Data Protection Rights

Data Collection and Processing

StoneMill Pharma is steadfast in its commitment to protecting the privacy and personal information of users visiting stonemillbakers.com, in strict adherence to regulatory obligations applicable in the United States of America. Our platform collects a wide range of personal and non-personal data to improve your experience, facilitate user interactions, and ensure proper delivery of content and services. Data collection methods include direct input forms, account registrations, user feedback, email correspondence, and automated technologies such as cookies and analytical tools. The types of data collected may consist of names, contact details, health information when voluntarily provided, IP addresses, browser characteristics, and site usage patterns. All data is processed using standardized technical measures to ensure accuracy, security, and confidentiality, and is only accessible to authorized personnel. Our processing activities are strictly limited to the purposes specified at the time of collection and are reviewed regularly for compliance and relevance.

Lawful Basis for Data Processing

We process personal data where a lawful basis has been established, in accordance with data protection regulations applicable within the United States. Lawful bases include the express consent of users, the necessity for fulfilling contractual commitments, compliance with legal obligations, protection of vital interests, public interests, and legitimate interests pursued by StoneMill Pharma or a third party. Prior to collecting sensitive personal data, we will ensure that enhanced consent mechanisms are in place and provide transparent explanations of how and why such information will be used. User consent is always retractable, and StoneMill Pharma upholds the right of users to withdraw consent at any time through clear and accessible mechanisms, without affecting the lawfulness of prior processing activities.

Data Retention and Security

StoneMill Pharma ensures that personal data is stored securely using industry-standard encryption and security protocols. We only retain personal information for as long as it is strictly necessary to fulfill the purposes for which it was collected, comply with legal and regulatory requirements, resolve disputes, or enforce our agreements. Retention periods are periodically reviewed to ensure ongoing compliance and relevance. Upon expiration of the retention period or withdrawal of user consent, data is permanently deleted or anonymized using secure and irreversible methods. We implement access controls, regular security audits, server monitoring, and backup protocols to mitigate risks associated with unauthorized access, exposure, or loss of personal data. All staff and partners are trained in data protection best practices and are contractually obligated to uphold strict data confidentiality.

Users' Rights and Access Requests

In accordance with applicable law, users of StoneMill Pharma have clearly defined rights regarding their personal data. These rights include the right to access, rectify, erase, restrict processing, object to processing, and data portability. Users may request clarification regarding what personal information is held by StoneMill Pharma, request corrections to inaccuracies, or demand deletion where permitted by law. Data processing restrictions and the right to object are fully respected, with prompt responses to ensure continued protection of user information. Data portability requests to transfer personal data to an alternate provider will be fulfilled using widely accepted machine-readable formats. To exercise any of these rights, users may write to the site owner, Miranda Rathbone, at the provided address or via email at [email protected]. All requests will be assessed and addressed within a reasonable timeframe in accordance with statutory guidelines.

Transfers and Third-Party Sharing

StoneMill Pharma may, from time to time, transfer user personal data within the United States or to trusted third-party service providers as necessary for platform operation, user support, analytics, or compliance with lawful requests. All third-party partners are thoroughly vetted to ensure robust data protection measures. Whenever such transfers occur, adequate safeguards, contractual agreements, and data processing addenda are utilized to maintain confidentiality and uphold data security. Data shared with external partners will be strictly limited to what is necessary for the provision of services and subject to the same levels of protection and oversight as information handled internally by StoneMill Pharma. We do not sell or trade users’ personal information with unaffiliated organizations for commercial gain or marketing purposes without the informed consent of our users.

Children’s Privacy

The website and services provided by StoneMill Pharma are not intended for users under the age of 13. We are committed to protecting the privacy of children and do not knowingly collect or solicit personal data from minors without verified parental consent. If it is discovered that a child has provided personal information through our platform inadvertently, we will promptly delete such information from our records. Parents or guardians who believe that their child’s data may have been submitted to StoneMill Pharma may contact us using the provided contact details to request removal or to obtain further information on our children’s privacy compliance measures.

Data Breach Notification Procedures

In the unlikely event of a personal data breach that compromises the security, confidentiality, or integrity of your information, StoneMill Pharma has established robust internal protocols to respond effectively. Upon discovery of a data breach, we will promptly investigate the nature and scope of the incident, mitigate potential harms, and inform affected users in accordance with applicable law. Notifications will include detailed information regarding the breach, the type of information affected, actions being taken, and recommended measures users may take to protect themselves. Regulatory authorities will also be notified in situations where such reporting is required by law. Continuous monitoring, improvement of security practices, and staff training are central to our efforts to prevent recurrence of such incidents.

Contact Information and Policy Updates

Users with concerns or inquiries related to data protection practices at StoneMill Pharma, or requests to exercise their data protection rights, are encouraged to contact the site owner, Miranda Rathbone, either in writing at 240 Queen Street, Auckland CBD, Auckland 1010, New Zealand, or via email at [email protected]. StoneMill Pharma reserves the right to modify this Data Protection Rights page periodically to reflect evolving legal requirements, technological advancements, and changes to the service offerings. Users are encouraged to consult this page regularly to stay informed of our data protection commitments and procedures.