Privacy Policy for activeplc.com
1. Introduction
At Active PLC, accessible at https://activeplc.com, we are firmly committed to safeguarding your personal data, ensuring transparency in how it is handled, and upholding your privacy rights. This Privacy Policy outlines how we collect, process, and protect your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant legislation. We believe in a privacy-first approach that respects your rights and empowers you with control over your personal data.
2. Scope of This Policy and Data Controller
This Privacy Policy applies to all online services and data collection activities conducted through the website https://activeplc.com. For the purposes of the GDPR, Active PLC is the Data Controller of your personal data. This means we determine the purposes and means of processing your personal data. If you have any questions about the processing of your personal data, you may contact us using the information provided in Section 13 of this policy.
3. Categories of Personal Data Processed
We may collect and process the following categories of personal data in connection with your use of activeplc.com:
a. Usage Data
Includes information such as your IP address, browser type and version, device type, operating system, session duration, pages visited, referral URLs, and interaction data. This data is automatically collected through cookies and similar technologies.
b. Account Data
Includes personal identifiers such as your name, email address, mailing address, telephone number, and login credentials when you register for an account on our website.
c. Profile Data
Includes information you provide in your user profile, purchase history, saved items, browsing behavior, and stated preferences when interacting with our services.
d. Communication Data
Includes records of correspondence when you contact us or customer support, including email exchanges, forms submitted through our website, chat logs, and other records of user contact.
e. Technical Data
Includes information about your device and technical settings, such as time zone, language preferences, plug-ins, screen resolution, and mobile network data.
f. Transaction Data
Includes details of products or services you have purchased, payment records, billing and shipping information, and order history.
g. Preference Data
Includes your preferences in receiving marketing communications from us, product interests, and opt-in/opt-out decisions.
4. Legal Bases for Processing
We process your personal data only when a legal basis exists under applicable privacy laws, including:
– Contractual Necessity: When processing is required to fulfill our contractual obligations, such as delivering goods or managing your account.
– Consent: Where you have provided affirmative consent, such as for marketing emails or use of non-essential cookies.
– Legal Obligation: Where processing is necessary for compliance with legal or regulatory requirements.
– Legitimate Interests: For business purposes where those interests are not overridden by your fundamental rights and freedoms, such as maintaining website security, fraud prevention, and product improvement.
5. Your Rights
As a data subject, you have the following rights under applicable laws:
– Right of Access: Request a copy of the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your personal data, subject to legal and contractual obligations.
– Right to Restriction: Request limitation on how your data is processed in certain circumstances.
– Right to Data Portability: Request transfer of your data to another processor in a structured, commonly used format.
– Right to Object: Object to processing based on legitimate interest or for direct marketing purposes.
– Right to Withdraw Consent: Withdraw your consent at any time where processing is based on consent.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a variety of robust security protocols intended to safeguard your personal data, including:
– Encryption of sensitive data in transit and at rest.
– Role-based access controls and authentication safeguards.
– Regular backups and disaster recovery plans.
– Employee access on a need-to-know basis and mandatory data privacy training.
While no system is completely immune to risks, we continually assess and improve our security practices.
7. International Transfers
Where your data is transferred outside the European Economic Area (EEA) or other jurisdictions with adequate data protection laws, we ensure similar levels of protection through:
– Standard Contractual Clauses (SCCs) approved by the European Commission.
– Verification of recipient’s adherence to Privacy Shield (where applicable) or equivalent certifications.
– Additional safeguards where required by local laws and regulations.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
– Account and Profile Data: Retained for the duration of your account and for a reasonable period thereafter for recordkeeping and analysis.
– Transaction and Payment Data: Retained for up to 7 years to comply with tax, accounting, and regulatory obligations.
– Communication Data: Retained for no more than 3 years unless further retention is required to resolve disputes.
– Analytics and Usage Data: Retained for up to 2 years for performance measurement and diagnostic purposes.
Upon expiry of the retention period, your data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies for the following purposes:
– Essential Cookies: Necessary for basic site functionality and security.
– Functional Cookies: Enable personalization and enhanced features.
– Analytics Cookies: Collect aggregated usage data for website improvements.
– Performance Cookies: Monitor website performance and user experience testing.
For more detailed information, please review our full Cookie Notice on our website.
10. Cookie Management and Compliance with GDPR & CCPA
By visiting activeplc.com, you will be presented with a cookie consent banner offering you the option to accept, reject, or customize cookie settings. You can manage your cookie preferences at any time through the Cookie Settings link found on our website footer. California residents may opt out of “sale” of personal data under CCPA rules by using the “Do Not Sell My Personal Information” page or contacting us directly.
11. Special Protections for Children
Our services are not intended for children under the age of 13. We do not knowingly collect or process personal data from individuals under the age of 13. If we become aware that such data has been collected in error, it will be promptly deleted. Parents or guardians who believe we may have collected personal data from a minor are encouraged to contact us immediately at [email protected].
12. Policy Updates and User Notifications
We may update this Privacy Policy to reflect legal, operational, or business changes. Any material changes will be communicated via prominent notices on our website or through email notifications where appropriate. You are encouraged to review this Policy periodically to stay informed of how we protect your information.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy or our data practices, please contact:
Active PLC
Email: [email protected]
Website: https://activeplc.com
We are committed to full compliance with applicable data protection laws and are prepared to address your privacy concerns promptly and professionally.