Privacy Policy
1. Introduction
At yiddishword.com (“we,” “us,” “our”), we are committed to protecting your privacy and safeguarding your personal data. We believe that privacy is a fundamental right, and we strive to maintain the highest standards of data security and transparency in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant data protection laws. This Privacy Policy outlines our practices regarding the collection, use, disclosure, and protection of personal information.
2. Scope of this Policy and Our Role as Data Controller
This Privacy Policy applies to all users who access or use the website located at yiddishword.com (the “Site”) and outlines how we handle personal data in our capacity as the data controller. As the data controller, yiddishword.com determines the purposes and means of the processing of your personal data.
By using yiddishword.com, you consent to the terms within this policy, subject to your rights and choices under applicable law. If you do not agree with this policy, please refrain from using the Site.
3. Categories of Data Processed
We collect and process various categories of personal data to provide, maintain, and improve our services. These include:
a. Usage Data
Information about your interactions with the Site, such as your IP address, browser type, pages visited, date and time of access, session duration, referral URLs, and other standard server log information.
b. Account Data
Personal identifiers you provide during registration or when creating an account, including your full name, email address, postal address, and telephone number.
c. Profile Data
Preferences, feedback, purchase history, learning or usage behavior, content selections, and any customizations made while using yiddishword.com.
d. Communication Data
Data generated through your communications with us, including emails, support inquiries, chat transcripts, and records of contact history.
e. Technical Data
Information related to the devices and systems you use to access yiddishword.com, including device type, operating system, browser settings, screen resolution, and network connection data.
f. Transaction Data
Details necessary for completing purchases or transactions, such as billing and delivery information, payment method identifiers (e.g., last four digits of credit card), and order history.
g. Preference Data
Your stated or inferred preferences related to products, topics, content, marketing communications, and data sharing consents.
4. Legal Bases for Processing
We process your personal data on the following lawful bases, as appropriate under the GDPR and CCPA:
– Consent: Where you have given clear consent for us to process your personal data for a specific purpose, such as subscribing to newsletters or accepting analytics cookies.
– Contractual Necessity: Where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract (e.g., account creation, order processing).
– Legitimate Interests: For purposes such as improving functionality, securing access, fraud prevention, analyzing performance, and developing new features or content—without overriding your privacy rights.
– Legal Obligation: Where processing is required to comply with applicable laws and regulations.
5. Your Rights
You have a range of rights under applicable data protection laws, including:
– Right of Access: You have the right to obtain confirmation regarding the processing of your data and access a copy of your personal data.
– Right to Rectification: You may request that we correct inaccurate or incomplete personal data we hold about you.
– Right to Erasure (“Right to be Forgotten”): You can request the deletion of your personal data, subject to specific conditions.
– Right to Restrict Processing: You can request the restriction of the processing of your personal data under certain circumstances.
– Right to Data Portability: You may request to receive your personal data in a structured, machine-readable format and to transmit that data to another controller.
– Right to Object: You may object to processing conducted on the basis of legitimate interest or direct marketing.
– Right to Non-Discrimination: Under CCPA, you have the right not to receive discriminatory treatment for exercising your data rights.
You may exercise your rights by contacting us at [email protected]. We will respond in accordance with applicable legislation and within the prescribed timeframes.
6. Security Measures
We employ a range of industry-standard technical and organizational measures to ensure the security and confidentiality of your personal data, including:
– Encryption of data in transit and at rest using TLS and AES protocols
– Role-based access controls and secure authentication mechanisms
– Regular security audits and penetration testing
– Firewalls, malware scanning, and intrusion detection systems
– Staff training on privacy, confidentiality, and data protection
– Daily system and data backups stored in secure environments
Although we implement robust security safeguards, no system is infallible; users share responsibility in maintaining the confidentiality of their login credentials.
7. International Transfers
If your personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with equivalent protections, we ensure such transfers comply with applicable legal requirements. We use Standard Contractual Clauses approved by the European Commission and implement supplementary measures where necessary. These safeguards ensure your personal information is treated with a level of protection equivalent to GDPR and other regional standards.
8. Data Retention
We retain personal data only as long as necessary for the purposes described in this Privacy Policy or as required by law. Retention periods vary depending on the data type:
– Account Data: Retained as long as your account is active or as needed to administer your account.
– Transaction Data: Retained for up to 6 years for tax, audit, and compliance purposes.
– Usage, Technical, and Preference Data: Retained for up to 24 months to support service optimization and analytics.
– Communication History: Retained for up to 3 years after the last user interaction.
– Cookie Data: Managed in accordance with our Cookie Policy (see below), with storage durations defined per cookie type.
Upon expiry of the applicable retention period, we securely delete or anonymize personal data.
9. Cookie Policy
Our Site uses cookies and similar technologies to enhance your browsing experience, analyze web traffic, remember your preferences, and improve our services. The categories of cookies used include:
– Essential Cookies: Necessary for the Site’s functionality, including authentication, session management, and security.
– Functional Cookies: Enable personalization and facilitate features such as remembering language preferences or display settings.
– Analytics Cookies: Help us understand how visitors interact with the Site (e.g., Google Analytics), allowing us to improve navigation and content.
– Performance Cookies: Collect information about system performance and help us monitor Site uptime and responsiveness.
10. Cookie Management and Compliance
You have the right to control the use of non-essential cookies. Upon your first visit, a cookie banner will prompt you to accept or configure your cookie preferences in compliance with GDPR and CCPA requirements.
You can adjust your cookie settings at any time through your browser or our Site’s cookie management tool. Most browsers provide options to block or delete cookies. However, disabling cookies may impact certain functionalities.
Under the CCPA, we honor “Do Not Sell or Share My Personal Information” requests and do not sell personal information for monetary consideration. If applicable, you may exercise this right via the designated link on our Site or by contacting us directly at [email protected].
11. Children’s Privacy
We are committed to protecting the privacy of children. yiddishword.com is not intended for use by children under the age of 13. We do not knowingly collect or solicit personal data from individuals under 13. If we become aware that personal information has been collected from a child under 13 without verified parental consent, we will promptly delete such data. If you believe we may have collected information from a child under 13, please contact us immediately at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time to reflect changes in our practices, legal developments, or Site functionality. Where required, we will notify users of significant changes via prominent notice on the Site or through direct communication (such as email notifications), and we encourage periodic review of this page to remain informed about our privacy practices.
13. Contact Us
If you have questions, concerns, or requests related to this Privacy Policy or your personal data, please reach out to our Privacy Officer at:
We strive to uphold the strongest standards of privacy and data protection and are committed to resolving any issues in accordance with applicable data privacy laws and best practices.
This Privacy Policy is designed to ensure full compliance with the GDPR, CCPA, and other relevant regulations. Please contact us at [email protected] with any privacy-related inquiries or concerns.