Privacy Policy

At Kahn Wines (“we,” “us,” “our”), accessible via kahnwines.com, we are committed to safeguarding your privacy and protecting the personal data you entrust to us. This Privacy Policy outlines how we collect, use, store, and share your personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), and affirms our commitment to handling your information responsibly and transparently.

1. Introduction

Kahn Wines recognizes the importance of privacy and data protection for all individuals. We are dedicated to maintaining high standards of security and confidentiality to protect the personal data we collect, store, and process. We strive to ensure that your personal information is handled with care and in full compliance with all applicable privacy laws.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to data collected through our website, kahnwines.com, and any associated services or third-party integrations. Kahn Wines is the data controller in relation to all personal data processed under this policy. This means we are responsible for determining the purpose and means of data processing and for ensuring that such processing complies with applicable legal obligations.

3. Categories of Personal Data We Process

We collect and process various categories of personal data to deliver our services effectively. These include:

a. Usage Data
Information automatically collected when users interact with our website, such as browser type, IP address, operating system, referring URL, pages visited, time and date of visit, session duration, and other diagnostic data.

b. Account Data
Personal information provided during account registration or checkout, including name, billing and delivery address, email address, and telephone number.

c. Profile Data
Data about user preferences, previous purchases, browsing behavior, saved items, and account activity.

d. Communication Data
Records of communications with us, including inquiries sent via contact forms, email correspondence, and any other interactions with customer support.

e. Technical Data
Data relating to the devices you use to access our website, including hardware model, device identifier, screen resolution, language preferences, mobile operating system, and browser settings.

f. Transaction Data
Information related to your orders, payments, and deliveries, such as payment confirmation, delivery address, transaction ID, and order details.

g. Preference Data
Marketing and communication preferences, including consent records and interests expressed for certain wine categories or product offerings.

4. Legal Bases for Processing

We process personal data based on the following lawful grounds:

– Performance of a contract: To fulfill orders, deliver products, and manage customer relationships.
– Legitimate interests: To improve website functionality, personalize services, prevent fraud, and maintain the security of our systems.
– Consent: For sending promotional materials and non-essential cookies (where required).
– Legal obligation: To comply with statutory requirements and respond to lawful requests.

5. Your Rights under GDPR and CCPA

You have the following rights regarding your personal data, subject to certain limitations and exceptions:

– Right of Access: Request access to personal data we hold about you.
– Right to Rectification: Correct inaccurate or incomplete data.
– Right to Erasure: Request deletion of personal data (the “right to be forgotten”).
– Right to Restrictive Processing: Request a restriction on the processing of your data under specific circumstances.
– Right to Data Portability: Obtain your data in a structured, commonly used, and machine-readable format.
– Right to Object: Object to certain processing activities, including direct marketing.
– Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.
– Right to Non-Discrimination: You will not be discriminated against for exercising any privacy rights granted under CCPA.

You may exercise your rights by contacting us at [email protected].

6. Security Measures

We implement robust technical and organizational measures to ensure your data is protected against unauthorized access, destruction, loss, or disclosure. These measures include, but are not limited to:

– Encryption of data in transit and at rest
– Role-based access control and authentication protocols
– Secure server environments and firewalls
– Regular data backups and system monitoring
– Staff privacy training and restricted access to personal data

7. International Transfers

We may transfer and store your personal data outside of the country in which it was originally collected, including to jurisdictions that may not offer the same level of data protection. Where such transfers occur, we implement mechanisms such as Standard Contractual Clauses approved by the European Commission, and, where applicable, verify Privacy Shield or equivalent data transfer agreements to ensure your information is adequately protected.

8. Data Retention

We retain personal data for only as long as necessary to fulfill the purposes for which it was collected or to comply with legal, accounting, or regulatory obligations. Typical retention periods include:

– Account Data: Retained while your account is active and for up to 7 years thereafter for compliance.
– Transaction Data: Retained for at least 7 years to meet financial and legal obligations.
– Preference and Marketing Data: Retained for up to 2 years from last interaction or until consent is withdrawn.
– Technical and Usage Data: Retained for up to 26 months for analytical purposes.

9. Cookie Policy

We use cookies and similar technologies on kahnwines.com to enhance user experience and analyze site traffic. Cookies we use fall into the following categories:

– Essential Cookies: Necessary for website operation, such as page navigation and access to secure areas.
– Functional Cookies: Enable enhanced functionality and personalization.
– Analytics Cookies: Help us understand how visitors interact with our website, including metrics such as traffic sources, session duration, and visitor behavior.
– Performance Cookies: Used to improve the speed and performance of our website.

10. Cookie Management and Compliance

In accordance with GDPR and CCPA, you have control over the placement of non-essential cookies. Upon your first visit to our site, you will be presented with a cookie consent banner allowing you to manage your preferences. You may update your cookie settings at any time through your browser controls or our on-site cookie management tool. Disabling certain cookies may affect the functionality of the site.

For CCPA compliance, users may exercise their “Do Not Sell My Personal Information” rights by contacting us at [email protected] or managing settings through designated opt-out mechanisms.

11. Children’s Privacy

Kahn Wines does not knowingly collect or solicit personally identifiable information from individuals under the age of 13. If we become aware that a child under 13 has provided us with personal data without parental consent, we will take immediate steps to delete such information. If you believe a child has submitted data to us, please contact us at [email protected].

12. Policy Updates

We reserve the right to update this Privacy Policy to reflect changes in legal requirements, our data processing practices, or website functionalities. Material updates will be communicated to you through appropriate channels, which may include notices on kahnwines.com or direct email communication, where applicable.

You are encouraged to review this policy periodically to remain informed about how we protect your personal information.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us at:

Email: [email protected]
Website: https://kahnwines.com

We are committed to resolving any privacy concerns and working with regulators where required to ensure full compliance.

This Privacy Policy is designed to comply with applicable privacy laws, including GDPR and CCPA. We welcome your inquiries and will respond promptly to requests regarding your rights or the handling of your personal data.