Privacy Policy
1. Introduction
At Spotlight Reads HQ (“we,” “us,” or “our”), accessible via spotlightreadshq.com, we are committed to upholding your privacy and protecting your personal data. We recognize the importance of transparency, accountability, and control in the way we collect, use, and handle your personal information. This Privacy Policy explains how we process your data in compliance with global data protection laws—including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”)—and reaffirms our commitment to safeguarding your privacy across all our services.
2. Scope and Data Controller
This Privacy Policy applies to all personal data collected through our website spotlightreadshq.com, and related services. Spotlight Reads HQ is the data controller responsible for the collection and use of your personal information as described in this Privacy Policy. By accessing and using our website or engaging with our services, you consent to the practices described herein.
If you have any questions about this Privacy Policy, please contact us at: [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Includes data about your interactions with our website, such as IP addresses, browser type, geographic location, referring URLs, duration of visits, and pages viewed. This data helps us understand how users engage with our platform for optimization and security purposes.
b. Account Data
Collected when you create an account or register for services. This may include your name, email address, phone number, and physical or billing address.
c. Profile Data
Information you voluntarily provide, such as reading preferences, purchase history, digital behavior, personalization settings, and participation in events or promotions.
d. Communication Data
Includes any correspondence you send to or receive from us, including customer support inquiries, feedback, and related communication history.
e. Technical Data
Includes device information, system configuration, operating system, language settings, device identifiers, and browser settings. This helps ensure compatibility and optimize performance.
f. Transaction Data
Details of products or services you purchase via our website, including payment method (processed securely via third-party providers), purchase history, and delivery details.
g. Preference Data
Includes your marketing and communication preferences, product interests, newsletter subscriptions, and your consent or opt-out choices for communications.
4. Legal Bases for Processing
We process personal data under the following lawful bases:
– Consent: When required, we obtain your clear and express permission before collecting or processing your data (e.g., for marketing newsletters or non-essential cookies).
– Contract: We process personal data necessary for fulfilling our obligations under agreements with you, including account management and transaction processing.
– Legitimate Interest: Processing where necessary for our legitimate business interests, such as website analytics, service improvement, and fraud prevention, provided such interests are not overridden by your rights.
– Legal Obligation: When necessary to comply with a legal or regulatory obligation.
5. Your Rights
Under applicable data protection laws, you may be entitled to exercise the following rights:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You can request corrections to inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data, subject to legal and contractual obligations.
– Right to Restriction: You may request that we temporarily or permanently stop processing your data.
– Right to Data Portability: You can request a copy of your data in a structured, commonly used, machine-readable format and request we transfer it to another controller.
To exercise any of the above rights, please contact us at: [email protected].
6. Security Measures
We implement appropriate organizational and technical security measures to protect your data against unauthorized access, loss, or damage. These measures include:
– Data encryption during transit and storage
– Role-based access controls and authentication
– Regular data backups and secure infrastructure hosting
– Staff training and internal policies on data handling and confidentiality
7. International Data Transfers
If your personal data is transferred outside your country or jurisdiction (for example, to servers or service providers located outside the European Economic Area), such transfers are made in compliance with data protection laws. We implement appropriate safeguards, including, where applicable, standard contractual clauses approved by the European Commission or reliance on adequacy decisions.
8. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including:
– Usage Data: Retained up to 24 months for analytics and security
– Account and Transaction Data: Maintained for up to 7 years after account closure or transaction, for legal and taxation compliance
– Communication and Profile Data: Retained as long as active interaction continues, or up to 36 months following inactivity
– Preference Data: Retained until you withdraw consent or update your settings
Once data is no longer needed, it is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance user experience, analyze website traffic, and support personalized content. We use the following types of cookies:
– Essential Cookies: Necessary for website functionality, including authentication and session management.
– Functional Cookies: Improve website performance and user settings retention.
– Analytics Cookies: Allow us to measure website traffic and usage behavior via services like Google Analytics.
– Performance Cookies: Assist in optimizing page load times and responsiveness.
10. Cookie Management and Compliance
In line with GDPR and CCPA, we offer users the ability to manage cookie settings through a consent management platform when you first visit spotlightreadshq.com and via your browser settings. Where required, consent banners and opt-in mechanisms are presented to obtain express permission before deploying non-essential cookies. Users can withdraw consent at any time through our cookie preferences tool or browser controls.
11. Children’s Privacy
Our services are not directed to children under the age of 13, and we do not knowingly collect personal data from individuals under this age. If we become aware that we have collected data from a child without proper consent, we will delete it promptly. Parents or guardians who believe we have collected a child’s information may contact us at: [email protected].
12. Policy Updates and User Notifications
We may update this Privacy Policy as required to comply with legal obligations or reflect operational changes. All updates will be posted on spotlightreadshq.com, and we may provide additional notice via email or site banners where significant changes are made. Continued use of our services constitutes your acceptance of the revised policy.
13. Contact
If you have questions about this Privacy Policy or your personal data rights, or would like to make a complaint, please contact us directly at:
Email: [email protected]
Website: https://spotlightreadshq.com
We are fully committed to complying with applicable privacy legislation and supporting you in maintaining control over your personal data. For all inquiries or concerns related to data privacy, please don’t hesitate to contact us.