Privacy Policy
1. Introduction: Our Commitment to Privacy and Data Protection
At Consort SitFast, accessible at consort-sitfast.com, we are committed to safeguarding your privacy and ensuring that your personal data is handled in a secure, transparent, and responsible manner. We understand the importance of privacy and data security, and this Privacy Policy demonstrates our dedication to complying with applicable data protection regulations, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”). We aim to provide you with clear information on how we collect, use, share, and protect personal information, and what rights you have in relation to that data.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use the website consort-sitfast.com (“the Site”). For the purposes of GDPR and other applicable regulations, Consort SitFast is the data “controller” of your personal data—we determine the purposes and means of the processing of personal information.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
We collect certain information about how you interact with our Site. This includes browser type, IP address, access times, pages viewed, referring URL, and interactions with our website features. This data helps us analyze and improve site functionality and user experience.
b. Account Data
When creating an account or placing an order, we may collect your full name, billing and shipping address, email address, phone number, and other relevant identifiers required to provide our services.
c. Profile Data
We collect data related to your preferences, product interests, order history, and behavioral patterns within the Site. This allows us to personalize your experience and provide tailored recommendations.
d. Communication Data
We retain information you provide when contacting us through support channels, forms, or email. This includes the content of your inquiry, the contact method used, and related correspondence history.
e. Technical Data
We gather device-specific data including hardware model, operating system version, browser software, mobile network information, and diagnostics.
f. Transaction Data
This includes details of purchases and payments made through the Site, including the date, amount, products ordered, and associated delivery or billing information. We do not store full payment card information; such data is processed securely by our payment processors.
g. Preference Data
We maintain records of marketing consents, communication preferences, and product category interests expressed during site interactions, newsletter sign-ups, or purchase behavior.
4. Legal Bases for Processing
We process your personal data only where legally permissible, based on one or more of the following legal grounds:
– Consent: You have given clear consent for us to process your personal data for specific purposes (e.g., receiving marketing communications).
– Contractual Necessity: Processing is necessary to perform a contract with you or to take pre-contractual steps at your request.
– Legitimate Interests: We process information to pursue our legitimate interests (e.g., improving services, preventing fraud), provided those interests do not override your rights.
– Legal Obligation: In limited cases, the law requires us to process personal data (e.g., for tax compliance or legal claims).
5. Your Rights
As a data subject under GDPR and CCPA, you have the following rights regarding your personal data:
– Right of Access: You may request details of the personal data we hold about you.
– Right to Rectification: You can correct any inaccurate or incomplete personal data.
– Right to Erasure (“Right to be Forgotten”): You may request deletion of your personal data under certain conditions.
– Right to Restrict Processing: You may request a temporary halt to data processing in specific situations.
– Right to Data Portability: You can request your data in a structured, commonly used, machine-readable format and transmit it to another controller.
– Right to Object: You can object to processing based on legitimate interests or direct marketing.
To exercise any of these rights, please contact us at [email protected]. We will respond in accordance with applicable legal requirements.
6. Security Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk. Our security protocols include:
– Encryption of personal data in transit and at rest
– Access controls and role-based restriction of data access
– Regular system and network monitoring
– Employee training and confidentiality obligations
– Secure data backups and disaster recovery procedures
7. International Transfers
Your personal data may be transferred to, and processed in, jurisdictions outside your home country. In such cases, Consort SitFast ensures that appropriate safeguards are in place, including the use of European Commission-approved Standard Contractual Clauses or equivalent legal mechanisms under applicable laws, to protect your data during any cross-border transfer.
8. Data Retention
We retain personal data only for as long as necessary for the purposes set out in this Privacy Policy and to comply with legal, accounting, or reporting obligations. Specific retention periods are as follows:
– Usage and Technical Data: Up to 26 months
– Account and Profile Data: Retained for the duration of account activity plus 5 years
– Transaction Data: Retained for 7 years for financial compliance
– Communication Data: Retained up to 3 years after the last interaction
– Preference and Marketing Data: Retained until consent is withdrawn or after a 2-year period of inactivity
9. Cookie Policy
consort-sitfast.com uses cookies to improve your browsing experience, analyze usage patterns, and personalize content. We utilize several types of cookies:
– Essential Cookies: Required for basic site functionality such as page navigation and secure area access.
– Functional Cookies: Enable the Site to remember your preferences and choices (e.g., locale).
– Analytics Cookies: Collect aggregated data on how visitors interact with the Site to improve performance.
– Performance Cookies: Help us enhance load times and responsiveness.
10. Cookie Management and Compliance with GDPR & CCPA
Upon your first visit, our Site presents a cookie consent banner allowing you to choose which types of cookies you consent to. You may update your preferences or withdraw consent at any time by accessing the Cookie Settings module available on the Site. Visitors from jurisdictions with specific privacy laws (e.g. the EU, California) are given appropriate opt-in or opt-out rights in accordance with regulations.
11. Special Protections for Children Under 13
We do not knowingly collect or process personal data from children under the age of 13. If you believe a child has provided us with personal data without parental consent, please contact us at [email protected], and we will take appropriate steps to delete such information.
12. Policy Updates & User Notifications
We may update this Privacy Policy periodically to reflect changes in our processing activities, legal obligations, or user feedback. Any substantial modifications will be communicated via the Site or by direct notification when applicable. Your continued use of the Site indicates acceptance of the revised policy.
13. Contact Us
If you have any questions regarding this Privacy Policy, your personal data, or wish to exercise your rights under applicable data protection laws, please contact us at:
Email: [email protected]
Website: https://consort-sitfast.com
We are committed to resolving any privacy concerns in a timely and comprehensive manner and upholding our compliance obligations under GDPR, CCPA, and other relevant frameworks.