Privacy Policy
1. Introduction
Legacy PLC (“we”, “us”, or “our”) is committed to safeguarding the privacy and personal data of all visitors and users who access our website, located at legacyplc.com. Your trust is important to us, and we are dedicated to handling your personal data in a responsible, secure, and transparent manner in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy regulations.
This Privacy Policy outlines the types of personal data we collect through our website and services, the purposes for which we process such data, your rights as a data subject, and how you can exercise those rights.
2. Scope of Policy and Data Controller Role
This policy applies to all personal data collected or processed by Legacy PLC in connection with your use of the legacyplc.com website and any related services. Legacy PLC acts as the Data Controller for the processing of your personal data, determining the purposes and means by which such data is processed.
If you have any questions relating to this Privacy Policy, or the processing of your personal data, you may contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
– Usage Data: Includes information about how you use legacyplc.com, such as your IP address, browser type, access times, pages viewed, and referring website addresses.
– Account Data: Includes personal details you provide when creating an account, such as your name, email address, mailing address, billing address, and phone number.
– Profile Data: Includes information relating to your preferences, interests, feedback, purchase history, and behavior on the website.
– Communication Data: Includes any inquiries you submit via contact forms, support interactions, or other communications you initiate or respond to.
– Technical Data: Includes information about your device and system configuration, operating system, screen resolution, time zone, and browser platform.
– Transaction Data: Includes records of products or services purchased, payment method details, billing and shipping information, and other related financial data.
– Preference Data: Includes your selections for marketing preferences, product category choices, subscription settings, and related data that reflects your user preferences.
We may collect the above data directly from you, through automated technologies such as cookies, or from trusted third-party sources in compliance with applicable data protection laws.
4. Legal Bases for Processing
We only process your personal data when legally permitted to do so, based on one or more of the following grounds:
– Consent: Where you have explicitly agreed to the processing of your personal data for specific purposes, including marketing communications and preference tracking.
– Contract: Where the processing is necessary for the performance of a contract with you or to take steps at your request prior to entering into a contract.
– Legal Obligation: Where we are required to process personal data to comply with applicable legal obligations.
– Legitimate Interests: Where the processing is necessary to pursue our legitimate interests, provided that such interests are not overridden by your fundamental rights and freedoms.
5. Your Rights
Under applicable data protection laws, including the GDPR and CCPA, you have several rights in relation to your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right of Rectification: You may request correction of any inaccurate or incomplete personal data.
– Right to Erasure: You may request that we delete your personal data, subject to legal limitations.
– Right to Restrict Processing: You may request a restriction on how we process your data in certain circumstances.
– Right to Data Portability: You may obtain and reuse your personal data across different services in a commonly used machine-readable format.
– Right to Object: You may object to the processing of your personal data in cases where we rely on legitimate interests or direct marketing.
– Right Not to Be Subject to Automated Decision-Making: You have the right not to be subject to decisions made solely by automated processing where such decisions have legal or similarly significant effects.
You may exercise any of these rights by contacting us at [email protected]. We will respond without undue delay and in accordance with applicable laws and regulations.
6. Security Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk associated with the processing of your personal data. These measures include:
– Data encryption (in transit and at rest)
– Role-based access controls and authentication protocols
– Regular data backups and restore capabilities
– Secure server and firewall infrastructure
– Staff training on data protection and cybersecurity
– Ongoing monitoring of systems to detect and mitigate vulnerabilities
While we strive to protect your data, no system can be entirely secure. Users are encouraged to take precautions, such as using strong passwords and logging out of devices after use.
7. International Transfers
As part of our global operations or engagement with third-party service providers, your personal data may be transferred and processed outside of your country of residence, including transfers outside the European Economic Area (EEA) or the United States.
Where such international transfers occur, we ensure compliance with applicable requirements by using:
– Standard Contractual Clauses approved by the European Commission
– Adequacy Decisions where applicable
– Other appropriate safeguards as required by local regulations
You may request a copy of these safeguards by contacting [email protected].
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations. Retention periods may vary by data type:
– Usage Data: Retained for up to 12 months for analytics and performance monitoring.
– Account and Profile Data: Retained while your account remains active and for up to 5 years thereafter for administrative purposes.
– Communication and Support Data: Retained for a minimum of 3 years for quality assurance and regulatory compliance.
– Transactional Data: Retained for a minimum of 7 years for tax and audit compliance.
– Preference Data: Retained until opt-out or withdrawal of consent.
9. Cookie Policy
We use cookies and similar tracking technologies on legacyplc.com to enhance user experience, analyze site traffic, and support marketing efforts. Cookies may fall under the following categories:
– Essential Cookies: Necessary for the operation of the website, enabling features like account login and secure navigation.
– Functional Cookies: Enable customizations such as language preferences and saved settings.
– Analytics Cookies: Collect anonymous usage statistics to help us understand how visitors interact with the site.
– Performance Cookies: Monitor website performance and uptime metrics to improve service quality.
10. Cookie Management & Compliance
You may manage your cookie preferences at any time through our cookie banner or your browser settings. Under GDPR and CCPA, users have the right to:
– Opt-in before non-essential cookies are set (GDPR)
– Opt-out of the sale or sharing of personal data derived from cookies (CCPA)
– Withdraw consent at any time
Any updates to your preferences will be respected and applied in real time. For more information, see our dedicated Cookie Preferences link on legacyplc.com.
11. Protection for Children
Our website and services are not directed to, or knowingly collected from, children under the age of 13. We do not knowingly solicit or process data from minors. If you believe that a child under the age of 13 has provided us with personal data, please contact us immediately at [email protected], and we will take appropriate steps to investigate and delete such data.
12. Policy Updates and Notifications
We reserve the right to modify this Privacy Policy in response to changes in legal requirements, technology, or our data processing practices. Any material changes will be communicated through legacyplc.com or via direct communication when appropriate. Continued use of our services after such changes constitutes your acknowledgment and agreement to the updated policy.
13. Contact
For all inquiries regarding this Privacy Policy or your personal data, including requests to exercise your rights, please contact us at:
Email: [email protected]
Website: https://legacyplc.com
We are committed to maintaining full compliance with all applicable data protection regulations and welcome your questions, concerns, or feedback regarding privacy at any time.