Privacy Policy
At Censorred (CNSRRD), we are committed to safeguarding and preserving your privacy. This Privacy Policy explains what happens to any personal data that you provide to us, or that we collect from you while you visit our website, www.cnsrrd.com, and how we process and protect that data in compliance with the General Data Protection Regulation (GDPR) and other applicable laws.
Who We Are
Censorred (CNSRRD) is a clothing/fashion company registered in Germany. For the purposes of GDPR, we are the Data Controller of your personal data.
If you have any questions about this Privacy Policy or the data we collect, you can contact our Data Protection Officer (DPO) at [email protected].
What Data We Collect
We may collect and process the following types of personal data:
- Personal Identification Data: Name, email address, phone number, and postal address.
- Technical Data: IP address, browser type and version, time zone settings and location, operating system, and platform.
- Usage Data: Information about how you use our website, products, and services.
- Marketing and Communications Data: Your preferences in receiving marketing information from us and your communication preferences.
How We Use Your Data
We use the data we collect for the following purposes:
- To Provide Our Services: Processing your orders, managing your account, and providing customer support.
- To Improve Our Website: Analyzing usage data to enhance our website’s functionality and user experience.
- Marketing Communications: Sending you newsletters, promotions, and updates if you have consented to receive them. You can opt-out at any time.
- Compliance with Legal Obligations: Processing your data where we are legally required to do so, such as maintaining proper business records or complying with a court order.
Legal Basis for Processing
Under GDPR, we rely on the following legal bases for processing your personal data:
- Performance of a Contract: When we process your data to fulfill a contract with you, such as processing your orders.
- Consent: Where you have given explicit consent for specific processing activities, such as receiving marketing communications.
- Legitimate Interests: Where processing is necessary for our legitimate interests, such as improving our services, provided that your rights do not override these interests.
- Legal Obligation: Where processing is necessary to comply with legal or regulatory requirements.
Who We Share Your Data With
We may share your personal data with:
- Service Providers: Third-party companies that help us operate our website, provide our services, or support our business operations, such as payment processors, IT service providers, hosting providers, and marketing platforms. All third parties with whom we share data are contractually obligated to implement appropriate security measures to protect your personal data and comply with GDPR.
- Legal Authorities: Government authorities or law enforcement if required by law or to protect our legal rights.
- Business Transfers: If we are involved in a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction.
International Data Transfers
If we transfer your personal data outside the European Economic Area (EEA), we ensure that it is protected by appropriate safeguards, such as:
- Standard Contractual Clauses (SCCs): We use approved contractual clauses that ensure your data is protected to GDPR standards.
- Adequacy Decisions: We transfer data to countries that the European Commission has recognised as providing an adequate level of data protection.
If your data is transferred outside the EEA, it may be transferred to countries such as [Country A] and [Country B], where we have implemented Standard Contractual Clauses (SCCs) to ensure your data is protected to GDPR standards.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements.
Unless a more specific storage period has been specified in this privacy policy, your personal data will remain with us until the purpose for which it was collected no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, the deletion will take place after these reasons cease to apply.
Your Rights Under GDPR
You have the following rights regarding your personal data:
- Right to Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You can ask us to correct any inaccuracies in your personal data.
- Right to Erasure: You can request that we delete your personal data, subject to certain conditions.
- Right to Restrict Processing: You can ask us to restrict the processing of your data in certain situations.
- Right to Data Portability: You can request that we transfer your data to another organization or to you, in a structured, commonly used, and machine-readable format.
- Right to Object: You can object to the processing of your data where we rely on legitimate interests as the legal basis.
- Right to Withdraw Consent: If you have given consent for processing, you can withdraw it at any time.
To exercise your rights, please contact us at [email address]. When making a request, please provide sufficient information for us to verify your identity (e.g., a copy of your ID) and specify which right you wish to exercise. We aim to respond to all legitimate requests within one month.
Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your experience. We use both essential cookies (necessary for the operation of the website) and non-essential cookies (for analytics, marketing, etc.):
- Consent for Cookies: We obtain your consent before placing non-essential cookies on your device. You can manage your cookie preferences through our [Cookie Management Tool] or via your browser settings.
- Cookie Policy: For more detailed information about the cookies we use, please see our Cookie Policy.
Data Security
We take data security seriously and implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These measures include encryption, access controls, two-factor authentication, and regular security audits.
In the unlikely event of a data breach that may result in a high risk to your rights and freedoms, we will notify you and the relevant data protection authority within 72 hours, as required by law.
Automated Decision-Making and Profiling
We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on you. If this changes in the future, we will update this Privacy Policy and inform you accordingly.
Changes to Our Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by email (if you have provided one) or by posting a notice on our website. The updated policy will also include a “Last Updated” date at the top of this page.
Contact Us
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at:
Email: [email protected]