Effective Date: 20/12/2024
MalaBlack (“we,” “our,” or “us”) values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your data when you visit our website at https://malablack.com (the “Site”). Please read this policy carefully. If you have any questions or concerns, contact us at info@malablack.com.
This Privacy Policy complies with the General Data Protection Regulation (GDPR) for users located in the European Economic Area (EEA).
1. Who We Are
MalaBlack is the data controller for the personal data collected through this Site.
- Website Address: https://malablack.com
- Email: info@malablack.com
For GDPR-related inquiries, you can also contact our Data Protection Officer (DPO) at: info@malablack.com.
2. Information We Collect
2.1 Personal Information You Provide
We collect the following types of personal data you provide directly to us:
- Contact Information: Name, email address, phone number, and mailing address.
- Account Information: Username, password, and profile details.
- Transaction Information: Billing details and payment data for purchases.
- Communication Data: Messages or inquiries submitted through our contact forms or email.
2.2 Automatically Collected Information
We may collect the following information automatically when you use the Site:
- Device Data: IP address, browser type, operating system, and device type.
- Usage Data: Pages visited, time spent on the Site, and navigation paths.
- Cookies and Tracking Technologies: Information about your preferences and activity on the Site.
3. Legal Basis for Processing Personal Data (Under GDPR)
Under the GDPR, we process your personal data based on the following legal grounds:
- Consent: When you provide explicit consent for specific purposes, such as receiving marketing communications.
- Contractual Necessity: To fulfill a contract or take steps prior to entering into a contract (e.g., processing an order).
- Legal Obligation: To comply with legal requirements, such as tax or regulatory obligations.
- Legitimate Interests: To improve our services, prevent fraud, or enhance security, provided these interests do not override your rights.
4. How We Use Your Information
We use your information for the following purposes:
4.1 To Provide Services
- Process orders, payments, and account registration.
- Deliver products or services purchased on the Site.
4.2 To Improve Your Experience
- Analyze usage trends to optimize the Site.
- Personalize your experience with tailored content and recommendations.
4.3 For Communication
- Send administrative updates, order confirmations, and service-related notifications.
- Respond to inquiries and provide customer support.
4.4 For Legal Compliance
- Fulfill legal and regulatory obligations.
- Detect and prevent fraudulent or malicious activity.
5. Your GDPR Rights
If you are located in the EEA, you have the following rights under the GDPR:
5.1 Right of Access
You have the right to request access to the personal data we hold about you, including how and why we process it.
5.2 Right to Rectification
You can request that we correct any inaccuracies or complete incomplete data.
5.3 Right to Erasure (“Right to Be Forgotten”)
You may request that we delete your personal data, subject to legal obligations to retain certain information.
5.4 Right to Restrict Processing
You can request that we limit the processing of your data in certain circumstances, such as when disputing its accuracy.
5.5 Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to have it transferred to another controller where technically feasible.
5.6 Right to Object
You can object to the processing of your data based on legitimate interests, including profiling or direct marketing.
5.7 Right to Withdraw Consent
If we rely on your consent to process your data, you can withdraw it at any time without affecting the lawfulness of processing based on consent before its withdrawal.
5.8 Right to Lodge a Complaint
If you believe your rights under the GDPR have been violated, you have the right to file a complaint with your local data protection authority.
To exercise any of these rights, please contact us at info@malablack.com.
6. Data Retention
We retain your personal data only as long as necessary for the purposes outlined in this policy:
- Transactional Data: Retained for as long as required by tax and accounting regulations.
- Comments and Communications: Retained indefinitely unless a deletion request is made.
When no longer needed, we securely delete or anonymize your data.
7. Data Security
We implement robust security measures to protect your personal data, including:
- Encryption of sensitive data during transmission (SSL/TLS).
- Restricted access to personal data to authorized personnel only.
- Regular monitoring of systems for vulnerabilities.
While we take these precautions, no method of data transmission or storage is completely secure. Use our Site at your own risk.
8. Data Transfers
If you are located in the EEA, your personal data may be transferred to and processed in countries outside the EEA that do not provide the same level of data protection. In such cases, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission.
- Binding Corporate Rules for processors.
By using our Site, you consent to these data transfers.
9. Cookies and Tracking Technologies
For detailed information on how we use cookies and similar technologies, please see the Cookies section above.
10. Updates to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or compliance requirements. Updates will be posted on this page with a revised “Effective Date.” Please review it regularly.
11. Contact Us
If you have any questions or concerns about this Privacy Policy or your GDPR rights, please contact us at:
Email: info@malablack.com