Privacy Policy

Last Updated: [Date]02 March 2023

Introduction

Welcome to cbdwithoutborders.com (“the Website”). At cbdwithoutborders.com, we value your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, share, and protect your personal information in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Controller

The data controller for this Website is

[Your Company Name]

[Your Company Address]

[Your Company Contact Information]

Data We Collect

Personal Data

We may collect the following categories of personal data:

  • Contact Information: Name, email address, phone number, and postal address.
  • Account Information: Usernames, passwords, and other authentication information.
  • Transaction Data: Information related to purchases, orders, and payments.
  • Usage Data: Information about how you use our Website, including your browsing history, IP address, and device information.
  • Marketing and Communications Data: Your preferences in receiving marketing communications from us.

Special Categories of Personal Data

We do not intentionally collect or process special categories of personal data (sensitive data) unless required for a specific purpose and with your explicit consent.

How We Use Your Data

We use your personal data for the following purposes

  • To provide and maintain our services.
  • To process and fulfill orders.
  • To communicate with you, including responding to your inquiries and providing customer support.
  • To personalize your experience on our Website.
  • To send you marketing communications (only with your explicit consent).
  • To comply with legal obligations.

Legal Basis for Processing

We rely on the following legal bases for processing your personal data

  • Consent: For specific purposes where we have obtained your explicit consent.
  • Contractual Necessity: To perform a contract with you, such as processing orders and payments.
  • Legal Obligation: To comply with our legal obligations.
  • Legitimate Interests: When it is necessary for our legitimate interests and does not infringe upon your fundamental rights and freedoms.

Data Sharing

We may share your personal data with

  • Service Providers: Third-party service providers who assist us in providing and maintaining our services.
  • Legal Authorities: When required to comply with legal obligations or respond to lawful requests.
  • Business Transfers: In the event of a merger, acquisition, or sale of all or part of our business.

Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction.

Your Rights

Under the GDPR, you have the following rights

  • Right to Access: You can request access to your personal data and information about how we process it.
  • Right to Rectification: You can request the correction of inaccurate or incomplete data.
  • Right to Erasure: You can request the deletion of your personal data in certain circumstances.
  • Right to Restriction: You can request the restriction of processing in specific situations.
  • Right to Data Portability: You can request your data in a structured, machine-readable format.
  • Right to Object: You can object to the processing of your data for specific purposes.
  • Right to Withdraw Consent: If we rely on your consent for processing, you can withdraw it at any time.

Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law.

Contact Us

If you have any questions, concerns, or requests regarding your personal data or this Privacy Policy, please contact us [email protected].

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes via email or by prominently posting a notice on our Website.