PRIVACY POLICY
This Privacy Policy governs the manner in which we collect, use, maintain, and disclose personal information collected from users of the website degreeironman.com. We are committed to protecting the privacy and personal data of our users and ensuring compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).
1. Introduction
At degreeironman.com, we prioritize transparency, data minimization, and your privacy rights. We recognize the importance of safeguarding your information and are committed to handling your personal data responsibly, securely, and in accordance with the highest standards of data protection.
2. Scope of This Policy and Data Controller
This Privacy Policy applies to all data processed through your access and use of the degreeironman.com website. The entity responsible for data processing (“Data Controller”) is:
Degree Ironman
Contact: [email protected]
This Policy applies to all website visitors, registered users, customers, and any other data subjects whose personal data is collected or processed via degreeironman.com.
3. Categories of Data We Process
We may collect and process various categories of personal data, either directly from you or via automated means such as cookies or analytics systems.
a. Usage Data
Includes: IP address, browser type and version, pages visited, time and date of visit, session duration, referral sources, and site navigation patterns.
b. Account Data
Includes: Full name, postal address, email, telephone number, and login credentials (if applicable).
c. Profile Data
Includes: Purchase history, product preferences, feedback, behavioral patterns, and shopping activity.
d. Communication Data
Includes: Information contained in or relating to communications with us through forms, emails, support requests, or customer service contacts.
e. Technical Data
Includes: Device type, operating system, browser settings, system configuration, screen resolution, and other technology-related identifiers.
f. Transaction Data
Includes: Payment details (processed securely via third-party providers), billing/shipping addresses, order details, and delivery confirmations.
g. Preference Data
Includes: Marketing and communication preferences, opted-in newsletters, user interests, survey responses, and consent records.
4. Legal Bases for Processing Personal Data
We only process personal data where there is a lawful basis to do so, under the following grounds:
– Performance of a Contract: When data is necessary to fulfill a contractual obligation or to prepare for entering into a contract.
– Consent: Where you have explicitly granted us permission to process your data for a specific purpose (e.g., marketing).
– Legitimate Interests: To pursue our legitimate business interests (e.g., service improvement, security), provided such interests are not overridden by your rights and freedoms.
– Legal Obligation: When processing is necessary for compliance with applicable legal and regulatory obligations.
5. Your Rights
Under GDPR and CCPA, you may be entitled to exercise the following rights:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You have the right to request correction of inaccurate or incomplete data.
– Right to Erasure: Also known as the “right to be forgotten,” applicable in certain conditions.
– Right to Restriction: You may request that we limit processing of your information under specific circumstances.
– Right to Data Portability: You can request to receive your data in a structured, commonly used, machine-readable format and to transmit it to another controller.
– Right to Object: You may object to processing based on legitimate interests or direct marketing.
– Right to Non-Discrimination (CCPA): You will not face discrimination for exercising your privacy rights.
To exercise any of these rights, please contact us at [email protected]. We will respond to valid requests in accordance with applicable data protection laws.
6. Security Measures
We implement robust organizational and technical measures to protect your data. These include:
– End-to-end encryption of sensitive data
– Role-based access control with authenticated access
– Secure data backups and business continuity measures
– Regular security audits and vulnerability assessments
– Data protection training for all relevant personnel
7. International Data Transfers
Where personal data is transferred outside of the European Economic Area (EEA), we ensure appropriate safeguards are implemented. This may include the use of Standard Contractual Clauses (SCCs) or reliance on adequacy decisions. Our systems and processors adhere to internationally recognized data protection standards for cross-border transfers.
8. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. Typical retention periods include:
– User account and profile data: retained for as long as your account is active
– Transaction and purchase data: retained for no less than 7 years for financial recordkeeping
– Communication data: retained for 3 years following the end of engagement
– Marketing consent data: retained until withdrawal of consent or the data subject becomes inactive for more than 24 months
Upon expiration of relevant retention periods, data is securely erased or anonymized.
9. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to enhance functionality and offer a personalized browsing experience.
Types of cookies we use include:
– Essential Cookies: Required for site operation, login functionality, and secure navigation.
– Functional Cookies: Enable customization of site experience, such as remembering language or region settings.
– Performance Cookies: Collect anonymous usage data to monitor site performance and improve content layout.
– Analytics Cookies: Provided by third-party platforms (e.g., Google Analytics) to track website traffic, user engagement, and error reports.
10. Cookie Management and Consent
On your first visit, you will be presented with a Cookie Consent Panel. You may accept or reject non-essential cookies and can manage your preferences at any time via our cookie preference center or through your browser settings. Degreeironman.com honors “Do Not Track” signals where applicable and complies with both GDPR and CCPA consent requirements.
11. Children’s Privacy
We do not knowingly collect or solicit personal information from individuals under the age of 13. If you believe that a child under the age of 13 has provided us with personal data, please contact us at [email protected], and we will promptly delete such data in compliance with applicable laws.
12. Changes to This Policy
We reserve the right to make changes to this Privacy Policy from time to time to reflect changes in legal or regulatory obligations or operational practices. Where appropriate, we will notify users of material changes via website notices or direct communication.
13. Contact Us
If you have any questions, concerns, or requests regarding your personal data or this Privacy Policy, you are encouraged to contact us at:
We are committed to ensuring your data is handled respectfully and responsibly in all circumstances. For privacy-related inquiries or complaints, you may also have the right to contact your local data protection authority.
Degreeironman.com fully respects your privacy and complies with all relevant privacy laws, including the GDPR and CCPA.