HotsheetGoals.com
("we," "us," or "our") is committed to
safeguarding the privacy and security of personal data in accordance
with the General Data Protection Regulation (GDPR) and other
applicable data protection laws. This Data Security and Privacy
Statement outlines how we collect, process, store, and protect
personal data while ensuring compliance with legal obligations.
1. Data Collection and Processing
We collect and process personal data only when necessary for legitimate
business purposes, including but not limited to:
- Providing and improving our services
- Managing user accounts and authentication
- Processing transactions and payments
- Conducting analytics and performance monitoring
- Communicating service updates, marketing content (with explicit consent), and customer support
Personal data may include, but is not limited to: name, email address, contact
details, payment information, and website usage data.
2. Lawful Basis for Processing
We ensure that all data processing activities are based on one or more
lawful grounds as defined under GDPR, including:
- User consent for specific processing activities
- Performance of a contract
- Compliance with legal obligations
- Legitimate business interests, where such interests do not override individual rights
3. Data Storage and Security Measures
We
implement stringent technical and organizational measures to prevent
unauthorized access, alteration, disclosure, or destruction of
personal data. Security measures include:
- Data encryption (both in transit and at rest)
- Access controls and authentication mechanisms
- Secure data hosting with GDPR-compliant service providers
- Regular security audits and risk assessments
- Data minimization and anonymization where applicable
4. Data Sharing and Third-Party Processors
We do not sell, rent, or trade personal data. However, data may be
shared with trusted third-party processors strictly for operational
purposes, including:
- Payment processors
- Cloud storage and hosting providers
- Analytics and marketing service providers (subject to user consent)
All third-party processors are contractually bound to maintain GDPR
compliance and implement robust security measures.
5. Data Retention Policy
We retain personal data only for as long as necessary to fulfill the
purpose for which it was collected, comply with legal obligations, or
resolve disputes. Upon expiration of retention periods, data is
securely deleted or anonymized.
6. User Rights Under GDPR
Users have the following rights concerning their personal data:
- Right to Access – Obtain confirmation of data processing and access to personal data.
- Right to Rectification – Request correction of inaccurate or incomplete data.
- Right to Erasure (“Right to be Forgotten”) – Request deletion of personal data under certain conditions.
- Right to Restrict Processing –Request restriction of processing under specific circumstances.
- Right to Data Portability – Receive personal data in a structured format for transfer.
- Right to Object – Object to processing based on legitimate interests or direct marketing.
- Right to Withdraw Consent – Withdraw previously given consent at any time.
To exercise these rights, users may contact us at info@hotsheetgoals.com.
7. International Data Transfers
If personal data is transferred outside the European Economic Area
(EEA), we ensure that adequate safeguards are in place, such as
Standard Contractual Clauses (SCCs) or reliance on Privacy
Shield-certified partners where applicable.
8. Updates to This Statement
We may update this Privacy Statement periodically to reflect regulatory
changes or improvements in our data protection practices. Users will
be notified of any material updates.
9. Contact Information
For inquiries regarding data protection or to exercise your GDPR rights, please contact:
Data Protection Office (DPO)
HotsheetGoals.com
Email: info@hotsheetgoals.com
