Privacy Policy
At Mindstorm Web (“we,” “us,” or “our”), accessible at mindstormweb.com, we are fully committed to protecting your privacy and ensuring that your personal data is handled securely and in strict compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information when you interact with our website and services.
1. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and customers who access or use mindstormweb.com and its associated services. Mindstorm Web acts as the Data Controller for the personal data you provide us. By using our website, you acknowledge the practices described in this policy.
2. Categories of Data We Process
We collect and process different types of personal information, including but not limited to:
a. Usage Data
This includes data such as your IP address, browser type, operating system, referral source, pages viewed, time spent on pages, and navigation paths. We gather this automatically to enhance performance and user experience of mindstormweb.com.
b. Account Data
We may collect and store your full name, postal address, email address, and phone number during account registration or service interactions. This data is essential for account management and service delivery.
c. Profile Data
We may process information about your preferences, purchase history, usage patterns, and behavioral data to personalize your experience with us and provide tailored services.
d. Communication Data
This includes inquiries, emails, contact forms, chat messages, and customer support correspondence between you and Mindstorm Web, including metadata and time stamps.
e. Technical Data
We collect device-specific data, such as mobile identifiers, screen resolution, operating system type, browser language, and system configuration. This information helps optimize the website for your device.
f. Transaction Data
This includes billing details, purchase amounts, delivery addresses, transaction history, and other payment-related information. We do not store full payment card details; all processing is done through secure, compliant payment processors.
g. Preference Data
Marketing preferences, consents to receive promotional materials, and expressed interests in certain products or services are stored to provide a more relevant user experience, in accordance with your preferences.
3. Legal Bases for Processing
We process your personal data on the following lawful bases:
– Contract Performance: Where processing is necessary for the performance of a contract with you or to take pre-contractual steps at your request.
– Legitimate Interest: To monitor and improve website functionality, prevent fraud, and maintain security, except where your fundamental rights override such interests.
– Consent: For communications such as newsletters, promotions, and any non-essential cookies, we rely on your explicit consent.
– Legal Obligation: Where processing is required to fulfill a legal or regulatory obligation.
4. Your Rights Under Applicable Law
Subject to local laws and regulations, you have the following rights with respect to your personal data:
– Right of Access – To obtain confirmation of whether we process your personal data and access a copy of that data.
– Right to Rectification – To correct or complete inaccurate or incomplete personal data.
– Right to Erasure – To request deletion of your personal data under certain circumstances.
– Right to Restrict Processing – To limit the way we process your data when specific conditions apply.
– Right to Data Portability – To receive your personal data in a structured, commonly used format and transmit it to another controller, where technically feasible.
To exercise any of these rights, please contact us at [email protected].
5. Security Measures
Data security is a top priority at Mindstorm Web. We employ industry-standard technical and organizational measures to protect your personal data. These measures include but are not limited to:
– Encryption of data at rest and in transit
– Role-based access controls and authentication protocols
– Regular data backups and disaster recovery mechanisms
– Employee training programs on data privacy and security
– Third-party audits and threat detection technologies
6. International Data Transfers
We may transfer, process, or store your personal information outside your country of residence, including to jurisdictions that may not provide the same level of data protection. When we do so, we implement appropriate safeguards including Standard Contractual Clauses approved by the European Commission or rely on applicable adequacy decisions.
7. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including to comply with legal, regulatory, tax, accounting, or reporting obligations. Specific retention periods include:
– Account Data: Retained for the duration of the account’s existence and up to 6 years thereafter for legal/compliance purposes.
– Transaction Data: Retained for a minimum of 7 years to satisfy accounting and audit requirements.
– Technical and Usage Data: Retained for up to 24 months for analytics and security analysis.
– Marketing Preference Data: Retained until consent is withdrawn or data becomes irrelevant.
8. Cookies and Tracking Technologies
mindstormweb.com uses cookies and similar technologies to enhance functionality, analyze performance, and personalize user experience. We categorize cookies as follows:
– Essential Cookies: Necessary for core functionality such as navigation and authentication.
– Functional Cookies: Enable site enhancements like remembering choices or preferences.
– Analytics Cookies: Help us understand how users interact with the site to improve performance (e.g., Google Analytics).
– Performance Cookies: Monitor website load times and responsiveness.
9. Cookie Management and Compliance
We provide a cookie consent mechanism in compliance with GDPR and CCPA regulations. You can manage cookie settings through our cookie banner or your browser settings. Consent for non-essential cookies can be withdrawn at any time without affecting the functionality of essential services. Additionally, California residents may opt out of the “sale” of personal information by contacting us or using the Do Not Sell My Personal Information link where applicable.
10. Children’s Privacy
We do not knowingly collect or solicit personal information from children under the age of 13. If we become aware that a child under 13 has submitted personal data, we will promptly delete such information. Parents or legal guardians who believe their child has provided information to us may contact us at [email protected] to request deletion.
11. Updates to This Policy
We may revise this Privacy Policy from time to time to reflect changes in legal requirements, best practices, or services offered. Any changes will be posted on mindstormweb.com, and we may notify users via email or through the website where material updates are made. Continued use of our services constitutes acceptance of any modifications.
12. Contact Us
If you have questions, concerns, or complaints regarding this Privacy Policy or our handling of your personal data, you may contact us at:
We are committed to complying with all applicable privacy laws and to resolving any disputes swiftly and fairly.