Privacy Policy
1. Introduction
At Dadafest (“we”, “us”, or “our”), accessible via dadafest.com, we are fully committed to safeguarding your personal privacy and upholding the highest standards of data protection. We recognize the importance of your personal data and are dedicated to handling it responsibly, transparently, and in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy explains how we collect, use, and protect your personal information, and outlines your rights in relation to that data.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use our website, services, or communicate with us via any medium. Dadafest is the data controller responsible for the processing of your personal data as described in this policy. The Policy governs the processing of personal data collected through our website at dadafest.com and in the provision of our services.
If you have any questions about how your data is processed, you may contact us at: [email protected].
3. Categories of Data Processed
We may process the following categories of data:
a. Usage Data
Includes information about your interactions with dadafest.com, such as browser type, operating system, pages visited, referral URLs, date/time stamps, session duration, and other diagnostic data used for analytics and performance monitoring.
b. Account Data
Includes identifying and contact details such as your full name, physical address, email address, telephone number, and any other details submitted when you create or manage an account with us.
c. Profile Data
Includes your preferences, interests, feedback, purchase history, interactions with our site content, and user behaviors derived through analytics tools.
d. Communication Data
Includes email exchange records, contact form submissions, customer service requests, support interactions, and any correspondence between you and us.
e. Technical Data
Includes data about the device(s) you use to access dadafest.com, such as device type, internet protocol (IP) address, hardware model, operating system version, system configuration, and mobile network information.
f. Transaction Data
Includes details of any transactions conducted via dadafest.com, including billing address, delivery address, payment method, transaction IDs, and purchase history.
g. Preference Data
Includes your communication preferences, consent to receive marketing, event registrations, and stated areas of interest in our products or services.
4. Legal Bases for Processing
We process your personal data under the following lawful bases as required under GDPR:
– Consent: Where you have explicitly given us permission to process your data for specific purposes (e.g., subscribing to newsletters).
– Contractual Necessity: Where processing is required to fulfill a contract with you or to take steps at your request prior to entering into a contract (e.g., purchasing tickets or services).
– Legitimate Interests: Where the processing is necessary for our legitimate business interests, such as improving website performance or communicating event updates that may be of interest to our users.
– Legal Obligation: Where processing is necessary for compliance with legal or regulatory obligations.
5. Your Rights
Subject to applicable data protection regulations, you have the following rights in relation to your personal data:
– Right of Access – You may request access to your personal data held by us.
– Right to Rectification – You may correct inaccurate or incomplete personal data.
– Right to Erasure – You may request the deletion of your personal data where there is no compelling reason for its continued processing.
– Right to Restrict Processing – You may ask us to restrict processing in certain circumstances.
– Right to Data Portability – You may obtain a copy of your personal data in a commonly used, machine-readable format and transfer it to another controller.
– Right to Object – You may object to processing based on our legitimate interests or direct marketing.
– Right to Withdraw Consent – Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
To exercise your rights, please contact [email protected].
6. Security Measures
We implement appropriate technical and organizational safeguards to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:
– Encryption of data in transit and at rest.
– Role-based access controls and authentication protocols.
– Regular data backups and secure storage facilities.
– Data protection training and confidentiality agreements for staff.
7. International Transfers
Your personal data may be transferred to and processed in countries outside your jurisdiction, including countries that may not offer the same level of privacy protection as your home country. In such cases, we ensure that standard contractual clauses or other approved safeguards are in place to ensure adequate protection of your data in line with GDPR and other applicable regulations.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. Specific retention periods include:
– Account and Profile Data: Retained for as long as your account is active or until you request deletion.
– Transaction Data: Retained for up to 7 years for compliance with tax and accounting obligations.
– Communication Data: Retained for up to 2 years after the last interaction.
– Preference and Marketing Data: Retained until you withdraw consent or opt-out.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience on dadafest.com. Cookies help us to:
– Enable essential website functionality.
– Remember user preferences and settings.
– Analyze site performance and usage behavior.
– Personalize content and marketing based on your interests.
Types of cookies used include:
– Essential Cookies – Necessary for login, navigation, and basic functionality.
– Functional Cookies – Allow personalization and enhanced user features.
– Analytics Cookies – Help us understand how visitors interact with our site.
– Performance Cookies – Optimize loading times and responsiveness.
10. Cookie Management and Compliance
You may manage or disable cookies through your browser settings or by using our cookie management tool available on dadafest.com. We respect “Do Not Track” signals and provide opt-in consent functionality in compliance with GDPR and California’s CCPA. You may also exercise your data rights regarding cookie-derived data as outlined in section 5.
11. Special Protections for Children Under 13
Our services and website are not designed for or directed at individuals under the age of 13. We do not knowingly collect personal data from children under 13. If you are a parent or guardian and suspect that your child has provided us with personal data, please contact us immediately at [email protected] so we may take appropriate steps to delete that information.
12. Policy Updates and User Notifications
We may update this Privacy Policy periodically to reflect changes in legal requirements, industry standards, or our data practices. Where material changes are made, we will notify you through prominent notices on dadafest.com or through direct communications. Continued use of the website after such updates constitutes your acknowledgment of the revised policy.
13. Contact
For any questions about this Privacy Policy, your personal data, or to exercise your rights, please contact:
Data Protection Manager
Dadafest
Email: [email protected]
—
We are committed to upholding your privacy rights and complying with GDPR, CCPA, and relevant international privacy laws. If you have any concerns, please reach out to us at [email protected].