Privacy Policy for GrillCo Inc.
1. Introduction
At GrillCo Inc. (“GrillCo”, “we”, “our”, or “us”), accessible via grillcoinc.com, we are committed to protecting and respecting your privacy. We place the highest priority on safeguarding your data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, store, share, and protect your personal information when you interact with us through our website and services.
2. Scope and Data Controller
This Privacy Policy applies to all users and visitors of grillcoinc.com and its associated services. For the purposes of the GDPR, GrillCo Inc. is the data controller responsible for the processing of your personal data. As the controller, we determine the purposes and means by which your personal information is processed.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Includes information such as your browser type, IP address, device IDs, session duration, time zone settings, language preferences, and browsing behavior on grillcoinc.com.
b. Account Data
Includes your full name, email address, postal address, phone number, account credentials, and other identifying details you provide during account registration or checkout.
c. Profile Data
Includes your preferences, product interests, order history, behavioral patterns, and other data derived from your interaction with our content and services.
d. Communication Data
Includes inquiries, support requests, messages sent via contact forms, email communications, and metadata associated with such correspondences.
e. Technical Data
Includes hardware model, operating system version, screen resolution, system settings, and unique device identifiers.
f. Transaction Data
Includes payment card details (processed through third-party secure gateway providers), transaction timestamps, billing information, order fulfillment data, and delivery addresses.
g. Preference Data
Includes your selection and submission of marketing preferences, product interest disclosures, and consent responses related to data usage and electronic communications.
4. Legal Bases for Processing
We process your personal data under one or more of the following lawful bases:
– Consent: Where you have provided clear, affirmative consent for specific purposes such as marketing communications.
– Contractual Necessity: Where processing is required to fulfill a contract with you, including processing payments and delivering services or products.
– Legal Obligation: Where we are legally required to process your data, such as for tax and compliance matters.
– Legitimate Interest: Where we have a genuine business interest in processing your data, such as improving our services, preventing fraud, maintaining security, and marketing to existing customers — provided those interests do not override your fundamental rights and freedoms.
5. Your Rights
Under applicable data protection laws, you have the following rights:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data, subject to lawful retention grounds.
– Right to Restriction: You may request that we restrict processing of your data under certain circumstances.
– Right to Data Portability: You may request a copy of your data in a structured, machine-readable format and, where feasible, transmission to another controller.
– Right to Object: You may object to our processing based on legitimate interests or direct marketing.
You may exercise any of these rights by contacting us at [email protected]. Where permitted, we may require verification of your identity before fulfilling certain requests.
6. Security Measures
We implement robust and industry-standard security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:
– End-to-end encryption of sensitive data in transit and at rest;
– Restricted access controls based on roles and job functions;
– Regular security audits and internal reviews;
– Secure development and change management processes;
– Ongoing staff training in cybersecurity and privacy compliance;
– Regular backups to ensure data integrity and availability.
7. International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA), including hosting facilities, service providers, or third parties located in countries that may not offer the same level of protection, we ensure that authorized transfer mechanisms are in place. These include the use of Standard Contractual Clauses approved by the European Commission, adherence to the EU-U.S. Data Privacy Framework (where applicable), and supplementary security measures.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal, tax, or regulatory requirements. Retention periods vary depending on the type of data:
– Account and profile data: Retained for the duration of your user relationship and for up to 7 years thereafter;
– Transactional data: Retained for 7 years to meet accounting and tax obligations;
– Technical, usage, and communication data: Retained up to 24 months after collection;
– Marketing preference data: Retained until consent is withdrawn or request to delete is received.
9. Cookie Policy
Grillcoinc.com uses cookies and similar technologies to enhance user experience and analyze website performance. The types of cookies we use include:
– Essential Cookies: Necessary for the functioning of the website, such as access to secure areas or authentication mechanisms.
– Functional Cookies: Enable personalization based on your preferences such as language, location, or layout settings.
– Analytics Cookies: Collect aggregated, anonymous information about visitor behavior to improve website performance and usability.
– Performance Cookies: Help us identify and resolve issues on the site and assess the effectiveness of our content.
10. Cookie Management and Compliance
Upon your first visit to grillcoinc.com, you will be presented with a cookie banner that allows you to manage your preferences in accordance with GDPR and CCPA requirements. You may update or withdraw consent at any time by accessing the cookie settings through your browser or our cookie consent tool. Users may also configure their browsers to refuse non-essential cookies or alert them when cookies are being used.
California residents may exercise their rights to opt out of the sale or sharing of personal information under the CCPA via our dedicated “Do Not Sell or Share My Personal Information” mechanism available on our site.
11. Children’s Privacy
We do not knowingly collect personal data from individuals under the age of 13. If we become aware that we have inadvertently obtained information from a child under 13, we will take steps to delete such information promptly. Parents or legal guardians who believe we may be handling a child’s data without proper consent are encouraged to contact us at [email protected].
12. Updates to This Policy
We may update this Privacy Policy at our discretion to reflect changes in regulatory requirements, user feedback, or technical changes in how we operate. Significant changes affecting your rights will be prominently communicated via our website or designated contact channels. Your continued use of grillcoinc.com after such modifications constitutes your acknowledgment of the updated policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact us at:
GrillCo Inc.
Email: [email protected]
Website: https://grillcoinc.com
We are committed to maintaining your trust and complying fully with GDPR, CCPA, and other applicable privacy laws. Please contact us if you believe your data is being handled inconsistently with this Privacy Policy.