Privacy Policy
At Blackpool Rocks Ltd., accessible at blackpoolrocks.com, we are firmly committed to safeguarding the privacy of our website visitors, subscribers, and customers. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information. We are dedicated to ensuring that your personal data is treated lawfully, fairly, and transparently, in accordance with all applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
Your privacy is of paramount importance to us. We process personal information with care, integrity, and in accordance with data protection principles. We continuously evaluate our practices to maintain compliance and to protect user rights.
2. Scope of This Policy and Role of the Data Controller
This policy applies to users of blackpoolrocks.com, including all services, offerings, and features provided through the website. Blackpool Rocks Ltd. is the data controller in relation to any personal data collected from users unless otherwise stated.
As the data controller, we determine the purposes and means of the processing of your personal data, and we are responsible for complying with applicable privacy laws.
3. Categories of Personal Data We Collect and Process
We may collect and process the following categories of personal data:
a. Usage Data
Includes technical information such as browser type and version, IP address, referring/exit pages, session duration, geolocation data, and navigation patterns across blackpoolrocks.com.
b. Account Data
When registering or making a purchase, we may collect your name, email address, telephone number, billing address, shipping address, and other identifiers.
c. Profile Data
Includes information derived from your activities on the site such as purchase history, preferences, interests, product interactions, and profile settings.
d. Communication Data
Includes any correspondence you submit to us, including support queries, contact via live chat or email (e.g. [email protected]), and complaint records.
e. Technical Data
Encompasses device identifiers, operating system, browser settings, screen resolution, language preferences, and diagnostic information.
f. Transaction Data
Covers details of payments and purchases, including transaction dates, order history, delivery details, and payment status.
g. Preference Data
Includes your choices regarding marketing communications, newsletter signups, and product interest indicators.
4. Legal Bases for Processing Personal Data
We rely on the following lawful bases for processing your personal information:
– Consent: When you have given informed, specific consent (e.g. marketing opt-ins).
– Contract: When processing is necessary for the performance of a contract (e.g. purchase and fulfillment).
– Legal Obligation: Where processing is required to comply with legal duties.
– Legitimate Interests: Where applicable, such as improving user experience, detecting fraud, or securing our systems, provided such interests are not overridden by your rights and freedoms.
5. Your Rights
We honor and respect your rights regarding your personal data. Subject to applicable law, you may have the following rights:
– Right to Access – You may request a copy of your personal data held by us.
– Right to Rectification – You may request correction of inaccurate or incomplete data.
– Right to Erasure – Under certain conditions, you may request that we delete your personal data.
– Right to Restrict Processing – You may request limited use of your data under specific circumstances.
– Right to Data Portability – You may request to receive your data in a structured, commonly used format.
– Right to Object – You may object to processing where we rely on legitimate interests or direct marketing.
To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before fulfilling a request.
6. Security Measures
We implement and maintain appropriate technical and organizational safeguards to protect your personal data from unauthorized access, disclosure, loss, or destruction. Measures include encrypted transmission (SSL/TLS), data access restrictions, intrusion detection, password hashing, secure backups, and regular staff training on privacy compliance.
7. International Data Transfers
Where we transfer your personal data outside of the European Economic Area (EEA), such transfers are conducted in compliance with applicable laws, utilizing legally recognized mechanisms such as Standard Contractual Clauses (SCCs) or transfers to jurisdictions with an adequacy decision by the European Commission. For California users, equivalent protections apply in accordance with the CCPA.
8. Data Retention
We retain personal data for no longer than is necessary for the purposes for which it was collected. The general retention periods are as follows:
– Usage Data: Up to 24 months for analytics and security logs.
– Account and Transaction Data: Up to 7 years for tax and audit purposes.
– Profile and Preference Data: Retained until the user deletes their profile or withdraws consent.
– Communication Data: Retained for up to 36 months post-interaction for support documentation.
Upon expiry of the retention period, data is securely deleted or anonymized.
9. Cookie Policy
Blackpoolrocks.com uses cookies and similar technologies for the following purposes:
– Essential Cookies: Necessary for authentication, security, and core functionality.
– Functional Cookies: Enhance user experience (e.g. remembering preferences).
– Analytics Cookies: Delivery of aggregated insights via tools such as Google Analytics.
– Performance Cookies: Monitor site speed, bounce rates, and service reliability.
We do not use cookies to store sensitive personal data or allow unauthorized third-party tracking.
10. Cookie Management and Compliance
Users are notified of cookie usage via a consent banner upon first visit. You may manage cookie preferences through our cookie settings interface or by modifying browser settings. We respect global privacy control (GPC) signals where supported.
Under GDPR and CCPA, users have the right to opt-out of non-essential cookies and the “sale” (as defined by CCPA) of personal data. We honor all do-not-sell requests and provide mechanisms to manage tracking preferences.
11. Children’s Privacy
Our services are not directed at or intended for children under the age of 13. We do not knowingly collect personal data from children. If a parent or guardian becomes aware that a child has provided us with personal data, they should contact us at [email protected], and we will take immediate steps to delete such data.
12. Changes to This Policy
We reserve the right to update or modify this Privacy Policy at our discretion. Substantive changes will be communicated through blackpoolrocks.com or via direct notification to users when legally required. Users are encouraged to periodically review this policy for current information on our privacy practices.
13. Contact
For any privacy-related inquiries, data access requests, or concerns about how we handle your personal data, please contact:
Blackpool Rocks Privacy Team
Email: [email protected]
Website: https://blackpoolrocks.com
We strive to ensure full compliance with all applicable data protection regulations, and we take all privacy concerns seriously. Please contact us with any questions, requests, or issues regarding the use or protection of your personal information.