Privacy Policy for nanoshellnet.com

Effective Date: October 9, 2024
Business Name: nanoshellnet
Website: www.nanoshellnet.com
Business Address: Madiwela, Kotte
Contact Email: info@nanoshellnet.com

At nanoshellnet, we are committed to safeguarding the privacy of our customers, visitors, and users. This Privacy Policy explains how we collect, store, use, and protect your personal information in compliance with the General Data Protection Regulation (GDPR).

1. Data Controller Information

The data controller for this website is nanoshellnet, a business based at Madiwela, Kotte. If you have any concerns or queries about this policy or your data, you can contact us at info@nanoshellnet.com.

2. Data Collection

We collect various types of information to provide and improve our services. The information we collect includes:

a) Personal Information

We may collect the following personal data when you interact with our website:

  • Contact Information: Full name, email address, phone number, mailing address.
  • Payment Information: Billing and payment details when you make purchases on our website. We do not store your full payment card details; these are handled securely by our payment processor.
  • Account Information: Username, password, and security question responses when you register an account.
  • Other Information: Any other details you voluntarily provide through contact forms, surveys, or customer support interactions.

b) Non-Personal Information

We may collect non-identifying information automatically when you visit our site, such as:

  • Browser and Device Information: IP address, browser type, operating system, and language preferences.
  • Usage Data: Information about how you use our website, such as pages viewed, time spent on the site, and navigation patterns.

3. Purpose of Data Collection and Usage

Your data is collected and used for the following purposes:

  • Processing Orders: To complete your transactions, deliver products or services, and provide customer support.
  • Communication: To respond to inquiries, notify you about updates, offers, or product launches relevant to your purchase or interest.
  • Improving Services: To analyze website usage and improve our products, services, and user experience.
  • Marketing: With your consent, we may send you promotional communications, newsletters, and offers via email.
  • Legal Compliance: To comply with applicable legal and regulatory obligations.

4. Legal Basis for Processing Your Data

We process your personal data under the following legal bases, in compliance with the GDPR:

  • Consent: When you have given explicit consent for us to process your personal data for specific purposes, such as marketing communications.
  • Contractual Obligations: When the processing of your data is necessary to fulfill a contract, such as processing payments and delivering orders.
  • Legitimate Interests: For certain essential business purposes, such as improving website functionality and preventing fraud, provided that these interests are not overridden by your data protection rights.
  • Legal Compliance: When necessary to comply with legal obligations, such as tax and anti-fraud laws.

5. Data Storage and Retention

Your personal data will be stored securely and retained for as long as necessary for the purposes described in this Privacy Policy, or as required by law. This retention period may vary depending on the type of data and the purpose of its collection:

  • Transactional Data: Retained for as long as required by applicable law for accounting and tax purposes (e.g., 7 years).
  • Marketing Data: Retained until you withdraw your consent or unsubscribe from our communications.
  • Account Data: Retained as long as your account remains active or until you request deletion.

6. Data Sharing and Third-Party Access

We do not sell or rent your personal information. However, we may share your data with trusted third parties to help us provide our services:

  • Service Providers: We may share your information with third-party service providers (e.g., payment processors, shipping companies, IT support) who assist us in processing transactions or delivering services. These parties are bound by data protection agreements.
  • Legal Obligations: We may share your information when required to comply with a legal obligation, such as responding to lawful requests from public authorities, court orders, or legal processes.
  • Business Transfers: In the event of a merger, acquisition, or asset sale, your data may be transferred to the acquiring entity.

7. Data Security

We employ a variety of security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction:

  • Encryption: All sensitive data, such as payment details, are transmitted over secure HTTPS channels using encryption protocols (e.g., SSL/TLS).
  • Access Controls: Only authorized personnel have access to your personal information, and they are bound by confidentiality agreements.
  • Data Breach Response: In the event of a data breach, we will notify affected individuals and the appropriate authorities in accordance with GDPR requirements.

8. Your Rights Under GDPR

As a user of our website and services, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request corrections to any inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): You can request the deletion of your personal data when it is no longer needed for the purposes it was collected.
  • Right to Restrict Processing: You can request that we restrict the processing of your data under certain circumstances (e.g., if you contest the accuracy of the data).
  • Right to Data Portability: You can request a copy of your data in a structured, machine-readable format, and have it transferred to another data controller.
  • Right to Object: You can object to the processing of your personal data for direct marketing or for legitimate interest purposes.
  • Right to Withdraw Consent: Where we rely on your consent for processing, you can withdraw your consent at any time.

To exercise any of these rights, please contact us at info@nanoshellnet.com. We will respond to your request within one month, in accordance with GDPR.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience, analyze site usage, and personalize content:

  • Essential Cookies: Necessary for the website’s core functionality.
  • Analytical/Performance Cookies: Used to collect information about how visitors use our site, such as which pages are visited most frequently.
  • Marketing Cookies: Used to track your browsing habits to deliver relevant advertisements.

You can manage your cookie preferences through your browser settings or opt out of non-essential cookies when you first visit our site.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, technical, or regulatory reasons. Any changes will be posted on this page, and the updated Privacy Policy will indicate the “Effective Date.” We encourage you to review this page regularly to stay informed of how we are protecting your personal data.

11. Contact Us

If you have any questions or concerns about this Privacy Policy, or if you wish to exercise your GDPR rights, please contact us at:
Email: info@nanoshellnet.com
Address: Madiwela, Kotte

By using our website, you consent to the terms outlined in this Privacy Policy.