Privacy Policy for OneTeam Film
1. Introduction
At OneTeam Film, accessible via oneteamfilm.com, we recognize and deeply respect the importance of your privacy. This Privacy Policy outlines our commitment to safeguarding personal data in accordance with the European Union General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and all applicable data protection laws. Our goal is to maintain the trust of all visitors, users, and customers by upholding rigorous standards of transparency, security, and user control.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through oneteamfilm.com and associated services. For the purpose of the GDPR, OneTeam Film acts as the “Data Controller” of your personal data. This means that we alone determine the purposes and methods for processing your personal information. Our contact email for privacy matters is [email protected].
By using our website or otherwise providing us your personal data, you acknowledge that you have read and understood this Privacy Policy.
3. Categories of Personal Data We Process
Depending on your interaction with our website and services, we may collect and process the following categories of personal data:
3.1. Usage Data
Information about how you use our website, including your IP address, browser type, operating system, referral URLs, access dates and times, pages viewed, and session duration. We collect this through server logs and tracking technologies such as cookies.
3.2. Account Data
Personal identification details you may provide when registering or interacting with our services, including your full name, mailing address, email address, and telephone number.
3.3. Profile Data
Information related to your preferences, interests, purchase history, actions on the site, and behavior patterns that you exhibit while interacting with oneteamfilm.com.
3.4. Communication Data
Any correspondence you send us including support requests, inquiries, and messages, along with metadata connected to those communications.
3.5. Technical Data
Details relating to the device and system you use to access our services, such as device type, unique device identifiers, screen resolution, language settings, operating system, and browser configurations.
3.6. Transaction Data
Records relating to payments and purchases you make via the site, including billing and delivery addresses, payment method details, and order details.
3.7. Preference Data
Your expressed preferences on how we communicate with you, such as email marketing consents, subscription topics, notification settings, and product interest areas.
4. Legal Bases for Processing Personal Data
We rely on the following GDPR-compliant legal bases for processing your personal data:
– Consent: When you have explicitly agreed to the processing for specific purposes (e.g., receiving marketing emails).
– Contractual necessity: Where processing is required to fulfill our contractual obligations to you (e.g., order processing).
– Legal obligation: To comply with our legal responsibilities (e.g., accounting, taxation).
– Legitimate interests: For purposes that are reasonably expected and do not unduly infringe on your rights, such as service improvement, security monitoring, and fraud prevention.
5. Your Data Protection Rights
You have the right, under applicable data protection laws, to:
– Access: Obtain confirmation and a copy of the personal data we hold about you.
– Rectification: Request that we correct inaccuracies in your personal information.
– Erasure: Request deletion of your data (“right to be forgotten”), subject to legal limitations.
– Restriction: Ask us to limit processing where appropriate.
– Portability: Receive a copy of your data in a structured, commonly used, machine-readable format and transmit it to another service provider.
– Objection: Object to data processing based on our legitimate interests or direct marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We enforce industry-standard security protocols to safeguard your personal information. Our security measures include:
– Data encryption (in transit and at rest)
– Access control and authentication systems
– Secure servers and firewall infrastructure
– Regular data backups and disaster recovery planning
– Staff training on data protection best practices and confidentiality obligations
While no system is completely immune to risk, we actively update and audit our protocols to ensure a high standard of security.
7. International Data Transfers
If your personal data is transferred outside of your country of residence, including to countries that may not provide the same level of data protection as your jurisdiction, we implement appropriate lawful safeguards. These include standard contractual clauses approved by the European Commission, compliance mechanisms under the UK GDPR, or reliance on adequacy decisions, where applicable.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including satisfying any legal, regulatory, tax, or accounting requirements. Retention periods vary by data type:
– Usage Data: up to 12 months
– Account, Profile, and Transaction Data: retained for up to 7 years post account closure for legal compliance
– Communication and Technical Data: retained for 3 years
– Preference Data: retained until you modify preferences or withdraw consent
Upon expiration of the relevant retention period, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance user experience. Cookies are categorized as follows:
– Essential Cookies: Required for the basic operation of the site (e.g., session management, navigation).
– Functional Cookies: Support site personalization and preferences (e.g., language settings).
– Analytics Cookies: Help us understand visitor interaction with the site (e.g., Google Analytics).
– Performance Cookies: Support assessment and improvement of website speed and responsiveness.
10. Cookie Management and Legal Compliance
Under the GDPR and CCPA, users have the right to manage non-essential cookie usage. When accessing oneteamfilm.com, you are presented with clear options to accept, reject, or personalize cookie usage.
You may also manage your cookie settings through browser controls. Note that restricting cookies may impact site functionality.
CCPA Notes: If you are a California resident, you may opt out of the sale of your personal information and request to know or delete data collected. We do not sell your personal data, as defined under the CCPA.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If you believe we may have collected such data mistakenly, please notify us immediately via [email protected] so that we can take prompt corrective action.
12. Policy Updates
We may revise this Privacy Policy from time to time to reflect changes in legislation, technological developments, or our internal practices. Material changes will be communicated to you via prominent announcements on oneteamfilm.com or other designated means. You are encouraged to review this page periodically to stay informed.
13. Contact
If you have any questions, concerns, or data protection requests related to this Privacy Policy or our practices, you may reach us at:
Email: [email protected]
We will respond to all legitimate inquiries in accordance with applicable data protection regulations.
At OneTeam Film, we are committed to transparency, accountability, and ensuring that your rights and privacy come first. Please contact us if you have any concerns or wish to exercise your rights under data protection law.