Data Protection and Security Policy

1. Introduction

Aspira CDE (“we,” “our,” “us”) is committed to protecting the privacy and security of our users’ personal information. This Data Protection and Security Policy outlines how we collect, use, store, and protect personal data, ensuring compliance with relevant data protection laws and regulations. By using our website, you agree to the terms of this policy.

2. Data Collection

2.1 Personal Data We Collect
We may collect various types of personal data, including but not limited to:

  • Contact Information: Name, email address, phone number, and mailing address.
  • Demographic Information: Age, gender, preferences, and interests.
  • Transactional Information: Details about your interactions with our services, including payment information.
  • Technical Information: IP address, browser type, operating system, device information, and usage data.
  • Communication Information: Messages, inquiries, and feedback you provide through our website or other communication channels.

2.2 How We Collect Data
We collect personal data in several ways:

  • Directly from You: When you fill out forms, make purchases, or communicate with us.
  • Automatically: Through cookies, web beacons, and other tracking technologies as you navigate our website.
  • Third Parties: From partners, service providers, or publicly available sources, where applicable.

3. Use of Personal Data

3.1 Purpose of Data Processing
We process personal data for the following purposes:

  • Providing Services: To fulfill your requests, process transactions, and deliver products or services.
  • Communication: To send you updates, newsletters, and other information that may be of interest to you.
  • Personalization: To tailor content, recommendations, and marketing to your preferences and interests.
  • Security and Fraud Prevention: To protect our website and users from unauthorized access, security threats, and fraudulent activities.
  • Legal Compliance: To comply with legal obligations, enforce our terms and policies, and protect our rights.

3.2 Legal Basis for Processing
We process personal data based on one or more of the following legal grounds:

  • Consent: When you have given us explicit consent to process your data for specific purposes.
  • Contractual Necessity: When processing is necessary to fulfill a contract with you or take steps at your request before entering into a contract.
  • Legal Obligation: When processing is required to comply with legal obligations.
  • Legitimate Interests: When processing is necessary for our legitimate business interests, provided that these interests do not override your rights and freedoms.

4. Data Storage and Retention

4.1 Data Storage
We store personal data securely using industry-standard encryption and access controls to prevent unauthorized access, disclosure, or alteration. Our data storage facilities are regularly monitored and updated to ensure maximum protection.

4.2 Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Once the retention period has expired, personal data will be securely deleted or anonymized.

5. Data Sharing and Disclosure

5.1 Third-Party Service Providers
We may share personal data with trusted third-party service providers who assist us in operating our website, conducting our business, or providing services to you. These third parties are contractually obligated to protect your data and use it only for the purposes specified by us.

5.2 Legal Obligations and Rights Protection
We may disclose personal data when required by law, legal process, or government request. We may also disclose data to protect our rights, property, and safety, or the rights, property, and safety of others.

5.3 Business Transfers
In the event of a merger, acquisition, or sale of all or a portion of our assets, personal data may be transferred as part of the transaction. We will notify you of any such change in ownership or control of your personal data.

6. Data Security

6.1 Security Measures
We implement a variety of security measures to protect personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: Secure data transmission using SSL/TLS protocols.
  • Access Controls: Restricted access to personal data based on the principle of least privilege.
  • Monitoring: Regular monitoring of our systems for security vulnerabilities and threats.
  • Employee Training: Ongoing training for employees on data protection best practices and policies.

6.2 Incident Response
In the event of a data breach or security incident, we have procedures in place to respond promptly and effectively. We will notify affected individuals and relevant authorities as required by law.

7. Your Rights

7.1 Access and Correction
You have the right to request access to the personal data we hold about you and to request corrections if the data is inaccurate or incomplete.

7.2 Data Portability
You have the right to request a copy of your personal data in a structured, commonly used, and machine-readable format, and to request that we transmit the data to another data controller where technically feasible.

7.3 Data Erasure
You have the right to request the deletion of your personal data, subject to certain exceptions, such as compliance with legal obligations or the exercise of legal claims.

7.4 Objection and Restriction
You have the right to object to the processing of your personal data or request that we restrict the processing of your data under certain circumstances.

7.5 Withdrawal of Consent
If you have provided consent for the processing of your personal data, you have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

8. International Data Transfers

If your personal data is transferred to countries outside the European Economic Area (EEA) or other jurisdictions with data protection laws that may differ from your own, we will ensure that appropriate safeguards are in place to protect your data. This may include using Standard Contractual Clauses approved by the European Commission or other legally recognized mechanisms.

9. Changes to This Policy

We may update this Data Protection and Security Policy from time to time to reflect changes in our practices or legal requirements. We encourage you to review this policy periodically to stay informed about how we protect your data. Any changes will be effective immediately upon posting on our website.

10. Contact Us

If you have any questions or concerns about this Data Protection and Security Policy, or if you wish to exercise your rights, please contact us at:

Aspira CDE
7400 NW 29th Street Margate, FL 33063
Email: info@aspiracommunity.com
Phone:(754) 224-7646

Last Updated: 08/02//24

Data Protection and Security Policy