. These may include the use of Standard Contractual Clauses approved by the European Commission or adherence to recognized international data protection frameworks. All data transfers are conducted in strict compliance with applicable privacy regulations.
8. Data Retention
We only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements. Retention periods vary by data category:
– Usage and Technical Data: up to 24 months
– Account and Profile Data: maintained while your account remains active or for 6 years post last transaction
– Communication Data: stored for 24 months
– Transaction Data: retained for at least 7 years in compliance with tax and accounting laws
– Preference Data: until you withdraw consent or update your preferences
9. Cookie Policy
sfsoundsmedia.com uses cookies to enhance user experience and website performance. Cookies are small files placed on your device to collect data about your interaction with the website.
Categories of cookies we use include:
– Essential Cookies: Required for website functionality and cannot be disabled.
– Functional Cookies: Enable enhanced features such as video playback or preferences storage.
– Performance Cookies: Help us understand and improve website performance by collecting analytical metrics.
– Analytics Cookies: Collect aggregated data on site usage patterns to assist in marketing and content strategies.
10. Cookie Management and Compliance
You have full control over your cookie preferences. Upon visiting our website, you will be presented with a cookie consent banner in compliance with GDPR and CCPA requirements. You may manage or revoke cookie consent at any time via your browser settings or the dedicated Cookie Preferences link accessible on our website interface.
11. Children’s Privacy
We do not knowingly collect or process personal information from individuals under the age of 13. If we learn that such information has been inadvertently collected, we will take appropriate measures to delete it promptly. Parents and guardians who believe their child may have supplied us with personal data may contact us directly using the details in Section 13.
12. Policy Updates
We reserve the right to amend or update this Privacy Policy at any time to reflect changes in regulatory requirements or our data practices. Any revisions will be posted on this page. In the event of material changes that affect your rights or how we process your personal data, we will notify you appropriately via our website or email communication.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us via:
Email: [email protected]
We are committed to upholding the highest standards of privacy and will respond to all privacy inquiries in a timely and transparent manner.
This Privacy Policy confirms our ongoing commitment to compliance with the GDPR, CCPA, and other applicable privacy laws. Please don’t hesitate to reach out to us at the contact provided for any privacy-related questions or concerns.
