Privacy Policy
ARTICLE 1: INTRODUCTION
This privacy policy is intended to inform users of the website: Your Website.
- The personal data collected includes: Names, email addresses, IP addresses, location data, etc..
- The purposes for processing this data are: Management of user accounts, delivery of newsletters, analytics..
This policy supplements the legal notice and the Terms and Conditions, which users can access at: https://yourwebsite.com/legal.
ARTICLE 2: PRINCIPLES FOR DATA COLLECTION AND PROCESSING
According to the General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679, the collection and processing of personal data is based on the following principles:
- Data is processed lawfully, fairly, and transparently;
- Data is collected for specified, legitimate purposes and not further processed in a manner that is incompatible with those purposes;
- Data is adequate, relevant, and limited to what is necessary for processing;
- Data is retained for Data will be retained for 5 years. and is justified by necessity.
ARTICLE 3: LEGAL BASIS FOR PROCESSING
The legal basis for processing personal data includes:
- Consent of the data subject;
- Performance of a contract;
- Compliance with a legal obligation;
- Legitimate interests pursued by the data controller or a third party.
ARTICLE 4: PERSONAL DATA COLLECTED
4.1: Types of Data Collected
The personal data collected includes: Names, email addresses, IP addresses, location data, etc..
4.2: Data Hosting
The site is hosted by: Your Hosting Provider, 123 Street, City, Country.
The hosting provider ensures data security measures are in place and complies with applicable data protection laws.
ARTICLE 5: DATA CONTROLLER AND DATA PROTECTION OFFICER
5.1: Data Controller
The data controller, responsible for processing personal data, can be contacted at: Email: [email protected], Phone: +123 456 789.
5.2: Data Protection Officer (DPO)
The Data Protection Officer (DPO) can be contacted for any questions regarding personal data protection at: DPO Contact: [email protected].
ARTICLE 6: USER RIGHTS
Under GDPR, users have the following rights regarding their personal data:
- Right of Access: Users can request access to their personal data, and we will provide it free of charge.
- Right to Rectification: Users can request corrections of inaccurate or incomplete data.
- Right to Erasure: Users can request the deletion of their personal data under specific conditions (e.g., when the data is no longer necessary).
- Right to Data Portability: Users can request to receive their personal data in a structured, commonly used format, or transfer it to another controller.
- Right to Restriction of Processing: Users can request a limitation on the processing of their data, allowing them to keep their data without further processing.
- Right to Object: Users can object to the processing of their personal data, particularly for direct marketing purposes.
- Right to Withdraw Consent: Users can withdraw their consent at any time when the processing of personal data is based on consent, without affecting the lawfulness of processing before consent withdrawal.
- Right to Lodge a Complaint: Users have the right to file a complaint with a supervisory authority, such as the Information Commissioner's Office (ICO) in the UK or CNIL in France.
ARTICLE 7: DATA SECURITY
We implement appropriate technical and organizational measures to ensure the security of the personal data collected, including encryption, pseudonymization, and secure storage. Personal data is stored for Data will be retained for 5 years., after which it is securely deleted unless required by law to retain it for a longer period.
ARTICLE 8: THIRD-PARTY DATA SHARING
We may share personal data with third parties for the following purposes:
- Cloud services for data storage;
- Analytics providers for data analysis;
- Marketing partners for direct marketing.
We ensure that any third parties with whom we share data comply with GDPR requirements, including the use of Standard Contractual Clauses or other legal mechanisms where applicable.
ARTICLE 9: DATA TRANSFERS OUTSIDE THE EU
If personal data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect the data in accordance with GDPR requirements, including adequacy decisions or binding corporate rules.
ARTICLE 10: COOKIES AND TRACKING
We use cookies and similar tracking technologies to enhance user experience and analyze website usage. Users are informed of cookie usage and can consent to it through a cookie banner on the website.
ARTICLE 11: CHILDREN'S DATA
We do not knowingly collect personal data from children under the age of 16. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information.
ARTICLE 12: MODIFICATIONS TO THE PRIVACY POLICY
This privacy policy may be updated to reflect changes in the applicable laws and regulations or changes to our processing practices. We encourage users to periodically review this page for the latest information on our privacy practices. Significant changes will be communicated via email or a prominent notice on our website.
The current version of this policy is effective as of: 9/8/2024.