GDPR Compliance Statement
At Waruch Freight Logistics, we are committed to protecting the privacy and personal data of our customers in accordance with the General Data Protection Regulation (GDPR). This GDPR Compliance Statement outlines our practices and measures implemented to ensure compliance with the GDPR.
- Lawful Basis for Processing Personal Data
We process personal data on the lawful bases as defined by the GDPR, which may include the necessity of processing for the performance of a contract, compliance with legal obligations, protection of vital interests, consent, and legitimate interests pursued by Waruch Freight Logistics or a third party.
- Collection and Use of Personal Data
We collect and process personal data for specific purposes and provide transparent information regarding the processing activities. The types of personal data we collect may include:
2.1. Contact Information: Such as your name, email address, phone number, and mailing address.
2.2. Transaction Information: Information about the products and services you purchase or request through our Services, as well as your payment details.
2.3. Log Information: When you use our Services, we automatically collect certain information about your usage, such as your IP address, device information, browser type, access times, and referring website addresses.
We use the personal data we collect for the following purposes:
2.4. Providing Services: To fulfill orders, process payments, deliver products, and provide customer support.
2.5. Communication: To communicate with you regarding your purchases, respond to your inquiries, and provide important information or updates about our services.
2.6. Marketing: With your consent, we may send you promotional emails about our products, services, and special offers. You have the option to opt out of receiving these communications at any time.
2.7. Legal Compliance: To comply with applicable laws, regulations, or legal processes, or to respond to lawful requests or legal authorities.
- Data Subject Rights
Under the GDPR, you have certain rights regarding your personal data. These rights include:
3.1. Right to Access: You have the right to request access to the personal data we hold about you and receive a copy of that data.
3.2. Right to Rectification: If you believe that the personal data we hold about you is inaccurate or incomplete, you have the right to request its rectification.
3.3. Right to Erasure: You have the right to request the erasure of your personal data under certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.
3.4. Right to Restriction of Processing: You have the right to request the restriction of processing of your personal data in certain situations, such as when you contest the accuracy of the data or the lawfulness of the processing.
3.5. Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where technically feasible.
3.6. Right to Object: You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes.
- Data Security
We implement appropriate technical and organizational measures to ensure the security and confidentiality of personal data, protecting it against unauthorized access, loss, destruction, or alteration. We regularly review and enhance our security measures to maintain a high level of data protection.
- Data Transfers
In certain cases, we may transfer personal data to countries outside the European Economic Area (EEA) that may not provide an adequate level of data protection. In such cases, we will ensure appropriate safeguards are in place to protect the data in accordance with the GDPR requirements.
- Data Retention
We retain personal data only for as long as