Privacy Policy for SlugVirginia.com

SlugVirginia (“we”, “us”, or “our”) is strongly committed to protecting the privacy and personal data of individuals who visit, use, or interact with our website located at slugvirginia.com (the “Site”). This Privacy Policy outlines how we collect, use, store, share, and protect your personal information in accordance with applicable privacy and data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant legislation. We are dedicated to maintaining a privacy-first approach to data management and to ensuring our users maintain control over their personal information.

1. Scope of this Privacy Policy and Role of Data Controller

This Privacy Policy applies to all users of the Site and to all personal data collected, processed, or shared by SlugVirginia in the course of operating the Site and providing associated services. SlugVirginia acts as the Data Controller with respect to any personal data collected through slugvirginia.com, determining the purposes and means of processing in accordance with legal obligations.

2. Categories of Data Processed

We may collect and process the following categories of personal data:

a. Usage Data
Includes data related to your engagement with our Site, including IP address, browser type, device identifiers, pages visited, time and date of access, session duration, and referring URLs.

b. Account Data
When you register with us or provide personal information, we collect identifiers such as your name, mailing address, email address, phone number, and any other data you voluntarily provide during account creation or form submissions.

c. Profile Data
Includes information about your preferences, interests, purchase history, behavior on the Site, and demographic data that may be derived or provided.

d. Communication Data
Includes records of correspondence with us, including helpdesk interactions, support inquiries, and any other communication between you and our team.

e. Technical Data
Collected automatically through analytics tools or server logs and includes device type, operating system, browser configurations, screen resolution, and mobile network information.

f. Transaction Data
We may collect payment details (excluding full credit or debit card numbers), billing and delivery addresses, order information, and purchase history when you engage in financial transactions via the Site.

g. Preference Data
Includes marketing preferences, communication consents, and analytics on how you respond to or interact with marketing emails, surveys, and service feedback.

3. Legal Bases for Processing

We process your personal data based on the following legal grounds:

– Consent: When you provide clear, informed consent for specific processing activities (e.g., signing up for newsletters).
– Contractual Necessity: When processing is required to fulfill a service you request, such as account registration or order fulfillment.
– Legal Obligation: When processing is required to comply with legal duties imposed under applicable laws.
– Legitimate Interests: When processing supports our operations in a manner expected by you, provided such interests are not overridden by your rights and freedoms.

4. Your Rights

In accordance with GDPR, CCPA, and other relevant regulations, you have the following rights:

– Right of Access: Obtain confirmation of whether or not your personal data is being processed and access a copy of that data.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request the deletion of your personal data under specific circumstances.
– Right to Restriction: Request that we limit the processing of your data in certain cases.
– Right to Data Portability: Request that we transmit your data to another controller in a structured, commonly used format.

To exercise any of these rights, please contact us at [email protected].

5. Security Measures

We implement technical and organizational safeguards to protect personal data, including:

– Data encryption both in transit and at rest
– Regular backups and disaster recovery procedures
– Access controls and authentication mechanisms for internal systems
– Staff training in privacy and information security best practices

Despite our efforts, no security system is infallible. Therefore, we cannot guarantee absolute security of your data.

6. International Transfers

Your personal data may be transferred to and processed in countries outside your jurisdiction, including those with data protection laws that may differ from those in your country. Where such transfers occur, we ensure adequate protection by implementing Standard Contractual Clauses (SCCs), binding corporate rules, or relying on other lawful mechanisms in accordance with GDPR requirements and regional data protection laws.

7. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal, regulatory, or internal policy requirements. Retention timeframes vary by data category:

– Usage, Technical, and Analytical Data: Up to 24 months from collection
– Account and Profile Data: As long as your account remains active or up to 36 months following last interaction
– Communication Data: Up to 24 months for support and contact history
– Transaction Data: Retained for up to 7 years per financial and tax regulations
– Preference Data: Until you revoke consent or opt out

You may request deletion of your data at any time, subject to legal obligations.

8. Cookie Policy

Our Site uses cookies and similar tracking technologies to enhance user experience, analyze usage patterns, and serve relevant content. We categorize cookies as follows:

– Essential Cookies: Required for the basic functionality of the Site (e.g., session management, login authentication)
– Functional Cookies: Enhance site capabilities such as saved preferences and session customizations
– Performance Cookies: Collect anonymized data on usage to help optimize functionality and content delivery
– Analytics Cookies: Allow us to track traffic metrics, user flows, and overall engagement using services like Google Analytics

9. Cookie Management and Compliance

Users are provided with the option to accept or reject non-essential cookies via a consent banner in accordance with GDPR and CCPA standards. You can modify cookie preferences at any time through browser settings or the cookie management tool accessible on our Site.

Do Not Track (DNT) signals are honored where supported, and users from California can exercise additional rights via the “Do Not Sell or Share My Personal Information” link provided on the Site.

10. Children’s Privacy

We do not knowingly collect or solicit personal data from individuals under the age of 13. If we become aware that personal information of a child under 13 has been collected without verified parental consent, we will promptly delete such information. If you believe we may have collected such data, please contact us at [email protected].

11. Policy Updates

We reserve the right to update this Privacy Policy from time to time to reflect changes in legal requirements, technology, or our business practices. When changes are made, we will revise the document accordingly and, where required by law, notify users by appropriate means.

12. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, you may contact us at:

Email: [email protected]
Website: https://slugvirginia.com

We are committed to compliance with applicable data protection laws and to maintaining transparency with our users. If you believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection authority.