Privacy Policy
FlandersBattlefields.com is committed to respecting your privacy and safeguarding your personal data. This Privacy Policy outlines how we collect, use, store, and disclose your information when you interact with our website. Our commitment to data protection is founded on transparency, integrity, and compliance with applicable data protection regulations, including the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Introduction
Your privacy is of paramount importance to us. At FlandersBattlefields.com (“we,” “us,” or “our”), we prioritize the confidentiality and security of your personal information. This Privacy Policy explains our practices regarding the collection, usage, and protection of personal data that you provide when you visit or interact with our website. We are fully committed to maintaining your trust and ensuring your data is used in a lawful, fair, and transparent manner.
2. Scope and Data Controller
This Privacy Policy governs all data processing activities conducted via the website found at https://flandersbattlefields.com. We act as the “Data Controller” for processing activities under the GDPR and as a “Business” under the CCPA. This means we determine the purposes and means of the processing of your personal data.
3. Categories of Data Processed
We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped as follows:
– Usage Data: This includes information about how you use our website, such as IP address, browser type, time zone setting, page interactions, session duration, and referring URLs.
– Account Data: If you create an account, we may collect your full name, postal and billing address, email address, and phone number.
– Profile Data: Includes preferences, interests, purchase history, and behavior on the website.
– Communication Data: Includes records of any communications you initiate with us, such as inquiries, support requests, and correspondence history.
– Technical Data: Includes device information, operating system, browser configuration, screen resolution, and other technical diagnostics.
– Transaction Data: Includes payment details (excluding full payment card numbers), order history, and shipping/delivery details.
– Preference Data: Includes marketing preferences, newsletter consents, and user-stated product or service interests.
4. Legal Bases for Processing
We only process your personal data when a valid legal basis applies. These bases include:
– Consent: Where you have given clear, informed, and revocable consent for a specific processing purpose.
– Contractual Necessity: When processing is necessary to perform a contract with you, such as processing an order or delivering a service.
– Legal Obligation: When processing is required to comply with the law, such as tax or regulatory obligations.
– Legitimate Interest: Where we have a legitimate business interest that does not override your fundamental rights and freedoms, such as fraud prevention, website optimization, or product improvement.
5. Your Rights
As a data subject under the GDPR and/or CCPA, you may exercise certain rights over your personal data:
– Right to Access: You can request confirmation of whether we process your data and obtain a copy.
– Right to Rectification: You can request the correction of inaccuracies or incomplete data.
– Right to Erasure: You can request the deletion of personal data, subject to legal exceptions.
– Right to Restrict Processing: You can request restriction of processing under certain circumstances.
– Right to Data Portability: You can request your personal data in a structured, commonly used, machine-readable format and transfer it to another provider.
– Right to Object (GDPR): You may object to processing conducted under legitimate interest.
– Right to Opt-Out (CCPA): California residents can opt out of the “sale” of personal information.
To exercise any of the above rights, contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational security measures to protect your personal data from unauthorized access, misuse, alteration, or loss. These include but are not limited to:
– Data encryption in transit and at rest
– Role-based access controls and authentication
– Regular security monitoring and system audits
– Enforced least-privilege access policies
– Employee training in data protection and privacy best practices
– Secure infrastructure and regular backups
7. International Transfers
Your personal data may be processed in jurisdictions outside of the European Economic Area (EEA) or the United States. In such instances, we use appropriate safeguards to protect data, including standard contractual clauses and compliance with applicable regional laws. Where data is transferred internationally, we ensure equivalent levels of protection are maintained.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes for which it was collected or to satisfy legal, regulatory, and operational requirements. Retention periods by category include:
– Usage and Technical Data: up to 12 months for performance review and analytics
– Account and Profile Data: maintained until the user account is deactivated plus six months
– Communication Data: retained for 24 months to support customer service tracking
– Transaction Data: retained for seven years for accounting and legal obligations
– Preference Data: retained for as long as consent is valid or until revoked
9. Cookie Policy
Our website uses cookies and similar tracking technologies to provide an optimal user experience. These may include:
– Essential Cookies: Required for website functionality, such as security, network management, and accessibility.
– Functional Cookies: Enable enhanced features or personalization based on your settings.
– Analytics Cookies: Collect anonymous data to help us understand user behavior and improve performance.
– Performance Cookies: Measure website efficiency, improve loading times, and monitor system stability.
10. Cookie Management and GDPR/CCPA Compliance
We obtain consent through a cookie consent banner in accordance with GDPR requirements. You may manage cookie preferences at any time via your browser settings or our cookie management tool available on the website. California residents may opt out of cookie-based tracking and sharing that qualifies as a “sale” under the CCPA.
11. Children’s Privacy
We do not knowingly collect or solicit personal information from children under the age of 13. If you believe that a child under 13 has provided personal data through FlandersBattlefields.com, please contact us immediately at [email protected], and we will promptly delete such information.
12. Policy Updates
We reserve the right to amend this Privacy Policy to reflect changes in regulatory requirements, technology, or our operational practices. Any material changes will be communicated clearly through the website. We encourage you to review this policy regularly to stay informed of how we are protecting your data.
13. Contact Information
If you have any questions, concerns, or complaints regarding this Privacy Policy or your personal data, please reach out to us using the following contact details:
Email: [email protected]
Website: https://flandersbattlefields.com
We are committed to maintaining compliance with applicable data protection laws and welcome inquiries regarding our privacy practices.