Privacy Policy for ragtale.com
1. Introduction
At Ragtale (“we,” “our,” or “us”), accessible from ragtale.com, your privacy is of paramount importance. We are fully committed to protecting your personal data and respecting your legal rights in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, store, disclose, and protect personal data that you provide or we process in connection with your use of our website and related services.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of our website, services, and interactions via ragtale.com. For the purposes of applicable data protection laws, Ragtale is the data controller responsible for determining the purposes and means of the processing of your personal data. If you have any questions or concerns about how we handle your data, you may contact us at [email protected].
3. Categories of Data Processed
We collect and process various categories of personal data, each serving specific operational or commercial purposes. These include:
– Usage Data – Includes information such as your browser type, IP address, device ID, geolocation data, operating system, referral sources, session data, and details about how you interact with ragtale.com.
– Account Data – When you create an account, we collect information including your full name, email address, postal address, telephone number, and similar identifiers necessary to register and manage your profile on our platform.
– Profile Data – Encompasses your preferences, purchase history, activity history within your account, and behavioral data related to your interactions with our website.
– Communication Data – Includes the communications you send to us including emails, live chat messages, support queries, and the metadata associated with these exchanges.
– Technical Data – Consists of device identifiers, browser configurations, operating system details, mobile settings, screen resolution, language preferences, and other environmental variables.
– Transaction Data – Contains information associated with purchases on ragtale.com, including billing and shipping addresses, order details, transaction timestamps, payment confirmation data (excluding full financial account information), and delivery details.
– Preference Data – Captures your selections or indications regarding newsletters, promotional messaging, marketing consents, categories of interest, and engagement with advertisements or content.
4. Legal Bases for Processing
Under the GDPR, we process your personal data on the following legal grounds:
– Consent: Where you have explicitly given us permission—for example, for sending marketing emails.
– Contract: To fulfill our contract with you, such as processing orders or providing customer support.
– Legal Obligation: Where we are required to comply with the law, including tax or regulatory obligations.
– Legitimate Interest: To manage and improve our services, detect fraud, secure our systems, and ensure the usability of ragtale.com, provided that such interests do not override your protected rights and freedoms.
5. Your Rights
Subject to applicable laws, you have the following rights with respect to your personal data:
– Right of Access: You may request confirmation of what personal data we hold about you.
– Right of Rectification: You may request inaccuracies in your data be corrected or updated.
– Right to Erasure: You may request deletion of your data where legally applicable.
– Right to Restriction: You may request that processing be restricted in certain circumstances.
– Right to Data Portability: You may obtain a copy of your data in a structured, machine-readable format and transmit it to another controller.
– Right to Object: You can object to our processing where it is based on legitimate interests or direct marketing.
– Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw this consent at any time.
You may exercise any of these rights by contacting us at [email protected]. We may request verification of your identity before fulfilling such requests.
6. Security Measures
We implement robust security measures to safeguard your personal data, including:
– Encryption in transit and at rest using industry-standard practices.
– Restriction of access to authorized personnel only, governed by role-based permissions.
– Regular data backups and infrastructure audits.
– Mandatory staff training in data protection and privacy responsibilities.
– Continuous monitoring for vulnerabilities and unauthorized access attempts.
7. International Transfers
Your personal data may be transferred outside of your jurisdiction, including to servers maintained in countries that may not offer the same level of data protection. Where this occurs, we ensure that appropriate safeguards are implemented, such as Standard Contractual Clauses approved by the European Commission or comparable mechanisms that ensure adequate data protection standards.
8. Data Retention
We retain your personal data only for as long as reasonably necessary to fulfill the purposes for which it was collected or to comply with legal, regulatory, contractual, or statutory obligations. Specific retention periods are as follows:
– Usage Data: Up to 12 months for system analytics and cybersecurity auditing.
– Account Data: Retained until the account is deleted or becomes inactive beyond 24 months.
– Profile Data: Retained during the lifecycle of the account plus 12 months.
– Communication Data: Retained for 3 years for service documentation and support follow-up.
– Technical and Transaction Data: Retained for up to 7 years for financial and tax compliance.
– Preference Data: Retained for as long as relevant to marketing operations or until consent withdrawal.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance user experience, improve site functionality, and conduct analytics. Categories of cookies used include:
– Essential Cookies: Required for core functionality, such as secure log-in or basket processing.
– Functional Cookies: Enable enhancements such as remembering user preferences.
– Analytics Cookies: Collect aggregated data on user behavior to improve our services.
– Performance Cookies: Monitor uptime and load speeds for optimal user experience.
All cookies are set in compliance with applicable legal requirements and user consent mechanisms.
10. Cookie Management and Compliance with GDPR & CCPA
Upon your first visit to our site, you will be presented with a clear cookie banner to manage your consent preferences. You can modify or withdraw your cookie consent at any time using tools available on ragtale.com or through your browser settings. We honor Do Not Track (DNT) signals in accordance with CCPA, and provide users with the ability to opt out of sales or sharing of personal data where legally required.
11. Special Protections for Children Under 13
Our site and services are not directed toward children under the age of 13. We do not knowingly collect personal data from children without verifiable parental consent. If we become aware that personal data of a child has been collected inadvertently, we will take reasonable steps to delete such data. Parents or guardians may contact us at [email protected] to review, revise, or request deletion of their child’s personal data.
12. Policy Updates and User Notifications
We reserve the right to modify or update this Privacy Policy to reflect changes in legal requirements, technology, or our data practices. In the event of material changes, where required, we will notify users via the website interface or by direct communications where feasible. Continued use of ragtale.com after changes constitutes acceptance of the updated policy.
13. Contact
If you have any questions regarding this Privacy Policy or wish to exercise any of your data rights, please contact us:
Email: [email protected]
We strive to respond to all verified inquiries in accordance with applicable regulatory timeframes.
Compliance Assurance
We are committed to maintaining full compliance with applicable privacy laws, including GDPR and CCPA. If you have any concerns about our data handling practices or believe your rights have been violated, you are encouraged to contact us directly at [email protected].