PRIVACY POLICY
This Privacy Policy explains how mc-order.com (“we”, “us”, or “our”) collects, uses, discloses, and safeguards your personal information when you visit or interact with our website, mc-order.com (the “Site”). We are committed to protecting your privacy and maintaining the highest level of data protection consistent with global privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Our Commitment to Your Privacy
At mc-order.com, your privacy is of paramount importance. We are fully committed to the responsible processing and protection of all personal data collected through our Site and services. Whether you are a customer, partner, or visitor, we strive to ensure transparency, fairness, and accountability in how your personal information is handled.
2. Scope of this Policy and Role of the Data Controller
This Privacy Policy governs the processing of all personal data collected through mc-order.com, including any associated services and communications. For the purposes of applicable data protection legislation, we act as the “data controller” for your personal data, determining the purposes and means of its processing. This Policy applies only to data collected via web interactions, online forms, email communications, and any other activity conducted through mc-order.com.
3. Categories of Data We Collect
We may collect and process the following categories of data:
a. Usage Data
Information about how you use the Site, including your IP address, browser type and version, pages viewed, referring URLs, time zone settings, session durations, and other diagnostic data.
b. Account Data
Information used to identify and contact you, including full name, business or residential address, email address, phone number, and other registration details provided during account creation.
c. Profile Data
Information about your preferences, order history, behavior on the website, saved settings, and selected interests.
d. Communication Data
Records of customer service interactions and inquiries, including support messages, contact forms, live chat conversations, and email correspondence.
e. Technical Data
Device type, device identifiers, operating system, language settings, browser configurations, internet service provider, and system diagnostics.
f. Transaction Data
Details related to purchases and payments made through the Site, such as transaction history, billing and shipping addresses, last four digits of payment cards (processed securely by payment processors), and delivery confirmations.
g. Preference Data
Marketing preferences, subscription choices, product categories of interest, and consent records for promotional communication.
4. Legal Bases for Processing Personal Data
We process personal data under one or more of the following legal grounds, as outlined in the GDPR and other applicable regulations:
– Consent: Where you have provided clear and affirmative consent for data processing (e.g., marketing subscriptions).
– Contractual Necessity: To fulfill a contract or provide services that you have requested (e.g., processing an order).
– Legitimate Interests: To pursue our legitimate commercial interests, provided your data rights do not override such interests (e.g., fraud prevention, service improvements).
– Legal Obligations: When processing is required for compliance with laws or regulations (e.g., tax and accounting obligations).
5. Your Rights
You have a number of rights under GDPR and CCPA, subject to limitations set forth under applicable law:
– Right of Access: Obtain a copy of your personal data held by us.
– Right of Rectification: Request corrections to inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data under qualifying circumstances.
– Right to Restrict Processing: Request we limit the use of your data in certain situations.
– Right to Data Portability: Receive a structured, machine-readable copy of your data.
– Right to Object: Object to data processing, including for direct marketing purposes.
– Right Not to Be Subject to Automated Decision-Making: We do not engage in automated decision-making that produces legal effects without human involvement.
To exercise any of these rights, please contact us at [email protected].
6. Data Security Measures
We implement comprehensive measures to protect your data, including but not limited to:
– End-to-end encryption of data during transfer and storage.
– Role-based access control restricting data handling to authorized personnel.
– System redundancies and secure data backups.
– Regular penetration testing and security audits.
– Ongoing privacy training for our employees and service providers.
7. International Data Transfers
Where data transfers are made to countries outside the European Economic Area (EEA) or California, we ensure appropriate safeguards are in place. This may include use of Standard Contractual Clauses approved by the European Commission, binding corporate rules, or other lawful mechanisms.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including to comply with legal obligations, enforce agreements, or resolve disputes. Specific retention periods include:
– Account and Transaction Data: Retained for up to 7 years for tax and audit compliance.
– Communication and Support Data: Retained for up to 3 years after last contact.
– Marketing Preference Data: Retained until consent is withdrawn.
– Technical and Usage Data: Retained for analytics purposes for up to 24 months.
9. Cookie Policy
mc-order.com uses cookies and similar technologies to enhance website functionality and user experience. The types of cookies we use include:
– Essential Cookies: Required for website functionality (e.g., authentication and navigation).
– Functional Cookies: Remember user settings and choices (e.g., language selection).
– Performance & Analytics Cookies: Collect anonymous data on user interactions for improving our services.
– Marketing Cookies: Personalize advertising content based on user interests.
10. Cookie Management and Compliance
To comply with GDPR and CCPA, users are presented with a cookie consent module upon visiting mc-order.com. You may manage cookie preferences at any time through the Site’s cookie settings or by adjusting your browser settings. You may also opt-out of certain tracking cookies through industry-standard platforms such as the Network Advertising Initiative and Digital Advertising Alliance.
11. Protection of Children’s Privacy
We do not knowingly collect or solicit personal data from individuals under the age of 13. Should we become aware that a child under 13 has submitted personal data without verifiable parental consent, we will promptly delete such information. If you believe we may have collected such data, please contact us at [email protected].
12. Policy Updates
We reserve the right to update or amend this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. We will notify users of any material changes through reasonable means, such as prominently posting a notice on the Site or contacting you directly where appropriate.
13. Contact Information
If you have questions about this Privacy Policy, your data, or our data practices, please contact our Data Privacy Team:
Email: [email protected]
Website: https://mc-order.com
We are committed to complying with all applicable data protection laws and providing transparency in all our privacy practices. Please contact us at the above email address with any concerns or requests regarding your personal information.