PRIVACY POLICY
1. Introduction
At Intacked, accessible via intacked.com, we are firmly committed to safeguarding your personal data and respecting your privacy rights. We recognize the importance of data protection under applicable laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy explains how we collect, use, disclose, and protect your personal information and your related rights.
2. Scope of Policy and Role as Data Controller
This Privacy Policy applies to all visitors and users of our website, intacked.com, and any related services offered through it. Where applicable, Intacked acts as the “Data Controller” for the purposes of GDPR, meaning we determine the purposes and means of processing your personal data. For California users, we are also considered a “Business” under the CCPA.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Information about how you interact with our website, including browser type and version, IP address, logs of pages visited, session durations, referring URLs, and geographic locations derived from technical identifiers.
b. Account Data
Data you provide when registering or creating an account, including your full name, residential or business address, email address, phone number, username, and password (encrypted).
c. Profile Data
Details derived from your activity on intacked.com, including preferences, past purchases, navigation behavior, product interests, and account settings.
d. Communication Data
Records of correspondence submitted through support forms, emails sent to our customer service team, complaint logs, chat transcripts, or any other communications with our staff.
e. Technical Data
Information automatically collected from your devices, including hardware model, mobile network, operating system version, browser plug-ins, system configurations, screen resolution, and device identifiers.
f. Transaction Data
Details associated with purchases or service use, including billing and shipping addresses, payment methods (payment token data only, never full card details), transaction IDs, date/time of purchase, and logistics details.
g. Preference Data
Your expressed choices regarding marketing communications, notifications, product interest categories, and personalization features.
4. Legal Bases for Processing
We rely upon several lawful bases under GDPR and permissible grounds under CCPA for processing your personal information:
– Performance of a Contract: Processing necessary to fulfill our obligations in contracts with you, such as providing purchased products or services.
– Legitimate Interests: For operating, maintaining, and improving our website and customer service, except where such interests are overridden by your fundamental rights.
– Consent: For sending marketing emails or processing optional data where explicit consent is required.
– Legal Obligation: When processing is necessary for compliance with legal or regulatory duties.
5. Your Rights
Subject to applicable law, you may have the following rights:
– Right of Access: Request access to the personal data we hold about you.
– Right to Rectification: Request correction of any inaccurate or incomplete personal data.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data, subject to retention obligations.
– Right to Restriction: Request limitation on processing of certain data.
– Right to Data Portability: Receive your personal data in a structured, commonly used format and transmit it to another controller.
California residents may also request disclosure of the categories and specific pieces of personal data collected, sources, business purposes for collection, and categories of third parties with whom data is shared. You also have the right to opt out of the sale of your personal information, where applicable.
To exercise any rights, please contact us at [email protected].
6. Security Measures
We implement industry-standard security protocols to ensure data integrity and confidentiality. These include:
– Encryption of sensitive data both at rest and in transit.
– Role-based access controls and authentication protocols.
– Secure firewall and intrusion detection systems.
– Regular internal audits, penetration testing, and vulnerability scans.
– Staff training on data privacy, confidentiality, and security best practices.
– Regular backup procedures and encrypted disaster recovery plans.
7. International Transfers
Where data is transferred outside the European Economic Area (EEA) or other regions with data protection laws, appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission or other legally recognized mechanisms. We ensure that your privacy rights remain protected through appropriate risk assessments, contractual obligations, and regional compliance.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes set out in this Policy or as required by law. Specifically:
– Account Data: Retained for duration of user’s relationship with Intacked and up to 6 years thereafter for compliance purposes.
– Communication Data: Retained for up to 3 years after final correspondence.
– Transaction Data: Retained for 7 years to meet financial and tax audit requirements.
– Technical and Usage Data: Retained in pseudonymized or aggregated form for analytics for up to 24 months.
– Preference Data: Retained until updated or withdrawn by the user.
Upon expiration of the applicable retention period, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance user experience and operate our website efficiently. These include:
– Essential Cookies: Necessary to maintain site security and provide core functionality such as account login and checkout process.
– Functional Cookies: Enable personalization features and remember user settings.
– Analytics Cookies: Help us understand how visitors interact with intacked.com, improving page performance and content relevance.
– Performance Cookies: Support load balancing and usability across a range of devices and network conditions.
10. Cookie Management & Compliance
You may manage your cookie preferences at any time using the cookie control tools on our website. These tools comply with GDPR requirements for consent and enable California residents to opt out under the CCPA. Additionally, most browsers allow you to modify your cookie settings and delete stored cookies.
Please note that disabling certain cookies may affect the functionality of intacked.com.
11. Children’s Privacy
Intacked does not knowingly collect or process personal data from children under the age of 13. If we become aware that such data has been collected without verified parental consent, it will be promptly deleted. Parents or guardians who believe we may have collected information about their child can contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to amend this Privacy Policy to reflect changes in legal obligations, operational practices, or service offerings. Any substantive changes will be prominently communicated via intacked.com or via direct communications when appropriate. You are encouraged to review this Policy regularly to stay informed about how we protect your data.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: [email protected]
—
We maintain our data processing practices in full compliance with applicable privacy laws, including GDPR and CCPA. We are committed to transparency and encourage users to reach out with any concerns regarding privacy or data protection.