Privacy Policy
Mercerka.com (“we,” “our,” “us”) is committed to protecting your privacy and safeguarding your personal data. We recognize the importance of transparency, accountability, and your rights under data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit or interact with our website, mercerka.com.
1. Commitment to Privacy and Data Protection
At Mercerka.com, we are dedicated to maintaining the confidentiality, integrity, and availability of the personal data we process. We implement a privacy-first approach to ensure that your personal information is handled responsibly and in accordance with applicable data protection legislation. We only collect data that is necessary for specified, legitimate purposes and we apply appropriate safeguards to protect it.
2. Scope of the Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use mercerka.com. Mercerka.com is the data controller for personal information collected through this website and determines the purposes and means of processing your data.
For any inquiries about our data processing practices, you may contact us at: [email protected].
3. Categories of Data Processed
We may collect the following categories of personal data, either directly from you, through automated means, or from third parties:
a. Usage Data
Includes information about how you use our website, such as your IP address, browser type and version, geolocation data, time zone settings, referring sites, pages visited, page interaction data, and session durations.
b. Account Data
Includes personal details provided during registration or account setup such as full name, residential or business address, email address, and phone number.
c. Profile Data
Includes behavioral information related to your interactions with our services, preferences, purchase history, saved items, and browsing behavior on mercerka.com.
d. Communication Data
Includes all information exchanged through our contact forms, email correspondence, or support interactions, including content of messages, time stamps, and response data.
e. Technical Data
Includes information collected from your device such as operating system, device type and model, system configurations, user agent strings, connectivity data, and other technical identifiers.
f. Transaction Data
Includes details of products or services purchased, billing and shipping address, payment instrument details (processed through secure third parties), transaction identifiers, invoices, and delivery status.
g. Preference Data
Includes your marketing and communication preferences, as well as information about your expressed interests in products, categories, or services.
4. Legal Bases for Processing
We rely on the following legal bases to process your personal data:
– Legitimate Interests: Where processing is necessary for our legitimate business interests, provided your rights and freedoms do not override those interests. This includes fraud detection, marketing analytics, and service optimization.
– Performance of a Contract: Where processing is necessary to fulfill our obligations under a contract with you, including providing customer support and processing your orders.
– Consent: Where you have expressly given us permission to process your data, e.g., for optional marketing emails or the use of non-essential cookies.
– Legal Obligation: Where processing is necessary to comply with applicable laws and regulations.
5. Your Rights
Under data protection laws, you may have the following rights regarding your personal data:
– Right of Access: You have the right to request access to the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data we maintain.
– Right to Erasure: You have the right to request deletion of your data, subject to certain exceptions.
– Right to Restriction of Processing: You can ask us to suspend processing of your data under certain conditions.
– Right to Data Portability: Where applicable, you may request transmission of your data to another controller.
– Right to Object: You may object to data processing based on legitimate interests or direct marketing.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We employ a range of organizational and technical security measures to protect your data, including:
– End-to-end encryption for sensitive data transmissions;
– Role-based and restricted access controls;
– Secure user authentication mechanisms;
– Regular backups and secure storage mechanisms;
– Staff training and awareness on data protection practices.
Although we implement industry-standard measures, no system is entirely immune from risk; we urge you to remain vigilant and practice good data hygiene.
7. International Transfers
Your personal information may be transferred to and stored in countries outside of your jurisdiction, including countries that may not offer the same level of data protection. In such cases, we ensure appropriate safeguards are in place, such as:
– Standard Contractual Clauses approved by the European Commission;
– Adequacy decisions where applicable;
– Binding corporate rules or equivalent arrangements for our third-party partners.
You may contact us for further details about these safeguards.
8. Data Retention
We retain personal data only as long as is necessary for the purposes outlined in this policy, unless a longer retention period is required by law. Generally, we follow these guidelines:
– Usage Data: Retained for 12 months for performance analysis.
– Account & Profile Data: Retained while your account remains active, and up to 5 years following account closure.
– Transaction Data: Retained for 7 years to comply with financial recordkeeping obligations.
– Communication Data: Retained for 2 years following the last correspondence.
– Preference Data: Retained until preferences are updated or consent is withdrawn.
9. Cookie Policy
We use cookies on mercerka.com to enhance user experience, ensure site security, and optimize performance. The cookies we use may be categorized as:
– Essential Cookies: Required for core site functionality and security.
– Functional Cookies: Enable enhanced features such as remembering your preferences.
– Analytics Cookies: Collect anonymous data to analyze site usage and improve performance.
– Performance Cookies: Measure site responsiveness and help identify technical issues.
10. Cookie Management and Compliance
Upon your first visit to mercerka.com, you will be presented with a cookie banner that allows you to manage your cookie preferences in compliance with GDPR and CCPA guidelines. You may adjust your preferences at any time through our Cookie Settings interface or your browser’s privacy tools. For California residents, you also have the right to opt out of the sale of your data and request disclosure of categories of personal data collected through cookies.
11. Children Under 13
Mercerka.com does not knowingly collect personal data from children under the age of 13. If you are a parent or legal guardian and believe your child has provided personal data on this website, please contact us immediately at [email protected]. We will act promptly to delete the information from our systems.
12. Policy Updates & User Notifications
We reserve the right to amend this Privacy Policy from time to time to reflect legislative changes, business developments, or updated practices. Substantive changes will be communicated via the website or direct communication where appropriate. Continued use of mercerka.com following updates constitutes acceptance of those changes.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us at:
Email: [email protected]
We are committed to exemplary privacy practices and full compliance with applicable data protection frameworks. If you believe your rights have been violated or your data mishandled, we encourage you to reach out to us directly so that we may resolve your concerns in a timely and transparent manner.