Introduction At RyeTide, protecting your personal data is a responsibility we take very seriously. This Data Protection Policy explains what personal information we collect, how we use it, and the safeguards we have in place to protect your privacy. Our commitment is to comply fully with applicable data protection laws and uphold your rights as a data subject. Collection of Personal Information We collect personal data in several ways: directly from you when you provide it voluntarily and automatically through technology when you visit our website or use our services. The information collected includes but is not limited to: Personal identifiers such as your name, address, phone number, and email Payment and billing information necessary to process your orders Account details, including usernames and passwords Communications data, such as customer service inquiries and feedback Technical data including IP address, device details, browser type, and usage patterns Cookies and similar technologies to track user activity and preferences We limit data collection to what is necessary for the intended purpose and avoid excessive or irrelevant data gathering. Purpose and Use of Data We process your personal data strictly for specific, legitimate purposes, including: Delivering the products or services you have requested Managing orders, payments, and customer accounts Responding to your inquiries and providing ongoing support Sending service notifications and marketing communications with your consent Monitoring website traffic and user engagement to improve our platform Detecting, preventing, and addressing fraud and security threats Meeting legal and regulatory requirements applicable to our business Lawful Basis for Processing We base our data processing activities on one or more of the following legal grounds: Your explicit consent, when required Performance of a contract between you and us Compliance with legal obligations Our legitimate business interests balanced against your rights and freedoms We always seek to respect your preferences and provide mechanisms to control your personal data. Third-Party Sharing and Data Processors To operate effectively, we share personal data with trusted third-party service providers who assist with payment processing, hosting, analytics, marketing, and customer support. These providers are bound by contractual agreements to maintain confidentiality and protect your data. We do not sell or rent your personal data to third parties. International Transfers Where data is transferred outside of your country or the European Economic Area, we ensure that appropriate safeguards are in place, such as standard contractual clauses or certifications, to maintain an adequate level of data protection. Data Retention Policy Your personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal obligations and resolution of disputes. When no longer needed, data is securely deleted or anonymized to prevent re-identification. Your Data Protection Rights You have a variety of rights regarding your personal data, including: The right to access the information we hold about you The right to correct inaccuracies or incomplete information The right to request deletion or restriction of processing in certain circumstances The right to object to processing based on legitimate interests or direct marketing The right to withdraw consent at any time for consent-based processing The right to data portability, enabling you to receive your data in a structured format To exercise your rights, contact us at [email protected]. We are committed to responding promptly and transparently. Security Practices We have implemented robust technical and organizational measures to safeguard your personal data, including: Encryption of sensitive data both in transit and at rest Secure data centers with controlled access Regular security assessments and penetration testing Employee training on data protection and confidentiality Incident response procedures to handle potential data breaches swiftly Despite these measures, absolute security cannot be guaranteed; therefore, we encourage users to adopt safe practices as well. Cookies and Tracking Technologies Our website uses cookies and other tracking mechanisms to improve functionality, personalize content, and analyze usage patterns. You can control your cookie preferences at any time via your browser settings or through our cookie consent tool. For detailed information, please refer to our Cookie Policy. Children’s Privacy Our services are intended for users aged 16 and above. We do not knowingly collect personal information from children under 16. If we discover such data has been collected inadvertently, we will take prompt steps to delete it. Changes to This Policy We may update this Data Protection Policy to reflect changes in laws, technologies, or business practices. Updated versions will be posted on our website, and significant changes will be communicated as appropriate. Please review this policy periodically.