Privacy Policy
At J8 Change the World (accessible via https://j8changetheworld.com), we are fully committed to protecting your personal information and upholding your privacy rights. We understand the importance of data protection in the digital age and design our practices in alignment with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy frameworks. This Privacy Policy outlines how we collect, use, store, and disclose your personal data when you interact with our website.
1. Introduction
Your privacy is at the core of how we operate. At j8changetheworld.com, we implement rigorous data protection measures to maintain the privacy, integrity, and security of your personal information. Whether you are browsing our website, creating an account, or contacting us directly, we ensure your data is handled with transparency and responsibility.
2. Scope of this Policy & Role as Data Controller
This Privacy Policy governs the collection and processing of personal data by J8 Change the World in the context of our website, services, and communications. J8 Change the World serves as the “Data Controller” under GDPR and as the “Business” under CCPA, determining the purposes and means of processing your data.
3. Categories of Personal Data We Process
We collect and process the following categories of personal data, depending on your interaction with j8changetheworld.com:
a. Usage Data:
Includes your browser type and version, IP address, pages visited, time spent on pages, referring URLs, and device session data.
b. Account Data:
Includes your full name, mailing address, email address, and phone number you provide when creating an account or placing an order.
c. Profile Data:
Includes your purchase history, saved preferences, behavioral analytics (e.g., clicks, time on page), and interests expressed through interactions.
d. Communication Data:
Includes your communications with us, such as emails, support tickets, complaints, feedback, or inquiries submitted through our contact forms or live support.
e. Technical Data:
Includes device specifications (e.g., device model, OS version, screen resolution), browser settings, locale, connection status, and other system configurations.
f. Transaction Data:
Includes payment method details (handled securely and never stored in full), purchase amounts, billing address, and delivery information when you make a transaction.
g. Preference Data:
Includes your preferences for receiving marketing communications, your product or content interests, and your subscription selections.
4. Legal Bases for Processing
Our legal grounds for processing personal data under the GDPR are as follows:
– Consent: When you provide clear affirmative consent for specific purposes (e.g., marketing subscriptions).
– Contract: When processing is necessary for the performance or preparation of a contract with you (e.g., account registration, orders).
– Legal Obligation: Where required to comply with the law (e.g., accounting, fraud prevention).
– Legitimate Interest: When processing is necessary for our legitimate interests, such as securing our services, improving user experience, or enhancing our platform, provided those interests are not overridden by your rights.
5. Your Rights
Under applicable laws, you may exercise the following rights regarding your personal data:
– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: You may request deletion of your personal data, subject to certain legal exceptions.
– Right to Restrict Processing: You may request a limitation on how your data is processed.
– Right to Data Portability: You may receive your data in a structured, commonly used, and machine-readable format and, where feasible, request the transfer to another controller.
– Right to Object: You may object to data processing based on legitimate interests or direct marketing.
– Rights under CCPA: California residents also have the right to know what categories of personal data we collect, to request deletion, and to opt out of the sale (we do not sell personal data).
6. Security Measures
We employ industry-standard security practices to protect your data, including but not limited to:
– Encryption (TLS/SSL) of web traffic and data in transit;
– Secure data storage and access control mechanisms;
– Regular backups, anti-malware and firewall systems;
– Role-based access control for employees with data access;
– Ongoing data privacy training for staff and system audits.
7. International Data Transfers
Your data may be transferred to and processed in countries outside your jurisdiction, including to jurisdictions that may not offer the same level of data protection. When this occurs, we rely on:
– Standard Contractual Clauses approved by the European Commission;
– Appropriate contractual and organizational safeguards;
– Transfer mechanisms compliant with the GDPR and other applicable laws.
8. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer period is required by law. Retention periods may include:
– Usage Data: up to 12 months for analytics purposes;
– Account and Profile Data: retained as long as your account is active, plus 3 years thereafter;
– Communication Data: retained for up to 24 months for service quality and historical reference;
– Transaction Data: retained for up to 7 years for legal and tax compliance;
– Preference Data: until you withdraw your consent or update your choices.
9. Cookie Policy
Our website uses cookies and similar technologies to support essential functionality, enhance your user experience, and gather analytics data. Cookies fall into the following categories:
– Essential Cookies: Necessary for website functionality such as login and navigation.
– Functional Cookies: Enable enhanced features like remembered preferences and language settings.
– Analytics Cookies: Collect aggregated data on usage patterns to help us improve site performance.
– Performance Cookies: Monitor resource load and responsiveness for optimization purposes.
10. Cookie Management & Compliance
You may control or disable cookies through your browser settings or our cookie consent management banner. In compliance with GDPR and CCPA:
– Visitors are presented with a cookie consent banner and options upon first visit.
– Users can withdraw or change consent at any time via cookie controls.
– California users can opt out of the sale or sharing of data (we do not sell personal information to third parties).
– We honor Do Not Track (DNT) signals where supported.
11. Protection of Children’s Privacy
We do not knowingly collect or solicit data from children under the age of 13. If you are a parent or guardian and believe that your child may have provided personal information to us, please contact us immediately at [email protected]. Upon confirmation, we will take swift steps to delete such data from our systems.
12. Updates to this Policy
We reserve the right to modify or update this Privacy Policy at our discretion. Changes will be reflected on this page, and where required by law, we will give notice or obtain your consent. We encourage users to periodically review this Policy to stay informed about how we protect their information.
13. Contact Information
If you have questions, concerns, or requests related to your privacy rights or this Privacy Policy, please contact us directly:
Email: [email protected]
Website: https://j8changetheworld.com
We are committed to upholding your rights, and welcome inquiries from users, regulators, and data protection authorities.
You can trust that j8changetheworld.com operates in line with GDPR, CCPA, and best practices in privacy and data protection. Please reach out at [email protected] if you have any privacy-related concerns.