Privacy Policy for SoWhatRobot.com
1. Introduction – Our Commitment to Privacy and Data Protection
At SoWhatRobot.com, we are firmly committed to protecting your privacy and safeguarding your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant international regulations. We respect your privacy rights and are dedicated to ensuring transparent, accountable data handling practices to secure the integrity and confidentiality of your information.
2. Scope of Policy and Our Role as Data Controller
This Privacy Policy applies to the personal data collected, processed, and stored through your use of SoWhatRobot.com (“the Website”). SoWhatRobot.com acts as the “data controller” for the purposes of the GDPR and the “business” as defined by the CCPA, determining the purposes and means by which your personal data is collected and processed.
3. Categories of Personal Data We Process
We may collect and process the following categories of personal data, depending on how you engage with our website and services:
– Usage Data: Information about how you access and use the Website, including browser type, referral sources, operating system, IP address, geolocation data, date and duration of visits, clickstream behavior, and session identifiers.
– Account Data: Information you provide when you register or maintain an account, including your name, residential or business address, email address, phone number, and account credentials.
– Profile Data: Information derived from your interactions with the Website, including site preferences, product interests, browsing behavior, and past purchases.
– Communication Data: Records of correspondence with us, including inquiries, support requests, complaint submissions, and contact history.
– Technical Data: Device-related details, including your mobile device ID, hardware model, operating system, screen resolution, local settings, and browser configuration.
– Transaction Data: Payment and order history, billing and shipping addresses, product purchase details, and transactional metadata.
– Preference Data: Selection of communication preferences, consent status regarding marketing communications, and expressed interests or preferences related to our products and services.
4. Legal Bases for Processing Personal Data
We rely on the following legal bases under GDPR, and comparable grounds under CCPA, for processing your data:
– Performance of a Contract: When data is necessary to fulfill our contractual obligations to you, such as processing transactions or providing account services.
– Legitimate Interests: Where processing enables us to improve our services, secure our platform, or engage in reasonable business operations that do not override your rights and freedoms.
– Consent: Where you have explicitly consented to the use of your personal data, such as for marketing or non-essential cookies. You have the right to withdraw this consent at any time.
– Legal Obligation: Where we are required to retain or disclose your data to comply with applicable laws or regulatory requirements.
5. Your Rights as a Data Subject
You have the following rights under GDPR and CCPA with respect to your personal data:
– Right of Access: Obtain confirmation concerning data processing and access a copy of the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure (“Right to Be Forgotten”): Request deletion of your personal data under certain conditions.
– Right to Restriction of Processing: Request restricted processing where accuracy is contested or the processing is unlawful.
– Right to Data Portability: Receive your personal data in a structured, commonly used format and have it transferred to another controller.
– Right to Object: Oppose certain types of processing, including for direct marketing.
– Right to Opt-Out (for California residents): Opt out of the sale or sharing of personal information.
To exercise any of these rights, please contact us at: [email protected].
6. Data Security Measures
Protecting your personal data is foundational to the operation of SoWhatRobot.com. We implement a range of organizational, technical, and administrative measures:
– Encryption of data during transmission and at rest;
– Role-based access controls and authentication protocols;
– Secure network infrastructure and firewalls;
– Regular vulnerability assessments and software updates;
– Periodic staff training on privacy and secure data-handling practices;
– Disaster recovery, data redundancy, and operational business continuity safeguards.
7. International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with differing privacy standards, we ensure appropriate safeguards, including standard contractual clauses approved by the European Commission, and compliance with local regulatory data-transfer requirements.
8. Data Retention Periods
We retain personal data only for as long as necessary for the purposes set out below:
– Usage and Technical Data: up to 24 months for analytics and security;
– Account, Profile, and Transaction Data: retained for the duration of the account plus 6 years thereafter to comply with accounting and legal obligations;
– Communication Data: retained for 2 years following final contact;
– Preference Data: retained until marketing consent is withdrawn or 24 months following inactivity.
Where we are legally obliged to retain certain data (e.g., for financial or tax records), we will comply with those obligations beyond the above timeframes as necessary.
9. Cookie Policy
We use cookies and similar technologies on the Website for various purposes:
– Essential Cookies: Enable basic website functionality and security features (e.g., sessions, logins).
– Functional Cookies: Enhance usability by storing user preferences and settings.
– Analytics Cookies: Evaluate usage patterns, improve the user experience, and compile site metrics (e.g., using Google Analytics or equivalent tools).
– Performance Cookies: Track aggregate performance to detect issues and ensure optimal responsiveness.
10. Managing Cookies and Compliance
Upon visiting SoWhatRobot.com, you will be presented with a cookie consent banner compliant with GDPR and CCPA regulations. You can manage your cookie preferences through the cookie settings panel available on the Website. Most modern browsers also allow you to control cookie behavior or reject cookies entirely through your browser settings. Consent can be withdrawn at any time.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If we become aware that a child under this age has submitted personal information, we will take immediate measures to delete such information from our systems. Parents or guardians who believe that their child has provided personal data should contact us at [email protected].
12. Changes to This Privacy Policy
We reserve the right to revise, modify, or update this Privacy Policy to reflect legal, regulatory, operational, or technological changes. We encourage users to review this Policy periodically to stay informed of how we collect and protect your personal information. Where required by law, we will notify you of material updates through prominent notices on the Website or by direct communication.
13. Contact Us
If you have any questions regarding this Privacy Policy, your personal data, or your rights under applicable laws, you may contact us at:
Privacy Officer
[email protected]
We remain committed to full compliance with privacy legislation applicable to our users, including the GDPR and CCPA. Please reach out to us with any privacy-related questions or concerns using the contact information above.