This privacy policy operates alongside the terms and conditions of use of our site.

Applicable laws

In accordance with the General Data Protection Regulation (GDPR), this privacy policy complies with the following regulations.

Personal data must be:

  1. processed in a lawful, fair and transparent manner with regard to the person concerned (lawfulness, loyalty, transparency);
  2. collected for specific, explicit and legitimate purposes, and not subsequently processed in a manner incompatible with these purposes; further processing for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes is not considered, in accordance with Article 89(1), to be incompatible with the original purposes (limitation purposes);
  3. adequate, relevant and limited to what is necessary for the purposes for which they are processed (data minimization);
  4. accurate and, if necessary, kept up to date; all reasonable measures must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay (accuracy);
  5. kept in a form allowing the identification of the persons concerned for a period not exceeding that necessary for the purposes for which they are processed; personal data may be retained for longer periods to the extent that they will be processed exclusively for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes in accordance with Article 89 , paragraph 1, provided that the appropriate technical and organizational measures required by the regulation are implemented in order to guarantee the rights and freedoms of the data subject (retention limitation);
  6. processed in a manner that ensures appropriate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures (integrity and confidentiality).

Processing is only lawful if and to the extent that at least one of the following conditions is met:

  1. the data subject has consented to the processing of his or her personal data for one or more specific purposes;
  2. the processing is necessary for the performance of a contract to which the data subject is party or for the execution of pre-contractual measures taken at the request of the data subject;
  3. the processing is necessary for compliance with a legal obligation to which the data controller is subject;
  4. the processing is necessary to safeguard the vital interests of the data subject or of another natural person;
  5. the processing is necessary for the performance of a mission of public interest or relating to the exercise of public authority vested in the controller;
  6. processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the person concerned is a child.

For residents of the State of California, this privacy policy is intended to comply with the California Consumer Privacy Act (CCPA). If there are inconsistencies between this document and the CCPA, state law will apply. If we find any inconsistencies, we will change our policy to comply with the relevant law.

Consent

Users agree that by using our site, they consent to:

  1. the conditions set out in this privacy policy and
  2. the collection, use and retention of the data listed in this policy.

Personal data we collect

Data collected automatically

When you visit and use our site, we may automatically collect and store the following information:

  1. Address IP
  2. Place
  3. Links a user clicks while using the site

Data collected non-automatically

We may also collect the following data when you perform certain functions on our site:

  1. First and last name
  2. Age
  3. Email
  4. Phone number
  5. Autofill data

 

Please note that we only collect data that helps us achieve the purpose set out in this privacy policy. We will not collect additional data without first informing you.

How we use personal data

Personal data collected on our site will only be used for the purposes specified in this policy or indicated on the relevant pages of our site. We will not use your data beyond what we disclose.

Who we share personal data with

Employees
We may disclose to any member of our organization such user data as they reasonably need to carry out the purposes set out in this policy.

Other disclosures
We undertake not to sell or share your data with third parties, except in the following cases:

  1. if required by law
  2. if it is required for any legal proceedings
  3. to prove or protect our legal rights
  4. to buyers or potential buyers of this company in the event that we seek to sell the company

If you follow hyperlinks from our site to another site, please note that we are not responsible for and have no control over their privacy policies and practices.

How long we store personal data

We do not retain user data beyond what is necessary to fulfill the purposes for which it is collected.

How we protect your personal data

To ensure your security is protected, we use transport layer security protocol to transmit personal information in our system.

All data stored in our system is well secured and is only accessible to our employees. Our employees are bound by strict confidentiality agreements and a violation of this agreement would result in termination of the employee.

While we take all reasonable precautions to ensure that our user data is secure and users are protected, there always remains the risk of harm. The Internet as a whole can be, at times, insecure and therefore we are unable to guarantee the security of user data beyond what is reasonably practical.

Minors

The GDPR specifies that people under the age of 15 are considered minors for the purposes of data collection. Minors must have the consent of a legal representative for their data to be collected, processed and used.

Your rights as a user

Under the GDPR, users have the following rights as data subjects:

  1. permission to access
  2. right of rectification
  3. right to erasure
  4. right to restrict processing
  5. right to data portability
  6. right to object

You will find further information on these rights in chapter 3 (art 12-23) of the GDPR.

How to modify, delete or contest the data collected

Cookie Policy

A cookie is a small file, stored on a user's hard drive by the website. Its purpose is to collect data relating to the user's browsing habits.

We use the following types of cookies on our site:

  1. Functional cookies
    We use them to remember any selections you make on our site so that they are saved for future visits.
  2. Analytical cookies
    This allows us to improve the design and functionality of our site by collecting data about the content you access and engage with while using our site.
  3. Targeting cookies
    These cookies collect data about how you use the site and your preferences. This allows us to make the information you see on our site more promotional and targeted to you.

You can choose to be notified each time a cookie is transmitted. You can also choose to disable cookies entirely in your Internet browser, but this may decrease the quality of your user experience.

Modifications

This privacy policy may be amended from time to time to maintain compliance with the law and to reflect any changes to our data collection process. We recommend that our users check our policy from time to time to ensure that they are informed of any updates. If necessary, we may notify users by email of changes to this policy.

Contact

If you have any questions for us, do not hesitate to contact us using the following:Contact@bricoluxi.com

Effective date: May 3, 2022