Privacy Policy for ima-mfon.com
1. Introduction
At ima-mfon.com (“we,” “our,” or “us”), your privacy is of paramount importance. This Privacy Policy outlines our commitment to safeguarding your personal data and explains how we collect, use, share, and protect your information in full compliance with applicable privacy regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Our goal is to offer transparency and empower you to maintain control over your personal information when engaging with ima-mfon.com.
2. Scope and Data Controller
This Privacy Policy applies to all users who access or use ima-mfon.com and related services. For purposes of data protection laws, the data controller responsible for your personal data is Ima Mfon, which operates the website ima-mfon.com. If you have any questions about the processing of your personal data, or wish to exercise your rights under applicable law, you may contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data – This includes details regarding your use of the website, such as IP address, browser type, referral source, pages visited, session duration, and activity timestamps.
b. Account Data – When you create an account or register with the website, we may collect your full name, email address, shipping address, billing address, and telephone number.
c. Profile Data – We collect information about your preferences, purchase history, frequency of visits, and behavioral interactions with content provided on ima-mfon.com.
d. Communication Data – This includes all correspondence between you and us, including emails, support tickets, feedback, and request forms.
e. Technical Data – We may automatically collect data about the device used to access our website, including device type, operating system, hardware model, system configurations, and mobile identifiers.
f. Transaction Data – If you make a purchase, we collect billing details, payment method, transaction contents, delivery address, and invoicing records. Payment data is processed securely through compliant third-party processors.
g. Preference Data – This may include your opted-in preferences for marketing communications, product categories of interest, and consent records for cookie use and promotional content.
4. Legal Bases for Processing
Our lawful bases for processing your personal data, as required under GDPR and supported by CCPA, include:
– Consent: Where you have clearly given consent for us to process your personal data for a specific purpose (e.g., marketing).
– Contract: Where processing is necessary to fulfill a contract with you, such as processing orders or managing your account.
– Legal Obligation: Where processing is required to comply with applicable legal and regulatory obligations.
– Legitimate Interests: Where processing is necessary for our legitimate interests in improving the services of ima-mfon.com, detecting fraud, ensuring security, analyzing usage trends, and providing customer services—provided such interests do not override your rights.
5. Your Rights
We recognize your statutory and regulatory rights under GDPR and CCPA, including:
– Right of Access – To request confirmation of whether your personal data is being processed and to access your data.
– Right to Rectification – To request the correction of incorrect or incomplete data.
– Right to Erasure – Also known as the “right to be forgotten,” allowing you to delete your data when no longer necessary.
– Right to Restrict Processing – To limit how your data is used under certain conditions.
– Right to Data Portability – To receive your personal data in a structured, commonly used, machine-readable format.
– Right to Object – To object to specific forms of data processing, such as marketing or profiling.
– Rights under CCPA – California residents may request disclosures regarding personal data collected, the option to delete their data, and the ability to opt out of the sale or sharing of their personal data.
To exercise these rights, please contact us at [email protected].
6. Security Measures
We implement best-in-class administrative, technical, and organizational safeguards to protect your personal data. These measures include:
– Encryption of data in transit using Secure Socket Layer (SSL) protocols.
– Controlled access to sensitive data through user authentication and role-based permissions.
– Regular backups and secure data storage infrastructures.
– Staff training on data privacy, security policies, and handling protocols.
– Routine monitoring and auditing for infrastructural vulnerabilities or unauthorized access.
While we endeavor to ensure maximum protection, no system can guarantee absolute security. Please take precautions when sharing personal data online.
7. International Transfers
Your personal data may be transferred to, and maintained on, servers located outside of your jurisdiction, including countries which may not offer the same level of protection. All such international transfers are conducted in accordance with applicable regulations:
– For EU residents, we rely on the European Commission’s Standard Contractual Clauses and adequacy decisions where appropriate.
– For users under CCPA, we ensure that equivalent standards of privacy and security are sustained across partners, vendors, and compliant subprocessors.
8. Data Retention
We retain your personal data only as long as necessary for the purposes for which it was collected, taking into account legal, regulatory, tax, accounting, or reporting obligations. Our general retention periods are as follows:
– Usage and Technical Data: Retained for 18 months.
– Account and Profile Data: Retained for the duration of the user’s engagement with ima-mfon.com and up to 6 years thereafter.
– Transaction Data: Retained for up to 7 years to comply with tax and accounting requirements.
– Communication and Preference Data: Retained for up to 3 years after last contact unless extended by renewed consent or legal necessity.
All data is securely deleted or anonymized after the applicable retention period.
9. Cookie Policy
ima-mfon.com uses cookies and similar tracking technologies to enhance user experience and gather analytics. Our cookie usage includes:
– Essential Cookies: Necessary for the functioning of the website and access to core features.
– Functional Cookies: Enable remembered preferences such as language or region.
– Analytics Cookies: Track user interactions to assess site performance and usability.
– Performance Cookies: Help us understand usage patterns for optimization purposes.
10. Cookie Management and Compliance
In adherence to GDPR and CCPA:
– On initial visit, users are presented with the option to accept or reject non-essential cookies.
– A cookie consent banner grants you control over categories of cookies used.
– You can manage or revoke permissions at any time through your browser settings or our cookie management tool.
Under CCPA, residents of California may exercise their right to opt out of the sale or sharing of personal data derived from cookie tracking.
11. Protection of Minors
We do not knowingly collect personal data from children under the age of 13. If you are a parent or guardian and you believe your child has provided us with personal data, please contact us immediately at [email protected]. We will take appropriate action to delete such data promptly.
12. Policy Updates and Notifications
We may modify or update this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. When such changes occur, we will notify users through appropriate measures, including updates on ima-mfon.com and, where required, direct communications. Continued use of the site following the publication of changes constitutes your acceptance of those changes.
13. Contact Information
For more information about this Privacy Policy or to exercise your privacy rights, please contact our Data Protection Manager at:
Email: [email protected]
We are committed to protecting your privacy and upholding data transparency and compliance across all operations. You may reach out to us at any time with questions or concerns regarding how your personal data is collected, used, or secured.