Privacy Policy
Leo Abse is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, share, and safeguard your information when you access or interact with our website (leo-abse.com). We process your personal data in full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), prioritizing your rights and data privacy at all times.
1. Introduction
At Leo Abse, we value the trust you place in us when you share your data. This Privacy Policy illustrates our dedication to maintaining high standards of data protection and transparency. We are committed to using personal data fairly, lawfully, and in a manner that respects your privacy rights.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through your use of leo-abse.com. Leo Abse operates as the Data Controller for the data processed via our website and associated services. If you have any questions regarding this policy or your data, you may contact us at [email protected].
3. Categories of Data Processed
We may process the following categories of personal data, depending on your interaction with leo-abse.com:
a. Usage Data
Includes information about how you interact with our services, such as IP address, browser type, device identifiers, browsing actions, and session data.
b. Account Data
Includes personal identifiers such as your full name, email address, mailing address, phone number, and account credentials where applicable.
c. Profile Data
Includes your interests, preferences, product history, purchasing behavior, and other demographic or behavioral information.
d. Communication Data
Includes details about your communication with us, including messages sent through contact forms, emails, support requests, and correspondence history.
e. Technical Data
Includes device and technology-based information such as operating system, hardware model, system configuration, and diagnostic logs.
f. Transaction Data
Includes information regarding purchases, order history, payment methods (limited to non-sensitive details as we use third-party processors), and delivery specifics.
g. Preference Data
Includes your choices regarding marketing communications, newsletter subscriptions, and user-defined interests in certain products or services.
4. Legal Bases for Processing
Under applicable data protection laws, we process your data based on the following lawful bases:
– Consent: When you explicitly opt in to certain data uses (e.g., newsletters, cookies).
– Contractual Necessity: Where processing is required to fulfill a contract with you (e.g., account management, purchasing goods or services).
– Legal Obligation: Where we must comply with statutory obligations.
– Legitimate Interests: For purposes such as improving our service, preventing fraud, and ensuring website security—provided your rights do not override these interests.
5. Your Rights
As a data subject under the GDPR and CCPA, you are entitled to exercise the following rights:
– Right of Access: You may request confirmation of whether and how your personal data is being processed.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: In certain cases, you may request deletion of your data (“right to be forgotten”).
– Right to Restriction: You may request the limitation of data processing in specific scenarios.
– Right to Data Portability: You may request a copy of your data in a structured, commonly used digital format.
– Right to Object/Opt-Out: You may object to processing based on legitimate interests or direct marketing.
– Right to Non-Discrimination: Under the CCPA, we will not discriminate against you for exercising your rights.
To exercise any of the above rights, contact us at [email protected].
6. Security Measures
We implement robust security measures to protect personal data against unauthorized access, misuse, alteration, or disclosure. Our protections include data encryption (in transit and at rest), role-based access control, secure servers, regular vulnerability assessments, employee training in data protection practices, and reliable backup protocols.
7. International Transfers
Your personal data may be processed outside of your jurisdiction, including in countries that may not offer the same level of protection. Where applicable, we implement safeguards such as Standard Contractual Clauses approved by the European Commission and ensure regional compliance through appropriate legal mechanisms.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including legal, accounting, and reporting requirements. Specific retention periods include:
– Usage Data: 12 months
– Account Data: As long as the account is active, plus 6 years after closure
– Profile Data: Reviewed every 24 months for relevancy
– Communication Data: Retained for 5 years
– Technical Data: Retained for analytical use for up to 18 months
– Transaction Data: Kept for 7 years to meet regulatory standards
– Preference Data: Retained until withdrawal of consent
After the applicable retention period, personal data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance the user experience on leo-abse.com. Cookies are small data files stored on your device that help us improve site performance and deliver personalized content. We use the following types of cookies:
– Essential Cookies: Necessary for basic website functionality and security.
– Functional Cookies: Enable advanced features like remembering user preferences.
– Analytics Cookies: Help us understand how visitors interact with our site.
– Performance Cookies: Measure and enhance site speed and user engagement.
10. Cookie Management and Compliance with GDPR & CCPA
Upon your first visit to our site, you will be presented with a cookie consent banner in accordance with GDPR and CCPA requirements. You have the right to accept or reject cookies and can customize your preferences through the banner interface. Additionally, you can manage cookie settings directly in your browser. We honor Do Not Track (DNT) signals sent by compliant browsers and provide opt-out features for marketing and analytics where required.
11. Children’s Privacy
We do not knowingly collect or process personal data from children under the age of 13. If we become aware that data has been collected from a child without appropriate parental consent, it will be deleted promptly. If you believe that a child under your care has provided personal data to leo-abse.com, please contact us at [email protected].
12. Policy Updates
We may revise this Privacy Policy in response to changes in legal, regulatory, or operational requirements. Any changes will be communicated prominently on our website. We encourage you to review the Privacy Policy regularly to stay informed about how we protect your personal data.
13. Contact
If you have questions, concerns, or wish to exercise any data rights under this Policy, please contact our Privacy Officer at:
Email: [email protected]
Website: https://leo-abse.com
We are committed to full compliance with applicable data protection frameworks and welcome any inquiry related to your data privacy.