Privacy Policy for Rogue Fly Fish
Last Updated: 1/1/2024
Welcome to Rogue Fly Fish. We respect your privacy and are committed to protecting your data. This privacy policy will inform you about how we look after your data when you visit our website (regardless of where you visit it) and tell you about your privacy rights and how the law protects you.
1. Important Information and Who We Are
Purpose of This Privacy Policy
This privacy policy aims to inform you how Rogue Fly Fish collects and processes your data through this website, including any data you may provide when you purchase a product, sign up for our newsletter, or participate in a competition.
Controller
Rogue Fly Fish is the controller and responsible for your data.
Contact Details
admin@rogueflyfish.com
2. The Data We Collect About You
Personal data, or personal information, means any information about an individual from which that person can be identified. We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped as follows:
- Identity Data
- Contact Data
- Financial Data
- Transaction Data
- Technical Data
- Profile Data
- Usage Data
- Marketing and Communications Data
3. How Is Your Data Collected?
We use different methods to collect data from and about you, including through:
- Direct interactions
- Automated technologies or interactions
- Third parties-or publicly available sources
4. How We Use Your Data
We will only use your data when the law allows us to. Most commonly, we will use your data in the following circumstances:
- Where do we need to perform the contract we are about to enter or have entered with you?
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights, do not override those interests.
- Where we need to comply with a legal obligation.
5. Data Security
We have implemented appropriate security measures to prevent your data from being accidentally lost, used, or accessed unauthorizedly, altered, or disclosed.
6. Data Retention
We will only retain your data for as long as necessary to fulfill the purposes we collected it, including satisfying any legal, accounting, or reporting requirements.
7. Your Legal Rights
Under certain circumstances, you have rights under data protection laws about your data, such as the right to request access, correction, erasure, restriction, transfer, object to processing, portability of data, and (where the lawful ground of processing is consent) to withdraw consent.
8. Glossary
1. Personal Data: Any information about an identifiable individual. This includes information that can directly or indirectly identify a person, such as a name, identification number, location data, an online identifier, or factors specific to that person’s physical, physiological, genetic, mental, economic, cultural, or social identity.
2. Processing: Any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means. This includes collecting, recording, organizing, structuring, storing, adapting or altering, retrieving, consulting, using, disclosing by transmission, dissemination or otherwise making available, aligning or combining, restricting, erasing, or destroying data.
3. Controller: The natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
4. Data Subject: An identified or identifiable natural person whose personal data is being processed.
5. Consent: Any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, through a statement or by an explicit affirmative action, signify agreement to the processing of personal data relating to them.
6. Data Protection Officer (DPO): An expert on data privacy who works independently to ensure that an entity adheres to the policies and procedures outlined in the GDPR and other data protection laws.
7. Legitimate Interest: Processing personal data necessary for the legitimate interests pursued by the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, which require personal data protection.
8. Data Retention: Storing data for compliance or business reasons. Data retention policies dictate when data must be kept and the criteria for disposing of data once its retention period expires.
9. Right to Access: The right of data subjects to obtain confirmation from the data controller as to whether or not personal data concerning them is being processed and, where that is the case, access to the personal data.
10. Right to Rectification: Individuals have the right to have inaccurate personal data corrected or completed if it is incomplete.
11. Right to Erasure (‘Right to be Forgotten’): The right of individuals to have their data erased under certain circumstances.
12. Right to Restriction of Processing: The right to request the suspension of processing of personal data in specific scenarios, such as if the data’s accuracy is contested.
13. Data Portability: The right of individuals to receive the personal data concerning them, which they have provided to a controller in a structured, commonly used, and machine-readable format, and the right to transmit that data to another controller.
9. Changes to the Privacy Policy
We reserve the right to update this privacy policy at any time, and we will provide you with a new privacy policy when we make any substantial updates.