PRIVACY POLICY
Fonmigo (“Fonmigo,” “we,” “us,” or “our”) is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at fonmigo.com or interact with any of our services. Our practices are designed with a privacy-first approach in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Scope of This Policy and Role of the Data Controller
This Privacy Policy applies to all users who access and interact with fonmigo.com. Fonmigo is the data controller for any personal data collected through our website, services, or communications. As the controller, we are responsible for determining the purposes and means of processing your personal information in accordance with relevant legislation.
2. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data: Information about how you use fonmigo.com, including browser type, IP address, referring URLs, pages viewed, access times, and session duration.
b. Account Data: Information you provide when creating an account, such as your name, email address, mailing address, and phone number.
c. Profile Data: Preferences, interests, purchase history, and user behavior on our site, which helps enhance personalization and marketing accuracy.
d. Communication Data: Records of your correspondence with us, including emails, live chat transcripts, and support inquiries.
e. Technical Data: Device identifier, operating system, browser type, hardware specifications, and system configuration data.
f. Transaction Data: Payment information, shipping details, billing address, and purchase records obtained during transactions executed on fonmigo.com.
g. Preference Data: Marketing choices, consent records, survey responses, and interest indicators submitted through interaction with our services.
3. Legal Bases for Processing
We process your personal data based on at least one of the following legal grounds:
– Contractual Necessity: When the processing is necessary to fulfill a contract with you or to take steps at your request prior to entering into a contract.
– Legitimate Interests: When processing serves our legitimate business interests (e.g., communicating with users, improving the website) and does not override your rights or interests.
– Consent: When you have given explicit permission for particular uses, such as subscribing to our newsletter or consenting to cookies.
– Legal Obligation: Where processing is required to comply with a legal obligation.
4. Your Data Protection Rights
Subject to applicable law, you may exercise the following rights in respect of your personal data:
– Right of Access: Obtain confirmation of whether we process your data, and receive a copy of that data.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your personal data in certain circumstances, including where it is no longer necessary for the purpose for which it was collected.
– Right to Restrict Processing: Request that processing of your data be limited under specific conditions.
– Right to Data Portability: Receive your data in a structured, commonly used format to transmit to another service provider.
– Right to Object: Object to the processing of your information for direct marketing or based on legitimate interest.
To exercise any of the above rights, contact us at [email protected].
If you are a California resident, you may also request that we disclose categories of data collected, shared, or sold in the past 12 months and request to opt out of the sale of personal information.
5. Data Security Measures
We employ rigorous security protocols to ensure the confidentiality, integrity, and availability of your personal data. These measures include:
– End-to-end encryption of sensitive information during transmission.
– Role-based access control systems limiting who can access your data.
– Regular backup and recovery processes to protect data integrity.
– Ongoing security and data protection training for personnel.
6. International Data Transfers
Whenever we transfer your information outside of your jurisdiction, including to servers or service providers in other countries, we implement safeguards to ensure adequate protection. This includes using Standard Contractual Clauses approved by the European Commission and complying with regional data transfer frameworks, where applicable.
7. Data Retention
We retain personal information only for as long as necessary for the purposes stated herein, and in accordance with applicable legal obligations. Specific retention periods include:
– Account and Profile Data: For as long as you have an active account or until request for deletion.
– Transaction Data: Retained for seven (7) years for record-keeping, legal, and tax compliance purposes.
– Communication Data: Retained for two (2) years following the last contact.
– Technical and Usage Data: Retained for up to thirteen (13) months to support analytics and site optimization.
– Preference Data: Retained until consent is withdrawn or preferences are updated.
8. Cookie Policy
We use cookies and similar tracking technologies on fonmigo.com that fall into the following categories:
– Essential Cookies: Required for basic functionality and security of the website.
– Functional Cookies: Enhance user experience by remembering preferences and settings.
– Analytics Cookies: Help us measure and analyze traffic and usage trends for performance improvements.
– Performance Cookies: Monitor website operation to fix errors and enhance performance.
9. Cookie Management and Compliance
By using fonmigo.com, you consent to our use of cookies in accordance with this policy. You may manage cookie preferences or withdraw consent at any time through our cookie management tool, accessible on the site. Our use of cookies complies with GDPR and CCPA requirements, including prior consent for non-essential cookies and the ability to opt-out of data selling under CCPA.
10. Children’s Privacy
Fonmigo does not knowingly collect or process personal data from children under the age of 13. If we become aware that such information has been collected without verifiable parental consent, we will promptly delete it from our systems. Parents or guardians who believe their child has disclosed personal data to us should contact us immediately at [email protected].
11. Updates to This Policy
We may update or modify this Privacy Policy to reflect changes in our practices or applicable laws. Updates will be published on fonmigo.com, and where appropriate, we will notify users of significant changes via email or an in-site banner. We encourage you to review the policy periodically.
12. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or the way we handle your personal information, please contact us at:
Email: [email protected]
We are committed to processing your personal information transparently, lawfully, and respectfully. We take your privacy seriously and will act in good faith to address any concerns regarding this Privacy Policy or our data practices.
This Privacy Policy reflects our commitment to data protection compliance under GDPR, CCPA, and all applicable privacy regulations. Please contact us at [email protected] for further information or to exercise your privacy rights.