GDPR and CCPA Compliance

Effective Date:

 

This Privacy Policy outlines how Rossi Jay Inc. complies with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). By accessing or using the Website, you agree to the terms of this Policy.

 a. Data Collection and Processing

 Types of Personal Data: We may collect various types of personal data from users, including but not limited to:

- Name, contact information, and demographic details

- Financial information for payment processing

- Browsing history and device information

- Any other data voluntarily provided by users

 

b. Legal Basis for Processing: We rely on the following legal bases for processing personal data:

- User consent

- Contractual necessity for the performance of services

- Compliance with legal obligations

- Legitimate interests pursued by us or third parties

 

  1. Use and Sharing of Personal Data

 a. Use of Personal Data: We may use personal data for the following purposes:

- Providing and improving the services offered on the Website

- Personalizing user experience and delivering targeted content

- Processing payments and fulfilling orders

- Communicating with users, including responding to inquiries and providing support

- Analyzing and optimizing website performance

- Complying with legal obligations

 

b. Sharing of Personal Data: We may share personal data with the following parties:

- Third-party service providers who assist in operating the Website and delivering services

- Business partners and affiliates for joint marketing purposes (with user consent)

- Legal authorities or other third parties when required by law or to protect our rights

 

  1. User Rights and Choices

 a. Access, Rectification, and Deletion: Users have the right to access, correct, or request deletion of their personal data, subject to certain exceptions and limitations.

 b. Data Portability: Upon request, we will provide users with a copy of their personal data in a structured, commonly used, and machine-readable format.

 c. Opt-Out of Sale: We do not sell personal data to third parties.

 d. Marketing Communications: Users may opt-out of receiving marketing communications from us by following the unsubscribe instructions provided in the communication.

 

  1. Data Security and Retention

 a. Data Security: We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or alteration. However, no method of transmission or storage is entirely secure, and we cannot guarantee absolute data security.

 b. Data Retention: We retain personal data for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law.

 

  1. International Data Transfers

 

We may transfer personal data to countries outside the European Economic Area (EEA) or the United States. Such transfers will be conducted in compliance with applicable data protection laws and through appropriate safeguards, such as standard contractual clauses or Privacy Shield certification.

 

  1. Your California Privacy Rights

If you are a California resident, you have the right to request information regarding the disclosure of your personal data to third parties for their direct marketing purposes. To make such a request, please contact us using the information provided below.

 

By accessing or using the Website, you acknowledge that you have read, understood, and agreed to comply with this Policy.