Introduction
At GreenFest OnLine! (GFO), we are committed to protecting your privacy. This Privacy Policy outlines the types of data we collect, how we use it, and the measures we take to ensure your information is secure. By using our website, you agree to the terms of this policy.
1. Types of Data Collected
- Personal Information: We collect personal information that you provide to us when creating an account, subscribing to newsletters, or participating in community activities. This may include your name, email address, postal address, and phone number.
- Usage Data: We collect information about how you interact with our website, such as your IP address, browser type, pages visited, and time spent on our site.
- Cookies and Tracking Technologies: We use cookies and similar technologies to enhance your browsing experience, analyze site traffic, and understand user behavior.
2. How Data is Collected
- Directly from Users: We collect data that you provide directly through forms, account creation, and interactions with our services.
- Automatically: We collect usage data automatically as you navigate our site through cookies, web beacons, and other tracking technologies.
3. Purposes for Which Data is Used
- To Provide and Improve Services: We use your data to operate and improve our website, personalize your experience, and develop new features.
- Communication: We use your contact information to send updates, newsletters, and promotional materials, with your consent.
- Analytics and Research: We analyze usage data to understand user preferences and behavior, which helps us improve our services.
- Compliance and Legal Obligations: We may use your data to comply with legal requirements, enforce our Terms of Service, and protect the rights and safety of our users.
4. Data Protection Measures
- Security Measures: We implement various security measures to protect your data from unauthorized access, use, or disclosure. These measures include encryption, access controls, and regular security assessments.
- Data Retention: We retain your data only as long as necessary to fulfill the purposes outlined in this policy or as required by law.
5. User Rights Regarding Their Data
- Access: You have the right to request access to the personal data we hold about you.
- Correction: You can request correction of inaccurate or incomplete data.
- Deletion: You have the right to request the deletion of your personal data, subject to certain conditions.
- Objection and Restriction: You can object to or request the restriction of processing your data in certain circumstances.
- Data Portability: You can request a copy of your data in a structured, commonly used, and machine-readable format.
6. Compliance with Relevant Privacy Laws
- GDPR: If you are a European Economic Area (EEA) resident, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with a supervisory authority.
- CCPA: If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA), including the right to opt out of the sale of your personal information.
7. Third-Party Services
- Service Providers: We may share your data with third-party service providers who assist us in operating our website and providing our services. These providers are bound by confidentiality agreements and are not permitted to use your data for any other purposes.
- Third-Party Links: Our website may contain links to third-party websites. We are not responsible for the privacy practices of these sites and encourage you to review their privacy policies.
8. Children’s Privacy
Our website is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected such information, we will take steps to delete it.
9. International Data Transfers
If you are accessing our website from outside the country where our servers are located, your data may be transferred across international borders. We take measures to ensure that your data is protected in accordance with this Privacy Policy.
10. Automated Decision-Making and Profiling
We do not use automated decision-making or profiling that significantly affects users without human intervention. If this changes, we will update this policy and inform users accordingly.
11. Data Protection Officer (DPO)
We have appointed a Data Protection Officer to oversee compliance with this Privacy Policy and to address any data protection issues. You can contact our DPO at [email protected].
12. Legal Basis for Processing Personal Data
We rely on the following legal bases to process your personal data:
- Consent: When you have given us clear consent to process your data for a specific purpose.
- Contract: When processing your data is necessary for the performance of a contract.
- Legal Obligation: When processing is necessary to comply with the law.
- Legitimate Interests: When processing your data is necessary for our legitimate interests or the legitimate interests of a third party, provided those interests are not overridden by your rights.
13. Privacy Shield
We comply with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States.
14. Breach Notification
In the event of a data breach, we will notify affected users and relevant supervisory authorities within 72 hours of becoming aware of the breach, where feasible, and provide information about the breach and its potential impact.
15. Your Choices and Controls
You have choices regarding the use and disclosure of your personal information. You can:
- Update or Correct Information: Update or correct your personal information through your account settings.
- Deactivate Your Account: Deactivate your account by following the instructions on the website or contacting support.
- Opt-Out of Marketing Communications: You can opt out of receiving marketing communications by following the unsubscribe instructions provided in those communications.
16. Legal Requests
We may access, preserve, and share your information in response to a legal request (such as a search warrant, court order, or subpoena) if we believe in good faith that the law requires us to.
17. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated policy on our website and indicating the date of the last revision.
18. Contact Information
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at [email protected]m.