Privacy Policy for Xaba Cake – ClearEyesBlueLight.com
Effective Date: [DATE]
At Xaba Cake, operating through the website ClearEyesBlueLight.com (“we”, “our”, “us”), we value your privacy and are committed to protecting the personal information that you share with us. This Privacy Policy explains how we collect, use, store, share, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable privacy laws.
Please read this policy carefully to understand how we handle your personal data. By accessing and using our website, you consent to the practices described in this policy.
1. Information We Collect
We collect the following types of personal data:
- Personal Identifiers: Name, email address, postal address, phone number.
- Transaction Data: Information related to purchases, such as order details, payment information (though payments are processed via third-party secure platforms), and billing address.
- Usage Data: Information about how you interact with our website, including IP address, browser type, device information, and browsing patterns (e.g., pages visited, time spent).
- Cookies and Tracking Data: Information collected through cookies and similar technologies (see our Cookie Policy for more details).
2. How We Use Your Information
We use the personal data we collect for the following purposes:
- To Process Transactions: To complete your orders, process payments, and send you related communications (such as order confirmation, shipping notifications, and customer support).
- To Improve Our Services: To analyze your use of our website, improve its functionality, enhance user experience, and address any technical issues.
- To Communicate with You: To send you marketing communications (if you opt-in), respond to your inquiries, and send important updates related to our products or services.
- Legal Obligations: To comply with legal requirements, resolve disputes, and enforce our agreements.
3. Data Storage and Security
We take appropriate security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, secure servers, and regular security assessments. However, no data transmission over the internet is completely secure, and we cannot guarantee the absolute security of your information.
Your personal data is stored within the European Economic Area (EEA) or securely outside of it in compliance with GDPR requirements. We use trusted third-party services to store and process data, and we ensure these third parties comply with GDPR through appropriate data processing agreements.
4. Sharing Your Information
We do not sell, rent, or trade your personal data. We may share your data with the following parties:
- Service Providers: We may share your personal data with trusted third-party service providers (such as payment processors, shipping companies, email providers) to fulfill orders and provide services. These third parties are contractually bound to safeguard your data.
- Legal Requirements: We may disclose your personal information if required to do so by law or if we believe such action is necessary to comply with legal obligations, protect our rights, or investigate fraud.
- Business Transfers: In the event of a business merger, acquisition, or asset sale, your personal data may be transferred as part of the transaction.
5. Your Rights Under GDPR
Under the GDPR, you have the following rights regarding your personal data:
- Right to Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You can request that we correct or update your personal information if it is inaccurate or incomplete.
- Right to Erasure: You can request that we delete your personal data under certain circumstances (e.g., when the data is no longer necessary for the purposes for which it was collected).
- Right to Restrict Processing: You can request that we limit the processing of your personal data under certain conditions (e.g., when you contest the accuracy of the data or object to processing).
- Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format, and transfer it to another data controller.
- Right to Object: You can object to the processing of your personal data for direct marketing purposes or based on legitimate interests.
- Right to Withdraw Consent: If we rely on your consent to process personal data, you have the right to withdraw that consent at any time.
To exercise any of these rights, please contact us at [email protected].
6. Retention of Your Data
We will retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law. Once we no longer need your personal data for business purposes, we will securely delete or anonymize it.
7. Cookies
We use cookies and similar tracking technologies to enhance your experience on our website, analyze website traffic, and personalize content. For more information on the cookies we use and how to manage them, please refer to our Cookie Policy.
8. Third-Party Links
Our website may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review the privacy policies of any external sites before providing any personal data.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make changes, we will update the “Effective Date” at the top of this policy. We recommend that you review this policy periodically to stay informed about how we protect your personal information.
10. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
- Business Name: Xaba Cake
- Website: www.cleareyesbluelight.com
- Email: [email protected]
- Address: 126 Hlikihla Street, Khayelitsha, Cape Town, 7784, South Africa.
By using our website, you acknowledge that you have read and understood this Privacy Policy.
This policy ensures that users’ rights are clearly defined and complies with GDPR’s rigorous standards, safeguarding both your business and your customers’ privacy. If you have any additional provisions or specific data practices, we can further refine the policy accordingly.