Data Protection Policy
1. Introduction
HFTI Solutions, hereafter referred to as “the Company,” is committed to ensuring the protection of personal data and respecting the privacy of our web service and application subscribers, including individuals who are residents of the European Union (EU) and the state of California. This Data Protection Policy outlines our approach to handling personal data in accordance with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope
This policy applies to all personal data collected, processed, and stored by the Company from EU and California residents who are subscribers to our web services and applications.
3. Data Collection and Usage
The Company collects and processes personal data for legitimate business purposes, including providing our web services and applications, improving user experience, and complying with legal obligations. Personal data collected may include but is not limited to:
- Name
- Contact Information (email, phone number, address)
- Payment Information
- Usage Data (logs, analytics)
- Preferences and Customisations
Personal data is used for the following purposes:
- Provision of Services: To provide access to our web services and applications and to fulfill user requests.
- Communication: To communicate important information, updates, and marketing materials related to our services.
- Personalisation: To personalise user experiences, content, and recommendations based on preferences and usage patterns.
- Analytics: To analyse user behavior and improve our services.
- Legal Compliance: To comply with legal obligations under GDPR and CCPA.
4. Legal Basis for Data Processing
We process personal data under the following legal bases:
- Contractual Necessity: Processing is necessary for the performance of a contract with clients or subscriber.
- Consent: Processing is based on explicit and informed consent from the subscriber.
- Legal Obligation: Processing is necessary to comply with legal obligations.
5. Data Sharing and Disclosure
The Company may share personal data with third parties under the following circumstances:
- Service Providers: We may share data with third-party service providers who assist in the provision of our services (e.g., hosting, payment processing).
- Legal Compliance: We may share data with authorities or legal entities to comply with legal requirements.
- Affiliates: We may share data with affiliated companies for legitimate business purposes.
6. Data Subject Rights
Subscribers from the EU and California have the following rights:
- Right to Access: Request access to personal data held about them.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure: Request deletion of personal data under certain conditions.
- Right to Restrict Processing: Request restrictions on the processing of personal data.
- Right to Data Portability: Request to receive personal data in a structured, commonly used, and machine-readable format.
- Right to Object: Object to the processing of personal data under certain conditions.
7. Data Security
The Company employs technical and organisational measures to ensure the security of personal data, including encryption, access controls, and regular security assessments.
8. Data Retention
Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, or as required by legal obligations.
9. Contact Information
For inquiries related to personal data, privacy concerns, or to exercise data subject rights, subscribers can contact us using form on contact page.
10. Policy Updates
This policy is subject to periodic review and may be updated to reflect changes in laws, regulations, or our practices. Subscribers will be notified of any significant updates.
By subscribing to our web services and applications, subscribers acknowledge and consent to the terms outlined in this Data Protection Policy.