GDPR Policy

Last Updated: Nov 04, 2023 02: 15 PM

1. Introduction

This GDPR Privacy Policy (“Policy”) applies to the processing of personal data we collect from individuals in the European Union (EU) through the website, krivaart.com (“the Website”). This Policy outlines how we collect, use, disclose, and protect personal data in compliance with the General Data Protection Regulation (GDPR).

2. Information We Collect

2.1. Categories of Personal Data: We may collect the following categories of personal data:

  • Identifiers (e.g., name, email address, shipping address)
  • Commercial information (e.g., purchase history)
  • Internet or other electronic network activity information (e.g., browsing history)
  • Geolocation data (e.g., your location)
  • Inferences drawn from the above information (e.g., preferences)

2.2. Sources of Personal Data: We collect personal data directly from you when you use our Website. We may also collect data from third parties, such as service providers and analytics providers.

3. Legal Basis for Processing Personal Data

We process your personal data based on one or more of the following legal bases:

  • The necessity of processing the performance of a contract with you
  • Compliance with a legal obligation
  • Consent you provide
  • Legitimate interests pursued by us or a third party

4. Purposes of Processing Personal Data

We may process your personal data for the following purposes:

  • To provide and fulfill your orders
  • To communicate with you about your orders and inquiries
  • To improve our products and services
  • To send you promotional emails and updates (you can opt out)
  • To comply with legal obligations

5. International Data Transfers

We may transfer your personal data to countries outside the EU, including the United States. When we transfer your data to countries that do not provide an adequate level of data protection, we implement appropriate safeguards as required by the GDPR.

6. Data Subject Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access: You can request information about the personal data we hold about you.
  • Right to rectification: You can request corrections to inaccurate personal data.
  • Right to erasure: You can request the deletion of your personal data, subject to certain exceptions.
  • Right to restrict processing: You can request restrictions on the processing of your personal data.
  • Right to data portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.
  • Right to object: You can object to the processing of your personal data.

7. How to Exercise Your Rights

To exercise your rights under the GDPR, please contact us at: info@krivaart.com

We may need to verify your identity before fulfilling your request.

8. Data Security

We take reasonable measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction.

9. Changes to This Policy

We may update this GDPR Privacy Policy to reflect changes in our practices or legal requirements. The revised policy will be posted on the Website with the updated “Last Updated” date.

10. Contact Us

If you have any questions or concerns about our GDPR Privacy Policy, please contact us at the provided email address.