637633049206310
top of page

This Privacy Policy outlines how The Product Geek ("we," "us," or "our") collects, uses, stores, and protects your personal information when you interact with our website at https://www.theproductgeek.club (the "Site"). By accessing or using the Site, you consent to the practices described in this policy. We comply with the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.

 

Scope and Application

  1. This Privacy Policy applies to all personal data processed through the Site, including information provided voluntarily by users (e.g., newsletter subscriptions, account registrations) and data collected automatically (e.g., cookies, usage analytics).

  2. It does not govern third-party services linked from our platform; we recommend reviewing their policies separately.

 

Data Collection Practices

  1. Categories of Personal Data Collected: We process the following types of information:Identifiers: Name, email address, shipping/billing address, and phone number provided during account creation, purchases, or newsletter sign-ups.

  2. Commercial Data: Purchase history, payment card details (processed securely via PCI-compliant gateways), and product preferences.

  3. Technical Data: IP addresses, browser type, device identifiers, and usage patterns collected via cookies and server logs.

  4. User-Generated Content: Product reviews, forum posts, and survey responses submitted through the Site.

 

Methods of Data Collection

  1. Direct Input: Information entered into registration forms, checkout pages, or customer service portals.

  2. Automated Tracking: Cookies (small text files stored on devices) enable features like persistent logins, shopping carts, and analytics. We categorize these as:Essential Cookies: Required for core site functionality (e.g., session management). Performance Cookies: Aggregate usage data via Google Analytics to optimize page layouts.Marketing Cookies: Facilitate personalized ads through platforms like Facebook Pixel, subject to user consent.

 

Legal Bases and Purposes of Processing: We process your data under the following GDPR Article 6 legal grounds:

  1. Contractual Necessity: To fulfill orders, process returns, and provide customer support.

  2. Legitimate Interests: For fraud prevention, network security, and service improvements.

  3. Consent: For non-essential marketing communications and third-party data sharing. Consent may be withdrawn anytime via account settings or email requests.

  4. Specific processing activities include:Personalizing product recommendations based on browsing history. Conducting market research through anonymized usage analytics.Sending transactional emails (order confirmations) and promotional campaigns (new product launches).

 

Data Sharing and Third-Party Disclosures: We disclose personal information only under these circumstances:

  1. Service Providers: Payment processors (Stripe, PayPal), logistics partners (DHL, FedEx), and cloud hosting providers (AWS) necessary for operational functions. All third parties undergo rigorous data protection assessments.

  2. Legal Obligations: Responding to subpoenas, court orders, or other lawful government requests.

  3. Business Transfers: During mergers, acquisitions, or asset sales, with confidentiality agreements ensuring continued compliance.

  4. International data transfers to non-EU entities utilize GDPR-approved safeguards like Standard Contractual Clauses (SCCs).

 

User Rights and Controls: Under GDPR and CCPA, you may:

  1. Access: Request a copy of your personal data held by us.

  2. Rectification: Update inaccurate or incomplete information via your account dashboard.

  3. Erasure: Delete your account and associated data, excluding records we must retain for legal compliance.

  4. Restriction: Limit processing during disputes about data accuracy.

  5. Portability: Receive a machine-readable export of your purchase history and profile details.

  6. Objection: Opt out of direct marketing or automated decision-making.

Submit requests via email to privacy@theproductgeek.club. We respond within 30 days after verifying your identity.

 

Data Security and Retention

  1. Protection Measures

    1. Encryption: TLS 1.2+ for data in transit; AES-256 for stored payment details.

    2. Access Controls: Role-based permissions and multi-factor authentication for staff.

    3. Audits: Annual penetration testing and vulnerability assessments.

  2. Retention Periods

    1. Transactional Data: 7 years for tax and accounting compliance.

    2. Marketing Data: 3 years from last interaction unless consent is withdrawn earlier.

    3. Server Logs: 12 months for security monitoring.

  3. Cookies and Tracking Technologies

    1. Manage preferences via our cookie consent banner or browser settings:

      1. Essential Cookies: Always active (no opt-out).

      2. Analytics/Marketing Cookies: Disable through the banner or third-party tools like YourAdChoices.We honor Global Privacy Control (GPC) signals for CCPA compliance.

 

Updates and Contact Information

We revise this policy annually or when introducing new data practices. Significant changes trigger email notifications and site-wide banners.

 

For questions or data subject requests, contact: privacy@theproductgeek.club

 

Effective Date: February 26, 2025

  • Instagram
  • LinkedIn
  • YouTube
  • Topmate
bottom of page