1. Who We Are

Opuscart ("we", "us", "our") operates the website www.harborandhearth.com. We are a small, independent e-commerce shop dedicated to selling sustainable, artisan-made home goods. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or make a purchase.

2. Information We Collect

We collect personal information that you voluntarily provide to us when you:

• Place an order: name, billing/shipping address, email address, phone number, and payment details (processed securely via our payment partners).
• Create an account: email address and password (encrypted).
• Subscribe to our newsletter: email address and preferences.
• Contact customer support: any information you choose to share (e.g., order number, product questions).
• Browse our website: automatically collected usage data via cookies (IP address, browser type, device information, pages visited).

3. How We Use Your Information

We use your personal information solely for legitimate business purposes:

• Processing and fulfilling your orders (including shipping confirmations and tracking).
• Communicating with you about your order, returns, or product inquiries.
• Sending promotional emails, discounts, and artisan stories — only if you have opted in. You may unsubscribe at any time.
• Improving our website, product selection, and customer experience through analytics.
• Preventing fraud and maintaining the security of our store.

4. Sharing Your Information

We never sell your personal data. We share your information only with trusted third parties necessary to operate our business:

• Shipping carriers (USPS, FedEx, DHL) to deliver your order.
• Payment processors (Stripe, PayPal) — they handle payment data under strict PCI compliance.
• Email marketing platform (e.g., Klaviyo or Mailchimp) to manage newsletter subscriptions.
• E-commerce platform provider (hosting and database services).
• Legal obligations if required by law or to protect our rights.

All third-party partners are contractually obligated to protect your data and use it only for the services they provide to us.

5. Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience, analyze site traffic, and remember your cart contents. You can control cookies through your browser settings. Disabling cookies may affect some functionality (e.g., cart persistence).

Types of cookies we use:

• Essential cookies (required for checkout and security).
• Preference cookies (remember language or region).
• Analytics cookies (Google Analytics to understand user behavior anonymously).

6. Data Retention

We retain your personal information only as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Order records are kept for 7 years for tax and accounting purposes. Newsletter data is retained until you unsubscribe.

7. Your Rights (GDPR & CCPA Compliance)

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal information we hold about you.
• Correction: Update inaccurate or incomplete information.
• Deletion: Request that we delete your personal data (subject to legal obligations).
• Opt-out: Unsubscribe from marketing communications or disable non-essential cookies.
• Data Portability: Receive your data in a structured, machine-readable format.

To exercise any of these rights, please contact us using the email below. We will respond within 30 days.

8. Security Measures

We implement industry-standard security measures, including SSL encryption for all transactions, restricted access to customer data, and regular security scans. However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

9. Children's Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal information from minors. If you believe a child has provided us with data, please contact us, and we will delete it promptly.

10. International Transfers

Opuscart operates from the United States. If you are accessing our site from outside the US, please be aware that your data may be transferred to, stored, and processed in the US, where data protection laws may differ from your country of residence. By using our services, you consent to this transfer.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The revised version will be posted on this page with an updated "Last Revised" date. We encourage you to review this policy periodically.