Privacy Policy for OpenSocialStuff.com

1. Introduction

At OpenSocialStuff.com, we value your privacy and are committed to safeguarding your personal data according to the highest standards of data protection and privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and retain personal data, and provides detailed information about your rights and our obligations in managing that information in a transparent and secure manner.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all personal data collected through the website opensocialstuff.com and any related services, features, or communications associated with it. For the purpose of applicable data protection laws, OpenSocialStuff.com operates as the Data Controller in relation to the personal data you provide or that is collected from you.

3. Categories of Data Processed

We collect and process the following categories of personal data:

a) Usage Data
Includes your IP address, geographic location, browser type and version, operating system, referral source, length of visit, page views, and website navigation paths, timestamps, and frequency of service use.

b) Account Data
Includes first and last names, email addresses, mailing addresses, phone numbers, usernames, and authentication credentials when creating an account on opensocialstuff.com.

c) Profile Data
Includes information regarding your preferences, purchase history, user behavior, and interactions with features on our site.

d) Communication Data
Includes any correspondence you send to us, such as email messages, live chat transcripts, customer support interactions, or feedback you provide, all of which may include identifiers and communication metadata.

e) Technical Data
Includes device information, including device model, operating system, browser information, screen resolution, language settings, and system configurations necessary for optimal delivery of services.

f) Transaction Data
Includes details about purchases, billing addresses, payment confirmations (note: we do not store credit card numbers directly), shipping and delivery data.

g) Preference Data
Includes user choices relating to marketing communication consents, subscription preferences, and declared interests in specific services or content.

4. Legal Bases for Processing Data

We process personal data according to the following lawful bases under the GDPR and analogous provisions under the CCPA:

– Consent: When you explicitly provide your consent for the processing of certain data, such as email marketing preferences.
– Contractual necessity: To perform obligations under a contract with you, including user registration and transaction fulfillment.
– Legal obligation: Where processing is necessary for compliance with applicable laws.
– Legitimate interests: To administer and improve our website, conduct analytics, detect fraud, and ensure network security, subject to your rights and reasonable expectations.

5. Your Data Protection Rights

You have the following rights in respect of your personal data, subject to any limitations provided by applicable law:

– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You have the right to request correction of any inaccurate or incomplete data.
– Right to Erasure: Under certain circumstances, you may request deletion of your personal information.
– Right to Restriction: You can request limited processing of personal data where its accuracy is contested, or processing is unlawful.
– Right to Data Portability: You are entitled to receive personal data you have provided to us in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to processing based on legitimate interests, including profiling, or where data is used for direct marketing.

To exercise any of these rights, please contact us at [email protected]. We will respond to valid requests in accordance with applicable laws.

6. Security Measures

We implement appropriate technical and organizational measures to ensure a high level of data security. These measures include encryption of data in transit, role-based access controls, secure network infrastructure, disaster recovery and backup protocols, regular vulnerability assessments, and employee training in data protection best practices.

7. International Data Transfers

If we transfer personal data outside of the European Economic Area (EEA) or your jurisdiction, such transfers are conducted in accordance with applicable safeguards, such as Standard Contractual Clauses approved by the European Commission or equivalent mechanisms under applicable law. We commit to ensuring that any international data transfers are subject to checks that ensure your data remains protected to standards equivalent to GDPR or CCPA, as applicable.

8. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including legal, regulatory, tax, accounting, or reporting obligations. Retention periods vary based on the data type:

– Usage Data: retained for up to 12 months for analytics and system monitoring.
– Account and Profile Data: retained for the duration of the account and a period of up to 6 years thereafter.
– Communication Data: retained for up to 3 years following resolution of the inquiry.
– Transaction Data: retained for up to 7 years to comply with tax and audit requirements.
– Technical and Preference Data: retained as long as necessary to maintain service efficiency and user experience.

9. Cookie Policy

We use cookies and similar tracking technologies to monitor and analyze website usage, provide core functionality, and tailor experiences. These include:

– Essential Cookies: Necessary for website functionality and accessibility.
– Functional Cookies: Remember your settings and preferences.
– Performance Cookies: Measure website performance and user behavior to improve the service.
– Analytics Cookies: Help us understand how users interact with our site through aggregated statistical data.

For further details, refer to our full Cookie Notice accessible through our website.

10. Cookie Management & Compliance with GDPR & CCPA

You can manage your cookie preferences at any time through your browser settings or through our website’s cookie consent management tool. California residents have the right to opt-out of the sale of personal information. We do not sell your data, but we respect opt-out signals sent via browser-based Global Privacy Controls (“GPC”). EU users are prompted to accept or decline non-essential cookies as required by GDPR. Your consent preferences are honored and can be changed at any time.

11. Children’s Privacy

We do not knowingly collect personal data from children under the age of 13 or any applicable minimum age in the user’s jurisdiction without verifiable parental consent. Users under 13 years of age are requested not to submit any personal data to opensocialstuff.com. If we become aware that data from a child has been collected without appropriate consent, we will delete such data promptly.

12. Policy Updates & User Notifications

We may revise this Privacy Policy from time to time to reflect changes in our practices, technologies, legal obligations, or for other operational or strategic reasons. Updates will be posted on opensocialstuff.com along with an indication where applicable of the nature of the revisions. Users are advised to regularly review this page. Where significant changes are made, we will take appropriate measures to notify affected users as required by law.

13. Contact

For any questions, requests, or concerns relating to this Privacy Policy or how we process your personal data, please contact our Data Protection Officer at:

Email: [email protected]

We are committed to operating in full compliance with applicable data protection laws and to addressing privacy-related questions in a timely, transparent, and respectful manner.