Privacy Policy
We at TrustLittle (“TrustLittle”, “we”, “us”, or “our”) understand that privacy matters. Protecting the personal information and ensuring the data rights of our visitors, users, and customers is a core pillar of our operations. This Privacy Policy describes how we collect, use, and protect your personal data when you access and interact with our website located at trustlittle.com (the “Website”), and outlines your rights under relevant data privacy laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act of 2018 (“CCPA”).
1. Our Commitment to Privacy and Data Protection
At TrustLittle, your privacy is not only respected—it is prioritized. We are committed to maintaining the confidentiality, integrity, and security of your personal information, and handle all data according to applicable legal standards and industry best practices.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all data collected through trustlittle.com and any associated platforms operated by TrustLittle. For the purposes of the GDPR, TrustLittle is the “data controller” responsible for determining the purposes and means of processing your personal data.
For users subject to the CCPA, TrustLittle is considered a “business” and this Policy serves to inform California residents of their rights and our procedures in line with the CCPA.
3. Categories of Data We Process
We collect and process the following categories of personal data when you interact with trustlittle.com:
a) Usage Data:
We collect data about how you use our Website, including your IP address, browser type, time zone settings, geographical location, the pages you visit, dwell time, referring and exit URLs, and system activity logs.
b) Account Data:
When you create an account or register with our services, we collect identifiable information such as your full name, mailing address, email address, and telephone number.
c) Profile Data:
We process user-specific data such as saved preferences, purchase history, browsing behavior, saved items, and product interests.
d) Communication Data:
We retain communications with you including support requests, messages submitted via forms, emails sent to [email protected], and any other correspondence.
e) Technical Data:
This includes information about your device, operating system, screen resolution, hardware settings, platform type, and other technical data relevant to optimizing the Website experience.
f) Transaction Data:
For users making purchases, we collect payment details (using secure third-party processors), billing addresses, shipping information, and transaction confirmation or refund records.
g) Preference Data:
Where consented, we collect data about your communication preferences, marketing subscriptions, notification opt-ins, and content personalization choices.
4. Legal Bases for Processing Personal Data
We process your personal data under lawful bases as recognized under GDPR and applicable privacy laws. These bases include:
– Performance of a contract: To provide the services or products you request.
– Legitimate interest: For the improvement and proper administration of our Website and services.
– Consent: Where legally required, such as for sending marketing communications or placing non-essential cookies.
– Legal obligation: To comply with legal and regulatory requirements.
5. Your Rights Under Data Protection Laws
Depending on your jurisdiction, you have several rights with respect to your personal data, including:
– Right of Access: You can request confirmation as to whether we process your personal data and request a copy of that data.
– Right to Rectification: You may request corrections to inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): You may request that we delete your data under certain legal grounds.
– Right to Restriction: You may request that we limit the processing of your data in certain scenarios.
– Right to Data Portability: You may request a structured, commonly used, machine-readable copy of your personal data.
– Right to Object: You may object to processing conducted under legitimate interest or for direct marketing purposes.
– Right to Withdraw Consent: Where we process data based upon your consent, you may withdraw that consent at any time.
To exercise your rights, please contact us at [email protected].
6. Security Measures
TrustLittle implements industry-standard technical and organizational security measures to ensure a high level of data protection. This includes, but is not limited to:
– SSL/TLS encryption for data in transit
– Role-based access controls and user authentication
– Data access logging and auditing
– Regular system and server backups
– Staff awareness and data privacy training
– Secure data processors with strict contractual obligations
While no method of transmission or storage is 100% secure, we take all reasonable steps to protect your data from unauthorized access, disclosure, or misuse.
7. International Data Transfers
Where we transfer personal data outside of the European Economic Area (EEA) or other jurisdictions with comprehensive data protection laws, we ensure appropriate safeguards are in place. These may include:
– Standard Contractual Clauses approved by the European Commission
– Data processing agreements with security, privacy, and confidentiality obligations
– Third countries deemed to provide adequate protection by the European Commission
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or to comply with legal, regulatory, or contractual obligations. For instance:
– Account Data: Retained as long as your account remains active or as required for legal obligations.
– Transaction Data: Retained up to 7 years for financial and tax compliance.
– Communication Data: Retained for 24 months after resolution.
– Preference and Profile Data: Retained for 12 months after the end of your relationship with us.
– Anonymous Technical and Usage Data: Retained indefinitely for aggregate analysis.
Upon expiration of retention periods, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies on trustlittle.com to improve functionality, tailor experiences, and understand user interactions. These include:
– Essential Cookies: Necessary for core site functionality, such as account login, security, and transactions.
– Functional Cookies: Enable interface customization or language settings.
– Analytics Cookies: Help us understand how users interact with the site (e.g., via Google Analytics).
– Performance Cookies: Improve page load speed and internal operations.
10. Cookie Management and Legal Compliance
You can manage your cookie preferences through your browser settings or via any cookie banner we provide upon your first visit. Where required, we obtain prior consent before placing non-essential cookies. We maintain compliance with both GDPR (EU users) and CCPA (California users), including offering opt-outs and settings control.
To opt out of data sharing under the CCPA or reject cookies requiring consent, follow the links provided in our cookie banner or email [email protected] with your request.
11. Protection of Children’s Data
Our Website is not directed to children under the age of 13. We do not knowingly collect or process personal data from individuals under 13. If we become aware that we have inadvertently processed the personal data of a child, we will delete it without delay. Parents or guardians who have concerns about data collected from a minor are encouraged to contact us at [email protected].
12. Privacy Policy Updates and Notifications
We reserve the right to update or modify this Privacy Policy at any time. If changes are material, we will provide appropriate notice via the Website or via direct communication. Continued use of the Website following any modification constitutes acceptance of the updated terms.
We encourage users to periodically review this Privacy Policy to stay informed about how we manage personal data.
13. Contacting Us
If you have questions, concerns, or would like to exercise your data privacy rights, please contact us at:
Email: [email protected]
—
TrustLittle is committed to complying with international privacy laws and ensuring transparency and respect for your personal data. Should you have any concerns about how your information is handled, you can reach out to us directly at the contact provided above.