Privacy Policy
At The Dirty Cuts (thedirtycuts.com), your privacy is of paramount importance to us. We are firmly committed to safeguarding the confidentiality, integrity, and availability of your personal data. This Privacy Policy details how we collect, use, disclose, and secure your personal information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.
1. Our Commitment to Privacy
We prioritize your privacy and are dedicated to transparently handling personal information. TheDirtyCuts.com operates with a privacy-first mindset, ensuring that your data is only used for legitimate business purposes and is protected by strong organizational and technical safeguards.
2. Scope of This Policy and Role as Data Controller
This Privacy Policy applies to all visitors to, users of, and account holders on thedirtycuts.com. The Dirty Cuts acts as the “Data Controller” with respect to your personal data, determining the purposes and means of its processing. By using our website and related services, you acknowledge the collection and use of your data as outlined herein.
3. Categories of Personal Data We Process
We may collect and process the following categories of personal data:
a. Usage Data:
Includes information about how you interact with our website, such as your IP address, browser type, session duration, pages visited, and referral sources.
b. Account Data:
Includes your full name, mailing address, email address, phone number, and account credentials when you create an account or place an order through thedirtycuts.com.
c. Profile Data:
Includes your preferences, order history, wishlists, browser behaviors, and interests related to our services and products.
d. Communication Data:
Includes correspondence, support tickets, inquiries, complaints, reviews, and email messages exchanged between you and our team.
e. Technical Data:
Includes device identifiers, operating system, browser settings, time zone, and internet service provider (ISP) details from the device you use to visit our website.
f. Transaction Data:
Includes payment information (through third-party processors), order amount, delivery address, shipping status, and purchase timestamps.
g. Preference Data:
Includes settings regarding marketing communications, promotional consent, brand preferences, and interest categories related to grooming and self-care.
4. Legal Bases for Processing Personal Data
We process your personal data under one or more of the following lawful bases:
– Performance of Contract: When necessary to fulfill or manage a transaction or provide a product or service at your request.
– Legitimate Interests: For purposes such as improving our website performance, ensuring security, or marketing existing customers, unless those interests are overridden by your rights.
– Consent: When you have given explicit permission (e.g., for receipt of promotional emails or for the use of non-essential cookies).
– Legal Obligations: To comply with legal requirements such as tax, fraud prevention, or regulatory compliance.
5. Your Rights Under Data Protection Laws
Depending on your jurisdiction, you may have the following rights regarding your personal data:
– Right of Access: You may request to view the personal data we hold about you.
– Right to Rectification: You can correct inaccurate or incomplete data.
– Right to Erasure: You may request the deletion of your data where lawful grounds apply.
– Right to Restrict Processing: You can request temporary suspension of data processing under certain conditions.
– Right to Data Portability: You can request a copy of your data in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to data processing based on legitimate interests or for direct marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Data Security Measures
We implement comprehensive physical, administrative, and technical safeguards to secure your personal data from unauthorized access, disclosure, alteration, or destruction. Key measures include:
– SSL encryption of sensitive data in transit.
– Role-based access controls to limit internal use.
– Regular data backups and disaster recovery plans.
– Ongoing privacy and data protection training for staff.
7. International Data Transfers
We may transfer your personal data to countries outside your home jurisdiction. In such cases, we rely on:
– Standard Contractual Clauses approved by regulatory authorities.
– Adequacy decisions under GDPR.
– Compliance with the CCPA and other applicable data transfer frameworks.
You may request details about the mechanisms by which we ensure adequate protection of your data during cross-border transfers by contacting [email protected].
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected or to meet legal, regulatory, or operational requirements. Typical retention periods include:
– Account and Transaction Data: Retained for up to 7 years following your last transaction.
– Communication Data: Retained for up to 3 years from the last interaction.
– Website Usage and Technical Data: Retained for up to 2 years.
– Marketing Consent Preferences: Retained indefinitely unless revoked.
When retention is no longer necessary, we securely delete or anonymize your data.
9. Cookie Policy
TheDirtyCuts.com uses cookies to enhance your user experience. Cookies fall into the following categories:
– Essential Cookies: Enable core site functionality such as navigation, login, and shopping cart features.
– Functional Cookies: Remember your settings and preferences to personalize your visit.
– Analytics Cookies: Collect insights into how users interact with the site to inform improvements.
– Performance Cookies: Used to measure and optimize website speed, responsiveness, and reliability.
10. Cookie Management and Compliance
We comply with GDPR and CCPA requirements regarding cookie usage:
– Visitors from the EU and UK are shown a cookie consent mechanism that allows the selection and refusal of non-essential cookies prior to placement.
– California residents are presented with a “Do Not Sell or Share My Personal Information” option, accessible through our Cookie Settings page.
– You may also manage cookie preferences through your browser settings or use third-party tools to block tracking cookies.
11. Children’s Privacy
We do not knowingly collect personal data from children under the age of 13, and our services are not directed at minors. If we become aware that we have collected data from a child under 13, we will delete it immediately. Parents or guardians who believe we may have collected personal information from a child should contact us at [email protected].
12. Policy Updates
We may update this Privacy Policy from time to time to reflect operational, legal, or regulatory changes. Any material changes will be posted on this page, and where appropriate, we may notify you by email or site banner. Continued use of thedirtycuts.com after changes have been made constitutes your acceptance of the updated policy.
13. Contact Us
If you have any questions about this Privacy Policy, your rights, or our data practices, please contact our privacy team via email at [email protected].
We are committed to staying compliant with all applicable privacy laws and to resolving any data concerns you may have. Please feel free to reach out to us at any time.