Privacy Policy

1. Introduction & Data Controller
This Privacy Policy outlines how us collects, uses, and protects your personal data when you use our website https://whimsi-dify.online/. 

2. Information We Collect and Legal Basis (GDPR & General)
We process your data based on contractual necessity, legitimate interests, legal compliance, and with your consent.

• Personal Data You Provide: Identity, contact, financial, and transaction data.

• Automated Collection: Technical data (IP, login, browser), usage data, and cookie data. We use cookies for essential operation, analytics, and marketing (with consent where required).

• Data from Third Parties: Analytics providers, advertising networks, and payment service providers.

3. How We Use Your Data
Purposes include: order fulfillment, customer service, website administration, marketing, fraud prevention, and business improvement.

4. International Data Transfers
Your data may be transferred to and processed in countries outside your residence (e.g., the United States). We implement appropriate safeguards, such as Standard Contractual Clauses, to ensure an adequate level of protection.

5. Data Sharing
We share data with processors under strict contractual obligations (e.g., cloud hosting, payment gateways, shipping). We do not sell your personal data.

6. Your Data Subject Rights
Depending on your location, you may have rights to: access, rectification, erasure, restriction of processing, data portability, objection to processing, and withdrawal of consent. To exercise these rights, contact us at https://whimsi-dify.online/. We respond within one month.

7. Data Security & Retention
We employ security measures like SSL encryption and access controls. We retain personal data only as long as necessary for the purposes collected or as required by law.

8. Changes to This Policy
We may update this policy. The latest version will always be posted here with an updated “Last Updated” date.