Privacy Policy
Ron’s Auto Shop (“we,” “our,” or “us”) is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, process, store, and secure your personal information when you visit and interact with our website, ronsautoshop.com. We prioritize privacy-first principles and comply with global data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
We recognize the importance of maintaining the privacy of your personal information. Our data handling practices are designed to safeguard your rights by applying robust technical, organizational, and legal measures. We only collect and process data legally, transparently, and for specific purposes that serve our legitimate business operations or where you have provided explicit consent.
2. Scope of the Policy and Our Role as Data Controller
This Privacy Policy applies to information collected by and through ronsautoshop.com and related services. Ron’s Auto Shop is the data controller responsible for your personal data under applicable data protection laws. As the data controller, we determine the purposes for and methods by which your personal data is processed.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
– Usage Data: Includes information about your visit to ronsautoshop.com, such as IP address, browser type, geographical location, referral source, pages viewed, session duration, and interaction data.
– Account Data: Includes identifying information such as your name, postal and billing address, email address, phone number, and login credentials when applicable.
– Profile Data: Includes your preferences, user account settings, purchase history, and behavioral data related to how you interact with our products and content.
– Communication Data: Includes records of any communication you send to us, including support requests, live chat interactions, emails, and contact form submissions.
– Technical Data: Includes data about the devices you use to access our website, such as device model, operating system, browser configuration, screen resolution, and software versions.
– Transaction Data: Includes data necessary to complete purchases, including payment method details (processed through secure payment gateways), delivery address, and order history.
– Preference Data: Includes your marketing preferences, product interests, newsletter subscriptions, and opt-in/opt-out selections for direct marketing.
4. Legal Bases for Processing Personal Data
Our processing of your personal data is based on one or more of the following legal grounds:
– Contractual Necessity: When processing is necessary for the performance of a contract with you (e.g., fulfilling an order).
– Legitimate Interest: Where we have a legitimate and lawful interest in processing your data, provided it is not overridden by your data protection rights (e.g., fraud prevention, improving user experience).
– Consent: When you have affirmatively consented to the processing, particularly in relation to marketing communications and use of cookies.
– Legal Obligation: Where processing is necessary for compliance with legal or regulatory obligations (e.g., tax reporting, fraud detection).
5. Your Rights Under GDPR and CCPA
You have the following data rights, subject to verification and application under relevant laws:
– Right of Access: You may request a copy of your personal data held by us.
– Right to Rectification: You may request corrections to inaccurate or incomplete personal data.
– Right to Erasure: You may request we delete your personal data, subject to legal limitations.
– Right to Restriction: You may request limited processing of specific data categories.
– Right to Data Portability: You may obtain a structured, commonly used format of your data and request data transfer to another provider.
– Right to Object: You may object, on grounds related to your particular situation, to the processing of your data based on legitimate interests or direct marketing.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures to Protect Personal Data
We implement industry-standard safeguards to protect personal data from unauthorized access, disclosure, alteration, and destruction. Security measures include:
– Encryption of sensitive data in transit and at rest
– Multi-factor access controls for internal systems
– Routine system and software updates
– Regular, securely stored data backups
– Staff access controls and mandatory privacy training
Although we take reasonable steps to protect your information, no method of internet transmission or storage can be completely secure. We encourage users to take precautions when sharing personal data online.
7. International Data Transfers
Where personal data is transferred outside of the jurisdiction in which you reside, we apply appropriate safeguards in accordance with applicable laws. These include the use of Standard Contractual Clauses (SCCs) approved by the European Commission, ensuring that your data remains protected regardless of location.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, and to comply with our legal and contractual obligations. Specific retention periods include:
– Usage and Technical Data: Retained for up to 12 months
– Account and Profile Data: Retained for up to 7 years after account closure
– Communication Data: Retained for 3 years following last interaction
– Transaction Data: Retained up to 7 years for tax and accounting compliance
– Preference Data: Retained until you withdraw consent or opt out
9. Cookie Policy
Cookies are small data files that store information about your visit to our website. We use the following types:
– Essential Cookies: Necessary for core functionality, such as secure login and cart management
– Functional Cookies: Help tailor site features based on your preferences (e.g., language settings)
– Analytics Cookies: Provide insights on site usage and performance, enabling us to improve the website experience
– Performance Cookies: Allow us to test new features and ensure optimal speed and reliability
10. Cookie Management and GDPR/CCPA Compliance
Upon your first visit to ronsautoshop.com, you will be presented with a cookie consent banner that allows you to accept, reject, or customize your cookie preferences. You may at any time withdraw or adjust your consent by accessing our cookie management tools or adjusting your browser settings.
As required under the GDPR and CCPA:
– We honor Do Not Track (DNT) signals where supported
– California residents may opt out of the sale or sharing of personal information, where applicable
– Prior consent is obtained for non-essential cookies and tracking technologies
11. Special Protections for Children
We do not knowingly collect or solicit personal data from individuals under the age of 13. If we discover that we have collected data from a child under 13 without parental consent, we will promptly delete such information. Parents or guardians with concerns may contact us at [email protected].
12. Policy Updates and Notifications
We may revise this Privacy Policy at our discretion to reflect operational, legal, or regulatory changes. If we make material changes to the policy, we will notify you via prominent notices on ronsautoshop.com or by direct communication where appropriate. You are encouraged to regularly review this page to stay informed.
13. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or the way your data is handled by Ron’s Auto Shop, please contact us at:
Email: [email protected]
We are committed to fully complying with all applicable data protection and privacy laws. Should you wish to exercise your data rights or raise a privacy concern, we are here to assist you promptly and transparently.