Privacy Policy
At EAS-2, accessible via eas-2.com, we are firmly committed to safeguarding your privacy and protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and secure your personal information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. It reflects our ongoing dedication to data privacy, transparency, and accountability.
1. Commitment to Privacy and Data Protection
EAS-2 values your trust. We process personal data lawfully, fairly, and in a transparent manner, and we implement appropriate security and organizational measures to ensure its integrity and confidentiality. We design our services with privacy at their core and aim to limit collection to only what is necessary to deliver a superior user experience.
2. Scope of Policy and Role as Data Controller
This Privacy Policy applies to personal data collected through our website at eas-2.com and any related services or communications. For the purposes of data protection laws, EAS-2 acts as the “data controller,” meaning we determine the purposes and means of the processing of your personal data.
If you are a visitor, customer, or user interacting directly with eas-2.com, this policy governs how your data is treated.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data: Includes data about how you use our website such as your IP address, browser type, operating system, referring URL, pages visited, duration of sessions, and clickstream data.
b. Account Data: Includes your name, email address, postal address, telephone number, and other information provided when creating an account or completing forms.
c. Profile Data: Includes your interests, preferences, feedback, purchase history, account settings, and behavioral trends associated with your use of the site.
d. Communication Data: Includes the content of support requests, emails, or messages you send to us and our responses, including dates and timestamps.
e. Technical Data: Includes metadata such as device type, language settings, operating system version, screen resolution, system configurations, and crash diagnostics.
f. Transaction Data: Includes payment processing information (limited to what is shared with us by third-party processors), delivery address, order details, and billing records.
g. Preference Data: Includes your communication preferences, marketing opt-in selections, and stated product or service interests.
4. Legal Bases for Processing
We process your data under one or more of the following lawful grounds:
– Performance of a Contract: Where necessary to provide services you request or to fulfill orders.
– Consent: Where you have given us clear and informed consent for a specific purpose, such as receiving marketing emails.
– Legitimate Interests: For purposes such as fraud prevention, website security, improvement of services, and internal analytics, where such interests are not overridden by your data protection rights.
– Legal Obligation: Where processing is required to comply with applicable laws or regulatory obligations.
5. Your Rights Under Data Protection Laws
Under the GDPR and CCPA, you have the following rights:
– Right of Access: Request access to your personal data and obtain a copy.
– Right to Rectification: Request the correction of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data where there is no longer a legitimate reason to retain it.
– Right to Restriction: Request the limitation of processing in certain circumstances.
– Right to Data Portability: Request to receive your data in a structured, common-use format and transmit it to another controller.
– Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
– Right to Non-Discrimination (under CCPA): You will not be discriminated against for exercising any of your CCPA rights.
You may exercise your rights by contacting us at [email protected]. We will respond within applicable legal timeframes and may require identity verification to protect your data.
6. Security Measures
We implement industry-standard technical and organizational measures to safeguard your personal data. These include:
– Data encryption during transit and at rest.
– Role-based access controls to ensure only authorized personnel have access to sensitive information.
– Regular data backups and system audits.
– Staff training in data privacy and secure handling practices.
While no system can guarantee absolute security, we take all reasonable steps to protect data in our care.
7. International Data Transfers
Personal data may be processed or stored in jurisdictions outside your own. To ensure your data remains protected when transferred internationally, we rely on:
– Standard Contractual Clauses approved by the European Commission.
– Appropriate supplementary technical measures where legally required.
We ensure that any third-party service providers outside the European Economic Area (EEA) maintain adequate levels of data protection as stipulated by GDPR and relevant data transfer regulations.
8. Data Retention
We retain your personal data only for as long as necessary for the purposes for which it was collected, or as required by law. Specific retention periods include:
– Account Data: Maintained for the duration of your account and deleted or anonymized after closure and applicable legal holds.
– Transaction Data: Retained for up to seven years to comply with tax and financial reporting obligations.
– Communication and Support Data: Retained for up to three years after the last interaction.
– Analytics and Usage Data: Retained in anonymized or aggregated form for statistical analysis and website improvement.
9. Cookie Policy
We use cookies and similar technologies to enhance website functionality and improve your user experience. Types of cookies include:
– Essential Cookies: Required for core site functionality (e.g., authentication, security).
– Functional Cookies: Save preferences such as language or region.
– Performance & Analytics Cookies: Help us understand site usage via aggregated data.
– Targeting & Advertising Cookies (if applicable): Personalize marketing based on your browsing behavior.
10. Managing Cookies and User Consent
In compliance with GDPR and CCPA, we provide cookie banners and tools to allow users to:
– Accept or reject non-essential cookies.
– Withdraw or modify consent at any time via a cookie preferences link on the site.
– Adjust browser settings to control cookie behavior.
For CCPA compliance, California users may opt out of the “sale” or “sharing” of personal information by adjusting their preferences through our site’s cookie management tool.
11. Children’s Privacy
Our website is not intended for children under the age of 13. We do not knowingly collect or process personal data from children unless expressly authorized by a parent or legal guardian. If you believe a child has provided us with personal information, please contact us at [email protected] so we can promptly delete that data.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in data practices or legal requirements. Users will be informed of material changes via notifications on eas-2.com or through direct communication where appropriate. Continued use of our services implies acceptance of the updated policy.
13. Contact Us
If you have questions about this Privacy Policy or wish to exercise your privacy rights, you may reach out to us at:
Email: [email protected]
Postal correspondence or further contact methods can be requested via the above email.
—
We are committed to full compliance with data protection laws and to respecting your rights. For all privacy-related inquiries, concerns, or requests, feel free to contact our team at [email protected].