Privacy Policy for WisneyWorld.com
1. Introduction
At Wisney World (“we,” “us,” or “our”), accessible via wisneyworld.com (“Website”), we are fully committed to protecting your privacy and ensuring the security of your personal data. We uphold the principles of transparency, accountability, and privacy by design. Whether you are browsing our Website, subscribing to our services, or engaging with our content, your trust is paramount. This Privacy Policy outlines how we collect, use, and protect your data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of our Website and services, including visitors, registered account holders, and purchasers. Wisney World is the data controller for the personal data collected through wisneyworld.com. If you have any privacy-related questions or requests, you may contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
This includes information about how you use our Website, such as IP address, browser type, operating system, referring URLs, access times, session duration, and pages viewed.
b. Account Data
When you register an account, we collect your full name, email address, physical address, and phone number.
c. Profile Data
This comprises your preferences, past purchases, browsing behavior, saved content, and participation in promotions or surveys.
d. Communication Data
We maintain records of your communications with us, including support requests, inquiries sent via forms or email, and any correspondence related to our services.
e. Technical Data
We collect device-specific information, such as device model, operating system version, unique device identifiers, and configuration settings.
f. Transaction Data
This includes payment information, billing details, order history, shipping preferences, and fulfillment tracking.
g. Preference Data
We maintain records of your marketing preferences, opt-in status, interested categories or products, and consent to receive communications.
4. Legal Bases for Processing
We process your personal data only where we have a lawful basis to do so. These include:
– Consent: Where you have provided clear consent for a specific purpose, such as receiving marketing emails.
– Contract: Where data processing is necessary for the performance of a contract with you, such as fulfilling product orders.
– Legal Obligation: Where we are legally required to process data, for example, in relation to taxes or regulatory obligations.
– Legitimate Interests: Where processing is required for our legitimate business interests, such as enhancing Website functionality or preventing fraud, and these interests are not overridden by your rights.
5. Your Rights
As a data subject under applicable laws, you have the following rights:
– Right of Access: You may request access to your personal data and information about how we process it.
– Right to Rectification: You can request correction of inaccurate or incomplete personal data.
– Right to Erasure: In certain circumstances, you have the right to request deletion of your data (“right to be forgotten”).
– Right to Restrict Processing: You may request that we limit the processing of your data in specific scenarios.
– Right to Data Portability: You may request a copy of your data in a structured, commonly used, and machine-readable format.
– Right to Object: You can object to the processing of your data based on legitimate interests or direct marketing.
To exercise any of the above rights, please email [email protected].
6. Security Measures
We implement robust technical and organizational measures to safeguard personal data:
– Encryption of data in transit and at rest using industry standards.
– Role-based access controls to limit employee data access.
– Regular data backups and secure, monitored data storage.
– Staff training on privacy principles and secure data handling.
While no system is 100% secure, we continuously strive to protect your data against unauthorized access, breach, or loss.
7. International Transfers
Your data may be transferred to countries outside of your jurisdiction, including those that may not have equivalent privacy protections. In such cases, we ensure that appropriate safeguards are in place, such as the use of Standard Contractual Clauses (SCCs) and adherence to regulatory frameworks for cross-border transfers.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, and reporting obligations. Specific retention periods include:
– Usage Data: Retained for 12 months for analytics purposes.
– Account Data: Retained for the duration of the user relationship plus 6 years.
– Profile and Preference Data: Retained for 3 years following last activity or consent withdrawal.
– Communication Data: Retained for 2 years for customer service tracking.
– Transaction Data: Retained for 7 years to meet financial and tax obligations.
After these periods, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience and collect analytical information. Cookies are categorized as follows:
– Essential Cookies: Required for basic Website functionality.
– Functional Cookies: Enable enhanced personalization and recall of user settings.
– Analytics Cookies: Help us understand visitor behavior and improve usability.
– Performance Cookies: Monitor site performance and help detect issues.
10. Cookie Management and Compliance
Upon your first visit to wisneyworld.com, we present a cookie consent banner in compliance with GDPR and CCPA standards. You may accept or decline non-essential cookies at any time through our cookie preference manager accessible on the Website. California consumers may opt out of “sale” of personal data under CCPA via our “Do Not Sell My Personal Information” link if applicable.
11. Children’s Privacy
Wisney World does not knowingly collect data from children under the age of 13. If you are a parent or guardian and believe we have collected information about a child under 13, please contact us at [email protected]. We will take prompt steps to investigate and delete such data.
12. Policy Updates
We may update this Privacy Policy periodically to reflect changes in legal, technical, or business developments. Significant changes will be communicated via notices on wisneyworld.com. We encourage users to review this page regularly to remain informed about how we protect personal data.
13. Contact
For any privacy-related questions, data access requests, or complaints, please contact us via:
Email: [email protected]
We are committed to handling your request with due diligence and in a timely manner in accordance with applicable privacy legislation.
Wisney World maintains full compliance with applicable data protection laws, including GDPR and CCPA. We welcome any inquiries regarding our privacy practices and invite users to reach out with concerns at [email protected].