BrightNest respects your privacy and is committed to complying with the General Data Protection Regulation (GDPR) (EU) 2016/679. This notice explains how we collect, use, and protect your personal data when you visit our website and engage with our services. It also outlines your rights under the GDPR and how you can effectively exercise them.
What is the GDPR?
The GDPR is a regulation designed to safeguard the personal data of individuals within the European Union (EU). It applies to organizations that process the personal data of EU residents, regardless of where the organization is located.
Your Rights Under the GDPR
As an EU resident, you have the following rights regarding your personal data:
Right to Access: You may request access to the personal data we hold about you and obtain a copy of it.
Right to Rectification: You can ask for corrections if the personal data we hold about you is inaccurate or incomplete.
Right to Erasure (“Right to be Forgotten”): You may request the deletion of your personal data in certain cases, such as when it is no longer needed for the purposes for which it was collected or if you withdraw your consent.
Right to Restriction of Processing: You can request that we limit the processing of your personal data under specific conditions.
Right to Data Portability: You may request the transfer of your personal data to another organization or receive it in a structured, commonly used, and machine-readable format.
Right to Object: You have the right to object to the processing of your personal data in certain situations, including for direct marketing purposes.
Right to Withdraw Consent: If we rely on your consent to process your personal data, you can withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
How to Exercise Your GDPR Rights
To exercise any of your rights under the GDPR, please contact us using the information below:
Email: [email protected]
Phone: +13477992388
Address: 379 Myrtle Ave, Brooklyn, NY 11205, United States
We may ask for proof of identity to verify your request and ensure your privacy.
What Personal Data We Collect
We may collect and process the following categories of personal data:
Identifiers: Name, email address, IP address, and device identifiers.
Contact Information: Phone number, address, or other contact details.
Website Usage Data: Information about your browsing behavior, interactions with our website, cookies, and similar technologies.
Transaction Information: Details about purchases or interactions with our services, including payment information and order history.
How We Use Your Personal Data
We use your personal data for the following purposes:
To Provide Services: Fulfilling orders, processing transactions, and providing customer support.
To Improve User Experience: Personalizing your experience, optimizing website performance, and delivering relevant content.
To Comply with Legal Obligations: Meeting legal requirements and responding to requests from authorities.
For Marketing Communications: If you have opted in, sending promotional offers, newsletters, or updates about our products and services. You can unsubscribe from marketing communications at any time via the link in the email or by contacting us.
Data Security
We take the protection of your personal data seriously, implementing robust technical and organizational measures to secure it from unauthorized access, use, disclosure, or destruction. Our practices include encryption, secure servers, and regular security assessments.
Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Retention periods depend on the type of data and its purpose.
Third-Party Sharing
We may share your personal data with trusted third-party service providers who assist us in operating our website, conducting business, or providing services (e.g., payment processors, email service providers). These third parties are contractually obligated to protect your personal data and use it only for the services they provide.
International Data Transfers
If we transfer your personal data outside the European Economic Area (EEA), we will ensure that appropriate safeguards are in place, such as standard contractual clauses, to maintain a high level of data protection.
Cookies and Tracking Technologies
Our website uses cookies and similar technologies to enhance user experience, analyze website traffic, and collect information about your usage patterns. You can manage your preferences through our Cookie Settings page, where you can allow, restrict, or reject certain cookies.
Updates to this GDPR Compliance Notice
We may update this GDPR Compliance Notice from time to time to reflect changes in our data practices or legal obligations. Updates will be posted on this page with a “Last Updated” date. Continued use of our website signifies your acceptance of the revised terms.
Contact Us
If you have any questions, concerns, or requests regarding this GDPR Compliance Notice or your personal data, please contact us:
Email: [email protected]
Phone: +13477992388
Address: 379 Myrtle Ave, Brooklyn, NY 11205, United States
Disclaimer: This GDPR Compliance Notice is for informational purposes only and should not be considered legal advice. For specific guidance, consult a legal professional or data protection specialist.