Privacy Policy
This Privacy Policy outlines how TENTECH Inc ("we", "our", or "us") collects, uses, stores, and protects the personal information of users ("you") when accessing our website and services, including matters related to the purchase and promotion of our medical device product. We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR).
1. Data Controller
The data controller responsible for your personal data is:
TENTECH Inc
Email: tentechbiz@tenlaser.com
Data Protection Officer (DPO): tentechbiz@tenlaser.com
2. Purpose of Data Collection
We collect and process your personal information for the following purposes:
- To respond to inquiries related to our medical devices, especially the product.
- To register new users and maintain user accounts.
- To manage distributor or partner relationships.
- To provide technical or customer support.
- To comply with legal obligations and regulatory requirements.
- To send business communications related to our products and services, where permitted.
3. Personal Data We Collect
When you use our website, we may collect the following personal information:
- Full name
- Email address
- Phone number
- Company name
- Country
- IP address and browser metadata (automatically collected)
4. Legal Basis for Processing
The legal basis for collecting and processing your data under GDPR includes:
- Your explicit consent (Article 6(1)(a))
- Performance of a contract or taking steps prior to entering into a contract (Article 6(1)(b))
- Compliance with a legal obligation (Article 6(1)(c))
- Legitimate interest in conducting and managing our business (Article 6(1)(f))
5. Data Retention Period
We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including legal or regulatory obligations. In general:
- User account data is retained until account deletion.
- Inquiry records are retained for up to 2 years for customer service purposes.
- Data related to legal compliance may be kept for up to 7 years.
6. Your Rights Under GDPR
Under the GDPR, you have the following rights:
- The right to access your personal data.
- The right to rectify incorrect or incomplete data.
- The right to request the deletion of your data ("right to be forgotten").
- The right to restrict or object to data processing.
- The right to data portability.
- The right to withdraw consent at any time (where applicable).
- The right to lodge a complaint with your local Data Protection Authority (DPA).
7. Cookies and Tracking Technologies
We may use cookies to enhance user experience, analyze traffic, and offer language-specific content. You can manage your cookie preferences through your browser settings. No tracking is used for advertising or third-party marketing.
8. Data Sharing and Transfers
We do not sell, rent, or trade your personal data to third parties. Your data may be shared with:
- Trusted service providers acting on our behalf (e.g., hosting, email services)
- Regulatory or legal authorities where required by law
If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place in accordance with GDPR standards, such as Standard Contractual Clauses (SCCs).
9. Data Security
We use technical and organizational measures to protect your personal data, including secure servers, SSL encryption, and access controls. However, no system is entirely foolproof, and we encourage users to use strong passwords and report any suspicious activity.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will revise the "Effective Date" at the bottom of this page. We encourage you to review this page periodically for any changes.
Effective Date: March 31, 2025
