Privacy Policy
Terra Sky Days (“we,” “our,” or “us”) is committed to protecting the privacy and personal data of all users engaging with our website, terraskydays.com (“Website”). We understand the importance of safeguarding user information and are dedicated to ensuring your data is handled with transparency, accountability, and in full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Introduction
We take your privacy seriously. This Privacy Policy explains how personal data is collected, used, disclosed, and safeguarded when you visit or interact with Terra Sky Days through terraskydays.com. By using our Website, you acknowledge and accept the practices described in this policy.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all data collected via our Website, associated services, customer support interactions, and marketing communications. Terra Sky Days is the data controller responsible for the processing of personal information under applicable privacy laws. If you are located in the European Economic Area (EEA) or the United Kingdom, this means we determine the purposes and methods of your data processing.
3. Categories of Personal Data Processed
We process the following categories of personal data:
3.1 Usage Data
Information about your visit to our Website, such as your IP address, browser type and version, pages visited, time spent, referring URLs, and other diagnostic data.
3.2 Account Data
Data necessary to create and maintain user accounts, including your full name, email address, mailing address, and contact telephone number.
3.3 Profile Data
Information related to your preferences, purchase history, Website behavior, and interests submitted or inferred through your use of terraskydays.com.
3.4 Communication Data
Records of communications with us, including support requests, inquiries submitted via web forms, and follow-up interactions.
3.5 Technical Data
Device identifiers, system settings, network configurations, operating system, and other technological information associated with accessing the Website.
3.6 Transaction Data
Details concerning purchases made through our Website, including billing addresses, delivery addresses, payment confirmations, transaction IDs (Note: we do not store full payment details, which are processed securely by third-party providers).
3.7 Preference Data
Marketing consents, email subscription preferences, and interests in specific products or services voluntarily provided or inferred from interactions.
4. Legal Bases for Processing
We process personal data under the following lawful grounds, where required by GDPR or similar legislation:
– Contractual Necessity: To provide products or services you request.
– Legitimate Interests: To improve Website functionality, market offerings, protect users, and manage internal operations.
– Consent: For optional marketing communications and placement of non-essential cookies.
– Legal Obligation: To comply with applicable laws and regulations, including tax or financial reporting obligations.
Where consent is required, such as for non-essential cookies or marketing, it can be withdrawn at any time without affecting the lawfulness of processing prior to withdrawal.
5. Your Data Rights
Subject to relevant laws and regional regulations, you have the following rights regarding your personal data:
– Right of Access – Request details of the personal data we hold about you.
– Right to Rectification – Request corrections to incomplete or inaccurate information.
– Right to Erasure – Request deletion of your personal data, subject to applicable retention policies.
– Right to Restrict Processing – Request limitation of how we use your data.
– Right to Data Portability – Request a structured, machine-readable copy of your data to transmit to another provider.
– Right to Object – Object to the processing of your information under certain legal grounds, including direct marketing.
To exercise any of these rights, you may contact us at [email protected].
6. Security Measures
We maintain appropriate administrative, technical, and physical safeguards to protect personal data against unauthorized access, alteration, disclosure, or destruction. These include but are not limited to:
– Encryption of sensitive data in transit and at rest
– Role-based access controls
– Routine data backups and storage security
– Regular cybersecurity audits and staff training on data handling practices
While no method of transmission over the internet is entirely secure, we strive to use the most protective measures available to reduce risks.
7. International Data Transfers
As a global-facing service, your data may be processed or stored in countries outside your jurisdiction, including the United States. Where applicable, international transfers are governed by Standard Contractual Clauses (SCCs), adequacy decisions, or other legal mechanisms approved by relevant authorities to ensure an adequate level of data protection.
8. Data Retention
We only retain your personal data for as long as necessary for the purposes outlined in this Privacy Policy, or as required to meet legal, regulatory, or operational obligations. Retention periods are as follows:
– Usage Data: Retained for up to 24 months
– Account and Profile Data: Retained for the duration of the user relationship plus 6 years
– Transaction Data: Retained for up to 7 years for financial compliance
– Communication Data: Retained for up to 3 years post-interaction
– Preference Data: Retained until consent is withdrawn or unsubscribed
We review our retention schedules regularly and securely dispose of data beyond retention periods.
9. Cookie Policy
We use cookies and similar technologies to enhance user experience, analyze site traffic, and inform marketing decisions. Categories of cookies include:
– Essential Cookies: Necessary for the operation of the Website (e.g., session management).
– Functional Cookies: Remember settings and user preferences.
– Analytics Cookies: Collect anonymized data about traffic and behavior (e.g., Google Analytics).
– Performance Cookies: Help measure and improve performance of Website features.
10. Cookie Management and Compliance
Consent for non-essential cookies is requested upon initial access to terraskydays.com. You may manage or withdraw cookie preferences directly through our cookie banner or in your browser settings. We comply with GDPR and CCPA requirements by obtaining clear, informed consent and allowing users to opt out of tracking and sales of personal information as defined under CCPA.
To opt out of analytics or targeted advertisement cookies, use industry tools such as the Digital Advertising Alliance (DAA) opt-out or adjust browser settings accordingly.
11. Children’s Privacy
Terra Sky Days does not knowingly collect or solicit personal data from children under the age of 13. If we are notified or learn that we have inadvertently received data from a child without proper parental consent, we will delete such information from our systems promptly. Parents or guardians may contact us at [email protected] if they believe a child’s data has been submitted.
12. Policy Updates and Notifications
We reserve the right to amend this Privacy Policy at any time to reflect changes in law, technology, or our data practices. Significant updates will be communicated via our Website or email, where applicable. Users are encouraged to review this policy periodically for any modifications.
13. Contact Us
If you have questions, concerns, or wish to exercise your privacy rights, please contact us at:
Email: [email protected]
Subject Line: Privacy Inquiry
We are committed to resolving privacy concerns responsibly and in line with our obligations under GDPR and CCPA.
At Terra Sky Days, we respect your privacy and remain dedicated to maintaining your trust. All personal information is handled in accordance with applicable data protection and consumer laws. Please reach out to us with any queries regarding how your data is used or secured.