Privacy Policy
1. Introduction
At EAS-2 (“Company,” “we,” “our,” or “us”), accessible at eas-2.com, we are deeply committed to safeguarding your privacy and ensuring the highest standards of data protection. This Privacy Policy sets forth the principles and practices that govern our collection, use, disclosure, and protection of your personal data when you visit our website, use our services, or otherwise interact with us. EAS-2 is dedicated to processing your personal information in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
We value transparency and respect your rights as a user. This policy explains how we handle your data with diligence, transparency, and care.
2. Scope of the Policy and Data Controller Responsibility
This Privacy Policy applies to personal data collected through eas-2.com and any related services or communications. For data collected through the website, EAS-2 acts as the data controller and is responsible for determining the purposes and means of processing your personal data.
If you have any questions about this policy or the handling of your data, you may contact us at: [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Information about how you use eas-2.com, including but not limited to browser type, language settings, IP address, access times, referring URLs, and session information. This data helps us ensure the website operates effectively and allows us to improve our services.
b. Account Data
Personal information provided when you create or manage an account, including your name, email address, physical address, and phone number.
c. Profile Data
Information related to your interests and behavioral interactions with our services, such as purchase history, preferences, and browsing behavior.
d. Communication Data
Records of communication you have with us, including support inquiries, email correspondences, and submission of contact forms.
e. Technical Data
Device and system data, which may include hardware information, operating system, system settings, browser configurations, screen resolution, and mobile network information.
f. Transaction Data
Information required for order fulfillment and payment processing, including billing address, order history, delivery information, and payment methods. Note: we do not store full credit card numbers.
g. Preference Data
Your marketing and communication preferences, opt-in status, and interest indicators derived from interaction with our services.
4. Legal Bases for Processing
We process your personal data under several lawful bases, as permitted under the GDPR and the CCPA:
– Consent: When you have actively provided explicit consent for us to process your data for specific purposes (e.g., marketing).
– Contractual Necessity: Where processing is necessary to perform contractual obligations, such as delivering a product or providing customer support.
– Legitimate Interests: When processing is essential to conduct our business activities in ways that are not overridden by your rights (e.g., ensuring cybersecurity, optimizing user experience).
– Legal Obligation: Where we are required to comply with legal or regulatory obligations.
5. Your Rights
Under applicable data protection legislation, you have the following rights regarding your personal data:
– Right of Access: You may request access to personal data we hold about you.
– Right to Rectification: You have the right to request correction of any inaccurate or incomplete data.
– Right to Erasure: Subject to certain conditions, you may request the deletion of your data (“right to be forgotten”).
– Right to Restriction: You may request restriction of processing in specific circumstances.
– Right to Data Portability: You may request a copy of your data in a portable format.
– Right to Object: You may object to processing based on legitimate interests or direct marketing.
– Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.
To exercise your rights, please contact us at [email protected].
6. Security Measures
EAS-2 employs robust physical, technical, and administrative safeguards to ensure the security and integrity of your personal data. These include:
– Data encryption in transit and at rest
– Strict access control protocols
– Regular security audits and vulnerability testing
– Mandatory staff training on data protection
– Secure data backup and disaster recovery systems
While no security measure is infallible, we are committed to continuous improvements and industry-standard best practices.
7. International Data Transfers
Your personal data may be processed and stored in regions outside your country of residence. When such transfers occur, we ensure appropriate safeguards are in place, including the use of Standard Contractual Clauses approved by the European Commission and adherence to relevant data protection frameworks. These safeguards ensure an equivalent level of protection for your data as required by the GDPR and other applicable laws.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected or as required by legal, regulatory, or operational obligations. Our retention periods are as follows:
– Usage Data: Retained for 12 months
– Account Data: Retained for the duration of the user’s active account, and 6 years thereafter
– Profile Data: Retained for 3 years following last activity
– Communication Data: Retained for 5 years unless required longer for legal reasons
– Technical Data: Retained for 12 months
– Transaction Data: Retained for 7 years to comply with accounting requirements
– Preference Data: Retained until consent is withdrawn or for 3 years from last interaction
Upon expiration of these periods, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to personalize content, analyze site traffic, and improve user experience. Cookies set by eas-2.com are categorized as:
– Essential Cookies: Required for the basic functionality of our website. These cannot be disabled.
– Functional Cookies: Enhance usability, such as remembering your preferences.
– Analytics Cookies: Collect aggregated data on user behavior to help us understand and improve performance.
– Performance Cookies: Help monitor page load, technical performance, and responsiveness.
Third-party services, such as analytics providers, may also set their own cookies in line with their privacy policies.
10. Cookie Management and Compliance with GDPR & CCPA
You have the ability to manage your cookie preferences through:
– Our cookie consent management tool upon your first visit to eas-2.com
– Browser settings that allow you to block or delete certain types of cookies
– Opt-out tools provided by third-party analytics providers
We honor “Do Not Track” signals and ensure compliance with both GDPR consent requirements and the opt-out rights under CCPA.
11. Special Protections for Children
EAS-2 does not knowingly collect or process personal data of individuals under the age of 13. If we become aware that a child has submitted personal information without parental consent, we will promptly delete such data. If you believe that a child may have provided us with personal data, please contact us at [email protected].
12. Policy Updates and User Notification
We may update this Privacy Policy from time to time to reflect legal, operational, or technological changes. Where appropriate, we will notify users by email or through the website. Continued use of eas-2.com after such changes constitutes your acceptance of the revised policy.
We encourage you to review this policy periodically to stay informed of how we protect your information.
13. Contact
If you have any questions about this Privacy Policy, or if you would like to exercise your rights or raise a concern, please contact us at:
Email: [email protected]
We remain committed to ensuring full compliance with applicable data protection laws and delivering transparency, accountability, and integrity in the way we handle your personal data.