Privacy & Security
Privacy & Security Policy
Effective Date: August 1, 2025 | Last Updated: August 1, 2025
Quick Navigation
Information We Collect
1.1 Personal Information
- Name, email address, phone number, shipping and billing addresses
- Payment information (processed securely through encrypted payment processors)
- Account preferences and plant care interests
- Commercial account information for business customers
1.2 Automatically Collected Information
- Website usage data, IP addresses, browser type, and device information
- Plant browsing history and search preferences for personalized recommendations
- Location data for shipping calculations and local plant recommendations
1.3 Plant Care Information
- Plant care quiz responses and preference data
- Care question submissions and support interactions
- Plant purchase history for ongoing care support
How We Use Your Information
2.1 Service Provision
- Processing and fulfilling plant orders through our supplier network
- Providing plant care support and guidance
- Sending care reminders and seasonal plant advice
- Personalizing plant recommendations through our AI matching system
2.2 Communication
- Sending order confirmations, shipping updates, and delivery notifications
- Providing customer support and responding to inquiries
- Sending marketing communications (with your consent)
- Sharing plant care tips and educational content
2.3 Business Operations
- Improving our website and plant recommendation algorithms
- Analyzing customer preferences to expand our plant selection
- Processing commercial account applications and services
- Compliance with legal and regulatory requirements
Information Sharing
3.1 Service Providers
- Shipping companies for plant delivery services
- Payment processors for secure transaction handling
- Plant suppliers for order fulfillment (limited information only)
- Customer service platforms for support ticket management
- Email marketing platforms for communications (with your consent)
3.2 Legal Requirements
- When required by law, court order, or government regulation
- To protect our rights, property, or safety
- In connection with business transfers or acquisitions
3.3 Plant Care Partners
- Anonymous data sharing with horticultural experts for research
- Plant care insights with botanical institutions (anonymized data only)
Data Security
We implement industry-leading security measures to protect your personal information and ensure safe transactions.
4.1 Technical Safeguards
- SSL encryption for all data transmission
- Secure servers with restricted access
- Regular security audits and updates
- PCI-compliant payment processing
- Firewall protection and intrusion detection systems
4.2 Access Controls
- Limited employee access to personal information
- Multi-factor authentication for administrative accounts
- Regular access reviews and permission updates
- Background checks for employees with data access
4.3 Data Retention
- Account information retained while account is active
- Order history maintained for warranty and care support (7 years)
- Marketing data retained until consent is withdrawn
- Legal compliance data retained as required by law
4.4 Data Breach Response
In the unlikely event of a data breach, we will notify affected customers within 72 hours and provide detailed information about the incident and steps being taken to resolve it.
Your Rights and Choices
5.1 Account Management
- Access and update your personal information
- Download your data in portable format
- Request deletion of your account and data
- Opt out of marketing communications
5.2 Plant Care Preferences
- Manage plant care reminder preferences
- Control personalized recommendation settings
- Update plant collection and care experience level
5.3 Communication Preferences
- Choose email frequency and content types
- Manage SMS notifications for shipping updates
- Control push notifications for mobile app users
Cookies and Tracking
Essential Cookies
- Shopping cart functionality and session management
- Security and fraud prevention
- Website performance optimization
Analytics & Personalization
- Plant preference tracking for recommendations
- Website usage analysis for improvements
- A/B testing for better user experience
Marketing Cookies
- Retargeting for abandoned cart recovery
- Social media integration and sharing
- Affiliate and referral program tracking
You can manage cookie preferences through your browser settings or our cookie preference center.
Children's Privacy
We do not knowingly collect information from children under 13. If you believe a child has provided us with personal information, please contact us immediately and we will take steps to remove such information.
International Data Transfers
If you are located outside the United States, your information may be transferred to and processed in the US, where our servers are located. We ensure appropriate safeguards are in place for such transfers.
Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of significant changes via email or website notice at least 30 days before they take effect.
10. Contact Us
For privacy questions or requests:
Email: support@rootandreachbotanicals.com
Phone: (971) 266-0663
Mail: Root & Reach Botanicals, Privacy Officer, [Your Address]
State-Specific Rights
- Right to know what personal information is collected
- Right to delete personal information
- Right to opt-out of sale/sharing of personal information
- Right to non-discrimination for exercising privacy rights
- Right to correct inaccurate personal information
- Right to access your personal data
- Right to rectification of inaccurate data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing