Privacy Policy
1. Introduction
At mondo-usa.com (“we”, “our”, or “us”), your privacy and the protection of your personal information are of paramount importance. We are committed to maintaining the confidentiality, integrity, and security of your data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information when you interact with our website, services, and communications.
2. Scope of the Policy and Role of the Data Controller
This Privacy Policy applies to the processing of personal data collected through our website (mondo-usa.com) and related services. For the purposes of applicable data protection laws, mondo-usa.com is the data controller responsible for the personal information you provide. Should you have any inquiries regarding this policy or your personal data, please contact us at [email protected].
3. Categories of Personal Data Processed
We collect and process various categories of personal data, as detailed below:
a. Usage Data
Includes information regarding how you access and use our website, such as your IP address, browser type and version, referring/exit pages, time zone settings, device identifiers, and browsing behavior.
b. Account Data
Includes personal information you provide when creating an account or making a purchase, such as your full name, billing and shipping addresses, email address, and phone number.
c. Profile Data
Includes information about your preferences, interests, purchase history, and behavioral data related to your interactions with our website and services.
d. Communication Data
Includes records of communication with us, including support requests, customer service interactions, and inquiry history.
e. Technical Data
Includes device information, server configurations, system logs, operating system details, and other technology-related details collected automatically when using mondo-usa.com.
f. Transaction Data
Includes details of payments made, purchase history, order details, shipping data, and other financial details processed in relation to the completion of transactions.
g. Preference Data
Includes marketing and communication preferences, consents provided, interests in specific products or services, and participation in promotions or surveys.
4. Legal Bases for Processing Personal Data
We process your personal data under one or more of the following legal bases:
– Performance of Contract: Processing necessary for the execution of a contract with you, including online purchases and customer service.
– Consent: When required, we rely on your explicit consent to process personal data (e.g., for marketing communications or cookies).
– Legal Obligation: Processing necessary to comply with legal and regulatory requirements.
– Legitimate Interest: Processing based on our legitimate business interests, such as improving our services, preventing fraud, managing our relationship, or understanding usage patterns — provided your fundamental rights do not override these interests.
5. Your Rights
Under GDPR and CCPA, individuals have the following rights in relation to their personal data:
– Right of Access: You may request access to your personal data held by us.
– Right to Rectification: You may correct inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data, subject to legal obligations.
– Right to Restriction: You may request a restriction on the processing of your data.
– Right to Data Portability: You may request a copy of your personal data in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to processing based on legitimate interests or direct marketing.
– Right to Withdraw Consent: Where applicable, you may withdraw your consent at any time, without affecting the lawfulness of processing prior to that withdrawal.
– CCPA “Do Not Sell My Personal Information”: California residents may opt out of the sale of their personal data.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We take appropriate technical and organizational measures to protect your personal data against unauthorized access, disclosure, alteration, and destruction. These include, but are not limited to:
– End-to-end data encryption during transmission and at rest
– Role-based access control and secure authentication
– Regular system and security updates
– Firewall and intrusion detection measures
– Staff awareness training and confidentiality agreements
– Regular backups to prevent data loss
7. International Data Transfers
Personal data may be transferred and processed in countries outside of the European Economic Area (EEA) or the United States. In such cases, we implement appropriate safeguards to ensure an adequate level of data protection, including standard contractual clauses approved by the European Commission and compliance with local regulations. By using mondo-usa.com and providing your data, you consent to such transfers where legally required.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
– Account Data and Transaction Data: Retained for up to 7 years for legal and financial compliance
– Usage and Technical Data: Retained for up to 2 years for analytical and security purposes
– Communication and Support Records: Retained for up to 3 years from the date of last contact
– Preference and Consent Data: Retained until your preferences are updated or consent is withdrawn
After applicable retention periods, data is securely deleted or anonymized.
9. Cookie Policy
mondo-usa.com uses cookies and similar tracking technologies to enhance user experience, analyze performance, and deliver personalized content. Cookies used fall into the following categories:
– Essential Cookies: Necessary for core functionality such as log-in authentication and secure transactions.
– Functional Cookies: Enable enhanced functionality and personalization based on your selections.
– Analytical/Performance Cookies: Allow us to measure website performance and understand visitor interactions.
– Marketing Cookies: Track user behavior to provide tailored marketing messages and promotions.
10. Cookie Management and Compliance with GDPR & CCPA
You can manage your cookie preferences at any time using our cookie consent tool or via your browser settings. Where required by law, we obtain your explicit consent prior to placing non-essential cookies. California residents may opt out of the “sale” of personal information linked to cookies through our “Do Not Sell My Personal Information” settings.
11. Children’s Privacy
mondo-usa.com is not intended for use by individuals under the age of 13. We do not knowingly collect or solicit personal data from children. If we learn we have collected personal data from a child without verified parental consent, we will promptly delete such information. If you believe a child under 13 has provided us with personal information, please contact us immediately at [email protected].
12. Policy Updates and Notifications
We reserve the right to update and modify this Privacy Policy at our discretion to reflect changes in legal or regulatory obligations, operational needs, or user feedback. Material changes will be communicated via our website. We encourage you to review this policy periodically for the latest information on our privacy practices.
13. Contact
If you have any questions, requests, or concerns regarding this Privacy Policy or the processing of your personal data, please contact us at:
Email: [email protected]
We are committed to ensuring full compliance with applicable data protection legislation and maintaining transparency about how we manage your data. Please reach out with any privacy concerns or to exercise your rights.