Crestwood Pools GDPR Compliance Policy

Effective Date: August 21, 2025

Crestwood Pools, Inc. (“us”, “we”, or “our”) is committed to protecting the privacy and rights of individuals in the European Economic Area (EEA). This GDPR Compliance Policy explains how we process personal data under the General Data Protection Regulation (GDPR).

1. Data Controller

Crestwood Pools, Inc. is the Data Controller of personal data collected through https://crestwoodpools.com.

2. Legal Bases for Processing

We process personal data under the following lawful bases:

• Contract: to fulfill our obligations when you purchase products or request services.

• Consent: where you have given explicit permission (e.g., email marketing).

• Legitimate Interests: where processing is necessary for business purposes, provided your rights are not overridden.

• Legal Obligation: to comply with laws and regulations.

3. Your GDPR Rights

As an EEA resident, you have the right to:

• Access your personal data.

• Request rectification of inaccurate or incomplete data.

• Request erasure of your personal data (“right to be forgotten”).

• Restrict or object to processing.

• Request data portability in a machine-readable format.

• Withdraw consent at any time.

To exercise your rights, please contact us at rich@crestwoodpools.com.

4. International Transfers

Your data may be stored and processed in the United States. We take all reasonable steps to ensure your data is handled securely and in compliance with GDPR safeguards.

5. Data Retention

We retain personal data only as long as necessary to provide our services, comply with legal obligations, or resolve disputes.

6. Complaints

If you believe your rights have been violated, you may file a complaint with your local Data Protection Authority in the EEA.

7. Contact Information

For GDPR inquiries, please contact us:
By email: rich@crestwoodpools.com