GDPR Compliance

Your data protection rights under the General Data Protection Regulation (GDPR)

About GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that applies to all EU residents. It gives you control over your personal data and requires organizations to be transparent about how they collect, use, and protect your information.

At Keepsake Photo Magnets, we are committed to protecting your privacy and ensuring compliance with GDPR requirements.

Your GDPR Rights

Right to Access

You can request a copy of all personal data we hold about you.

Right to Rectification

You can request correction of inaccurate or incomplete data.

Right to Erasure

You can request deletion of your personal data ("right to be forgotten").

Right to Portability

You can request your data in a structured, machine-readable format.

Right to Restriction

You can request limited processing of your data in certain circumstances.

Right to Object

You can object to processing of your data for specific purposes.

Personal Data We Collect

Account Information

  • • Name and contact details
  • • Email address and phone number
  • • Shipping and billing addresses
  • • Account preferences and settings

Order Information

  • • Purchase history and order details
  • • Payment information (processed securely)
  • • Shipping and delivery information
  • • Customer service interactions

Website Usage

  • • Browsing behavior and preferences
  • • Device and browser information
  • • IP address and location data
  • • Cookies and tracking technologies

User Content

  • • Photos and images you upload
  • • Custom designs and preferences
  • • Reviews and feedback
  • • Communications with our team

Legal Basis for Processing

Contract Performance

We process your data to fulfill orders, provide customer support, and deliver our services.

Legitimate Interest

We may process data to improve our services, prevent fraud, and provide personalized experiences.

Consent

For marketing communications and certain cookies, we rely on your explicit consent.

Legal Obligation

We may process data to comply with legal requirements, such as tax obligations.

Data Sharing and Transfers

We may share your data with trusted third parties for specific purposes:

Service Providers

Payment processors, shipping partners, and technology providers who help us deliver our services.

Legal Requirements

When required by law or to protect our rights and safety.

Business Transfers

In the event of a merger, acquisition, or sale of assets.

We ensure all data transfers comply with GDPR requirements and use appropriate safeguards.

Data Retention

We retain your personal data only as long as necessary for the purposes outlined in our Privacy Policy:

Account Data

Retained while your account is active and for 3 years after account closure.

Order Information

Retained for 7 years for tax and accounting purposes.

Marketing Data

Retained until you withdraw consent or for 2 years after last interaction.

Exercising Your Rights

To exercise your GDPR rights, you can:

Contact Us Directly

Email us at gdpr@keepsakephotomagnets.com with your request.

Use Your Account

Access and update your information through your account settings.

Cookie Preferences

Manage your cookie preferences through our cookie consent banner.

We will respond to your request within 30 days and may request additional information to verify your identity.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance:

Email: dpo@keepsakephotomagnets.com

Phone: 1-800-MAGNETS

Address: Senatobia, MS

You can contact our DPO directly with any questions about your data protection rights or our privacy practices.

Lodging Complaints

If you believe we have not handled your personal data appropriately, you have the right to lodge a complaint with your local data protection authority.

We encourage you to contact us first to resolve any concerns, but you have the right to contact your supervisory authority at any time.

Updates to This Policy

We may update this GDPR information from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes and update the "Last updated" date at the top of this page.

Your continued use of our services after any changes constitutes acceptance of the updated policy.