Hi, I'm Misty Waddleton. Welcome to my website at www.mistywaddleton.com and thank you for your interest in this Privacy Policy!

I have written this Privacy Policy to explain to you, which Personal Information (data for short) I as the “data controller” and the processors (e.g., providers) commissioned by me - process, will process in future and what lawful options you have.

Privacy Policies are usually very technical and use legal terminology. However, this Privacy Policy is intended to describe the most important things to you as simply and transparently as possible. To the extent necessary, technical terms are explained in a reader-friendly manner.

Person responsible

Misty Waddleton

MW Online Ventures, LLC

2086 Jodeco Road #1155

McDonough, GA. 30253, USA

Protection of Personal Information is a very high priority for me; therefore, the processing of Personal Information is carried out in accordance with all applicable legal provisions, in particular with the Georgia Computer Data Privacy Act (“GCDPA”).

If you have any questions or concerns, please contact me using support@mistywaddleton.com or call 1-678-922-4878.

Types of data processed

• Inventory data (e.g., names, addresses)

• Contact data (e.g., e-mail, telephone numbers if provided)

• Content data (e.g., text entries, messages)

• Usage data (e.g., website visited, interest in content, access times)

• Meta/communication data (e.g., device information, IP addresses)

Purpose of processing

• Provision of the online offer, its contents, and functions.

• Provision of contractual services, customer service and care

• Answering contact requests and communication with users

• Marketing, Advertising, Affiliate Marketing, and market research

• Security measures

Relevant legal basis

If the legal basis is not stated, the following applies:

• Consent

You have given me your consent to process data for a specific purpose.

• Contract

In order to fulfil a contract or pre-contractual obligations with you, I process your data.

• Legal obligation

If I`m subject to a legal obligation, I process your data. For example, I`m legally obliged to keep invoices for accounting purposes. These usually contain Personal Information.

• Legitimate interests

In the case of legitimate interests that do not restrict your fundamental rights, I reserve the right to process Personal Information. For example, I need to process certain data in order to operate my website in a secure and economically efficient manner. This process is therefore a legitimate interest.

Processing of Personal Information

a) Collection of access data and log files

We (that is I my Webhost) collect data on every access to my website based on my legitimate interests, we collect data on every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, volume of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

Log file information is stored for security reasons (e.g., for the clarification of abuse or fraud) for a maximum of seven days and then deleted. Data whose further storage is required for evidentiary purposes is exempt from deletion until the respective incident has been finally clarified.

b) Entresoft

I also use the Entresoft LLC system to process user data and do lead management. Your details may be stored in the Enteresoft system, and I may use your Personal Information in connection with the services offered to me by Entresoft including marketing, to fulfill our contractual obligations to you or to carry out pre-contractual measures.

c) Online presence in social media

I maintain online presences within social media currently Facebook and LinkedIn on the basis of my legitimate interests, in order to be able to communicate with my customers, interested parties and users active there and to inform them about my services. I process the data of users if they communicate with me within the social networks and platforms, e.g., write posts on my online presences or send me messages.

Your use of Facebook and LinkedIn and their functions is your own responsibility, this applies in particular to the use of the interactive functions (e.g., commenting, sharing, rating). You should note that Facebook and Instagram may use your data for market research and advertising purposes and to create profiles about your usage behavior and your interests.

I, as the provider of this policy, do however not collect and process any data from your use of Facebook`s and Instagram`s functions. For further information about Facebook`s and Instagram`s use of your Personal Information, please refer to the relevant Privacy Policies linked above.

d) Cookies

I use temporary and permanent cookies, i.e., small files that are stored on users' devices. In part, the cookies serve the purpose of security or are necessary for the operation of my website. In addition, I and my technology partners use cookies for range measurement and marketing purposes. A general objection to the use of cookies for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US site https://www.aboutads.info/choices/ or the EU site https://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by deactivating them in the browser settings.

e) Direct marketing

From time to time, I may use the Personal Information I collect from you to identify particular service offers which I believe may be of interest to you. I may contact you to let you know about these products and services and how they may benefit you.

You may give me your consent in a number of ways including by selecting a box on a form where I seek your permission to send you marketing information, or sometimes your consent is implied from your interactions or contractual relationship with me. Where your consent is implied, it is on the basis that you have a reasonable expectation of receiving a marketing communication based on your interactions or contractual relationship with me.

Direct Marketing generally takes the form of e-mail but may also include other less traditional or emerging channels. These forms of contact will be managed by me, or by my contracted service providers. Every directly addressed marketing sent or made by me or on my behalf will include a means by which you may unsubscribe or opt out.

f) Contacting me

When contacting me, the user's details are processed for the purpose of handling the contact enquiry and its processing. I delete the enquiries if they are no longer necessary. I review the necessity every 6 months. In the case of legal archiving obligations, deletion takes place after their expiry (end of commercial law and tax law retention obligation).

g) Working with me (Provision of contractual services)

I process inventory data (e.g., names and addresses as well as contact data of users), contract data (e.g., services used, names of contact persons, payment information) for the purpose of fulfilling my contractual obligations and services.

Security measures

I take appropriate technical and organizational measures, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk; the measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access to, input of, disclosure of, assurance of availability of, and separation of, the data relating to them. I also have procedures in place to ensure the exercise of data subjects' rights, deletion of data and response to data compromise.

Nonetheless, databases or data sets that include Personal Information may be breached inadvertently or through wrongful intrusion. Upon becoming aware of a data breach, I will notify all affected individuals whose Personal Information may have been compromised, and the notice will be accompanied by a description of action being taken to reconcile any damage as a result of the data breach. Notices will be provided as expeditiously as possible after which the breach was discovered.

Cooperation with processors and third parties

If, in the course of my processing, I disclose data to other persons and companies (order processors or third parties), transmit it to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.g., if a transmission of the data to third parties, such as to payment service providers, is necessary for the performance of the contract, you have consented, a legal obligation provides for this or on the basis of my legitimate interests (e.g., when using agents, web hosts, etc.).

Your Rights

Below I inform you about the rights to which you may be entitled to. These rights are:

a) Right to Know

b) Right of Deletion

c) Right of Non-Discrimination

d) Right to Opt-Out of Sale (I do not sell your Personal Information.)

To assert these rights, please contact me at any time using the details provided. Nonetheless, the above rights may be limited in some circumstances, for example, if fulfilling your request would reveal Personal Information about another person, if you ask me to delete information which I`m required to have by law, or if I have compelling legitimate interests to keep it.

I will let you know if that is the case and will then only use your information for these purposes. You may also be unable to continue using my services if you want me to stop processing your Personal Information.

Updating your information

If you believe that the information, I hold about you is inaccurate or that I`m are no longer entitled to use it and want to request its rectification, deletion, or object to its processing, please contact me at any time.

Access Request

In the event that you wish to make a Data Subject Access Request, you may inform me in writing of the same. I will respond to requests regarding access and correction as soon as reasonably possible. Should I not be able to respond to your request within thirty (30) days after receiving your request, I will inform you in writing within thirty (30) days of the time by which I will be able to respond to your request. If I`m unable to provide you with any Personal Data or to make a correction requested by you, I will generally inform you of the reasons why.

Deletion of data

Unless expressly stated within the scope of this privacy policy, the data stored by me will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations. If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. I.e., the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law.

Obligation to provide Personal Information

You are not obliged to provide me with Personal Information. However, depending on the individual case, the provision of certain Personal Information may be necessary for the provision of the above services. If you do not provide me with this Personal Information, I may not be able to provide the service.

Accuracy

It is important that the data I hold about you is accurate and current, therefore please keep me informed of any changes to your Personal Information.

Children Data

My website is not intended for children, and I do not knowingly collect data relating to children. If you become aware that your Child has provided me with Personal Information, without parental consent, please contact me and I take the necessary steps to remove that information from my server.

"Do-not-track" signals

Most browsers give you the option to enable a so-called "do-not-track" signal to protect against tracking. With this setting, a special signal is sent to the websites you visit. This "Do-not-track" signal is different from the ability to disable certain forms of navigation tracking by rejecting cookies in browser settings, as browsers with the "Do-not-track" setting enabled may still accept cookies. My website does not currently respond to "do-not-track" web browser signals. If I implement this feature in the future, I will describe how this privacy policy. For more information about "Do-not-track," please visit www.allaboutdnt.org

Changes

This policy and my commitment to protecting the privacy of your Personal Information can result in changes to this policy. Please regularly review this policy to keep up to date with any changes.

Queries and Complaints

If you have any questions, please do not hesitate to contact me. This Privacy Policy was last updated on Wednesday, January 25, 2023.