Privacy Policy for txoilltd.com
1. Introduction
At txoilltd.com (“we”, “our”, or “us”), we are firmly committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We value your trust and take your privacy seriously.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of the website txoilltd.com and any services offered through it. For the purposes of applicable data protection laws, txoilltd.com is the data controller of your personal information. This means we determine the purposes and means of processing your personal data.
If you have any questions about this policy or our data practices, please contact us at [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data when you interact with txoilltd.com:
– Usage Data: Includes information about how you use our website, such as your IP address, browser type, operating system, referral source, pages viewed, time spent on pages, and other diagnostic data collected through analytics tools.
– Account Data: Includes information you provide when registering or creating an account, such as your full name, email address, physical address, and telephone number.
– Profile Data: Includes information relating to your preferences, browsing behavior, transaction history, and any profile settings or interests selected.
– Communication Data: Includes records of communication with you, including emails, support requests, live chat, correspondence, and other contact history.
– Technical Data: Includes device-specific data such as device type, hardware model, browser information, operating system, screen resolution, language settings, and system configurations.
– Transaction Data: Includes payment information, billing and delivery details, purchase history, method of payment, and transaction metadata.
– Preference Data: Includes your choices for marketing communications, newsletter subscriptions, product interest indicators, and consent preferences.
4. Legal Bases for Processing
We process your personal data pursuant to the following lawful bases under the GDPR:
– Consent: Where we have obtained your explicit permission to process personal data for specific purposes (e.g., email marketing).
– Contract: Where processing is necessary for the performance of a contract with you or in order to take steps at your request prior to entering into a contract.
– Legal Obligation: Where we are legally required to process certain information (e.g., for tax and regulatory compliance).
– Legitimate Interests: Where processing is necessary for our legitimate interests, such as improving our services, preventing fraud, or enhancing user experience, and where such interests do not override your rights.
5. Your Rights
As a data subject, you are entitled to the following rights under GDPR and, where applicable, CCPA:
– Right of Access: You may request confirmation of whether we process your personal data and obtain a copy of such data.
– Right to Rectification: You may request that inaccurate or incomplete data be corrected or updated.
– Right to Erasure: Also known as the “right to be forgotten,” you may request deletion of your personal data under certain circumstances.
– Right to Restriction: You may request that we restrict the processing of your data in certain cases.
– Right to Data Portability: You may request a copy of your data in a structured, commonly used, and machine-readable format.
– Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting prior processing.
To exercise these rights, please contact [email protected]. We may need to verify your identity before fulfilling your request.
6. Security Measures
We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, loss, alteration, or destruction. These measures include data encryption, access control systems, firewalls, regular security audits, data backups, and staff training in data protection principles.
7. International Transfers
Your personal data may be transferred to and processed in countries outside your country of residence, including jurisdictions that may not provide a level of data protection equivalent to that under your local laws. Whenever we transfer data internationally, we ensure adequate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, or rely on other lawful transfer mechanisms under GDPR and CCPA.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law. Specific retention periods include:
– Account Data: Retained for as long as your account is active and for a limited period thereafter.
– Transaction Data: Retained for up to 7 years to comply with tax and accounting obligations.
– Communication Data: Retained for 3 years unless a longer retention period is required for compliance or legal claims.
– Usage and Technical Data: Retained for analytics purposes for no more than 2 years.
Once data is no longer required, it will be securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and other tracking technologies to enhance user experience and collect data about visitors. Types of cookies used include:
– Essential Cookies: Required for basic website functionalities, such as login and security features.
– Functional Cookies: Enable enhanced functionality, such as remembering user preferences or settings.
– Analytics Cookies: Collect statistical information about how visitors use our website, helping us improve content and performance.
– Performance Cookies: Monitor website performance to ensure optimal load times, navigation, and usability.
10. Cookie Management and Compliance with GDPR & CCPA
Upon visiting txoilltd.com, users are presented with a cookie consent banner. Where legally required under GDPR and CCPA, non-essential cookies are not set without your prior consent. You may review, manage, or withdraw your cookie preferences at any time via the cookie settings on our site. Additionally, most browsers offer tools to block or delete cookies from individual sites.
11. Children’s Privacy
Our services are not directed to individuals under the age of 13, and we do not knowingly collect personal data from children. If we become aware that a child under 13 has provided us with personal information, we will take immediate steps to delete such data. Parents or guardians who believe that their child has submitted personal data should contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to update or modify this Privacy Policy at any time to ensure compliance with legal, operational, or organizational changes. Updates will be posted on this page, and, where required, we will notify you through appropriate channels. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
13. Contact
If you have questions, concerns, or wish to exercise your data rights under this Privacy Policy, please contact us at:
We are committed to maintaining full compliance with applicable data protection laws and invite you to reach out with any privacy concerns or requests regarding your personal data.