-688x467.png "YARA LIFESTYLE INC")
These terms and conditions are formulated in accordance with the EU General Data Protection Regulation (GDPR) and apply to all interactions between consumers within the EU and ORBITCRAFT CO., LTD (hereinafter referred to as "we"). They clarify the rules governing our collection, use, storage, protection, and processing of EU consumers' personal data, ensuring consumer data privacy and legal rights.
I. Scope of Application
This applies to the processing of personal data generated when consumers within the EU interact with us through our official website (otcft.com), email (customer@otcft.com), and other compliant channels. It does not apply to data processing related to consumers outside the EU or commercial procurement.
II. Collection of Personal Data
1. Scope of Collection: Only the minimum personal data necessary for providing services such as sock sales and after-sales service will be collected, including the consumer's name, contact information, shipping address, payment information (excluding complete bank card PINs), and order information. No irrelevant or redundant data will be collected.
2. Collection Method: Data will be collected through legal means such as consumer voluntary submission (for orders and inquiries) and interactions on our official website. The purpose of the data will be clearly explained before collection, and the consumer's voluntary and explicit consent will be obtained. Consent will not be forcibly obtained through pre-selection, bundling, or other means.
III. Data Use and Storage
1. Purpose of Use: Data will only be used for order fulfillment, after-sales response, and product-related notifications. It will not be used for any other undisclosed purposes, strictly adhering to the principle of purpose limitation.
2. Storage Requirements: Data will be stored using encryption technology, with strict access control measures, allowing access only to authorized personnel. The storage period will not exceed the duration required for the service, and upon expiration, data will be promptly anonymized or securely deleted, complying with the principles of data minimization and storage period limitations.
IV. Data Protection and Leakage Handling
1. Protection Measures: A comprehensive data security system will be established, and regular security audits and vulnerability detection will be conducted to prevent data leakage, misuse, and unauthorized access, ensuring data integrity and confidentiality.
2. Leakage Handling: In the event of a data breach that may harm consumer rights, the relevant EU regulatory authorities will be notified within 72 hours. If it is necessary to notify consumers, this will be done promptly and in a reasonable manner, and remedial measures will be taken.
V. Consumer Data Rights
EU consumers have the right to access, correct, and delete their personal data, the right to withdraw their consent to data processing, and the right to request restrictions on data processing or data portability. Requests can be submitted through the official website or the designated email address. We will respond and process your request within one month.
VI. Other Notes
1. We will not share consumer personal data with third parties unless we obtain the consumer's explicit consent or it is required by law or regulation.
2. In the event of any conflict between these terms and the EU GDPR and relevant regulations of member states, the EU and member state regulations shall prevail.
3. Inquiries and Complaints: For data-related inquiries, please visit the official website otcft.com or email customer@otcft.com. You can also file a complaint with your local EU data protection regulatory authority.