Privacy Policy for PlexusPLM
1. Introduction – Our Commitment to Privacy and Data Protection
At PlexusPLM (“we,” “us,” or “our”), your privacy and the security of your personal data are of foremost importance. This Privacy Policy demonstrates our unwavering commitment to safeguarding the confidentiality, integrity, and availability of your information in compliance with global privacy standards, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We process your data with transparency, fairness, and in strict accordance with applicable laws. This Policy outlines how we collect, use, and protect your information when you visit our website, plexusplm.com.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users who access or interact with the website plexusplm.com, as well as individuals whose personal data we may process in relation to our products, services, and communications. PlexusPLM is the data controller responsible for determining the purposes and means of processing your personal data under applicable data protection laws. For California residents, we may act as a business as defined under the CCPA.
3. Categories of Data Processed
We collect, process, and store various categories of personal information based on your interaction with our website and services. These include:
a. Usage Data:
Includes information about your browser type, version, IP address, pages visited, session time, navigation paths, referral sources, and geolocation data. This is typically collected automatically through cookies or similar technologies.
b. Account Data:
Consists of identifiable information such as full name, postal address, email address, phone number, and login credentials used during account setup or registration.
c. Profile Data:
Refers to information related to your preferences, purchasing behavior, product interests, interactions with our services, and user-generated content including survey responses.
d. Communication Data:
Includes email correspondence, support tickets, customer service communications, and contact history when you reach out to us via forms, chat, or direct email.
e. Technical Data:
Covers technical diagnostics including your device type, operating system, browser settings, screen resolution, and language preferences.
f. Transaction Data:
Comprises order history, payment details (as handled by trusted third-party processors), shipping information, billing records, and delivery confirmations.
g. Preference Data:
Encompasses your consent choices, selected preferences for communications, opt-in/out status for marketing, and specific service use interests or feedback.
4. Legal Bases for Processing
We process your personal data only when permitted by law. The lawful bases we rely on include:
– Performance of a Contract: To fulfill or perform our contractual obligations with you—for example, providing services or completing transactions.
– Legitimate Interests: To operate, enhance, and secure our services, improve user experience, conduct analytics, and market responsibly—balanced against your rights and interests.
– Legal Obligation: To comply with applicable laws and lawful requests from authorities.
– Consent: Where consent is required, for example in sending marketing materials or setting non-essential cookies, we obtain your explicit agreement in accordance with applicable laws.
5. Your Rights Under GDPR and CCPA
Subject to applicable laws and jurisdiction, you have the following rights in relation to your personal data:
– Right of Access: You may request details of the data we hold about you and how it is used.
– Right to Rectification: You may correct or update inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”): You can request deletion of your data where no longer necessary for the purposes collected or where consent is withdrawn.
– Right to Restriction: You may request that processing be restricted under certain circumstances.
– Right to Data Portability: You have the right to request your data in a structured, commonly used, and machine-readable format and transmit it to another controller.
– Right to Object to Processing: You may object to processing based on legitimate interests or direct marketing.
– Non-Discrimination: Under the CCPA, we will not discriminate against users for exercising their privacy rights.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We employ a comprehensive set of security controls designed to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These include:
– Encryption of data in transit and at rest
– Access controls based on roles and need-to-know principles
– Secure authentication procedures
– Regular data backups and disaster recovery protocols
– Ongoing privacy training and awareness programs for staff
– Use of secured data centers and firewalls
While no system can be completely foolproof, we are committed to maintaining an appropriate level of security for the data we manage.
7. International Transfers
As part of our global operations, your personal data may be transferred to and stored in countries outside your own, including those that may not offer the same level of data protection. When such transfers occur, we implement appropriate safeguards including:
– Standard Contractual Clauses approved by the European Commission
– Reliance on adequacy decisions or International Data Transfer Agreements (IDTAs) where relevant
– Continuous monitoring of local privacy frameworks and cross-border compliance
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. Retention periods vary according to the type of data:
– Usage and Technical Data: up to 24 months
– Account, Profile, and Transaction Data: for the duration of your relationship with us and up to 6 years thereafter, as required for tax or legal compliance
– Communication Data: generally retained for 24 months, unless needed for dispute resolution
– Marketing Preference Data: until consent is withdrawn or inactive for 36 months
Upon expiration of applicable retention periods, data is securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and similar technologies to improve browsing experience, ensure functionality, and analyze performance. Categories of cookies include:
– Essential Cookies: Necessary for basic site functionality, login sessions, and secure navigation.
– Functional Cookies: Enhance personalization, remember preferences, and deliver enhanced content.
– Analytics Cookies: Collect aggregated data on site usage patterns to improve performance and user engagement (e.g., via Google Analytics or similar platforms).
– Performance Cookies: Help us identify bottlenecks or errors, and ensure the smooth delivery of services.
10. Cookie Management and Compliance with GDPR and CCPA
Prior to deploying non-essential cookies, we ensure lawful consent is obtained through a compliant cookie banner. You can manage your cookie preferences at any time via browser settings or cookie settings available on plexusplm.com. Under GDPR and CCPA, you have the right to opt out of data selling and withdraw consent to cookie usage.
For California residents, we do not knowingly “sell” personal data as defined by the CCPA. If this changes, PlexusPLM will provide a clear opt-out mechanism pursuant to legal obligations.
11. Special Protections for Children Under 13
Our services are not directed to children under the age of 13, and we do not knowingly collect personal data from anyone in this age group. If a parent or guardian becomes aware that a child has provided personal data without their consent, they should contact us at [email protected]. Upon verification, we will promptly delete such data.
12. Policy Updates and User Notifications
This Privacy Policy may be updated periodically to reflect changing legal, regulatory, or operational requirements. When changes are made, we will revise the content accordingly and, where materially significant, will provide notice via banner, email, or through our website plexusplm.com. Continued use of our services following such changes constitutes your acceptance of the revised Policy.
13. Contact
If you have any questions, concerns, or wish to exercise your rights under this Privacy Policy or applicable data protection laws, please reach out to us at:
Email: [email protected]
Website: www.plexusplm.com
We are committed to full compliance with GDPR, CCPA, and all relevant privacy laws. Please contact us directly if you have any concerns regarding your privacy or how your data is handled.