Barmejiat provides products and services worldwide. As part of our business, we offer our customers an e-commerce product or service accessible from our website https://barmejiat.com. To provide our products/services, we collect personal data about you. Data collection takes place on our website, by phone, by email, through social media websites, through written correspondence and through other media we may use from time to time as technology develops. This policy is intended to provide you with detailed information on our use of your personal data and the usage of our website in general.

We reserve the right periodically to change the Privacy Policy, for any reason, which shall be affected by publishing of the updated Privacy Policy on the Website. It is your duty from time to time to check out the Website to be informed regarding the latest version of the Privacy Policy.

We collect and record personal data to carry out the following processing:

• Customer account and order management
• Contract performance
• Legitimate interests
• Necessary for legal obligations
• To address requests from governmental bodies, court proceedings, or law enforcement agencies engaged in investigation

We share your data within https://barmejiat.com and we may also share it with public authorities and partners who can use the data for their own purposes (they are recipients) and suppliers only for the account and according to our instructions (our sub-contractors). The recipients of the data include:

• Special agencies
• Financing institutions
• Police authorities in the context of court orders
• Commercial partners including marketing and advertising firms

We also use sub-contractors for the following operations:

• Secure payment on our website and mobile applications
• Detection and investigation of financial crime, e.g. fraud
• Anti-fraud measures
• Delivering your orders and handling refunds
• Customer services, including management of phone calls and printing and sending post
• Customizing the content of mobile sites and applications
• Implementation of maintenance and technical development of our website, internal applications and information system
• Collection of customer reviews
• Sending marketing communications (e.g. email, SMS, post)

Barmejiat does not sell and does not generally release (other than as provided in this policy) personally identifiable information to third parties; however, information provided to any governmental body may be subject to disclosure pursuant to the applicable law.

Barmejiat provides services all over the world, including in the countries of the European Union. In this respect, we must comply with the rules of GDPR in the process of processing a personal date. Barmejiat is the “controller” in respect of your personal data for the purposes of EU General Data Protection Regulation (GDPR) No. 2016/679 of 27 April 2016 with effect from 25 May 2018. Your privacy is protected by law. Under data protection law, we are allowed to use your personal data only if we have a lawful reason. We must have one or more of the following lawful reasons:

• To perform a contract or to take steps at your request prior to entering into a contract, or
• Where we are required to do so to comply with our legal obligations (e.g. to keep records), or
• Where it is in our legitimate interests or those of a third party, or
• Where you have consented

Under Articles 14 to 22 of EU General Data Protection Regulation (GDPR), you have the following rights:

• Right of access: You can request a copy of the data we hold about you
• Right of rectification: You can query any data we hold about you that you think is inaccurate or incomplete
• Right to object to processing, or to request us to delete, remove or stop using it: This is often referred to as the “right to be forgotten”. It is not an absolute right to request that organizations stop using or delete your data. An organization may be entitled to keep and continue to use the data (e.g. to comply with a legal obligation to retain records, or so that the organization can handle complaints and show that it treated you fairly in any period that the law gives you to lodge a complaint or legal claim)
• Right to limit processing: It may sometimes be possible to limit processing of data so that it can only be used for certain purposes (e.g. legal claims or to exercise legal rights). In such circumstances, we would not use or share the data in other ways while processing is restricted. You can request us to restrict the use of your data: if it is inaccurate; if it has been used unlawfully but you do not want us to delete it; if it is not relevant any more but you want us to keep it for use in legal claims; if you have already requested us to stop using it but you are waiting for us to tell you if we are allowed to keep using it
• Right to object to profiling: Article 21 of the GDPR gives you the right to object to the processing of your personal data. This effectively allows you to ask you to stop processing your personal data
• Right to portability: The right to data portability allows you to obtain and reuse your personal data for your own purposes across different services. It allows you to move, copy or transfer personal data easily from one IT environment to another in a safe and secure way, without affecting its usability

Pursuant to the EU General Data Protection Regulation (GDPR), if an organization that is processing your data detects a breach of data security that could create a high risk to your rights, then that organization may be required to notify you of the breach so you are aware of it. In such circumstances, the organization would also be required to notify the relevant supervisory authority.

You can use your rights by contacting us electronically by using Contact Us form. Please include your surname, first name, address, email and, if possible, your username to accelerate consideration of your request. We may require proof of identity before fulfilling your request. We will contact you to acknowledge receipt of your request and we will then answer fully within one month. In some cases, due to the complexity of the request or the number of requests, this period may be extended by 2 months.

In relation to marketing profiling (selecting you for specific promotions and making product recommendations), you may continue to receive marketing promotions but they will be less relevant to you and no longer be targeted to your interests.

Where we are processing your data based on your consent, you may withdraw your consent at any time by contacting us at the above link.

To provide better service and a more effective Website, Barmejiat may use cookies as part of our interaction with your Internet browser. A cookie is a small text file placed on your hard drive by our web page server. A cookie cannot retrieve any other data from your hard drive, pass on computer viruses or capture your e-mail address. Cookies are commonly used on web sites and do not harm your system.