Privacy Policy for RiftTrek
RiftTrek (“we,” “us,” or “our”) is firmly committed to protecting the privacy, confidentiality, and security of the personal data of our users. This Privacy Policy outlines how we collect, use, store, and protect personal information when you visit or interact with our website, rifttrek.com (“Website”), in accordance with applicable privacy laws, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Commitment to Privacy and Data Protection
At RiftTrek, your privacy is a foundational principle of our operations. We are dedicated to safeguarding your personal information and ensuring your ability to control how your data is used. Our privacy practices are designed to provide meaningful transparency and enable you to make informed decisions about your interaction with our services.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all users and visitors of rifttrek.com and to the personal data collected via the Website and affiliated services. For the purposes of GDPR, RiftTrek is the “data controller” responsible for determining the purposes and means of processing your personal data.
For residents of California, we act as a “business” as defined by the CCPA and are responsible for processing your personal information.
3. Categories of Data We Process
We collect and process the following categories of personal data, depending on your interaction with our Website and services:
a. Usage Data
We automatically collect information about your interactions with rifttrek.com, including browser type, device identifiers, IP address, pages visited, session duration, and interaction patterns. This data helps us analyze usage trends and improve site performance.
b. Account Data
When you register or manage an account, we may collect your full name, email address, postal address, telephone number, and account credentials.
c. Profile Data
We gather information related to your preferences, purchase history, product interests, and on-site behavior, including saved settings, language preferences, and browsing patterns.
d. Communication Data
When you contact us through customer support, feedback forms, or email, we collect communications including support queries, contact history, and other correspondence.
e. Technical Data
We may collect details about the devices you use to access the Website, including operating system, application versions, system configuration, screen resolution, and crash diagnostics.
f. Transaction Data
If you make purchases through rifttrek.com, we process purchase records, billing and shipping addresses, payment methods (processed securely via third-party providers), and transaction details.
g. Preference Data
We collect data relating to your marketing preferences, notification settings, expressed interests in particular products or services, and consent records.
4. Legal Bases for Processing
We process your personal data only where allowed by law. The following legal bases may apply:
– Contractual Necessity: When processing is required to provide goods or services you request.
– Consent: When you give explicit permission for specific uses, such as marketing communications.
– Legal Obligation: When processing is required to fulfill compliance obligations.
– Legitimate Interests: When processing supports necessary business operations without overriding your rights or freedoms, e.g., analytics, fraud detection, and Website optimization.
5. Your Data Protection Rights
Depending on applicable laws, you may exercise the following rights regarding your personal data:
– Right of Access: Request a copy of your personal information.
– Right of Rectification: Correct inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data, subject to legal retention obligations.
– Right to Restrict Processing: Limit how your data is used in certain circumstances.
– Right to Data Portability: Receive your data in a structured, commonly used, and machine-readable format.
– Right to Object: Object to data processing based on legitimate interests or direct marketing.
You may exercise these rights by contacting us at [email protected]. We may ask you to verify your identity before we respond to your request.
6. Security Measures
We implement comprehensive technical and organizational measures to safeguard your personal data, including:
– Encryption for data at rest and in transit.
– Role-based access controls and multi-factor authentication for system access.
– Regular security audits and vulnerability assessments.
– Secure backups and disaster recovery mechanisms.
– Mandatory training for all personnel in data privacy and security awareness.
While no system can be guaranteed to be 100% secure, we take all reasonable precautions to protect your information.
7. International Data Transfers
Personal data may be transferred to, and processed in, jurisdictions outside your country of residence. Where data is transferred outside the European Economic Area (EEA), we implement appropriate safeguards, including Standard Contractual Clauses and supplementary measures as needed, to ensure consistent protection and legal compliance.
8. Data Retention
We retain personal data for only as long as necessary to fulfill the purposes outlined in this Privacy Policy, including:
– Account Data: Retained for the life of the account and no longer than 30 days after closure.
– Transaction Data: Retained for up to 7 years for compliance with tax and financial regulations.
– Communication Data: Retained for up to 3 years for service quality and record-keeping.
– Usage and Technical Data: Retained for 12 months for analytical purposes.
Once retention periods have expired, your data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies on rifttrek.com to enhance user experience and improve our services. Cookies may include:
– Essential Cookies: Required for basic site functionality (e.g., session management, authentication).
– Functional Cookies: Enable enhanced personalization and remembered settings.
– Analytics Cookies: Collect aggregate usage data to evaluate Website performance.
– Performance Cookies: Monitor load times, error messages, and responsiveness for troubleshooting and optimization.
10. Cookie Management & Compliance with GDPR and CCPA
You can manage your cookie preferences at any time via our Cookie Preference Center accessible on rifttrek.com. Where required, we obtain your explicit consent before placing non-essential cookies.
Under GDPR and CCPA, you have the right to:
– Opt-out of non-essential cookies;
– Know which cookies are used and for what purposes;
– Withdraw consent at any time.
Your browser settings may also allow you to control or reject cookies.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from individuals under 13 years of age. If we become aware that a child under the age of 13 has provided us with personal information, we will promptly remove such information from our systems. Parents or legal guardians who believe their child has submitted information may contact us at [email protected].
12. Policy Updates and User Notifications
This Privacy Policy may be amended periodically to reflect changes in our legal obligations, data processing practices, or business structure. Revised versions will be posted on rifttrek.com with a notice of material changes. Continued use of our services following an update constitutes acknowledgment of the revised policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: [email protected]
Website: https://www.rifttrek.com
We are committed to meeting our responsibilities under applicable data protection laws and welcome the opportunity to address your privacy-related inquiries or complaints.
RiftTrek is dedicated to maintaining full compliance with global data protection laws, including GDPR and CCPA. For privacy-related questions or to exercise your rights, please reach out to us at [email protected].