Privacy Policy for OasisEpic.com
1. Introduction
At OasisEpic.com (“we”, “our”, or “us”), we are committed to protecting and respecting your privacy. We recognize the importance of safeguarding your personal data and are dedicated to processing it with transparency, care, and in full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy is designed to inform you of how we collect, use, share, and protect your personal information, and to explain your rights and choices regarding your personal data.
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to all visitors, users, and others who interact with OasisEpic.com. As the data controller, we determine the purposes and means of processing personal data collected through our website, customer interactions, and related services. If you have any questions concerning your data or this policy, you may contact us at [email protected].
3. Categories of Data Processed
We collect and process the following categories of personal data depending on your interactions with OasisEpic.com:
– Usage Data: Information about how you use the website, including IP address, browser type, operating system, referring URLs, page views, navigation patterns, and session timestamps.
– Account Data: Personal details provided at registration such as your full name, mailing address, email address, and telephone number.
– Profile Data: Preferences alongside behavioral data, purchase history, product selections, and services usage metrics.
– Communication Data: Correspondence exchanged with us, including inquiries, support requests, and contact history across channels.
– Technical Data: Device identifiers, configuration settings, platform type, and other system-related metadata for diagnostics and analytics.
– Transaction Data: Payment processing details, billing and shipping addresses, and delivery logistics related to your purchases.
– Preference Data: Marketing preferences, product/service interest indicators, and your consents for communications or targeted offers.
4. Legal Bases for Processing Personal Data
We rely on several lawful bases under GDPR for collecting and using your data, including:
– Consent: Where you have explicitly provided permission for us to process your personal data for specific purposes, such as receiving marketing communications.
– Contractual Necessity: To fulfill our contractual obligations with you, such as creating an account, processing orders, delivering products, or providing support.
– Legal Obligation: Where processing is required to comply with regulatory or legal obligations.
– Legitimate Interests: For operating, maintaining, and improving OasisEpic.com, delivering customer service, preventing fraud, and analyzing web performance, provided that such interests are not overridden by your rights.
5. Your Rights
Under GDPR and CCPA, and subject to applicable law and limitations, you have the following rights:
– Right of Access: Request a copy of personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data where we have no legal obligation or overriding interests to retain it.
– Right to Restriction: Request limitation of the processing of your personal information under certain conditions.
– Right to Data Portability: Receive your personal data in a structured, machine-readable format.
– Right to Object: Object to processing based on legitimate interests or direct marketing.
– Right Not to be Discriminated Against: Under CCPA, you will not be denied goods or services for exercising your rights.
To exercise any of the above rights, you may contact us at [email protected].
6. Security Measures
We implement and maintain a comprehensive set of technical and organizational security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction, including:
– Industry-standard encryption protocols (SSL/TLS) for data in transit.
– Role-based access controls and administrative safeguards.
– Routine data backups and secure storage solutions.
– Employee training programs to ensure confidentiality and privacy awareness.
7. International Transfers
When transferring personal data outside the European Economic Area (EEA) or other jurisdictions with differing privacy regulations, we implement appropriate safeguards, including Standard Contractual Clauses and other compliance mechanisms recognized under applicable data protection laws. These measures ensure that your information receives a level of protection consistent with your domestic rights and expectations.
8. Data Retention
We retain your personal data for no longer than is necessary for the purposes for which it was collected, including:
– Account Data and Profile Data: Retained for the duration of your account and for up to 24 months after closure.
– Transaction Data: Retained for a minimum of 7 years for fiscal auditing and compliance with tax law.
– Communication Data: Retained for up to 36 months for service quality and dispute resolution.
– Usage and Technical Data: Retained for 18 months for analytical purposes.
– Preference Data: Retained until consent is withdrawn or updated.
9. Cookie Policy
OasisEpic.com uses cookies and similar technologies to enhance site functionality and provide a personalized experience. We categorize cookies as follows:
– Essential Cookies: Necessary for core site operations, such as secure login and cart functionality.
– Functional Cookies: Enable customization features like remembering user preferences and settings.
– Analytics Cookies: Gather aggregated user behavior data to improve website features and performance.
– Performance Cookies: Monitor operational performance, system diagnostics, and trouble-shooting.
10. Cookie Management and Compliance
We use a cookie consent banner, in compliance with GDPR and CCPA, which allows you to manage your cookie preferences when you first visit OasisEpic.com. You can update your settings at any time via your browser preferences or our on-site cookie management tool. Under applicable law, you can also withdraw consent for non-essential cookies at any time.
For further details, please see our full Cookie Policy or contact us at [email protected].
11. Protection of Children’s Privacy
OasisEpic.com is not directed to, nor intended for, children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected such data, we will take immediate steps to delete it. Parents or legal guardians who believe their child’s data has been collected may contact us to request deletion at [email protected].
12. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time in response to legal, regulatory, or operational requirements. Revisions will be posted on OasisEpic.com, and we encourage you to review the policy periodically for updates. Where required, we will notify users of material changes through appropriate means, such as email or a notice on the website.
13. Contact Us
If you have any questions, requests, or concerns relating to this Privacy Policy or the handling of your personal data, please contact:
Email: [email protected]
We are committed to maintaining the highest standards of privacy compliance. Your trust is important to us, and we are here to support your data protection rights.
Thank you for visiting OasisEpic.com.