Privacy Policy

P-Theory (“we,” “us,” or “our”) is fully committed to protecting the privacy and personal data of visitors and users of our website, p-theory.com. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information. We operate in accordance with internationally recognized data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We prioritize your privacy and are dedicated to maintaining the confidentiality and integrity of your personal data.

1. Scope of Policy and Role as Data Controller

This Privacy Policy applies to all users of p-theory.com and governs the processing of personal data collected through our website, services, and communications. In this context, P-Theory acts as the “data controller,” meaning we determine the purposes and means of processing your personal information. For residents of the European Economic Area (EEA) and the State of California, we process personal data in compliance with their respective regulations.

2. Categories of Data Processed

We may collect, store, and process the following categories of personal data:

a) Usage Data:
Includes information about how you interact with our website, such as IP address, browser type, page views, session duration, referring URLs, and geolocation data.

b) Account Data:
Data provided when you create an account or place an order, including your full name, billing address, shipping address, email address, and phone number.

c) Profile Data:
Covers user preferences, previous purchases, product interests, and behavioral data linked to your interactions with p-theory.com.

d) Communication Data:
Includes records of communications you initiate with us, such as support queries, emails, messages submitted through contact forms, and our corresponding responses.

e) Technical Data:
Encompasses information about your device, operating system, browser configurations, screen resolution, and security settings.

f) Transaction Data:
Details of orders placed, payment methods used, order values, delivery tracking information, and purchase history.

g) Preference Data:
Includes your expressed consents for marketing communications, selected preferences for product updates, and opt-in/opt-out statuses.

3. Legal Bases for Processing

We rely on several legal grounds to lawfully process your personal data:

– Consent: When you have provided your clear, informed consent for specific purposes (e.g., receiving marketing communications).
– Contractual Necessity: When processing is necessary to fulfill a contract with you (e.g., processing orders, delivering products).
– Legitimate Interest: When processing is necessary for our legitimate business interests (e.g., analytics, fraud detection), provided those interests are not overridden by your fundamental privacy rights.
– Legal Obligation: When processing is required to comply with applicable laws and regulations.

4. Your Rights

Under GDPR, CCPA, and related data protection regulations, you have the following rights concerning your personal data:

– Right of Access: You have the right to request access to the personal data we hold about you.
– Right to Rectification: You may request that we correct inaccurate or incomplete information.
– Right to Erasure: You may request the deletion of your personal data under certain conditions.
– Right to Restrict Processing: You may request that we limit the processing of your personal data under specific circumstances.
– Right to Data Portability: You have the right to receive your data in a structured, commonly used, and machine-readable format and, where technically feasible, to transmit it to another controller.
– Right to Object: You may object to our processing of your data based on legitimate interests or for direct marketing.
– Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

To exercise any of these rights, please contact us at [email protected].

5. Security Measures

We implement robust technical and organizational security measures to safeguard your personal data, including but not limited to:

– Secure encryption protocols for data transmission and storage
– Access controls and authentication procedures
– Regular data backups and disaster recovery planning
– Staff privacy training and confidentiality obligations
– Malware detection and firewall protections

6. International Transfers

Your data may be transferred to, and processed in, countries outside your jurisdiction, including jurisdictions that may not provide the same level of data protection as your home country. In such cases, we ensure that adequate safeguards are in place, including standard contractual clauses approved by the European Commission or reliance on recognized frameworks such as the EU-U.S. Data Privacy Framework, where applicable.

7. Data Retention

We retain personal data only for as long as it is necessary for the purposes outlined in this Privacy Policy, including:

– Usage Data: Retained for up to 12 months for analytics purposes.
– Account and Profile Data: Maintained for the duration of account existence, plus 12 months post-termination.
– Communication Data: Retained for up to 24 months for record-keeping.
– Transaction Data: Retained for up to 7 years in compliance with financial laws.
– Preference Data: Retained until consent is withdrawn or updated.

After the expiration of these periods, data is deleted or anonymized unless otherwise mandated by legal obligations.

8. Cookie Policy

We use cookies and other tracking technologies to enhance your experience, analyze website traffic, and personalize content. Cookies used on p-theory.com fall into the following categories:

– Essential Cookies: Necessary for website functionality and navigation (e.g., secure logins, cart functionality).
– Functional Cookies: Enable personalized experiences and remember your settings (e.g., language preferences).
– Analytics Cookies: Gather aggregated usage data to help us analyze and improve site performance (e.g., Google Analytics).
– Performance Cookies: Monitor system performance, load times, and technical issues for site optimization.

9. Cookie Management and Compliance

By visiting p-theory.com, you will be presented with a cookie banner allowing you to manage your cookie preferences in compliance with GDPR and CCPA requirements. You may withdraw consent or change settings at any time via our “Cookie Settings” dashboard or directly through your browser preferences. For more information or to adjust your cookie choices, please visit our Cookie Notice section on the website.

10. Children’s Data

Our website, p-theory.com, is not directed to children under the age of 13. We do not knowingly collect or process personal data from anyone under 13 years of age. If we become aware that we have inadvertently collected such data without verified parental consent, we will delete it immediately. Parents or guardians who believe that their children have provided us with personal data may contact us at [email protected].

11. Policy Updates & User Notifications

We reserve the right to update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. Any substantial modifications will be communicated clearly through our website. Continued use of p-theory.com following such updates will constitute acceptance of the revised policy.

12. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or how your personal data is handled, you may contact us via email at [email protected].

We are committed to protecting your privacy and operating in full compliance with applicable laws. Your trust is important to us. Please do not hesitate to reach out with any privacy concerns.