Privacy Policy
1. Introduction
At Michida Consult (“we,” “us,” or “our”), accessible via michida-consult.com, we are firmly committed to protecting your privacy and ensuring the highest standards of data protection. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws. We take a privacy-first approach to all our data practices and ensure that personal data is processed lawfully, fairly, and transparently.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use our website and related services. Michida Consult is the data controller in relation to the personal data processed through the website michida-consult.com. Our responsibility includes determining the purposes and means of processing your personal data. Should you have any questions about your data, you may contact us at [email protected].
3. Categories of Data Processed
We may collect, use, store, and transfer different types of personal information, grouped into the following categories:
a. Usage Data:
Includes details on how you use michida-consult.com, such as IP address, browser type, operating system, referral URLs, pages visited, clickstream data, and session duration.
b. Account Data:
Pertains to information you provide in account setup or inquiries, including your full name, billing and delivery address, email address, and contact telephone number.
c. Profile Data:
Covers user preferences, purchase history, account activity, behavior on the site, and interests related to our services.
d. Communication Data:
Includes your communication history with our support or administrative teams, such as inquiries, complaints, feedback, and other correspondence.
e. Technical Data:
Encompasses technical identifiers like device type, operating system and its version, screen resolution, system settings, language, time zone, and unique device identifiers.
f. Transaction Data:
Pertains to information regarding your transactions with us, including payment details, service confirmations, invoice data, and delivery-related information.
g. Preference Data:
Captures your consent choices, specifically related to marketing communications, subscription preferences, and product or service interests.
4. Legal Bases for Processing
We process your personal data on one or more of the following legal bases:
– Consent: When you have given clear permission for us to process your personal data for a specific purpose. You may withdraw consent at any time.
– Contractual necessity: Processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.
– Compliance with legal obligations: Where processing is required to comply with applicable legal or regulatory obligations.
– Legitimate interests: Processing is necessary for our legitimate business interests, provided that such interests do not override your data protection rights.
5. Your Rights
You have the following rights in accordance with GDPR and CCPA, subject to lawful qualifications and limitations:
– Right of Access: Request access to your personal data and obtain a copy.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data where it is no longer necessary or in accordance with your legal rights to do so.
– Right to Restriction: Request limitation of processing under certain circumstances.
– Right to Data Portability: Request to receive your data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
– Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
– Right to Opt-Out (CCPA): California residents may opt out of the sale or sharing of their personal data.
To exercise any of these rights, please contact us at [email protected]. We may require verification of your identity for security purposes.
6. Security Measures
The security of your data is of paramount importance. We implement appropriate technical and organizational safeguards, including:
– Data encryption for transmissions and storage
– Role-based access control and secure authentication
– Firewall and antivirus protection systems
– Regular data backups and secure storage policies
– Mandatory privacy and security training for our personnel
7. International Data Transfers
Where we transfer your personal data outside of the European Economic Area (EEA), we ensure appropriate safeguards are in place, including Standard Contractual Clauses or transfer mechanisms approved by relevant data protection authorities. For users in California and other jurisdictions, we comply with regional data transfer and localization requirements.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes set out in this policy, including satisfying legal, accounting, or reporting obligations. Retention schedules are as follows:
– Usage Data: Up to 12 months
– Account and Profile Data: Duration of service relationship + 6 years
– Communication and Preference Data: 3 years after last interaction
– Transaction Data: 7 years to comply with financial and tax laws
– Technical Data: Retained for system integrity and audit purposes, up to 18 months
9. Cookie Policy
michida-consult.com uses cookies and similar tracking technologies. These cookies may include:
– Essential Cookies: Required for the operation of the website (e.g., session control, security).
– Functional Cookies: Enhance website performance and retain user preferences.
– Performance and Analytics Cookies: Collect anonymous data to evaluate website usage and improve performance.
– Marketing Cookies: Track browsing habits to provide relevant advertising and optimize marketing efforts.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, users are provided with clear options to accept, reject, or customize their cookie preferences upon visiting our site. Consent for non-essential cookies is obtained via a cookie banner or preferences panel. Users can also change settings via their browser or by accessing our Cookie Settings page.
11. Protection of Children’s Data
We do not knowingly collect, solicit, or process personal data from children under the age of 13. If we become aware that we have collected such information without verified parental consent, we will take immediate steps to delete the data. If you suspect we have such data, please contact us at [email protected].
12. Policy Updates and User Notifications
We may revise this Privacy Policy from time to time in response to legal, regulatory, or operational changes. Any changes will be posted on michida-consult.com and, where appropriate, we will actively notify users of updates. Continued use of the site constitutes your acceptance of any modifications.
13. Contact
If you have any questions, concerns, or requests related to this Privacy Policy or the way we process your personal data, you may contact our Data Privacy Officer at:
Email: [email protected]
We are committed to full compliance with applicable privacy laws and protecting your rights under GDPR, CCPA, and other relevant regulations. Please do not hesitate to contact us with any privacy-related concerns or to exercise your data subject rights.