PRIVACY POLICY
1. Introduction
At RCA Engineering, accessible via https://rcaengineering.com (“Website”), we are committed to safeguarding your privacy and ensuring the security of your personal data. This Privacy Policy details how we collect, use, disclose, and safeguard your information in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We honor transparency, accountability, and the trust you place in us when you engage with our Website.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or interact with our Website or services. RCA Engineering is the data controller for the personal data we collect and process, determining the means and purposes for such processing. If you have any questions or concerns about how your data is handled, you may contact us at [email protected].
3. Categories of Data Processed
We process various categories of personal data to provide and improve our services. These categories include:
a. Usage Data
We collect information automatically through your interaction with the Website, including:
– Browser type and version
– IP address
– Session date and time
– Pages visited and referring URLs
– Device identifiers and usage patterns
b. Account Data
When you register or create an account, we may collect:
– Full name
– Email address
– Telephone number
– Billing and shipping addresses
c. Profile Data
Collected through your interaction with our Website:
– Preferences and interests
– Past purchases and transaction history
– Behavioral data and user journey
d. Communication Data
Information provided when you contact us or request support:
– Email communications
– Support inquiries
– Call and chat transcripts
– Feedback and survey responses
e. Technical Data
We collect system-related information, including:
– Device type and operating system
– Browser settings and plugins
– Screen resolution and system configurations
– Internet service provider (ISP) details
f. Transaction Data
Information related to your purchases and orders, such as:
– Products or services purchased
– Payment method (processed via third-party secure payment processors)
– Delivery addresses and logistical information
g. Preference Data
Collected with your consent, this may include:
– Marketing and communication consents
– Language, location, and content preferences
– Affinity towards certain products or services
4. Legal Bases for Processing
We process your personal data based on one or more of the following legal bases:
– Contractual Necessity: To provide and manage services you request or purchase from our Website.
– Legitimate Interests: To improve user experience, ensure security, and analyze Website performance, as long as these interests do not override your fundamental rights and freedoms.
– Consent: Where required, we request your informed consent prior to certain data processing activities such as marketing communications or cookie usage.
– Legal Obligation: Where processing is necessary to comply with applicable legal requirements.
5. Your Rights
Under GDPR, CCPA, and related privacy legislations, you have several rights in relation to your personal data. These include:
– Right of Access: You may request access to your personal data that we hold.
– Right to Rectification: You may request corrections for inaccurate or incomplete data.
– Right to Erasure: You may request the deletion of your data, subject to certain lawful exceptions.
– Right to Restriction: You may request limits on the processing of your data.
– Right to Data Portability: You may request your data in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to processing based on legitimate interests or direct marketing.
To exercise any of these rights, please email us at [email protected].
6. Security Measures
We implement and maintain a comprehensive set of security measures to protect your personal data, including:
– Encryption of sensitive data in transit and at rest
– Access control and authentication mechanisms
– Regular system monitoring and vulnerability assessments
– Secure backups and disaster recovery protocols
– Employee privacy and security training
Despite our efforts, no system can be entirely secure. You are encouraged to take steps to help protect your account and personal information.
7. International Transfers
Your data may be transferred to, and stored in, countries outside your jurisdiction, including countries that may not offer the same level of data protection. Where such transfers occur, we implement appropriate safeguards, such as Standard Contractual Clauses or legally recognized mechanisms ensuring an adequate level of protection consistent with applicable data protection laws.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law. Specific retention periods include:
– Usage and Technical Data: 12–24 months
– Account and Profile Data: retained for the duration of the user relationship and for 6 years after account closure
– Communication Data: retained for up to 5 years post-interaction
– Transaction Data: retained for 7 years for legal and tax obligations
– Preference and Marketing Data: retained for 2 years following inactivity or revocation of consent
9. Cookie Policy
Our Website uses cookies and similar tracking technologies for various purposes:
a. Essential Cookies
Required for core site functionality and navigation. Disabling these may impact your ability to use certain features.
b. Functional Cookies
Enhance user experience by remembering user preferences and settings.
c. Analytics Cookies
Allow us to measure and analyze Website traffic, usage trends, and performance metrics.
d. Performance Cookies
Improve response times and optimize service performance.
10. Cookie Management and Compliance with GDPR & CCPA
You have the right to manage your cookie preferences. Upon visiting our Website, you will be presented with a cookie consent banner allowing you to accept or decline categories of cookies. You may also adjust your preferences through your browser settings or our dedicated cookie management tool provided on https://rcaengineering.com.
Under the CCPA, California residents have the right to opt out of the “sale” of personal information. We do not sell personal information as defined under the CCPA.
11. Special Protections for Children Under 13
RCA Engineering does not knowingly collect or process personal data from children under the age of 13. If we learn that such data has been collected, we will take immediate steps to delete the information and, where appropriate, notify relevant authorities. If you believe a child’s data has been disclosed inappropriately, please contact us at [email protected].
12. Policy Updates and User Notifications
We may update this Privacy Policy periodically to reflect changes in law, technology, or our practices. Substantial modifications may be communicated via email (where consent has been provided) or prominently on the Website. Continued use of https://rcaengineering.com after such updates constitutes acceptance of the revised policy.
13. Contact
If you have questions, concerns, or requests relating to this Privacy Policy or our data protection practices, please contact us at:
RCA Engineering
Email: [email protected]
Website: https://rcaengineering.com
We are committed to protecting your privacy and complying with all applicable data protection regulations. Please do not hesitate to reach out with any concerns regarding your personal data or our privacy practices.