Data Privacy and Protection Policy
Effective Date: 12/25/2024
Last Updated: 12/25/2024
Consonance Inc. dba Accompany ("Company," "we," "us," or "our") is committed to protecting the privacy and security of the personal data we collect from our clients, customers, and users ("you" or "your"). This policy outlines how we collect, use, store, and protect your personal data in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant regulations.
1. Purpose
The purpose of this policy is to ensure that all personal data collected, processed, and stored by the Company is handled responsibly and in compliance with data protection laws. We aim to provide transparency about how we collect, use, and safeguard your data.
2. Scope
This policy applies to all personal data processed by the Company, including data collected from clients, customers, employees, contractors, and other third parties.
3. Data We Collect
We may collect the following categories of personal data:
- Personal Identification Information: Name, address, email, phone number, date of birth, gender.
- Financial Information: Payment details, billing information, and transaction history.
- Usage Data: Information on how you use our services, including IP address, browser type, device information, and pages visited.
- Communication Data: Emails, phone calls, or messages sent to us, including feedback and inquiries.
4. How We Collect Your Data
We collect your data in the following ways:
- Directly from You: When you fill out forms on our website, register for our services, or provide information during phone or in-person consultations.
- Automatically: Through cookies, tracking technologies, or server logs when you interact with our website or services.
- Third Parties: We may receive data from third-party service providers or partners, where you have provided consent to share information.
5. Purpose for Collecting Data
We collect and process personal data for the following purposes:
- To provide, operate, and maintain our services.
- To process transactions and manage billing or payments.
- To communicate with you, including responding to inquiries and providing support.
- To personalize and improve our services and user experience.
- To send marketing communications, where you have provided explicit consent.
- To comply with legal obligations and regulatory requirements.
6. Legal Basis for Processing Data
We process personal data based on one or more of the following legal grounds:
- Consent: You have provided your explicit consent to the processing of your personal data.
- Contractual Necessity: Processing is necessary to perform a contract with you or take steps before entering into a contract.
- Legal Obligation: We are required to process your data to comply with legal obligations.
- Legitimate Interest: We process data to pursue our legitimate business interests, provided this is not overridden by your rights and interests.
7. Data Sharing and Disclosure
We will not sell or rent your personal data. However, we may share your data with third parties in the following circumstances:
- Service Providers: We may share data with third-party vendors who help us operate our business (e.g., payment processors, IT service providers, or marketing agencies).
- Legal Compliance: We may disclose your data to comply with legal requirements, court orders, or government regulations.
- Business Transfers: In the event of a merger, acquisition, or asset sale, your data may be transferred as part of the business transaction.
All third-party service providers are required to handle your personal data in accordance with this policy and applicable data protection laws.
8. Data Security
We are committed to securing your personal data and have implemented appropriate technical and organizational measures to prevent unauthorized access, loss, or disclosure of your data. These include:
- Encryption of sensitive data during transmission and storage.
- Access controls and authentication measures to restrict access to authorized personnel only.
- Regular security audits and monitoring of systems for vulnerabilities.
- Secure destruction of personal data when no longer needed.
9. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Right to Access: Request a copy of the personal data we hold about you.
- Right to Rectification: Request correction of inaccurate or incomplete personal data.
- Right to Erasure: Request the deletion of your personal data under certain conditions.
- Right to Restrict Processing: Request a limitation on how we process your data.
- Right to Data Portability: Request that your data be transferred to you or another service provider.
- Right to Object: Object to the processing of your personal data in certain circumstances, such as direct marketing.
To exercise any of these rights, please contact us at info@iaccompamnyu.com. We will respond to your request within the time frame required by law.
10. Data Retention
We will retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, or for as long as required by law. When your personal data is no longer necessary, we will securely delete or anonymize it.
11. International Data Transfers
If we transfer your personal data outside of your jurisdiction (e.g., to a country outside the European Economic Area), we will ensure appropriate safeguards are in place to protect your data, in accordance with applicable data protection laws.
12. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to collect information about your use of our website. You can manage your cookie preferences or opt-out of non-essential cookies through your browser settings.
For more information, please see our [Cookie Policy].
13. Children’s Privacy
Our services are not intended for individuals under the age of [insert age, e.g., 16]. We do not knowingly collect personal data from children without verifiable parental consent. If we become aware that we have collected personal data from a child, we will delete it immediately.
14. Changes to This Policy
We may update this policy from time to time to reflect changes in our practices or legal requirements. Any updates will be posted on our website, and where necessary, we will notify you of significant changes.
15. Contact Us
If you have any questions or concerns about this Data Privacy and Protection Policy or our handling of your personal data, please contact us at:
Consonance Inc. dba Accompany
Email: info@iaccompanyu.com