Privacy Policy

Effective Date: [Insert Date]
Last Updated: [Insert Date]

At https://consent.demo.aesirx.io (‘Website’),  protecting your privacy is important to us. This Privacy Policy explains how we collect, use, and share your personal data in compliance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and ePrivacy Directive.

DISCLAIMER: This policy is a draft document and must be reviewed by a qualified legal expert to ensure complete compliance and accuracy.

Data Controller

The data controller responsible for processing your personal data is:
Controller Name: [Insert Legal Entity Name]
Address: [Insert Address]
Email: [Insert Email Address]

For privacy-related inquiries or to exercise your rights, contact us via the email address provided.

Types of Personal Data Collected

Before Consent (Strictly Necessary Technology Use)

When the Website is accessed, strictly necessary technologies operate to ensure functionality and security. Data collected before consent includes:

  • Technical Data: IP address, device information, browser type, and operating system.
  • Session Data: Details necessary to maintain active session stability.

After Consent (Cookies, Beacons, and Tracking Pixels)

Once consent is provided, additional technologies process data for analytics, personalized content, and improved functionality. Data collected includes:

  • Identifiers: Session and user IDs, campaign tracking information, referral data.
  • Behavioral Data: Browsing history, engagement metrics, and interaction details.
  • Technical Information: Device settings, event tracking, and anonymized analytics.

Technologies involved include:

  1. Cookies: Examples include tk_or, tk_ai, sbjs_session, and other analytics or functionality tools.
  2. Beacons and Pixels: Examples include pixel.wp.com and stats.wp.com, primarily for analytics.

For a detailed list of cookies, see our Cookie Declaration.

Use of Cookies and Similar Technologies

Cookies, tracking pixels, and other similar technologies are used to:

  • Ensure functionality and security of the Website.
  • Analyze visitor behavior to improve Website performance.
  • Display multimedia content and manage campaign attribution tracking.

Strictly necessary cookies do not require consent, but all other technologies are activated only after explicit user consent is provided.

Legal Basis for Processing

We process your data based on the following legal grounds:

  • Legitimate Interests (GDPR Article 6(1)(f)): For the use of strictly necessary cookies essential for Website operation.
  • Consent (GDPR Article 6(1)(a)): Required for analytics, functionality, and advertising cookies, as well as beacons and tracking pixels.

Under CCPA, processing is conducted in line with transparency standards and compliance with opt-out capabilities.

Third-Party Services Involved

We share certain data with trusted third-party processors to deliver enhanced functionality and services. These include:

  1. WordPress/Automattic: Provides visitor analytics and engagement data via pixel.wp.com and stats.wp.com.
  2. Additional Vendors: Selected additional vendors may assist with analytics, campaign tracking, and functionality enhancements.

For further details or a complete list of vendors, you can reach out via email.

Data Retention Periods

Data retained from cookies and tracking technologies is stored only as long as necessary to fulfill the intended purposes:

  • Strictly Necessary Cookies: Stored only during active browsing sessions.
  • Analytics and Functional Cookies: Retention varies from minutes (sbjs_session, 0.02 days) to extended durations (e.g., tk_or, 400 days).

After expiration, data is securely deleted or anonymized.

Sharing of Data

We do not sell personal data. However, we may share your data with:

  • Service Providers: External vendors supporting analytics, campaign tracking, or performance optimization.
  • Legal and Regulatory Authorities: Where legally required to comply with legitimate requests.

All third-party data sharing is governed by legally binding agreements to ensure compliance under GDPR and CCPA.

User Rights

Under GDPR

You have the following rights regarding your personal data:

  • Access: Request access to the personal data we process about you.
  • Rectification: Correct inaccurate personal data.
  • Erasure: Request deletion of personal data (“right to be forgotten”).
  • Restriction: Temporarily restrict processing in specific circumstances.
  • Objection: Object to processing for direct marketing or analytics purposes.
  • Data Portability: Obtain your data in a structured digital format.
  • Withdraw Consent: Revoke your consent at any time for non-essential cookies without affecting the lawfulness of prior processing.

Under CCPA

California residents are entitled to:

  • Right to Know: Receive information about what data is collected and how it is used.
  • Right to Delete: Request the deletion of collected personal data.
  • Right to Opt-Out: Decline the sale or sharing of personal data.

To exercise these rights, contact us at [Insert Email Address].

International Transfers

If personal data is transferred outside of the European Economic Area (EEA), we apply safeguards, including:

  • Standard Contractual Clauses (SCCs): Legally binding agreements for secure data transfers between jurisdictions.
  • Adequacy Decisions: Transfers to countries confirmed to have adequate data protection under the European Commission.

For more details about cross-border processing, contact us via email.

Additional Information

Sensitive data is retained and processed only as necessary, adhering to secure deletion policies when data is no longer required. For detailed information about data usage, technologies, and applicable privacy rights, visit our Cookie Declaration.

DISCLAIMER: This Privacy Policy is provided as a draft document and must be reviewed by a qualified legal professional to ensure compliance with applicable laws and jurisdictions.