Privacy Policy
1. Introduction
At Loot Early (“we,” “us,” or “our”), accessible at lootearly.com, your privacy and the protection of your personal information are of paramount importance to us. We are committed to preserving the confidentiality, integrity, and security of the personal data our users entrust to us. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data in accordance with applicable privacy laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”), as amended.
We encourage you to read this Policy carefully to understand our views and practices regarding your personal information and how we treat it.
2. Scope of Policy and Role as Data Controller
This Privacy Policy applies to the personal data we collect through the lootearly.com website and related digital services. Loot Early acts as the “data controller” where we determine the purposes and means of processing your personal data in accordance with applicable law.
This Policy applies to all users of our services, including account holders, site visitors, and customers, regardless of location, except where specific regional laws require otherwise.
3. Categories of Personal Data We Collect
We process a variety of categories of personal data, which may include the following:
a) Usage Data
Collected automatically when you access or use lootearly.com, this data includes:
– IP address
– Browser type and version
– Time zone setting and location
– Pages viewed
– Session durations
– Referring/exit URLs
– Clickstream behavior
b) Account Data
Collected when you create or manage accounts, such data may include:
– Full name
– Home or shipping address
– Email address
– Phone number
c) Profile Data
Based on your engagement history and preferences, we may process:
– Purchase history
– Shopping cart contents
– Wishlist items
– Behavior on site (clicks, searches, filters used)
d) Communication Data
Collected when you engage with customer service or otherwise communicate with us:
– Emails sent to us
– Contact forms submitted via lootearly.com
– Customer service call logs and notes
– Message content and metadata
e) Technical Data
We may gain insight into the technical environment you use to access lootearly.com:
– Device type and operating system
– Mobile carrier or internet service provider
– Device ID or browser fingerprint
– Language and screen settings
f) Transaction Data
Collected for purposes of processing purchases or service orders, including:
– Payment method (e.g., card type, partial card details — never full card numbers)
– Billing and delivery information
– Order confirmations
– Shipping logs
g) Preference Data
Collected to enhance your experience and in support of promotional and product development efforts:
– Your newsletter and marketing preferences
– Product interests and reviews
– Engagement metrics related to campaigns and product offerings
4. Legal Bases for Processing Personal Data
We process your personal data only where permitted by applicable data protection law based on one or more of the following legal grounds:
– Consent: where you have given clear permission for us to process your personal data for specific purposes.
– Contract: where processing is required to fulfill a contract with you (e.g., completing orders).
– Legal Obligation: where processing is necessary for compliance with legal obligations.
– Legitimate Interest: where we have a legitimate interest in data processing that is not outweighed by your privacy rights, including fraud prevention, internal analytics, service improvement, and promotion of our services.
5. Your Rights
Subject to applicable law, you have the following rights with respect to your personal information:
– Right of Access: To obtain confirmation and a copy of your personal data.
– Right to Rectification: To correct inaccuracies or incomplete data.
– Right to Erasure: To request deletion of your data where lawfully applicable (“right to be forgotten”).
– Right to Restriction: To request limitation on our use of your data where certain conditions apply.
– Right to Data Portability: To receive your personal data in a usable format and transmit it to another controller under certain conditions.
– Right to Object: To object to data processing carried out on the basis of legitimate interests or for direct marketing purposes.
– Rights under CCPA: California residents have the right to request disclosure of specific personal data we collect, request deletion of such data, and opt out of the sale of personal data (although we do not sell your data).
To exercise any of the above rights, please email us at [email protected].
6. Data Security Measures
We implement robust technical and organizational security measures to protect your personal data against unauthorized access, loss, misuse, or alteration. These measures include:
– Data encryption during transit (SSL/TLS)
– Secure storage environments with limited access
– Internal access controls and user authentication
– Daily automated backups
– Regular security audits and vulnerability testing
– Employee data protection training and confidentiality obligations
Despite our rigorous safeguards, no system is entirely immune to breaches. Should a data breach occur, we will notify relevant supervisory authorities and affected individuals, as required by law.
7. International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA) or the United Kingdom, such transfers are conducted in accordance with applicable data protection legislation. We rely on approved contractual mechanisms, including Standard Contractual Clauses (as approved by the European Commission), and binding corporate rules to ensure your data remains protected regardless of jurisdiction.
8. Data Retention
We retain personal data for only as long as necessary for the purposes outlined in this Policy and in compliance with applicable data retention laws.
Retention periods include:
– Account Data: retained for the duration of account activity plus up to 36 months
– Transaction Data: retained for a minimum of 6 years for legal compliance (e.g., tax/audit)
– Communication Data: kept for up to 24 months to resolve inquiries or disputes
– Technical and Usage Data: anonymized or pseudonymized data retained for analytical use up to 12 months
– Marketing Preference Data: retained until you withdraw consent or unsubscribe
Once data is no longer required, it is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience, understand user engagement, personalize content, and deliver targeted advertisements.
Categories of cookies:
– Essential Cookies: Required for basic operation of lootearly.com (e.g., shopping cart functionality).
– Functional Cookies: Remember user choices or preferences to enhance usability.
– Analytics Cookies: Collect data on traffic patterns and site performance (e.g., Google Analytics).
– Performance Cookies: Measure website usage to improve performance and optimize design.
10. Cookie Management
In adherence to GDPR and CCPA, you may manage your cookie preferences by:
– Adjusting browser settings to block or delete cookies
– Using our cookie consent management banner on lootearly.com
– Activating Do Not Track (DNT) settings in compatible browsers
– Opting out of analytics and targeted advertising cookies via third-party tools (e.g., YourAdChoices, NAI)
Note that blocking certain cookies may degrade your user experience or limit website functionality.
11. Protection of Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect or solicit personal data from minors under 13. Should it come to our attention that data was inadvertently collected from a child, we will take steps to delete that data promptly. Parents or guardians who believe we may have data concerning a child should contact us at [email protected].
12. Changes to This Policy
We reserve the right to update, modify, or amend this Privacy Policy to reflect changes in our practices or legal obligations. Where material changes are made, we will take appropriate measures to inform you, such as posting a prominent notice on our website or sending a direct notification where necessary under applicable law.
We encourage users to check this page periodically for the latest information on our privacy practices.
13. Contact Us
If you have questions, requests, or concerns regarding this Privacy Policy or the way your personal data is handled, please contact us at:
Email: [email protected]
Website: https://lootearly.com
We are committed to ensuring your data is handled fairly, lawfully, and transparently in accordance with GDPR, CCPA, and other applicable privacy laws. Your trust is essential, and we welcome your feedback and inquiries about how we protect your information.