Privacy Policy for Sudori.net
1. Introduction
At Sudori.net, we are committed to safeguarding the privacy and personal data of our users. Protecting your personal information is of paramount importance, and we are dedicated to collecting and processing your data transparently, securely, and lawfully in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, manage, and secure your personal data when you interact with Sudori.net through our website and services.
2. Scope of This Policy and Role as Data Controller
This Privacy Policy applies to all users of the Sudori.net website, including customers, visitors, and registered account holders, regardless of geographic location. For the purposes of applicable data protection laws, Sudori.net acts as the “Data Controller” for the handling of personal information collected via the website, meaning we determine the purposes and means of processing such personal data.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data:
Includes information about how you use Sudori.net, such as your browser type, IP address, access times, pages visited, referring URLs, and session identifiers.
b. Account Data:
If you register an account, we may collect personal identification details including your full name, billing address, email address, phone number, and login credentials.
c. Profile Data:
Information you provide when updating your user profile, such as demographic data, communication preferences, saved items, and user behavior on the platform, including purchases or browsing habits.
d. Communication Data:
Records of your interactions with us, including customer service requests, inquiries submitted via contact forms, support tickets, and messages exchanged.
e. Technical Data:
Includes data collected from your device or browser, such as device model, operating system version, screen resolution, system language, and other diagnostic details.
f. Transaction Data:
Details of items purchased through Sudori.net, payment method data (excluding full payment card information, which is handled by secure third-party processors), shipping and delivery information, and order history.
g. Preference Data:
Your communication preferences, marketing consents, selections regarding newsletters, wish lists, survey responses, and product interests.
4. Legal Bases for Processing Personal Data
We process your personal data based on one or more of the following lawful grounds:
– Performance of Contract: When processing is necessary to fulfill our contractual obligations to you, such as processing transactions or delivering products.
– Legitimate Interests: When processing supports a legitimate business interest, such as conducting analytics to improve service functionality or preventing fraud, provided those interests are not overridden by your data protection rights.
– Consent: Where you have explicitly provided consent for specific purposes, such as opting into marketing communications.
– Legal Obligation: Where we are required to process data to comply with legal or regulatory requirements.
5. Your Data Protection Rights
Under GDPR, CCPA, and other applicable privacy laws, you are entitled to exercise the following rights with regard to your personal data:
– Right of Access: Request access to your personal data and obtain information about how it is processed.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your personal data, subject to legal or contractual obligations.
– Right to Restriction: Request that we restrict the processing of your personal data under certain circumstances.
– Right to Data Portability: Receive your personal data in a structured, commonly used format and transmit it to another controller where applicable.
You may submit any of these requests by contacting us directly at [email protected].
6. Security Measures
We maintain appropriate technical and organizational safeguards designed to protect your personal data. These include:
– Encryption: All data exchanges are encrypted using industry-standard TLS (Transport Layer Security).
– Access Controls: Access to personal data is restricted to authorized personnel with appropriate access levels.
– Backups and Redundancies: We maintain secure backups and redundancies to protect against data loss or system failure.
– Employee Training: Our staff is trained on data privacy principles and confidentiality obligations.
7. International Data Transfers
If your personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with data protection requirements, we ensure such transfers are lawfully conducted using appropriate safeguards. These include Standard Contractual Clauses approved by the European Commission and compliance with national data protection regulations in the destination country.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purpose for which it is collected and to comply with legal, regulatory, accounting, or reporting obligations. Specific retention periods include:
– Usage and Technical Data: Retained for 12 months for analytics and troubleshooting.
– Account and Profile Data: Retained for the duration of the account plus 24 months post-deactivation.
– Transaction Data: Retained for 7 years to comply with financial and tax laws.
– Communication Data: Retained for 2 years following the last interaction.
– Preference Data: Retained until consent is withdrawn or deemed no longer relevant.
9. Cookies Policy
Sudori.net uses cookies and similar technologies to enhance user experience and improve functionality. We categorize cookies as follows:
– Essential Cookies: Necessary for site performance and user authentication.
– Functional Cookies: Remember user preferences and enhance usability.
– Analytics Cookies: Help us analyze website usage trends and improve content.
– Performance Cookies: Measure performance metrics and diagnostic data.
No personally identifiable data is stored in cookies unless explicitly provided through user interaction.
10. Cookie Management and Compliance
You have full control over cookie preferences. Upon visiting Sudori.net, you can manage settings via our cookie consent banner. You may also adjust preferences within your browser settings to accept, reject, or delete cookies. We comply fully with GDPR requirements for cookie consent in the EU, and honor Do Not Sell My Personal Information requests under the CCPA. Where required, opt-outs for third-party cookies, such as from Google Analytics, are also available.
11. Children’s Privacy
Sudori.net does not knowingly collect any personal data from children under the age of 13. If we become aware that a child under 13 has provided us with their personal data, we will take steps to delete such information immediately. Parents or guardians who believe that their child has submitted personal data are encouraged to contact us via [email protected].
12. Changes to This Policy
We reserve the right to amend this Privacy Policy from time to time to reflect changes in the law, our data practices, or website features. When changes occur, we will appropriately notify users through the website or via email if applicable material changes are made.
13. Contact Us
If you have any questions, concerns, or privacy-related complaints, please contact our Data Protection Officer at:
Email: [email protected]
Website: https://www.sudori.net
Sudori.net is fully committed to privacy rights and regulatory compliance. You are encouraged to reach out with any privacy, data protection, or access inquiries, and we will respond promptly and in accordance with applicable laws.