TrustJaguar (“we”, “us”, “our”, “TrustJaguar.com”) is committed to protecting and respecting your privacy. This GDPR Privacy & Data Protection Policy (“Policy”) explains how we collect, use, disclose, retain, transfer, and safeguard your personal data when you visit or interact with our website, use our services, or otherwise engage with us.
We are the “data controller” in respect of the personal data you provide to us (unless we explicitly state otherwise). We comply with the EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) and other applicable data protection laws.
By using our website or services, you consent to the practices described in this Policy (subject to your rights under the GDPR).
| Term | Meaning |
|---|---|
| Personal Data | Any information relating to an identified or identifiable natural person (“data subject”). |
| Processing | Any operation or set of operations performed on personal data (e.g. collection, storage, use, disclosure, erasure). |
| Data Subject | A natural person whose personal data is processed by us. |
| Data Controller | Entity that determines the purposes and means of processing the personal data. |
| Data Processor | Entity which processes personal data on behalf of the controller. |
| Consent | Freely given, specific, informed and unambiguous indication of the data subject’s wishes by which they, by statement or clear affirmative action, signify agreement to the processing. |
We may collect, store, and use various kinds of personal data about you, including but not limited to:
Contact information
Name, email address, postal address, phone number
Billing / shipping address, etc.
Account / login details
Username, password (hashed / secured), profile preferences
Transactional information
Details of purchases or orders, payment method (e.g. last 4 digits of card, billing info), invoices, transaction history
Device / usage / technical data
IP address, browser type and version, device identifiers, operating system, referring URLs, pages visited, time stamps, log data, cookies, analytics data
Communications data
Correspondence with you (via email, chat, support tickets), feedback, inquiries
Other information you choose to provide
Optional surveys, reviews, user-generated content
Special Categories of Data (sensitive personal data, e.g. health, race, religion, biometric etc.) are not collected by us (unless explicitly and separately consented, and only where permitted under applicable law).
We rely on one or more of the following lawful bases under GDPR for processing your personal data:
Contract / Performance of a contract
To perform our obligations arising from your orders, provide goods or services you request, manage payments and deliveries, etc.
Consent
When you give us permission to process certain data (e.g. for marketing communications, cookies, newsletters). You may withdraw consent at any time.
Legitimate Interests
For purposes such as preventing fraud, improving our services, ensuring network and information security, internal analytics and business operations, provided such interests do not override your rights and freedoms.
Legal obligation
Where processing is necessary to comply with a legal obligation (e.g. tax, accounting, regulatory requirements).
Vital interests / Public interest
Rarely, if required to protect someone’s life or for matters of public interest (only where applicable law permits).
We use the personal data we collect for various legitimate purposes, including (but not limited to):
To process and fulfill your orders, payments, deliveries, returns, refunds
To communicate with you about your account, orders, support inquiries
To send you marketing communications (only with your consent or as otherwise permitted)
To personalize your experience, show relevant content, suggestions, and offers
To analyze usage patterns, improve and optimize our website, services and features
To detect and prevent fraud and abuse, for security and risk management
To comply with legal and regulatory obligations
To enforce our terms, policies, and protect our rights, property, or safety
We will not use your personal data for purposes inconsistent with the purposes at or before the time of collection, unless we inform you and you consent (where required).
We may share your personal data under limited circumstances, for example:
With service providers & processors (e.g. payment processors, shipping carriers, hosting providers, IT services, analytics providers) who help us deliver services. These parties will be bound by data processing agreements and required to protect your data.
With affiliates / partners when necessary (e.g. co-branded services, joint marketing), subject to similar obligations.
With law enforcement, regulators or government agencies if required by law, court order, or regulation (e.g. to respond to subpoenas, legal demands, compliance).
In connection with business transfers (e.g. mergers, acquisitions, reorganizations) — in such case, we will require the new entity to respect this Policy or obtain your consent where required.
With your explicit consent, for any other purpose.
We will not sell your personal data to third parties for their own marketing purposes without your consent.
Because we may use third‑party service providers located in countries outside the European Economic Area (EEA), your personal data may be transferred to and processed in jurisdictions that do not provide the same level of data protection as your country.
When we make such transfers, we ensure adequate protections are in place, such as:
Standard Contractual Clauses approved by the European Commission
Data transfer agreements
Binding corporate rules
Only transferring to entities in jurisdictions with an adequacy decision, or where law or contractual safeguards ensure your rights
We will always take reasonable steps to ensure your data is treated securely and in accordance with this Policy.
We will retain your personal data only for as long as necessary to fulfill the purposes we collected it for, or to satisfy legal, accounting, or reporting requirements.
Typical retention periods may include:
Transaction & purchase data: retained for [e.g. 6 years or as required by tax law]
Account data: until you delete your account or we deactivate it, plus a period thereafter for backup and legal compliance
Marketing / communications data: until you withdraw consent
Analytics / logs: for a limited period (e.g. 1‑3 years)
Legal obligations / dispute resolution: until resolution plus applicable statute of limitations
Once data is no longer needed, we will securely delete, anonymize, or aggregate it such that it no longer identifies you.
If you are in the EU or EEA (or otherwise covered), you have the following rights:
Right of Access – You may request a copy of the personal data we hold about you.
Right to Rectification – You may ask us to correct inaccurate or incomplete data.
Right to Erasure (“Right to be Forgotten”) – You may request deletion of your personal data in certain circumstances.
Right to Restrict Processing – You may ask us to limit processing (e.g. if you contest accuracy).
Right to Data Portability – You may request your data in a structured, machine‑readable format and to transmit it to another controller.
Right to Object – You may object to processing based on legitimate interests, direct marketing, or profiling.
Right to Withdraw Consent – If processing is based on consent, you can withdraw it at any time (without affecting processing prior to withdrawal).
Right to Lodge a Complaint – You have the right to lodge a complaint with a supervisory authority (e.g. your national data protection authority) if you believe we have violated GDPR.
To exercise these rights, please contact us using the contact details in Section 12 below. We may ask you to verify your identity for security reasons.
We will respond to your request within the legal timeframe (generally 1 month, extendable by 2 months in complex cases), and inform you of any extension or refusal (with reasons).
We use cookies, web beacons, and similar tracking technologies to collect and store technical data, usage data, and preferences.
Necessary / Essential cookies – required for core website functionality (e.g. login, sessions).
Performance / Analytics cookies – to analyze how users use the site and improve performance.
Functional cookies – to remember your preferences, language, etc.
Marketing / Advertising cookies – to show you relevant ads or offers (with consent where required).
You may manage or disable cookies through your browser settings or via any cookie consent banner provided on our site. Disabling or rejecting cookies may limit your ability to use some features of our site.
We may use third‑party analytics tools (e.g. Google Analytics) or advertising providers who set their own cookies, subject to their privacy policies.
We take appropriate technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access, misuse, or other security risks. Measures include (but are not limited to):
Encryption (in transit via TLS/SSL, and where applicable at rest)
Access controls, authentication mechanisms, secure credentials
Firewalls, intrusion detection, malware protection
Regular security audits, risk assessments, vulnerability scanning
Strict vendor / processor contracts and oversight
Employee data protection training and confidentiality requirements
While we strive to protect your data, no internet or electronic system is completely secure — we cannot guarantee absolute security.
If you have questions, concerns, or wish to exercise your rights, you may contact us:
Data Controller / Contact Information
TrustJaguar
Email: [admin@trustjaguar.com]
If we appoint a Data Protection Officer (DPO), we will provide their contact details here as well.
We may update this Policy from time to time (for instance, due to changes in law, regulations, business practices, or services). If we make material changes, we will notify you in advance (e.g. via prominent notice or email). The “Last Updated” date at the top will reflect the latest version.
We encourage you to review this Policy periodically to stay informed about how we handle your personal data.
If any provision of this Policy is found unlawful, invalid or unenforceable, it shall not affect the validity or enforceability of the remaining provisions.
This Policy does not create any third‑party rights or impose obligations beyond those required by applicable law.
This Policy is governed by the laws of [jurisdiction—e.g. the country where your business is based or the EU/Member State law].
In case of conflict between this Policy and mandatory local data protection law, the latter will prevail to the extent applicable.