Privacy Policy
At Pathhug (“we,” “us,” “our,” or “Pathhug”), accessible via https://pathhug.com, we recognize the importance of safeguarding your personal data. We are fully committed to upholding the highest standards in privacy protection and data security. This Privacy Policy outlines how we collect, use, disclose, and protect your information when you interact with our website and services.
1. Commitment to Privacy and Data Protection
Your privacy is a top priority. Pathhug is committed to ensuring the confidentiality, integrity, and lawful processing of all personal data in accordance with applicable international privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We apply a privacy-first approach in the design of our platform and services.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all data collected through and in connection with your use of the website pathhug.com and related services. Pathhug acts as the “data controller” for personal data that you provide or that we collect through your interactions with our site, meaning we determine the purposes and means of processing that data.
3. Categories of Data Processed
We process various categories of personal data to provide, improve, and tailor our services:
– Usage Data: Includes details such as your IP address, browser type, operating system, pages visited, time spent on pages, session timestamps, and referring URLs.
– Account Data: Covers your full name, email address, physical address, phone number, and any identifiers you provide upon registration or signup.
– Profile Data: Encompasses your preferences, interests, product purchases, browsing behavior, and settings configured through your account.
– Communication Data: Involves any information provided in support requests, contact forms, emails, and records of related correspondence.
– Technical Data: Includes information about devices used to access our services (device model, OS version), software configurations, and error logs.
– Transaction Data: Covers payment details (processed via secure third parties), billing and shipping addresses, transaction history, order identifiers, and delivery records.
– Preference Data: Contains information regarding your consent to marketing communications, notifications, and user-defined areas of interest.
4. Legal Bases for Processing
We rely on the following lawful bases to collect and process your personal data:
– Contractual Necessity: To fulfill our obligations under any contract we enter into with you, including order fulfillment, account servicing, and support.
– Legitimate Interests: To monitor and improve our services, prevent fraud, enhance security, and understand usage patterns (balanced against your fundamental rights).
– Consent: For email marketing, non-essential cookies, and the processing of sensitive data where applicable. You may withdraw consent at any time.
– Legal Obligation: To comply with applicable legislation, including tax, regulatory, or judicial requirements.
5. Your Rights
Under GDPR and CCPA, you are entitled to the following rights regarding your personal data:
– Right of Access: Obtain a confirmation whether we process your data and access the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete information.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your data where legally permissible.
– Right to Restriction: Request that we limit processing in certain scenarios (e.g., data accuracy disputes).
– Right to Data Portability: Receive your personal data in a commonly used, machine-readable format and transmit it to another controller.
– Right to Object: Object to processing based on legitimate interests or direct marketing.
– Right to Withdraw Consent: Withdraw any granted consents without affecting the lawfulness of prior processing.
– Right Not to Be Subject to Automated Decision-Making: Where applicable, object to profiling or decisions made solely by automated means.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement robust technical and organizational security measures to safeguard your personal data, including but not limited to:
– Data encryption at rest and in transit
– Multi-factor authentication and access control policies
– Regular external security audits and vulnerability assessments
– Continuous backup and disaster recovery protocols
– Employee training in data protection and confidentiality
While we take reasonable steps to protect your data, no method of digital transmission or storage is entirely secure.
7. International Transfers
Where personal data is transferred outside your country of residence (including outside the European Economic Area or California), we ensure such transfers are compliant with applicable data protection laws. We rely on:
– Standard Contractual Clauses approved by the European Commission
– Binding corporate rules where appropriate
– Adequacy decisions for jurisdictions deemed to provide sufficient levels of data protection
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected. Retention periods vary by category:
– Usage and Technical Data: Up to 24 months
– Account and Transaction Data: For the duration of your account plus 7 years to comply with tax and financial regulations
– Communication Data: Retained for a minimum of 3 years to manage support history and resolve disputes
– Preference and Marketing Data: Until you withdraw your consent or a maximum of 5 years, whichever is earlier
Upon expiration of retention periods, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies on pathhug.com to provide functionality, personalize experiences, and analyze performance. Cookies fall into the following categories:
– Essential Cookies: Necessary for core site functions such as navigation, security, and order processing
– Functional Cookies: Enhance site customizations and remember user preferences
– Analytics Cookies: Help us understand user behavior, site performance, and errors (e.g., via Google Analytics)
– Performance Cookies: Optimize loading speeds and resource optimization
10. Cookie Management and User Consent
In adherence to GDPR and CCPA, non-essential cookies are only deployed after obtaining explicit user consent. Upon visiting pathhug.com, you will be presented with a cookie banner allowing you to accept, reject, or manage your preferences. You can also change your cookie settings anytime via browser settings or through our dedicated cookie control panel.
11. Children’s Privacy
Our services are not intended for individuals under the age of 13. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected such data, we will delete it immediately. Parents or legal guardians who believe their child has provided data without consent should contact us at [email protected].
12. Policy Updates and Notification
We reserve the right to update this Privacy Policy at our discretion in response to legal, operational, or technical changes. When material changes are made, we will provide appropriate notice via email or the website. Continued use of pathhug.com after such updates constitutes your acceptance of the revised Policy.
13. Contact Us
For questions regarding this Privacy Policy, to exercise your data protection rights, or to report a concern, you may contact us at:
Email: [email protected]
Website: https://pathhug.com
We are committed to complying with applicable data protection laws and upholding your trust. If you have concerns about how your personal data is processed, please do not hesitate to reach out.