GDPR Compliance Statement

GDPR Compliance Statement

At Nurevian LLC, located at 1704 N Dixie Hwy Ste C,, Elizabethtown, Kentucky 42701, US, we are committed to protecting your privacy and handling your personal data with care and transparency. While our primary operations are based in the United States, we adhere to global best practices for data protection, including the principles outlined in the General Data Protection Regulation (GDPR), to ensure your personal information is managed responsibly.

This statement outlines our commitment to data privacy and your rights regarding your personal information when you visit https://nurevian.com or interact with our services.

1. Who We Are

Nurevian LLC acts as the data controller for the personal data collected through our website and services. This means we are responsible for determining the purposes and means of processing your personal data.

2. The Personal Data We Collect and Why

We collect various types of personal data to process your orders, provide customer support, improve our services, and, with your consent, send you relevant marketing communications.

Contact and Identity Data: This includes your name, shipping address, billing address, email address, and phone number.
Purpose: To process and fulfill your orders, provide order updates, manage returns, and respond to your inquiries.
Legal Basis: Necessary for the performance of a contract (e.g., fulfilling your purchase), our legitimate interests (e.g., customer service), and/or your consent (e.g., for marketing emails).
Payment Data: When you make a purchase, we collect necessary payment information. We accept PayPal, Credit/Debit Cards (Visa, Mastercard, Amex), Stripe, and Google Pay.
Purpose: To process your transactions and prevent fraud. Please note that we do not directly store sensitive payment card details; these are securely processed by our trusted payment partners.
Legal Basis: Necessary for the performance of a contract.
Technical Data: This includes your internet protocol (IP) address, browser type and version, time zone setting, operating system, and platform.
Purpose: To ensure the security and functionality of our website, analyze website traffic, and improve user experience.
Legal Basis: Our legitimate interests (e.g., website security and improvement).
Usage Data: Information about how you use our website, products, and services.
Purpose: To analyze trends, administer the site, track user's movement, and gather demographic information for aggregate use to enhance our website and product offerings.
Legal Basis: Our legitimate interests (e.g., service improvement).
Communication Data: If you contact us via email at support@nurevian.com or phone at +1 270-234-0803, we will keep a record of that correspondence.
Purpose: To provide customer support and address your requests.
Legal Basis: Our legitimate interests (e.g., customer service).

3. Legal Basis for Processing Your Personal Data

We will only process your personal data when we have a valid legal basis to do so, which may include:
Performance of a Contract: When processing is necessary for the fulfillment of a contract to which you are a party (e.g., purchasing products).
Legitimate Interests: When processing is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., preventing fraud, improving our services, marketing with appropriate safeguards).
Consent: When you have given us explicit consent for a specific purpose (e.g., subscribing to our newsletter). You have the right to withdraw your consent at any time.
Legal Obligation: When processing is necessary to comply with a legal or regulatory obligation (e.g., tax requirements).

4. How We Protect Your Data

We implement robust security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include data encryption, secure servers, and strict access controls for our employees. We regularly review our security practices to ensure your data remains safe.

5. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Typically, order data is kept for a period of up to 7 years to comply with tax and accounting obligations. If you have an account with us, your data will be retained as long as your account is active or until you request its deletion.

6. Sharing Your Data

We do not sell your personal data to third parties. We may share your data with trusted third parties who assist us in operating our website, conducting our business, or serving our customers, such as:
Payment Processors: To securely handle your transactions (e.g., PayPal, Stripe).
Shipping Carriers: To deliver your orders.
Service Providers: For website hosting, data analytics, and marketing services.

All third parties are contractually obligated to protect your data and only use it for the specific purposes we define. We do not ship internationally, so your data will not be transferred outside the United States for shipping purposes.

7. Your Data Protection Rights

Under GDPR principles, you have several rights regarding your personal data:
Right to Access: You have the right to request copies of your personal data we hold.
Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or incomplete.
Right to Erasure ('Right to be Forgotten'): You have the right to request that we erase your personal data under certain conditions.
Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain conditions.
Right to Object to Processing: You have the right to object to our processing of your personal data under certain conditions.
Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
Right to Lodge a Complaint: If you have concerns about our data handling practices, you have the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within a reasonable timeframe.

8. Contact Us

If you have any questions about this GDPR Compliance Statement, our data practices, or wish to exercise any of your rights, please contact us:

Nurevian LLC
Address: 1704 N Dixie Hwy Ste C,, Elizabethtown, Kentucky 42701, US
Email: support@nurevian.com
Phone: +1 270-234-0803
Customer Service Hours: Monday-Friday 9AM-5PM EST

We are committed to resolving any privacy concerns you may have.