Privacy Policy
Terrace Quest (“we,” “us,” or “our”) is committed to protecting your privacy and ensuring the confidentiality and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit and interact with our website, terracequest.com (“Website”). We uphold a privacy-first philosophy and comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), to ensure your personal data is handled with the utmost care and transparency.
1. Commitment to Privacy and Data Protection
At Terrace Quest, your privacy is at the core of how we operate. We recognize the fundamental right to data privacy and are committed to processing personal data lawfully, fairly, and transparently. This Privacy Policy is designed to inform you of the measures we take to protect your rights and how your personal information is handled through our digital services.
2. Scope of Policy and Controller Designation
This Privacy Policy applies to all personal data collected through your use of terracequest.com and any services offered through the Website. For the purposes of the GDPR, Terrace Quest is the “data controller” of your personal information, determining the purposes and means of the processing of personal data. Our intention is to provide you with precise and clear information so you understand and exercise control over your data.
3. Categories of Data Processed
We may process the following categories of personal data:
– Usage Data: Includes information about how you use our Website, such as IP addresses, browser types, session duration, pages visited, time stamps, and referral URLs.
– Account Data: Includes your full name, email address, telephone number, billing and shipping addresses, and any credentials used to create an account on the Website.
– Profile Data: Includes preferences, product interests, purchase history, interactions with features, and behavioral trends on our Website.
– Communication Data: Includes transcripts and metadata of customer service interactions, inquiry records, contact forms submitted, and communication preferences.
– Technical Data: Includes device identifiers, operating system, browser type, device language, and system configurations relevant to the use of the Website.
– Transaction Data: Includes records of goods and services purchased, payment method (such as last four digits of a card number), delivery tracking, and transaction timestamps.
– Preference Data: Includes your marketing and communication preferences, newsletter registrations, product subscriptions, and participation in surveys or promotions.
4. Legal Bases for Processing Personal Data
We process your personal data in accordance with the following legal bases:
– Consent: Where you have provided clear, affirmative consent (e.g., to receive marketing emails or accept cookies).
– Contractual Necessity: When data processing is necessary to fulfill a contractual obligation (e.g., fulfilling an order).
– Legal Obligation: Where processing is required by law, regulation, or official authority.
– Legitimate Interest: For purposes such as Website security, fraud prevention, or improvements to user experience, provided such interests are not overridden by your fundamental rights.
5. Your Rights Under GDPR and CCPA
You have the right to:
– Access: Request access to the personal data we hold about you.
– Rectification: Request that we correct inaccurate or incomplete data.
– Erasure: Request deletion of your personal data (“right to be forgotten”) under applicable legal grounds.
– Restriction: Request restriction of processing under certain conditions.
– Portability: Receive your personal data in a structured, commonly used, and machine-readable format.
– Objection: Object to processing based on legitimate interests, including profiling.
– Opt-out: Under the CCPA, you may request to opt-out of the sale of personal data.
– Non-Discrimination: You shall not be discriminated against for exercising your privacy rights under applicable laws.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement comprehensive technical and organizational security measures to protect your personal data. These include:
– End-to-end encryption of data in transit and secure encryption of sensitive data at rest.
– Role-based access control to limit data exposure internally.
– Regular data backups stored securely.
– Staff training programs on privacy, data protection, and incident response.
– Continuous system monitoring and vulnerability assessments.
7. International Data Transfers
If your personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with strict data protection rules, we ensure compliance by using Standard Contractual Clauses approved by the European Commission, or by verifying that the data recipients maintain appropriate safeguards, such as certification under recognized frameworks or binding corporate rules.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or to comply with legal obligations and resolve disputes. Specific retention periods include:
– Account and Transaction Data: Retained for up to 7 years to satisfy accounting and reporting obligations.
– Communication and Support History: Retained for 3 years following the most recent interaction.
– Usage and Technical Data: Retained for a period of up to 13 months for analytics and system improvement purposes.
– Marketing Preferences: Retained until you withdraw your consent or opt out.
Upon expiration of these periods, data is securely deleted or anonymized.
9. Cookie Policy
Our Website uses cookies and similar tracking technologies to enhance functionality and user experience. These include:
– Essential Cookies: Necessary for core features like authentication and secure access.
– Functional Cookies: Enable personalized settings, such as remembered preferences.
– Performance and Analytics Cookies: Help us understand usage patterns, improve content, and optimize performance.
– Marketing Cookies: Used with your consent to deliver tailored content or ads based on browsing behavior.
10. Cookie Management and Compliance
Upon entering the site, you will be presented with a cookie banner allowing you to manage your preferences in accordance with GDPR and CCPA. You can revoke or amend your cookie settings at any time using our Cookie Preferences tool available on terracequest.com. Additionally, most browsers allow you to manage cookie settings directly within the browser control panel.
11. Special Protections for Children Under 13
Terrace Quest does not knowingly collect personal data from children under the age of 13. If we become aware that such data has been collected without verifiable parental consent, it will be promptly deleted. If you are a parent or guardian and believe we may have collected personal data from a child under 13, please contact us immediately at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time to reflect changes in law, technology, or our practices. In the event of material changes, we will notify users via email (where possible) and post a prominent notice on terracequest.com. Continued use of the Website after changes have been implemented constitutes your acknowledgment of the updated policy.
13. Contacting Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us by email at: [email protected].
We are fully committed to upholding compliance with all applicable privacy regulations and protecting your personal data. If you have privacy concerns, contact us at any time and we will respond in a timely and respectful manner.