Privacy Policy
1. Introduction
At Million Women’s Voices (“we,” “us,” or “our”), accessible via www.millionwomensvoices.com (the “Site”), your privacy is of paramount importance. We are fully committed to protecting the personal data of our users and ensuring transparency with respect to how we collect, use, and share your information. This Privacy Policy outlines our privacy practices and your rights in accordance with applicable data protection regulations, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access our Site or interact with us via our provided services. Million Women’s Voices acts as the data controller of your personal information in instances where we determine the means and purposes of data processing. If you have any questions about this policy or the use of your data, you may contact us at: [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data, either directly from you, automatically through your use of the Site, or from third-party sources.
a. Usage Data
Includes information about your browser type and version, IP address, timezone settings, pages viewed, page response times, download errors, and browsing session metadata.
b. Account Data
Includes name, postal address, email address, phone number, and any credentials associated with an account you create on millionwomensvoices.com.
c. Profile Data
Includes your interests, content preferences, purchases, browsing behavior, and other data you provide to personalize your experience.
d. Communication Data
Includes records of your communications with us, including support queries, contact form submissions, email correspondence, social media messages, and call histories.
e. Technical Data
Includes device identifiers, hardware model, operating system and version, browser type, mobile network information, and system configuration data.
f. Transaction Data
Includes details of products or services you have purchased through the Site, payment confirmations, billing and shipping address, and delivery data.
g. Preference Data
Includes your marketing and communication preferences, survey responses, and product or content preferences.
4. Legal Bases for Data Processing
In accordance with GDPR, we rely on the following legal bases to process your personal data:
– Contractual necessity: When data processing is required to fulfill a contract with you (e.g., to process a purchase).
– Legitimate interests: Where processing is necessary for our legitimate business interests and those interests are not overridden by your rights or freedoms (e.g., improving our services, fraud prevention).
– Consent: Where you have explicitly granted us permission to process your personal data for specific purposes (e.g., newsletter subscriptions, targeted marketing).
– Legal obligation: When processing is necessary to comply with a legal or regulatory requirement.
For users subject to CCPA, we do not sell personal data and will only collect and use such information as permitted under the statute and its implementing regulations.
5. Your Rights
As a data subject, you have the following rights regarding your personal data:
– Right of Access: You may request confirmation of whether we process your data and, if so, request a copy of that data.
– Right of Rectification: You may request that we correct or update inaccurate or incomplete data relating to you.
– Right to Erasure: You may request deletion of your personal data, subject to certain exceptions.
– Right to Restriction: You may request that we restrict processing of your data under certain circumstances.
– Right to Data Portability: You may request to receive your data in a structured, machine-readable format and have it transferred to another controller.
– Right to Object: You may object to processing based on our legitimate interests, as well as to direct marketing.
– Right Not to Be Subject to Automated Decision-Making: We do not engage in automated decision-making, including profiling, that would produce legal or similarly significant effects.
To exercise any of these rights, please contact us at: [email protected].
6. Security Measures
We implement robust security controls to protect your data against unauthorized access, alteration, disclosure, or destruction. Security measures include:
– SSL/TLS encryption for all data transmissions
– Access controls and authentication protocols
– Regular system and software updates
– Secure servers with firewall protection
– Periodic security audits and penetration testing
– Ongoing privacy and data protection training for our staff
7. International Data Transfers
Your personal data may be transferred to, and maintained on, servers located outside your jurisdiction, including servers in countries that may not offer the same level of data protection as your own. Where we transfer your data outside the European Economic Area (EEA) or other jurisdictions with rigorous privacy regulations, we rely on Standard Contractual Clauses approved by the European Commission or other lawful data transfer mechanisms to ensure appropriate safeguards are in place.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to meet legal, regulatory, tax, accounting, or reporting requirements. Retention periods are as follows:
– Usage and Technical Data: Up to 12 months
– Account and Profile Data: Retained for as long as the user account remains active and for 3 years thereafter
– Communication Data: Up to 5 years following last interaction
– Transaction Data: 7 years for compliance with financial obligations
– Preference and Marketing Data: Until user withdraws consent or requests deletion
Upon expiration of the applicable retention period, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance user experience, analyze site usage, and support our marketing efforts. These include:
– Essential Cookies: Necessary for the operation of the Site (e.g., authentication, security)
– Functional Cookies: Store user preferences and allow personalized features
– Analytics Cookies: Collect aggregate data to understand how users interact with the Site (e.g., Google Analytics)
– Performance Cookies: Help monitor server performance and website responsiveness
Use of these cookies may involve collection of technical and usage data as described above.
10. Cookie Management and Compliance
Upon your first entry to www.millionwomensvoices.com, a cookie banner enables you to manage your preferences. You may opt in or out of non-essential cookies at any time through our Cookie Settings interface or by adjusting browser settings.
In compliance with GDPR and CCPA:
– We obtain consent before placing non-essential cookies
– We provide opt-out mechanisms for users subject to CCPA
– We honor “Do Not Track” browser settings where technically feasible
11. Children’s Privacy
Our Site is not directed to children under the age of 13, and we do not knowingly collect personal information from minors without verifiable parental consent. If you believe we have collected data from a child under 13, please notify us immediately at: [email protected], and we will take appropriate steps to delete such data from our systems.
12. Policy Updates
We reserve the right to modify this Privacy Policy from time to time to reflect changes in legal, technical, or operational requirements. Any material changes will be communicated to users through the Site or via email when appropriate. Continued use of the Site constitutes acknowledgment of the updated terms.
13. Contact Us
If you have any questions, concerns, or complaints regarding this Privacy Policy or our handling of your personal data, please contact us:
Email: [email protected]
Website: www.millionwomensvoices.com
We are committed to addressing your privacy inquiries and will respond in a timely and thorough manner.
This Privacy Policy is provided in compliance with applicable data protection laws, including GDPR and CCPA. Users are encouraged to contact us with any questions or concerns about how their data is handled.