Privacy Policy for mercerka.com
1. Introduction
Mercerka.com (“we”, “us”, or “our”) is firmly committed to protecting the privacy and personal data of its customers, users, and visitors. We understand the importance of safeguarding your privacy and are dedicated to handling your personal information with transparency, accountability, and security. This Privacy Policy explains how we collect, use, store, and share personal information, and outlines your rights under the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.
2. Scope of Policy and Data Controller Role
This policy applies to all users of mercerka.com and covers the personal data we process through our website, services, communications, and interactions with users, clients, and suppliers. For the purposes of applicable data protection laws, Mercerka.com is the data controller in relation to all personal data collected through this website.
3. Categories of Data Processed
We may collect, process, and store the following categories of personal data:
a. Usage Data
Includes data collected automatically through your interaction with mercerka.com, such as your IP address, browser type and version, pages visited, access times, referring URLs, and session duration.
b. Account Data
Includes data required to register for an account or complete a transaction, including your name, physical address, email address, and telephone number.
c. Profile Data
Includes user-specific details such as preferences, purchase history, browsing behavior, and feedback provided to us.
d. Communication Data
Includes records of communication with us, such as emails sent to our support team, contact form submissions, and call transcripts (if applicable).
e. Technical Data
Includes device information such as device type, operating system, language settings, time zone, browser plugins, hardware model, and other system details relevant to accessing mercerka.com.
f. Transaction Data
Includes information from purchases or financial transactions, including billing details, order history, shipping information, and payment-related data.
g. Preference Data
Includes marketing preferences, opt-in and opt-out records, product interests, and survey responses.
4. Legal Bases for Processing
We process personal data in accordance with the following lawful bases under the GDPR:
– Contractual Necessity: Where processing is necessary to fulfill a contractual agreement with you (e.g., order fulfillment).
– Consent: Where you have given clear and affirmative consent to process your data for specific purposes (e.g., receiving newsletters).
– Legitimate Interests: When processing is necessary for our legitimate business purposes, such as fraud prevention, analytics, marketing, or improving our services, provided these are not overridden by your rights.
– Legal Obligation: Where we are legally required to collect or disclose certain data (e.g., tax compliance).
5. Your Rights
You have the following rights regarding your personal data under applicable data protection laws:
– Right of Access: To request confirmation whether your data is being processed and access to that data.
– Right to Rectification: To correct inaccurate or incomplete personal data.
– Right to Erasure: To request deletion of your personal data, under certain conditions.
– Right to Restriction: To restrict the processing of your data under specific circumstances.
– Right to Data Portability: To receive your data in a structured, commonly used format and to transmit it to another data controller.
– Right to Object: To object to processing based on legitimate interests or direct marketing.
– Right Not to Be Subject to Automated Decision-Making: You will not be subject to decisions based solely on automated processing without your explicit consent.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We maintain strict administrative, technical, and organizational security measures to safeguard personal data. These include:
– TLS and data encryption for all transfers and storage of sensitive information.
– Role-based access controls and authentication procedures.
– Firewalls and intrusion detection systems.
– Continuous backups and disaster recovery protocols.
– Staff training and data protection awareness programs.
While we use all reasonable efforts to safeguard your information, no method of transmission or storage is 100% secure. We encourage users to take appropriate precautions when interacting online.
7. International Transfers
Should personal data be transferred outside of the European Economic Area (EEA), we ensure appropriate safeguards are in place. These may include the use of European Commission-approved Standard Contractual Clauses (SCCs), certification under recognized frameworks, or legally binding corporate rules ensuring equivalent protections.
California and other U.S.-based users should note that data transfers may be processed under U.S. jurisdiction laws, with corresponding privacy safeguards implemented in accordance with CCPA requirements.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or to comply with legal obligations. Typical retention periods include:
– Usage Data: up to 12 months
– Account Data: for the duration of the account and up to 5 years thereafter
– Communication Data: up to 3 years after last contact
– Transaction Data: 7 years for legal and accounting compliance
– Preference and Profile Data: until consent is withdrawn or data is deleted
– Technical Data: up to 12 months
We periodically review and securely delete or anonymize data no longer needed.
9. Cookie Policy
Mercerka.com uses cookies and similar technologies to enhance website functionality and user experience. Types of cookies used include:
– Essential Cookies: Necessary for the operation of mercerka.com; enable basic functions like page navigation and access to secure areas.
– Functional Cookies: Enable personalized settings and user preferences across sessions.
– Analytics Cookies: Collect aggregated, anonymized data on user behavior and website performance.
– Performance Cookies: Assist in understanding site performance and improving efficiency.
Cookies do not give us access to your computer or personal information beyond what you explicitly provide.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA regulations:
– We offer a cookie consent manager upon your first visit to the site, allowing you to accept or reject non-essential cookies.
– You may also modify your cookie preferences at any time using browser settings or the cookie management tool provided on mercerka.com.
– California residents may additionally request disclosure of cookie-related data collection in accordance with CCPA rights.
11. Special Protections for Children
Mercerka.com is not intended for children under the age of 13. We do not knowingly collect, use, or disclose personal data from anyone under 13 years of age. If we become aware that information has been collected from a child without verified parental consent, it will be deleted immediately. If you believe a child’s data may be held by us, please contact [email protected].
12. Policy Updates and User Notifications
We reserve the right to modify or update this Privacy Policy at our discretion. Any changes to the policy will be posted on this page with clear indication, and, where appropriate, notified to users via available contact methods such as email or website notifications. We encourage users to review the policy periodically to remain informed of how their data is protected.
13. Contact
If you have questions or concerns about this Privacy Policy, your data, or your rights, please contact us at:
Email: [email protected]
Website: https://mercerka.com
We are committed to resolving any complaints regarding privacy and the collection or use of personal data and are fully compliant with applicable data protection laws and supervisory authority requirements.
For all privacy-related matters, please do not hesitate to reach out to us.