Privacy Policy for gabrc.com
1. Introduction
Gabrc.com (“we”, “our”, or “us”) is firmly committed to protecting your privacy and safeguarding your personal data. We recognize the importance of transparency, security, and accountability in processing your information. This Privacy Policy explains how we collect, use, store, and share personal data of users accessing gabrc.com. As a privacy-first website, we handle all personal data in strict accordance with applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
2. Scope of this Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access gabrc.com (“you”, “your”). Gabrc.com is the data controller for the purposes of GDPR and as such determines the purposes and means of the processing of your personal data. For the purpose of CCPA, we act as a “business” in the collection and processing of personal information.
3. Categories of Data Processed
We collect and process the following categories of personal data in connection with the usage of gabrc.com:
a. Usage Data:
Includes information such as IP address, browser type, geographic location, operating system, referral source, length of visit, pages viewed, session identifiers, and site navigation paths.
b. Account Data:
Includes your full name, email address, physical address, phone number, and account credentials if you register or interact with account-based services.
c. Profile Data:
Includes data connected to your browsing behavior, past purchases, account settings, product preferences, and interests expressed on gabrc.com.
d. Communication Data:
Includes records of all interactions with us, such as support inquiries, emails to [email protected], and any correspondence submitted via contact forms.
e. Technical Data:
Includes information regarding your device, such as IP address, browser settings, plug-ins, screen resolution, time zone settings, and other system configurations.
f. Transaction Data:
Includes payment details (processed securely through third-party providers), billing address, shipping address, purchased products, and order history.
g. Preference Data:
Includes your marketing communication preferences, opt-in/opt-out status, and interest categories relevant to products or services we offer.
4. Legal Bases for Processing
We process your personal data only where legally permitted under one or more of the following legal bases:
– Consent: When you have given clear permission for us to process your personal data for a specified purpose (e.g., newsletter sign-ups or marketing).
– Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into such a contract.
– Legal Obligation: Where processing is required to comply with applicable legal obligations.
– Legitimate Interests: Where processing is necessary for our legitimate business interests (e.g., security, analytics, fraud detection), provided your data rights do not override such interests.
5. Your Rights
As a data subject, and where applicable under laws such as the GDPR and CCPA, you have the following rights:
– Right of Access: To know what personal data we hold about you.
– Right to Rectification: To request the correction of inaccurate or incomplete data.
– Right to Erasure: To request deletion of your data where there is no compelling reason for continued processing.
– Right to Restriction: To request that data processing be limited under certain conditions.
– Right to Data Portability: To request a copy of your data in a structured, commonly used, and machine-readable format.
– Right to Object: To object to processing based on legitimate interests or direct marketing.
To exercise your rights, please contact us at [email protected]. We respond to all valid requests in accordance with applicable data protection laws.
6. Security Measures
We implement comprehensive security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These include:
– Data encryption (in transit and at rest)
– Role-based access control and authentication
– Secure server configurations and backups
– Regular system monitoring and vulnerability assessments
– Staff privacy training and restricted data access protocols
7. International Transfers
Your personal data may be transferred to and processed in jurisdictions outside of your country of residence, including countries that may not provide the same level of data protection. When we do so, we ensure appropriate safeguards are in place, such as the European Commission’s Standard Contractual Clauses or other legally recognized transfer mechanisms, in accordance with GDPR requirements.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal, regulatory, tax, accounting, or reporting obligations. Specific retention periods include:
– Usage, Technical, and Communication Data: 12-24 months
– Account and Profile Data: For the duration of your account and up to 3 years after closure
– Transaction Data: 7 years (financial and legal requirements)
– Marketing Preference Data: Until opt-out or withdrawal of consent
9. Cookie Policy
Gabrc.com uses cookies and similar tracking technologies for several purposes:
a. Essential Cookies – Required for the website to function properly (e.g., session IDs, authentication).
b. Functional Cookies – Enable enhanced functionality and personalization (e.g., remembering preferences).
c. Analytics Cookies – Collect information on website traffic, behavior, and performance (e.g., Google Analytics).
d. Performance Cookies – Monitor site performance and identify areas of improvement.
Cookies may be first-party (set by gabrc.com) or third-party (e.g., service providers). These cookies do not collect personal information unless explicitly consented.
10. Cookie Management and Compliance
You have full control over your cookie preferences. Upon visiting gabrc.com, a cookie consent banner allows you to accept, decline, or customize cookie categories, in accordance with GDPR and CCPA standards. You can also manage your preferences through browser settings at any time or withdraw consent.
For California residents, we respect the “Do Not Sell My Personal Information” right and allow users to opt-out of data sharing through designated mechanisms.
11. Children’s Privacy
Gabrc.com does not knowingly collect personal data from children under the age of 13. If we become aware that a child has provided us with personal data without verifiable parental consent, we will promptly delete such information. If you believe we may have collected such data, please contact us at [email protected].
12. Policy Updates and Notifications
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal obligations. While we encourage you to review this policy periodically, we will notify users of material changes where required by law, such as through prominent website notifications or direct communications as appropriate.
13. Contact Us
For any privacy-related inquiries, concerns, requests, or to assert your data protection rights, you may contact us at:
Email: [email protected]
Website: https://gabrc.com
We are committed to protecting your privacy and ensuring full compliance with applicable data protection laws, including GDPR and CCPA. If you have any questions about this Privacy Policy or our data handling practices, please do not hesitate to reach out.