Privacy Policy

About our Privacy Policy

At Tell Tale Adventures, we prioritize your privacy and are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR). This privacy policy outlines how we collect, use, store, and protect your personal data, as well as your rights concerning your data.

If you have questions about our privacy policy, please contact us via our Contact Form.

1. Data We Collect

We collect only the data necessary to provide and improve our services:

  • Personal Identifiable Information: Name, address, email, phone number, and payment details.
  • Usage Data: IP address, browser type, device information, and browsing activity on our website.

We do not collect sensitive personal data unless explicitly provided by you with your consent.

2. How We Use Your Data

Your personal data is processed for the following purposes:

  • To fulfill orders and provide services.
  • To process payments and issue invoices.
  • To communicate updates or respond to inquiries.
  • To analyze website usage for improvements.

We do not use your data for automated decision-making or profiling.

3. Legal Basis for Processing

Under GDPR, we process your data based on:

  • Contractual Necessity: To deliver the services or products you’ve requested.
  • Consent: For optional communications (e.g., newsletters).
  • Legal Obligation: To comply with tax, financial, and legal requirements.
  • Legitimate Interests: To enhance services and secure our platform.

4. Sharing Your Data

Your data may be shared with trusted third parties solely for fulfilling our services, such as:

  • Payment processors (e.g., PayPal, iDIN, BanContact, Billink).
  • Shipping and logistics providers (e.g., DHL, PostNL, FedEx).
  • IT and hosting service providers (e.g., Woocommerce, Hostinger).

All third parties are bound by agreements to comply with GDPR and protect your data. Your information will not be sold or used for marketing by third parties.
If you want to know more about the legal agreements of the aforementioned trusted third parties, please visit their respective websites for more information.

5. Data Storage and Security

We use industry-standard security measures to protect your data, including:

  • Encryption (e.g., SSL) for data transmission.
  • Regularly updated firewall and antivirus protection.
  • Access controls to limit data to authorized personnel only.

Data is stored within the European Economic Area (EEA). Transfers outside the EEA will only occur if adequate protections are in place, such as EU-approved standard contractual clauses.

6. Data Retention

We retain your data only as long as necessary to fulfill the purposes outlined in this policy or as required by law.

  • Customer data: Retained until you request deletion.
  • Financial records: Retained for 7 years to comply with tax regulations.

7. Your Rights

Under GDPR, you have the following rights:

  • Right to Access: Request a copy of your data.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data (“Right to be Forgotten”).
  • Right to Restriction: Limit processing under certain conditions.
  • Right to Data Portability: Receive your data in a machine-readable format.
  • Right to Object: Stop data processing for legitimate interest purposes.
  • Right to Withdraw Consent: For data processed with your consent.

To exercise your rights, contact us via our Contact Form. We will respond within 30 days.

8. Cookies

We use cookies to improve your experience on our website. Cookies are small files stored on your device that help us understand your preferences and usage patterns.

  • We do not use cookies for advertising or third-party tracking.
  • Essential cookies are necessary for website functionality.

For more details, see our Cookie Policy.

9. Changes to This Privacy Policy

We may update this policy from time to time. The latest version will always be available on our website. For significant changes, we will notify you via email or on our website.

10. Complaints

If you believe your data is being mishandled, you have the right to lodge a complaint with your National Data Protection Authority.

For further information or assistance, please contact us via our Contact Form.

Effective Date: 26-11-2024