02/22/2025
Terms and Privacy Policy
Comprehensive Data Processing Policy β RAFMIGNY CORP.
1. Purpose
RAFMIGNY CORP. is committed to the responsible processing of customer data, complying with all applicable U.S. federal, New York State, and international data protection laws. Our primary mission is to provide education and training services, specializing in CPR (Cardiopulmonary Resuscitation) certification and renewal. We are officially certified by the American Heart Association to conduct various training programs. We are committed to maintaining the highest standards of data security, privacy, and regulatory compliance.
2. Data Collected
RAFMIGNY CORP. collects and processes the following categories of personal and business-related data:
Personal Information: Full name, phone number, email address, mailing address.
Communication Preferences: Subscription status and consent history.
Interaction History: Training records, certifications obtained, message logs, and engagement metrics.
Technical Identifiers: IP addresses, device identifiers, browser fingerprints.
Business Information: Employer Identification Number (EIN), legal entity type, registration details.
Transactional Data: Billing details and payment methods (processed through third-party payment providers).
Cookies and Tracking Technologies: Information collected through cookies, tracking pixels, and analytics tools to improve the user experience.
3. Agreement to Receive Text Messages
By providing your mobile number, you agree that RAFMIGNY CORP. may send you periodic SMS or MMS messages containing important information, updates, promotions, and special offers.
Message Frequency: Up to 4 messages per month.
Unsubscribe Option: You may opt out at any time by texting STOP to the assigned number. A confirmation message will be sent.
Help Option: For assistance, text HELP to the assigned number.
Costs: RAFMIGNY CORP. does not charge for text messages, but carrier message and data rates may apply.
Participating U.S. Carriers: AT&T, T-Mobile, Verizon Wireless, Sprint, Boost, U.S. Cellular, MetroPCS, among others.
Number Updates: You agree to notify us if you change your phone number and update your information in our system.
Data Usage: Information collected in connection with this service may include your phone number, carrier name, message timestamps, and content. This data is used solely for providing the requested service.
4. Legal Basis for Processing
Our data processing activities are legally justified based on:
Explicit Customer Consent: Users provide verifiable opt-in consent for communications and training enrollments.
Contractual Obligations: Data processing is necessary to fulfill service agreements and issue certifications.
Regulatory Compliance: Adherence to federal, state, and international consumer protection laws.
5. Data Retention Policy
RAFMIGNY CORP. retains personal data only as long as necessary to fulfill its intended purposes, in compliance with:
Federal Trade Commission (FTC) standards.
California Consumer Privacy Act (CCPA) retention limitations.
General Data Protection Regulation (GDPR) for international users.
New York SHIELD Act retention requirements for cybersecurity compliance.
Retention Periods:
Training and certification records: 5 years.
Transactional and billing data: 7 years.
Cookies and tracking data: 6 months (unless manually cleared by the user).
Data is securely deleted or anonymized upon expiration of the retention period.
6. User Rights and Data Control
Customers have the right to:
Access their personal data.
Correct inaccurate or outdated personal information.
Request deletion of their personal data (subject to legal limitations).
Opt out of marketing communications.
Request a structured copy of their data.
To exercise these rights, contact us at rafmignycorp@gmail.com.
7. Data Sharing and Third-Party Disclosure
RAFMIGNY CORP. does not sell or rent customer data. However, we may share information with:
Service Providers: Certification platforms, cloud storage providers, payment processors.
Regulatory Authorities: To comply with subpoenas, court orders, or legal obligations.
Security and Fraud Prevention Agencies: To protect against fraud and cyber threats.
Advertising and Tracking: We may use advertising technologies to improve ad relevance. Users can opt out of tracking.
All third parties must comply with strict contractual data protection obligations.
8. Incident Response Plan
RAFMIGNY CORP. has a structured Incident Response Plan to address security breaches and unauthorized access:
Immediate Containment and Investigation.
User and Authority Notifications.
Resolution and Implementation of Preventive Measures.
9. Compliance with U.S. and New York State Data Protection Laws
RAFMIGNY CORP. adheres to the following regulations:
General Data Protection Regulation (GDPR) β EU.
California Consumer Privacy Act (CCPA).
Telephone Consumer Protection Act (TCPA).
Childrenβs Online Privacy Protection Act (COPPA).
CAN-SPAM Act.
New York SHIELD Act.
New York General Business Law Β§ 899-AA & 899-BB.
10. Contact Information
For privacy or compliance-related inquiries, contact our Data Protection Officer:
Email: rafmignycorp@gmail.com
Address: RAFMIGNY CORP., 938 Macdonald Avenue, 1st Floor, Brooklyn, NY, 11218, USA.
This policy is updated periodically to reflect regulatory and operational changes. Last updated: February 21, 2025.
