Privacy Policy for Twin Palm SRL
1. Introduction
At Twin Palm SRL, we are committed to safeguarding the personal information and privacy of our users. We uphold the highest standards of data protection and are fully aligned with the principles enshrined in the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. This Privacy Policy outlines how we collect, use, disclose, and protect your personal data when you access or interact with our website: twinpalmsrl.com.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all individuals who visit twinpalmsrl.com, communicate with us electronically, or utilize our services in any capacity where personal data is exchanged. For the purposes of the GDPR and other similar regulations, Twin Palm SRL acts as the “Data Controller” concerning all personal data collected and processed through this site.
3. Categories of Data Processed
We may process the following categories of personal data:
– Usage Data
This includes information such as IP address, browser type, region, operating system, session duration, and browsing behavior on twinpalmsrl.com. These details enable us to analyze traffic patterns and improve website functionality.
– Account Data
Relevant if you register for services or create an account, including your full name, address, email address, and contact number.
– Profile Data
Preferences, purchase history, engagement behavior, and activity on the website may be collected to enhance user experience.
– Communication Data
Information provided in support requests, inquiries sent to [email protected], chat records, or emails exchanged.
– Technical Data
Details on your device, system configurations, screen resolution, language settings, and OS version used to access our services.
– Transaction Data
Payment methods used, transaction history, billing and shipping addresses, order confirmations, and receipts where applicable.
– Preference Data
Marketing and communication preferences, subscriptions, interest categories, notification settings, and opt-in choices.
4. Legal Bases for Processing
We collect and process your personal data on one or more of the following legal grounds as stipulated by applicable law:
– Contract Performance: Where processing is necessary to fulfill a contractual obligation.
– Consent: Where you have granted us explicit permission to use your data.
– Legitimate Interest: Where processing is needed for a legitimate business purpose, balanced against your rights and freedoms.
– Legal Obligation: Where data processing is necessary for compliance with a regulatory or legal duty.
5. Your Rights
Under applicable privacy law, you are entitled to exercise the following rights with respect to your personal data:
– Right of Access: You have the right to obtain confirmation of whether we are processing your data and to request a copy.
– Right to Rectification: You may request correction of any inaccurate or incomplete personal data we hold.
– Right to Erasure: Also known as the “right to be forgotten”, you can request deletion of your data under certain circumstances.
– Right to Restriction: You may ask us to restrict processing where accuracy or processing grounds are in question.
– Right to Data Portability: You can request to receive your data in a structured, commonly used, and machine-readable format and have it transferred to another controller where feasible.
To exercise these rights, please contact us at: [email protected].
6. Security Measures
Twin Palm SRL employs a comprehensive range of security controls to protect your data, including but not limited to:
– SSL encryption for all data transmitted over the internet.
– Access control mechanisms to restrict data access to authorized personnel only.
– Regular system audits and data backups to ensure data availability and integrity.
– Security awareness training for all team members handling personal data.
7. International Transfers
In cases where your personal data is transferred outside the European Economic Area (EEA) or California, we implement legal safeguards such as the European Commission’s Standard Contractual Clauses or ensure the data recipient is subject to an adequacy decision. All transfers comply with applicable cross-border data flow regulations to ensure your data remains protected.
8. Data Retention
We retain personal data only for as long as necessary to achieve the purposes outlined in this policy, unless a longer retention period is mandated by law. General retention periods are:
– Usage and Technical Data: up to 2 years for analytical and security logging.
– Account and Profile Data: held for the duration of the user’s account and up to 5 years following closure.
– Transaction Data: retained for 7 years in accordance with tax and accounting obligations.
– Communication and Preference Data: maintained for no more than 3 years from the last contact or interaction, subject to consent.
9. Cookie Policy
twinpalmsrl.com uses cookies and similar technologies to enhance user experience, improve website performance, and provide analytical insights. Categories of cookies used include:
– Essential Cookies: Required for core functionality such as navigation and access to secure areas.
– Functional Cookies: Enable personalization and remember user settings.
– Analytics Cookies: Provide aggregated data on website traffic and usage patterns via third-party services (e.g., Google Analytics).
– Performance Cookies: Help improve website speed and responsiveness by identifying performance-related issues.
10. Cookie Management and Compliance with GDPR & CCPA
Upon your first visit to twinpalmsrl.com, you will be presented with a cookie consent banner providing you with granular control over which cookies you consent to. You can manage or withdraw consent at any time through the “Cookie Settings” link available on our website.
Under GDPR and CCPA, users have the right to:
– Refuse or withdraw consent for non-essential cookies.
– Request information on personal data collected via cookies.
– Opt out of the sale of personal data (as defined under CCPA).
11. Special Protections for Children
Our services are not directed at, nor do we knowingly collect personal data from, children under the age of 13. If we become aware that such personal data has been collected without verified parental consent, we will delete it promptly. Parents or guardians who believe their child has submitted information may contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to update or modify this Privacy Policy as legal, technical or operational requirements evolve. Any material changes to the way we handle personal information will be communicated via twinpalmsrl.com through notifications or banners, and where legally required, sought through renewed consent.
13. Contact Us
Your privacy matters to us. If you have questions, concerns, or wish to exercise your data rights under this Privacy Policy or applicable law, please contact:
Twin Palm SRL
Email: [email protected]
Website: twinpalmsrl.com
We are committed to ensuring compliance with GDPR, CCPA, and all relevant data protection laws, and welcome any inquiries regarding our privacy practices.