Privacy Policy

Privacy Policy for Roll On Aromas
Effective Date: September 27, 2024

At Roll On Aromas, accessible from rollonaromas.com, we prioritize your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your data when you interact with our website and purchase products. We comply with the General Data Protection Regulation (GDPR) to ensure transparency and fairness.

1. Data Controller

Roll On Aromas is the data controller responsible for your personal data. If you have any questions or concerns about your data, you can contact us at:

Business Name: Roll On Aromas
Address: 400 Cedar Avenue, West Long Branch, NJ
Email: jangelia@monmouth.edu

2. Data Collection

We collect the following types of personal data:

  • Personal Information: Name, email address, shipping address, phone number, and payment details when you make a purchase.
  • Website Usage Data: IP addresses, browser types, device information, and browsing behavior (collected through cookies and similar technologies).
  • Communication Data: Any data you provide when contacting us via email, contact forms, or customer service channels.

3. How We Use Your Data

We collect and process your data for the following purposes:

  • To process and fulfill your orders, including payment processing, shipping, and order confirmations.
  • To send you transactional and promotional emails (with your consent, where required).
  • To improve our website functionality and user experience by analyzing website traffic and behavior.
  • To comply with legal obligations, including tax and reporting requirements.
  • To address customer support requests and communicate with you regarding your orders or inquiries.

4. Legal Basis for Processing

We rely on the following legal bases to process your personal data:

  • Performance of a contract: To fulfill your orders and provide the services you have requested.
  • Consent: Where you have provided explicit consent, such as for marketing emails.
  • Legitimate interests: For improving our website, conducting customer service, and fraud prevention.
  • Compliance with legal obligations: To meet regulatory requirements (e.g., tax reporting).

5. Data Sharing

We do not sell or rent your personal data to third parties. However, we may share your data with:

  • Service Providers: Third-party vendors who assist us with payment processing, order fulfillment, marketing, and website analytics. These providers are contractually obligated to protect your data and only use it for the purposes we specify.
  • Legal Authorities: If required by law or to protect our rights, property, or safety, we may disclose your data to law enforcement or regulatory bodies.
  • Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred to the new owners.

6. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations. Generally:

  • Order Data: Kept for a period of 7 years for tax and legal purposes.
  • Marketing Data: Retained until you opt out of receiving marketing communications.
  • Website Usage Data: Stored for up to 2 years for analytics purposes.

7. Data Security

We use industry-standard security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These measures include:

  • Encryption: SSL encryption for data transmitted via our website.
  • Access Controls: Limited access to personal data to authorized personnel only.
  • Regular Audits: Regular assessments of our data handling processes to maintain the highest level of security.

8. Your Rights Under GDPR

As a user in the EU, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request corrections to inaccurate or incomplete personal data.
  • Right to Erasure: You can request that we delete your personal data, subject to certain legal exceptions.
  • Right to Restrict Processing: You can request that we limit the processing of your data under certain circumstances.
  • Right to Data Portability: You can request to receive your data in a structured, machine-readable format or have it transferred to another data controller.
  • Right to Object: You can object to the processing of your data for direct marketing or other legitimate interests.
  • Right to Withdraw Consent: Where processing is based on your consent, you can withdraw it at any time without affecting the lawfulness of prior processing.

9. Exercising Your Rights

To exercise any of your rights under GDPR, please contact us via email at jangelia@monmouth.edu. We will respond to your request within one month and ensure the proper handling of your personal data.

10. Cookies

We use cookies and similar tracking technologies to enhance your experience on our website. You can manage cookie preferences in your browser settings. Please see our Cookie Policy for more details.

11. International Data Transfers

As Roll On Aromas is based in the United States, your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). We take appropriate steps to ensure your data is treated securely and in accordance with GDPR standards, including the use of standard contractual clauses.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. The latest version will always be available on our website. We encourage you to review this page periodically.

13. Contact Us

If you have any questions or concerns regarding this Privacy Policy or your personal data, please contact us at:

Roll On Aromas
Address: 400 Cedar Avenue, West Long Branch, NJ
Email: jangelia@monmouth.edu