Privacy Policy

Privacy Policy

1. Introduction

At Ottinge (accessible via ottinge.com), we deeply value the privacy and trust of our users. We are firmly committed to safeguarding your personal data and upholding your rights under applicable data protection and privacy laws. This Privacy Policy outlines the nature of the information we collect, how we use it, and the choices available to you regarding our use of your personal data. We act with transparency, respect, and integrity in every aspect of our data processing practices.

2. Scope of Policy and Data Controller

This Privacy Policy applies to all visitors, users, and others who access or use ottinge.com (referred to herein as “the Website,” “we,” “us,” or “our”). Ottinge is the data controller responsible for your personal data processed through this Website. For any matters related to privacy, you may contact us at [email protected].

This Policy governs how personal data is collected, used, disclosed, and otherwise processed during your interaction with the Website and our services, in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection legislation.

3. Categories of Data Processed

We may collect and process different categories of personal data, depending on your interaction with ottinge.com:

a) Usage Data
Includes information about how you use the Website, such as IP address, browser types, access times, referring pages, pages visited, session duration, and navigation paths. This data is primarily used for analytics and service improvement.

b) Account Data
Includes personal identifiers such as your full name, residential or billing address, email address, phone number, and user IDs that you provide when creating an account on ottinge.com or subscribing to our services.

c) Profile Data
Includes information related to your preferences, product interests, account settings, purchase history, behavioral patterns on the Website, and saved preferences.

d) Communication Data
Includes the content of emails, support inquiries, live chat correspondence, contact form messages, and records of any other interactions with our customer service or support team.

e) Technical Data
Includes information collected automatically from your device, such as device model, operating system, screen resolution, language settings, and browser configuration.

f) Transaction Data
Includes information necessary for processing payments and fulfilling delivery, such as transaction amount, payment method, billing and shipping address, and order history. We do not store full payment card details; payments are processed securely by third-party processors.

g) Preference Data
Includes your selections regarding marketing communications, product notifications, and consents related to marketing channels, data sharing, and personalization preferences.

4. Legal Bases for Processing

Under GDPR, we process personal data based on the following legal grounds:

– Contractual Necessity: To fulfill obligations arising from any agreement with you, such as processing orders or providing support services.
– Consent: Where we rely on your freely given, informed, and unambiguous consent to process specific types of data, such as marketing preferences or cookies.
– Legitimate Interests: For purposes of fraud prevention, Website optimization, service improvement, personalization, and internal administration, where such interests are not overridden by your privacy rights.
– Legal Obligations: In compliance with legal, regulatory, accounting, or tax requirements.

Under CCPA, certain rights apply to residents of California, which we address further below.

5. Your Rights

Subject to applicable laws and verification of your identity, you have the following rights regarding your personal data:

– Right of Access: You have the right to request access to the personal data we hold about you.
– Right to Rectification: You may request corrections to inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): You may request the deletion of data where legally appropriate.
– Right to Restriction: You may request restriction of processing in certain cases, such as during dispute of data accuracy.
– Right to Data Portability: You may receive a machine-readable copy of your personal data for portability purposes.
– Right to Object: You may object to processing carried out based on our legitimate interest or for direct marketing purposes.
– Right to Withdraw Consent: Where we rely on consent, you have the right to withdraw it at any time, which will not affect the lawfulness of processing performed prior.

California Residents
If you are a California resident, you are entitled under the CCPA to:

– Request that we disclose the categories and specific pieces of personal data collected.
– Request deletion of your personal data.
– Opt-out of the sale or sharing of your information (note: we do not sell personal data).
– Not be discriminated against for exercising your rights.

To exercise these rights, please contact us at [email protected].

6. Security Measures

We implement robust safeguards to ensure the confidentiality, integrity, and availability of your personal information. These include:

– End-to-end encryption during data transmission using industry-standard HTTPS/TLS protocols.
– Access controls that restrict personal data access to authorized personnel only.
– Regular data backups and system audits to prevent accidental loss or alteration.
– Ongoing staff privacy and data protection training.
– Secure hosting infrastructure with intrusion detection and firewalls.

While we strive to use commercially reasonable means to protect your personal information, no method of transmission or storage is entirely secure, and we cannot guarantee absolute security.

7. International Data Transfers

Your personal data may be transferred to, stored, and processed in jurisdictions outside your country of residence, including countries that may not have the same data protection laws. In such cases, we ensure appropriate safeguards are in place, including:

– Standard Contractual Clauses approved by the European Commission.
– Transferring data only to entities that provide adequate safeguards and legal remedies.
– Binding corporate rules or other approved mechanisms under applicable law.

You may request a copy of these safeguards by contacting us at [email protected].

8. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including:

– Usage and Technical Data: retained for up to 12 months for analytics and security.
– Account and Profile Data: retained while your account remains active and for up to 6 years following account closure for audit and compliance requirements.
– Transaction and Payment Data: retained for 7 years for tax and legal obligations.
– Communication Data: retained for up to 3 years after the last interaction.
– Marketing Preference Data: retained until you update or withdraw consent.

Upon expiration of the applicable retention period, personal data is securely deleted or anonymized to prevent re-identification.

9. Cookie Policy

We use cookies and similar technologies to enhance user experience, improve functionality, and analyze performance on ottinge.com. These cookies include:

– Essential Cookies: Required for core site functionality (e.g., login, checkout).
– Functional Cookies: Allow customization based on your preferences.
– Analytics Cookies: Collect aggregated, anonymized data for usage analytics.
– Performance Cookies: Help optimize load times and response efficiency.

Some cookies are set by third party services used on ottinge.com.

10. Cookie Management and Compliance

By accessing ottinge.com, you will be presented with a cookie consent banner in accordance with GDPR and CCPA requirements. You may:

– Accept all or select specific categories of cookies.
– Update your consent at any time by adjusting your browser settings or using the cookie preference tool available on our site.

You can also configure your browser to reject cookies or notify you before a cookie is set. Disabling certain cookies may impact site functionality.

California residents may opt out of certain cookie-based data sales or sharing by activating the “Do Not Sell or Share My Personal Information” feature, where applicable.

11. Children’s Privacy

ottinge.com is not directed toward children under the age of 13, and we do not knowingly collect or process personal data from children under this age. If we become aware that a child under 13 has provided us with personal information, we will delete such information promptly. If you are a parent or guardian and believe that your child may have provided personal information to us, please contact us at [email protected].

12. Policy Updates and User Notifications

We may update this Privacy Policy to reflect changes in legal requirements, technology, or our business practices. When material changes are made, we will provide notice through ottinge.com, update our Privacy Policy page, and if necessary, request your renewed consent. You are encouraged to review this Policy periodically to remain informed.

13. Contact

If you have questions, concerns, or requests concerning this Privacy Policy or your personal data, please contact us at:

Email: [email protected]
Website: https://ottinge.com

We are committed to protecting your privacy and ensuring your rights are respected. If you believe your personal data has not been handled appropriately, you have the right to lodge a complaint with your local data protection authority.

This Privacy Policy was prepared to ensure full compliance with the European Union General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection frameworks.

If you have any further questions about our privacy practices, we welcome you to reach out to us directly at [email protected].