Privacy Policy of Broad-Daylight.com

1. Introduction

At Broad-Daylight.com (“we”, “us”, or “our”), we are firmly committed to respecting and protecting your privacy. Transparency, data minimization, and responsible stewardship guide how we collect, process, and store your personal data. This Privacy Policy outlines how we safeguard your information when you use our website and services, in strict accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all users accessing or interacting with Broad-Daylight.com and governs the processing of personal information collected through our website, applications, and related services (collectively, the “Services”). For the purposes of data protection legislation, Broad-Daylight.com is the data controller of your personal information. If you have any questions or concerns about this policy or your personal data, you may contact us at [email protected].

3. Categories of Data We Collect and Process

We may collect, use, store, and transfer the following categories of personal data:

a. Usage Data
Includes information about your interactions with our website, such as IP address, browser type and version, language settings, time zone, pages visited, duration of visits, referring URLs, and device session data.

b. Account Data
Includes your full name, email address, postal address, phone number, and other identifiers when creating or managing an account.

c. Profile Data
Includes preferences, browsing and purchase history, behavioral patterns, account settings, feedback, and survey responses.

d. Communication Data
Includes information submitted through support tickets, feedback forms, emails to customer service, chat messages, and correspondence history.

e. Technical Data
Includes details about your device, operating system, browser configurations, mobile identifiers, API access settings, and system diagnostics.

f. Transaction Data
Includes details related to purchases, such as products ordered, payment information (processed securely by third-party providers), delivery address, and billing records.

g. Preference Data
Includes marketing and communication choices, product interests, language selection, and consent or opt-in statuses.

4. Legal Bases for Processing Personal Data

We process your personal data on the following lawful bases, as recognized under the GDPR:

– Consent: Where you have provided clear and informed consent for specific processing activities (e.g., marketing communications).
– Contract: Where the processing is necessary for the performance of a contract with you, or to take steps at your request prior to entering into such a contract.
– Legitimate Interest: Where processing is required for our legitimate business interests and is not overridden by your data protection rights (e.g., fraud prevention, improving our services).
– Legal Obligation: Where processing is required to comply with statutory or regulatory obligations.

5. Your Rights

Subject to applicable law, you have the following rights regarding your personal data:

– Right of Access – You may request access to the personal data we hold about you.
– Right to Rectification – You may request correction of inaccurate or incomplete data.
– Right to Erasure – You may request deletion of your personal data, subject to legal and contractual retention obligations.
– Right to Restrict Processing – You may request limitation of how we process your data under specific circumstances.
– Right to Data Portability – You may receive your personal data in a structured, commonly used, machine-readable format and request its transfer to another controller.
– Right to Object – You may object to processing based on legitimate interest or direct marketing.
– Right to Withdraw Consent – Where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing prior to such withdrawal.

To exercise any of these rights, please contact us at [email protected]. We may verify your identity before responding to your request.

6. Security Measures

We implement industry-standard technical and organizational measures to protect your data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These include but are not limited to:

– Data encryption during storage and transmission
– Role-based access controls and multi-factor authentication
– Regular security audits and threat monitoring
– Secure data backup and disaster recovery protocols
– Staff training in data protection and secure handling practices

7. International Transfers

Personal data collected from users outside the country where our servers are located may be transferred internationally. Where we transfer your data outside the European Economic Area (EEA) or other jurisdictions with data protection regulations, we ensure appropriate safeguards, including Standard Contractual Clauses (SCCs), adequacy decisions, or binding corporate rules, as required under applicable laws.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including to comply with legal, regulatory, tax, or accounting obligations. Retention periods vary depending on the category of data:

– Usage and Technical Data: up to 12 months
– Account and Profile Data: retained so long as the user maintains an account or as otherwise required by law
– Communication and Support Data: up to 3 years from the last interaction
– Transaction Data: 7 years for tax compliance
– Preference and Consent Data: until consent is withdrawn or request for deletion is received

After the applicable retention periods, we securely delete or anonymize personal data.

9. Cookie Policy

We use cookies and similar technologies to enhance your experience on Broad-Daylight.com, understand usage patterns, and improve service performance. Cookies are classified as follows:

– Essential Cookies: Required for the core functionality of the site (e.g., secure logins, shopping cart functionality).
– Functional Cookies: Enable improved personalization and site performance (e.g., language preferences).
– Analytics Cookies: Collect anonymized usage statistics via tools such as Google Analytics to understand visitor behavior and improve features.
– Performance Cookies: Monitor system stability and responsiveness during use.

10. Cookie Management and Legal Compliance

Upon your first visit, we present a cookie consent banner in accordance with GDPR and CCPA requirements. You may choose to accept or reject non-essential cookies. You may also update your preferences or withdraw consent at any time through the “Cookie Settings” accessible on our website footer. Additionally, most web browsers provide control settings to manage and delete cookies.

California residents may exercise additional CCPA rights via opt-out mechanisms for the “sale” or “sharing” of personal information, where applicable. Please refer to our “Do Not Sell or Share My Personal Information” link as required under CCPA.

11. Children’s Privacy

Our services are not intended for or directed at children under the age of 13, and we do not knowingly collect personal data from minors without verified parental or guardian consent. If you believe a child has submitted personal data without such consent, please contact us at [email protected] so we may take appropriate steps to delete the information.

12. Changes to this Policy

We may update this Privacy Policy from time to time in response to evolving legal, technical, or business developments. Any significant changes will be clearly communicated on our website and, where applicable, through direct user notification. We encourage you to review this Policy periodically for the latest information.

13. Contact and Complaints

If you have any questions, concerns, or complaints regarding this Privacy Policy, your personal data, or your rights under applicable data protection laws, please contact our Data Privacy Representative at [email protected]. We will respond to all legitimate requests in a timely and respectful manner.

You may also have the right to lodge a complaint with your local data protection authority if your concerns are not resolved to your satisfaction.

Broad-Daylight.com remains committed to privacy compliance and maintaining the highest standards of data protection across all services. We welcome your inquiries relating to privacy at [email protected].