Last Updated: December 11, 2023

MacPhee Interiors Inc. is committed to safeguarding your privacy. This Privacy Policy outlines MacPhee Interiors Inc.’s (“us”, “we”, “our”, or “The Company”) practices with respect to information collected from users who access our website at www.macpheeinteriors.com (“Site”), or otherwise share personal information with us (collectively: “Users”). 

The Site is owned and operated by MacPhee Interiors Inc. The Data Protection Officer (“DPO”) is Trina MacPhee and can be contacted using the contact information provided at the end of this policy. 

By using this Site or/and our services, you consent to the Processing of your Personal Data as described in this Privacy Policy. 

Purpose

The purpose of this Privacy Policy is to inform users of our Site of the following:

  1. The personal data we will collect.
  2. Use of collected data.
  3. Who has access to the data collected.
  4. The rights of Site users.
  5. The Site’s cookie policy.

This Privacy Policy applies in addition to the Terms and Conditions of our Site.

Data Protection Principles

We promise to follow the following data protection principles:

  1. Processing is lawful, fair, transparent. Our Processing activities have lawful grounds. We always consider your rights before Processing Personal Data. We will provide you information regarding Processing upon request.
  2. Processing is limited to the purpose. Our Processing activities fit the purpose for which Personal Data was gathered.
  3. Processing is done with minimal data. We only gather and Process the minimal amount of Personal Data required for any purpose.
  4. Processing is limited within a time period. We will not store your personal data for longer than needed.
  5. We will do our best to ensure the accuracy of data.
  6. We will do our best to ensure the integrity and confidentiality of data.

GDPR

For users in the European Union, we adhere to the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, known as the General Data Protection Regulation (the “GDPR”). For users in the United Kingdom, we adhere to the GDPR as enshrined in the Data Protection Act 2018.

Consent

By using our Site users agree that they consent to the conditions set out in this Privacy Policy.

When the legal basis for us processing your personal data is that you have provided your consent to that processing, you may withdraw your consent at any time. If you withdraw your consent, it will not make processing which we completed before you withdrew your consent unlawful.

You can withdraw your consent by contacting the Data Protection Officer.

Legal Basis for Processing

We collect and process personal data about users in the EU only when we have a legal basis for doing so under Article 6 of the GDPR.

We rely on the following legal bases to collect and process the personal data of users in the EU:

  1. Users have provided their consent to the processing of their data for one or more specific purposes.
  2. Processing of user personal data is necessary for us or a third party to pursue a legitimate interest. Our legitimate interest is not overridden by the interests or fundamental rights and freedoms of users. Our legitimate interest(s) are: Send you personalized offers* (from us and/or our carefully selected partners); to administer and analyze our client base (purchasing behaviour and history) in order to improve the quality, variety, and availability of products / services offered/provided; to conduct questionnaires concerning client satisfaction.
  3. Processing of user personal data is necessary for us to take, at the request of a user, steps before entering a contract or for the performance of a contract to which a user is a party. If a user does not provide the personal data necessary to perform a contract the consequences are as follows: To identify you; to provide you a service or to send/offer you a product; to communicate either for sales or invoicing.

Grounds for Data Collection

Processing of your personal information (meaning, any information which may potentially allow your identification with reasonable means; hereinafter “Personal Information”) is necessary for the performance of our contractual obligations towards you and providing you with our services, to protect our legitimate interests and for compliance with legal and financial regulatory obligations to which we are subject.

When you use the Site, you consent to the collection, storage, use, disclosure, and other uses of your Personal Information as described in this Privacy Policy.

We encourage our Users to carefully read the Privacy Policy and use it to make informed decisions. 

Personal Data We Collect

We only collect data that helps us achieve the purpose set out in this Privacy Policy. We will not collect any additional data beyond the data listed below without notifying you first.

Information you have provided us with
This might be your e-mail address, name, billing address etc., mainly information that is necessary for delivering you a product/service or to enhance your customer experience with us. We save the information you provide us with in order for you to comment or perform other activities on the website. This information includes, for example, your name and e-mail address.

Data Collected Automatically

When you visit and use our Site, we may automatically collect and store the following information:

  1. IP address.
  2. Location.
  3. Operating system and browser details.
  4. Clicked links.
  5. Content viewed.

Data Collected in a Non-Automatic Way

We may also collect the following data when you perform certain functions on our Site:

  1. First and last name.
  2. Email address.
  3. Phone number.
  4. Services you are interested in.
  5. How you heard about us.
  6. Other information you provide.

This data may be collected using the following methods:

  1. When you choose to email us via our contact form on our Site.
  2. When you use or access our Site in connection with your use of our services.
  3. From third party providers, services, and public registers (for example, traffic analytics vendors).

Information From Our Partners

We gather information from our trusted partners with confirmation that they have legal grounds to share that information with us. This is either information you have provided them directly with or that they have gathered about you on other legal grounds.

More information about the third-parties we work with can be found below under

Publicly available information
We might gather information about you that is publicly available.

How We Use Personal Data

Data collected on our Site will only be used for the purposes specified in this Privacy Policy or indicated on the relevant pages of our Site. We will not use your data beyond what we disclose in this Privacy Policy.

The data we collect automatically or when the user performs certain functions is used for the following purposes:

  1. Conducting statistical and analytical purposes, intended to improve the Site.
  2. To enhance the functionality of our Site.
  3. To enhance your customer experience.
  4. To fulfil an obligation under law or contract.
  5. To deliver a product or provide our service to you. This includes, for example, registering your account.
  6. To provide you with other products and services that you have requested.
  7. To provide you with promotional items at your request and communicate with you in relation to those products and services.
  8. To communicate and interact with you.
  9. To respond to any customer service issues you may have.
  10. To notify you of changes to any services and keep you informed of our latest updates and services.
  11. To market our websites, products, and services.

We use your Personal Data on legitimate grounds and/or with your Consent.

On the grounds of entering into a contract or fulfilling contractual obligations, we Process your Personal Data for the following purposes:

  1. To identify you.
  2. To provide you a service or to send/offer you a product.
  3. To communicate either for sales or invoicing.

On the ground of legitimate interest, we process your Personal Data for the following purposes:

  1. To send you personalized offers* (from us and/or our carefully selected partners).
  2. To administer and analyze our client base (purchasing behaviour and history) in order to improve the quality, variety, and availability of products/services offered/provided to enhance the functionality of our Site.
  3. To conduct questionnaires concerning client satisfaction.

As long as you have not informed us otherwise, we consider offering you products / services that are similar or same to your purchasing history/browsing behaviour to be in our legitimate interest.

With your consent we process your Personal Data for the following purposes:

  1. To send you newsletters and campaign offers (from us and / or our carefully selected partners).
  2. For other purposes we have asked your consent.

We process your Personal Data in order to fulfil obligations rising from law and/or use your Personal Data for options provided by law. We reserve the right to anonymize Personal Data gathered and to use any such data. We will use data outside the scope of this Policy only when it is anonymized. We save your billing information and other information gathered about you for as long as needed for accounting purposes or other obligations deriving from law.

We might process your Personal Data for additional purposes that are not mentioned here but are compatible with the original purpose for which the data was gathered. To do this, we will ensure that:

  1. The link between purposes, context and nature of Personal Data is suitable for further processing.
  2. The further processing would not harm your interests.
  3. There would be appropriate safeguard for processing.

We will inform you of any further processing and purposes.

Who We Share Personal Data With

Employees

We may disclose user data to any member of our organization who reasonably needs access to user data to achieve the purposes set out in this Privacy Policy.

Third Parties

We may share user data and links clicked while using the Site with the following third parties and for the following purposes:

  1. Google Analytics – for log data which helps us understand the traffic coming to our website for performance and usage purposes. (Google Privacy Policy)
  2. Mailchimp &/or Sidemark – for our email newsletter, in which subscribers can unsubscribe at any time. (Mailchimp Legal Policies), (Sidemark Privacy Policy)
  3. Meta Pixel – to retain user log data between our Facebook Page and website. (Meta Privacy Policy)

Third parties will not be able to access user data beyond what is reasonably necessary to achieve the given purpose.

In addition to the purposes listed in this Privacy Policy, we may share Personal Information with our trusted third-party providers, who may be located in different jurisdictions across the world, for any of the following purposes: 

  1. Hosting and operating our Site.
  2. Providing you with our services, including providing a personalized display of our Site.
  3. Storing and processing such information on our behalf.
  4. Providing you with marketing offers and promotional materials related to our Site and services.
  5. Performing research, technical diagnostics, or analytics.

We may also disclose information if we have good faith to believe that disclosure of such information is helpful or reasonably necessary to: 

  1. Comply with any applicable law, regulation, legal process, or governmental request.
  2. Enforce our policies (including our Agreement), including investigations of potential violations thereof.
  3. Investigate, detect, prevent, or take action regarding illegal activities or other wrongdoing, suspected fraud or security issues.
  4. To establish or exercise our rights to defend against legal claims.
  5. Prevent harm to the rights, property or safety of us, our users, yourself or any third party.
  6. For the purpose of collaborating with law enforcement agencies and/or in case we find it necessary in order to enforce intellectual property or other legal rights.

Other Disclosures

We will not sell or share your data with other third parties, except in the following cases:

  1. If the law requires it.
  2. If it is required for any legal proceeding.
  3. To prove or protect our legal rights.
  4. To our subsidiaries, affiliated companies, and subcontractors.
  5. To buyers or potential buyers of this company in the event that we seek to sell the company.

If you follow hyperlinks from our Site to another site, please note that we are not responsible for and have no control over their privacy policies and practices.

How Long We Store Personal Data

We will retain your personal information for as long as necessary to provide our services, and as necessary to comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods will be determined taking into account the type of information that is collected and the purpose for which it is collected, bearing in mind the requirements applicable to the situation and the need to destroy outdated, unused information at the earliest reasonable time. Under applicable regulations, we will keep records containing client personal data, account opening documents, communications, and anything else as required by applicable laws and regulations. 

We may rectify, replenish, or remove incomplete or inaccurate information, at any time and at our own discretion.

How We Protect Your Personal Data

In order to protect your security, we use the strongest available browser encryption and store all of our data on servers in secure facilities. We use safe protocols for communication and transferring data (such as HTTPS). We use anonymizing and pseudonymizing where suitable. We monitor our systems for possible vulnerabilities and attacks. All data is only accessible to our employees. Our employees are bound by strict confidentiality agreements and a breach of this agreement would result in the employee’s termination. 

While we take all reasonable precautions to ensure that user data is secure and that users are protected, there always remains the risk of harm. The Internet as a whole can be insecure at times and therefore we are unable to guarantee the security of user data beyond what is reasonably practical. Although we take reasonable steps to safeguard information, we cannot be responsible for the acts of those who gain unauthorized access or abuse our Site, and we make no warranty, express, implied, or otherwise, that we will prevent such access.

Transfer of data outside the EEA 

Please note that some data recipients may be located outside the EEA. In such cases we will transfer your data only to such countries as approved by the European Commission as providing adequate level of data protection or enter into legal agreements ensuring an adequate level of data protection.

International Data Transfers

We transfer user personal data to the following countries:

  1. Canada
  2. United States

When we transfer user personal data we will protect that data as described in this Privacy Policy and comply with applicable legal requirements for transferring personal data internationally.

If you are located in the United Kingdom or the European Union, we will only transfer your personal data if:

  1. The country your personal data is being transferred to has been deemed to have adequate data protection by the European Commission or, if you are in the United Kingdom, by the United Kingdom adequacy regulations; or
  2. We have implemented appropriate safeguards in respect of the transfer. For example, the recipient is a party to binding corporate rules, or we have entered into standard EU or United Kingdom data protection contractual clauses with the recipient.

Your Rights as a User

Under the GDPR, you have the following rights:

  1. Right to be informed – meaning you have the right to know whether your Personal Data is being processed; what data is gathered, from where it is obtained and why and by whom it is processed.
  2. Right of access – meaning you have the right to access the data collected from/about you. This includes your right to request and obtain a copy of your Personal Data gathered.
  3. Right to rectification – meaning you have the right to request rectification or erasure of your Personal Data that is inaccurate or incomplete.
  4. Right to erasure – meaning in certain circumstances you can request for your Personal Data to be erased from our records.
  5. Right to restrict processing – meaning where certain conditions apply, you have the right to restrict the Processing of your Personal Data.
  6. Right to object to processing – meaning in certain cases you have the right to object to Processing of your Personal Data, for example in the case of direct marketing.
  7. Right to object to automated processing – meaning you have the right to object to automated Processing, including profiling; and not to be subject to a decision based solely on automated Processing. This right you can exercise whenever there is an outcome of the profiling that produces legal effects concerning or significantly affecting you.
  8. Right to data portability – meaning you have the right to obtain your Personal Data in a machine-readable format or if it is feasible, as a direct transfer from one Processor to another.
  9. Right to lodge a complaint – in the event that we refuse your request under the Rights of Access, we will provide you with a reason as to why. If you are not satisfied with the way your request has been handled, please contact us.
  10. Right for the help of supervisory authority – meaning you have the right for the help of a supervisory authority and the right for other legal remedies such as claiming damages.
  11. Right to withdraw consent – you have the right withdraw any given consent for Processing of your Personal Data.

If you wish to exercise any of the aforementioned rights, or receive more information, please contact our Data Protection Officer (“DPO”) using the contact information provided at the end of this policy. 

Children

This Site is not designed for or directed at children. We do not knowingly collect or use personal data from children under 18 years of age. If we learn that we have collected personal data from a child under 18 years of age, the personal data will be deleted as soon as possible. If a child under 18 years of age has provided us with personal data, their parent or guardian may contact our data protection officer.

How to Access, Modify, Delete, or Challenge the Data Collected

If you would like to know if we have collected your personal data, how we have used your personal data, if we have disclosed your personal data and to who we disclosed your personal data, if you would like your data to be deleted or modified in any way, or if you would like to exercise any of your other rights under the GDPR, please contact our data protection officer using the contact information provided at the end of this policy.

Do Not Track Notice

Do Not Track (“DNT”) is a privacy preference that you can set in certain web browsers. We respond to browser-initiated DNT signals. If we receive a DNT signal that indicates a user does not wish to be tracked, we will not track that user. We are not responsible for and cannot guarantee how any third parties who interact with our Site and your data will respond to DNT signals.

How to Opt-Out of Data Collection, Use or Disclosure

In addition to the method(s) described in the How to Access, Modify, Delete, or Challenge the Data Collected section, we provide the following specific opt-out methods for the forms of collection, use, or disclosure of your personal data:

  1. You can opt-out of the use of your personal data for marketing emails. You can opt-out by clicking “unsubscribe” on the bottom of any marketing email or updating your email preferences under “Your Account”.

Cookie Policy

We use cookies and/or similar technologies to analyze customer behaviour, administer the website, track users’ movements, and to collect information about users. This is done in order to personalize and enhance your experience with us.

Cookies are files with a small amount of data, which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your computer’s hard drive. Its purpose is to collect data relating to the user’s browsing habits and collect information. You can choose to be notified each time a cookie is transmitted. You can also choose to disable cookies entirely in your internet browser, but this may decrease the quality of your user experience or use some portions of our Site.

We use the following types of cookies on our Site:

  1. Functional cookies – these cookies are used to remember the selections you make on our Site so that your selections are saved for your next visits.
  2. Analytical cookies – these cookies allow us to improve the design and functionality of our Site by collecting data on how you access our Site, for example data on the content you access, how long you stay on our Site, etc.
  3. Targeting cookies – these cookies collect data on how you use the Site and your preferences. This allows us to personalize the information you see on our Site for you.
  4. Session cookies – these cookies are stored only temporarily during a browsing session in order to allow normal use of the system and are deleted from your device when the browser is closed.
  5. Persistent cookies – these cookies are read only by the Site, saved on your computer for a fixed period and are not deleted when the browser is closed. Such cookies are used where we need to know who you are for repeat visits, for example to allow us to store your preferences for the next sign-in.
  6. Necessary cookies – these cookies are required for you to be able to use some important features on our website, such as logging in. These cookies don’t collect any personal information.
  7. Third-Party Cookies – these cookies are created by a website other than ours. These cookies are set by other online services who run content on the page you are viewing, for example by third party analytics companies who monitor and analyze our web access.

You can remove cookies stored in your computer via your browser settings. Alternatively, you can control some 3rd party cookies by using a privacy enhancement platform such as optout.aboutads.info or youronlinechoices.com. For more information about cookies, visit allaboutcookies.org.

We use Google Analytics to measure traffic on our website. Google has their own Privacy Policy which you can review here. If you’d like to opt out of tracking by Google Analytics, visit the Google Analytics Opt-out page where you can utilize an opt-out browser add-on. Learn more here: https://tools.google.com/dlpage/gaoptout

Modifications

This Privacy Policy may be amended from time to time to maintain compliance with the law and to reflect any changes to our data collection process. When we amend this Privacy Policy, we will update the “Effective Date” at the top of this Privacy Policy. We recommend that our users periodically review our Privacy Policy to ensure that they are notified of any updates. 

Complaints

If you have any complaints about how we process your personal data, please contact us through the contact methods listed in the Contact Information section so that we can, where possible, resolve the issue. If you feel we have not addressed your concern in a satisfactory manner you may contact a supervisory authority. You also have the right to directly make a complaint to a supervisory authority. You can lodge a complaint with a supervisory authority by contacting the https://www.priv.gc.ca/en.

Contact Information

If you have any questions, concerns, or complaints, you can contact our Data Protection Officer (DPO):

Trina MacPhee
MacPhee Interiors Inc.
Email: trina@macpheeinteriors.com
Phone: 587.600.2012