Privacy Policy for dfa10.com
1. Introduction
At dfa10.com, we value your privacy and are committed to protecting your personal information with the utmost transparency and in full compliance with applicable privacy laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines the nature of the data we collect, how and why we process it, and the rights and choices available to you.
We uphold a privacy-first approach across our operations, striving to collect only the data necessary to provide services that improve your experience while ensuring your data remains secure and your rights are respected.
2. Scope of This Policy & Data Controller Role
This Privacy Policy applies to all users of the website located at https://dfa10.com (“Website”) and to all information collected through our site, services, communications, and other interactions you have with us.
For the purposes of GDPR, dfa10.com is the Data Controller responsible for your personal information. As the Data Controller, we determine the purposes and means of processing your personal data and ensure that such data processing complies with all applicable laws and regulations.
Should you have any questions about how your data is handled, please contact us at [email protected].
3. Categories of Personal Data Processed
We collect and process a variety of personal data to operate and improve our services, including but not limited to:
a. Usage Data
Data regarding your interaction with our Website, including IP addresses, browser type, browsing behavior, pages visited, referring URLs, session duration, and access times.
b. Account Data
When you create an account or communicate with us, we may collect your name, physical address, email address, and phone number.
c. Profile Data
Information provided voluntarily or collected from your interactions with our services: product preferences, purchase history, behavioral patterns, and engagement metrics.
d. Communication Data
Records of support inquiries, emails sent to customer service, chat histories, and any other communication data exchanged with our support team.
e. Technical Data
Device identifiers, operating system, hardware model, language settings, and other technical identifiers necessary for site compatibility and security.
f. Transaction Data
Purchase history, payment method (processed through secure third-party processors), billing and delivery addresses, and order details.
g. Preference Data
Your expressed preferences regarding marketing communications, notification settings, and interest in specific products or services.
4. Legal Bases for Processing Personal Data
We rely on the following lawful bases to process your personal data:
– Contractual Necessity: When processing is required to fulfill our obligations under a contract with you (e.g., creating an account, facilitating transactions).
– Legitimate Interests: For purposes such as improving our Website, fraud prevention, analytics, marketing (subject to your rights), system maintenance, and responding to queries.
– Consent: For non-essential cookies, sending marketing messages, and processing children’s data when applicable.
– Legal Obligation: When processing is required to comply with applicable legal and regulatory obligations.
5. Your Rights Under GDPR and CCPA
Subject to the relevant legal requirements and limitations, you have the following rights:
– Right of Access: You may request confirmation of whether we process your data and obtain access to that data.
– Right to Rectification: You may request corrections to your incomplete or inaccurate personal data.
– Right to Erasure: Under certain conditions, you may ask us to delete your personal information.
– Right to Restrict Processing: You may request that we limit the processing of your personal data.
– Right to Data Portability: You are entitled to receive personal data you have provided in a portable format and transmit it to another controller.
– Right to Object: You may object to the processing of your data based on our legitimate interests or for direct marketing purposes.
– Right not to be subject to Automated Decision-Making: You have the right not to be subject to decisions based solely on automated processing.
– Right to Non-Discrimination (CCPA): You will not be discriminated against for exercising your rights.
To exercise any of your rights, please contact our Data Protection Officer at [email protected]. We may require verification of your identity before fulfilling your request.
6. Security Measures
dfa10.com employs a variety of administrative, technical, and physical safeguards to protect your personal data including:
– Network and data encryption using secure protocols (e.g., HTTPS)
– Access controls and role-based user permission management
– Regular security audits and vulnerability assessments
– Daily data backups in secure, compliant environments
– Mandatory data protection training for staff
While no online platform can guarantee 100% security, we maintain strict policies and best practices to reduce risk.
7. International Data Transfers
Where applicable, your personal information may be transferred to and maintained on servers located outside your jurisdiction. When transferring data internationally, especially outside the European Economic Area (EEA), we ensure adequate levels of protection through:
– The use of Standard Contractual Clauses (SCCs) approved by the European Commission
– Adherence to applicable data protection frameworks and certifications
– Additional technical and organizational measures where needed
8. Data Retention
dfa10.com retains your personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with our legal obligations, resolve disputes, and enforce agreements. Retention periods include:
– Account Data: maintained for the duration of your account and archived up to 5 years after closure
– Transaction Data: stored for 7 years for financial and audit purposes
– Communications and Support Data: retained for up to 3 years
– Technical and Usage Data: anonymized after 12 months where feasible
– Marketing Preferences: maintained until you withdraw consent
9. Cookie Policy
We utilize cookies and similar tracking technologies for various lawful purposes. These cookies fall into the following categories:
– Essential Cookies: Necessary for website functionality, user login, and secure areas. These cannot be disabled.
– Functional Cookies: Enhance performance and user experience, e.g., remembering language selections.
– Performance and Analytics Cookies: Provide aggregated statistical information on site traffic and interactions.
– Marketing Cookies: Used to deliver personalized advertisements and measure their effectiveness.
10. Cookie Management and Compliance
Upon your first visit to dfa10.com, a cookie banner informs you of our use of cookies. You may configure your cookie preferences through our cookie management tool at any time.
Under GDPR and CCPA, consent is explicitly required for any non-essential cookies. You can also manage or disable cookies through your browser settings. However, disabling some cookies may limit the functionality of the Website.
11. Children’s Privacy
dfa10.com does not knowingly collect personal data from children under the age of 13. If we become aware that we have inadvertently collected personal data from a child without verified parental consent, we will take steps to delete the data promptly.
Parents or guardians who believe dfa10.com may have collected information from their child should contact us immediately at [email protected].
12. Policy Updates and Notification
Our Privacy Policy may be updated as necessary to reflect operational, legal, or regulatory changes. Any revisions will be posted to this page, and material changes will be communicated through appropriate channels.
We recommend reviewing this Privacy Policy periodically to remain informed about how your information is protected.
13. Contact Information
If you have questions, concerns, or complaints related to this Privacy Policy or the way we handle your personal data, please contact us at:
Email: [email protected]
We are committed to resolving concerns swiftly and transparently.
—
dfa10.com affirms its compliance with GDPR, CCPA, and other applicable privacy laws, and is dedicated to maintaining the trust of our users through responsible data stewardship. For any inquiries related to personal data, user rights, or privacy compliance, do not hesitate to reach out to [email protected].