We are staunchly committed to protecting and meticulously safeguarding the privacy, confidentiality, and security of personal information relating to our website visitors and service users. This commitment extends across all our operations, systems, and processes.
This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data. In this role, we are responsible for maintaining comprehensive oversight of how your personal information is collected, used, and protected throughout our systems.
We may process usage data (“usage data”), which comprehensively includes browser type and version, operating system details, page view timestamps, interaction patterns, shopping behaviors, and navigation paths. This information is collected through automated tracking technologies, server logs, and cookies and may include product viewing history, shopping cart interactions, and checkout processes. The source of this data is our analytics tracking system and website infrastructure. We process this information for several important purposes, including improving website performance, enhancing user experience, analyzing shopping trends, and optimizing product offerings, which enables us to deliver personalized content, improve site functionality, and enhance security measures. The legal basis for this processing is our legitimate interests in monitoring and improving our website and services.
We may process account data (“account data”), which comprehensively includes name, email address, telephone number, billing address, shipping address, and payment information. This information is collected through registration forms, checkout processes, and account updates and may include newsletter preferences, order history, and saved payment methods. The source of this data is direct user input during account creation and transactions. We process this information for order fulfillment, account management, customer support, and marketing communications, which enables us to provide seamless shopping experiences, process transactions, and maintain customer relationships. The legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter into such a contract.
We may process profile data (“profile data”), which comprehensively includes username, profile picture, wrestling preferences, size information, favorite wrestlers, and shopping preferences. This information is collected through profile creation, preference settings, and customer surveys and may include wish lists, product reviews, and forum contributions. The source of this data is your direct input and interaction with our platform. We process this information for personalizing user experience, providing relevant product recommendations, community engagement, and marketing optimization, which enables us to enhance your shopping experience, facilitate community interactions, and improve our services. The legal basis for this processing is our legitimate interests in providing personalized services and maintaining an engaged user community.
Your Rights
Right to Access
You have the right to access your personal data, which means you can request a copy of all information we hold about you and confirm how we are using it. This includes the ability to receive detailed records of your personal information, verify the lawfulness of processing, and obtain copies of your data in a commonly used format. To exercise this right, you can submit a formal request through our dedicated privacy portal or contact our data protection team directly. We will respond within 30 days of your request and may require government-issued identification, proof of address, and account verification to verify your identity.
Right to Rectification
You have the right to rectification, which means you can request corrections or updates to any inaccurate or incomplete personal data we hold about you. This includes the ability to update contact information, correct billing details, and modify account preferences. To exercise this right, you can either update your information directly through your account settings or submit a formal correction request to our support team. We will process your request within 15 days and may require account verification, supporting documentation, and specific details about the information to be corrected.
Right to Erasure
You have the right to erasure, also known as the right to be forgotten, which means you can request the deletion of your personal data when there is no compelling reason for its continued processing. This includes the ability to delete your account, remove personal information, and withdraw consent for data processing. To exercise this right, you can submit a deletion request through our privacy center or contact our data protection officer. We will process your request within 30 days and may require password confirmation, identity verification, and explicit confirmation of deletion consequences.
Right to Restrict Processing
You have the right to restrict processing, which means you can limit the way we use your personal data while still retaining it. This includes the ability to pause marketing communications, limit data usage, and temporarily suspend account processing. To exercise this right, you can adjust your privacy settings or submit a formal restriction request. We will implement restrictions within 7 days and may require account authentication, specific processing details, and duration preferences.
Right to Data Portability
You have the right to data portability, which means you can obtain and reuse your personal data across different services and platforms. This includes the ability to export your information, transfer data to another provider, and receive copies in a machine-readable format. To exercise this right, you can use our data export tool or submit a portability request through our support center. We will provide your data within 30 days and may require account verification, format preferences, and transfer specifications.
Data Processing and Security Practices
Processing of Your Information
We process Service Data which includes account credentials, profile information, and user preferences. This processing involves secure storage, authentication protocols, and profile management, enabling us to provide personalized wrestling merchandise recommendations and account services. For example, in the context of sports, this includes tracking preferred wrestling gear sizes and favorite wrestling personalities. The legal basis for this processing is contractual necessity and legitimate interests, specifically to maintain your account and enhance your shopping experience.
We process Technical Data which includes device information, IP addresses, and browsing patterns. This processing involves automated collection, analysis, and storage, enabling us to optimize website performance and security. For example, in the context of sports, this includes adapting product displays for mobile devices while browsing wrestling equipment. The legal basis for this processing is legitimate interests, specifically to ensure proper website functionality and prevent fraud.
We process Communication Data which includes email correspondence, chat messages, and support tickets. This processing involves message routing, storage, and analysis, enabling us to provide customer support and service updates. For example, in the context of sports, this includes handling inquiries about wrestling gear specifications and order status updates. The legal basis for this processing is contractual necessity and legitimate interests, specifically to maintain effective communication channels.
We process Transaction Data which includes purchase history, payment details, and shipping information. This processing involves secure payment processing, order fulfillment, and record-keeping, enabling us to complete purchases and maintain accurate financial records. For example, in the context of sports, this includes processing orders for wrestling merchandise and maintaining warranty information. The legal basis for this processing is contractual necessity and legal obligations, specifically to fulfill orders and comply with tax regulations.
We process Preference Data which includes product preferences, wish list items, and browsing history. This processing involves data analysis and preference tracking, enabling us to provide personalized recommendations and improve user experience. For example, in the context of sports, this includes suggesting wrestling gear based on previous purchases and viewing history. The legal basis for this processing is legitimate interests and consent, specifically to enhance user experience and provide relevant content.
Security Measures
Our comprehensive encryption protocols ensure end-to-end protection of your data, incorporating industry-standard algorithms and regular security updates to maintain data integrity. This includes regular security assessments and penetration testing by qualified professionals.
We implement multi-layered security infrastructure, including advanced firewalls and intrusion detection systems that continuously monitor for and prevent unauthorized access attempts. This infrastructure undergoes regular updates and enhancements.
Access to personal data is strictly controlled through role-based permissions, multi-factor authentication, and detailed access logs. We maintain comprehensive audit trails of all data access and modifications.
Our continuous monitoring systems provide real-time threat detection and automated response protocols, ensuring immediate action against potential security threats.
We maintain comprehensive backup procedures with encrypted offsite storage and regular recovery testing, ensuring data availability and integrity.
All staff undergo regular security awareness training and must comply with detailed data protection protocols, including specific training for handling sensitive sports merchandise transaction data.
International Data Transfers
We may transfer your personal data to countries outside your jurisdiction. These transfers are protected by appropriate safeguards, including Standard Contractual Clauses, Binding Corporate Rules, and approved certification mechanisms. Each international transfer is conducted under strict protocols that ensure:
– Adequate data protection standards
– Compliant processing procedures
– Enforceable data subject rights
– Effective legal remedies
International transfers are protected by EU-US Privacy Shield Framework, ISO 27001 standards, and GDPR requirements, ensuring compliance with international data protection regulations. We implement additional measures including:
– Regular compliance audits
– Data protection impact assessments
– Documented transfer mechanisms
– Continuous monitoring procedures
Regarding international transfers, you maintain specific rights including:
– Right to information about transfers
– Right to object to transfers
– Right to withdraw consent
– Right to data protection guarantees
Data Retention
We maintain specific retention periods for different data categories:
Account Information: 24 months after account closure to maintain user preferences and facilitate account reactivation
Usage Data: 12 months to analyze usage patterns and improve service
Transaction Records: 7 years to comply with tax and financial regulations
Communication History: 36 months to maintain customer service quality and resolve disputes
Technical Logs: 6 months for security monitoring and system optimization
These retention periods are determined by:
– Legal requirements
– Business purposes
– Technical necessities
– User preferences
Special circumstances affecting retention:
– Legal obligations
– Dispute resolution
– Security investigations
Cookie Policy for WrestleShop.net
Essential cookies serve fundamental functions for our website’s core operations. These cookies process authentication tokens, session data, and security parameters to enable basic functionality. For example, they maintain your shopping cart contents while browsing our wrestling merchandise and keep you securely logged in while checking out. We use them specifically for:
– User authentication during checkout
– Security measures to protect your account
– Basic site operations for browsing merchandise
– Session management while shopping
– Technical stability across all pages
Functional cookies enhance your experience by remembering your preferences. They process user-selected data to customize your shopping experience. For instance, these cookies remember your preferred wrestling gear categories and size preferences. They enable:
– Language preferences for international wrestling fans
– Region-specific content and pricing
– User interface customization for easier navigation
– Feature optimization for product browsing
– Personalized settings for your account
Analytics cookies help us understand how visitors interact with our wrestling merchandise and content. They collect information about:
– Page interactions with product listings
– Navigation patterns through different gear categories
– Feature usage of our size guides and product comparisons
– Session duration on product pages
– User preferences for wrestling merchandise types
Performance cookies assess and improve our website operation by:
– Monitoring site speed during high-traffic events
– Identifying technical issues in the checkout process
– Optimizing content delivery of product images
– Analyzing user experience with our catalog
– Tracking system performance during sales events
Cookie Management
You can control your cookie preferences through:
– Browser settings adjustment
– Our cookie consent tool
– Privacy preferences in your account
– Account settings customization
GDPR Compliance
For EU residents, we ensure:
– Explicit consent mechanisms before processing
– Data minimization in our collection practices
– Purpose limitation for all collected data
– Storage limitations on personal information
– Processing transparency in all operations
CCPA Compliance
California residents have additional rights:
– Right to know about personal information collected through our store
– Right to delete personal data from our systems
– Right to opt-out of data sales to third parties
– Right to non-discrimination when exercising rights
– Right to access collected information about their activities
COPPA Compliance
Regarding users under 13:
– Age verification required for account creation
– Parental consent procedures for young users
– Limited data collection from minor accounts
– Special protection measures for youth information
– Parental access rights to minor accounts
Updates and Changes
Policy updates involve:
– Regular review procedures of our practices
– User notifications of significant changes
– Consent renewal when required by law
– Clear change documentation in our policy
– Continuous compliance monitoring of our systems
Contact Information
For privacy-related inquiries:
– Primary Contact: [email protected]
– Response Time: Within 48 hours
– Verification Required: For data-related requests
– Available Support: Privacy concerns, data requests, rights exercise
This policy was created specifically for wrestleshop.net and covers all associated services within the sports industry.