Privacy Policy for Genesis-Key.com
1. Introduction
Genesis-Key.com (“we”, “us”, or “our”) is committed to safeguarding the privacy and personal data of all individuals who interact with our website, products, and services. We prioritize the protection of your personal information and operate in full compliance with applicable data protection laws, including the European Union General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and protect your personal data and outlines your rights and choices regarding your information.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to data collected through your interactions with our website located at https://genesis-key.com (“the Site”) and any related services. Genesis-Key.com acts as the “data controller” with respect to the personal data we collect in accordance with the definitions provided under GDPR. For California residents, we are also considered a “business” as defined under the CCPA, responsible for the collection and use of your personal information.
3. Categories of Data Processed
We may collect and process the following types of personal data depending on how you interact with our Site:
a) Usage Data
Includes information such as your browser type and version, the device you use to access our Site, IP address, operating system, device identifier, and details of your visits such as time spent on pages, navigation paths, error messages, and other diagnostic data.
b) Account Data
Includes full name, billing and shipping address(es), email address, phone number, and other profile details submitted during account creation and management.
c) Profile Data
Includes your preferences, feedback, order history, browsing behavior, and participation in surveys, forums, promotions, or customer research programs.
d) Communication Data
Includes email and phone correspondence, customer service history, inquiries submitted via contact forms or chat, and interaction records with our support team.
e) Technical Data
Includes information gathered from cookies and similar technologies about your device, connection, browser plug-in types, screen resolution, language settings, and operating environment.
f) Transaction Data
Includes details of purchases made through our Site, such as payment method (limited to tokenized or anonymized information processed through third-party gateways), transaction history, billing status, and delivery tracking information.
g) Preference Data
Includes your marketing and communication preferences, product category interests, newsletter subscriptions, and user-configured notification settings.
4. Legal Bases for Processing
We rely on the following legal bases for processing personal data in compliance with GDPR:
– Performance of a Contract: To fulfill and deliver services and products you request or purchase.
– Consent: Where you explicitly authorize processing, such as for marketing communications or analytics.
– Legal Obligation: Where processing is necessary to comply with applicable laws and regulations.
– Legitimate Interests: To improve our products and services, ensure security, and enhance user experience, provided such interests are not overridden by your rights and freedoms.
For data subject to CCPA, we may collect, use, or disclose personal information for business purposes, including service delivery, fraud prevention, and legal compliance.
5. Your Rights
As an individual whose data we process, you are entitled to the following rights under applicable laws:
– Right of Access: Obtain confirmation regarding the processing of your data and a copy of such data.
– Right to Rectification: Request the correction of inaccuracies in your personal data.
– Right to Erasure: Request the deletion of your personal data, subject to applicable legal obligations and retention requirements.
– Right to Restriction: Request restrictions on the processing of your data under certain conditions.
– Right to Data Portability: Receive a copy of your data in a structured, commonly used format for transfer to another service provider.
– Right to Object (GDPR): Object to processing based on legitimate interests, direct marketing, or automated decision-making.
– Right to Opt-Out (CCPA): California residents have the right to opt out of the sale or sharing of their personal information.
To exercise any of these rights, please contact us at [email protected]. Requests will be handled in accordance with applicable data protection laws.
6. Security Measures
We implement a range of technical and organizational measures to secure personal data against unauthorized access, accidental loss, alteration, and disclosure. These include:
– End-to-end encryption of data transmissions and sensitive information
– Role-based access controls and password policies for internal systems
– Regular data backups with disaster recovery protocols
– Employee awareness training and access auditing
– Secure socket layer (SSL) technology for website interactions
7. International Data Transfers
If your data is transferred to jurisdictions outside of the country where you reside, such transfers will be carried out in compliance with applicable data protection laws. For EU residents, we utilize Standard Contractual Clauses (SCCs) and supplementary measures approved by the European Commission to ensure adequate data protection. We also assess third-country laws to ensure compatibility with EU and UK data protection requirements.
8. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including legal, regulatory, tax, accounting, or reporting obligations. Specific retention periods include:
– Account and Transaction Data: Retained for up to 7 years post-transaction for compliance and fraud prevention
– Communication and Support Data: Retained for up to 3 years after your last interaction
– Marketing and Preference Data: Retained until you opt-out or withdraw consent
– Usage and Technical Data: Retained for up to 2 years to support analytics and security
Upon expiry, data is securely deleted, anonymized, or aggregated for non-identifiable uses.
9. Cookie Policy
Our Site uses cookies and similar technologies to enhance user experience, optimize performance, and support analytics. These include:
– Essential Cookies: Necessary for the operation and security of the Site (e.g., authentication, session management)
– Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences
– Analytics Cookies: Help us understand how visitors engage with the Site via aggregated usage data
– Performance Cookies: Measure performance metrics such as load times, navigation flow, and usability
We do not use cookies to serve personalized advertising unless you have explicitly opted in.
10. Cookie Management and Compliance with GDPR & CCPA
In compliance with GDPR and CCPA, we offer users full control over the use of non-essential cookies:
– Upon your first visit to the Site, a cookie consent banner allows you to accept or reject specific types of cookies.
– You may change your cookie preferences at any time via the Site’s cookie management interface.
– Most browsers provide controls that allow you to delete or block cookies universally.
System logs and certain functional cookies deemed essential are necessary for website functionality and are not part of consent-based categories.
11. Children’s Privacy
Genesis-Key.com does not knowingly collect or process personal data from children under the age of 13. If we become aware that personal information has been inadvertently collected from a child under 13 without verified parental consent, we will promptly delete such data. If you believe we have collected such data, please contact us immediately at [email protected].
12. Policy Updates and Modifications
We reserve the right to amend or update this Privacy Policy at our discretion. Material changes will be communicated via our Site or direct notification to account holders, where applicable. Continued use of our services after such notices constitutes acceptance of the revised terms. We recommend reviewing this policy periodically to remain informed about how we handle your personal data.
13. Contact
For questions, concerns, or requests related to this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
Website: https://genesis-key.com
Compliance Statement
Genesis-Key.com is dedicated to upholding data protection standards as required under GDPR, CCPA, and other applicable laws. If you have privacy concerns or would like to exercise your legal rights, we encourage you to reach out using the contact information provided above.