PRIVACY POLICY
Cook SF (“we”, “us”, “our”) is committed to safeguarding your privacy and protecting your personal data. This Privacy Policy outlines the types of data we collect, how we use, store, and share that data, and your rights regarding your personal information when you interact with our website located at cook-sf.com (“Site”). We uphold the highest standards of data protection and processing, in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
We respect your right to privacy and understand the importance of safeguarding your personal information. Our practices are designed to protect your rights and ensure transparency, lawfulness, and fairness in the processing of your data. Your personal data will be handled with care, and only for lawful and specified purposes. We are committed to implementing industry-standard safeguards to preserve the confidentiality and integrity of your data.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to data collected through our Site and services offered by Cook SF. For purposes of the General Data Protection Regulation, Cook SF is the Data Controller of your personal data—determining the purposes and means of processing. If you reside in California, this policy also serves as our notice of collection under the CCPA.
3. Categories of Data We Process
We collect and process the following categories of personal data, either directly from you or automatically via your interaction with the Site:
a. Usage Data
Includes information about how you use our Site, such as browser type, operating system, IP address, pages viewed, time spent on pages, and clickstream data.
b. Account Data
Includes full name, billing and shipping address, email address, phone number, and other identifiers you provide when registering an account or placing an order.
c. Profile Data
Includes preferences, purchase history, order behaviors, saved items, and any personalized content you select or provide.
d. Communication Data
Includes data collected through your communications with us, such as support requests, inquiries via email, or contact forms.
e. Technical Data
Includes details about your device, such as device model, system configuration, time zone, operating system, and language settings.
f. Transaction Data
Includes payment information, purchase details, delivery address, transaction records, and order confirmations.
g. Preference Data
Includes your consent and choices regarding marketing communications, product interests, and communication preferences.
4. Legal Bases for Processing
We process your personal data only where legally permitted, based on the following grounds:
– Performance of Contract: When necessary for processing orders, fulfilling obligations, or providing requested services.
– Consent: Where you have given explicit consent to receive marketing, cookies, or specific services.
– Legitimate Interests: For business operations such as fraud prevention, improving services, or website analytics, provided that such interests are not overridden by your rights.
– Legal Obligations: Where processing is required for compliance with applicable laws and regulations.
If we rely on your consent for any processing, you may withdraw it at any time without affecting prior lawful processing.
5. Your Rights
Subject to applicable law, you have the following rights regarding your personal data:
– Right of Access: To receive a copy of your data and how it is processed.
– Right to Rectification: To correct inaccuracies or incomplete data.
– Right to Erasure: To have your data deleted in certain circumstances.
– Right to Restriction: To request restriction on processing under specific conditions.
– Right to Data Portability: To receive your data in a structured, commonly used format and transfer it to another controller.
– Right to Object: To object to data processing based on legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: If processing is based on consent, you may withdraw consent at any time.
To exercise these rights, please contact us at [email protected]. We will respond in accordance with applicable data protection laws.
6. Security Measures
We implement appropriate technical and organizational measures to protect your data, including:
– Encryption of data at rest and in transit.
– Secure access controls and authentication mechanisms.
– Regular data backup and disaster recovery protocols.
– Personnel training in privacy and security practices.
– Routine evaluations and audits for data protection effectiveness.
Despite our efforts, no method of digital storage or transfer is completely secure. We urge you to protect your own information by choosing strong passwords and logging out of sessions after use.
7. International Transfers
Your information may be transferred to, stored in, or accessed from jurisdictions outside your place of residence, including countries that may not provide the same level of legal data protection. Where such transfers occur, we implement appropriate safeguards, including Standard Contractual Clauses approved by the European Commission, to ensure an adequate level of protection.
8. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which we collected it, including:
– Account Data: Retained while your account is active and for up to 6 years thereafter to comply with tax and legal obligations.
– Transaction Data: Retained for 7 years to comply with financial reporting obligations.
– Communication Data: Retained for 2 years from the date of last interaction.
– Usage and Technical Data: Retained for 2 years for analytics and service optimization.
– Preference Data: Retained until you withdraw consent or delete your account.
Upon expiration of these retention periods, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies on cook-sf.com for various purposes:
a. Essential Cookies: Necessary for website functionality and cannot be disabled.
b. Functional Cookies: Enhance your experience, such as saving preferences.
c. Analytics Cookies: Collect aggregated data to understand user behavior and improve performance.
d. Performance Cookies: Measure system performance and help resolve issues.
10. Cookie Management and Compliance
We provide full compliance with GDPR and CCPA cookie requirements. Upon visiting cook-sf.com, you are presented with a cookie consent banner allowing you to accept or customize settings. You can change your preferences or withdraw consent at any time via the Cookie Settings link accessible on the Site. Our use of non-essential cookies is fully opt-in, and we do not sell or share cookie data for cross-contextual advertising.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from individuals under the age of 13. If you are a parent or guardian and believe your child has provided data to us, please contact us at [email protected], and we will take immediate steps to delete such information.
12. Policy Updates
This Privacy Policy may be revised from time to time at our discretion to reflect changes in legal, regulatory, or operational practices. We will notify you of any material changes through appropriate communication channels, such as the Site or direct email, where legally required.
13. Contact
If you have any questions about this Privacy Policy, how we handle your personal data, or would like to exercise your rights, please contact our Privacy Office at:
Email: [email protected]
Website: cook-sf.com
Your privacy is of utmost importance to us. We are committed to conducting our business in accordance with applicable data protection regulations and ensuring your rights are upheld at all times.