The General Data Protection Regulation gives you specific rights regarding your personal data
You have the right to request copies of your personal data. We will provide you with a copy of the personal data we are processing about you.
You have the right to request that we correct any information you believe is inaccurate or incomplete.
You have the right to request that we erase your personal data, under certain conditions.
You have the right to request that we restrict the processing of your personal data, under certain conditions.
You have the right to object to our processing of your personal data, under certain conditions.
You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
Our commitment to keeping your personal information secure
All data transmission is encrypted using industry-standard SSL/TLS protocols. Sensitive data is encrypted at rest using AES-256 encryption.
Access to personal data is restricted to authorized personnel only, and all access is logged and monitored.
We conduct regular security assessments and penetration testing to identify and address potential vulnerabilities.
We only collect and process the minimum amount of personal data necessary to provide our services.
We process your personal data under the following lawful bases
We process your data to fulfill our contractual obligations, such as processing orders and providing customer support.
We process certain data based on our legitimate interest in improving our services, preventing fraud, and maintaining security.
For marketing communications and non-essential cookies, we rely on your explicit consent.
We may process data to comply with legal requirements, such as tax obligations or regulatory compliance.
How to contact us regarding your data protection rights
To exercise any of your rights under GDPR, please contact us:
We will respond to your request within 30 days of receiving it. For complex requests, we may extend this period by up to 60 additional days, and we will inform you of any delay.
To protect your privacy and security, we may need to verify your identity before processing your request.
How long we keep your personal data
We retain your account information for as long as your account is active or as needed to provide services to you.
Order information is retained for 7 years to comply with tax and accounting requirements.
Marketing consent and preferences are retained until you withdraw consent or request deletion.
Server logs and analytics data are typically retained for 12 months unless longer retention is required for security purposes.
International data transfers and safeguards
We use third-party services (such as payment processors and email services) that may process your data. These services are GDPR-compliant and have appropriate safeguards in place.
Where possible, we transfer data to countries with adequacy decisions from the European Commission.
For transfers to countries without adequacy decisions, we use Standard Contractual Clauses approved by the European Commission.
Your right to lodge a complaint
You have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal data violates GDPR. You can contact your local data protection authority or the supervisory authority in the country where you live or work.