Company is committed to protecting your personal information and your right to privacy. This Privacy Policy describes how we collect, use, and share your information on the basis of your consent where you have provided it, our legitimate interests in operating and securing our website and business, and our legal obligations under applicable law. Where applicable this policy addresses your rights under the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA) if you are a California resident, and under the General Data Protection Regulation (GDPR) if you are located in the European Economic Area (EEA) or the European Union (EU).
Where GDPR applies, we process your personal data only where we have a lawful basis to do so under Article 6(1) of the GDPR. The legal bases we rely on are:
Where we rely on legitimate interests as our legal basis, those interests are: operating and improving our website, preventing fraud and ensuring security, and managing our business operations.
Where we ask you to provide personal information, for example through our contact form, doing so is entirely voluntary. You are under no statutory or contractual obligation to provide your data. The only consequence of not providing it is that we may be unable to respond to your enquiry or fulfil your request.
We use cookies, web beacons, and other tracking technologies to collect information about your interactions with our Site. See our Cookies Policy for more details.
We do not sell your personal information. We may disclose information to: Service Providers (for website hosting, analytics, marketing, or support); Legal Requirements (if required by law or legal process); Business Transfers (in case of a merger, acquisition, or sale of assets). All service providers and processors with whom we share personal data are contractually required to process data only on our documented instructions and to implement appropriate security measures.
Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different to the laws of your country (and, in some cases, may not be as protective). In any case, Company will take reasonable measures to ensure protections are applied through the use of lawful transfer mechanisms and contractual restrictions.
Specifically, our primary offices are located in the United States of America, and our third-party service providers and partners operate around the world. This means that when we collect your Personal Information, it may be processed in any of these countries.
We use third-party analytics tools (including Google Analytics and Hotjar) that may collect data about your behavior on our website. This may involve profiling your interactions for the purposes of website improvement and analytics. We do not make solely automated decisions that produce legal or similarly significant effects about you. Where any profiling does occur, you have the right to object to such processing under Article 21 GDPR by contacting us at [insert email address].
We do not sell your personal information as defined under the CCPA/CPRA. However, certain disclosures to analytics providers (such as Google Analytics and Hotjar) may constitute “sharing” of personal information for cross-context behavioural advertising purposes under CPRA. California residents have the right to opt out of any such sharing at any time. To exercise this right, please click [insert link] — “Do Not Sell or Share My Personal Information” . We will also honour opt-out preference signals, including Global Privacy Control (GPC) signals, as required by CPRA Regulations §7026.
If you have a privacy concern or complaint about how we handle your personal information, please contact us in the first instance at [insert email address] with the subject line “Privacy Complaint”. We will acknowledge your complaint within [insert number] business days and aim to resolve it within 30 days.
To exercise any of your rights, please contact us using the details below or submit a request via [insert link]. Please include “CCPA/GDPR Request” in the subject line. We may need to verify your identity before processing your request. For CCPA requests, we will respond within 45 days (extendable by a further 45 days with notice). For GDPR requests, we will respond within one month (extendable by two further months for complex or numerous requests).
We implement reasonable administrative, technical, and physical safeguards to protect your personal information. However, no method of internet transmission or storage is 100% secure.
We retain your personal information only for as long as reasonably necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. This may include keeping it for the period of time needed for Company to pursue legitimate business interests, conduct audits, comply with (and demonstrate compliance with) legal obligations, resolve disputes, and enforce our agreements.
Our Site is not intended for children under the age of 16. We do not knowingly collect personal information from minors. Contact us at [insert email address] if you believe we have collected information from a child.
Email: hello@oneprimero.com | Website: www.oneprimero.com