California Stone Milling values your privacy and believes you have a right to know what data we collect, for what purposes, and how the information is typically used and if or when it is shared with third parties. We also recognize your right to manage permissions regarding your personal information, including the option to have your information deleted from our records.
This policy is meant for, and directed towards, visitors to the calstonemilling.com website.
What We Collect and How It’s Used
Non-Personally Identifiable Information (Cookies):
Personally-Identifiable Information (includes the following):
We only collect this information though the normal course of business via our on-line contact/estimate request form. We use this information to respond to requests for information and provide customer service.
We have adopted and follow a strict process for ensuring your personal information is safeguarded and secure within our office systems. For information regarding our internal information security processes and policies, please contact the data security team member listed under the contact section of this policy.
We do not sell or rent customer lists or personally-identifiable information to any third parties. We will only share your information with third parties outside of our company, including providers of contracted products and services, in order to process requests, provide information or offers, or provide customer service per your request.
Please note that our website may contain links to other websites and social media platforms not managed or controlled by California Stone Milling, therefore we cannot verify the security of these external sites.
Website Security Measures
To protect your information on-line, we have implemented the following security measures:
Website SSL certificate which enables the https protocol and allows secure connections from a web server to a browser.
The General Data Protection Regulation (GDPR) took effect on May 25, 2018. This regulation standardizes data privacy laws across the European Union (EU). You are entitled to exercise GDPR rights if you’re an EU citizen.
In the event of a data breach where personally-identifiable information is disclosed to parties outside of our organization and without consent, we will notify all users that are and/or may be involved within 72 hours of our discovery of the breach. Notification will occur via email advising the nature of the breach, what information was or may have been disclosed, and what actions we are taking to mitigate damages and repair the situation.
Right to Access
Under the GDPR, you have a right to access the information we collect, in electronic form. To receive a copy of your information, please send a request via email, originating from the email address we have on-file, to the to the data security representative listed below. Kindly include your name, email address, phone number, and a brief message requesting a report of your personally-identifiable information.
Right to Be Forgotten
To have all of your personally-identifiable information permanently removed from our records, please send an email request to the data security representative listed below, including your name, email address, phone number, and a brief message requesting removal of your personal information from our records.
For all inquiries and requests relating to data security and website privacy, including requests under GDPR for access and to be forgotten, please contact our data security representative at firstname.lastname@example.org