Privacy Policy for scrollroam.com
At ScrollRoam, accessible at scrollroam.com, we are committed to safeguarding your personal data and upholding your privacy rights. We recognize the importance of transparency, accountability, and regulatory compliance in how we collect, process, and protect your information. This Privacy Policy outlines how we handle your personal data, your rights under applicable data protection laws—including the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA)—and the measures we implement to ensure data security and integrity.
1. Commitment to Privacy and Data Protection
We value your trust. ScrollRoam processes your data responsibly, lawfully, and securely, adhering to the principles of fairness, transparency, and minimization of data collection. Whether you are visiting scrollroam.com, creating an account, or interacting with our services, we collect only the information necessary to provide you with a seamless and personalized user experience.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through scrollroam.com and any affiliated services. ScrollRoam is the data controller for all processing activities conducted through this website unless specified otherwise. As the data controller, we determine the purposes and means of processing your personal information.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Includes online identifiers such as your IP address, browser type and version, device information, geolocation, session ID, pages visited, access times, and referring websites.
b. Account Data
Includes information provided by you during account registration such as full name, physical address, email address, and telephone number.
c. Profile Data
Includes information derived from your interactions with the site, such as purchase history, product preferences, interests, and behavioral trends.
d. Communication Data
Includes records of your communications with us via email or on-site forms, including support tickets, inquiries, and feedback.
e. Technical Data
Includes device type, operating system, system configurations, browser plug-in types, and other technological identifiers.
f. Transaction Data
Includes details of purchases and payment methods, billing and shipping address, and order history. All payment processing is managed through PCI-compliant third-party processors.
g. Preference Data
Includes marketing and communication preferences, subscription opt-ins/opt-outs, and product category interests.
4. Legal Bases for Processing Your Data
We rely on the following lawful grounds to process your personal data:
– Consent: When you explicitly agree to the processing of your data for specific purposes (e.g., marketing).
– Contract: When processing is necessary for the performance of a contract or to take steps at your request before entering a contract.
– Legitimate Interest: Where we have a lawful and genuine interest to process your data, provided it does not override your rights.
– Legal Obligation: When processing data is necessary for compliance with applicable laws and regulations.
5. Your Rights
Subject to applicable laws, you have the following rights with respect to your personal data:
– Right to Access – You may request a copy of the personal data we hold about you.
– Right to Rectification – You may request correction of inaccurate or incomplete data.
– Right to Erasure – You may request deletion of your data when there is no valid reason for its continued processing.
– Right to Restriction – You may request limited processing of your personal data under specific circumstances.
– Right to Data Portability – You may request transmission of your personal data to you or another data controller in a structured, commonly used format.
– Right to Object – You may object to processing based on legitimate interests or direct marketing.
– Right Not to Be Subject to Automated Decision-Making – We do not engage in profiling that produces legal effects concerning you or significantly affects you.
To exercise any of your rights, please contact us at [email protected].
6. Security Measures
ScrollRoam takes appropriate technical and organizational measures to safeguard personal data, including:
– End-to-end encryption protocols during data transmission.
– Secure storage using access-controlled databases and firewalls.
– Role-based access controls and staff authentication.
– Periodic staff training in data protection best practices.
– Regular data backups and disaster recovery measures.
7. International Data Transfers
If your data is transferred outside of your jurisdiction (e.g., to service providers or partners in non-EU countries), we implement adequate safeguards such as Standard Contractual Clauses approved by the European Commission to ensure a level of data protection equivalent to GDPR standards.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
– Account Data: Retained as long as your account is active and for up to 2 years thereafter.
– Transaction Data: Retained for up to 7 years for accounting and legal compliance.
– Communications Data: Maintained for up to 3 years from the last contact.
– Preference and Marketing Data: Retained for a maximum of 2 years from the last consent update.
– Technical and Usage Data: Typically aggregated and anonymized after 12 months.
9. Cookie Policy
ScrollRoam uses cookies and similar technologies to enhance user experience and collect information about how our services are used. Cookies are categorized as follows:
– Essential Cookies: Enable core website functionality; strictly necessary for access and navigation.
– Functional Cookies: Enable customization of website content and user preferences.
– Analytics Cookies: Help us measure site performance and understand how users interact.
– Performance Cookies: Enhance user experience by optimizing load times and responsiveness.
10. Cookie Management and Compliance
Upon your first visit to scrollroam.com, you will be presented with a cookie banner allowing you to accept or manage your cookie preferences. You may withdraw your consent at any time through your browser settings or the designated “Cookie Preferences” section of our website. We uphold the ePrivacy Directive, GDPR, and comply with CCPA requirements for Do Not Track and opt-out mechanisms.
11. Protection for Children Under 13
ScrollRoam does not knowingly collect personal data from children under the age of 13. If we become aware that such information has been provided in violation of applicable laws, we will take steps to delete it promptly. Parents or guardians who believe their child has submitted personal data may contact us at [email protected].
12. Policy Updates and Notification
We reserve the right to update or amend this Privacy Policy to reflect changes in our practices, technology, or compliance obligations. Any material changes to the policy will be communicated prominently on scrollroam.com and, where appropriate, via direct communication.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy or your personal data, you may contact our privacy team at:
Email: [email protected]
Website: https://scrollroam.com
We are committed to protecting your privacy and processing your data according to the highest standards of legal and ethical responsibility. If you believe your data rights have been violated, you also have the right to file a complaint with the relevant supervisory authority in your jurisdiction.