Privacy Policy for norbertmichel.com
1. Introduction
At norbertmichel.com, your privacy is of paramount importance. We are fully committed to protecting your personal data and handling it in a transparent, secure, and privacy-first manner. This Privacy Policy outlines how we collect, use, store, and share your personal information, as well as your rights in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection and privacy laws.
2. Scope of Policy and Data Controller Responsibility
This Privacy Policy applies to all users who access or otherwise interact with norbertmichel.com. The data controller responsible for processing personal data in connection with this website is Norbert Michel, who may be contacted via email at [email protected].
As the data controller, we determine the purposes and means of processing your personal information and are accountable for safeguarding your data in compliance with applicable laws.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data: Technical information including your browser type and version, IP address, pages visited, time spent on pages, referring URLs, time zone setting, and other diagnostic data related to your interactions with norbertmichel.com.
b. Account Data: Personal identifiers such as your name, mailing address, email address, phone number, and similar contact data when you create an account or subscribe to services.
c. Profile Data: Information regarding your preferences, previous interactions, behavior on the website, purchase history, and saved settings that help personalize your experience.
d. Communication Data: Any information submitted through contact forms, email correspondence with support, or details provided during chats or messaging with our website.
e. Technical Data: Information about the device you use to access the site, including hardware model, operating system, browser configuration, and system preferences.
f. Transaction Data: Details surrounding purchases or transactions conducted via the website, including billing information, delivery address, and payment method details (note: sensitive payment data is processed securely by third-party providers and not stored by us).
g. Preference Data: Your consent preferences for marketing communications, selected topics of interest, participation in events or surveys, language choice, and communication preferences.
4. Legal Bases for Processing
We process your personal data in accordance with the following lawful bases under the GDPR:
– Consent: When you have provided your explicit permission for us to use your data for specific purposes, such as receiving newsletters or targeted marketing.
– Contractual Necessity: When data processing is required to perform a contract with you, such as fulfilling an order.
– Legal Obligation: When we are legally required to retain or disclose information.
– Legitimate Interests: When processing is necessary for our legitimate business interests, such as improving website performance or preventing fraudulent activity, and where such interests are not overridden by your rights and freedoms.
Where required under the CCPA, we offer California residents the right to opt out of the sale of personal information and access other rights as detailed below.
5. Your Data Protection Rights
You are entitled to exercise the following rights under the GDPR and CCPA, where applicable:
– Right of Access: Obtain confirmation of whether your data is being processed and request a copy of the data.
– Right to Rectification: Request the correction of inaccurate or incomplete data.
– Right to Erasure: Ask for your personal data to be deleted in certain situations, such as when it is no longer necessary for the purpose it was collected.
– Right to Restrict Processing: Request limitation of processing if you contest the accuracy or necessity of use.
– Right to Data Portability: Receive your personal data in a structured, commonly-used, and machine-readable format, and transmit that data to another controller.
– Right to Object: Object to processing based on legitimate interests or direct marketing.
– Non-Discrimination: We will never discriminate against you for exercising your CCPA rights.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement rigorous security standards to protect your personal data against unauthorized access, loss, alteration, or misuse. Our safeguards include encryption of data both in transit and at rest, role-based access control, firewalled hosting environments, secure development practices, frequent data backups, incident response protocols, and staff privacy training.
7. International Transfers
Personal data collected from users may be stored and processed outside the jurisdiction in which it was collected, including destinations outside the European Economic Area (EEA). Where such transfers occur, they are conducted in accordance with the GDPR through standard contractual clauses or other lawful mechanisms to ensure adequate levels of data protection.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected and in line with legal, regulatory, or contractual obligations. The specific retention periods for each category of data are generally as follows:
– Usage Data: retained for up to 24 months for analytics.
– Account and Profile Data: retained for the duration of your account’s activity and up to 2 years following account closure or inactivity.
– Communication Data: retained for up to 3 years for resolving disputes or service improvement.
– Transaction Data: retained for up to 7 years to comply with tax and financial regulations.
– Marketing and Preference Data: retained until you withdraw consent or unsubscribe.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience on norbertmichel.com. Cookies used may be categorized as follows:
– Essential Cookies: Necessary for the website to function and cannot be switched off (e.g., authentication, security).
– Functional Cookies: Remember user settings and choices to provide a customized experience.
– Analytics Cookies: Collect anonymized data on how users interact with our site to enhance performance and usability.
– Performance Cookies: Help us understand the effectiveness of our content and improve user navigation.
10. Cookie Management and Compliance
Upon accessing norbertmichel.com, you will be presented with a clear opportunity to provide or deny consent to non-essential cookies in compliance with GDPR and CCPA. You may also manage your cookie preferences at any time through your browser settings or by revisiting the cookie consent mechanism on our site.
Do Not Track (DNT) signals are respected where applicable and supported by browser or device configuration.
11. Children’s Privacy
norbertmichel.com does not knowingly collect personal data from children under the age of 13. If we become aware that personal information from a child has been erroneously collected, we will take immediate steps to delete it from our systems. Parents or guardians with concerns regarding their children’s data may contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to update and modify this Privacy Policy as necessary to reflect changes in legal obligations, technological changes, or advancements in service offerings. Users are advised to review this page periodically. Material changes will be communicated clearly via website notifications or direct communication when appropriate.
13. Contact Us
For any privacy-related inquiries, concerns, or to exercise your rights under applicable data protection regulations, please reach out to us at:
Email: [email protected]
We are committed to maintaining compliance with global privacy standards and dedicated to responding diligently to all data protection matters. Your trust and data security are central to our commitment at norbertmichel.com.