Privacy Policy for Bedding For U
Effective Date: 08/18/2024
Company Name: SSQUZA LTD
Operating Hours: Mon-Fri 9:00 AM – 5:00 PM EST (2:00 PM – 10:00 PM GMT)
Office Address: 160 City Road, London, United Kingdom, EC1V 2NX
Office Number: +44 7404 663400
Customer Support: [email protected]
For Returns: [email protected]
At Bedding For U, we respect and prioritize your privacy. This Privacy Policy outlines how we collect, use, and safeguard your personal information when you use our website, interact with our services, and make purchases from us.
1. Information We Collect
We collect personal data that you provide when interacting with our website or purchasing products, including:
- Personal Identification Information:
- First Name and Last Name
- Email address
- Phone number
- Address, City, State, Province, ZIP or Postal code
- Billing and shipping addresses.
- Payment Information: Payment details, including card type (Apple Pay, Google Pay, Visa, MasterCard, and other secure payment methods, if available.), are processed through our payment gateway IntaSend. While we collect this information to process payments, we do not store your full payment details.
- Account Information: Data you provide when creating an account on our website, including your username and password, is used to manage your account securely.
- Automatically Collected Information Or Usage Data: Usage Data is automatically gathered during your use of the Service. We collect your Device’s Internet Protocol address (e.g., IP address), browser type, browser version, the specific pages you visit on our Service, the date and time of your visit, the duration spent on those pages, unique device identifiers, and additional diagnostic data.
When you connect to the Service via a mobile device, we may automatically collect certain information, including, but not limited to, the kind of mobile device you utilize, your mobile device’s unique ID, your mobile device’s IP address, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers, and other diagnostic data.
Moreover, we may gather information that your browser transmits whenever you visit our Service, whether through a traditional browser or a mobile device.
-
Tracking Technologies and Cookies
We utilize Cookies and similar tracking technologies to monitor activity on Our Service and store specific information. The tracking technologies employed include beacons, tags, and scripts, serving to collect and track data, as well as enhance and analyze Our Service. The technologies in use may involve :
- Cookies or Browser Cookies : These are small files placed on Your Device. You can instruct your browser to reject all Cookies or notify You when a Cookie is being sent. However, if You decline Cookies, certain parts of Our Service may become inaccessible. Unless You adjust your browser settings to refuse Cookies, Our Service may use them.
- Web Beacons : Certain sections of Our Service and Our emails may contain small electronic files referred to as web beacons (also known as, pixel tags, clear gifs and single-pixel gifs). These files enable the Company, for instance, to tally users who have visited specific pages or opened an email, and they contribute to other pertinent website statistics (such as tracking the popularity of a particular section and verifying system and server integrity).
- Flash Cookies : Some features of Our Service may employ locally stored objects (Flash Cookies) to gather and store information about Your preferences or activity on Our Service. Note that Flash Cookies are managed separately from the browser settings used for Browser Cookies.
- Necessary / Essential Cookies : Essential for providing services on the website and enabling specific features. These Cookies authenticate users and prevent fraudulent use of user accounts. Without them, requested services cannot be provided, and they are used solely for service provision.
- Notice Acceptance Cookies : Identify if users have accepted the use of cookies on the website.
- Functionality Cookies : Remember choices made on the website, such as login details or language preference, to enhance user experience and eliminate the need to re-enter preferences.
- Tracking and Performance Cookies : Used to track information about website traffic and user interactions. The collected information may indirectly identify individual visitors and is associated with a pseudonymous identifier linked to the accessing device. Additionally, these Cookies may be used to test new pages, features, or functionality.
- Targeting and Advertising Cookies : Track browsing habits to display advertising likely to be of interest. These Cookies use browsing history to group users with similar interests. With permission, third-party advertisers place Cookies to show relevant adverts on third-party websites.
2. How We Use Your Information
Bedding For U may employ Personal Data for the following purposes :
- To Provide and Maintain Our Service : Monitor the usage of our Service.
- To Manage Your Account : Manage your registration as a user, providing access to various Service functionalities.
- For the Performance of a Contract : Develop, comply with, and undertake purchase contracts for products, items, or services.
- To Contact You : Utilize email, telephone calls, SMS, or other electronic communication forms for updates, security notifications, and informative communications related to Service functionalities, products, or contracted services.
- To Provide News, Special Offers, and General Information : Deliver information about goods, services, and events similar to those you’ve purchased or inquired about, unless you opt out.
- To Manage Your Requests : Attend and manage your requests.
- To Deliver Targeted Advertising : Develop and display tailored content and advertising, working with third-party vendors, and measuring effectiveness.
- For Business Transfers : Evaluate or conduct mergers, sales, restructuring, or other transfers of assets, including Personal Data in such transactions.
- For Other Purposes : Utilize information for data analysis, identifying usage trends, evaluating promotional campaign effectiveness, and enhancing Service, products, services, marketing, and user experience.
Use of Personal Information
We may use or disclose the personal information we collect for one or more of the following business purposes:
- To fulfill or meet the reason you provided the information. For example, if you share your name and contact information to request a price quote or ask a question about our services, we will use that personal information to respond to your inquiry. If you provide your personal information to purchase a product or service, we will use that information to process your payment and facilitate delivery. We may also save your information to facilitate new product orders or process returns.
- To process your requests, purchases, transactions, and payments and prevent transactional fraud.
- To provide you with support and to respond to your inquiries, including to investigate and address your concerns and monitor and improve our responses.
- To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
- As described to you when collecting your personal information or as otherwise set forth in the CCPA.
- To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our or our affiliates’ assets in which personal information held by us or our affiliates about our Website users is among the assets transferred.
We will not collect additional categories of personal information or use the personal information we collect for materially different, unrelated, or incompatible purposes without providing you notice.
Sale of Personal Information Involving Minors Under 16 Years of Age
We refrain from selling the personal information of consumers whom we are aware are under 16 years of age, unless we obtain affirmative authorization (the “right to opt-in”) from either the consumer between 13 and 16 years of age or the parent/guardian of a consumer under 13 years of age. Consumers who choose to opt-in to the sale of personal information retain the right to opt-out of future sales at any time. To exercise the right to opt-out, you (or your authorized representative) may submit a request to us by contacting us.
If you suspect that a child under the age of 13 (or 16) has provided us with personal information, please get in touch with us, providing sufficient details to facilitate the deletion of that information.
Do Not Sell My Personal Information
You have the right to opt-out of the sale of your personal information. Upon receiving and verifying a consumer request from you, we will cease selling your personal information. To exercise your right to opt-out, please contact us.
Our service providers, such as analytics or advertising partners, may utilize technology on the service that qualifies as the sale of personal information under the CCPA law. If you wish to opt out of the use of your personal information for interest-based advertising purposes and these potential sales outlined in the CCPA law, follow the instructions below.
Please be aware that any opt-out is specific to the browser you use, and you may need to opt out on each browser you utilize.
Sharing Personal Information
Bedding For U may disclose your personal information to a third party for a business purpose. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.
We may share your personal information with specific categories of third parties. These include but are not limited to :
- Service providers.
- Data Aggregators.
- Payment processors.
- Our affiliates.
- Our business partners.
- Third-party vendors to whom you or your agents grant authorization for us to disclose your personal information in connection with the products or services we provide to you.
Data Sharing and Third-Party Services
Data Sharing and Third-Party Services
At Bedding For U, we are committed to safeguarding your personal information. We may share Personally Identifiable Information and/or aggregated information about our Users, including the demographics of our Users, with our affiliated agencies and third party vendors. We also offer the opportunity to “opt out” of receiving information or being contacted by us or by any agency acting on our behalf. However, to enhance our services, manage transactions, and analyze data, we work with trusted third-party service providers.
Here’s how we share your data and with whom:
-
Third-Party Service Providers:
-
We share your personal data with third-party service providers who assist us in delivering our services. Here’s a brief overview of how your data is shared and protected:
-
Payment Processors: We use Intasend to handle payment transactions. While we collect payment information for processing, we do not store your payment details. Intasend is responsible for securing and managing payment information in compliance with industry standards. Your information is directly provided to our payment processors, whose handling of your personal information is governed by their respective Privacy Policies. For more information on how Intasend handles your data, please refer to their privacy policy. Instead, These payment processors strictly adhere to the standards set by PCI-DSS (Payment Card Industry Data Security Standard), as overseen by the PCI Security Standards Council—a collaborative effort involving major brands like Apple Pay, Google Pay, Visa and Mastercard. These standards are designed to ensure the secure handling of payment information.
-
Analytics Providers: We utilize Google Analytics to analyze website traffic and user behavior, which helps us understand how visitors interact with our site and improve our services. Google Analytics collects data such as IP addresses, browser types, and usage patterns. For more details on how Google uses your information, visit Google Privacy & Terms. You can opt out of Google Analytics tracking by using the Google Analytics Opt-Out tool.
-
E-commerce Platform: We use WooCommerce to manage our online store. WooCommerce processes and stores data related to your transactions and interactions with our website. This data is used to facilitate your purchases and manage your account. For details on WooCommerce’s data handling practices, please refer to their privacy policy.
-
-
Advertising and Marketing:
-
Targeted Advertising: With your consent, we may share your data with advertising platforms such as Google Ads and Facebook Ads to deliver personalized advertisements based on your interests and previous interactions with our site. This helps us provide relevant ads to you and measure their effectiveness. For more information on how targeted advertising works, you can visit the Network Advertising Initiative. You can also opt out of targeted advertising using the following links:
- Calling us at . +44 7404 663400
- Emailing us at [email protected] .
Behavioral Remarketing
Our company employs remarketing services to reach out to you with advertisements after you’ve accessed or visited our Service. We, along with our third-party vendors, use both cookies and non-cookie technologies to recognize your device and gain insights into how you utilize our Service. This enables us to enhance our Service based on your interests and deliver advertisements that are more likely to capture your attention.
These third-party vendors collect, store, process, and transfer information about your activity on our Service in accordance with their privacy policies. Their activities enable us to:
- Measure and analyze traffic and browsing activity on our Service.
- Display advertisements for our products and/or services on third-party websites or apps.
- Measure and analyze the performance of our advertising campaigns.
Some of these vendors may utilize non-cookie technologies that are not affected by browser settings blocking cookies. Your browser may not provide the option to block such technologies. To decline the collection and use of information for interest-based advertising, you can use third-party tools such as :
- NAI’s opt-out platform: http://www.networkadvertising.org/choices/.
- EDAA’s opt-out platform: http://www.youronlinechoices.com/.
- DAA’s opt-out platform: http://optout.aboutads.info/?c=2&lang=EN.
Additionally, you can opt-out of all personalized advertising on your mobile device by enabling privacy features such as Limit Ad Tracking (iOS) and Opt Out of Ads Personalization (Android). Consult your mobile device’s Help system for more information.
We may share information, such as hashed email addresses, with these third-party vendors. This allows them to recognize and deliver ads to you across devices and browsers. For details on the technologies used by these vendors and their cross-device capabilities, please refer to the privacy policies of each vendor.
Note : Personally Identifiable Information collected by Bedding For U is securely stored and is not accessible to third parties or employees of Bedding For U except for use as indicated above. And Users may opt out of receiving unsolicited information from or being contacted by us and/or our vendors and affiliated agencies by responding to emails as instructed, or by either :- Calling us at . +44 7404 663400
- Emailing us at [email protected] .
-
- Legal and Compliance: We may share your information when required to comply with legal obligations, respond to lawful requests, or protect our rights. This includes responding to legal processes such as subpoenas and search warrants. We ensure that such disclosures are made in compliance with applicable laws and are necessary for legal or regulatory purposes. Under specific circumstances, Bedding For U may need to disclose your Personal Data as required by law or in response to valid requests from public authorities, such as a court or government agency.
-
International Data Transfers:
As a UK-based company, your data may be transferred to third-party service providers located outside of the European Economic Area (EEA), including the USA. We ensure that all international data transfers comply with applicable data protection laws by using safeguards such as Standard Contractual Clauses (SCCs) to protect your information. This ensures that your data remains protected in accordance with the data protection regulations in force.
Note: While the security of your Personal Data is a priority for us, it’s important to note that no method of transmission over the Internet or electronic storage is 100% secure. Although we strive to use commercially acceptable means to safeguard your Personal Data, we cannot guarantee its absolute security.
8. Security and Data Protection
We are dedicated to safeguarding your personal data and maintaining its security. We employ industry-standard measures, including SSL (Secure Sockets Layer) encryption, to protect your information during transmission. Additionally, we use other security practices, such as regular security audits and firewalls, to ensure that your data remains secure during storage. These measures help prevent unauthorized access and ensure the integrity of your data.
9. Your Rights and Choices
You have specific rights regarding your personal data, including the rights to access, correct, delete, and object to its processing. For detailed information on how to exercise these rights, please refer to our Your Rights section.
Consent: By using our services, you agree to the collection, use, and sharing of your data as described in this Privacy Policy. If you do not agree with our privacy practices, please refrain from using our services.
10. Data Retention
At Bedding For U, we are committed to managing your personal data responsibly and transparently. We retain personal data for specific periods, based on the following criteria:
1. Transactional Data: We retain personal data related to transactions, such as billing and shipping addresses, for a period of 7 years to comply with legal and regulatory requirements, including tax and accounting obligations.
2. Account Information: Data related to user accounts, including usernames and passwords, is retained as long as the account is active. If you choose to deactivate your account, we will retain your data for a period of 30 days to allow for account reactivation and to comply with any legal or contractual obligations.
3. Marketing Data: Personal data collected for marketing purposes, such as email addresses for newsletters, is retained until you opt out of receiving communications from us. You can opt out at any time by following the unsubscribe instructions in our emails.
4. Cookies and Tracking Technologies: Data collected through cookies and similar tracking technologies is retained for 12 months to improve website functionality and user experience. You can manage cookie preferences through your browser settings.
5. Legal Obligations: We may retain personal data as required by law or for the duration necessary to comply with legal obligations, resolve disputes, enforce agreements, and protect our rights.
Criteria for Data Retention:
- Legal and Regulatory Requirements: We retain data as needed to comply with applicable laws and regulations.
- Business Needs: We retain data to fulfill business purposes, such as processing orders, managing accounts, and improving our services.
- User Preferences: We respect user preferences regarding data retention and provide options to manage and delete personal data.
Data Deletion Requests:
If you wish to request the deletion of your personal data, please contact us. We will process your request in accordance with applicable data protection laws and notify you once the data has been deleted.
3. Third-Party Services
To enhance our services, we collaborate with various third-party service providers who assist us with transactions, order fulfillment, and website management. These include:
- Intasend: Responsible for processing payments. We use Intasend to handle payment transactions securely. While we collect payment information for processing, Intasend manages and protects this data in compliance with industry standards.
- Google Analytics: Utilized for analyzing website traffic and user behavior. Google Analytics helps us understand site interactions and improve our services. Google Analytics processes data such as IP addresses and usage patterns. For details on how Google handles your data, visit Google Privacy & Terms. You can opt out of Google Analytics tracking via Google Analytics Opt-Out.
- WooCommerce: Manages our online store’s operations. WooCommerce processes and stores data related to transactions and user interactions with our site.
These third-party services may have access to your personal data but are obligated to protect it according to applicable legal requirements and standards.
4. Cookies and Tracking Technologies
Our website uses cookies to enhance your experience and track website usage. Cookies are small files placed on your device that help us remember your preferences and deliver personalized content and advertisements.
You can manage your cookie preferences through our cookie consent banner when you visit our website. This allows you to opt out of non-essential cookies that are not crucial for the website’s functionality.
5. How We Protect Your Information
We take the security of your personal data very seriously. Our website is protected by SSL encryption, ensuring that data transmitted between your browser and our site is secure. To further safeguard your information, we employ firewalls, conduct regular security audits, and use secure payment gateways.
Hosting and Data Storage: Your data is hosted on secure servers. We ensure that all third-party services we use comply with relevant data protection laws, including the GDPR, to maintain the highest standards of data security.
6. Your Rights
Under applicable data protection laws, CCPA (California Consumer Privacy Act), you have the following rights:
- Access Your Data: You have the right to request information about the personal data we hold about you.
- Correct Your Data: You can request corrections to any inaccuracies in your personal information.
- Delete Your Data: You may request the deletion of your personal data.
- Object to Processing: You have the right to request that we stop processing your data for specific purposes, including marketing.
To exercise these rights, please contact us at the details provided in this Privacy Policy.
7. CCPA Compliance (For Users in California)
The CCPA provides California residents with specific rights regarding their personal information. Under the California Consumer Privacy Act (CCPA), you have the following rights:
- The right to notice.You have the right to be notified which categories of Personal Data are being collected and the purposes for which the Personal Data is being used.
- The right to request.Under CCPA, You have the right to request that We disclose information to You about Our collection, use, sale, disclosure for business purposes and share of personal information. Once We receive and confirm Your request, We will disclose to You:
- The categories of personal information We collected about You
- The categories of sources for the personal information We collected about You
- Our business or commercial purpose for collecting or selling that personal information
- The categories of third parties with whom We share that personal information
- The specific pieces of personal information We collected about You
- If we sold Your personal information or disclosed Your personal information for a business purpose, We will disclose to You:
- The categories of personal information categories sold
- The categories of personal information categories disclosed
- The right to say no to the sale of Personal Data (opt-out).You have the right to direct Us to not sell Your personal information. To submit an opt-out request please contact Us.
- The right to delete Personal Data. You have the right to request the deletion of Your Personal Data, subject to certain exceptions. Once We receive and confirm Your request, We will delete (and direct Our Service Providers to delete) Your personal information from our records, unless an exception applies. We may deny Your deletion request if retaining the information is necessary for Us or Our Service Providers to:
- Complete the transaction for which We collected the personal information, provide a good or service that You requested, take actions reasonably anticipated within the context of our ongoing business relationship with You, or otherwise perform our contract with You.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
- Debug products to identify and repair errors that impair existing intended functionality.
- Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
- Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if You previously provided informed consent.
- Enable solely internal uses that are reasonably aligned with consumer expectations based on Your relationship with Us.
- Comply with a legal obligation.
- Make other internal and lawful uses of that information that are compatible with the context in which You provided it.
- The right not to be discriminated against.You have the right not to be discriminated against for exercising any of Your consumer’s rights, including by:
- Denying goods or services to You.
- Charging different prices or rates for goods or services, including the use of discounts or other benefits or imposing penalties.
- Providing a different level or quality of goods or services to You.
- Suggesting that You will receive a different price or rate for goods or services or a different level or quality of goods or services.
To exercise these rights, please contact us.
Exercising Your CCPA Data Protection Rights
In order to exercise any of Your rights under the CCPA, and if You are a California resident, You can contact Us:
- By email: Only You, or a person registered with the California Secretary of State that You authorize to act on Your behalf, may make a verifiable request related to Your personal information.
- By phone number: +44 7404 663400
- By mail: Office Address: 160 City Road, London, United Kingdom, EC1V 2NX
Your request to Us must:
- Provide sufficient information that allows Us to reasonably verify You are the person about whom We collected personal information or an authorized representative
- Describe Your request with sufficient detail that allows Us to properly understand, evaluate, and respond to it
We cannot respond to Your request or provide You with the required information if we cannot:
- Verify Your identity or authority to make the request
- And confirm that the personal information relates to You
We will disclose and deliver the required information free of charge within 45 days of receiving Your verifiable request. The time period to provide the required information may be extended once by an additional 45 days when reasonable necessary and with prior notice.
Any disclosures We provide will only cover the 12-month period preceding the verifiable request’s receipt.
For data portability requests, We will select a format to provide Your personal information that is readily useable and should allow You to transmit the information from one entity to another entity without hindrance.
“Do Not Track” Policy in Compliance with the California Online Privacy Protection Act (CalOPPA)
Our service does not acknowledge or respond to Do Not Track signals. While our service itself does not alter its behavior based on such signals, it’s important to note that certain third-party websites may monitor your browsing activities.
If you are accessing these external websites, you have the option to manage your preferences in your web browser to convey your desire not to be tracked. The ability to enable or disable “Do Not Track” (DNT) can typically be found in the preferences or settings page of your web browser. Adjust these settings according to your preferences regarding online tracking.
Your California Privacy Rights (California’s Shine the Light law)
Under California Civil Code Section 1798 (California’s Shine the Light law), California residents with an established business relationship with us can request information once a year about sharing their Personal Data with third parties for the third parties’ direct marketing purposes.
If you’d like to request more information under the California Shine the Light law, and if You are a California resident, You can contact Us using the contact information provided below.
California Privacy Rights for Minor Users (California Business and Professions Code Section 22581)
California Business and Professions Code section 22581 allow California residents under the age of 18 who are registered users of online sites, services or applications to request and obtain removal of content or information they have publicly posted.
To request removal of such data, and if You are a California resident, You can contact Us using the contact information provided below, and include the email address associated with Your account.
Be aware that Your request does not guarantee complete or comprehensive removal of content or information posted online and that the law may not permit or require removal in certain circumstances.
7. International Data Transfers
As we are a UK-based company, your data may be transferred outside the European Economic Area (EEA), including to our third-party service providers in the USA or other countries. We ensure that all international data transfers are compliant with GDPR regulations, using appropriate safeguards like Standard Contractual Clauses (SCCs) where applicable.
8. Children’s Privacy
Our website is not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe that a child has provided us with personal information, please contact us, and we will promptly delete the data.
9. Changes to Our Privacy Policy
We may update this privacy policy from time to time. Any changes will be posted on this page with the updated effective date. We encourage you to review this page regularly to stay informed about how we protect your personal data.
10. DISCLAIMER OF WARRANTIES; LIMITATION OF LIABILITY
DISCLAIMER OF WARRANTIES:
Our website and services are provided on an “as is” and “as available” basis. We make no representations, warranties, or conditions of any kind, either express or implied, regarding the operation of our website or the information, content, materials, or products included on it. We do not guarantee that our services will be uninterrupted, error-free, or secure. We disclaim all warranties, including but not limited to warranties of merchantability, fitness for a particular purpose, and non-infringement.
LIMITATION OF LIABILITY:
In no event shall SSQUZA LTD (trading as Bedding For U), its directors, officers, employees, affiliates, agents, contractors, interns, suppliers, service providers, or licensors be liable for any injury, loss, claim, or any direct, indirect, incidental, punitive, special, or consequential damages of any kind, including, without limitation, lost profits, lost revenue, lost savings, loss of data, replacement costs, or any similar damages, whether based in contract, tort (including negligence), strict liability, or otherwise, arising from your use of any of our services or products.
11. WordPress and Privacy
How WordPress Ensures Privacy for Self-Hosted Sites:
As a self-hosted site using WordPress, we benefit from the platform’s security features and flexibility:
- Open-Source Software: WordPress is an open-source platform that is continuously reviewed and updated by a global community of developers, ensuring that security vulnerabilities are addressed promptly.
- Security Updates: Regular updates to WordPress core and plugins help maintain the security and privacy of your data.
- SSL Encryption: We utilize SSL certificates to encrypt data transmitted between your browser and our website, protecting your information from unauthorized access.
- Security Plugins: We use WordPress security plugins to add additional layers of protection, including firewalls, malware scanning, and login protection.
- Data Control: As a site owner, we have full control over the plugins and themes used, allowing us to select those that adhere to privacy and security best practices.
Disclaimer: While WordPress provides a robust framework for website security, the protection of personal data on our site also depends on the choices we make regarding plugins, hosting, and site management. We strive to maintain high standards for privacy and security, but no system is completely immune to risks.
12. Return and Refund Policy
Please visit our return policy.
13. Contact Us
If you have any questions or concerns about this privacy policy or your personal data, please contact us.
By using our website and services, you agree to this Privacy Policy.