1. Introduction
Globoteca Multimedia Group LLC ("Globoteca Multimedia Group", "we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal information.
This Privacy Policy explains how we collect, use, store, disclose, and protect information when you visit our websites, use our services, subscribe to our content, or interact with our digital platforms.
By using our website, you agree to the practices described in this policy.
2. Who We Are
Globoteca Multimedia Group LLC
1309 Coffeen Ave STE 18627
Sheridan, WY 82801
United States
Registered in Wyoming, USA.
For privacy requests: privacy@globotecagroup.com
3. Personal Data We Collect
3.1 Information You Provide
- Name
- Email address
- Phone number
- Billing/shipping information
- Form submissions
- Customer support inquiries
3.2 Information Collected Automatically
- IP address
- Browser type and version
- Device information
- Pages visited
- Time spent on pages
- Referring websites
3.3 Cookies and Tracking
We use cookies for website performance, analytics, security, and user preferences.
Non‑essential cookies require consent for EU users.
4. How We Use Your Information
We process your data to:
- Provide and maintain services
- Communicate with users
- Manage accounts
- Improve website performance
- Comply with legal obligations
- Process payments (Stripe)
- Prevent fraud and security issues
We do NOT sell personal information.
5. Legal Basis for Processing (GDPR)
For EU/EEA users, we process data under:
- Contract performance
- Legitimate interests
- Legal obligations
- Consent (cookies, marketing)
7. International Data Transfers
Your data may be transferred to the United States or other countries.
Transfers for EU residents use Standard Contractual Clauses (SCCs).
8. Data Retention
We retain data as long as necessary for service provision, legal compliance, or security.
Data is deleted or anonymized when no longer required.
9. Your Rights (GDPR)
EU/EEA users have rights to:
- Access
- Rectification
- Deletion
- Restriction
- Portability
- Objection
- Withdrawal of consent
- File complaints with Data Protection Authorities
Request via: privacy@globotecagroup.com
10. Your Rights (CCPA/CPRA)
California residents may request:
- Access to personal data
- Deletion
- Explanation of data categories collected
- Confirmation of no data sale
We do not sell personal information.
11. Children's Privacy
We do not knowingly collect data from children under 13.
Contact us if such data was collected unintentionally.
12. Security Measures
We use encryption, secure hosting, access controls, and best‑practice safeguards.
13. Third‑Party Links
External sites are not covered by this Privacy Policy.
14. Changes to This Policy
We may update this Privacy Policy from time to time.
The "Last Updated" date reflects recent changes.
15. Contact Information
For privacy inquiries: privacy@globotecagroup.com
Annex A – GDPR Lawful Basis Overview
For users in the European Economic Area (EEA), Globoteca Multimedia Group LLC ("Globoteca Multimedia Group") relies on the following lawful bases under the GDPR:
1. Contract Performance
- Purpose: Providing access to our services, delivering digital content, handling orders, and responding to user requests.
- Data Types: Identification data (name, email), account data, transaction details.
2. Legitimate Interests
- Purpose: Improving our websites and services, preventing fraud, ensuring security, and maintaining business operations.
- Data Types: Usage data, logs, device information, IP address, basic analytics data.
- Safeguards: We assess our interests against your rights and apply minimization and security measures.
3. Legal Obligations
- Purpose: Compliance with accounting, tax, and regulatory requirements, and responding to lawful requests.
- Data Types: Transaction records, billing information, and any data necessary to demonstrate compliance.
4. Consent
- Purpose: Non-essential cookies, analytics (where required), and optional marketing communications.
- Data Types: Cookie identifiers, marketing preferences, contact details.
- Note: You may withdraw your consent at any time using your browser settings or by contacting us.
Annex B – Data Categories and Recipients
We process the following main categories of personal data and may share them with the listed types of recipients:
1. Identification and Contact Data
- Examples: Name, email address, country, billing details (if applicable).
- Recipients: Payment providers (for transactions), email service providers (for communications), hosting providers (for secure storage).
2. Technical and Usage Data
- Examples: IP address, browser type, device information, pages viewed, session duration.
- Recipients: Hosting providers, analytics tools (if used), security and performance services.
3. Transaction and Payment Data
- Examples: Transaction amounts, payment method details (tokenized, handled by Stripe), order history.
- Recipients: Stripe or other payment processors; accounting or bookkeeping tools if used.
4. Communication Data
- Examples: Messages sent via contact forms, emails, support requests.
- Recipients: Email providers, ticketing or support tools where applicable.
We ensure that each recipient only receives the minimum data necessary for their function.
Annex C – Data Retention Overview
We keep personal data only as long as needed for the purposes described in this Privacy Policy or as required by law:
1. Account and Contact Data
Typical Retention: For as long as the user maintains a relationship with us, plus a reasonable period for record‑keeping.
2. Transaction and Billing Data
Typical Retention: 5–10 years, depending on applicable accounting and tax laws.
3. Technical and Usage Data
Typical Retention: Shorter periods, often 12–24 months, unless required longer for security, fraud prevention, or legal reasons.
4. Communication Data
Typical Retention: For the duration necessary to respond and maintain records of interactions, then archived or deleted.
We may anonymize data for statistical or analytical purposes, in which case it is no longer considered personal data.
Annex D – Security Measures
Globoteca Multimedia Group applies reasonable technical and organizational measures to protect personal data, including:
- Encryption in transit (HTTPS/TLS) for website traffic.
- Secure hosting environments with access controls.
- Restricted internal access to personal data based on role and necessity.
- Use of reputable third‑party providers with strong security practices.
- Monitoring for unusual activity and potential abuse.
- Regular updates and security patches on core systems and dependencies.
While no system can be guaranteed 100% secure, we strive to follow industry best practices to safeguard your information.
Annex E – Sub‑Processors and Key Service Providers
We may engage carefully selected third‑party service providers ("sub‑processors") to support our operations. These may include:
1. Hosting and Infrastructure
Purpose: Hosting the website, databases, and related infrastructure.
2. Database and Backend Services (e.g., Supabase or equivalent)
Purpose: Managing authentication, data storage, and application backends.
3. Payment Processing (e.g., Stripe or equivalent)
Purpose: Processing payments, preventing fraud, and handling billing‑related events.
4. Email and Communication Providers
Purpose: Sending transactional messages, notifications, and (where applicable) marketing communications.
5. Analytics and Performance Tools (if used)
Purpose: Understanding website usage, performance diagnostics, and improving user experience.
All sub‑processors are required to implement appropriate security measures and comply with applicable data protection laws. Where required, we rely on Standard Contractual Clauses (SCCs) or equivalent mechanisms for international data transfers.