Privacy Policy
Edward M. Gonzalez (“we,” “our,” or “us”) is fully committed to protecting and respecting your privacy. This Privacy Policy outlines how personal data collected through our website, edwardmgonzalez.com (“Website”), is handled, stored, and safeguarded in accordance with applicable data protection laws, including the General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Commitment to Privacy and Data Protection
At edwardmgonzalez.com, your privacy is of paramount importance. We implement data protection principles and privacy by design to ensure that all personal information is processed lawfully, fairly, and transparently. We are committed to maintaining robust privacy protections and informing you clearly of how your data is used.
2. Scope of This Privacy Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use our Website. For the purposes of GDPR and other applicable data protection legislation, the data controller responsible for your personal data is Edward M. Gonzalez. You may contact us at [email protected] regarding any concerns about your data.
3. Categories of Personal Data Collected
We may collect and process the following categories of personal data, depending on your use of edwardmgonzalez.com:
a) Usage Data: Includes data such as browser type and version, Internet Protocol (IP) address, time zone setting, referring pages, page interactions, and browsing behavior.
b) Account Data: Includes identifying information such as full name, mailing address, email address, and phone number when you create an account or use contact forms.
c) Profile Data: Comprises preferences, feedback, purchase history, and behavioral insights based on your interactions with our products or services.
d) Communication Data: Includes records of your communications with us, such as support requests, messages, and email correspondence.
e) Technical Data: Information from the device(s) used to access the Website, including operating system, platform, device identifiers, and system configurations.
f) Transaction Data: Encompasses data associated with purchases or payments, including billing details, shipping information, and limited payment method details (processed securely by third-party providers).
g) Preference Data: Includes your preferences relating to receiving marketing communications or newsletters as well as indicated interests in specific services or products.
4. Legal Bases for Processing Personal Data
Your personal information is processed based on one or more of the following legal bases, as outlined in Article 6 of the GDPR:
– Consent: Where you have provided specific consent for processing (e.g., opting in to newsletters).
– Contractual Necessity: Where processing is necessary to perform a contract or fulfill your service request.
– Legal Obligation: Where we are legally required to process your data.
– Legitimate Interests: Where processing is required for the operation and improvement of our services, provided that such interests are not overridden by your rights and freedoms.
Residents of California may also request disclosures about how and why we collect certain personal information under the CCPA.
5. Your Rights Under Applicable Data Protection Laws
You have the right under data protection laws to:
– Access: Receive confirmation as to whether we process your personal data and obtain a copy.
– Rectification: Request correction of any incomplete or inaccurate data we hold about you.
– Erasure: Request deletion of your personal data where there is no legitimate reason for us to retain it.
– Restriction: Ask us to suspend processing of your personal data under certain circumstances.
– Data Portability: Receive your data in a structured, commonly used, and machine-readable format to reuse with another service.
– Objection: Object to processing based on legitimate interests or direct marketing.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational measures to ensure the security of your personal data. These include but are not limited to:
– End-to-end encryption of secure communications and stored data.
– Access control policies to limit exposure to personal data internally.
– Regular system security updates and vulnerability assessments.
– Daily backups and disaster recovery systems.
– Staff training in data protection and security protocols.
7. International Data Transfers
Your personal data may be transferred outside the European Economic Area (EEA) to trusted service providers. Where such transfers occur, we ensure your data is protected with appropriate safeguards, such as:
– The use of Standard Contractual Clauses approved by the European Commission.
– Transfers to countries recognized by the European Commission as having adequate data protection laws.
– Valid certifications under accepted privacy frameworks.
8. Data Retention
We retain your personal data for as long as necessary for the purposes for which it was collected or as required under applicable law. Standard retention periods per data type are as follows:
– Usage and Technical Data: Retained for up to 12 months.
– Account and Profile Data: Retained until account deletion or 6 years after last active use.
– Communication Data: Retained for no longer than 3 years unless otherwise required.
– Transaction Data: Retained for up to 7 years for tax and legal compliance.
– Preference Data: Retained until consent is withdrawn or after 2 years of inactivity.
9. Cookie Policy
We use cookies and similar technologies on edwardmgonzalez.com to enhance user experience and analyze traffic. Cookies fall into the following categories:
– Essential Cookies: Necessary for the proper functioning of the Website.
– Functional Cookies: Enable personalization features such as language choices or remembered settings.
– Analytics Cookies: Help us understand visitor interactions and improve service delivery.
– Performance Cookies: Monitor performance metrics and improve load times and responsiveness.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, we seek your consent before placing non-essential cookies. You may manage or withdraw consent using our cookie banner or browser settings. Opt-out mechanisms are in place to respect Do Not Track (DNT) signals as applicable.
11. Children’s Privacy
We do not knowingly collect personal information from individuals under the age of 13. If we become aware that a child’s data has been collected without verified parental consent, we will take immediate steps to delete such information. If you believe a minor has provided us data without proper authorization, please contact us at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy at our discretion to remain compliant with legal obligations or reflect changes in our data practices. Whenever we make substantial updates, we will post the updated policy on edwardmgonzalez.com and, where appropriate, notify users via email or Website notice.
13. Contact Us
Should you have any questions, concerns, or requests regarding your personal data or this Privacy Policy, you may contact our privacy team at:
Email: [email protected]
We are committed to responding to all legitimate requests in accordance with applicable privacy regulations.
Compliance Assurance
edwardmgonzalez.com is committed to full compliance with the provisions of the GDPR, CCPA, and other applicable privacy laws. If you have any concerns or believe your privacy rights have been violated, please contact [email protected], and we will promptly address the matter.