Privacy Policy
1. Introduction
At Multi-Canal, accessible via multi-canal.com, we are fully committed to protecting the privacy and personal data of our users. We place the utmost importance on maintaining the confidentiality, integrity, and availability of the personal data entrusted to us. This Privacy Policy outlines how we collect, use, store, and safeguard personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”). Our goal is to ensure transparency and empower users with control over their data while upholding the highest standards of privacy and security.
2. Scope and Data Controller
This Privacy Policy applies to all users who access or use the services available through multi-canal.com (collectively, the “Website”). The data controller responsible for processing personal data under this policy is:
Multi-Canal
Email: [email protected]
We determine the purposes and means of processing personal data collected through our Website and related services.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a) Usage Data
Includes data automatically collected when users interact with our Website, such as IP addresses, browser types and versions, device identifiers, pages visited, referral URLs, geographic location, session durations, and other diagnostic data.
b) Account Data
Information provided during account creation or updates, including full name, physical address, email address, telephone number, and login credentials.
c) Profile Data
Preferences, interests, purchase history, behavior patterns on our Website, saved settings, and other profile-related information deliberately provided or generated through interactions.
d) Communication Data
Records of correspondence and communications with us, including submitted support requests, feedback, inquiries, and communication preferences.
e) Technical Data
Device specifications, operating system details, browser configuration, language settings, time zone, and network information.
f) Transaction Data
Details of products or services purchased, billing and shipping addresses, transaction identifiers, and payment method information. While we do not store full payment information, third-party payment processors may collect this data as necessary for transaction execution.
g) Preference Data
Information regarding expressed marketing and communication preferences, newsletter subscriptions, product interests, and notifications opted into or out of.
4. Legal Bases for Processing Personal Data
We process personal data lawfully, fairly, and transparently. Our legal bases for processing include:
– Consent: Where users have given clear consent to the processing (e.g., marketing communications, cookies).
– Contractual Necessity: Where data processing is necessary for the performance of a contract or to take steps at the user’s request before entering into a contract.
– Legitimate Interests: Where processing is necessary for our legitimate business interests, provided such interests are not overridden by the user’s rights and freedoms.
– Legal Obligation: Where we are required to process data to comply with legal obligations under EU, U.S., or other applicable jurisdictional laws.
5. Your Rights
Subject to local data protection laws, you may have the following rights concerning your personal data:
– Right of Access: Obtain confirmation regarding the existence and access to your personal data.
– Right to Rectification: Request correction of incomplete, inaccurate, or outdated information.
– Right to Erasure: Request deletion of your personal data, subject to legal limitations.
– Right to Restriction: Restrict processing where accuracy is contested or where processing is unlawful, but erasure is not requested.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format and transmit it to another controller.
– Right to Object: Object to the processing of your personal data where processing is based on legitimate interest or direct marketing.
– Right to Withdraw Consent: Withdraw consent at any time where processing is based on your consent.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement comprehensive technical and organizational safeguards to protect personal data against unauthorized access, disclosure, alteration, or destruction. These include:
– Industry-grade encryption of data in transit and at rest
– Role-based access controls and access logging
– Regular data backups and recovery protocols
– Staff data protection training and confidentiality agreements
– Monitoring for vulnerabilities and threats
While we strive to use commercially acceptable means to safeguard personal information, no method of transmission or storage can be guaranteed 100% secure.
7. International Data Transfers
We may transfer personal data outside the European Economic Area (EEA), including to countries that do not offer equivalent data protection standards. Where applicable, such transfers are conducted using:
– Standard Contractual Clauses (SCCs) approved by the European Commission
– Adequacy decisions issued by the European Commission
– Binding Corporate Rules, where applicable
– Additional protections as required by jurisdiction (e.g., supplemental measures or enforceable data subject rights)
We ensure all international transfers comply with applicable data protection legislation to maintain the protection and privacy of your personal data, regardless of location.
8. Data Retention
We retain personal data only for as long as necessary for fulfillment of the purposes for which it is processed, subject to applicable legal, accounting, or regulatory requirements. Retention periods generally include:
– Usage Data: 12 months
– Account and Profile Data: As long as the account is active + 6 years for compliance
– Communication Data: 3 years from last correspondence
– Transaction Data: 7 years for tax and audit compliance
– Technical Data: 12 months
– Preference Data: Until consent is withdrawn or updated
Data may be anonymized or securely deleted once retention periods lapse.
9. Cookie Policy
Our Website uses cookies and similar technologies to enhance user experience and analyze Website usage. Cookies allow us to remember preferences, improve Website functionality, and tailor content.
Categories of cookies used:
– Essential Cookies: Necessary for Website operation (e.g., login, navigation)
– Functional Cookies: Enable enhanced functionality and personalization
– Analytics Cookies: Help us understand usage metrics and improve performance
– Performance Cookies: Monitor technical performance and troubleshoot issues
10. Cookie Management and Compliance
Upon first visit to multi-canal.com, users are presented with a cookie consent banner that clearly outlines the types of cookies used and allows users to manage their preferences. Users can withdraw or modify their cookie consent at any time via our cookie management tool available on the Website.
In compliance with the GDPR and CCPA:
– Users in the EU are not tracked via non-essential cookies without affirmative consent
– California residents have the right to opt-out of the sale or sharing of their personal data via cookies or trackers
– Cookie identifiers may be considered personal data and are therefore protected under relevant laws
11. Children’s Privacy
Our Website and associated services are not directed to individuals under the age of 13. We do not knowingly collect or process personal data from children without verifiable parental consent. If you believe we may have inadvertently collected such information, please contact us immediately at [email protected] so that we may take appropriate action to delete the data.
12. Policy Updates
We reserve the right to amend this Privacy Policy periodically to reflect changes in legal obligations, data processing practices, or service offerings. Any material changes will be communicated through conspicuous notices on the Website or via direct communication where appropriate. Continued use of the Website after such updates constitutes acceptance of the revised policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or how your personal data is handled, please contact us at:
Email: [email protected]
We are committed to addressing all inquiries in a timely and responsible manner.
—
This Privacy Policy has been drafted to ensure our compliance with the GDPR, the CCPA, and other applicable data protection legislation. For any further information or concerns relating to your privacy, please do not hesitate to reach out using the contact information provided.