Privacy Policy
1. Introduction
At New Metal Tech (“we,” “our,” or “us”), accessible at newmetaltech.com, we are firmly committed to safeguarding the privacy and personal data of our users, customers, and visitors. This Privacy Policy outlines how we collect, use, store, disclose, and protect your personal information in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We prioritize transparency, control, and user rights in every aspect of our data handling practices.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through newmetaltech.com and related digital services. New Metal Tech acts as the data controller for all personal data collected via our website, meaning that we determine the purposes and means of data processing. For any inquiries regarding this policy or your personal data, please contact us at [email protected].
3. Categories of Data Processed
We collect and process the following categories of personal data, depending on your interactions with our website and services:
– Usage Data: Includes information such as your IP address, browser type and version, geographical region, time and date of access, pages visited, session duration, referral sources, and general website interaction behaviors.
– Account Data: Includes your name, billing and shipping address, email address, phone number, company name (if applicable), and any account credentials you create when registering on our site.
– Profile Data: Encompasses your user preferences, purchase history, selections and settings, loyalty program participation, and behavioral data assessed through interaction history.
– Communication Data: Includes the content and metadata associated with inquiries submitted through contact forms, emails, support chats, or social media messages.
– Technical Data: Covers device type, operating system, system configuration, network type, screen resolution, language settings, and diagnostic logs.
– Transaction Data: Refers to details related to payments, including transactions completed through third-party processors, billing status, delivery tracking, and product order details.
– Preference Data: Captures marketing preferences, opt-in or opt-out status, areas of product interest, and responses to promotional campaigns or surveys.
4. Legal Bases for Processing
We rely on several legal bases under GDPR and equivalent CCPA provisions for collecting and processing your personal data:
– Consent: Where you have given clear permission for us to process your personal data for a specific purpose—e.g., receiving newsletters or cookies beyond the essential category.
– Contractual Necessity: Where processing is required to fulfill a contract (e.g., shipping a purchased product, maintaining account access).
– Legitimate Interests: Where processing is necessary for our legitimate business purposes (e.g., improving website performance), provided those interests are not overridden by your personal rights and freedoms.
– Legal Obligation: When we are required to process data under applicable laws or regulatory directives.
5. Your Rights
As a data subject, you have the following rights under GDPR and applicable CCPA provisions, which you may exercise at any time by contacting us at [email protected]:
– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You have the right to correct inaccurate or incomplete personal data.
– Right to Erasure: Also known as the “right to be forgotten,” you may request the deletion of your data in certain circumstances.
– Right to Restriction: You may request a temporary or permanent halt to the processing of some or all of your personal data.
– Right to Data Portability: You can receive your data in a structured, commonly used format and transmit it to another controller where legally applicable.
– Right to Object: Where we rely on legitimate interests, you can object to this processing.
– Rights under CCPA: California residents may also request disclosure of collected data types, sources, business purposes, and third-party disclosures, and may request that we do not sell your personal data.
6. Security Measures
We implement a multi-layered approach to data security and integrity, including:
– End-to-end encryption of all sensitive transactions and browser data.
– Role-based access controls to limit access to authorized personnel only.
– Regular system and application vulnerability testing.
– Enforced data backup schedules with secure offsite storage.
– Staff training and awareness programs centered on data protection compliance and incident handling.
7. International Data Transfers
In cases where your personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with equivalent data protection regulations, we ensure that such transfers are performed in compliance with GDPR and other applicable laws. This includes implementing Standard Contractual Clauses and supplementary safeguards where appropriate.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including:
– Usage and Technical Data: Kept for up to 24 months for analytics and security optimization.
– Account and Profile Data: Retained for the duration of your account and subsequently for up to 6 years for dispute resolution and legal compliance.
– Transaction Data: Maintained for tax and auditing purposes for a minimum of 7 years.
– Communication Data: Stored for up to 5 years for quality assurance and support audit trails.
– Preference Data: Retained unless revoked through user opt-out mechanisms.
9. Cookie Policy
We use cookies and similar technologies on newmetaltech.com for the following purposes:
– Essential Cookies: Required for the website to function properly and enable core features such as account login and secure checkout.
– Functional Cookies: Enhance performance and facilitate customized experiences based on user settings.
– Analytical Cookies: Collect statistics about user behavior to help us optimize site performance and effectiveness.
– Performance & Targeting Cookies: Track usage to serve tailored content, improve services, and measure ad performance.
10. Cookie Management and Compliance
You can manage your cookie preferences through our cookie consent banner or through your browser’s settings. We honor “Do Not Sell My Personal Information” requests under CCPA and provide appropriate opt-out mechanisms. You may withdraw cookie consent at any time without affecting the lawfulness of prior processing.
11. Children’s Privacy
Our website and services are not directed to individuals under the age of 13. We do not knowingly collect or process personal information of children without verified parental or guardian consent in accordance with applicable laws such as COPPA. If you believe we have collected data from a child, please contact us immediately at [email protected], and we will take appropriate action.
12. Policy Updates and Notifications
We reserve the right to modify this Privacy Policy from time to time to reflect changes in our legal obligations, technology, or services. Any substantive changes will be communicated through notices on newmetaltech.com or, where appropriate, direct email notifications to registered users. Continued use of our website following any updates constitutes acceptance of the revised policy.
13. Contact
If you have questions, concerns, or requests relating to this Privacy Policy or your personal data, you may contact our Data Protection team at:
Email: [email protected]
We are committed to maintaining compliance with international privacy laws and safeguarding our users’ personal data. Please reach out to us with any data protection queries or concerns, and we will respond with diligence and transparency.