Privacy Policy

Bright Orbit Tech (“we”, “our”, or “us”) is committed to safeguarding your privacy and ensuring the security of your personal information. This Privacy Policy governs the use, collection, disclosure, and safeguarding of personal data through our website, brightorbittech.com (“the Site”), and services we provide. We are dedicated to compliance with applicable privacy and data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).

1. Introduction – Commitment to Privacy and Data Protection

At Bright Orbit Tech, your privacy is of paramount importance. We are steadfast in our commitment to data minimization, transparency, and respecting the rights of individuals whose data we process. This policy outlines our practices and your rights relating to the collection, processing, and retention of your data when you interact with brightorbittech.com or our affiliated services.

2. Scope of Policy and Role as Data Controller

This Privacy Policy applies to personal data collected via the Site and related communications. Bright Orbit Tech acts as the data controller for all personal data submitted through or collected by brightorbittech.com, determining the means and purposes of processing such personal information in accordance with applicable data privacy legislation.

3. Categories of Data We Process

We may process the following categories of personal data:

a. Usage Data:
Includes information on how you use brightorbittech.com, including browser type, IP address, device identifiers, session durations, and referring websites. This data is used to analyze trends and ensure the performance and security of our platform.

b. Account Data:
Includes details you provide when creating or managing an account, such as your full name, email address, mailing address, and phone number. This allows us to deliver personalized experiences and customer support.

c. Profile Data:
Includes information about your behavior on the site, purchasing activity, preferences, and any profile settings selected to enhance your user experience.

d. Communication Data:
Includes the content, metadata, and nature of correspondence sent through contact forms, emails, or customer support requests. This ensures accurate response handling and service records.

e. Technical Data:
Includes information collected from your device such as operating system, browser configuration, screen resolution, and language settings for ensuring compatibility and optimizing performance.

f. Transaction Data:
Includes information relevant to payment processing and order fulfillment, such as billing details, delivery addresses, transaction history, and product orders.

g. Preference Data:
Includes your marketing preferences, product interest areas, notification settings, and any consents provided for communication or data uses beyond the purposes strictly necessary for service functionality.

4. Legal Bases for Processing Personal Data

In accordance with GDPR, we rely on the following lawful bases when processing personal information:

– Legitimate Interests: To administer and protect our business and the Site, analyze usage, and grow our services.
– Contractual Necessity: To register you as a user and provide goods or services you request.
– Consent: For marketing activities, cookie placement (excluding essential cookies), and data sharing where required.
– Legal Obligation: To comply with applicable laws and regulatory requirements.

5. Your Rights

You have the following rights with respect to your personal data:

– Right of Access: Obtain a copy of your personal data and related information held by us.
– Right to Rectification: Correct inaccurate or incomplete data.
– Right to Erasure: Request the deletion of personal data where legally permitted.
– Right to Restriction: Limit our processing under specific conditions.
– Right to Data Portability: Receive data in a structured, commonly used, and machine-readable format.
– Right to Object: Opt-out of processing based on legitimate interests or direct marketing.
– Right to Withdraw Consent: Where consent is our lawful basis, you may revoke it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at [email protected].

6. Security Measures

We implement industry-standard administrative, physical, and technical safeguards to protect your data against unauthorized access, alteration, disclosure, or destruction. These measures include but are not limited to:

– Data encryption (in transit and at rest)
– Regular software patching and vulnerability management
– Access control with role-based permissions
– Secure server environments with intrusion detection systems
– Staff training on privacy and security best practices
– Regular audits and contingency planning

7. International Data Transfers

Where personal data is transferred outside the European Economic Area (EEA) or your jurisdiction, such transfers adhere to legally recognized transfer mechanisms. We use standard contractual clauses approved by the European Commission and ensure that any overseas processor provides an adequate level of protection in alignment with data protection obligations.

8. Data Retention

We retain personal data only as long as it is necessary for the purposes for which it was collected, or as required by applicable law. Retention periods are as follows:

– Usage Data and Technical Data: Up to 14 months
– Account and Profile Data: Active use plus 2 years or upon account deletion
– Communication Data: Up to 2 years from last contact
– Transaction Data: 7 years for compliance with tax and accounting obligations
– Preference Data: As long as marketing consents are active

Upon expiration of the relevant retention period, data is securely deleted or anonymized where appropriate.

9. Cookie Policy

We use cookies and similar technologies to enhance user experience, analyze web traffic, and support site functionality. Our categories of cookies include:

– Essential Cookies: Necessary for proper site operation and user navigation.
– Functional Cookies: Enable platform features like saving preferences and persistent logins.
– Analytics Cookies: Gather information on website usage to improve performance (e.g., Google Analytics).
– Performance Cookies: Help us optimize loading speeds and user interactions.

10. Cookie Management and Compliance

Under GDPR and CCPA, users are entitled to manage cookies. When you visit brightorbittech.com, you are prompted to consent to non-essential cookies. You can withdraw or modify your consent through our Cookie Preferences panel or by adjusting browser settings accordingly. We honor Do Not Track (DNT) browser configurations and provide opt-out mechanisms for third-party analytics tools where applicable.

11. Special Protections for Children Under 13

brightorbittech.com does not knowingly collect or process personal data from children under the age of 13. If we learn that such data has been inadvertently obtained, it will be promptly deleted. Parents or guardians with concerns may contact us at [email protected] to request removal.

12. Policy Updates and Notification

We reserve the right to amend this Privacy Policy in response to legal, technical, or operational changes. Material changes will be communicated via notices on brightorbittech.com or via direct communication where appropriate. Continued use of the Site after changes indicates acceptance of the updated Privacy Policy.

13. Contact Us

For any questions, requests, or concerns regarding your privacy or this Privacy Policy, please contact:

Bright Orbit Tech
Email: [email protected]
Website: https://brightorbittech.com

We confirm our ongoing compliance with GDPR, CCPA, and all applicable privacy regulations, and we encourage you to reach out to us at [email protected] with any concerns about your personal data or this policy.

Thank you for trusting Bright Orbit Tech with your information.

© Copyright by BrightOrbitTech - 2025 All Rights Reserved.