Privacy Policy
1. Introduction
At p-theory.com, we recognize and respect the importance of protecting your personal data. We are committed to maintaining the confidentiality, integrity, and security of any information about individuals that we collect, store, and process. This Privacy Policy reflects our dedication to safeguarding your privacy and ensuring transparency in our data processing activities.
We implement robust data privacy and protection practices in accordance with applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act of 2018 (“CCPA”), as amended. Your trust is paramount, and we are committed to upholding the highest standards of privacy protection.
2. Scope of This Policy & Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use the website located at p-theory.com (the “Website”). The data controller responsible for your personal data under this Privacy Policy is P Theory Ltd., which operates p-theory.com.
If you have any questions or concerns regarding the processing of your personal data, you may contact our privacy team via [email protected].
3. Categories of Personal Data We Collect
We collect and process various categories of personal data depending on the nature of your interaction with our Website, products, and services.
a. Usage Data
We collect standard internet log information and visitor behavior patterns, including IP address, browser type and version, pages visited, time spent on each page, referring URLs, session duration, and other diagnostic data.
b. Account Data
When you create an account on p-theory.com, we collect your name, email address, mailing address, phone number, login credentials, and other details relevant to account registration and maintenance.
c. Profile Data
We process data related to your activity on the platform, such as user preferences, purchase history, saved items, and behavioral information that helps tailor your user experience.
d. Communication Data
This includes the content of support requests, email correspondence, and other communications you initiate through our contact forms, feedback tools, or direct communication via email.
e. Technical Data
We collect data from devices and technology you use to access our services, which may include device identifiers, operating system, hardware type, default language, time zone settings, and browser configuration.
f. Transaction Data
This includes details of products or services purchased, payment method used, billing and delivery addresses, and transaction history. We do not store full payment card information; all transactions are processed securely through third-party payment gateways.
g. Preference Data
We collect data on your indicated marketing preferences, communication opt-in/opt-out choices, and expressed interests in particular products or services.
4. Legal Bases for Processing
We process personal data only when there is a lawful basis, as required under GDPR and similar regulations:
– Consent: Where you have provided affirmative, informed consent (e.g., for marketing communications).
– Contractual Obligation: When processing is necessary for the performance of a contract with you (e.g., account management, order fulfillment).
– Legal Obligation: When processing is required to comply with our legal responsibilities.
– Legitimate Interests: For operational and security purposes, analytics, service improvement, fraud prevention, and user personalization, provided such processing does not override your rights and freedoms.
5. Your Rights
Under applicable data protection laws, individuals have certain rights concerning their personal data:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request correction or completion of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data, subject to legal exceptions.
– Right to Restriction: You may request that we restrict the processing of your personal data under certain conditions.
– Right to Data Portability: You may request that we provide your personal data in a structured format for transmission to another controller.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational measures designed to protect your personal data from unauthorized access, disclosure, loss, or alteration. These measures include, but are not limited to:
– Data encryption in transit and at rest
– Role-based access controls and multi-factor authentication
– Regular security audits and penetration testing
– Secure data backups
– Staff training on data protection and security best practices
7. International Data Transfers
Your personal data may be transferred to and maintained on servers located outside your jurisdiction. Where data is transferred outside the European Economic Area (EEA) or other jurisdictions with data protection frameworks, we ensure appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place to maintain an adequate level of data protection in compliance with GDPR and other international requirements.
8. Data Retention
We retain personal data only for as long as is necessary for the purposes for which it was collected and processed, including legal, accounting, or compliance obligations. Retention periods vary by data category:
– Account and Transaction Data: Retained for 7 years to meet financial and legal requirements.
– Communication Data: Retained for 2 years for record-keeping and service improvement.
– Marketing and Preference Data: Retained until consent is withdrawn or 2 years after last contact.
– Technical and Usage Data: Retained for no more than 12 months, unless aggregated or anonymized.
9. Cookie Policy
Our Website uses cookies and similar technologies to ensure functionality, analyze performance, and provide personalized user experiences. We use:
– Essential Cookies: Necessary for core site functionality (e.g., login, cart).
– Functional Cookies: Enable enhanced functionality like remembering your preferences.
– Analytics Cookies: Help us understand how users interact with p-theory.com to improve performance.
– Performance Cookies: Support load balancing, uptime, and service responsiveness.
10. Cookie Management and Compliance
Upon visiting p-theory.com, you are presented with a cookie consent banner that enables you to manage your cookie preferences. You may withdraw or update your consent at any time via the cookie settings on our website. We comply with GDPR consent requirements and honor Do Not Sell My Personal Information requests in accordance with the CCPA.
Your browser settings may also enable you to block or delete cookies; however, doing so may affect the correct functioning of certain Website features.
11. Children’s Privacy
p-theory.com does not knowingly collect personal data from children under the age of 13. If we become aware that such data has been collected without verified parental consent, we will take immediate steps to delete the data. Parents or guardians who believe that we may have collected personal data from a child under 13 are encouraged to contact us at [email protected].
12. Policy Updates
We may update this Privacy Policy from time to time to reflect legal, regulatory, or operational changes. Continued use of p-theory.com following any such updates constitutes acceptance of the revised terms. Significant changes will be communicated through prominent notice on the Website or via email, where applicable.
13. Contact
To exercise your rights, to raise a privacy-related concern, or to seek clarification about our data practices, please contact us at:
—
We are committed to full compliance with GDPR, CCPA, and other applicable data protection laws. Your privacy rights are important to us, and we welcome your questions and feedback at any time at [email protected].