Privacy Policy
1. Introduction
At MC Order (accessible via mc-order.com), we are deeply committed to protecting the privacy, confidentiality, and integrity of your personal data. We understand the importance of privacy in the digital age, and we handle all personal information with the utmost care, in accordance with applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website or interact with our services.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of mc-order.com and associated services. For the purposes of the GDPR, MC Order is the Data Controller of your personal data, meaning we determine the purposes and means of processing your information. For inquiries regarding your data or to exercise your rights, please contact us at [email protected].
3. Categories of Data Processed
We may process various categories of personal data, depending on your interactions with our website and services:
a) Usage Data
We collect information about how the website is accessed and used, which may include your IP address, browser type and version, pages viewed, time and date of visit, time spent on particular pages, and other diagnostic data.
b) Account Data
To create or manage an account with us, we may collect your full name, email address, postal address, phone number, and login credentials.
c) Profile Data
This includes information such as your preferences, purchase history, order behavior, saved items, wishlists, and responses to surveys or promotions.
d) Communication Data
When you contact us (e.g., through support forms or email), we retain records of those communications, including the content of the message, your contact details, and any follow-up correspondence.
e) Technical Data
We may automatically collect device and system data, including device model, operating system, screen resolution, unique device identifiers, and browser system configurations that allow us to improve compatibility and site performance.
f) Transaction Data
For purchases and order fulfillment, we collect information including payment history, billing and shipping addresses, products ordered, order tracking numbers, and other delivery-related information.
g) Preference Data
We may collect marketing and communication preferences such as your opt-in/opt-out consents and information on product categories or content in which you express an interest.
4. Legal Bases for Processing
We rely on the following legal bases to lawfully process your personal data:
– Contractual Necessity: To process and fulfill orders or provide services you request.
– Consent: For sending marketing communications, using certain cookies, or processing data where lawful consent is required.
– Legitimate Interests: To enhance site performance, improve service offerings, secure the platform, and support customer inquiries—always balanced with your data protection rights.
– Legal Obligations: To comply with applicable laws, regulations, and enforceable governmental requests.
5. Your Rights
Subject to regional laws and applicable exceptions, you may exercise the following rights:
– Right of Access – You may request a copy of your personal data.
– Right to Rectification – You may correct inaccurate or incomplete data.
– Right to Erasure (Right to be Forgotten) – You may request deletion of your personal information under certain conditions.
– Right to Restriction – You may request the restriction of data processing where lawful.
– Right to Data Portability – You may obtain your data in a structured, commonly used format or request transfer to another data controller.
To exercise these rights, please contact us at [email protected]. Verification of identity may be required to process your request in accordance with applicable laws.
6. Security Measures
We implement and maintain robust technical and organizational safeguards to protect your personal information. These include:
– Data encryption during transmission (SSL/TLS)
– Restricted access through role-based control
– Secure server environments and backups
– Employee training on privacy and information security best practices
Although no system can guarantee complete security, we regularly evaluate and enhance our measures to maintain the highest protection standards.
7. International Transfers
Your data may be transferred and processed outside of your jurisdiction, including in countries that do not provide the same level of data protection. In such cases, we rely on recognized data protection mechanisms such as Standard Contractual Clauses approved by the European Commission or equivalent safeguards where required to ensure your data remains protected.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:
– Account and Profile Data: Retained while your account is active and for 6 years after closure, subject to other lawful obligations.
– Transaction Data: Retained for 7 years to meet tax and financial reporting requirements.
– Communication and Support Data: Retained for 3 years after last contact.
– Preference and Consent Data: Retained until withdrawal of consent or user account deletion.
– Technical and Usage Data: Retained up to 1 year for analytical purposes.
Data may be retained longer where necessary for legal obligations or dispute resolution.
9. Cookie Policy
mc-order.com uses cookies to enhance your browsing experience and provide you with tailored services. We categorize cookies as follows:
– Essential Cookies: Required for core website functionalities such as authentication and security.
– Functional Cookies: Help personalize content based on user preferences and maintain session settings.
– Analytical/Performance Cookies: Allow us to monitor website usage for optimization and performance improvements. These may be set by third parties such as Google Analytics.
10. Cookie Management and Compliance
We respect your choices regarding cookies. Upon your first visit, a cookie banner allows you to accept or reject non-essential cookies. You can change your preference at any time via our cookie settings interface or through your browser settings. We ensure compliance with GDPR and CCPA requirements by obtaining explicit consent before placing analytical or marketing cookies and by honoring Do Not Track signals where applicable.
Under the CCPA, California residents can opt out of the sale of their personal information. Although mc-order.com does not sell personal data in the conventional sense, we offer equivalent opt-out and preference mechanisms to align with CCPA obligations.
11. Special Protections for Children Under 13
Our services are not directed to children under the age of 13, and we do not knowingly collect personal information from such individuals. If you are a parent or guardian and believe that your child has provided personal data on mc-order.com, please contact us immediately at [email protected]. We will take steps to verify and delete such data if discovered.
12. Policy Updates & User Notifications
We reserve the right to revise this Privacy Policy to reflect changes in our practices, technology, or legal obligations. Any material updates will be communicated via prominent notice on mc-order.com or through direct email communication where appropriate. We encourage users to review this policy regularly.
13. Contact
If you have any questions about this Privacy Policy, your data rights, or how we manage personal information, please contact us at:
Email: [email protected]
Website: mc-order.com
We are committed to complying with all applicable data privacy laws and protecting your personal information with integrity and transparency. If you have concerns, we welcome the opportunity to address them promptly and thoroughly.