Privacy Policy

This Privacy Policy governs the manner in which toshine collects, uses, maintains, and discloses information collected from users (each, a “User”) of the https://sytoshine.com/ website (“Site”) in compliance with the General Data Protection Regulation (GDPR).

Personal identification information

We may collect personal identification information from Users in a variety of ways, including, but not limited to, when Users visit our site, register on the site, fill out a form, and in connection with other activities, services, features, or resources we make available on our Site. Users may be asked for, as appropriate, name, email address, mailing address, phone number, credit card information. Users may, however, visit our Site anonymously. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personal identification information, except that it may prevent them from engaging in certain Site-related activities.

Legal basis for processing personal data

We will only collect and process personal data where we have a lawful basis for doing so. The lawful bases for processing personal data are:

• Consent: We may collect and process personal data based on the User’s consent, which can be withdrawn at any time.
• Contractual necessity: We may collect and process personal data to fulfill a contract or provide a service requested by the User.
• Legal obligation: We may collect and process personal data to comply with a legal obligation.
• Legitimate interests: We may collect and process personal data for our legitimate interests, provided that such interests do not outweigh the User’s fundamental rights and freedoms.

Purpose of collecting data

We may collect personal data from Users for the following purposes:

• To provide and improve our services: We may use personal data to provide and improve our services, personalize User experience, and understand how Users interact with our Site.
• To communicate with Users: We may use personal data to communicate with Users about their account, updates, and promotional offers.
• To process payments: We may use personal data to process payments and prevent fraud.
• To comply with legal obligations: We may use personal data to comply with applicable laws and regulations.

Retention of personal data

We will only retain personal data for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.

User rights

Users have the following rights regarding their personal data:

• Right to access: Users have the right to access their personal data and obtain information about how it is being processed.
• Right to rectification: Users have the right to rectify their personaldata if it is inaccurate or incomplete.
• Right to erasure: Users have the right to request the erasure of their personal data under certain circumstances, such as if the data is no longer necessary for the purposes for which it was collected or if the User withdraws their consent.
• Right to restrict processing: Users have the right to request the restriction of processing of their personal data under certain circumstances, such as if the User contests the accuracy of the data or if the processing is unlawful.
• Right to data portability: Users have the right to receive their personal data in a structured, commonly used, and machine-readable format and have the right to transmit that data to another controller.
• Right to object: Users have the right to object to the processing of their personal data under certain circumstances, such as if the processing is based on legitimate interests or for direct marketing purposes.
• Right to withdraw consent: Users have the right to withdraw their consent to the processing of their personal data at any time.

Security measures

We take appropriate technical and organizational measures to ensure the security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

Sharing personal data

We may share personal data with third-party service providers who assist us in providing our services, such as payment processors and hosting providers. We will only share personal data with such third-party service providers who have agreed to comply with the GDPR and have adequate security measures in place.

International transfers of personal data

We may transfer personal data to third-party service providers located outside the European Economic Area (EEA) in order to provide our services. We will only transfer personal data to such third-party service providers who have agreed to comply with the GDPR and have adequate security measures in place. Not only that, but we will also ensure that appropriate safeguards are in place for any international transfers of personal data, such as standard contractual clauses.

Complaints and contact information

If you have any complaints or concerns about our processing of personal data, you have the right to lodge a complaint with a supervisory authority. You may also contact us at [insert your contact email address] if you have any questions or concerns about our privacy practices.

Changes to this GDPR Privacy Policy

We may update this GDPR Privacy Policy from time to time. We will notify Users of any changes by posting the new Privacy Policy on this page. Users are encouraged to check this page regularly for any chan