Privacy Policy
This Privacy Policy (“Policy”) outlines how Aquarius CY (“we,” “our,” or “us”) collects, uses, stores, and safeguards your personal data when you access or interact with our website, aquarius-cy.com (the “Website”). We are committed to upholding your privacy and ensuring that your personal information is processed with care, lawfulness, and transparency, in accordance with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), along with other applicable privacy laws.
1. Commitment to Privacy and Data Protection
At Aquarius CY, we recognize that privacy is an essential human right. Your trust is important to us, and we pledge to protect your personal data and use it only in ways that respect your individual rights, freedoms, and digital autonomy. We uphold strict confidentiality standards and focus on minimizing data collection to only what is strictly necessary for the provision and enhancement of our services.
2. Scope of This Policy and Role as Data Controller
This Policy applies to all personal data collected through aquarius-cy.com and governs how and for what purposes this data is processed. Aquarius CY acts as the Data Controller for the personal information it collects, meaning we determine the purposes and means of processing your data in accordance with applicable laws. For any inquiries or requests concerning your data, you may reach us at [email protected].
3. Categories of Personal Data We Process
We may collect the following categories of personal data when you visit our Website or interact with our services:
a. Usage Data
Information about how you use the Website, including your browser type, IP address, geographic location, pages visited, time spent on pages, referring website addresses, session identifiers, and other usage statistics.
b. Account Data
Personal details you voluntarily provide when creating an account or engaging with our services, including your full name, postal address, email address, and phone number.
c. Profile Data
Details related to your preferences, behavior on the Website, transaction history, purchase records, saved preferences, and interest areas.
d. Communication Data
Information derived from your interactions with us, including support queries, feedback submissions, dispute resolution, and records of correspondence.
e. Technical Data
Details regarding your device and system configurations, including operating system, software versions, hardware model, device identifiers, mobile network information, and browser settings.
f. Transaction Data
Information related to purchases or transactions made through the Website, such as payment method (excluding full card details where not required), billing and delivery addresses, transaction sums, and order history.
g. Preference Data
Information relating to your marketing preferences, such as opt-in/opt-out status, consent records, interest categories, and targeted advertisement preferences.
4. Legal Bases for Processing Personal Data
We will only process your personal data where permitted by law. The legal bases include:
– Performance of a contract: Where necessary to fulfil a contract with you or to take steps, at your request, prior to entering into such a contract.
– Consent: Where you have freely given specific, informed, and unambiguous consent (e.g., marketing communications).
– Legal obligation: Where processing is required to comply with a legal obligation.
– Legitimate interest: Where necessary for our legitimate interests, provided such interests are not overridden by your rights.
5. Your Rights Under GDPR and CCPA
You are afforded various rights concerning your personal data, including:
– Right of Access: To obtain confirmation regarding whether we process your data and to access that information.
– Right to Rectification: To correct inaccuracies or incomplete data we hold about you.
– Right to Erasure: To request deletion of your data where grounds exist under law (the “Right to be Forgotten”).
– Right to Restriction: To restrict further use of your data under certain conditions.
– Right to Data Portability: To receive data you provided in a structured, commonly-used, machine-readable format and transmit it to another controller.
– Right to Object: To object to data processing based on legitimate interests or for direct marketing.
– Right to Non-Discrimination: Under CCPA, you are entitled to equal service and pricing regardless of exercising your privacy rights.
To exercise any of the above rights, you may email us at [email protected].
6. Security Measures
We implement comprehensive security protocols to protect your personal data from unauthorized processing, access, alteration, disclosure, or destruction. These include, but are not limited to:
– Encrypted transmission via HTTPS/SSL.
– Role-based access control and authentication.
– Regular data backups and operational redundancy.
– Employee privacy training and strict internal policies governing data access and handling.
7. International Data Transfers
Your personal information may be transferred or stored in jurisdictions outside your own. In cases where data is transferred internationally, we rely on:
– Standard Contractual Clauses authorized by the European Commission.
– Adequacy decisions for specific countries.
– Explicit consent where applicable.
We ensure an equivalent level of protection is afforded to transferred data in accordance with GDPR and other relevant regulations.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations. Specific retention periods include:
– Account and Profile Data: Up to 3 years after account closure or last user activity.
– Transaction Data: Retained for 6 years for regulatory and tax compliance.
– Communication Data: Retained for 2 years for audit and service improvement purposes.
– Technical and Usage Data: Retained for up to 12 months for analytics and security.
– Consent and Preference Records: Retained as long as necessary to validate lawful consent.
9. Cookie Policy
Our use of cookies enhances your user experience and helps us understand user behavior to improve service delivery. Categories of cookies include:
– Essential Cookies: Required for proper functioning of the Website, such as security authentication and navigation.
– Functional Cookies: Enable personalization features and interface customization.
– Analytics Cookies: Collect anonymized usage data to monitor Website performance.
– Performance Cookies: Enhance speed and responsiveness based on system efficiency.
10. Cookie Management and Compliance with GDPR & CCPA
We provide you with granular control over cookies. Upon entering the Website, you can accept or reject non-essential cookies via our Cookie Consent Banner. You may also modify your preferences or withdraw consent at any time through your browser settings or our Cookie Preference Center.
As required under GDPR, we only deploy cookies that store personal data with your prior consent (except strictly necessary cookies). Under CCPA, we honor “Do Not Sell My Personal Information” requests pertaining to cookies shared with third parties.
11. Children Under 13
We do not knowingly collect personal information from children under the age of 13. If it becomes known that such data has been collected, we will take prompt action to delete it. Parents and legal guardians who believe that their child may have provided personal data through aquarius-cy.com are encouraged to contact us at [email protected].
12. Policy Updates and User Notifications
We may revise this Privacy Policy periodically to reflect changes in legal obligations, service enhancements, or technology updates. Revisions will be communicated through appropriate user interfaces or on the Website. Users are encouraged to review this Policy regularly to remain informed of their rights and our practices.
13. Contact
For questions, concerns, or the exercise of your data protection rights, please contact us at:
Email: [email protected]
Website: https://aquarius-cy.com
We are dedicated to maintaining the highest data protection standards and ensuring that your privacy is respected at every level of our service. Should you have any queries or believe your data is being mishandled, please do not hesitate to contact us.