Privacy Policy
1. Introduction
At Eat My Disco (www.eatmydisco.com), we are committed to safeguarding your privacy and ensuring that your personal data is handled with the highest standards of security and transparency. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. We respect your privacy and are dedicated to securing the confidentiality of the information you entrust to us.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to the processing of personal data collected by or on behalf of Eat My Disco through our website at eatmydisco.com and any associated services, platforms, and communications. Eat My Disco acts as the “data controller” for purposes of GDPR and the “business” for purposes of CCPA, determining the purposes and means of processing your personal information.
3. Categories of Data Processed
We collect and process the following categories of personal data:
– Usage Data: Includes information about your browser type and version, IP address, device identifiers, referral source, geographic location, time zone, session characteristics, and how you interact with our website content.
– Account Data: Where applicable, includes your name, postal address, email address, telephone number, and other details needed to create or manage an account with us.
– Profile Data: Includes your purchase history, preferences, interests, feedback, and behavioral tendencies while using our platforms.
– Communication Data: Includes correspondence, support requests, contact histories, and other interactions with our customer support or marketing teams.
– Technical Data: Includes information on your device, operating system, browser settings, screen resolution, and configurations used to access our content.
– Transaction Data: Includes billing information, cardholder data (when applicable), order details, delivery preferences and history, and transaction confirmation data.
– Preference Data: Includes explicit preferences regarding marketing subscriptions, product interest signals, and responses to surveys and direct outreach.
4. Legal Bases for Processing
We process your personal data according to the following lawful bases under the GDPR and comparable frameworks such as the CCPA:
– Legitimate Interests: To understand user behavior, evaluate platform performance, secure our website, and conduct marketing activities reasonably expected by users.
– Contractual Necessity: To fulfill any agreements or transactions entered into with you, including providing services and responding to inquiries.
– Consent: Where required, we rely on your informed consent to process data for specific purposes, especially for marketing and non-essential cookies.
– Legal Obligation: To comply with legal and regulatory requirements, including record-keeping responsibilities and law enforcement disclosures.
5. Your Rights
Under applicable law, you may exercise the following rights concerning your personal data:
– Right of Access: Request access to the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your personal data where legally permissible.
– Right to Restrict Processing: Request suspension of processing where objections or disputes arise.
– Right to Data Portability: Request the transfer of your personal data to another controller, where technically feasible.
– Right to Object: Object to processing conducted under our legitimate interests, including profiling or direct marketing.
CCPA rights include:
– The right to know what personal data we collect and its specific uses.
– The right to request deletion of your personal information.
– The right to opt out of the sale or sharing of personal information (Eat My Disco does not sell your personal data).
– The right not to receive discriminatory treatment for exercising your privacy rights.
6. Security Measures
We implement appropriate technical and organizational safeguards to ensure the security and integrity of your personal data:
– Encryption of data in transit and at rest.
– Access controls using secure authentication and authorization protocols.
– Routine backups and data redundancy for continuity.
– Regular employee training on privacy and data protection practices.
– Monitoring and alerting of suspicious or unauthorized activity.
7. International Transfers
Where your personal data is transferred to jurisdictions outside of the European Economic Area (EEA) or other regulated regions, we implement appropriate safeguards, such as EU Standard Contractual Clauses or equivalent contractual mechanisms approved under relevant privacy legislation, to ensure adequate protection of your data.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to meet legal, regulatory, or contractual requirements. The retention periods vary according to data type:
– Usage and Technical Data: Retained for up to 26 months for analytics and security purposes.
– Account and Profile Data: Retained as long as your account remains active and up to seven years afterward if required by law.
– Transaction Data: Retained for tax and compliance purposes for up to eight years.
– Communication and Consent Records: Retained for documentation purposes for up to five years.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance user experience, analyze traffic patterns, and enable certain functionalities. Cookies fall into the following categories:
– Essential Cookies: Required for core site functionality, such as navigation and access control.
– Functional Cookies: Enable user personalization, preferences storage, and enhanced user interactions.
– Performance and Analytics Cookies: Collect aggregated site usage data to improve platform functionality and ensure optimal performance.
– Advertising Cookies: Currently not used to display personalized ads; if implemented, you will be notified for consent.
10. Cookie Management and Compliance
When you access eatmydisco.com, you are presented with a cookie banner enabling you to manage preferences. In accordance with GDPR and CCPA requirements:
– Users can enable or disable non-essential cookies through a consent management tool.
– You may revoke your consent at any time through your browser settings or our cookie preference interface.
– Do Not Track (DNT) signals are honored where technically feasible.
11. Special Protections for Children
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal data from children under this age. If we become aware that a child under 13 has provided personal information, we will take immediate steps to delete the data and terminate the associated access.
12. Policy Updates and User Notifications
Eat My Disco reserves the right to revise this Privacy Policy to reflect changes in operations, law, or regulatory guidance. Substantial modifications will be communicated via prominent on-site notification, banner alerts, or direct email where feasible. Continued use of our services after such changes signifies your acceptance of those updates.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
Website: www.eatmydisco.com
We are committed to data privacy compliance and welcome your inquiries or concerns regarding how we handle your personal information.