GDPR

GDPR Compliance & Data Protection Policy

Effective Date: July 25, 2025

This GDPR Policy outlines how Imtisal Traders Ltd. (“we,” “us,” or “our”) processes and protects personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This policy applies to all personal data collected through our website at https://imtisaltradersltd.com/ and other interactions with our services.

1. Data Controller

The data controller responsible for your personal data is:

  • Trade Name: Imtisal Traders Ltd.
  • Address: OFFICE 332, 85 DUNSTALL HILL WOLVERHAMPTON UNITED KINGDOM WV6 0SR
  • Email: info@imtisaltradersltd.com
  • Phone: +447411545306

2. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual Necessity: To fulfill orders, process payments, and provide the products and services you have requested.
  • Legitimate Interests: To improve our services, prevent fraud, and market our products, where such interests do not override your fundamental rights and freedoms.
  • Consent: For specific purposes, such as sending marketing emails, where we have obtained your explicit consent. You have the right to withdraw your consent at any time.
  • Legal Obligation: To comply with legal requirements, such as tax and accounting regulations.

3. Your Data Protection Rights (Data Subject Rights)

Under GDPR, you have the following rights regarding your personal data:

  • The Right to Be Informed: To receive clear and transparent information about how we process your data.
  • The Right of Access: To request a copy of the personal data we hold about you.
  • The Right to Rectification: To have inaccurate or incomplete data corrected without undue delay.
  • The Right to Erasure (“Right to Be Forgotten”): To request the deletion of your personal data under certain circumstances.
  • The Right to Restrict Processing: To request that we limit the way we use your personal data.
  • The Right to Data Portability: To receive your data in a structured, commonly used, and machine-readable format and to have it transferred to another data controller.
  • The Right to Object: To object to the processing of your data for direct marketing or other purposes based on legitimate interests.
  • Rights Related to Automated Decision-Making: To not be subject to a decision based solely on automated processing, including profiling, which produces legal or similarly significant effects on you.

To exercise any of these rights, please contact us using the details provided above. We will respond to your request within one month.

4. How We Use Your Data

We use your personal data for the following purposes:

  • Order Fulfillment: To process and ship your orders.
  • Customer Service: To respond to your inquiries and support requests.
  • Marketing: To send you promotional information with your explicit consent.
  • Website Improvement: To analyze website usage and improve our services.
  • Legal Compliance: To meet our legal and regulatory obligations.

5. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements.

6. International Data Transfers

As we operate globally, your personal data may be transferred to and processed in countries outside of the European Economic Area (EEA). In such cases, we ensure that adequate safeguards are in place to protect your data, such as using Standard Contractual Clauses approved by the European Commission.

7. Complaints

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority, particularly in the Member State of your habitual residence, place of work, or place of the alleged infringement.

8. Changes to This Policy

We reserve the right to update this GDPR Policy at any time. Any changes will be posted on this page with a revised effective date.

Disclaimer: This document is a template and is intended for informational purposes. It does not constitute legal advice. It is essential that you have this policy reviewed by a legal professional to ensure it fully complies with the specific requirements of GDPR and your business operations.