Privacy Policy for sgleog.com
1. Introduction
SGLEOG, accessible at sgleog.com, is committed to protecting the privacy, security, and integrity of our users’ personal data. We believe in a privacy-first approach and are dedicated to processing your personal data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant regulations.
This Privacy Policy explains how SGLEOG collects, uses, processes, and safeguards your information when you use our website. We urge you to read this policy thoroughly to understand your rights and how we handle your personal data.
2. Scope and Data Controller
This policy applies to all users accessing sgleog.com. SGLEOG acts as the “data controller” under GDPR and as a “business” under the CCPA with respect to your personal data. As a data controller, SGLEOG determines the purpose and means of processing the personal data you provide to us.
For any queries regarding this privacy policy, please contact us at: [email protected].
3. Categories of Data Processed
We collect limited personal data for specific, lawful purposes. The types of data processed include:
a) Usage Data
Includes IP address, browser type and version, pages visited, session duration, date/time stamps, and navigation paths. This helps us analyze website performance and detect anomalies or abuse.
b) Account Data
Collected when you create an account or register with us. Includes your name, email address, postal address, phone number, and login credentials. This data enables personalized services and secure administrative access.
c) Profile Data
Refers to user preferences, purchase history, product interactions, browsing behavior, and service usage indicators. Helps tailor your user experience.
d) Communication Data
Covers messages, emails, or other forms of communication sent to us. This includes support inquiries, feedback, and correspondence history with our service team.
e) Technical Data
Includes device-specific information such as operating system, hardware model, app version, and browser plugins. This allows us to optimize service delivery across platforms.
f) Transaction Data
Comprises payment details, billing addresses, shipping information, and purchase-related metadata, maintained in a secure and compliant manner.
g) Preference Data
Includes marketing opt-ins, newsletter subscriptions, communication preferences, and product or service interests, as provided by you voluntarily.
4. Legal Bases for Processing
We process your personal data under the following legal grounds as defined by the GDPR:
– Consent: Where you have explicitly given us permission to process your data for specific purposes (e.g., marketing subscriptions).
– Contractual Necessity: To fulfill obligations under a contract (e.g., processing an order).
– Legitimate Interest: To conduct our business efficiently, prevent fraud, ensure network security, and perform analytics—provided such interests are not overridden by your rights.
– Legal Obligation: To comply with applicable legal obligations, such as tax reporting or law enforcement requirements.
5. Your Rights
Under relevant privacy laws, particularly GDPR and CCPA, you have the following rights concerning your personal data:
– Right of Access – To obtain a copy of personal data we hold about you.
– Right to Rectification – To correct inaccurate or incomplete personal data.
– Right to Erasure – To request deletion of your information, under certain circumstances.
– Right to Restriction – To restrict further processing of your data.
– Right to Data Portability – To request a copy of your data in a structured, commonly-used format.
– Right to Object – To object to processing where we rely on legitimate interests or direct marketing.
– Right to Non-Discrimination (CCPA) – You will not be discriminated against for exercising your privacy rights.
You may exercise your rights at any time by contacting us at [email protected].
6. Security Measures
We implement industry-standard security controls to protect personal data including, but not limited to:
– Encryption of data in transit and at rest
– Access controls based on least privilege
– Regular security assessments and penetration testing
– Secure server configurations and firewall protection
– Employee awareness training on data protection and security best practices
– Data backups and business continuity plans
While no system is entirely immune to breaches, we continually evaluate our security framework to detect and counter vulnerabilities.
7. International Transfers
Where we transfer personal data beyond your jurisdiction (e.g., from the EU to the United States), we apply appropriate safeguards as required under GDPR. These include standard contractual clauses approved by the European Commission and supplementary technical and organizational measures to ensure your data is protected to GDPR-equivalent standards.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with applicable laws. Typical retention periods include:
– Account Data: Retained while the account remains active and for a limited period thereafter for legal and auditing purposes.
– Transaction Data: Retained for 7 years in accordance with financial reporting requirements.
– Communication Data: Retained for 24 months to serve customer support inquiries and maintain service quality.
– Technical & Usage Data: Retained for 12 months for performance analysis and diagnostics.
– Marketing Preferences: Retained until you withdraw consent or opt-out of processing.
Once your data is no longer needed, it is securely deleted or anonymized.
9. Cookie Policy
SGLEOG uses cookies and similar tracking technologies on sgleog.com. Cookies enhance user experience, support website functionality, and help us understand performance.
We classify cookies as:
– Essential Cookies: Strictly necessary for website operation and functionality.
– Functional Cookies: Enable personalization features, such as remembered settings.
– Analytics Cookies: Gather aggregated data about website usage, allowing improvements based on user engagement.
– Performance Cookies: Monitor site performance and identify technical issues.
We do not use cookies to collect sensitive personal information without your explicit consent.
10. Cookie Management and Compliance
For compliance with GDPR and CCPA, we provide a cookie consent banner on first visit to sgleog.com. This allows users to:
– Accept all cookies
– Customize preferences
– Reject non-essential cookies
Users may also configure browser settings to block or delete cookies. Please note, rejecting certain cookies may affect functionality.
11. Children’s Privacy
SGLEOG does not knowingly collect or solicit personal data from children under the age of 13. If we discover that we have collected personal information from a child under 13 without parental consent, we will promptly delete such data. Parents or guardians who believe their child has submitted personal information to us are encouraged to contact us at [email protected].
12. Policy Updates
We reserve the right to update this Privacy Policy from time to time to reflect changes in legal or regulatory requirements, our data practices, or service offerings. Where material changes are introduced, we will notify users by a clear notice on sgleog.com or by other reasonable means. Continued use of the website constitutes your acceptance of any updates.
13. Contact Us
If you have questions, concerns, or requests concerning this Privacy Policy or your data, please contact our privacy manager at:
—
Compliance with global privacy standards is a cornerstone of our digital operations. We are committed to maintaining transparency and protecting your data. If you have any questions about your privacy rights or how your data is handled, please do not hesitate to reach out to us.