Privacy Policy
At Luke and Jose (“Company”, “we”, “our”, or “us”), accessible via https://lukeandjose.com, we value and respect your privacy. This Privacy Policy outlines our firm commitment to protecting your personal information in accordance with applicable laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We are dedicated to handling your data with care, transparency, and accountability.
1. Introduction
Your trust is important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you interact with our website and services offered via lukeandjose.com. We are committed to maintaining robust privacy practices to honor this responsibility.
2. Scope of the Policy and Data Controller Role
This Privacy Policy applies to personal data collected through our website, related services, communications, and interactions. For the purposes of applicable data protection legislation, we act as the “data controller” when determining how and why your personal data is processed.
If you have any questions about this Policy or how your personal information is handled, you can contact us at [email protected].
3. Categories of Data Processed
We collect and process various categories of personal data as outlined below:
A. Usage Data
We collect non-identifying information such as your browser type, IP address, pages visited, referral URLs, access times, and session durations. This data helps us optimize the user experience and secure our website.
B. Account Data
When you create an account or sign up for services on lukeandjose.com, we may collect your name, email address, physical address, and phone number to manage your profile and enable essential functions.
C. Profile Data
This includes your preferences, past order history, areas of interest, and online behavior data such as browsing and purchase habits. It may be linked with Account or Usage Data to personalize your experience.
D. Communication Data
We collect data when you contact customer support or reply to emails or chat features. This includes your messages, contact history, and related metadata.
E. Technical Data
We gather information on the devices you use to access our services including device type, operating system, IP configuration, and other system diagnostics to enhance technical performance and troubleshoot issues.
F. Transaction Data
To complete purchases, we collect data such as billing address, shipping details, payment method (we do not store full payment credentials), and order confirmations.
G. Preference Data
We collect marketing preferences, your confirmed consent status for communications, and your indicated product interests to tailor messaging and offers accordingly.
4. Legal Bases for Processing
We process your personal data under lawful bases as defined in Article 6 of the GDPR and other applicable data protection laws. These bases include:
– Consent: Where you have explicitly consented to our processing (e.g., marketing emails).
– Contractual Necessity: Where processing is necessary to fulfill a service or transaction you request.
– Legal Obligation: Where processing is required by law.
– Legitimate Interests: Where processing supports operational functions such as security, optimization, and service improvement, provided such interests are not outweighed by your privacy rights.
5. Your Rights
As a data subject, you have the following rights:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You can request correction of inaccurate or incomplete data.
– Right to Erasure: You may ask us to delete your personal data under certain conditions.
– Right to Restriction: You may restrict our processing of your data in specific scenarios.
– Right to Data Portability: You may request us to transfer your personal information to you or a third party in a structured, commonly used format.
– Right to Object: You may object to processing where your data is processed on grounds of legitimate interest or direct marketing.
To exercise any of these rights, please contact us at [email protected]. We will respond in accordance with applicable data protection laws.
6. Security Measures
We implement appropriate technical and organizational safeguards to protect your personal data. These include but are not limited to:
– Encryption of sensitive data in transit and at rest
– Role-based access controls and authentication mechanisms
– Regular system backups
– Training programs for employees handling personal data
– Routine audits and monitoring of infrastructure
While no method of digital transmission or storage is 100% secure, we consistently assess and enhance our security measures.
7. International Transfers
Your information may be processed and stored outside your country of residence, including in jurisdictions that may not offer the same level of data protection. When this occurs, we rely on appropriate legal mechanisms including Standard Contractual Clauses (SCCs) approved by the European Commission or other recognized safeguards to ensure compliance with international data transfer requirements.
8. Data Retention
We only keep your personal data for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Categories and typical retention periods include:
– Usage Data: Retained for up to 12 months for analytics and security
– Account Data: Retained as long as your account is active
– Transaction Data: Retained for 7 years for legal and accounting purposes
– Communication Data: Retained for up to 2 years for support and service tracking
– Marketing Preference and Profile Data: Retained until you update preferences or withdraw consent
9. Cookie Policy
We use cookies and similar technologies to enhance site performance and user experience. Cookies we employ include:
– Essential Cookies: Required for site functionality
– Functional Cookies: Support choices like region selection and user settings
– Analytics Cookies: Help us understand site usage patterns
– Performance Cookies: Optimize response time and user interface performance
Cookies may be set by us (first-party) or trusted third-party partners.
10. Cookie Management & Compliance
Upon your first visit to lukeandjose.com, you will be presented with information about the use of cookies and given the opportunity to manage your preferences. You may adjust cookie settings at any time through your browser or via our Cookie Preferences Center.
Our use of cookies complies with the requirements of GDPR and CCPA, including obtaining affirmative consent before deploying non-essential cookies and offering opt-out mechanisms.
11. Children’s Privacy
Our services are not intended for individuals under the age of 13, and we do not knowingly collect personal data from children. If it comes to our attention that we have inadvertently collected data from someone under the age of 13, we will take prompt action to delete it. Parents or legal guardians may contact us at [email protected] to review or delete their child’s information.
12. Policy Updates
We reserve the right to make changes to this Privacy Policy from time to time to reflect technology, legal, or service developments. Where changes are material, we will take appropriate steps to inform you, such as by posting an update or sending a notification.
13. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or our handling of your personal data, please contact:
Luke and Jose
Email: [email protected]
Website: https://lukeandjose.com
We are committed to complying with applicable privacy laws and upholding the highest standards in personal data protection. If you believe your data is not being properly managed or wish to escalate an issue, we welcome hearing from you and resolving your concern promptly.