Privacy Policy
Open Eye World (“we,” “us,” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy describes how your personal information is collected, used, stored, and shared when you visit or interact with our website, openeyeworld.com (“Website”). We are committed to safeguarding your privacy and ensuring transparency regarding the collection and processing of your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Our Commitment to Privacy and Data Protection
We take your privacy seriously. At Open Eye World, we believe everyone has the right to control their personal data. We are dedicated to implementing best-in-class privacy safeguards, ensuring that all personal information collected is limited, purpose-driven, and handled with care, security, and transparency.
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to personal information collected through openeyeworld.com and through your interactions with us via email, support requests, or other communication channels. For the purposes of personal data processing, we act as the “Data Controller” under the GDPR and the “Business” under the CCPA, which means we determine the purposes and means of processing your personal data.
3. Categories of Personal Data We Process
Depending on how you engage with our Website and services, we may collect and process the following categories of personal data:
– Usage Data: Includes data about how you use our Website, such as IP address, browser type, pages viewed, access dates and times, referring URLs, and session durations.
– Account Data: Includes your name, email address, postal address, phone number, and any login credentials if you create an account on openeyeworld.com.
– Profile Data: Includes details related to your website preferences, order history, purchase behavior, and other personalizations relevant to our services.
– Communication Data: Includes records of communications you have with us, including inquiries, support tickets, feedback, and emails.
– Technical Data: Includes information pertaining to the device you use to access our services, such as device identifiers, operating systems, browser settings, and system configurations.
– Transaction Data: Includes purchase details, billing and shipping addresses, payment methods, and delivery tracking when you make transactions via our Website.
– Preference Data: Includes your opt-in or opt-out status for marketing communications, interest selections, and consent information.
4. Legal Bases for Processing Personal Data
Under the GDPR, we rely on the following legal bases to process your personal data:
– Consent: Where you have expressly provided your consent, such as for receiving marketing emails.
– Performance of a Contract: Where processing is necessary to fulfill our contractual obligations with you (e.g., processing an order).
– Compliance with Legal Obligations: Where processing is necessary to comply with legal responsibilities or regulatory requirements.
– Legitimate Interests: When processing is necessary for our legitimate business interests, provided they do not override your rights and freedoms (e.g., Website analytics, fraud prevention).
5. Your Data Protection Rights
Subject to applicable law, you have the following rights regarding your personal data:
– Right of Access: You may request information about the personal data we hold about you.
– Right of Rectification: You may request rectification of inaccurate or incomplete data.
– Right to Erasure: You may request the deletion of your personal data, subject to certain legal restrictions.
– Right to Restriction: You may request us to restrict processing of your personal data under certain circumstances.
– Right to Data Portability: You may request a copy of your data in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to our processing of your data based on legitimate interest or direct marketing purposes.
To exercise these rights, please contact us at [email protected] with a clear description of your request.
6. Security Measures
We use a combination of organizational, administrative, physical, and technical safeguards to protect your personal data. These include, but are not limited to:
– Encryption of data in transit and at rest
– Role-based access controls and authentication
– Regularly reviewed security protocols
– Secure server infrastructure and firewalls
– Staff privacy and security training
7. International Data Transfers
We may transfer your personal data to jurisdictions outside of your country of residence for processing or storage. Such transfers are conducted in compliance with international data protection standards. Where applicable, we implement European Commission Standard Contractual Clauses or rely on comparable safeguards as required by applicable privacy regulations to protect your data cross-border.
8. Data Retention
We retain your personal data for only as long as is strictly necessary to fulfill the purposes outlined in this Privacy Policy or to comply with applicable legal, tax, or regulatory obligations. Specific retention periods by category include:
– Usage Data: Up to 12 months
– Account Data: Retained while account is active and up to 6 years thereafter
– Profile Data: Up to 3 years from last interaction or purchase
– Communication Data: 2 years
– Technical Data: Up to 12 months
– Transaction Data: Retained for tax and accounting purposes up to 7 years
– Preference Data: Retained until your preferences change or consent is withdrawn
9. Cookie Policy
We use cookies and similar tracking technologies to deliver and improve our services. Cookies allow us to distinguish you from other users and provide you with a better user experience. Types of cookies used on openeyeworld.com include:
– Essential Cookies: Required for the operation of the Website (e.g., security, authentication).
– Functional Cookies: Help provide enhanced functionality and personalization.
– Analytics Cookies: Collect information on Website usage to improve performance.
– Performance Cookies: Help us measure the effectiveness of our content and marketing.
10. Cookie Management and Compliance with GDPR & CCPA
You can control cookie settings through your browser or our cookie banner. For visitors from jurisdictions covered under the GDPR, cookie consent is obtained prior to activation (except for essential cookies). For California residents under the CCPA, you have the right to opt-out of the “sale” of personal information and can manage your choices through the link titled “Do Not Sell My Personal Information” if applicable.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from individuals under the age of 13. If we become aware that we have unintentionally collected personal data from a child under 13, we will take immediate steps to delete such information. Parents or legal guardians who believe we may have collected data from a minor may contact us at [email protected] for prompt assistance.
12. Updates to This Privacy Policy
We reserve the right to update or modify this Privacy Policy as necessary to reflect legal, regulatory, or service-related developments. Material changes will be communicated via our Website, and where appropriate, we will obtain your consent.
13. Contacting Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, you can reach us at:
Email: [email protected]
We are committed to ensuring your data is handled responsibly and in compliance with all applicable privacy laws. If you have any concerns or wish to exercise your rights, please do not hesitate to contact us.