GDPR Compliance for All in One Accessibility Widget

Introduction

Our All in One Accessibility Widget is designed with privacy and data protection as top priorities. We are committed to ensuring that our widget adheres to the General Data Protection Regulation (GDPR) and that users' personal data is handled with the utmost care.

No Personal Data Collection

The All in One Accessibility widget does not collect, store, or process any personal data from users. The widget operates entirely without accessing any personally identifiable information (PII), ensuring full compliance with GDPR principles.

Local Storage

All accessibility preferences (such as font size, color contrast, or text-to-speech settings) are stored locally on the user's browser. No data is transmitted or stored externally on our servers, safeguarding user privacy.

User Control

Users have full control over the accessibility features enabled within the widget. They can enable or disable specific features, and all preferences are stored locally on their devices, giving users complete autonomy over their data.

GDPR Compliance Principles

  • Data Minimization: The widget does not collect or process any unnecessary data. It only interacts with the user's local settings, ensuring that no personal data is involved.
  • Transparency: We provide clear information to users about how their data is handled, ensuring that no personal data is collected, and all actions are explained transparently in the widget’s documentation.
  • User Rights: As no personal data is collected, users do not need to request access, correction, or deletion of their data.
  • Security: All data is stored locally on the user's browser and protected by the security measures of the browser itself.

Widget Purchases and Customer Data

When customers purchase a widget or other products from us, we collect and process personal data necessary to complete the transaction. We ensure that all data is processed lawfully, transparently, and securely in compliance with GDPR.

Lawful Basis for Processing Personal Data

We process customer personal data based on the following lawful grounds:

  1. Contractual Necessity: We collect personal data (such as name, address, and payment details) to fulfill a contract with the customer and complete their order.
  2. Legal Obligation: We may process customer data to comply with legal obligations, such as tax and accounting regulations.
  3. Consent: If we require additional data processing for purposes like marketing or newsletters, we will seek explicit consent from the customer, which can be withdrawn at any time.

Types of Data Collected

  • Identification Information: Name, address, email address, phone number.
  • Payment Information: Credit card details or other payment methods, processed securely through trusted payment gateways.
  • Order Information: Details of the products or services purchased.

Data Retention

We retain customer data for as long as necessary to fulfill the purpose for which it was collected. After this period, we securely delete or anonymize the data unless a longer retention period is required by law (e.g., for tax or accounting purposes).

Data Security

We implement strong security measures to protect customer data, including encryption during transmission, access control for authorized personnel, and secure data storage.

Third-Party Data Sharing

We do not share customer data with third parties, except when necessary to fulfill the transaction (e.g., payment processors, delivery services). These third parties are GDPR-compliant and bound by data protection agreements.

Customer Rights

Under GDPR, customers have the right to:

  • Access: Request a copy of the personal data we hold about them.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of personal data, subject to certain conditions.
  • Object: Object to the processing of their data in certain circumstances (e.g., marketing).
  • Withdraw Consent: Withdraw consent if processing is based on consent.

Conclusion

We ensure that both the All in One Accessibility widget and our widget purchase process are fully compliant with GDPR, prioritizing data protection and privacy. Users and customers can trust that their personal information is handled with care and in line with their rights and legal protections.

For any questions or to exercise your rights, please contact us at [email protected].