Privacy Policy
1. Introduction
At OMRA USA (“we,” “us,” or “our”), your privacy is of paramount importance. We are committed to preserving the confidentiality, integrity, and security of the personal data of all visitors and users of our website, available at omrausa.com. This Privacy Policy outlines how we collect, use, store, and safeguard your personal information and explains your rights under applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
Our guiding objective is to practice responsible privacy management and uphold a transparency-first approach to data protection in all our operations.
2. Scope of Policy and Role as Data Controller
This Privacy Policy applies to all data collected through our website, omrausa.com, including when you access content, enquire about products and services, communicate with our team, or engage in transactions. For the purposes of the GDPR and related legislation, OMRA USA is the “Data Controller” for the personal data processed through our services and interactions. As Data Controller, we determine the purposes and means by which your personal data is processed.
3. Categories of Data Processed
We collect and process various categories of personal data depending on how you interact with us. The categories include but are not limited to:
a. Usage Data
This includes information such as browser type, browser version, IP address, time zone, referring/exit pages, session durations, and other analytical metadata. We collect this data automatically when you visit our website.
b. Account Data
When you create an account or engage in transactions, we collect your name, mailing address, email address, telephone number, and other relevant contact information.
c. Profile Data
Information stored in your user profile such as password information, saved preferences, search histories, product interactions, and past purchases.
d. Communication Data
This includes records of your interactions with us, such as email correspondences, support queries, contact form entries, chat messages, and call history when available.
e. Technical Data
Details pertaining to your device such as the operating system, hardware type, unique device identifiers, screen resolution, platform behavior, and network information.
f. Transaction Data
Payment-related information, billing addresses, delivery details, receipts, and purchase history. Note: We do not store full payment card numbers, which are processed through secure, PCI-compliant third-party payment providers.
g. Preference Data
Marketing preferences, communication consents, subscription types, and indications of interest in products and services.
4. Legal Bases for Processing
We process personal data in accordance with legal bases authorized under applicable data protection laws:
– Consent: Where you have explicitly consented to the processing of your personal data, for instance, when subscribing to newsletters.
– Contractual Necessity: When processing is essential to fulfill our contractual obligations, such as providing you with purchased goods and services.
– Legitimate Interests: To conduct business operations, support service delivery, detect fraudulent activity, and improve website functionality, where such interests are not overridden by your rights.
– Legal Obligations: Where processing is necessary to comply with applicable legal or regulatory requirements.
5. Your Rights
Under GDPR and CCPA, you are entitled to a range of rights concerning your personal information:
– Right of Access: You may request to access the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: Also known as the “right to be forgotten,” this allows you to request deletion of your data, subject to applicable exceptions.
– Right to Restriction: You may request the restriction or suppression of your data processing in specific scenarios.
– Right to Data Portability: Where applicable, you may request to receive your personal data in a structured, commonly used format to transmit to another service provider.
– Right to Object: You may object to our processing of your information based on legitimate interests or direct marketing.
– Rights under CCPA: California residents may also opt out of the sale or sharing of their personal information and have the right to know what information is collected, for what purposes, and with whom it is shared.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We implement a range of administrative, technical, and physical safeguards designed to protect the personal data we collect:
– Data encryption using secure protocols (HTTPS, SSL/TLS)
– Role-based access control and authentication procedures
– Regular system monitoring, logging, and penetration testing
– Scheduled backups and disaster recovery protocols
– Staff cybersecurity training and confidentiality agreements
Despite these best efforts, no method of transmission over the internet or method of electronic storage is fully secure. We encourage users to exercise caution when submitting personal data online.
7. International Transfers
If you are located outside of the United States, please be aware that your information may be transferred to and stored in the United States or other jurisdictions that may not offer the same level of data protection as your home country. OMRA USA implements safeguards, including Standard Contractual Clauses and data processing agreements, to ensure that data transfers comply with applicable data protection laws.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes it was collected for, including legal, accounting, or reporting requirements:
– Account and profile data: retained for the life of the account and up to 1 year post-deletion
– Communication and support data: typically retained for up to 3 years
– Transactional data: retained for 7 years in accordance with financial regulation
– Analytics and usage data: anonymized and stored for up to 24 months
After these periods, data is securely deleted or anonymized.
9. Cookie Policy
omrausa.com uses cookies and similar technologies to enhance user experience and improve site functionality. We categorize our use of cookies as follows:
– Essential Cookies: Required to operate core site features such as security, authentication, and network management.
– Functional Cookies: Support enhanced features including language selection, saved preferences, and user recognition.
– Analytics Cookies: Allow us to measure traffic and usage patterns through services such as Google Analytics.
– Performance Cookies: Facilitate performance optimization, load balancing, and feature testing.
Cookies may be set by us or by external providers whose services we utilize.
10. Cookie Management and Compliance
You can manage or disable cookies via your browser settings or by utilizing our website’s cookie consent management tool upon visiting omrausa.com. Under GDPR and CCPA, we are required to obtain user consent for non-essential cookies and provide the option to opt out of certain data collection activities.
For California residents, exercising your right to opt out of the sale or sharing of personal information also applies to cookies used for targeted advertising. You may use “Do Not Track” headers or enable global privacy controls in supported browsers.
11. Special Protections for Children Under 13
omrausa.com is not directed at children under the age of 13, and we do not knowingly collect or solicit personal data from individuals within this age group. If we become aware that data from a minor under 13 has been collected without verified parental consent, we will promptly delete such information. Parents or guardians who believe their child has provided personal information may contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to revise this Privacy Policy from time to time. Material changes in our processing activities or legal obligations may prompt updates. Where required by law, we will notify users via email or provide clear notice on omrausa.com so you may review and acknowledge any significant policy revisions.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, you may contact our Privacy Compliance Team at:
Email: [email protected]
Website: https://omrausa.com
We are dedicated to ensuring that your privacy is protected, and we take every reasonable measure to meet our obligations under GDPR, CCPA, and other applicable data protection regulations. Please feel free to reach out at any time regarding your privacy preferences or to exercise your rights.