Data Rights

Data Processing and Collection

At FlameCare Online, we place utmost importance on the transparent and lawful processing of personal data in accordance with both local United States law and the spirit of the General Data Protection Regulation (GDPR). Personal data collected from our users includes, but is not limited to, names, email addresses, usage data, and any other information provided voluntarily or generated automatically through the usage of our services. This data is collected when you interact with our website, subscribe to updates, access our health content, or communicate with us for inquiries. The collection process ensures that only data absolutely necessary for the provision and enhancement of our services is obtained. We maintain administrative, technical, and physical safeguards to protect your data from unauthorized access, disclosure, alteration, or destruction. Our processing activities always have a legitimate basis, such as user consent, legal obligation, or performance of contract, and we conduct regular reviews to ensure continuous compliance with applicable data protection laws. Data processing includes storage, retrieval, transmission, and anonymization where appropriate, and is overseen by responsible personnel to guarantee data integrity and user trust.

Purpose and Legal Basis for Data Use

We process personal data for a variety of purposes designed to enhance your experience on FlameCare Online and to deliver safe, reliable, and tailored health information services. The primary reasons include facilitating access to health and pharmaceutical information, responding to individual inquiries, managing user preferences or subscriptions, ensuring service reliability, maintaining user accounts, and upholding legal or regulatory compliance. Each processing activity is supported by a clear legal basis as defined by U.S. data protection frameworks and, where relevant, model principles of GDPR such as consent, contractual necessity, or legal duty. In situations requiring explicit consent, such as marketing communications or non-essential cookies, we always seek your unmistakable agreement prior to data use, and you may withdraw this consent at any time. Additionally, we may utilize aggregated and anonymized data for analytical and operational purposes, continually striving to improve service quality and user satisfaction through data-driven insights.

User Rights Concerning Personal Data

We are committed to upholding the rights of our users regarding their personal data. You have the right to request access to the personal information we hold about you, to understand how and why it is processed, and to receive a copy of such data upon request. The right to rectification means you can ask us to correct inaccurate or incomplete personal data at any time. You may also request the erasure, or 'right to be forgotten', of your personal data subject to certain legal restrictions that may require retention. Additionally, users may restrict or object to specific types of processing, such as direct marketing or data profiling, and can request the portability of their data in a structured, commonly used, and machine-readable format. If you wish to exercise any of these rights, please contact us at [email protected]. Every request will be handled promptly, and we may ask for identity verification to ensure the security and privacy of your data.

Data Storage, Security, and Retention

All collected personal data is stored using secure systems designed to protect against unauthorized access, misuse, or breaches. We employ encryption, access controls, secure hosting environments, and a range of procedural safeguards in our data management practices. Data retention periods are established according to the nature of the information, our ongoing operational needs, legal mandates, and your preferences. We store personal data only as long as necessary for the purposes stated in this policy or as required by law. Periodic reviews and audits are conducted to ensure that no data is held beyond its necessity. Upon expiration of the data retention period or upon verified user request for erasure, all personal data is securely deleted or anonymized, further reducing exposure risk and ensuring responsible data stewardship throughout its lifecycle.

Third-Party Disclosure and International Transfers

We do not sell, trade, or otherwise transfer your personally identifiable information to outside parties without explicit user consent, except where required by law or necessary to fulfill core FlameCare Online operations. Where third-party partners, vendors, or service providers are engaged, they are selected based on strict privacy, security, and compliance benchmarks, and are contractually obligated to process data strictly in line with our instructions and applicable laws. In the rare case that data is transferred internationally, including transfers out of the United States, we ensure appropriate safeguards are in place to protect your privacy and meet the requirements of applicable data protection legislation, which may include the use of standard contractual clauses and similar mechanisms. You can request further information on these safeguards through our contact email.

Children’s Data and Sensitive Information

FlameCare Online is primarily designed for use by adults and does not knowingly collect or solicit personal data from children under the age of 13 without verified parental consent, in accordance with the Children’s Online Privacy Protection Act (COPPA) in the United States. We advise parents and guardians to monitor their children’s internet activity and to assist us in enforcing our privacy and data protection policies by contacting us if they believe a minor has provided us with personal data inadvertently. We further recognize the heightened privacy needs of sensitive information related to health and medical details. Such data is processed with a higher standard of care and under strict access controls, only with express consent or where legally permissible and necessary for our core services.

Contact Information and Complaints

For all queries, requests concerning your personal data, or complaints about FlameCare Online’s privacy practices, please contact Warren Griswold, the owner and data controller, at the following address: Kings Park and Botanic Garden, Fraser Avenue, West Perth WA 6005, Australia. For direct communication by email, please use [email protected]. We take all privacy-related concerns seriously and are committed to addressing issues promptly and thoroughly in accordance with applicable data protection law. In the event of unresolved disputes, users have the right to contact relevant regulatory authorities in the United States to seek further resolution regarding their data privacy rights and practices.