Privacy and Personal Data Processing Policy
Introduction
At sprt.health, we understand the importance of your privacy and are committed to transparent and responsible handling of your personal data. This policy outlines our practices regarding the collection, use, storage, and protection of your personal information.
- Collection of Personal Data
- Types and Specifics of Data Collected
- Account Registration Data: Includes your full name, email address, and a securely encrypted password.
- Transactional Data: This encompasses details of the products you purchase, your chosen payment methods (without storing payment details like credit card numbers), and your shipping address.
- Customer Service Interactions: Any communication or queries directed to our support team, including emails or messages, are recorded for quality and resolution purposes.
- Methods and Reasons for Data Collection
- Data is gathered through various interactions on our platform, including account registration for order processing, transactional data for purchase fulfillment, and customer service records for providing effective support and resolving disputes.
- Purpose of Data Collection
- Efficient Order Management
- Personal data is crucial for accurately processing and delivering your orders.
- Enhanced Customer Support
- We use your communication data to provide personalized and effective customer service.
- Business Development and Analysis
- Understanding market trends and customer preferences through data analysis helps us improve our offerings.
- Security Enforcement
- Data is used to protect our platform and users from fraudulent activities and unauthorized access.
- Sharing of Personal Data with Third Parties
- Partners and Service Providers
- We engage with trusted delivery services, payment processors, and customer relationship management tools. These partners access only the necessary data to perform their services.
- Legal Obligations and Compliance
- If legally required, we may share your data with law enforcement or regulatory authorities to comply with legal processes.
- Data Retention Policy
- Retention Duration
- Personal data is retained for as long as necessary to fulfill the purposes we collected it for, including satisfying any legal, accounting, or reporting requirements. Typically, this duration encompasses the length of our service provision plus an additional period as dictated by legal obligations.
- International Data Transfer
- Cross-border Data Transfer Mechanisms
- If personal data is transferred outside the European Union, we ensure it is afforded a similar degree of protection. This includes using specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
- Customer Rights Regarding Personal Data
- Right to Access and Modify
- You have the right to request access to your personal data, correct any inaccuracies, or request deletion.
- Right to Data Portability
- You can request a copy of your personal data in a structured, machine-readable format for personal use or to transfer to another service.
- Right to Withdraw Consent
- You have the right to withdraw consent for specific data uses, such as marketing communications, at any time.
- Queries and Contact Regarding Data Protection
- Contacting Our Data Protection Officer
- For inquiries about how we handle your personal data, or to exercise your rights, you can contact our Data Protection Officer.
- Contact Methods
- You can reach us via the contact information provided on our website, including email and customer service helplines.
Policy Amendments and Notification
We may update this policy periodically to reflect changes in legal requirements or our data handling practices. Significant changes will be communicated to users through our website or via direct communication.