Privacy Policy
1. Introduction
Little Rock Records (“we,” “us,” or “our”) is committed to safeguarding the privacy of our users and protecting their personal data in accordance with applicable data protection legislation, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant laws. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you visit and interact with our website, littlerockrecords.com.
We prioritize transparency and fairness in our data practices and aim to give you full control over your personal information.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data processed through littlerockrecords.com and associated services provided by Little Rock Records. For the purposes of the GDPR and other applicable data protection legislation, Little Rock Records acts as the Data Controller for personal data collected through this website.
If you have any questions or concerns regarding the processing of your data, you may contact us at [email protected].
3. Categories of Data We Process
We collect and process various categories of personal data depending on your interactions with littlerockrecords.com. These include:
a. Usage Data:
– IP address
– Browser type and version
– Operating system and platform
– Referral sources and exit pages
– Access times and frequency
– Website activity logs
b. Account Data:
– Full name
– Physical address
– Email address
– Phone number
– Login credentials (encrypted)
c. Profile Data:
– Purchase history
– Preference settings
– Interests in specific music products or genres
– Behavior while browsing
d. Communication Data:
– Customer support inquiries
– Contact form submissions
– Email correspondence history
e. Technical Data:
– Device type
– Language settings
– System configuration
– Internet service provider details
f. Transaction Data:
– Payment method (excluding full payment card details)
– Transaction ID
– Delivery and shipping information
– Order history
g. Preference Data:
– Marketing and newsletter opt-ins
– Product recommendations
– Communication preferences
4. Lawful Bases for Processing
Our processing of your personal data is based on one or more of the following legal bases:
– Consent: where you have explicitly agreed to our processing of personal data (e.g., signing up for newsletters).
– Contractual necessity: when processing is required to fulfill a contract (e.g., completing a merchandise order).
– Legitimate interest: for purposes such as product development, fraud prevention, and improving user experience, where such interests are not overridden by your rights.
– Legal obligation: to comply with applicable laws, regulatory obligations, or enforceable governmental requests.
5. Your Data Protection Rights
Under the GDPR, CCPA, and other relevant legislation, you have the following rights:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may correct incomplete or inaccurate information.
– Right to Erasure (“Right to be Forgotten”): You may request deletion of your personal data.
– Right to Restrict Processing: You may limit the ways we use your data.
– Right to Data Portability: You may receive your data in a structured, commonly used format.
– Right to Object: You may object to processing based on legitimate interest or direct marketing.
– Right to Withdraw Consent: Where applicable, you may withdraw consent at any time without affecting the lawfulness of prior processing.
To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before fulfilling your request.
6. Security Measures
We implement strict physical, technical, and administrative safeguards to protect your personal data, including:
– SSL encryption for all website traffic
– Access controls limiting data access to authorized personnel only
– Routine backups and disaster recovery protocols
– Employee privacy training and security awareness programs
– Secure data storage and transmission protocols
Despite these measures, no transmission of data over the internet can ever be fully secure. We cannot guarantee the absolute security of your data but commit to following industry best practices.
7. International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with specific data transfer restrictions, we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission. We also ensure compliance with local data protection requirements in all applicable jurisdictions.
By using littlerockrecords.com, you acknowledge that your data may be transferred and processed outside your country of residence under appropriate legal safeguards.
8. Data Retention
We retain personal data only as long as necessary for the purposes it was collected, or to satisfy legal, contractual, or regulatory obligations. Below are general retention periods per data type:
– Usage, Technical, and Analytics Data: up to 24 months
– Account and Profile Data: retained as long as the account is active
– Transaction Data: retained for up to 7 years for tax and audit purposes
– Communication Data: retained for up to 3 years following last contact
– Preference Data: retained until you withdraw consent or manage your preferences
Once retention periods elapse or data is no longer needed, it will be securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience on littlerockrecords.com. Our use of cookies falls into the following categories:
– Essential Cookies: Necessary for site operation (shopping cart, login, etc.)
– Functional Cookies: Allow site personalization and remember your preferences
– Performance Cookies: Collect anonymous statistics on page usage and errors
– Analytics Cookies: Help us understand user behavior to improve service
10. Cookie Management and Compliance
Upon first visit, you will be prompted to manage your cookie preferences in compliance with GDPR and CCPA requirements. You may update your cookie settings at any time via your browser settings or our Cookie Consent Manager located on our site.
For CCPA compliance, California residents may opt out of the sale or sharing of personal data by using our dedicated “Do Not Sell or Share My Personal Information” link available in the site footer or by emailing us at [email protected].
11. Children’s Privacy
This website and our services are not directed to children under the age of 13. We do not knowingly collect or process personal data from anyone under 13. If you believe we have inadvertently collected data concerning a minor, please contact us immediately at [email protected] so we may promptly delete the data.
12. Policy Updates and Notifications
We may update this Privacy Policy to reflect changes in technology, law, or our data practices. In the event of material changes, we will inform you via prominent notices on littlerockrecords.com or via email, depending on your notification preferences.
You are encouraged to review this Privacy Policy periodically to stay informed about how we collect and protect your information.
13. Contacting Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
We aim to respond to all legitimate requests in a timely manner and within any legally required timeframes.
At Little Rock Records, we take your privacy seriously and strive to maintain the highest standards of data protection. For any privacy concerns, do not hesitate to reach out to us at [email protected].