Privacy Policy
1. Introduction
At Oakwood Manila, accessible at oakwoodmanila.com, we are committed to safeguarding your privacy and ensuring the protection of your personal data in accordance with the highest legal and ethical standards. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you interact with our website and related services. Our commitment is grounded in principles of transparency, data minimization, and user empowerment.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through oakwoodmanila.com and any related interactions where we function as the data controller. As the data controller, Oakwood Manila determines the purposes and means of processing your personal data. If you have any questions regarding how we manage or process your data, you may contact us directly at [email protected].
This Policy is intended to comply with the requirements of the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant data protection laws.
3. Categories of Personal Data We Process
We may collect and process the following categories of personal data, depending on how you engage with oakwoodmanila.com:
– Usage Data: This includes information about how you use our website, such as browser type, operating system, referring URLs, IP address, date/time stamps, clickstream data, and session duration.
– Account Data: If you register or create an account on our website, we collect your full name, email address, physical mailing address, and phone number.
– Profile Data: This includes your preferences, past transactions, behavior on the site, user reviews submitted, and interactions with specific products or services.
– Communication Data: This consists of any messages or inquiries you send to us via contact forms, support requests, live chat, or email communications, along with associated metadata.
– Technical Data: Device identifiers, hardware model, browser plug-in types, network information, and server log files may be collected during your interaction with the platform.
– Transaction Data: Payment method information (processed via secure third-party platforms), order history, shipping addresses, billing addresses, and delivery confirmations.
– Preference Data: Data captured through marketing or product preference selections, including newsletter sign-ups, opt-in/opt-out choices, personalization settings, and promotional engagement.
4. Legal Bases for Processing
We process your personal data only when we have a lawful basis to do so, including:
– Legitimate Interests: For operational business purposes, including fraud detection, analytics, and improving service quality, provided these interests are not overridden by your rights.
– Contractual Necessity: When processing is required to fulfill contract terms, such as fulfilling an order or managing your account.
– Consent: With your explicit consent, such as when you subscribe to marketing communications or allow cookies beyond the essential category.
– Legal Obligations: To comply with legal and regulatory requirements that apply to us under applicable law.
5. Your Rights
Under applicable privacy laws, you may have the following rights in relation to your personal data:
– Right of Access: You have the right to request a copy of the personal data we hold about you.
– Right to Rectification: You may correct or update incomplete or inaccurate information about you.
– Right to Erasure: Also referred to as the “right to be forgotten,” you may request deletion of your personal data under certain conditions.
– Right to Restrict Processing: You may request limits on the way we use your data, under specific scenarios.
– Right to Data Portability: You may request to receive your data in a structured, commonly used, and machine-readable format and have the right to transmit that data to another controller.
To exercise any of these rights, please contact us at [email protected]. We will verify your identity and respond to your requests within the period required by applicable law.
6. Security Measures
We implement robust technical and organizational safeguards to protect personal data from unauthorized access, disclosure, alteration, or destruction, including:
– Encryption of sensitive data both in transit and at rest
– Role-based access control for internal data access
– Regular system security audits and penetration testing
– Continuous employee training in data protection and privacy awareness
– Secure data backup and disaster recovery protocols
Despite our best efforts, no security system is impenetrable. We encourage users to exercise caution and adopt responsible practices when providing personal data online.
7. International Transfers
Where we transfer personal data outside of the European Economic Area (EEA) or other protected jurisdictions, we do so using appropriate safeguards, including Standard Contractual Clauses approved by the European Commission, or transfers to recipients certified under data protection frameworks recognized as adequate. We ensure these measures maintain an equivalent level of data protection as required by applicable laws.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, as prescribed below:
– Usage and Technical Data: Retained for up to 12 months for analytics and diagnostics
– Account and Transactional Data: Retained for as long as the account is active and for up to 7 years thereafter for audit, legal, and accounting purposes
– Communication Data: Retained for up to 3 years after the resolution of the inquiry or support request
– Preference and Marketing Data: Retained until you withdraw your consent or object to the processing
Data may be retained longer where required by law or to protect our legitimate business interests.
9. Cookie Policy
Our website uses cookies and similar technologies to enhance user experience, analyze usage patterns, and deliver tailored content. We classify cookies as follows:
– Essential Cookies: Required for website functionality and safe navigation
– Functional Cookies: Enable personalization features and remember your settings
– Performance and Analytics Cookies: Collect aggregated information about how visitors interact with the website to improve performance
– Targeting/Advertising Cookies: Used to deliver advertising relevant to your interests (only with your consent)
10. Cookie Management and Compliance
By default, only essential cookies are active when you visit oakwoodmanila.com. Upon your first visit, we present a cookie banner where you may consent to or manage cookie preferences in compliance with GDPR and CCPA requirements. You may also manage your cookie preferences through your browser settings or by accessing the cookie management panel available on our site at any time.
Under CCPA, California residents also have the right to opt-out of the “sale” of personal information. Oakwood Manila does not “sell” personal information as defined under the CCPA.
11. Children’s Privacy
Our website is not directed to or intended for use by children under the age of 13. We do not knowingly collect or process personal data from individuals under 13 years of age. If we become aware that a child under 13 has provided us with personal information, we will promptly delete such data. If you believe a child has provided us personal data, please contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to modify this Privacy Policy at any time to reflect changes in legal, regulatory, or operational requirements. When such changes occur, we will publish the revised version on oakwoodmanila.com and, where appropriate, notify users directly via email or website banner. Continued use of the website following such updates signifies acknowledgment and acceptance of the revised policy.
13. Contact Information
For any questions, concerns, requests, or complaints regarding this Privacy Policy or your personal data, please contact us:
Email: [email protected]
We remain compliant with international data protection laws, including GDPR and CCPA, and are committed to honoring your privacy rights.
If you have further concerns about privacy at Oakwood Manila, please don’t hesitate to reach out.