Privacy Policy of DropMythic
At DropMythic (“we”, “us”, or “our”), accessible at https://dropmythic.com, we are committed to safeguarding your privacy and ensuring the highest level of protection for your personal data. This Privacy Policy describes how we collect, use, disclose, and secure your personal information in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.
By visiting or using dropmythic.com, you accept and agree to the terms described in this Privacy Policy.
1. Commitment to Privacy and Data Protection
We are dedicated to preserving the confidentiality, integrity, and availability of personal information entrusted to us. Our privacy-first philosophy ensures that your data is collected judiciously, processed transparently, and protected with robust technical and organizational safeguards. Your privacy is not just a legal responsibility—it is central to our values and operations.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of dropmythic.com, including customers, site visitors, and registered account holders. For the purposes of applicable data protection laws, DropMythic is the data controller responsible for determining the purposes and means of processing your personal data.
3. Categories of Data Processed
We may collect and process the following categories of personal information:
a. Usage Data
Includes information such as your IP address, browser type, operating system, referring URLs, pages visited, time and date of access, session duration, and clicks. This data helps us understand user interactions with our website.
b. Account Data
Includes full name, billing and shipping addresses, email addresses, and telephone numbers you provide during registration or checkout.
c. Profile Data
Includes preferences, wishlist items, order history, browsing behavior, and customer ratings or reviews.
d. Communication Data
Includes support requests, live chat conversations, emails, contact form submissions, and all associated communication records.
e. Technical Data
Includes details about the device you use to access our site, such as device type, operating system version, unique device identifiers, and system configuration data.
f. Transaction Data
Includes payment method details (processed securely via third-party processors), purchase records, shipping information, and order confirmations.
g. Preference Data
Includes your preferences in receiving marketing communications, notification settings, and interests in specific products or categories.
4. Legal Bases for Processing
We process your personal data based on one or more of the following lawful bases:
– Consent: When you voluntarily provide data for specific purposes, such as newsletter sign-ups.
– Contractual Necessity: To fulfill our contractual obligations, e.g., when processing purchases or providing customer support.
– Legitimate Interests: For improving website functionality, analyzing performance, or preventing fraud—provided such interests do not override your data rights.
– Legal Obligation: When we are required to process your data to comply with applicable laws or lawful orders.
5. Your Data Protection Rights
Subject to local laws, you have the following rights regarding your personal data:
– Right of Access: Obtain a copy of the personal data we hold about you.
– Right to Rectification: Request corrections to inaccurate or incomplete data.
– Right to Erasure: Ask us to delete your data under certain circumstances (“right to be forgotten”).
– Right to Restriction: Limit the processing of your data when contesting accuracy or objecting to processing.
– Right to Data Portability: Request your data in a structured, commonly used, and machine-readable format to transfer to another controller.
– Right to Object: Object to processing conducted based on legitimate interests or for direct marketing.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a range of administrative, physical, and technical safeguards to ensure your personal data remains protected, including:
– End-to-end encryption during data transmission using SSL/TLS certificates.
– Secure server environments with access controls.
– Regular data backups and disaster recovery protocols.
– Employee privacy training and confidentiality procedures.
7. International Transfers
Where your personal data is transferred outside the European Economic Area (EEA) or California, such transfers are conducted in accordance with legal safeguards such as Standard Contractual Clauses, adequacy decisions, or other appropriate mechanisms to ensure lawful international data transfers.
8. Data Retention
We retain your personal data only for as long as necessary:
– Account and Profile Data: Maintained while your account is active or as required by business or legal obligations.
– Transaction Data: Retained for seven (7) years for compliance and financial auditing purposes.
– Communication Data: Stored for up to three (3) years from the date of last correspondence.
– Analytics and Preference Data: Retained no longer than necessary to fulfill the purpose for which they were collected, unless consent is renewed.
9. Cookie Policy
We use cookies and similar tracking technologies to provide a better user experience and to support core business functions.
Types of Cookies:
– Essential Cookies: Necessary for the functioning of dropmythic.com (e.g., to remember your cart or login session).
– Functional Cookies: Enhance site features and remember your preferences.
– Analytics Cookies: Collect data to understand site traffic, page interactions, and improve performance (e.g., Google Analytics).
– Performance Cookies: Track the responsiveness of our site and support testing initiatives.
10. Cookie Management and Compliance
You have the right to manage your cookie preferences. On your first visit to dropmythic.com, you will be prompted with a cookie consent banner in compliance with GDPR and CCPA requirements. You may review, revoke, or update your preferences at any time using the “Cookie Settings” link in the website footer.
Residents of California may also opt-out of the sale or sharing of their personal data as defined under the CCPA using the “Do Not Sell or Share My Personal Information” link on our site.
11. Protection of Children’s Privacy
DropMythic does not knowingly collect or process personal data from individuals under the age of 13. If we become aware that we have inadvertently collected such data, we will take immediate steps to delete the information. Parents or guardians who believe their child has provided us with personal data should contact [email protected].
12. Privacy Policy Updates and Notifications
We reserve the right to update or amend this Privacy Policy at any time for operational, legal, or regulatory reasons. If changes are material in nature, we will take appropriate steps to notify you—either by prominent notice on the site, email communication, or both—so you remain informed.
13. Contacting Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out to us:
Email: [email protected]
Website: https://dropmythic.com
We are committed to complying with all applicable data protection laws and providing transparent and respectful handling of your personal information. Your privacy matters to us.