GDPR Compliance Policy

GDPR Compliance Policy

At Murrayjuliet, we take your privacy seriously and are committed to complying with the General Data Protection Regulation (EU) 2016/679 (“GDPR”). This GDPR Compliance Policy outlines how we collect, use, store, and protect your personal data in accordance with the GDPR. By using our website, www.murrayjuliet.com, you agree to the practices outlined in this policy.

1. Data Controller Information

Murrayjuliet is the data controller responsible for the processing of your personal data:

Company Name: Murrayjuliet
Website: www.murrayjuliet.com
Email: [email protected]

2. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity Data: Includes your name, username, or similar identifier.

  • Contact Data: Includes your billing address, delivery address, email address, and phone number.

  • Financial Data: Includes payment card details (processed through third-party secure payment processors).

  • Transaction Data: Includes details about payments and other details of products you have purchased.

  • Technical Data: Includes IP address, browser type and version, time zone setting, and location.

  • Usage Data: Includes information about how you use our website, products, and services.

  • Marketing and Communications Data: Includes your preferences in receiving marketing from us and your communication preferences.

3. Legal Bases for Processing Personal Data

We process your data under the following legal bases:

  • Contractual necessity: To fulfill the contract (e.g., processing orders and delivering products).

  • Consent: For email marketing and use of cookies (where required).

  • Legal obligation: To comply with legal and regulatory requirements.

  • Legitimate interests: To conduct business, provide and improve our services, and prevent fraud.

4. How We Use Your Personal Data

We use your data to:

  • Process and deliver orders.

  • Manage payments and refunds.

  • Communicate with you, including marketing emails (with consent).

  • Provide customer support.

  • Analyze website usage and improve the customer experience.

  • Comply with legal obligations.

5. How We Collect Personal Data

We collect data through:

  • Direct interactions (e.g., filling in forms or corresponding with us).

  • Automated technologies (e.g., cookies, server logs).

  • Third parties (e.g., payment processors, analytics providers).

6. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which we collected it, including for legal, accounting, or reporting requirements. In determining the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data.

7. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right to access: You can request access to your personal data.

  • Right to rectification: You can request correction of inaccurate or incomplete data.

  • Right to erasure: You can request deletion of your data under certain conditions.

  • Right to restrict processing: You can request limited use of your data.

  • Right to data portability: You can request a copy of your data in a machine-readable format.

  • Right to object: You can object to data processing under certain circumstances.

  • Right to withdraw consent: Where consent is the legal basis for processing, you may withdraw it at any time.

8. How to Exercise Your Rights

To exercise your rights, contact us at [email protected]. We may request verification of your identity before processing your request.

9. Data Security

We implement appropriate technical and organizational security measures to protect your data against unauthorized access, disclosure, alteration, or destruction. These include encryption, access controls, and secure servers.

10. International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure adequate safeguards are in place, such as standard contractual clauses approved by the European Commission.

11. Cookies and Tracking Technologies

We use cookies to enhance your experience, analyze site traffic, and serve targeted advertisements. You can control cookie preferences through your browser settings.

12. Third-Party Services

We may share your data with trusted third parties who provide services such as payment processing, delivery, IT services, and marketing. These parties are obligated to protect your data and use it only for the purposes we specify.

13. Children’s Privacy

Our site is not intended for children under the age of 16, and we do not knowingly collect data from children without parental consent. If we learn that we have collected personal data from a child without verification of parental consent, we will delete that data promptly.

14. Breach Notification

In the event of a data breach likely to result in a risk to your rights and freedoms, we will notify you and the appropriate data protection authority without undue delay.

15. Changes to This Policy

We may update this GDPR Compliance Policy from time to time. Any changes will be posted on this page, and where appropriate, notified to you by email. We encourage you to review this policy periodically.

16. Contact and Complaints

If you have any questions about this policy or believe your data has been processed in a way that does not comply with GDPR, contact us at [email protected]. You also have the right to lodge a complaint with your local data protection authority.