Privacy Policy
At FlashSays.com (“we”, “our”, or “us”), we are committed to safeguarding your personal data and upholding your privacy rights in accordance with applicable global privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how your personal information is collected, used, disclosed, and protected when you interact with our website.
1. Commitment to Privacy and Data Protection
We recognize the importance of privacy and the protection of personal data. At FlashSays.com, we implement rigorous measures to ensure that the data we collect is handled lawfully, transparently, and securely. We are fully committed to respecting your rights and maintaining the confidentiality and integrity of your personal information.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through the website FlashSays.com, including when you browse the site, create an account, or use any services offered therein. For the purposes of data protection legislation, FlashSays.com is the Data Controller for your personal data. If you have any questions regarding this policy or the processing of your data, you may contact us at [email protected].
3. Categories of Personal Data We Process
Depending on the nature of your interactions with our website, we may collect and process the following categories of personal data:
a. Usage Data
This includes information such as browser type, IP address, device identifiers, pages visited, time spent on the site, referring URLs, and session timestamps. This data is primarily used for diagnostics, analytics, and system optimization.
b. Account Data
We collect personal details you provide when registering for an account, including your full name, postal address, email address, and phone number.
c. Profile Data
This may include your language and content preferences, purchase history, saved items, and behavioral insights derived from your activity on FlashSays.com.
d. Communication Data
Any correspondence you submit, such as customer support requests or contact forms, is recorded and may include messages, records of communication, and follow-up interactions.
e. Technical Data
This encompasses device-specific data such as operating system, browser configuration, screen resolution, and related system information.
f. Transaction Data
We collect personal data necessary for order fulfillment and financial transactions, including billing information, shipping address, payment method details (note that full payment card information is processed by accredited third-party processors and is not stored by us), and order history.
g. Preference Data
This includes your marketing preferences, opt-in/opt-out status for communications, and indicated areas of interest or product categories.
4. Legal Bases for Processing
We only process your personal information when a lawful basis under applicable data protection laws applies. These legal bases include:
– Consent: If you affirmatively opt in to certain forms of data processing (e.g., marketing communications).
– Contract: When processing is necessary to fulfill a contract with you (e.g., fulfilling an order).
– Legitimate Interest: Where data processing is necessary for our legitimate business purposes, provided these are not overridden by your rights and interests.
– Legal Obligation: Where processing is required to comply with our legal or regulatory obligations.
5. Your Data Protection Rights
Depending on your jurisdiction, you may exercise the following rights regarding your personal data:
– Right of Access – You have the right to request access to the personal data we hold about you.
– Right to Rectification – You may request correction of inaccurate or incomplete data.
– Right to Erasure – Under certain circumstances, you may request deletion of your personal data.
– Right to Restriction – You may request that we restrict the processing of your personal data in specific scenarios.
– Right to Data Portability – Where applicable, you may request a copy of your data in a machine-readable format for transfer to another service.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request in accordance with applicable data protection laws.
6. Security Measures
FlashSays.com implements appropriate technical and organizational measures to protect your data from accidental loss, unauthorized disclosure, misuse, or alteration. These include:
– Data encryption in transit and at rest;
– Role-based access controls and authentication protocols;
– Secure data storage and up-to-date server infrastructure;
– Employee training and confidentiality agreements;
– Regular security audits and risk assessments;
– Automated backups and disaster recovery procedures.
7. International Data Transfers
In situations where personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with data transfer restrictions, we ensure such transfers are conducted in accordance with applicable laws. This may involve the use of Standard Contractual Clauses approved by the European Commission or reliance on adequacy decisions where applicable.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or to satisfy legal, contractual, or regulatory obligations. Retention periods vary by data category:
– Usage and Technical Data: Retained for up to 36 months for analytical purposes.
– Account and Profile Data: Retained for the duration of your account and for a reasonable period thereafter, typically 12 months post-deletion.
– Transaction Data: Retained for up to 7 years to comply with financial reporting obligations.
– Communication and Support Data: Retained for up to 24 months from the date of last correspondence.
– Preference and Marketing Data: Retained until consent is withdrawn or otherwise updated.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance user experience, enable functionality, and analyze website traffic. The categories of cookies we use are:
– Essential Cookies – Required for core website functions such as login and security.
– Functional Cookies – Help remember user settings and preferences.
– Analytics Cookies – Collect anonymous data about user behavior and site performance (e.g., through Google Analytics).
– Performance Cookies – Facilitate speed and usability optimizations.
10. Cookie Management and Compliance
During your first visit to FlashSays.com, you will be presented with the option to manage your cookie preferences in accordance with GDPR and CCPA requirements. You may modify your preferences at any time through our Cookie Settings panel or by adjusting browser settings. Users located in California may also opt out of the “sale” of personal information under the CCPA where applicable.
11. Children’s Privacy
FlashSays.com does not knowingly collect or process the personal data of children under 13 years of age. If we become aware that such data has been collected inadvertently, we will take immediate steps to delete it. Parents or guardians who believe their child has submitted personal information without consent should contact us at [email protected].
12. Changes to This Privacy Policy
We reserve the right to update this Privacy Policy as required by changes to our practices, applicable laws, or regulatory guidance. Material changes to the policy will be prominently communicated to users via FlashSays.com or through direct communication methods. We encourage periodic review of this policy to stay informed of how we protect your data.
13. Contact Information
For questions, data subject requests, or privacy concerns, please contact:
Data Protection Officer
FlashSays.com
Email: [email protected]
We take all privacy-related inquiries seriously and will respond as promptly as is reasonably feasible.
FlashSays.com is committed to upholding the highest standards of data protection in line with GDPR, CCPA, and similar global frameworks. If you have any concerns about your privacy or how your data is handled, please contact us at the above address.