PRIVACY POLICY
At Team Brask (“we,” “us,” or “our”), accessible at teambrask.com (the “Website”), we are firmly committed to safeguarding your personal data and respecting your privacy rights. We recognize the importance of protecting information and ensuring transparency in how we collect, use, and share your data. This Privacy Policy outlines our practices in accordance with applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Please review it carefully to understand how your personal data is handled.
1. Scope of Policy and Role as Data Controller
This Privacy Policy applies to personal information collected through your use of teambrask.com and any related services, content, features, or communications you have with us. Team Brask is the data controller for processing your personal data, as defined by applicable data protection laws. If you have questions or concerns regarding our data practices, please contact us at [email protected].
2. Categories of Personal Data We Process
We collect and process the following categories of personal data:
a) Usage Data: Includes information on how you interact with our Website, such as IP addresses, browser type and version, time zone setting, browser plug-in types, device identifiers, session duration, and website navigation paths.
b) Account Data: Information you provide when creating an account or making inquiries, such as your full name, email address, mailing address, and telephone number.
c) Profile Data: Includes your preferences, product interactions, purchase history, feedback, and behavioral insights derived from your use of the Website.
d) Communication Data: Records of any communications you initiate with us, including inquiry forms, support correspondence, feedback, and contact history.
e) Technical Data: Device type, operating system, hardware information, system configuration, and platform used to access the Website.
f) Transaction Data: Details related to purchases and fulfillment, including billing address, order details, payment confirmation, and delivery information.
g) Preference Data: Marketing preferences, communication consents, survey responses, and specified interests in products or services offered via teambrask.com.
3. Legal Bases for Processing
We process your personal data lawfully and only when a valid legal basis applies. Depending on the nature of your interaction with us, this processing is based on:
– Contract: Where processing is necessary for the performance of a contract with you or to take steps to enter into a contract.
– Consent: Where you have provided explicit consent for processing, such as subscribing to newsletters or agreeing to cookies.
– Legitimate Interest: Where processing is necessary for our legitimate business interests (e.g., Website improvements, fraud prevention), balanced against your rights and freedoms.
– Legal Obligation: Where processing is required to comply with applicable legal or regulatory obligations.
4. Your Data Protection Rights
As applicable under the GDPR and CCPA, you have the following rights regarding your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request us to correct or update inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data under certain circumstances.
– Right to Restrict Processing: You may request to limit the processing of your data when conditions under the law are met.
– Right to Portability: You have the right to request your data in a structured, commonly used, and machine-readable format, and to transmit it to another controller.
– Right to Object: You can object to the use of your data under legitimate interest or for direct marketing purposes.
– Right to Non-Discrimination (CCPA): You will not be discriminated against for exercising your privacy rights.
To exercise any of the above rights, please contact us at [email protected].
5. Data Security
We implement appropriate technical and organizational safeguards to protect your personal data:
– Data in transit and at rest is protected through encryption protocols.
– Access to personal data is restricted to authorized personnel trained in data privacy and confidentiality practices.
– Regular security audits and backup protocols ensure continued integrity and disaster recovery.
– Firewalls, intrusion detection systems, and secure authentication mechanisms are employed to protect our infrastructure.
6. International Data Transfers
Where personal data is transferred outside the European Economic Area or other jurisdictions with equivalent protection laws, we ensure appropriate safeguards are in place. These may include European Commission Standard Contractual Clauses or compliance with relevant laws in the recipient jurisdiction. You may contact us at [email protected] for further information regarding these transfer mechanisms.
7. Data Retention
We retain personal data only for as long as necessary, based on the categories listed below:
– Usage and Technical Data: Retained for up to 12 months for analytics and troubleshooting.
– Account and Profile Data: Retained as long as the user maintains an active account and up to 6 years thereafter in compliance with record-keeping obligations.
– Communication Data: Retained for up to 2 years post-closure of any support or inquiry matter.
– Transaction Data: Retained for 7 years for audit and compliance purposes.
– Preference and Marketing Data: Retained until the user withdraws consent or after 24 months of inactivity.
Data no longer required is securely deleted or anonymized in accordance with our internal data disposal procedures.
8. Cookie Policy
Our Website uses cookies and similar technologies to enhance your browsing experience and analyze usage patterns. Cookies fall under the following categories:
– Essential Cookies: Necessary for the Website to function properly. These cannot be disabled.
– Functional Cookies: Enable site personalization and remember user preferences.
– Analytics Cookies: Collect anonymous data on Website usage and interactions (e.g., Google Analytics).
– Performance Cookies: Help us understand the performance of Website features to improve user experience.
We do not use cookies to collect personal data without your consent.
9. Cookie Management and Compliance
Upon your first visit to teambrask.com, a cookie banner informs you about our use of cookies and enables consent management. You can change or withdraw your consent at any time by adjusting your browser settings or using the cookie management tools provided on the Website. We ensure our cookie practices comply with GDPR and CCPA requirements, including prior consent where necessary and honoring “Do Not Sell My Information” requests under the CCPA.
10. Children’s Privacy
teambrask.com is not directed to, and we do not knowingly collect personal data from, individuals under the age of 13. If we discover that a child under 13 has provided us with personal data, we will promptly delete it. Parents or legal guardians who believe that we may have collected information about their child should contact us immediately at [email protected].
11. Policy Updates and Notifications
We reserve the right to modify this Privacy Policy at our discretion to reflect changes in legal requirements, our processing activities, or improvements to the Website. Material changes will be communicated via the Website and, where appropriate, via electronic notification. We encourage you to periodically review this Privacy Policy for ongoing assurance of our commitment to privacy.
12. How to Contact Us
For any inquiries related to this Privacy Policy, your data rights, or our privacy practices, please contact us at:
Email: [email protected]
13. Compliance Assurance
Team Brask is committed to upholding the highest standards of privacy compliance under the GDPR, CCPA, and any applicable international data protection laws. If you have any concerns about how your personal data is being handled, please reach out using the contact information above. We will respond diligently and in accordance with applicable regulatory timelines.