Effective Date: 15-Oct-2023
This Privacy Policy sets out how FlintFusion (“we,” “our,” or “us”) collects, uses, stores, protects, and processes your personal data as a user (“you” or “user”) of our website, applications, and services. We are fully committed to protecting your privacy and ensuring compliance with international data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). By using our services, you agree to the terms outlined in this policy.
1. Collection and Use of Personal Data
1.1. Types of Personal Data We Collect
We may collect various types of personal data from you when you interact with our website and services, including but not limited to:
- Contact details (name, email address, etc.)
- Demographic information (age, gender, etc.)
- User preferences and behavior
- Device information (IP address, browser type, etc.)
- Usage data (traffic, interaction with website, etc.)
1.2. Purpose of Personal Data Collection
We collect personal data for the following purposes:
- To enhance and improve our services
- To communicate with you and provide customer support
- To personalize your experience and provide relevant content
- To administer your account and enable transactions
- To analyze and measure the effectiveness of our marketing campaigns
- To comply with legal obligations and respond to requests from authorities
1.3. Legal Basis for Data Processing
We rely on the following legal bases for processing your personal data:
- Performance of a contract: Processing necessary to fulfill our obligations and provide you with the requested services.
- Consent: Processing based on your explicit consent, which you may withdraw at any time.
- Legitimate interests: Processing necessary for our legitimate interests or those of a third party, only when they are not overridden by your interests. We carefully balance these interests and assess the potential impact on your privacy rights.
1.4. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, meeting legal and regulatory requirements. Once your data is no longer needed, it will be securely deleted or anonymized.
2. User Rights
2.1. Access, Correction, and Deletion
As a user, you have the right to access, update, correct, or delete the personal data we hold about you. You can easily manage your personal data through your account settings. However, please note that some data may be retained for legitimate reasons or to comply with legal obligations.
2.2. Objection to Processing
You have the right to object to the processing of your personal data when it is based on legitimate interests. If you decide to object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds or legal reasons for the processing.
2.3. Withdrawal of Consent
Where your data is processed based on your consent, you have the right to withdraw that consent at any time. Withdrawal of consent will not affect the lawfulness of processing before the withdrawal.
2.4. Data Portability
Upon request, we will provide you with a copy of your personal data in a structured, commonly used, and machine-readable format. You also have the right to request the direct transfer of your data to another data controller when technically feasible.
2.5. Sensitive Data
We do not collect or process any sensitive personal data, such as racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health or genetic data, or biometric information.
3. Data Security Measures
3.1. Protection of Personal Data
We take appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, misuse, or alteration. These measures include data encryption, access controls, regular backups, and staff training on data protection.
3.2. Notifications of Data Breaches
In the event of a data breach that affects your personal data and presents a risk to your rights and freedoms, we will notify you and the appropriate supervisory authorities without undue delay, as required by law.
4. Third-Party Data Sharing
4.1. Service Providers
We may engage trusted third-party service providers who assist us in delivering and improving our services. These providers are legally bound to handle the data in accordance with applicable data protection laws and regulations.
4.2. Analytics and Marketing
We may use reputable third-party analytics and marketing services, such as Google Analytics, to collect non-personal traffic data and insights. This information helps us improve our website’s performance and provide you with a better user experience.
4.3. Legal Requests
We may disclose your personal data if required to do so by law or in response to valid legal requests from competent authorities.
5. Updates to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or improvements to our services. When we make updates, we will revise the “Effective Date” at the top of this policy.
6. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please Contact Us at [email protected]. We will promptly respond to your inquiries and address any concerns you may have.