Privacy Policy for NicoTatarowicz.com
1. Introduction
At www.nicotatarowicz.com (“Website”, “we”, “us”, or “our”), we are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in accordance with applicable data protection and privacy laws, including but not limited to the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
We value transparency and accountability and are dedicated to managing your personal data respectfully, lawfully, and ethically.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use our Website. For the purposes of applicable data protection legislation, Nico Tatarowicz is the data controller of your personal data collected via the Website and is responsible for determining the purposes and means of processing such data.
If you have any questions or concerns regarding our use of your personal data, please contact us at [email protected].
3. Categories of Data Processed
We collect and process different categories of information depending on how you interact with the Website:
a. Usage Data
This includes information such as your IP address, browser type and version, operating system, referral source, pages visited, time and date of visit, session duration, and similar diagnostic data.
b. Account Data
If you establish an account with us (where applicable), we may collect your full name, email address, mailing address, telephone number, and account credentials.
c. Profile Data
This encompasses your preferences, purchase history, interactions with digital content, and other behavioral insights gathered via the Website.
d. Communication Data
Includes any messages you send to us for support, general inquiries, or other interactions. We retain the content of the communication as well as associated metadata, such as timestamps and contact channels used.
e. Technical Data
Includes your device type, operating system, browser stack, screen resolution, and other system configurations used to access the Website.
f. Transaction Data
Covers payment and billing details (limited to what is necessary for payment processing), delivery address, and transaction history, where applicable.
g. Preference Data
This includes information you provide about your communication preferences, consent for marketing communications, and product or content interests.
4. Legal Bases for Processing
We rely on the following legal bases to process your personal data:
– Legitimate Interests: To optimize and personalize our Website, provide support, analyze usage, and maintain security protocols.
– Contractual Necessity: To fulfill any obligations stemming from contracts entered into with you, such as processing a purchase or account registration.
– Consent: Where required, we will obtain your informed and explicit consent prior to processing your data, especially for marketing or non-essential cookies.
– Legal Obligation: In some cases, we are required to process your data to comply with legal or regulatory requirements.
5. Your Rights
You retain the following rights in respect of your personal data, subject to certain limitations and conditions under the GDPR and CCPA:
– Right of Access: Obtain a copy of the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data under applicable circumstances (“right to be forgotten”).
– Right to Restriction: Request that we restrict the processing of your personal data in certain scenarios.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format, and transfer it where possible.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement and maintain appropriate technical and organizational measures designed to protect your personal data against unauthorized access, loss, alteration, or disclosure. These measures include, but are not limited to:
– Data encryption in transit and at rest
– Role-based access control
– Regular backups of critical data
– Staff training on data protection and confidentiality
– Secure hosting environments
While we take all reasonable steps to secure your personal data, no method of transmission over the Internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.
7. International Transfers
Where your data is transferred outside the European Economic Area (EEA) or other jurisdiction with strong data protections, we ensure such transfers are lawful and secure. This may involve implementing standard contractual clauses approved by the European Commission or ensuring that the country offers an adequate level of data protection.
8. Data Retention
We retain personal data only for as long as necessary for the purpose for which it was collected, including satisfying legal, contractual, or reporting obligations. Retention periods vary depending on the category of data:
– Usage and Technical Data: Up to 12 months
– Account and Transaction Data: For the duration of the relationship and up to 6 years thereafter
– Communication Data: 3 years from last communication
– Preference and Marketing Data: Until consent is withdrawn or the data becomes stale (not used for 24+ months)
Upon expiry of the retention period, your data will be deleted or anonymized in a secure manner.
9. Cookie Policy
The Website uses cookies and similar technologies to improve user experience, analyze traffic, and support functional operations. We categorize cookies as follows:
– Essential Cookies: Necessary for the Website to function (e.g., session identification, navigation).
– Functional Cookies: Enhance usability (e.g., remembering your login, language preferences).
– Analytics and Performance Cookies: Help us understand user behavior and improve our services (e.g., via tools like Google Analytics).
We do not use cookies to collect personally identifiable information without your consent.
10. Cookie Management and Compliance with GDPR & CCPA
Upon your first visit to nicotatarowicz.com, you will be presented with a cookie consent banner that allows you to manage cookie preferences. You may accept or reject non-essential cookies.
Under GDPR, we require your explicit opt-in for non-essential cookies. Under CCPA, you may “opt-out” of the sale of personal information, although we do not sell personal data in any form.
You may also manage your cookie preferences through your browser settings or use third-party tools for cookie blocking.
11. Special Protections for Children Under 13
This Website is not directed to children under the age of 13, and we do not knowingly collect personal information from anyone in that age group. If we learn that we have inadvertently collected information from a child under 13, we will take steps to delete such data without delay.
Parents or legal guardians who believe that their child may have submitted personal information to us should contact us at [email protected].
12. Policy Updates & User Notifications
We reserve the right to update this Privacy Policy at any time to reflect changes in our practices or legal obligations. When material changes are made, we will post a prominent notice on the Website. Users are encouraged to review this page periodically to stay informed.
Continued use of the Website indicates acknowledgement and acceptance of any updated versions of the policy.
13. Contact
For questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact:
Email: [email protected]
Website: www.nicotatarowicz.com
We are committed to maintaining the highest standards in privacy compliance. If you believe your data has been used inconsistently with this Policy or your expectations, please reach out and we will thoroughly investigate and respond in accordance with applicable laws.