Privacy Policy

tahitichillingboat.com

The purpose of this privacy policy

The purpose of this privacy policy is to inform the users of our website of the personal data we collect and the following information, if any:

a. The personal data we collect

b. Use of received data

c. Who has access to the data collected

d. The rights of users of the site

e. The website's cookie policy

This privacy policy applies in addition to the general conditions of use of our site.

Applicable laws

In accordance with the General Data Protection Regulation (GDPR), this Privacy Policy complies with the following standards:

Personal data must be:

a. treated in a lawful, fair and transparent manner with regard to the person concerned (lawfulness, loyalty, transparency);

b. collected for specified, explicit and legitimate purposes, and not subsequently treated in a manner inconsistent with those purposes; subsequent processing for archival purposes in the public interest, for scientific or historical research or for statistical purposes shall not be considered, in accordance with Article 89(1), to be incompatible with the original purposes (limitation of purposes);

c. adequate, relevant and limited to what is necessary for the purposes for which they are processed (minimization of data);

d. accurate and, if necessary, kept up to date; all reasonable measures must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are deleted or rectified without delay (accuracy);

e. kept in a form allowing the identification of the persons concerned for a period not exceeding that necessary for the purposes for which they are processed; personal data may be kept for longer periods in so far as they will be processed exclusively for archivist purposes in the public interest, for scientific or historical research or for statistical purposes in accordance with Article 89(1), provided that the appropriate technical and organisational measures required by the Regulation are implemented in order to guarantee the rights and freedoms of the data subject (limitation of retention);

f. processed in such a way as to ensure adequate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures (integrity and confidentiality).

Treatment is lawful only if and to the extent that at least one of the following conditions is met:

a. the data subject has consented to the processing of his personal data for one or more specific purposes;

b. processing is necessary for the performance of a contract to which the person concerned is a party or for the performance of pre-contractual measures taken at the request of the person concerned;

c. treatment is necessary to comply with a legal obligation to which the controller is subject;

d. processing is necessary to safeguard the vital interests of the data subject or of another natural person;

e. the treatment is necessary for the performance of a public interest or public authority function entrusted to the controller;

f. processing is necessary for the legitimate interests pursued by the controller or by a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child prevail.

For residents of the State of California, this Privacy Policy is intended to confirm that California Consumer Privacy Act (CCPA). If there are inconsistencies between this document and the CCACState legislation will apply. If we find inconsistencies, we will amend our policy to comply with the relevant legislation.

Consent

Users agree that by using our site they accept:

a. the conditions set out in this Privacy Policy and

b. the collection, use and retention of the data listed in this policy.

Personal data we collect

Data collected automatically

When you visit and use our site, we can automatically collect and store the following information:

a. Location

b. Hardware and software details

c. Links on which a user clicks while using the site

d. Content that the user consults on our site

Non-automatically collected data

We do not collect additional data when the user performs certain functions on our site.

Please note that we only collect data that helps us achieve the objective set out in this Privacy Policy. We will not collect additional data without informing you beforehand.

How we use personal data

The personal data collected on our site will be used only at the fons specified in this policy or indicated on the relevant pages of our site. We will not use your data beyond what we will disclose.

The data we collect automatically are used for the following purposes:

  • Visit statistics

With whom we share personal data

Employees

We may disclose to any member of our organization the user data that this member reasonably needs to achieve the objectives set out in this policy.

Third parties

Third parties will not be able to access user data beyond what is reasonably necessary to achieve the given objective.

Other disclosures

We undertake not to sell or share your data with third parties, except in the following cases:

a. if required by law

b. if required for any judicial proceedings

c. to prove or protect our legal rights

d. to potential buyers or buyers of this company in case we seek to sell the company

If you are viewing hyperlinks from our site to another site, please note that we are not responsible and do not have control over their privacy policies and practices.

How long we store personal data

User data will be kept for 12 months.

We will ensure that users are notified if their data is stored longer than this time.

How we protect your personal data

All sensitive information is encrypted using robust technologies. When you log in to our site, your data is transmitted via a secure connection (HTTPS), ensuring that it is protected from interception or manipulation.

Although we take all reasonable precautions to secure our users' data and ensure their protection, there is still some risk. The Internet as a whole can sometimes present vulnerabilities, and it is therefore impossible for us to ensure absolute security of user data beyond what is reasonably achievable.

In the event of a breach of security affecting your personal information, we will inform you accordingly in accordance with legal obligations and take the necessary measures to mitigate the risks.

Minors

GDPR states that persons under the age of 15 are considered minors for data collection purposes. Minors must have the consent of a legal representative to collect, process and use their data.

Your rights as a user

Under the GDPR, users have the following rights to their data as data subjects:

a. right of access

b. Right of rectification

c. Right to erasure

d. right to restrict treatment

e. right to data portability

f. Right of objection

Further information on these rights can be found in Chapter 3 (Section 12-23) of the GDPR.

How to modify, delete or contest the data collected

If you wish your information to be deleted or changed in any way, please contact our Personal Data Protection Officer here: send an email

Contact

If you have any questions, please feel free to contact us using the following: contact@tahitichillingboat.com