ConniesArtsandCrafts.com - Privacy Policy

Who We Are
Our website address is: https://conniesartsandcrafts.com.

Comments
When visitors leave comments, we collect the data provided in the comments form, the visitor’s IP address, and browser user agent to help detect spam.

An anonymized string (hash) of your email address may be shared with the Gravatar service to check if you are using it. Gravatar’s privacy policy is available at https://automattic.com/privacy/. Approved comments display your profile picture publicly in the comment’s context.

Media
Avoid uploading images containing embedded location data (EXIF GPS), as visitors can download and extract this information.

Cookies
We use cookies for various functionalities:

Comments: Cookies save your name, email, and website for convenience. These last one year.
Login: Temporary cookies check browser compatibility, and login cookies store login details for two days (or two weeks if “Remember Me” is selected).
Editing: A one-day cookie tracks the article ID of any edited or published post.
Newsletters: MailPoet uses cookies to track subscriber engagement and form dismissals.

Embedded Content
Articles may include embedded content (e.g., videos, articles) from other websites, which may collect your data, use cookies, or track interactions as if you visited their website.

Data Sharing

If you reset your password, your IP address is included in the reset email.
Comments are checked using automated spam detection services.

Data Retention

Comments and their metadata are stored indefinitely for moderation purposes.
Registered users’ data is stored as long as the account exists or is legally required.

Your Data Rights
You can request an export of your personal data or ask us to erase it. This excludes data retained for legal, administrative, or security purposes.

Where Your Data Is Sent
Visitor comments are checked via an automated spam detection service.

MailPoet Newsletters
We collect subscriber data (name, email, and IP address) to send newsletters and track engagement via the MailPoet Sending Service.

WooCommerce Store
We collect and store the following during checkout:

Products viewed and added to your cart.
Location, IP address, and browser type for tax and shipping estimation.
Personal information like name, billing/shipping address, email, and phone for processing orders and communication.

Data Access
Administrators and Shop Managers can access order and customer details to process payments, fulfill orders, and offer support.

Third-Party Sharing
We share your data with third parties like PayPal to process payments. View PayPal’s privacy policy at https://www.paypal.com/us/webapps/mpp/ua/privacy-full.

Donations
For donations made via WooCommerce’s Donation Platform, we securely store your information for issuing receipts, compliance, and acknowledgment purposes. You can choose how your donation appears publicly.

Analytics and Monitoring
We track pages viewed, browser user agents, and anonymized IP data to analyze site usage and improve user experience.

GDPR Compliance

If you are a resident of the European Union (EU), we process your personal data under the following lawful bases:

Your consent.
The performance of a contract with you.
Compliance with legal obligations.
Our legitimate interests, provided these do not override your rights.

Under GDPR, you have the right to:

Access, correct, or delete your personal data.
Object to or restrict the processing of your personal data.
Data portability, where applicable.
Withdraw your consent at any time.

To exercise your rights, contact us at [email address]. You may also lodge a complaint with a data protection authority if you believe we have not handled your data appropriately.

Data Transfers
Data collected may be transferred to and processed outside the EU, where data protection laws may differ. We ensure appropriate safeguards, such as contractual agreements, are in place to protect your data.

CCPA Compliance

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

Right to Know: Request information about the personal data we collect, use, and share.
Right to Delete: Request that we delete your personal information, subject to certain exceptions.
Right to Opt-Out: Opt-out of the sale of your personal data (we do not sell personal data).
Non-Discrimination: You will not be discriminated against for exercising your CCPA rights.

To make a request, contact us at [email address] or call us at [phone number]. We may verify your identity before processing your request.

Categories of Information Collected
We collect the following categories of personal information:

Identifiers such as name, email address, and IP address.
Commercial information such as order history.
Internet activity such as browsing and interaction data.

Plugin Specific

Our plugins and add-ons are compatible with GDPR. Below are the common questions related to GDPR.

Do your plugins track any data?

We do not track any user data via our plugins. But if our plugin depends on any third party service, they might track user data. This can happen in following two ways:

1. Embedded Widgets

Some of our plugins have features to integrate embedded widgets as is, from third party services (like Facebook Like, Facebook Recommend, Twitter Tweet official buttons). You can include relevant text in the privacy policy of your website as mentioned below.

2. Third-party APIs/Connections

Our plugins send request to third party APIs via website-visitor’s web browser to fetch information (like social shares, social comment count). This request made by web browser may include IP address, which can then be seen by the third-party that it’s being requested from. This API request doesn’t include any personal data of the website user other than the IP address. To make your users aware of this, you can include relevant snippets in your website’s privacy policy.

Where is the data collected by your plugins stored?

We do not store any data fetched by our plugins on our servers, neither we share that data with any third party. Our plugins run absolutely on your website and store the data in the database of your website.

Do your plugins load any external scripts?

As mentioned before, our plugins run absolutely from your website and hence load the scripts too from your website with exception of third-party embedded widgets (like Facebook Like/Recommend official button, Twitter tweet official button, Facebook Comments) which require our plugin to load scripts from the servers of relevant service. You can include relevant snippets in the Privacy Policy of your website stating how these services handle privacy of your users.

Super Socializer – Social Login

We collect your public profile data only from your consent that you grant before initiating Social Login, from the social network used to login at our website. This data includes your first name, last name, email address, link to your social media profile, unique identifier, link to social profile avatar or the social profile avatar itself in the case of Facebook and Linkedin login. This data is used to create your user profile at our website. You can revoke this consent at any time from your profile page at our website or by sending us an email.

Facebook Comments

We embed Facebook Comments plugin to allow you to leave comment at our website using your Facebook account. This plugin may collect your IP address, your web browser User Agent, store and retrieve cookies on your browser, embed additional tracking, and monitor your interaction with the commenting interface, including correlating your Facebook account with whatever action you take within the interface (such as “liking” someone’s comment, replying to other comments), if you are logged into Facebook. For more information about how this data may be used, please see Facebook’s data privacy policy: https://www.facebook.com/about/privacy/update