Crestwood Pools GDPR Compliance Policy
Effective Date: August 21, 2025
Crestwood Pools, Inc. (“us”, “we”, or “our”) is committed to protecting the privacy and rights of individuals in the European Economic Area (EEA). This GDPR Compliance Policy explains how we process personal data under the General Data Protection Regulation (GDPR).
1. Data Controller
Crestwood Pools, Inc. is the Data Controller of personal data collected through https://crestwoodpools.com.
2. Legal Bases for Processing
We process personal data under the following lawful bases:
-
Contract: to fulfill our obligations when you purchase products or request services.
-
Consent: where you have given explicit permission (e.g., email marketing).
-
Legitimate Interests: where processing is necessary for business purposes, provided your rights are not overridden.
-
Legal Obligation: to comply with laws and regulations.
3. Your GDPR Rights
As an EEA resident, you have the right to:
-
Access your personal data.
-
Request rectification of inaccurate or incomplete data.
-
Request erasure of your personal data (“right to be forgotten”).
-
Restrict or object to processing.
-
Request data portability in a machine-readable format.
-
Withdraw consent at any time.
To exercise your rights, please contact us at rich@crestwoodpools.com.
4. International Transfers
Your data may be stored and processed in the United States. We take all reasonable steps to ensure your data is handled securely and in compliance with GDPR safeguards.
5. Data Retention
We retain personal data only as long as necessary to provide our services, comply with legal obligations, or resolve disputes.
6. Complaints
If you believe your rights have been violated, you may file a complaint with your local Data Protection Authority in the EEA.
7. Contact Information
For GDPR inquiries, please contact us:
By email: rich@crestwoodpools.com
