Privacy Policy
1. Introduction: Our Commitment to Privacy
At Okuruma Joshi (accessible at https://okuruma-joshi.com), we are committed to protecting the privacy and personal data of all users who interact with our website, services, and communications. We uphold the principles of transparency, fairness, and accountability. We are dedicated to maintaining compliance with all applicable privacy regulations, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant data protection laws.
2. Scope of This Policy & Data Controller Responsibility
This Privacy Policy describes how Okuruma Joshi collects, uses, shares, and protects personal data obtained through our website and related services. It is applicable to all users who access our site, create accounts, make purchases, submit inquiries, or otherwise interact with us.
For the purposes of the GDPR and other applicable laws, Okuruma Joshi acts as the “data controller,” which means we determine the purpose and means of processing your personal data. You may contact us regarding this policy via email at: [email protected].
3. Categories of Data We Process
We may collect, use, store, and process various categories of personal data, which include the following:
a. Usage Data
This includes data about how you use our website and digital services, such as your browser type and version, pages viewed, referring URLs, session time, IP address, and other diagnostic data.
b. Account Data
This includes any data you provide when creating an account or profile, including your full name, billing/shipping address, email address, and contact phone number.
c. Profile Data
Information associated with your account profile, including saved preferences, previous orders, product interest categorizations, behavior on the site, feedback, and survey responses.
d. Communication Data
Any personal data shared in the context of support requests, email conversations, feedback forms, and contact submissions, including the content of messages and history of correspondence.
e. Technical Data
Data from the devices you use to access our services, including device identifiers, operating system type/version, system language, browser configuration, and other settings.
f. Transaction Data
This relates to purchases made via our website, including transaction dates, items ordered, payment methods (note: payment credentials are processed securely by third-party payment providers), billing name, and delivery tracking information.
g. Preference Data
Marketing and communication preferences, including opt-in or opt-out status for email updates, category interests, and consent flags—processed in accordance with applicable laws.
4. Legal Bases for Processing Personal Data
We process personal data only when we have a valid legal basis to do so. These include:
– Consent: For example, when you opt in to receive newsletters or marketing communications.
– Contractual Necessity: Processing necessary to deliver services, fulfill purchases, or respond to user requests.
– Legitimate Interests: Including website analytics, service optimization, fraud prevention, and improving user experience.
– Compliance with Legal Obligations: In connection with regulatory reporting, fraud investigations, or legal claims.
5. Your Rights Under GDPR and CCPA
Depending on your location and applicable laws, you may exercise the following rights regarding your personal data:
– Right of Access – You may request details of the personal data we hold about you.
– Right to Rectification – If personal data is inaccurate, you have the right to request correction.
– Right to Erasure – You may request that your personal data be deleted, subject to legal retention requirements.
– Right to Restriction – You may request a restriction on the processing of your data in certain circumstances.
– Right to Data Portability – You may obtain your data in a structured, machine-readable format and transmit it to another controller.
– Right to Object – You may object to processing based on legitimate interest, direct marketing, or profiling.
– Right Not to Be Subject to Automated Decision-Making – You may opt out of decisions made exclusively through automated processing.
– Right to Opt Out – Under CCPA, you may opt out of the “sale” of your personal information, if applicable.
To exercise any of these rights, please contact us at: [email protected].
6. Data Security Measures
We implement multiple layers of administrative, technical, and organizational measures to safeguard personal data, including:
– Data encryption in transit and at rest
– Secure user authentication protocols
– Regular system monitoring and vulnerability assessments
– Role-based access control for internal systems
– Backups and disaster recovery planning
– Staff training on data protection and cyber hygiene
While no system is entirely impenetrable, we strive to protect your information using best-in-class industry practices.
7. International Data Transfers
Some of our service providers and processors may be located outside your jurisdiction, including in countries not recognized by the European Commission as providing an adequate level of data protection. When transferring data internationally, we utilize appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission, or rely on other legal mechanisms outlined under GDPR.
Residents of California, the EEA, and other regions should be aware that their data may be processed on servers located outside their region of residence, including in the United States.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes outlined in this Policy, and in accordance with applicable legal, regulatory, tax, accounting, or reporting obligations. Specific retention periods include:
– Account Data: Retained for the lifetime of the active account or until user-initiated deletion
– Transaction Data: Retained for up to 7 years as required for tax/legal obligations
– Communication Data: Retained for 3 years after last interaction
– Technical and Usage Data: Retained for up to 24 months for analytical and troubleshooting purposes
– Marketing Preference Data: Retained until user updates settings or withdraws consent
9. Cookie Policy
We use cookies and similar tracking technologies on okuruma-joshi.com to provide a secure and personalized browsing experience. Cookies are small text files stored in your browser or device.
The types of cookies we use include:
– Essential Cookies: Necessary for core website functionality (e.g., login, cart)
– Functional Cookies: Enhance usability by remembering settings and preferences
– Analytics Cookies: Collect aggregated data on website performance and user behavior
– Performance Cookies: Help optimize loading speed and overall responsiveness
We do not use cookies to collect sensitive personal information without your explicit consent.
10. Cookie Management and Compliance
Users accessing our website from the EU/EEA or California are presented with cookie consent banners in compliance with the applicable laws (GDPR and CCPA). You may withdraw or modify your consent preferences at any time using the cookie settings interface.
You may also control cookie storage using browser settings or third-party tools. Please note that disabling certain cookies may impact website functionality or user experience.
11. Special Protections for Children’s Data
Our website and services are not intended for children under the age of 13. We do not knowingly collect, solicit, or process personal data from users under the age of 13. If we become aware that such data has been collected without parental consent, we will promptly delete it.
If you believe a child has provided us with personal data without appropriate parental or guardian consent, please contact us at: [email protected].
12. Policy Updates and User Notifications
We reserve the right to update or modify this Privacy Policy from time to time to reflect changes in legal, operational, or technological practices. Changes will be posted on this page and, where appropriate, notified to users via email or on-site banners. Please review this policy periodically to remain informed of how your data is being handled.
13. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, you may contact us via:
Email: [email protected]
Website: https://okuruma-joshi.com
We are dedicated to ensuring full compliance with GDPR, CCPA, and other applicable privacy laws. Your data and privacy rights are a priority we take seriously. If you have any privacy-related concerns, please do not hesitate to reach out.