Privacy Policy

1. Introduction

This Privacy Policy explains how BitWorks (“we,” “us,” or “our”) collects, uses, discloses, and protects your personal information when you visit our website at https://bitworks.io (the “Site”) or purchase computer components from us.

We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA), UK, and Switzerland.

2. Data Controller

BitWorks is the data controller responsible for your personal information.

Contact Information:

• Website: https://bitworks.io
• Email: [email protected]

For GDPR-related inquiries, you may contact our Data Protection Officer at: [email protected]

3. Information We Collect

3.1 Information You Provide Directly

When you use our Site or purchase products, we collect:

• Account Information: Name, email address, username, and password
• Order Information: Billing and shipping addresses, phone number, payment information
• Communication Data: Information you provide when contacting customer support, leaving comments, or subscribing to newsletters
• Profile Information: Any additional information you choose to provide in your user profile

3.2 Information Collected Automatically

• Technical Data: IP address, browser type and version, operating system, device information, time zone setting
• Usage Data: Pages visited, time spent on pages, links clicked, referring website, date and time of visits
• Cookies and Tracking Technologies: See Section 6 for detailed information

3.3 Information from Third Parties

• Payment Processors: Transaction confirmation and fraud prevention data
• Shipping Providers: Delivery status and tracking information
• Analytics Providers: Aggregated usage statistics

4. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

• Contract Performance: Processing necessary to fulfill your orders and provide services
• Legal Obligation: Compliance with tax, accounting, and other legal requirements
• Legitimate Interests: Fraud prevention, website security, business analytics, and improving our services
• Consent: Marketing communications, optional cookies, and newsletter subscriptions (you may withdraw consent at any time)

5. How We Use Your Information

We use your personal information to:

• Process Orders: Fulfill and deliver your purchases, process payments, and manage returns
• Customer Service: Respond to inquiries, provide technical support, and resolve disputes
• Account Management: Maintain your account and provide access to order history
• Website Improvement: Analyze usage patterns, improve functionality, and optimize user experience
• Marketing: Send promotional communications about new products and special offers (with your consent)
• Legal Compliance: Meet tax, accounting, and regulatory requirements
• Security: Detect and prevent fraud, abuse, and security incidents
• Business Operations: Maintain business records and conduct internal analytics

6. Cookies and Tracking Technologies

6.1 What Are Cookies

Cookies are small text files stored on your device that help us provide and improve our services.

6.2 Types of Cookies We Use

Essential Cookies (Required)

• Shopping cart functionality
• Secure login sessions
• Payment processing security

Functional Cookies (Consent-based)

• Remember your preferences and settings
• Auto-fill forms with previously entered information
• Comment author information (name, email, website) – stored for one year

Analytics Cookies (Consent-based)

• Understand how visitors use our Site
• Track page views, session duration, and navigation patterns
• Improve website performance and user experience

Marketing Cookies (Consent-based)

• Deliver personalized advertising
• Measure advertising effectiveness
• Track conversions from marketing campaigns

6.3 Cookie Duration

• Session cookies: Deleted when you close your browser
• Comment cookies: Last for one year
• Login cookies: Last for two days (or two weeks if “Remember Me” is selected)
• Screen preferences cookies: Last for one year
• Editor cookies: Expire after one day

6.4 Managing Cookies

You can control cookies through:

• Our cookie consent banner when you first visit the Site
• Your browser settings (though some features may not function properly)
• Our cookie preference center: [Link to cookie settings]

7. Comments and User-Generated Content

When you leave comments on our Site:

• We collect the information shown in the comment form
• Your IP address and browser user agent string for spam detection
• An anonymized hash of your email address may be sent to Gravatar (https://automattic.com/privacy/) to display your profile picture
• Comments and associated metadata are retained indefinitely for automatic approval of follow-up comments
• Approved comments and profile pictures are publicly visible

8. Media and File Uploads

If you upload images or files to our Site:

• Avoid including embedded location data (EXIF GPS) as visitors can download and extract this information
• We may scan uploaded files for security purposes
• Media files are stored on our servers and may be accessible to website administrators

9. Embedded Content

Our Site may include embedded content from third-party websites (e.g., YouTube videos, social media posts, product demonstration videos). These embeds:

• Behave as if you visited the third-party website directly
• May collect data about you, use cookies, and track your interactions
• Are subject to the privacy policies of those third-party websites
• May track your interaction even if you have an account with those services

Common embedded services include: [List your specific embedded services, e.g., YouTube, Vimeo, Google Maps]

10. Data Sharing and Disclosure

We share your information with:

10.1 Service Providers

• Payment Processors: To process transactions securely
• Shipping Carriers: To deliver your orders (DHL, FedEx, UPS, etc.)
• Cloud Hosting: To store data and host our website
• Email Services: To send order confirmations and communications
• Analytics Providers: To understand website usage (e.g., Google Analytics)
• Customer Support Tools: To provide technical assistance

10.2 Legal Requirements

We may disclose your information when required by law or to:

• Comply with legal processes or government requests
• Enforce our terms and conditions
• Protect our rights, property, or safety
• Prevent fraud or security threats

10.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new owner.

10.4 With Your Consent

We may share information for other purposes with your explicit consent.

We do not sell your personal information to third parties.

11. International Data Transfers

As we sell computer components worldwide, your information may be transferred to and processed in countries outside your jurisdiction, including countries that may not provide the same level of data protection.

For GDPR compliance:

• Transfers to third countries are protected by appropriate safeguards (Standard Contractual Clauses, adequacy decisions)
• You may request information about these safeguards by contacting us

12. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy:

• Account Information: Until you request deletion or after 3 years of inactivity
• Order Information: 7 years for tax and accounting purposes (legal requirement)
• Marketing Data: Until you unsubscribe or withdraw consent
• Comments: Indefinitely (unless you request deletion)
• Technical Logs: 12 months
• Payment Information: Not stored on our servers (handled by payment processors)

13. Your Rights (GDPR and Data Protection)

You have the following rights regarding your personal data:

13.1 Right to Access

Request a copy of the personal data we hold about you

13.2 Right to Rectification

Correct inaccurate or incomplete information

13.3 Right to Erasure (“Right to be Forgotten”)

Request deletion of your personal data (subject to legal retention requirements)

13.4 Right to Restriction of Processing

Limit how we use your data in certain circumstances

13.5 Right to Data Portability

Receive your data in a structured, machine-readable format

13.6 Right to Object

Object to processing based on legitimate interests or for direct marketing

13.7 Right to Withdraw Consent

Withdraw consent for processing activities that require it (without affecting prior lawful processing)

13.8 Right to Lodge a Complaint

File a complaint with your local data protection authority

To exercise these rights, contact us at: [email protected]

We will respond to requests within one month (extendable by two months for complex requests).

14. Security Measures

We implement appropriate technical and organizational measures to protect your data:

• Encryption: SSL/TLS encryption for data transmission
• Secure Storage: Encrypted databases and secure servers
• Access Controls: Limited access to personal data on a need-to-know basis
• Regular Audits: Security assessments and vulnerability testing
• Employee Training: Staff training on data protection practices
• Incident Response: Procedures for detecting and responding to data breaches

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

15. Children’s Privacy

Our Site and services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If we discover we have collected information from a child, we will delete it promptly.

16. Password Reset

If you request a password reset, your IP address will be included in the reset email for security purposes.

17. Automated Spam Detection

Visitor comments and contact form submissions may be checked through automated spam detection services. This may involve processing your IP address, email address, and message content.

18. Third-Party Links

Our Site may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. Please review their privacy policies before providing any information.

19. Marketing Communications

With your consent, we may send:

• Product announcements
• Special offers and promotions
• Newsletter content
• Order updates and recommendations

You can opt out at any time by:

• Clicking “unsubscribe” in any marketing email
• Adjusting your account preferences
• Contacting us at [email protected]

20. Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will:

• Notify the relevant supervisory authority within 72 hours (GDPR requirement)
• Notify affected individuals without undue delay
• Provide information about the nature of the breach and remedial actions

21. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will:

• Post the updated policy on this page with a new “Last Updated” date
• Notify you of material changes via email or prominent website notice
• Obtain consent for changes requiring it under applicable law

22. Contact Us

For questions, concerns, or to exercise your rights under this Privacy Policy:

Email: [email protected]

Mail: 475 Providence Main St Ste 303D Huntsville, AL 35806

Consent Declaration

By using our Site and services, you acknowledge that you have read and understood this Privacy Policy. For processing activities requiring consent, you will be asked to provide explicit opt-in consent through checkboxes, consent banners, or other clear affirmative actions.