Privacy Policy for virabar.com
1. Introduction
At Virabar, accessible via virabar.com, we are firmly committed to safeguarding the privacy and personal data of our users. This Privacy Policy outlines how we collect, use, store, and protect personal information in compliance with all applicable data protection and privacy regulations, including the General Data Protection Regulation (EU GDPR) and the California Consumer Privacy Act (CCPA). Your trust is vital to us, and we are dedicated to handling your personal data with the highest standards of security and transparency.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data processed by Virabar when you visit our website, create an account, make purchases, engage with customer services, or otherwise use our services. Virabar is the data controller in respect of all personal data processed through virabar.com and any associated services, determining the purposes and means of processing your personal data.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Includes data about how you use the website, such as your IP address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access virabar.com. Usage data may also include logs of pages visited, interaction times, and referring/exit pages.
b. Account Data
Includes information provided during account creation and management such as full name, billing/shipping address, email address, and phone number.
c. Profile Data
Includes customer preferences, purchase history, browsing activity, saved items or wishlists, and behavioral insights based on interactions with our services.
d. Communication Data
Includes records of correspondence with our support teams, enquiries submitted via forms, emails sent to [email protected], and customer service logs.
e. Technical Data
Includes device identification details, system configuration data, screen resolution, plug-in data, and crash logs.
f. Transaction Data
Includes payment processing information (excluding full credit card details), invoices, billing history, delivery tracking, and logistics data.
g. Preference Data
Includes marketing consent preferences, newsletter subscription settings, interests in specific products or services, and opt-in/opt-out status for direct communications.
4. Legal Bases for Processing
We process personal data only where permitted by law. Specific legal bases for processing include:
– Contract: When necessary for fulfilling a contract with you or to take steps prior to entering into a contract.
– Consent: Where you have freely given specific, informed, and unambiguous consent (e.g., for receiving marketing communications).
– Legitimate Interests: For purposes of operating and improving our services, fraud prevention, and network security, provided such interests are not overridden by your fundamental rights and freedoms.
– Legal Obligation: Where processing is required for compliance with a legal obligation to which Virabar is subject.
5. Your Data Protection Rights
In accordance with GDPR and CCPA, you have the following rights regarding your personal data:
– Right of Access: Obtain a copy of personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data under certain conditions.
– Right to Restriction: Request a restriction of processing where applicable.
– Right to Data Portability: Obtain your data in a structured, commonly used, machine-readable format and transmit it to another controller.
– Right to Object: Object to certain types of processing, including direct marketing.
– Right to Withdraw Consent: Withdraw previously given consent at any time without affecting the lawfulness of prior processing.
– Right to Non-Discrimination: Under CCPA, exercise your rights without being discriminated against.
To exercise any of these rights, please contact us at [email protected].
6. Data Security Measures
We implement industry-standard safeguards to ensure the security and confidentiality of your data. This includes:
– Encryption: Data is encrypted in transit and at rest using secure protocols.
– Access Control: Personal data is accessible only to authorized personnel.
– Regular Backups: System backups are performed regularly to prevent data loss.
– Staff Training: Team members receive regular training on data protection principles and practices.
7. International Data Transfers
Where data is transferred from the European Economic Area (EEA) or California to jurisdictions outside those regions, such transfers are safeguarded by appropriate contractual means such as Standard Contractual Clauses approved by the European Commission or the appropriate regulatory mechanisms under CCPA to ensure equivalent levels of data protection.
8. Data Retention
We retain personal data only for as long as is necessary for the purposes for which it was collected:
– Account Data: Retained as long as your account is active and up to 7 years thereafter to comply with financial and legal obligations.
– Transaction Data: Retained for at least 7 years for tax and audit purposes.
– Communication Data: Retained for 3 years from the date of last interaction.
– Technical and Usage Data: Retained for up to 3 years to assess performance and improve functionality.
– Marketing Preferences: Retained until you withdraw your consent.
9. Cookie Policy
Virabar.com uses cookies and similar tracking technologies to enhance your browsing experience. Cookies are categorized as:
– Essential Cookies: Needed for the website to function properly (e.g., session cookies, account authentication).
– Functional Cookies: Enable site personalization and remembered preferences.
– Analytical Cookies: Help us understand how users interact with virabar.com using aggregated, anonymous statistical data.
– Performance Cookies: Track performance metrics to optimize load times and responsiveness.
10. Cookie Management and Compliance
You may manage cookie preferences through your browser settings or via our cookie consent tool available upon visiting virabar.com. We ensure GDPR and CCPA compliance by obtaining express consent for non-essential cookies and providing opt-out mechanisms for data sale or sharing practices (where applicable).
Under the CCPA, you have the right to opt-out of the sale of personal information. Although Virabar does not sell personal data for monetary gain, you may contact us at [email protected] to exercise any applicable rights.
11. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect personal data from anyone under this age. If we become aware that we have inadvertently processed personal data of a child, we will promptly delete such information. Parents or legal guardians who believe that their child has provided us with personal data are encouraged to contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to revise this Privacy Policy to reflect changes in legal requirements, operating practices, or our services. Any material updates will be communicated through our website or directly via email where appropriate. Continued use of virabar.com after such updates will signify your acknowledgment of the changes.
13. Contact
For any questions, concerns, or requests related to this Privacy Policy or your personal data, please contact:
Virabar
Email: [email protected]
Website: https://virabar.com
We are committed to upholding your rights, securing your data, and maintaining full compliance with the provisions of the GDPR and CCPA. Please don’t hesitate to contact us with any privacy-related concerns.