Privacy Policy

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website, purchase our photographic prints or canvas artwork, or interact with our services. By using our website, you agree to the practices described in this policy. If you do not agree, please do not use our website.1. Information We CollectWe collect information to provide and improve our services, process orders, and comply with legal obligations. The types of information we collect include:1.1 Personal Information You Provide:

• Order Information: When you place an order, we collect your name, billing address, shipping address, email address, phone number, and payment details (e.g., credit card information processed via third-party payment providers).
• Account Information: If you create an account, we collect your name, email address, and password.
• Communications: Information you provide when contacting us (e.g., via email at [insert contact email] or customer support forms), such as inquiries or feedback.
• Returns: For defective product returns, we may collect additional details, such as photos of the product and order confirmation.

1.2 Automatically Collected Information:

• Browsing Data: We collect data about your device and website usage, including IP address, browser type, operating system, referring URLs, pages visited, and time spent on the site, using cookies, web beacons, or similar technologies.
• Analytics: We use tools like Google Analytics to track website performance and user behavior (e.g., pages viewed, cart activity). This data is typically aggregated and anonymized.
• Cookies: We use cookies to enhance your experience (e.g., remembering cart items) and for analytics. You can manage cookie preferences via your browser settings.

1.3 Information from Third Parties:

• We may receive information from third-party services, such as payment processors (e.g., PayPal, Stripe) confirming transaction details or shipping carriers verifying delivery.

2. How We Use Your Information. We use your information to operate our business, fulfill orders, and improve our services. Specific uses include:

2.1 Order Processing:

• To process and ship your purchases of photographic prints and canvas artwork.
• To communicate order confirmations, shipping updates, or return instructions.
• To process payments and prevent fraudulent transactions.

2.2 Customer Support:

• To respond to inquiries, process returns for defective products, or resolve issues.
• To verify your identity for account or order-related requests.

2.3 Website Improvement:

• To analyze website usage (e.g., via Google Analytics) to optimize performance, fix bugs, and enhance user experience.
• To personalize content, such as recommending products based on browsing history.

2.4 Marketing (if applicable):

• To send promotional emails or newsletters about new artwork, sales, or updates, if you opt in. You can unsubscribe at any time via the link in our emails or by contacting us at [insert contact email].
• To display targeted ads on other platforms (e.g., via Google Ads), based on anonymized data.

2.5 Legal Compliance:

• To comply with applicable laws, such as tax reporting or consumer protection regulations.
• To protect our intellectual property, including Class 016 and Class 041 trademarks, and respond to legal requests.

3. How We Share Your InformationWe do not sell your personal information. We share information only as necessary to operate our business or comply with legal obligations, including:

3.1 Third-Party Service Providers:

• Hosting: GoDaddy hosts our website and stores data on secure servers.
• Payment Processors: Providers like PayPal or Stripe process payments securely. We do not store full credit card details.
• Shipping Carriers: Companies like USPS or FedEx receive your name and shipping address to deliver orders.
• Analytics: Google Analytics collects anonymized data to track website performance.
• Marketing Tools: If you opt into marketing, third-party platforms (e.g., Mailchimp) may manage email campaigns.

3.2 Legal and Business Purposes:

• To comply with legal obligations, such as responding to subpoenas or tax audits.
• To protect our rights, property, or safety, including enforcing our Class 016 and Class 041 trademarks.
• In connection with a business transfer (e.g., sale of John Mastell Store), where your data may be transferred to the new owner under similar privacy protections.

3.3 Aggregated Data:

• We may share anonymized, aggregated data (e.g., website traffic statistics) with partners or publicly for analytics or marketing purposes.

4. Cookies and Tracking Technologies4.1 Cookies: We use cookies to:

• Maintain your session (e.g., keep items in your cart).
• Track analytics (e.g., via Google Analytics to understand site usage).
• Personalize your experience (e.g., recommend products). 4.2 Managing Cookies: You can disable cookies in your browser settings, but this may limit website functionality (e.g., inability to save cart items). 4.3 Third-Party Tracking: Tools like Google Analytics may use cookies to collect anonymized data. See Google’s Privacy Policy for details. You can opt out using Google’s Analytics Opt-Out Browser Add-On.

5. Your Rights and ChoicesDepending on your location, you may have rights regarding your personal information. We provide the following options:

5.1 Access and Update:

• Log into your account to view or update your personal information (e.g., address, email).
• Contact us at [insert contact email] to request access to your data.

5.2 Marketing Opt-Out:

• Unsubscribe from promotional emails using the link in our emails or by emailing johnmastell1@gmail.com
• Opt out of targeted ads via your browser’s Do Not Track settings or ad network opt-out tools (e.g., Network Advertising Initiative).

5.3 Data Deletion:

• Request deletion of your personal information by emailing [insert contact email]. We will comply unless required to retain data for legal purposes (e.g., tax records).
• Note: Deletion may not remove anonymized data used for analytics.

5.4 California Residents (if applicable):

• Under the California Consumer Privacy Act (CCPA), you may have rights to access, delete, or opt out of the “sale” of personal information. We do not sell data, but you can exercise other rights by contacting us at [insert contact email].
• We will respond within 45 days, as required by law.

5.5 International Users (e.g., EU/UK):

• If you’re in the EU or UK, GDPR grants you rights to access, rectify, erase, restrict, or port your data, and object to processing. Contact us at [insert contact email] to exercise these rights.
• We process data based on legitimate interests (e.g., order fulfillment) or consent (e.g., marketing). You can withdraw consent at any time.

6. Data Security6.1 Measures: We use industry-standard security measures, such as SSL encryption, to protect your data during transmission and storage. GoDaddy provides secure hosting, and payment processors use PCI-compliant systems. 

6.2 Limitations: No system is 100% secure. We are not liable for unauthorized access beyond our reasonable control (e.g., hacking). 

6.3 Your Responsibility: Keep your account password confidential and notify us immediately at [insert contact email] if you suspect unauthorized access.

7. Data Retention7.1 Retention Period: We retain personal information only as long as necessary to fulfill orders, provide services, or comply with legal obligations (e.g., tax records for 7 years).

 7.2 Deletion: After the retention period, we delete or anonymize data unless required by law. Contact us to request deletion (see Section 5.3).

8. International Data Transfers8.1 U.S.-Based Operations: Our servers and third-party providers (e.g., GoDaddy, Google Analytics) are primarily U.S.-based. If you’re outside the U.S., your data is transferred to and processed in the U.S., subject to U.S. laws.

 8.2 EU/UK Compliance: For EU/UK customers, we rely on Standard Contractual Clauses (SCCs) or other lawful mechanisms to transfer data to the U.S. Contact us for details.

9. Third-Party LinksOur website may contain links to third-party sites (e.g., PayPal, social media). We are not responsible for their privacy practices. Review their policies before providing information.10. Children’s PrivacyOur website is not intended for children under 13 (or 16 in some jurisdictions, e.g., EU). We do not knowingly collect data from children. If we learn such data has been collected, we will delete it. Contact us at johnmastell1@gmail.com if you believe this has occurred.

11. Changes to This PolicyWe may update this Privacy Policy to reflect changes in our practices or legal requirements. Updates will be posted on this page with a new “Last Updated” date. Your continued use of the website constitutes acceptance of the updated policy. Check this page periodically for changes.

12. Contact Us For questions, requests, or concerns about your privacy, contact us at:

• Email: [insert contact email, e.g., info@johnmastell.store]

We aim to respond within 3 days. For GDPR-related inquiries, you may also contact your local data protection authority.

13. Governing LawThis Privacy Policy is governed by the laws of Delaware, USA, without regard to conflict of law principles, consistent with our Terms and Conditions. Any disputes will be resolved through arbitration in Wilmington, Delaware, as outlined in our Terms.