4281 Express Lane
Sarasota, FL 34249
Tel : +1-561-246-3351
Web : www.protectstar.com
Last Updated: February 11, 2023
By using the website of Protectstar Inc., you acknowledge and agree to the terms of this policy. If you do not agree with the terms outlined in this policy, we ask that you do not use our website.
1. Your Rights as a Data Subject
a) Collection and Use of Personal Data
We only collect and use personal data when it is necessary to provide you with the services you have requested or to comply with legal requirements. We may collect personal data such as your name, address, email address, or telephone number.
b) Legal Basis for Processing Personal Data
The processing of personal data by Protectstar Inc. is in accordance with the General Data Protection Regulation (GDPR) and other country-specific data protection regulations. If there is no legal basis for the processing of personal data, we will obtain your consent before doing so.
c) Retention and Deletion of Personal Data
Protectstar Inc. will retain your personal data for as long as necessary to provide you with the services you have requested or to comply with legal requirements. You have the right to request the deletion of your personal data at any time. Our Data Protection Officer or another employee of the controller will promptly ensure that your request is complied with.
d) Third-Party Service Providers
Protectstar Inc. may share your personal data with third-party service providers who perform services on our behalf. These service providers are required to protect your personal data and are prohibited from using it for any other purpose.
e) Security Measures
Protectstar Inc. has implemented numerous technical and organizational measures to ensure the protection of your personal data processed through our website. However, due to the nature of internet transmissions, we cannot guarantee absolute security. If you prefer, you may also provide us with your personal data through alternative means, such as by telephone.
To ensure clarity and understanding, we have provided definitions for the terms used in this policy:
- Personal Data: Any information relating to an identified or identifiable natural person, such as name, address, email address, or telephone number.
- Data Subject: A natural person whose personal data is being processed by Protectstar Inc.
- Processing: Any operation performed on personal data, including collection, recording, organization, storage, and dissemination.
- Restriction of Processing: The marking of stored personal data to limit its future processing.
- Profiling: The automated processing of personal data to evaluate certain aspects of a natural person, such as their performance, interests, or behavior.
- Pseudonymization: The processing of personal data in a manner that it can no longer be attributed to a specific data subject without the use of additional information.
- Controller: The natural or legal person who determines the purposes and means of processing personal data.
- Processor: A natural or legal person who processes personal data on behalf of the controller.
- Recipient: A natural or legal person, public authority, or agency to whom personal data is disclosed.
- Third Party: A person or entity other than the data subject, controller, processor, or authorized personnel under the direct authority of the controller or processor.
- Consent: A freely given, specific, informed, and unambiguous indication by the data subject to agree to the processing of their personal data.
g) Your Rights
As a data subject, you have the right to access, correct, and
2. Controller Information
The controller responsible for the processing of personal data in accordance with the General Data Protection Regulation (GDPR) and other data protection laws is:
4281 Express Lane
Suite L3604 Sarasota,
FL 34249 USA
However, users have the option to prevent the setting of cookies through their internet browser settings at any time. If cookies are disabled, some website functions may not be available.
4. Collection of General Data and Information
The website of Protectstar Inc. collects a series of general data and information when a user or an automated system accesses the website. This information is stored in server log files. It may include browser type and version, operating system, website referral, date and time of access, IP address, internet service provider, and other similar data.
This information is used to correctly deliver the website's content, optimize content and advertisements, ensure the long-term viability of the information technology systems and website technology, and provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. In addition, the collected data is analyzed statistically to increase data protection and ensure the optimal level of protection for personal data processed by Protectstar Inc.
5. Registration on the Website
Users can register on the Protectstar Inc. website by providing personal data. The personal data collected during registration is used exclusively for internal purposes and may be shared with processors for internal purposes. The IP address, date, and time of the registration are also stored to prevent misuse of services and to investigate any offenses.
Registered users can change or delete their personal data at any time. Protectstar Inc. provides information on personal data stored upon request and corrects or deletes personal data at the request or indication of the user, as long as there are no statutory storage obligations. A designated Data Protection Officer and other employees are available as contact persons in this regard.
6. Subscription to Newsletters
Protectstar Inc. offers users the option to subscribe to the company's newsletter. Personal data collected during the subscription process is used solely for sending the newsletter. Subscribers may be informed via email about changes to the newsletter or technical circumstances. Personal data collected for the newsletter will not be shared with third parties.
Users may unsubscribe from the newsletter at any time by clicking the unsubscribe link in each newsletter or contacting Protectstar Inc. directly. The consent for storage of personal data for the newsletter can also be revoked at any time.
7. Newsletter Tracking
The newsletters from Protectstar Inc. include tracking pixels, which are small graphics embedded in HTML formatted emails to allow for log file recording and analysis. This enables the statistical analysis of the success or failure of online marketing campaigns. By analyzing the embedded tracking pixels, Protectstar Inc. can determine if and when an email was opened and which links were clicked by the data subject. The personal data collected through the tracking pixels in the newsletters will be stored and analyzed by Protectstar Inc. to improve the delivery of future newsletters and to tailor their content better to the interests of the data subject. This data will not be shared with third parties. Data subjects have the right to revoke their consent at any time by opting out of the newsletter. Withdrawing from the receipt of the newsletter will automatically be regarded by Protectstar Inc. as a revocation.
8. Contacting through the Website
Protectstar Inc. provides electronic contact through its website, including direct communication using email. If a data subject contacts Protectstar Inc. through an email or contact form, the personal data shared by the data subject will be automatically stored. This data will only be used for processing or contacting the data subject and will not be shared with third parties.
9. Routine Deletion and Blocking of Personal Data
Protectstar Inc. will only process and store personal data for the period necessary to achieve its purpose or as required by law. If the storage purpose is no longer applicable or if the storage period as determined by the European Union or other relevant legislation expires, the personal data will be routinely blocked or deleted in accordance with legal requirements.
10. Data Subject Rights
a) Right of confirmation
Each data subject has the right, granted by the European legislator, to obtain confirmation from the controller as to whether or not their personal data is being processed. To exercise this right, the data subject may contact our Data Protection Officer or another employee of the controller at any time.
b) Right of access
Each data subject has the right, granted by the European legislator, to obtain free information about their personal data stored by the controller and a copy of that information. This information includes:
- The purpose of processing
- The categories of personal data being processed
- The recipients or categories of recipients to whom the data has been or will be disclosed, including those in third countries or international organizations
- The expected duration of data storage or the criteria used to determine it
- The right to request rectification, erasure, or restriction of processing
- The right to file a complaint with a supervisory authority
- The source of data if not collected from the data subject
- The existence and details of automated decision-making processes, including profiling
The data subject also has the right to know if their personal data is transferred to a third country or international organization and to be informed of the safeguards in place for that transfer. To exercise this right, the data subject may contact our Data Protection Officer or another employee of the controller at any time.
c) Right to Rectification
Each data subject has the right, granted by the European legislator, to obtain the rectification of inaccurate personal data without undue delay. This includes the right to have incomplete data completed, as appropriate for the purpose of processing. To exercise this right, the data subject may contact our Data Protection Officer or another employee of the controller at any time.
d) Right to Erasure (Right to be Forgotten)
Each data subject has the right, granted by the European legislator, to obtain the erasure of their personal data without undue delay when one of the following conditions is met and processing is not necessary:
- The data is no longer necessary for the purposes it was collected for
- The data subject withdraws consent for processing
- The data subject objects to processing
- The data was processed illegally
- Erasure is required by law
- The data was collected for the offer of information society services To exercise this right, the data subject may contact our Data Protection Officer or another employee of the controller at any time. The Data Protection Officer or another employee will promptly ensure compliance with the erasure request.
e) Right to Restrict Processing
Each data subject has the right, granted by the European legislator, to obtain restriction of processing in the following circumstances:
- The accuracy of the data is in dispute
- Processing is unlawful and the data subject opposes erasure and requests restriction instead
- The controller no longer needs the data but it is required by the data subject for legal claims
- The data subject objects to processing pending verification of legitimate grounds To exercise this right, the data subject may contact our Data Protection Officer or another employee of the controller at any time. The Data Protection Officer or another employee will arrange the restriction of processing.
f) Right to Data Portability
Each data subject has the right, granted by the European legislator, to receive their personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller without hindrance. This right applies when the processing is based on consent or contract and is carried out by automated means, as long as the processing is not necessary for tasks in the public interest
11. Application and Job Candidate Data Protection
The data controller will collect and process the personal information of job applicants for the purpose of conducting the application process. The process may also be performed electronically. This includes, for example, when an applicant submits their application materials through email or a website form. If the data controller decides to hire the applicant, their personal information will be stored to comply with legal requirements and manage the employment relationship. If the applicant is not hired, their application materials will be deleted two months after the rejection decision is communicated, unless there are other legitimate interests that justify retaining the data, such as potential legal proceedings under the General Equal Treatment Act.
12. Google Analytics Data Protection
The website uses Google Analytics, with the anonymization function, to analyze website traffic. Google Analytics is a web analytics service provided by Google Inc. located at 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
The website's use of Google Analytics includes the "_gat._anonymizeIp" application, which abbreviates and anonymizes the IP address of website visitors from EU member states or EEA agreement states. The purpose of Google Analytics is to analyze website traffic, and Google uses the data collected for this purpose, as well as for providing online reports and other services related to the website's usage.
Google Analytics places a cookie on the user's device to store information such as access time, location, and frequency of visits to the website. This information, along with the user's IP address, is transmitted to Google in the United States with each visit to the website. The user's personal information may be shared with third parties by Google. The user can prevent the setting of cookies by adjusting their web browser settings at any time. They can also delete cookies that have already been set by Google Analytics.
For more information on Google's data protection policies, please visit https://www.google.com/intl/en/policies/privacy/ and http://www.google.com/analytics/terms/us.html. You can find more information on Google Analytics at https://www.google.com/analytics/.
13. Payment Method
Data protection provisions for the use of Shopify Payments and PayPal as payment processors This website has integrated components from Shopify Payments and PayPal as payment processors.
PayPal is an online payment service provider that allows payments to be made through virtual private or business accounts or through credit cards, in the event that a user doesn't have a PayPal account. PayPal also provides buyer protection services and acts as a trustee.
The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., located at 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
If a data subject chooses PayPal as the payment option during the checkout process, their personal data will be automatically transmitted to PayPal. This data includes first name, last name, address, email address, IP address, telephone number, mobile phone number, or other necessary information for payment processing. This information is required for the processing of the purchase contract and is related to the specific order. The transmission of personal data to PayPal is for the purposes of payment processing and fraud prevention.
The controller will only transmit personal data to PayPal if there is a legitimate interest in doing so. PayPal may also share this information with economic credit agencies for identity and creditworthiness checks. In the event that it is necessary, PayPal may share personal data with its affiliates, service providers, or subcontractors for the purpose of fulfilling contractual obligations or processing data in accordance with payment processing. A data subject has the option to revoke their consent for the handling of personal data by PayPal at any time.
However, this revocation will not have any effect on personal data that must be processed, used, or transmitted in accordance with payment processing obligations.
The applicable data protection provisions of PayPal can be found at https://www.paypal.com/us/webapps/mpp/ua/privacy-full.
14. Legal basis for processing personal data
The processing of personal data by Protectstar Inc. is based on the following legal grounds under the General Data Protection Regulation (GDPR):
a. Consent: If the processing of personal data is based on the data subject's consent, the legal basis is Article 6(1) lit. A GDPR.
b. Performance of a contract: If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, or for carrying out pre-contractual measures, the legal basis is Article 6(1) lit. b GDPR.
c. Legal obligation: If Protectstar Inc. is subject to a legal obligation that requires the processing of personal data, the legal basis is Article 6(1) lit. c GDPR.
d. Vital interests: In rare cases, if the processing of personal data is necessary to protect the vital interests of the data subject or another natural person, the legal basis is Article 6(1) lit. d GDPR.
e. Legitimate interests: If the processing of personal data is necessary for the legitimate interests pursued by Protectstar Inc. or a third party, and such interests are not overridden by the interests or fundamental rights and freedoms of the data subject that require the protection of personal data, the legal basis is Article 6(1) lit.f GDPR. This legal basis applies to processing operations that are not covered by the above legal grounds and are specifically mentioned by the European legislator.
The European legislator considers that a legitimate interest could be assumed if the data subject is a client of Protectstar Inc. (Recital 47 Sentence 2 GDPR).
15. Legitimate Interests Pursued by the Controller or Third Party
The processing of personal data by Protectstar Inc. is based on Article 6(1) lit. f of the General Data Protection Regulation (GDPR), and our legitimate interest is to carry out our business operations in the best interest of all our employees, shareholders and stakeholders.
16. Storage Period for Personal Data
The period for which personal data will be stored by Protectstar Inc. is determined by the applicable statutory retention period. Once this period has expired, the relevant data will be routinely deleted if it is no longer necessary for the fulfillment of a contract or for the initiation of a contract.
17. Provision of Personal Data as a Statutory or Contractual Requirement
The provision of personal data may be required by law, such as tax regulations, or may result from contractual provisions, such as information on the contractual partner. In some cases, it may be necessary for the data subject to provide personal data to us in order to conclude a contract. In such cases, the data subject is obligated to provide their personal data to Protectstar Inc. If the data subject fails to provide their personal data, the contract with Protectstar Inc. may not be concluded.
Before providing personal data, the data subject should contact our Data Protection Officer, who will clarify if the provision of personal data is required by law or contract, if there is an obligation to provide personal data, and the consequences of not providing such data.
18.Sharing of Information with Third-Party
19. Automated Decision-Making
As a responsible company, Protectstar Inc. does not engage in automated decision-making or profiling activities. We prioritize transparency and fairness in our processing of personal data.
20. Contact Information for Privacy Concerns
Protectstar Inc. takes the protection of your personal data seriously and is committed to ensuring the privacy and security of your information. If you have any questions or concerns regarding this policy or the processing of your personal data, please do not hesitate to contact us at