Privacy Policy for Frank And Oak
Frank And Oak (“we,” “us,” or “our”) is committed to safeguarding the privacy and personal data of our users, customers, and site visitors. This Privacy Policy outlines our practices regarding the collection, processing, and protection of your personal data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We take a privacy-first approach in all our operations to ensure transparency, accountability, and user control.
By using or accessing our website (frankanoak.com) or otherwise communicating with us, you agree to the terms outlined in this Privacy Policy.
1. Introduction — Commitment to Data Protection
At Frank And Oak, your privacy is our priority. We believe in responsible and transparent data handling and are committed to protecting the personal data you share with us. All data is collected and processed in accordance with applicable data protection laws, with a focus on minimizing unnecessary collection while maximizing your control over your information.
2. Scope and Data Controller
This Privacy Policy applies to all data collected through your use of frankanoak.com, our digital properties, and our communications with you (collectively, the “Services”). Frank And Oak, as the data controller, determines the purposes and means of processing personal data. As such, we are responsible for ensuring that your data is handled lawfully and securely.
For queries about this Privacy Policy or your personal data, please contact us at [email protected].
3. Categories of Data We Process
We collect and process the following categories of personal data depending on your use of our Services:
– Usage Data: Includes information about how you access and interact with frankanoak.com, such as IP address, browser type, access times, pages viewed, referring URLs, and session data.
– Account Data: Information provided when you create an account or place an order, such as your name, mailing address, email, and telephone number.
– Profile Data: Includes data collected from your preferences, past purchases, item interests, and behavioral patterns on our platform.
– Communication Data: Consists of records of your interactions with us, including customer support inquiries, feedback, or other correspondence.
– Technical Data: Device identifiers, operating system, browser settings, network connections, and other technical diagnostics.
– Transaction Data: Includes payment card details (processed securely through PCI-compliant providers), purchase history, billing and shipping addresses, and delivery tracking.
– Preference Data: Consists of marketing preferences, opt-in and opt-out choices, and product selection interests.
4. Legal Bases for Processing Personal Data
We rely on the following legal bases to process your personal data:
– Consent: Where you have explicitly provided consent (e.g., for marketing communication).
– Contractual Necessity: For processing related to fulfilling your purchases or account services.
– Legitimate Interests: For processing necessary to our operations, such as site analytics, fraud prevention, and personalized experience (balanced against your rights and freedoms).
– Legal Obligation: When necessary to comply with our legal or regulatory obligations.
5. Your Rights
Under GDPR, CCPA, and other applicable laws, you have certain rights regarding your personal data:
– Right of Access: You may request a copy of your personal data that we process.
– Right of Rectification: You may request corrections to any incomplete or inaccurate data.
– Right to Erasure: You may request deletion of your personal data under certain circumstances.
– Right to Restrict Processing: You may ask us to limit how we use your data.
– Right to Data Portability: You may request transfer of your data to another controller.
– Right to Withdraw Consent: Where we rely on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
– Right to Object: You may object to processing based on our legitimate interests or submitted for direct marketing purposes.
To exercise any of these rights, please contact [email protected].
6. Security Measures
Frank And Oak implements technical and organizational safeguards to protect your data, including:
– Encryption of personal and transactional data (SSL/TLS).
– Access controls and authentication protocols.
– Regular data backups and disaster recovery systems.
– Staff training and confidentiality obligations.
– Secure hosting and infrastructure maintained by trusted providers.
Although no system is infallible, we continuously assess and improve our security infrastructure to ensure the highest standards of data protection.
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with equivalent laws, we rely on approved legal mechanisms such as Standard Contractual Clauses (SCCs) and ensure appropriate safeguards are in place.
8. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including:
– Account Data: Retained for the duration of your account’s existence and a reasonable period thereafter to accommodate interests such as reactivation or dispute resolution.
– Transaction Data: Retained for up to 7 years for legal, tax, and regulatory compliance purposes.
– Usage and Technical Data: Retained for up to 36 months for analytics and service improvement.
– Communication Data: Retained for 3 years following closure of an inquiry or resolution.
– Preference Data: Retained based on opt-in status and segmented interest profiles, generally no longer than 2 years unless continually updated.
We periodically review our retention practices to meet legal and operational requirements.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance user experience, improve performance, and support essential site functions. These include:
– Essential Cookies: Necessary for website functionality (e.g., cart management, security, session authentication).
– Functional Cookies: Enable enhanced personalization and remember user preferences.
– Analytics Cookies: Help us understand how users interact with our website using aggregated data (e.g., Google Analytics).
– Performance Cookies: Monitor and improve overall site speed and responsiveness.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, we provide tools that enable you to manage your cookie preferences. On your first visit to frankanoak.com, you will be presented with a consent banner enabling you to accept or reject non-essential cookies. You may change your preferences at any time by visiting our Cookie Settings or adjusting your browser settings.
Under CCPA, California residents have the right to opt-out of the sale of personal information. While we do not sell your information in the conventional sense, you may exercise your rights regarding data sharing by reaching out to us at [email protected].
11. Children’s Privacy
Our Services are not intended for use by children under the age of 13. We do not knowingly collect personal data from children. If we become aware that personal data has been collected from a child without verifiable parental consent, we will take appropriate steps to delete such data promptly.
12. Policy Updates and Notifications
We reserve the right to revise this Privacy Policy from time to time to reflect changes in law, technology, business practices, or user needs. Any material updates will be posted prominently on frankanoak.com. Your continued use of the Services following such updates constitutes acceptance of the revised Policy.
We encourage you to review this Privacy Policy periodically to stay informed about our privacy practices.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us at:
Email: [email protected]
We are committed to addressing your inquiries promptly and transparently.
Compliance Statement
Frank And Oak complies with applicable privacy and data protection laws, including GDPR and CCPA. If you have any concerns regarding how your data is handled, do not hesitate to reach out at [email protected].