Privacy Policy
Latest Update: 8/14/2024
This Privacy Policy explains how The Prison Dr. (“we,” “us,” or “our”) collects, uses, shares, and protects personal data collected from users (“you”) through our website, https://theprisondr.org. We are committed to protecting your privacy and ensuring that your personal data is handled in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).
1. Types of Personal Data Collected
We collect the following types of personal data:
- User Information: User names, legal names, email addresses, phone numbers.
- Payment and Financial Data: Payment details (credit card information, billing addresses, transaction records) for processing orders for services and physical products.
- Website Usage Data: IP addresses, browser types, device information, and cookies collected through Google Analytics 4.
2. Purpose of Data Collection
We process personal data for the following purposes:
- Processing Orders: To fulfill orders for services and physical products.
- Improving Services: To enhance user experience and tailor services to individual needs.
- Analytics: To monitor site performance, track user interactions, and improve services through insights gathered from analytics data.
3. Legal Basis for Data Processing
We process personal data under the following legal bases:
- Consent: For processing related to analytics and marketing communications.
- Contractual Necessity: For processing necessary to fulfill orders and provide services.
- Legitimate Interests: For improving services and understanding user behavior, while ensuring that our legitimate interests do not override your rights and freedoms.
4. Data Sharing
We share personal data with the following third parties for the specified purposes:
- Payment Processors: For processing transactions related to services and physical products.
- Shipping Providers (USPS): For delivering physical products.
- Google Analytics: For monitoring website performance and user interactions.
- Mailchimp: For email marketing and communication purposes.
5. Data Storage and Retention
We retain personal data for as long as necessary to fulfill the purposes outlined in this privacy policy. Retention periods may vary depending on the type of data and our organizational needs, and we ensure compliance with legal obligations regarding data retention.
6. Data Security
We implement secure servers and strict access controls to protect your personal data from unauthorized access, data breaches, and other security risks.
7. User Rights
Under the GDPR, you have the right to:
- Access your personal data.
- Rectify or update inaccurate or incomplete data.
- Request the erasure of your data.
- Restrict or object to the processing of your data.
- Request data portability.
To exercise any of these rights, please contact us via email, phone, or by submitting a request through our website’s fillable form.
8. International Data Transfers
We do not transfer personal data to countries outside the European Economic Area (EEA). We primarily serve users in Georgia and other states within the United States.
9. Contact Information
If you have any questions or concerns about your personal data, or if you would like to exercise your rights, please contact us:
