Privacy Policy for kotetsu-bento.com
1. Introduction
At kotetsu-bento.com, we are committed to safeguarding your privacy and protecting the personal data you entrust to us. We recognize the importance of maintaining the confidentiality, integrity, and security of your personal information. This Privacy Policy outlines how we handle your data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal information collected through kotetsu-bento.com and related services. For the purposes of data protection law, the data controller responsible for your personal data is Kotetsu Bento Inc., which operates and manages this website. If you have any questions concerning this Policy or our data practices, you may contact us at [email protected].
3. Categories of Data Processed
We collect and process different categories of data depending on how you interact with our website and services:
a. Usage Data
We collect information automatically when you access kotetsu-bento.com, such as your IP address, browser type, operating system, referring URLs, duration of visit, and interactions with website content. This data helps us understand website performance and usage trends.
b. Account Data
When you create an account or place an order, we collect personal information such as your full name, shipping and billing addresses, email address, and telephone number.
c. Profile Data
We may maintain a profile which contains preferences, past purchases, browsing behavior, and interaction history to personalize your user experience and enhance service delivery.
d. Communication Data
We retain any information you provide when contacting our customer service team, including the content of messages, timestamps, and our responses.
e. Technical Data
Technical information about the devices and systems used to access our services may be collected, including device type, operating system configuration, unique device identifiers, and diagnostic data.
f. Transaction Data
When you make purchases through kotetsu-bento.com, we collect data related to the transaction, including payment methods, financial information processed by authorized third-party providers, order confirmations, and delivery receipts.
g. Preference Data
We gather information regarding your expressed interests, marketing and communication preferences, and product wishlist or favorited items.
4. Legal Bases for Processing
We rely on the following lawful bases to process personal data:
– Contractual Necessity: To fulfill our contractual obligations to provide goods and services you request.
– Legitimate Interests: To manage and improve our services, prevent fraud, and communicate relevant updates while respecting your rights.
– Consent: For marketing communications and analytics, we will obtain your consent where required.
– Legal Obligation: To comply with applicable legal obligations, including record-keeping and tax laws.
5. Your Rights
Subject to certain limitations and applicable data protection laws, you have the following rights:
– Right of Access: You may request access to your personal data we hold.
– Right to Rectification: You may request corrections to inaccurate or incomplete data.
– Right to Erasure: Under certain conditions, you may request the deletion of your data.
– Right to Restriction: You may request that we restrict how your data is processed.
– Right to Data Portability: You may request to receive your data in a structured, commonly used, and machine-readable format for transmission to another controller.
To exercise your rights or make a data-related inquiry, please contact us at [email protected].
6. Security Measures
We employ appropriate technical and organizational measures to secure your personal data against unauthorized access, disclosure, alteration, and destruction. These measures include encrypted communications, firewalls, access controls, secure server environments, regular data backups, and employee training in data privacy and security awareness.
7. International Transfers
Some of your data may be transferred to or accessed from jurisdictions outside your country of residence. Where such transfers occur, we implement appropriate safeguards, including the use of Standard Contractual Clauses approved by regulatory authorities, to ensure a legally adequate level of data protection.
8. Data Retention
We retain personal data only as long as is necessary for the purpose for which it was collected, or as required to comply with legal, contractual, and regulatory obligations. For example:
– Account and profile data: Retained as long as your account remains active.
– Transaction data: Retained for a period necessary for accounting and tax reporting purposes.
– Communication data: Retained to monitor service quality and resolve disputes, generally not exceeding 24 months.
– Cookie data: Subject to retention limits defined in our Cookie Policy below.
9. Cookie Policy
We use cookies and similar technologies to enhance the functionality and performance of kotetsu-bento.com. These include:
– Essential Cookies: Required for site functionality, such as shopping cart management and account authentication.
– Functional Cookies: Enable personalization features like remembered preferences.
– Analytics Cookies: Help us understand user behavior and optimize navigation and site performance.
– Performance Cookies: Monitor site uptime and responsiveness.
10. Cookie Management and Compliance with GDPR & CCPA
You may manage your cookie preferences at any time via our Cookie Consent Tool, accessible from any page of the site. Users in the European Economic Area (EEA) and California are provided with mechanisms to opt-out of non-essential data collection in accordance with applicable laws. Browser-level controls also allow manual cookie blocking or deletion.
11. Special Protections for Children Under 13
kotetsu-bento.com does not knowingly collect personal information from individuals under the age of 13. If we become aware that we have collected data from a child without verified parental consent, we will take steps to delete such information promptly. If you believe that a child has provided personal data to us, please contact us immediately at [email protected].
12. Policy Updates and User Notifications
We may revise this Privacy Policy from time to time to reflect operational, legal, or regulatory changes. When changes are made, we will post the updated Policy on this page and, where appropriate, provide notification through kotetsu-bento.com or via direct communication. Your continued use of our services constitutes acceptance of any updates.
13. Contact Us
For questions about this Privacy Policy, your data rights, or how we process your personal information, please reach out to our privacy team at [email protected]. We are committed to resolving your concerns in a timely and transparent manner.
At kotetsu-bento.com, your privacy is our priority. We operate in full compliance with GDPR, CCPA, and other relevant regulations, and we welcome your questions about how your personal information is handled.