Privacy Policy
Calstate9.com (“we,” “us,” or “our”) is committed to safeguarding your personal data and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you interact with our website, calstate9.com. We are dedicated to maintaining the confidentiality, integrity, and security of your data in full compliance with applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Commitment to Privacy and Data Protection
Your privacy is of paramount importance to us. At calstate9.com, we prioritize a privacy-first approach in all our operations, ensuring that your personal data is handled with transparency, fairness, and accountability. We process personal data only for legitimate and specified purposes and implement industry-standard safeguards to protect it from unauthorized access, disclosure, or abuse.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of calstate9.com and governs all personal data collected through our website or other means of interaction. Calstate9.com is the Data Controller for the personal data processed, meaning that we determine the purposes and means of processing such data.
If you are located in the European Economic Area (EEA), the United Kingdom, or California, your rights under GDPR or CCPA are respected and enforced in accordance with the relevant laws.
3. Categories of Data We Process
We collect and process various categories of personal data, including but not limited to:
a. Usage Data
Information about how you interact with our site, such as IP address, browser type, operating system, device settings, referral sources, time of access, and session data.
b. Account Data
Personal details you provide when creating or maintaining an account, including your full name, postal address, email address, and telephone number.
c. Profile Data
Information related to your personal preferences, behavior on our platform, purchase history, interests, and feedback.
d. Communication Data
Records of your communications with us, such as emails, customer support queries, complaint logs, and other contact history.
e. Technical Data
Device-specific data such as hardware model, operating system version, device identifiers, screen resolution, and system configuration.
f. Transaction Data
Details of transactions you perform on our website, including billing address, delivery information, payment method, and transaction receipts. We do not directly store credit card or banking details; this is conducted securely via third-party payment processors.
g. Preference Data
Information related to your choices regarding receiving marketing communications from us and your interests in products or services offered on calstate9.com.
4. Legal Bases for Processing Personal Data
We process personal data under the following lawful bases:
– Consent: When you have given clear permission for us to process your data for specific purposes (e.g., subscribing to newsletters).
– Performance of a Contract: When processing is necessary to fulfill a service or transaction you have initiated.
– Legal Obligation: When required to comply with legal or regulatory obligations.
– Legitimate Interest: When processing is necessary for our legitimate interests, such as maintaining website performance, fraud prevention, and customer support services, provided these interests do not override your fundamental rights and freedoms.
5. Your Data Protection Rights
Under data protection laws, you are entitled to the following rights:
– Right of Access: Obtain confirmation as to whether we process your personal data, and if so, access to that data.
– Right to Rectification: Request correction of any inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your personal data in certain circumstances, also known as the “right to be forgotten.”
– Right to Restrict Processing: Limit the processing of your data in specific cases.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format and transfer it to another controller.
– Right to Object: Object to processing based on our legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: If processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, you may contact us at [email protected].
6. Security Measures
We implement a range of administrative, organizational, and technical safeguards to protect your personal data:
– Data Encryption: All data transmissions are secured using SSL/TLS protocols.
– Access Controls: Role-based access restrictions ensure data is available only to authorized personnel.
– Backup and Recovery: Data backups are carried out regularly with disaster recovery procedures in place.
– Staff Training: Our teams receive ongoing education on data protection best practices and compliance requirements.
7. International Data Transfers
Your personal data may be transferred to and stored in countries outside of your jurisdiction, including jurisdictions that may not provide the same level of data protection. In such cases, we employ appropriate safeguards, including Standard Contractual Clauses approved by the European Commission, to ensure adequate protection aligned with GDPR and other global data protection standards.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal, accounting, or reporting requirements. Retention periods vary by data type:
– Transaction Data: Retained for up to 7 years for tax and legal audit purposes.
– Account Data and Profile Data: Retained until your account is deleted or becomes inactive for more than 2 years.
– Communication Data: Retained for up to 3 years after resolution.
– Preference Data: Retained until you update your preferences or withdraw consent.
– Technical or Usage Data: Retained for up to 12 months unless required for security or analytics.
9. Cookie Policy
We use cookies and similar tracking technologies on calstate9.com to enhance your browsing experience. Cookies are small text files stored on your device that help us recognize your preferences and deliver functionality efficiently. Types of cookies we use include:
– Essential Cookies: Necessary for the proper operation of the website.
– Functional Cookies: Enhance functionality and personalization based on user settings.
– Analytics Cookies: Help us understand website usage and improve performance.
– Performance Cookies: Help monitor system performance and resolve technical issues.
10. Cookie Management and User Consent
Under GDPR and CCPA, you have the right to regulate the use of cookies. Upon your first visit to calstate9.com, you are presented with a cookie banner that allows you to accept or decline non-essential cookies. You may also manage cookie settings through your browser at any time.
Note that essential cookies necessary for site functionality will always be enabled, as they are required for the website to function properly.
11. Children’s Privacy
Calstate9.com does not knowingly collect personal data from children under the age of 13. If you are a parent or guardian and believe that your child has provided us with information without your consent, please contact us at [email protected], and we will promptly delete such data.
12. Updates to This Policy
We may revise this Privacy Policy from time to time to reflect changes in legal obligations or operational requirements. Where appropriate, we will notify users of material changes and provide you with an opportunity to review them. We encourage you to review this policy periodically to remain informed about how we protect your personal data.
13. Contact
If you have questions, concerns, or requests related to this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
Website: https://www.calstate9.com
We are committed to ensuring full compliance with GDPR, CCPA, and other applicable privacy laws. If you believe your rights have been violated, please reach out – your data privacy matters to us.