Privacy Policy for itooamharvard.com
1. Introduction
At itooamharvard.com, we are committed to protecting your personal privacy and safeguarding the integrity, confidentiality, and security of your personal data. We recognize the importance of maintaining your trust, and we take our responsibility seriously to ensure that your personal information is collected, processed, and stored in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
This Privacy Policy outlines how we collect, use, disclose, and retain your information when you visit or interact with our website. By accessing itooamharvard.com, you consent to the practices described in this policy.
2. Scope of Policy and Data Controller
This Privacy Policy applies to all individuals who interact with our website and services. The data controller responsible for the processing of personal information under this policy is itooamharvard.com. If you have any questions regarding data management, requests, or concerns, you can contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal information:
a. Usage Data:
Includes information about how you use our website such as IP address, browser type and version, time zone settings, referral URLs, pages viewed, and the dates and times of requests. This data is collected automatically through cookies and similar tracking technologies.
b. Account Data:
If you register or create an account, we may collect your name, email address, postal address, and telephone number.
c. Profile Data:
This includes your preferences, interests, behaviors on the website, past purchases or engagement history, and feedback you’ve submitted.
d. Communication Data:
We may process information contained in or relating to any communications that you send to us, including customer support requests, emails, chat interactions, and call transcripts.
e. Technical Data:
Device identifiers, system configuration settings, operating system, platform, and other technology-related data used by your device to access our site.
f. Transaction Data:
Includes payment records, delivery details, order history, invoicing, and billing correspondence.
g. Preference Data:
Marketing and communication preferences you have provided, such as whether you’ve opted in to receive promotional emails and which topics interest you.
4. Legal Bases for Processing
We rely on the following legal bases for the processing of your personal data:
– Consent: For communications, marketing, and non-essential cookies where your explicit opt-in is required.
– Contractual Necessity: To fulfill contractual obligations when you register an account, make a purchase, or request services.
– Legal Obligation: Where processing is necessary for compliance with a legal obligation.
– Legitimate Interests: For purposes such as website functionality, fraud prevention, analytics, and internal administration, provided those interests are not overridden by your rights.
5. Your Rights
As a data subject, you are entitled to exercise the following rights under applicable law:
– Access: Request informationabout what personal data we hold about you.
– Rectification: Request the correction of inaccurate or incomplete personal data.
– Erasure: Request that we delete personal data when there is no legal ground for us to continue processing it.
– Restriction: Request the restriction of processing in certain circumstances (e.g., during a dispute).
– Portability: Receive your personal data in a structured, commonly used, and machine-readable format and transmit it to another controller.
To exercise any of these rights, please contact us via email at [email protected]. We may request reasonable verification of identity before processing such requests.
6. Security Measures
We implement comprehensive security measures to protect your personal data. These include but are not limited to:
– End-to-end data encryption during transmission and storage.
– Role-based access permissions and administrative authentication protocols.
– Firewalls, intrusion detection systems, and security monitoring tools.
– Regular data backups securely stored in encrypted environments.
– Routine employee training on confidentiality and data protection practices.
7. International Transfers
Your information may be transferred to and processed in countries outside of your country of residence. Where such transfers occur, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, or equivalent frameworks recognized for cross-border data protection.
8. Data Retention
We retain personal data only as long as necessary in accordance with the purpose for which it was collected, and in compliance with legal obligations. Retention periods are subject to the following general practices:
– Usage and Technical Data: Retained for up to 1 year for analytics purposes.
– Account, Profile, and Communication Data: Retained for the duration of your account or service relationship and up to 3 years following account deletion.
– Transaction Data: Retained for up to 7 years for tax and regulatory compliance.
– Preference Data: Retained until you withdraw consent or modify preferences.
9. Cookie Policy
We use cookies and similar technologies to enhance your experience on itooamharvard.com. Cookies fall into the following categories:
– Essential Cookies: Necessary for the website to function properly (e.g., login sessions).
– Functional Cookies: Remember your preferences and settings.
– Analytics Cookies: Collect anonymized data on how users interact with the website to help us improve performance and usability.
– Performance Cookies: Track page load times and interaction metrics to ensure a performant experience.
10. Cookie Management and Compliance with GDPR & CCPA
Before setting cookies that are not strictly necessary, we will present you with a clear cookie consent banner. You may manage your cookie preferences at any time by accessing our cookie settings tool or adjusting your browser settings.
Under CCPA, California residents have the right to opt out of the “sale” of their personal data. We do not sell personal information. However, you may still exercise your rights under the CCPA regarding access and deletion by contacting us.
11. Special Protections for Children
Our website and services are not intended for children under 13 years of age. We do not knowingly collect or solicit personal information from minors. If we become aware that a child under 13 has provided us with personal information, we will delete it promptly. Parents or guardians who believe their child may have submitted information can contact us at [email protected].
12. Policy Updates and Notifications
This Privacy Policy may be revised periodically to reflect legal, technological, or business changes. Updates will be posted directly on itooamharvard.com. Where appropriate, significant changes will be notified via email or prominent site notifications. We encourage you to review the policy regularly to remain informed about how your information is being protected.
13. Contact Information
For any privacy-related inquiries, concerns, or to exercise your data rights, you may contact us via email at:
Email: [email protected]
We are committed to ensuring full compliance with all applicable privacy laws and safeguarding the integrity of your personal data. Should you have any concerns about your privacy while using itooamharvard.com, do not hesitate to reach out.