Our Data Privacy Principles
Mavea LLC (“Mavea,” the “Company, ” “we,” “us” or “our”) and its United States and international subsidiaries and affiliates are committed to maintaining the accuracy, confidentiality and security of the personal data that the Company collects from or about you at this Internet website (the “Website”).
This Policy applies to all information and data collected by the Company from you while using this Website.
If you have any questions regarding this Policy or the types of information collected, feel free to contact the Company’s privacy office, reachable at:firstname.lastname@example.org
If you have any questions about this policy, please contact Company at:
300 Roundhill Drive, Unit 2
Rockaway, NJ 07866 USAMAVEA can be reached via e-mail at: email@example.com
Except as otherwise defined in this Policy, capitalized terms have the meanings set forth herein.
“Agent” means a third-party organization that performs tasks on behalf of and under the instructions of the Company.
“Directive” means the European Union Data Protection Directive 95/46/EC.
“Identifiable natural person” means a person who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his or her physical, physiological, mental, economic, cultural or social identity.
“Personal data” means any information about an identified or identifiable natural person, including, without limitation, first and last name, company address, company name, email address, mobile phone number, credit card information, password, and inquiry information.
Compliance with Local Laws
This Policy is meant to guide the Company with respect to personal data collected from or about you at this Website. However, the Company has operations in many states and nations which have varied laws, rules and regulations related to the privacy of personal data. It is the Company’s policy to comply with the privacy laws within each jurisdiction in which the Company operates.
While this Policy applies to personal data generally, the local laws, rules and regulations of jurisdictions that are applicable to the Company (“Local Laws”) may require standards which are stricter than this Policy and, in such event, the Company will comply with applicable Local Laws. Specific privacy policies may be adopted to address the specific privacy requirements of particular jurisdictions. After personal data is collected from or about you at this Website, that information may ultimately be stored on the Company’s affiliate’s server(s) in Germany. If applicable, such information will be governed by the Local Laws of Germany and the Directive.
Collection and Use of Personal Data
Personal Information You Provide
The privacy and security of the personal data that the Company collects from you is a priority for the Company. When you visit the Website, you may be asked or choose to provide personal data that could reasonably be used to contact you or to identify you personally. By submitting personal data to the Company at this Website, you hereby consent to the Company’s collection, use and disclosure of such personal data.
We may combine the personal data you submit directly through the Website with other personal data we have collected from you, whether on- or offline. We may also combine it with information we receive about you from other sources, such as companies, publicly available information sources (including information from your publicly available social media profiles), and other third parties.
Passive Information Collection and Use
As you navigate the Website, certain information can be passively collected (that is, gathered without you actively providing the information), using various technologies. We and our third party service providers passively collect and use information in a variety of ways, including:
Through your browser: Certain information is collected by most browsers, such as your Media Access Control (MAC) address, computer type (Windows or Macintosh), screen resolution, operating system version, and Internet browser type and version. We may collect similar information, such as your device type and identifier, if you access the Website through a mobile device.
IP Address: Your IP address is a number that is automatically assigned to the computer that you are using by your Internet Service Provider. An IP Address is identified and logged automatically in our server log files whenever a user visits the Website, along with the time of the visit and the page(s) that were visited. Collecting IP Addresses is standard practice on the Internet and is done automatically by many web sites. We use IP Addresses for purposes such as calculating Website usage levels, helping diagnose server problems, and administering the Website. Device Information: We may collect information about your device, such as a unique device identifier. Do Not Track Requests: At this time, the Company does not respond to Do Not Track signal requests.
How We Use and Disclose Information
Any information you give us through the Website may be transmitted to servers outside the country where the information was entered, and may be used, stored, and processed outside the country where it was entered.
The Company may also use and transfer personal data that you submit at the Website under the following circumstances:
To respond to your inquiries and fulfill your requests, such as to send you documents or information you request or email;
To send you products, information or services, which may include sharing your personal data with our business partners, financial institutions and shipping companies, the postal authorities, and/or the government;
To send you important information regarding our relationship with you or regarding the Website, changes to our terms, conditions, and policies and/or other administrative information;
For our business purposes, such as marketing new products and services, data analysis, audits, developing new products or services, enhancing the Website, improving our products and services, identifying Website usage trends, and determining the effectiveness of the Website;
Where the Company is permitted to do so under applicable law, to allow our third party service providers (who may be located in our outside of the nation where you reside) to perform services for us, including, without limitation, website hosting and moderating, mobile application hosting, data analysis, infrastructure provision, credit card processing, IT services, email services, marketing services, auditing services, and other services; and
To a third party, in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in connection with any bankruptcy or similar proceedings. In such event, your personal data may become the property of the successor and will be subject to the successor’s privacy policies.
Even after you have consented to the Company’s collection and use of your personal data and submitted personal data to the Company at this Website, you may opt-out of having your personal data collected or used by the Company by contacting the Company at firstname.lastname@example.org. We will seek to comply with your request as soon as reasonably practicable. Please note that in order to fulfill certain obligations, we may need to continue sending you notices or other important information concerning any orders or services you request.
General Principles for the Processing of Personal Data
Personal data will be collected, stored, processed and transmitted in accordance with the Company’s established policies and applicable federal, state, local and foreign laws, rules and regulations.
The principles of the Company with respect to the processing of personal data are as follows: (1) personal data will be processed fairly and lawfully, (2) personal data will be collected for specified, explicit, and legitimate purposes and not further processed for incompatible purposes, (3) personal data collected by the Company will be adequate, relevant, and not excessive in relation to the purposes for which it is collected, (4) personal data collected by the Company will be accurate and, where necessary, kept up to date, and (5) personal data collected by the Company will be retained as identifiable data for no longer than necessary to serve the purposes for which the personal data was collected.
If the Company engages in the processing of personal data for purposes other than those specified in this Policy, the Company will provide notice of these changes, the purposes for which the personal data will be used, and the recipients of personal data.
Third Party Sites and Services
This Policy does not address, and we are not responsible for, the privacy, information, or other practices of any third party, including any third party operating any site or web property (including, without limitation, and application) that is available through this Website or to which this Website contains a link. The availability of, or inclusion of a link to, any such site or property on this Website does not imply endorsement of it by us or by our affiliates.
The Company will take reasonable steps to protect the personal data in its possession from loss, misuse, unauthorized access, disclosure, alteration, and destruction, and will take all useful precautions with regard to the nature of the data and the risks of the processing, to preserve the security of the data and, in particular, prevent its alteration and damage or access by non- authorized third parties. The Company has put in place appropriate technical, physical, and organizational procedures and security measures to safeguard and secure the personal data from destruction, loss, alteration, unauthorized access or disclosure, or other forms of unauthorized or unlawful processing commensurate with the risks posed by the particular type of processing, the nature of the personal data and in accordance with applicable law and applicable guidelines, and taking into consideration the cost of implementing such measures.
The Company implements reasonable security measures consistent with industry practices to protect your personal data. As a rule, any personal data exchanged between you and the Company will be transferred via encrypted connections consistent with industry standards. We take technical and organization security measures in order to prevent your personal data administered by us from being accidentally or deliberately manipulated, lost or accessed by unauthorized persons.
Access to personal data is limited to Company personnel who have a need to know such information for purposes of performing their job functions or as otherwise permitted under this Policy.
The Company cannot guarantee the security of personal data on or transmitted via the Internet.
It is your responsibility to provide the Company with accurate personal data. Except as otherwise set forth in this Policy, the Company shall only use personal data in ways that are compatible with the purposes for which it was collected or subsequently authorized by you. To the extent necessary for these purposes, the Company shall take reasonable steps to ensure that personal data is accurate, complete, current and relevant to its intended use.
Upon request by you, the Company will grant you reasonable access to your personal data. Except where your rights are limited by applicable law (e.g., where necessary to safeguard national security, defense, or public security, for the prevention and detection of crime, or to safeguard an important economic or financial interest of the nation in which you reside, the employee, or the rights and freedoms of others, for the purpose of scientific research or statistical purposes, provided that the data is not used for making decisions that relate to a particular individual), such access will include: (1) confirmation as to whether or not your personal data is being processed and, if so, information as to the purposes of the processing, the categories of personal data processed, and the recipients (or categories of recipients) of the personal data; (2) communication in intelligible form of the personal data undergoing processing and information as to its source; and (3) details of the logic involved in any automatic processing of the personal data. The Company will permit you to correct, amend or delete inaccurate or incomplete personal data, except where the burden or expense of providing access would be disproportionate to the risks to the privacy of the individual in the case in question or where the rights of persons other than the individual would be violated.
ComplianceThe Company will use a self-assessment approach to verify compliance with this Policy and periodically verify that the Policy is accurate, comprehensive for the information intended to be covered, prominently displayed, implemented and accessible.
If you believe that your personal data has been processed or disclosed in violation of this Policy, the Company encourages you to raise any concerns using the contact information provided in this Policy. The Company will investigate and attempt to resolve any complaints and disputes regarding use and disclosure of personal data.
Any employee of the Company that the Company determines is in violation of this Policy will be subject to disciplinary action up to and including termination of employment.
Data Retention and Destruction
We retain your personal data for the period necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or allowed by law or to otherwise fulfill a legal obligation.
Use of Website by Minors
This Website is not directed to individuals under the age of 13 and we request that these individuals not provide personal information though this Website.
Changes to this Policy
This Policy may be amended from time to time, consistent with the requirements of applicable law. A notice will be posted by the Company on this Website when this Policy is changed.
Compliance with Local Laws
This Policy is meant to guide the Company with respect to personal data collected from or about you at this Website. While this Policy applies to personal data generally, the local laws, rules and regulations of jurisdictions that are applicable to the Company (“Local Laws”) may require standards which are stricter than this Policy and, in any such event, the Company will comply with applicable Local Laws. Specific privacy policies may be adopted to address the specific privacy requirements of particular jurisdictions.
The following provisions apply to the collection, use and storage of personal data concerning residents of Canada and override or replace any analogous provisions in the Policy.
If you voluntarily provide personal data to the Company, you are deemed to have consented to the Company’s use of that information to send you products and information, and to provide you with services. The Company may disclose that information to business partners, financial institutions, shipping companies, postal authorities and the government, but only to the limited extent necessary to deliver such products, information and services to you. Such service providers may be located outside of Canada, and your personal information may therefore be subject to the laws of foreign jurisdictions.
The Company may use your personal data for the purposes set forth in the Policy (as amended by this Addendum), and for any additional purposes for which your consent is required under applicable federal or provincial laws so long as the Company obtains your consent.
The Company will not share your personal data with its subsidiaries, affiliates, employees, contractors, consultants and other parties who assist the Company (including, without limitation, parties that provide information technology and data processing services to the Company with respect to the operation of its businesses) unless the Company first obtains your consent to do so.
The Company may disclose your personal data to other parties without your explicit consent only to the extent: (1) required to respond to a legal obligation, including to comply with a court order, subpoena, warrant or other legal process, (2) necessary to meet national security, or law enforcement obligations, (3) expressly permitted by applicable laws, rules or regulations, or (4) required to permit centralized data processing, provided that in such case the Company will remain responsible for the use of your personal data by any such parties.
Your personal data will be collected, stored, processed and transmitted in accordance with Company’s established policies and applicable federal, state, local and foreign laws, rules and regulations.
The principles of Company with respect to the processing of personal data are as follows: (1) personal data will be processed fairly and lawfully, (2) personal data will be collected for specified, explicit, and legitimate purposes and not further processed for incompatible purposes, (3) personal data collected by Company will be adequate, relevant, and not excessive in relation to the purposes for which it is collected, (4) personal data collected by Company will be accurate and, where necessary, kept up to date, and (5) personal data collected by Company will be retained as identifiable data for no longer than necessary to serve the purposes for which the personal data was collected.
If Company engages in the processing of personal data for purposes other than those specified in this Policy, Company will provide notice of these changes, the purposes for which the personal data will be used, and the recipients of personal data.
Your personal information may be stored and processed in any country where we have facilities or service providers, and by using our Site or by providing consent to us (where required by law), you specifically acknowledge and agree to the transfer of information to countries outside of your country of residence, including to the United States, which may provide for different data protection rules, and a lower standard of required protection, than in your country.
In particular, with respect to personal data, Company will comply with Local Laws and ensure that EU, EEA and Swiss residents have access to such information as is required by law in their home countries, regardless of the location of data processing and storage. If data processing with respect to personal data occurs in the US, Company will cooperate in providing such access.
Since Company’s business and operations are international, Company has centralized certain elements of its processing of personal data. Accordingly, where IHOD is permitted to do so under applicable law, IHOD (including its international subsidiaries and affiliates) may transfer or provide your personal data to IHOD subsidiaries, affiliates or third parties both in and outside of the nation where you reside and/or work.
Additionally, your personal data may be disclosed as required by applicable law, to comply with a court order, subpoena, warrant or other legal process, or where the personal data is publicly available (unless otherwise restricted by applicable law).
Employee personal data will be collected, stored, processed and transmitted in accordance with Company’s established policies and applicable federal, state, local and foreign laws, rules and regulations.
If you believe that your personal data has been processed or disclosed in violation of this Policy, Company encourages you to raise any concerns using the contact information provided in this Policy. Company will investigate and attempt to resolve any complaints and disputes regarding use and disclosure of personal data.
As of October 2017