The General Data Protection Regulation(GDPR) is an EU-wide regulation for the protection of European citizens’ data that has come into force on 25th of May 2018 and all companies that collect such data need to comply with it. It establishes a set of compliance and security processes around managing personally identifiable information so that it is not misused. Currently there is no certification or license required or available for GDPR.
We are committed to comply with this regulation and this Privacy Policy document details how.
On our website we collect the following data:
1. If you are customer and buy any of the products in our store we will collect your NAME and EMAIL so we can deliver the product to your email account. The payments are processed by PayPal according to their Privacy Policy. Since we have a legitimate interest to collect this data, this is not covered by the “right to be forgotten” from the GDPR regulation. We will keep this data for 10 years for financial and legal reasons.
2. If you become an affiliate who has generated sales we will collect your NAME and EMAIL necessary for your payout. Payment will be sent via PayPal (PayPal Privacy Policy) Since we have a legitimate interest to collect this data, this is not covered by the “right to be forgotten” from the GDPR regulation. We will keep this data for 10 years for financial and legal reasons.
3. If you become a newsletter subscriber we will collect your NAME and EMAIL in order to deliver our newsletter to you. Each newsletter we send out, at the bottom has an option to opt out from our newsletter list. You can also ask to be removed from our mailing list by sending an email to our Data Protection Officer (DPO) [email protected]
4. If you write a product review we will collect your NAME, EMAIL and the REVIEW text. The review will be displayed on the product page for as long as the product is available or until you ask that your review be removed by writing to our Data Protection Officer (DPO) [email protected]
5. If you use our contact form we will collect your NAME, EMAIL and MESSAGE. These will be sent to a monitored business email and also stored in the database for future reference in communication with you. At your request, the messages can be removed from the database. Please contact our Data Protection Officer (DPO) by email at [email protected]
The Personal Data and mailing list information that we collect is stored on our hosting provider (the hub.mastermind.com) server. You can update any of your personal data by a written request to our Data Protection Officer (DPO) by email [email protected]
Personal Data related to shopping cart orders or affiliate payouts will be kept for 10 years and it is not subject to the “right to be forgotten” for financial and legal reasons. For mailing lists, product reviews or contact form messages you can send a request for deletion for our Data Protection Officer (DPO) [email protected]