Privacy Policy for oasisgowerton.com

1. Introduction

At oasisgowerton.com (“we,” “our,” or “us”), we are committed to protecting and respecting your privacy. We recognize the importance of safeguarding your personal data and ensuring transparency regarding how it is collected, used, stored, and shared. This Privacy Policy outlines our practices and your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We are dedicated to processing your data lawfully, fairly, and transparently for the purpose of delivering and improving our services.

2. Scope and Data Controller

This Privacy Policy applies to the personal data collected through our website oasisgowerton.com and any related services accessible via this domain. The data controller responsible for your personal data is Oasis Gowerton, who may be contacted at [email protected]. This policy applies to all users and visitors of oasisgowerton.com, regardless of location, to the extent permitted under applicable local legislation.

3. Categories of Data We Collect

We collect and process various categories of personal data in order to provide and enhance our services:

3.1. Usage Data
Includes data about your interactions with the website such as IP address, browser type and version, pages visited, session duration, and referring URL.

3.2. Account Data
Information you provide when creating an account or engaging our services, such as your full name, residential or billing address, email address, and telephone number.

3.3. Profile Data
Details about your preferences, site behavior, purchase history, product interactions, and saved settings.

3.4. Communication Data
Includes all correspondence you send to us, including support tickets, emails, feedback forms, and message logs.

3.5. Technical Data
General device and system-related data, including your operating system, device type, screen resolution, and browser configuration.

3.6. Transaction Data
Records of payments made through our site, billing information, shipping addresses, and purchase histories.

3.7. Preference Data
Marketing communication preferences, frequency of contact, and data derived from surveys or promotions indicating your interests.

4. Legal Bases for Processing

We process your personal data under the following lawful bases:

– Performance of a Contract: When data is necessary to fulfill contractual obligations or pre-contractual requests (e.g., ordering services).
– Legitimate Interests: For internal business operations, fraud prevention, and improving our services, where these interests are not overridden by your rights.
– Legal Obligation: Where processing is required to comply with legal or regulatory requirements.
– Consent: When you provide express consent for data use (e.g., for direct marketing or analytics cookies).

5. Your Rights

In accordance with GDPR and CCPA, you may exercise the following rights:

– Right of Access: Request confirmation and access to the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete personal information.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data, subject to legal and contractual obligations.
– Right to Restriction: Request limitation on how your data is processed under certain circumstances.
– Right to Data Portability: Receive a structured, machine-readable copy of your data to transfer to another provider.
– California Residents’ Rights: Under CCPA, additional rights include disclosure of categories of personal data collected, opt-out of sale of data, and equal service without discrimination.

To exercise any of the above rights, you may contact us directly at [email protected].

6. Security Measures

We implement robust organizational and technical measures to ensure the confidentiality, integrity, and availability of personal data. These include:

– TLS/SSL encryption for data in transit
– Access controls and role-based permissions
– Secure data storage and regular data backups
– Employee data protection training and awareness programs
– Periodic internal security audits

7. International Transfers

Personal data may be transferred to and processed in countries outside your jurisdiction. In such cases, we ensure appropriate safeguards are in place, including the use of Standard Contractual Clauses approved by the European Commission or compliance with international frameworks equivalent to GDPR and CCPA standards to lawfully transfer data.

8. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy:

– Usage Data: Retained for up to 12 months for analytics purposes.
– Account Data: Retained for the lifetime of the account and up to 6 years following account closure for compliance and legal obligations.
– Communication Data: Retained for 3 years from the date of interaction.
– Transaction Data: Maintained for 7 years to comply with financial and tax reporting regulations.
– Technical and Preference Data: Retained for 12 months unless renewed by continued engagement or further consent.

Upon expiration of the retention period, data is securely deleted or anonymized.

9. Cookie Policy

oasisgowerton.com uses cookies and similar technologies to enhance user experience and internal analytics. Types of cookies used include:

– Essential Cookies: Required for site functionality such as secure log-in and shopping cart management.
– Functional Cookies: Remember your preferences and settings.
– Analytics Cookies: Help us understand user interaction with our website to improve performance.
– Performance Cookies: Monitor site speed and usage statistics to optimize experience.

Cookies do not contain personally identifying information, although they may link to data stored in your account.

10. Cookie Management and Compliance

We comply with GDPR and CCPA requirements for user consent and control over cookie use. On your first visit, you are presented with a cookie consent banner which offers options to accept or reject cookie categories, excluding those strictly necessary. You may also manage your cookie preferences at any time by adjusting your browser settings or visiting the cookie settings page on oasisgowerton.com.

11. Children’s Privacy

Our website and services are not intended for children under the age of 13. We do not knowingly collect personal data from children without verifiable parental consent. If we become aware that a child under 13 has provided personal data without such consent, we will delete that information as quickly as possible. Parents or guardians with concerns can contact us at [email protected].

12. Policy Updates

We may update this Privacy Policy to reflect changes in our practices, technology, legal obligations, or other relevant factors. When substantial changes are made, we will notify users through prominent notices on oasisgowerton.com. Continued use of our website following such changes constitutes acknowledgment and agreement to the updated terms.

13. Contact Information

For any questions, concerns, or requests related to this Privacy Policy or our practices, please contact:

Email: [email protected]

We are fully committed to privacy and will respond promptly and transparently to any inquiries or concerns regarding your personal data.

—

This Privacy Policy is designed to ensure compliance with the GDPR, CCPA, and other applicable data protection regulations. Users are encouraged to reach out at any time to [email protected] for questions or assistance related to privacy.