GDPR Compliance Statement

At DECORATEVA, we are committed to protecting your personal data and ensuring compliance with the General Data Protection Regulation (GDPR). This page outlines our policies and practices regarding the collection, use, and protection of personal data for users located in the European Economic Area (EEA).

GDPR Compliance Statement

Data Controller

The data controller responsible for your personal data is:

DECORATEVA
Email: [email protected]

What Personal Data We Collect

We may collect the following categories of personal data:

  • Contact Information: Name, email address, and any details you voluntarily provide via forms.
  • Technical Data: IP address, browser type, device information, and website usage statistics.
  • Communication Data: Messages, inquiries, and comments you send to us.

Why We Collect Your Data

We collect and process your personal data for the following purposes:

  • To provide and improve our services.
  • To respond to your inquiries and communications.
  • To send newsletters and updates (if you have opted in).
  • To analyze website traffic and improve user experience.

The legal bases for processing your data include your consent, our legitimate interests, and compliance with legal obligations.

How We Protect Your Data

We implement technical and organizational measures to safeguard your personal data, including:

  • Secure data storage and transmission using encryption.
  • Restricted access to personal data to authorized personnel only.
  • Regular audits and updates to ensure compliance with data protection regulations.

Your GDPR Rights

Under the GDPR, you have the following rights regarding your personal data:

  1. Right of Access: Request a copy of the personal data we hold about you.
  2. Right to Rectification: Request correction of inaccurate or incomplete data.
  3. Right to Erasure: Request the deletion of your personal data under certain conditions.
  4. Right to Restrict Processing: Request the restriction of processing your personal data.
  5. Right to Data Portability: Request transfer of your data to another organization.
  6. Right to Object: Object to the processing of your data in specific circumstances, such as direct marketing.
  7. Right to Withdraw Consent: Withdraw your consent at any time.
  8. Right to Lodge a Complaint: File a complaint with your local data protection authority if you believe your rights are being violated.

To exercise your rights, please contact us at [email protected].

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. When data is no longer needed, it will be securely deleted or anonymized.

Third-Party Processors

We may use trusted third-party services to process your data, such as email marketing providers or analytics platforms. These third parties are bound by data protection agreements to ensure your information is handled securely and in compliance with GDPR.

International Data Transfers

If we transfer your personal data outside the EEA, we ensure that appropriate safeguards are in place, such as:

  • Data processing agreements that include standard contractual clauses approved by the European Commission.
  • Compliance with frameworks like the EU-U.S. Data Privacy Framework, if applicable.

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies. For detailed information on how we use cookies and how to manage your preferences, please refer to our Cookie Policy.

Updates to This Statement

We may update this GDPR Compliance Statement from time to time to reflect changes in regulations or our practices. The “Effective Date” at the bottom of this page will indicate the most recent update.

Contact Us

If you have any questions or concerns about this GDPR Compliance Statement or how we handle your data, please contact us:

Email: [email protected]

Effective Date: 2024/12/14