Privacy Policy for Heart of a Murderer

1. Introduction

At Heart of a Murderer (“we”, “our”, “us”, or the “Company”), accessible via heartofamurderer.com (the “Website”), we are committed to protecting your privacy and ensuring the responsible use of your personal data. We believe in transparency, accountability, and user empowerment, and we recognize the trust you place in us when you provide your information. Our privacy-first approach ensures that your personal data is handled securely, lawfully, and with dignity.

2. Scope and Data Controller

This Privacy Policy applies to all users of heartofamurderer.com and governs how we collect, use, store, and share personal data. For purposes of applicable data protection legislation, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”), Heart of a Murderer acts as the “data controller” with respect to any personal data collected through our Website or digital services.

3. Categories of Data Processed

We collect and process the following categories of personal data:

Usage Data:
Includes information about how you interact with our Website, including your IP address, browser type, device identifiers, session duration, pages viewed, and navigation patterns.

Account Data:
Personal details provided during account creation or purchase, including your full name, mailing address, email address, and telephone number.

Profile Data:
Information related to your preferences, engagement with content, language settings, purchase history, and behavior patterns on the Website.

Communication Data:
Includes records of communications with us, such as inquiries submitted via contact forms or customer support interactions, as well as any correspondence, feedback, or complaint history.

Technical Data:
Encompasses data about your device and system settings, including operating system, screen resolution, browser plug-ins, time zone configuration, and hardware specifications.

Transaction Data:
Details relating to any purchases or transactions undertaken on the Website, including billing and shipping details, partial payment information, and product fulfillment status.

Preference Data:
Includes your expressed marketing preferences, subscription settings, opt-in/opt-out choices, and interests related to our content or third-party offerings.

4. Legal Bases for Processing

We process personal data under the following lawful bases, in accordance with Article 6 of the GDPR and applicable CCPA provisions:

– Consent: Where you have given clear affirmative consent for us to process your personal data for a specific purpose (e.g., subscribing to newsletters, accepting cookies).
– Contractual Necessity: Processing necessary for the performance of a contract with you, or to take steps at your request prior to entering into a contract (e.g., fulfilling orders).
– Legitimate Interests: Processing necessary for our legitimate business interests, provided such interests are not overridden by your rights and freedoms (e.g., Website security, service improvement).
– Legal Obligation: Processing necessary to comply with a legal obligation or regulatory requirement (e.g., fiscal compliance).

5. Your Data Protection Rights

As a data subject within the EU or California (or equivalent jurisdictions), you have the following rights concerning your personal data:

– Right of Access: Request access to the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your data, subject to legal requirements.
– Right to Restrict Processing: Request that processing of your data be limited in certain circumstances.
– Right to Data Portability: Receive a copy of your data in a commonly used electronic format, or request its transfer to another service provider.
– Right to Object: Object to processing, where processing is based on legitimate interests or direct marketing.
– Right to Non-Discrimination: Exercise your CCPA-conferred rights without fear of discrimination.

You may exercise your rights by contacting us at [email protected].

6. Security Measures

We implement robust technical and organizational measures to safeguard your personal data, including:

– Data encryption at rest and in transit using industry standards.
– Secure access protocols and multi-level authentication for authorized personnel.
– Routine data backups and secure storage infrastructure.
– Regular cybersecurity and privacy training for staff handling personal data.
– Continuous vulnerability assessments and system audits.

7. International Transfers

When transferring personal data outside of the European Economic Area (EEA), we ensure adequate protection through:

– Standard Contractual Clauses as approved by the European Commission.
– Appropriate supplementary measures where necessary.
– Ensuring transfers comply with the recipient country’s applicable data protection framework, including U.S. state-level rules where relevant.

8. Data Retention

We retain your data only as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless longer retention is required or permitted by law. The following timeframes generally apply:

– Account Data: Retained until account closure or 24 months after last activity.
– Transaction Data: Retained for up to 7 years for legal and taxation purposes.
– Communication Data: Retained for up to 3 years for support metadata.
– Marketing and Preference Data: Retained until revoked or unsubscribed, with periodic reconfirmation as required.
– Technical Logs: Retained for a rolling 12-month cycle for security audits.

9. Cookie Policy

Our Website uses cookies and similar technologies to enhance user experience and analyze traffic. Categories of cookies used include:

– Essential Cookies: Necessary for core site functionality (e.g., security, session management).
– Functional Cookies: Enable enhanced features like remembering preferences.
– Performance Cookies: Monitor performance metrics and technical issues.
– Analytics Cookies: Help analyze usage data to improve content and services.

We respect browser-level Do Not Track signals and comply with consent obligations.

10. Cookie Management

Upon your first visit to heartofamurderer.com, you will be presented with a consent tool that allows you to manage your cookie preferences. You may renew or modify these choices at any time through the “Cookie Settings” link in the Website footer.

In accordance with GDPR and CCPA, no non-essential cookies are used unless affirmative opt-in is granted.

11. Children’s Privacy

Our Website is not intended for use by individuals under the age of 13. We do not knowingly collect or solicit personal information from children. If we become aware that we have inadvertently collected personal data from a child under 13, we will promptly delete such information. Parents or guardians who believe we may have collected data about a minor are encouraged to contact us at [email protected].

12. Policy Updates

We may revise this Privacy Policy from time to time to reflect operational, legal, or regulatory changes. Users will be notified of substantive changes via appropriate channels, including Website banners, email notices, or updated notices on heartofamurderer.com. Continued use of the Website constitutes acceptance of the updated terms.

13. Contact Us

If you have questions, requests, or concerns related to this Privacy Policy or our data practices, you may contact us directly at:

Heart of a Murderer
Email: [email protected]
Website: heartofamurderer.com

We are fully committed to ensuring your privacy rights under applicable laws and encourage you to reach out with any privacy-related concerns.