At KZG, we are committed to protecting and respecting your privacy. This General Data Protection Regulation (GDPR) Policy outlines how we collect, use, store, and protect your personal data in compliance with the European Union's General Data Protection Regulation (GDPR). We ensure that your data is handled with the utmost care and security.
-
Personal Data We Collect
We may collect the following types of personal data:-
Contact Information: Name, email address, phone number
-
Payment Information: Billing address, payment details (when applicable)
-
Technical Information: IP address, browser type, device information, and cookies
-
Transaction Information: Purchase history, order details, and customer preferences
-
-
How We Use Your Data
We may use your personal data for the following purposes:-
To process your orders and provide you with products and services
-
To improve our website and services
-
To send you marketing communications (only if you have opted in)
-
To respond to your inquiries or customer support requests
-
To comply with legal obligations and ensure the security of our services
-
-
Legal Basis for Processing
We process your personal data based on the following legal grounds:-
Contractual Necessity: To fulfill our contractual obligations to you, such as processing orders or providing services.
-
Consent: Where you have given explicit consent for specific purposes, such as receiving marketing communications.
-
Legitimate Interest: To ensure the security of our services or to improve our products, in ways that do not unduly affect your privacy.
-
Legal Obligation: To comply with legal requirements, such as tax or accounting obligations.
-
-
Your Rights Under the GDPR
Under the GDPR, you have the following rights regarding your personal data:-
Right to Access: You have the right to request a copy of the personal data we hold about you.
-
Right to Rectification: You have the right to correct any inaccurate or incomplete data we hold about you.
-
Right to Erasure: You have the right to request the deletion of your personal data, subject to certain conditions.
-
Right to Restrict Processing: You can request the restriction of processing of your personal data under specific circumstances.
-
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
-
Right to Object: You have the right to object to the processing of your personal data for certain purposes, such as marketing.
-
Right to Withdraw Consent: You may withdraw consent to the processing of your personal data at any time, where consent is the basis of processing.
-
-
Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, use, alteration, or destruction. This includes encryption, secure servers, and access controls. However, no method of transmission over the internet or method of electronic storage is 100% secure, and while we strive to protect your data, we cannot guarantee its absolute security. -
Data Retention
We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, or as required by law. After this period, your data will be securely deleted or anonymized. -
Sharing Your Data
We may share your personal data with third-party service providers that help us operate our business, such as payment processors or shipping partners. These third parties are contractually obligated to protect your personal data and use it only for the purposes we specify. -
International Transfers
If we transfer your personal data outside the European Economic Area (EEA), we will ensure that appropriate safeguards are in place, such as standard contractual clauses, to ensure your data is protected in accordance with GDPR. -
How to Exercise Your Rights
To exercise any of your rights under the GDPR or if you have any concerns about the processing of your personal data, please contact us through the official channels provided on our website. We will respond to your request within the statutory time frame of one month. -
Changes to This Policy
We may update this GDPR Policy from time to time to reflect changes in our practices or legal requirements. Any updates will be posted on our website, and the revised policy will become effective upon posting.
