Privacy Policy
1. Introduction
At FF Style (“we”, “our”, or “us”), accessible via ff-style.com (the “Website”), we are firmly committed to safeguarding the privacy and personal data of our users and customers. Your trust is important to us, and we are dedicated to protecting the integrity, confidentiality, and security of the information you share with us. This Privacy Policy outlines how we collect, use, store, transfer, and protect your personal data in full compliance with the applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
We prioritize a privacy-first approach and are committed to transparency and responsible data handling in all of our interactions.
2. Scope of the Policy and Role as Data Controller
This Privacy Policy applies to all individuals who visit, interact with, or transact on ff-style.com, as well as individuals who communicate with us through other channels (including email and social media). FF Style acts as the “data controller” with respect to the personal data we collect and process. This means that we determine the purposes and the means of processing your personal data.
3. Categories of Data Processed
We collect and process the following categories of personal data to provide and improve our services, enable user interaction, process transactions, and ensure Website functionality:
a. Usage Data
Information about how you interact with ff-style.com, including IP address, browser type and version, pages visited, time spent on the site, referring URLs, and other diagnostic data.
b. Account Data
Personal information voluntarily provided when you create an account or make a purchase, such as your full name, billing and shipping address, email address, and phone number.
c. Profile Data
Preferences and interests provided through account settings or behavior on the Website, including saved items, style or product preferences, and order history.
d. Communication Data
Records of communications, including support inquiries, requests submitted via contact forms, emails with customer service, and any metadata associated with such communications.
e. Technical Data
Device information collected automatically such as device type, operating system, browser configuration, language settings, and system preferences necessary for Website optimization.
f. Transaction Data
Details related to purchases and transactions including payment method (note: sensitive payment data is handled securely by third-party payment processors and is not stored on our systems), transaction amount, shipping status, and delivery tracking.
g. Preference Data
Your settings and consents related to newsletters, promotional communications, marketing preferences, and opt-in/opt-out statuses.
4. Legal Bases for Processing
We process your personal data based on one or more of the following legal foundations as permitted under GDPR and similar frameworks:
– Consent: Where you have provided your explicit consent for specific purposes such as receiving marketing communications.
– Contractual Necessity: Processing necessary for the performance of a contract with you (e.g., to process and deliver your order).
– Legitimate Interest: Where processing is necessary to serve our legitimate business interests—such as to enhance our services, improve user experience, or prevent fraud—only where such interests are not overridden by your rights and interests.
– Legal Obligation: Where processing is required for compliance with applicable laws and regulations.
5. Your Rights
Depending on your location and applicable data protection laws, you may exercise the following rights with respect to your personal data:
– Right to Access: Obtain information about whether we process your data and access to your personal data.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of personal data when no longer necessary for the purposes collected or if withdrawn consent (subject to legal retention obligations).
– Right to Restriction: Request temporary suspension of processing where accuracy of data is contested or processing is unlawful.
– Right to Data Portability: Receive a copy of your personal data in a structured, commonly used format and have it transmitted to another controller.
– Right to Object: Object to the processing of your personal data in certain scenarios, including for direct marketing purposes.
– Right to Non-Discrimination (under CCPA): Exercise any of the above rights without being denied services, charged different prices, or being subject to different quality of service.
To exercise your rights, contact us at [email protected] with sufficient detail to verify your identity.
6. Security Measures
We implement industry-standard technical and organizational security measures to ensure the confidentiality, integrity, and availability of your data. These measures include:
– Encryption for data transmission and storage
– Authentication and access control mechanisms
– Regular system monitoring and vulnerability assessments
– Data backups and disaster recovery protocols
– Ongoing employee training and awareness programs
Despite our efforts, no method of transmission or storage is completely secure. We urge you to take appropriate steps to protect your personal information, including safeguarding account credentials.
7. International Data Transfers
As part of our operations, your personal data may be transferred to countries outside of your jurisdiction, including to jurisdictions outside the European Economic Area (EEA) or the United States. Where such transfers occur, we rely on:
– Adequacy decisions issued by the European Commission
– Standard Contractual Clauses (SCCs)
– Other legally valid mechanisms ensuring appropriate data protection safeguards
We also perform due diligence on third-party data recipients and their compliance with regional data protection standards.
8. Data Retention
We retain your personal data only for as long as is necessary to fulfill the purposes outlined in this Policy, or as required by law. Retention periods by data category include:
– Usage & Technical Data: Up to 24 months for analytics and security purposes
– Account & Profile Data: Retained as long as the user account remains active; deleted within 60 days of account closure or inactivity
– Transaction Data: Retained for a minimum of 7 years as required for tax and financial reporting obligations
– Communication Data: Retained for up to 24 months for customer support follow-up
– Preference Data: Retained until an opt-out or consent change is registered
9. Cookie Policy
We use cookies and similar technologies to enhance Website performance and personalize the online experience. The categories include:
– Essential Cookies: Required for Website functionality (e.g., shopping cart, login)
– Functional Cookies: Remember choices and preferences to improve usability
– Analytics Cookies: Help us understand how users interact with the Website (e.g., Google Analytics)
– Performance Cookies: Optimize load times, responsiveness, and system management
10. Cookie Management and Compliance with GDPR & CCPA
You have control over how cookies are used through our cookie consent banner and your browser settings. You may choose to accept or reject different categories of cookies upon your first visit, or modify your preferences at any time.
Users covered by GDPR or CCPA can withdraw consent or opt-out of data sale/activity tracking at any time. Cookie consent preferences are respected and regularly re-validated to comply with regulatory requirements.
11. Children’s Privacy Protection
FF Style does not knowingly collect or solicit personal data from children under the age of 13. If we learn that we have collected personal data from a child without parental consent, we will promptly delete such information. Parents or guardians with concerns are encouraged to contact us at [email protected].
12. Changes to this Policy
We may modify this Privacy Policy from time to time to reflect changes in legal, business, or technological developments. When changes occur, notices may be posted on ff-style.com where appropriate to inform users. Continued use of the Website after any updates constitutes acceptance of the revised Policy.
13. Contact
If you have questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact:
Email: [email protected]
We are committed to complying with all applicable privacy regulations and protecting your data rights. Please do not hesitate to reach out with any privacy-related inquiries.