Privacy Policy
1. Introduction
At shafaatullahkhan.com (hereinafter referred to as “we,” “our,” or “the Website”), we are committed to protecting your privacy and upholding your rights as a data subject in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and applicable data protection laws. We are dedicated to ensuring that your personal information is handled in a transparent, secure, and lawful manner. This Privacy Policy outlines how we collect, process, store, and share your personal data when you access or interact with our website and services.
2. Scope and Role of the Data Controller
This Privacy Policy applies to personal data collected through your interaction with the Website, including but not limited to visits, communications, purchases, and other engagements. For the purposes of data protection legislation, the data controller responsible for the processing of your personal data is shafaatullahkhan.com. All inquiries related to data privacy may be directed to [email protected].
3. Categories of Data We Process
We collect and process various types of personal information that fall within the following categories:
a) Usage Data
This includes technical data gathered automatically when you visit shafaatullahkhan.com, such as IP address, browser type and version, pages viewed, time zone settings, date and time of visit, referral URLs, and how you navigate and interact with the Website.
b) Account Data
Personal details you provide when you create an account or otherwise engage with our services, including your full name, email address, postal address, telephone number, and any credentials required for authentication.
c) Profile Data
Includes your preferences, purchase history, browsing habits on our Website, interactions with content, music streaming or product behavior, and customizations associated with your profile.
d) Communication Data
Comprises all correspondence you initiate with us, such as customer service requests, feedback, inquiries, and contact history (via emails, forms, or other communication channels).
e) Technical Data
Details about the device and system configuration used to access the Website, which includes device identifiers, operating systems, hardware model, screen resolution, and browser plug-in types.
f) Transaction Data
Information about any payments made on or via the Website, including order details, billing addresses, payment methods, and delivery details. We do not store full payment card data; all secure payment processing is performed through compliant third-party providers.
g) Preference Data
Marketing and communication preferences, including records of your consent or objection to receiving direct marketing materials, newsletter subscriptions, interest in particular instruments, concerts, or services.
4. Legal Bases for Processing
We rely on several legal bases to process your personal data in accordance with applicable data protection law:
– Consent: Where you have given us clear, affirmative consent for specific purposes (e.g., marketing communications).
– Contract: When the data is necessary for the performance of a contract to which you are a party (e.g., processing purchases or delivering orders).
– Legitimate Interest: Where we process your data in our legitimate interest, provided such interest is not overridden by your rights and freedoms. For example, analyzing use of our site to improve user experience.
– Legal Obligation: Where processing is necessary for compliance with a legal duty.
5. Your Rights
Subject to applicable laws, you have the following data protection rights:
– Right of Access: Obtain a copy of your personal data and information on how it is processed.
– Right to Rectification: Correct inaccurate or incomplete data we hold about you.
– Right to Erasure: Request the deletion of your data where there is no legal ground for its continued storage.
– Right to Restriction: Restrict the processing of your data in certain circumstances.
– Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format and transfer it to another controller where possible.
– Right to Object: Object to processing based on legitimate interests or direct marketing.
– Right to Withdraw Consent: You may withdraw your consent at any time where processing is based on your consent.
To exercise any of these rights, please contact us via [email protected]. We may need to verify your identity before processing your request.
6. Security Measures
We implement robust technical and organizational security measures to safeguard your data, including:
– Secure Sockets Layer (SSL) encryption across our Website
– Role-based access controls and restricted data access
– Regular security audits and vulnerability assessments
– Encrypted data storage and secure backups
– Staff training and access protocols to maintain awareness and accountability
While we take all reasonable steps to protect your data, we cannot guarantee absolute security. You are advised to take precautionary measures in safeguarding your personal credentials.
7. International Transfers
Where permitted by law, your personal data may be transferred to and stored in jurisdictions outside your place of residence, including the United States and countries that may not offer the same level of data protection. In such cases, we ensure appropriate safeguards are in place, including the use of Standard Contractual Clauses approved by the European Commission and compliance with applicable regional protections.
8. Data Retention
We retain personal data only for as long as is necessary to fulfill the purposes outlined in this Privacy Policy:
– Usage and Technical Data: retained for up to 12 months for analytics and improvement purposes.
– Account and Profile Data: retained while your account is active and for up to 6 years thereafter for compliance and legal purposes.
– Communication Data: retained for 3 years from the last correspondence.
– Transaction Data: retained for 7 years for financial and audit compliance.
– Preference Data: retained until withdrawal of consent or when data is no longer relevant.
Upon expiration of the applicable retention period, data is securely deleted or anonymized.
9. Cookie Policy
Our Website uses cookies and similar technologies for a variety of functions, which may include:
– Essential Cookies: Necessary for Website functionality (e.g., logins, session management).
– Functional Cookies: Allow improved functionality and personalization.
– Analytics Cookies: Help us understand user behavior and Website usage (e.g., Google Analytics).
– Performance Cookies: Support responsiveness, load speed, and service reliability.
10. Cookie Management and Compliance
When you first visit shafaatullahkhan.com, we present you with a cookie banner that allows you to manage your consent preferences in accordance with GDPR and CCPA requirements. You can adjust your settings at any time via our Cookie Settings or through your browser’s configuration. Visitors from California may also exercise the right to opt out of the “sale” or “sharing” of personal data as defined under CCPA by submitting a request to [email protected].
11. Children’s Data Protection
Our Website and services are not directed to children under the age of 13, and we do not knowingly collect personal data from individuals in this age group. If you are under 13, please do not use the Website or provide any information through it. If you believe we may have collected personal data from a child without parental consent, please notify us immediately at [email protected], and we will take appropriate steps to remove such information.
12. Policy Updates
We reserve the right to make changes to this Privacy Policy to reflect updates in legislation, best practices, or changes in our services. When substantial changes are made, users who have provided personal information will be notified through appropriate communication methods. Continued use of our Website following any changes indicates acceptance of the updated terms.
13. Contact Information
If you have questions, concerns, or requests relating to this Privacy Policy or to your personal data, you may contact us by email at:
Compliance Note
shafaatullahkhan.com is committed to full compliance with the GDPR, CCPA, and all applicable privacy regulations. We encourage you to reach out if you have any concerns about how your personal data is processed or protected on our platform.