Privacy Policy
Mavorac ("we," "us," or "our") is committed to protecting the sovereignty of your data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information. We operate on a principle of data minimization and strict adherence to global privacy standards, including GDPR, CCPA/CPRA, and CalOPPA.
1. Information We Collect
We collect information from two primary sources: directly from you when you provide it to us, and automatically as you navigate our Service. We collect the following categories:
Identity Data: Includes first name, last name, username, or similar identifier provided via contact forms or client portals.
Contact Data: Includes billing address, delivery address, email address, and telephone numbers.
Technical Data: Includes internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform.
Usage Data: Information about how you use our website, products, and services.
Sensitive Data: We do not collect any Sensitive Personal Information (such as racial or ethnic origin, religious beliefs, precise geolocation, or biometric data).
2. Legal Basis for Processing (GDPR)
Under the General Data Protection Regulation (GDPR), we process Personal Data under the following legal bases:
Performance of a Contract: We use your Identity and Contact Data where processing is necessary for the performance of a contract to which you are a party (e.g., delivering our services).
Legitimate Interests: We use Technical and Usage Data where processing is necessary for our legitimate business interests (e.g., fraud prevention, network security) and your interests and fundamental rights do not override those interests.
Consent: Where you have given explicit consent for processing for specific purposes (e.g., newsletter subscription).
3. Disclosure of Your Information
We do not sell your personal information, nor do we share it for cross-context behavioral advertising. We may disclose information in the following situations:
Service Providers: We may employ third-party companies (Subprocessors) to facilitate our Service (e.g., cloud hosting, payment processing). These parties are bound by strict confidentiality agreements.
Legal Requirements: We may disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).
Business Transfers: If Mavorac is involved in a merger, acquisition, or asset sale, your Personal Data may be transferred.
4. International Data Transfers
Your information, including Personal Data, may be processed at our operating offices and in any other places where the parties involved in the processing are located. This means that this information may be transferred to—and maintained on—computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ. Mavorac will take all steps reasonably necessary to ensure that your data is treated securely. When transferring Personal Data from the European Economic Area (EEA) to countries not deemed adequate by the European Commission, we rely on legally approved transfer mechanisms, such as Standard Contractual Clauses (SCCs), to ensure your data remains protected.
5. Data Retention
We will retain your Personal Data only for as long as necessary to fulfill the purposes we collected it for, including satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, and applicable legal requirements.
6. Your Data Protection Rights
Depending on your location, you may have the following rights:
Access & Portability
Request copies of your personal data.
Rectification
Request correction of inaccurate information.
Erasure
Request deletion of your data (Right to be Forgotten).
Restriction & Objection
Request to restrict or object to our processing of your data.
Automated Decision-Making
Right not to be subject to decisions based solely on automated processing. (Mavorac does not use this).
Lodge a Complaint
European residents may lodge a complaint with their local DPA.
California Residents (CCPA/CPRA)
Right to request disclosure of categories collected, sources, and business purpose. Right to opt-out of the sale or sharing of personal data.
* We will not discriminate against you for exercising any of your privacy rights.
7. Tracking & "Do Not Track" Signals
We use cookies to facilitate authentication and telemetry. We do not support "Do Not Track" (DNT) settings in web browsers at this time, as there is no universally accepted standard for DNT signals. However, we do not track your activity across third-party websites.
8. Children's Privacy
Our Service does not address anyone under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us.
9. Contact & Governing Law
This Privacy Policy shall be governed and construed in accordance with the laws of the State of Delaware, United States, without regard to its conflict of law provisions. To exercise your privacy rights or for legal inquiries, please contact us:
16 North Bryn Mawr Ave
STE 68
Bryn Mawr, PA 19010