Privacy Policy
1. Introduction
At IMF Blog (“we,” “us,” or “our”), accessible via imfblog.com (“Website”), we are committed to safeguarding the privacy and personal data of our users. We acknowledge the critical importance of protecting your information in compliance with relevant data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy describes how we collect, use, share, and protect your personal data, and outlines your privacy rights.
2. Scope of Policy and Role as Data Controller
This Privacy Policy applies to all users of imfblog.com, including visitors, subscribers, and registered account holders. IMF Blog acts as the “data controller” under both the GDPR and CCPA, meaning we determine the purposes and means of processing your personal data. By using imfblog.com and engaging with our services, you acknowledge and agree to the privacy practices detailed below.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
Usage Data
Includes data automatically collected through your use of the Website, such as IP address, browser type and version, geographic location, time zone setting, operating system, device type, referral source, pages visited, and Website navigation paths.
Account Data
Includes information provided during account registration or subscription, including full name, email address, postal address, phone number, username, and password.
Profile Data
Includes information you voluntarily provide concerning your preferences, browsing behavior, content interests, purchase history, and user-generated content such as comments or reviews.
Communication Data
Includes correspondence you send to us via email or contact forms, including the content of messages, feedback, inquiries, and any communications with customer support.
Technical Data
Includes technical identifiers such as device information, system configuration data, language settings, browser plug-ins, and error reports generated during your interactions with the Website.
Transaction Data
Includes billing and payment information, order history, and delivery details collected in the process of purchasing services, subscriptions, or products through imfblog.com.
Preference Data
Includes your marketing and communication preferences, consent indicators, and records of preferences regarding notifications, newsletters, and promotional materials.
4. Legal Bases for Processing
We only process your personal data where a valid legal basis applies, including:
– Consent: Where you have explicitly agreed to our processing of your data for specific purposes (e.g., newsletter subscription or marketing communications).
– Contractual Necessity: Where processing is necessary to enter into or perform a contract with you (e.g., account registration or purchase fulfillment).
– Legal Obligation: Where processing is required to comply with applicable legal or regulatory obligations.
– Legitimate Interests: Where processing is necessary for our legitimate business interests, such as enhancing user experience, website analytics, fraud prevention, and operational improvement, except where such interests are overridden by your fundamental rights and freedoms.
5. Your Rights
Subject to applicable laws, you have the following rights in relation to your personal data:
– Right of Access: Request confirmation as to whether or not personal data concerning you is being processed, and if so, access it.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request removal of your personal data (“right to be forgotten”), where legally permissible.
– Right to Restriction: Request limitation on the processing of your personal data under certain conditions.
– Right to Data Portability: Receive your personal data in a structured, commonly-used, and machine-readable format and have the right to transmit it to another controller.
– Right to Object: Object to the processing of your personal data based on our legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing.
Individuals located in California may also exercise the following rights under the CCPA:
– Right to Know: Request to know the categories and specific pieces of personal data collected, used, or disclosed.
– Right to Delete: Request deletion of personal data collected about you, subject to limitations under the CCPA.
– Right to Opt-Out: Opt-out of the sale or sharing of personal information.
– Right to Non-Discrimination: Be free from discrimination for exercising your privacy rights.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to:
– Data encryption in transmission and storage
– Role-based access controls and multi-factor authentication
– Regular system audits and vulnerability assessments
– Secure data backup and disaster recovery procedures
– Staff training on privacy protocols and data handling policies
7. International Data Transfers
Where we transfer personal data outside of the European Economic Area (EEA) or other applicable jurisdictions, including to third-party service providers or partners, such transfers are conducted in accordance with applicable data protection laws. We use Standard Contractual Clauses and implement additional safeguards, where necessary, to ensure an adequate level of protection.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or to comply with our legal, accounting, and regulatory obligations. Typical retention periods include:
– Account Data: Retained while your account remains active and for up to 2 years after closure.
– Transaction Data: Retained for 7 years to comply with financial and tax regulations.
– Communication Data: Retained for up to 3 years following resolution.
– Usage and Technical Data: Aggregated and anonymized where possible; typically retained for 24 months.
– Marketing Preferences: Retained until you withdraw consent or request deletion.
9. Cookie Policy
We use cookies and similar technologies to enhance functionality and improve your user experience on imfblog.com. Cookies are categorized as follows:
Essential Cookies
Required for core functionality, such as user login and security features.
Functional Cookies
Enable personalized features like remembering language or region selection.
Analytics Cookies
Collect anonymous statistical data for analyzing how users engage with the Website in order to improve performance.
Performance Cookies
Monitor site performance, error messages, and system response times to enhance the quality and reliability of our services.
10. Cookie Management and Compliance
Upon your first visit to imfblog.com, a banner will request your consent to certain cookies in compliance with GDPR and CCPA requirements. You have the right to manage or withdraw your consent for non-essential cookies at any time by adjusting your browser settings or using our Cookie Preferences Center. California residents can use a “Do Not Sell My Personal Information” link, where applicable, to manage data-sharing preferences.
11. Children’s Privacy
We do not knowingly collect or solicit personal data from children under the age of 13. If we learn that a child under 13 has provided us with personal data, we will promptly delete such information. If you believe that a child has submitted personal information to us, please contact us immediately at [email protected].
12. Policy Updates
We reserve the right to amend or update this Privacy Policy at our discretion to reflect changes in legal requirements, business practices, or Website functionalities. Users will be notified of material changes through prominent communication on imfblog.com or via email, where appropriate. Continued use of the Website after such changes constitutes acknowledgement and acceptance of the revised Policy.
13. Contact
If you have any questions about this Privacy Policy, your personal data, or wish to file a complaint regarding our privacy practices, you may contact us at:
IMF Blog
Email: [email protected]
We are committed to ensuring full compliance with applicable data protection laws and welcome all inquiries regarding how we protect your privacy.