Data protection - GDPR
GDPR Compliance
Effective date: July 1, 2023
This GDPR (General Data Protection Regulation) Compliance Statement ("Statement") describes how Goofy Goldens® ("we", "us" or "our") complies with the GDPR when processing individuals' personal data located in France. This Statement should be read in conjunction with our Privacy Policy, which provides more detailed information about our data processing practices.
1. Legal basis for processing personal data
We only process the personal data of people located in France when we have a legal basis that complies with the GDPR. The legal bases we rely on include:
a) Consent: We obtain explicit consent from individuals before collecting and processing their personal data, and individuals have the right to withdraw their consent at any time.
b) Contractual necessity: We process personal data necessary for the performance of a contract with the person or to take measures at the request of the person before entering into a contract.
c) Legal obligation: We may process personal data to comply with our legal obligations.
2. Rights of data subjects
2.1 We respect the rights of data subjects as provided for by the GDPR. These rights include:
a) Right of access: Individuals have the right to request access to their personal data that we hold and to obtain information about how we process it.
b) Right of rectification: Individuals have the right to request the correction of inaccurate or incomplete personal data.
c) Right to erasure: Individuals have the right to request erasure of their personal data in certain circumstances, for example where the data is no longer necessary for the purposes for which it was collected or processed.
d) Right to restriction of processing: Individuals have the right to request restriction of processing of their personal data in certain circumstances, for example where the accuracy of the data is contested.
e) Right to data portability: Individuals have the right to receive their personal data in a structured, commonly used and machine-readable format, and have the right to transmit this data to another data controller.
f) Right to object: Individuals have the right to object to the processing of their personal data based on legitimate interests or for direct marketing purposes.
2.2 Data subjects may exercise their rights by contacting us using the contact information provided in our Privacy Policy. We will respond to such requests within the time limits required by the GDPR.
3. Security measures
We implement appropriate technical and organizational security measures to protect personal data against accidental or unlawful destruction, loss, alteration, disclosure or access, taking into account the state of knowledge, costs of implementation and the nature, scope, context and purposes of the processing.
4. Data transfers
If we transfer personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect the data, such as adequacy decisions, implementation of standard contractual clauses approved by the European Commission or obtaining individual consent for such transfers.
5. Complaints
If you consider that our processing of your personal data infringes the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of of the alleged offense. In France, the competent supervisory authority is the National Commission for Information Technology and Liberties (CNIL).
Privacy Policy
At GoofyGoldens, we are committed to protecting the privacy and security of your personal information. This privacy policy describes how we collect, use and protect the personal data you provide when you use our website goofygoldens.com. By accessing or using our website, you accept the terms and conditions of this privacy policy.
1. Collection and use of information
1.1 Collection of personal data:
We collect personal data about you when you voluntarily provide it to us. The personal data we collect may include your name, email address, shipping address, billing address and payment information. We only collect personal data if you choose to create an account on our website or if you indicate your consent by checking the "Save my information" option during the checkout process.
1.2 Use of personal data:
We use the personal information you provide to process your orders, fulfill your purchases, and provide customer support. Your personal data will only be used for the purposes disclosed at the time of collection or as specified in this privacy policy.
2. Data sharing and disclosure
2.1 Sharing with third parties:
We do not sell, trade, or otherwise transfer your personal information to third parties without your express consent, except as necessary to fulfill your orders (for example, sharing shipping information with our delivery partners).
2.2 Service providers:
We may use trusted third-party service providers to perform functions and provide services, such as website hosting, payment processing or customer support. These service providers will have access to your personal data only to the extent necessary to perform their functions and will be required to maintain the confidentiality and security of your data.
3. Retention and deletion of data
You have the right to request deletion of your account and personal data stored by us at any time. After receiving such a request, we will permanently delete your account and associated personal data from our systems, including your purchase history. Please note that once your account is deleted, your personal data and purchase history will be irrecoverable.
4. Data security
We take reasonable measures to protect your personal data from unauthorized access, disclosure, alteration or destruction. However, please note that no method of transmission over the Internet or electronic storage is 100% secure and we cannot guarantee absolute security.
5. Changes to this privacy policy
We reserve the right to update or modify this privacy policy at any time. Any changes will be effective immediately upon posting of the updated Privacy Policy on our website. We encourage you to periodically review this Privacy Policy to stay informed about our information practices.
6. Contact us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at contact@goofygoldens.com.
Data protection policy
Effective date: July 1, 2023
At Goofy Goldens® ("we", "us" or "our"), we are committed to protecting the privacy and security of personal data in accordance with applicable data protection laws and regulations. This data protection policy (“Policy”) sets out our commitment to safeguarding personal data and provides information on how we collect, use, disclose and protect personal data.
1. Scope
This Policy applies to all personal data processed by Goofy Goldens® , whether collected online or offline, from individuals, customers, employees and any other data subjects whose personal data we process.
2. Data collection and use
2.1
We only collect personal data for specific and lawful purposes. The personal data we collect may include, but is not limited to:
a) Contact details (such as name, address, email address and telephone number).
b) Financial information (such as payment details).
c) Demographic information (such as age, gender and preferences).
2.2
We use personal data for the following purposes:
a) Provide the requested products or services.
b) Manage and maintain customer relationships.
c) Process and fulfill orders.
d) Communicate with customers, employees and other stakeholders.
e) Conduct internal research and analysis to improve our products and services.
f) Comply with legal obligations and protect our rights and interests.
3. Data disclosure and sharing
We do not disclose personal data to third parties without legal justification. However, in certain circumstances we may share personal data with:
a) Trusted third-party service providers who help us provide products or services, such as payment processors, shipping partners and IT support providers.
b) Legal authorities or regulatory bodies if required by law or to protect our legal rights.
4. Data retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.
5. Rights of data subjects
We respect the rights of data subjects as provided for by applicable data protection laws. These rights include, but are not limited to:
a) Right to access personal data.
b) Right to rectification of inaccurate or incomplete personal data.
c) Right to erasure of personal data in certain circumstances.
d) Right to limit the processing of personal data.
e) Right to data portability.
f) Right to object to processing based on legitimate interests.
g) Right not to be subject to an automated decision.
6. Changes to this Policy
We reserve the right to update or modify this Policy at any time without notice. Any changes will be effective immediately upon posting of the revised Policy on our website.