THE UK’S 2ND FASTEST GROWING VAPE BRAND 2023 – NIELSEN IQ.
General Data Protection Regulation Policy (GDPR)

GDPR POLICY

Ghost Vapes® is committed to protecting the privacy and personal data of our website visitors and customers. This GDPR Policy outlines how we collect, use, and safeguard personal data on in compliance with the General Data Protection Regulation (GDPR), on the following websites:

www.ghostvapes.com| www.worldwide.vapes-bars.com | www.vapes-bars.com | 

www.vapes-bars.gr | www.vapesbars.at | www.vapes-bars.fr | www.vapes-bars.ro | www.vapes-bars.si | www.vapes-bars.se | www.vapes-bars.lu | www.vapes-bars.us | www.vapes-bars.nl | www.vapes-bars.ie

Data Collection

We collect personal data, such as name, email address, and contact information, when provided voluntarily by users through our website, for purposes including but not limited to order processing, customer support, and Marketing and Sales communications.

Data Protection

Personal data collected is processed securely and used only for the purposes stated at the time of collection or as otherwise permitted by law. We do not sell or share personal data with third parties for their marketing purposes.

Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction. This includes encryption, access controls, and regular security assessments.

Data Subject Rights

Individuals have the right to access, rectify, erase, and restrict processing of their personal data. Requests to exercise these rights can be submitted using the following contact information: [email protected]

Data Transfers

Personal data may be transferred to third-party service providers or international organizations only for purposes outlined in this policy and with appropriate safeguards in place to ensure data protection.

Data Breach Notification

In the event of a data breach involving personal data, we will promptly assess the risk to individuals’ rights and freedoms and notify the relevant supervisory authority and affected individuals in accordance with GDPR requirements.

Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Data retention periods are determined based on the nature of the data and applicable legal requirements.

Updates to the Policy

This GDPR Policy will be reviewed and updated periodically to reflect changes in legislation or business practices. Updates will be posted on our website, and users will be notified of any material changes.