Privacy Policy

MGH FX / MGH Products

PRIVACY POLICY

Effective Date: May 1, 2025

Last Updated: May 15, 2026

Website: www.mghfx.com (including related services and temporary environments)

Operator: MGH FX / MGH Products (hereinafter “Company”, “we”, “us”, or “our”)

Contact: privacy@mghfx.com

This Privacy Policy explains how we collect, use, disclose, retain, and protect Personal Information/Data when you visit, register, use services, or make a purchase from our Website. By accessing or using our Website, you acknowledge that you have read and understood this Privacy Policy.

This Policy is designed to comply with applicable data protection laws, including but not limited to: the General Data Protection Regulation (GDPR – EU 2016/679), the UK General Data Protection Regulation (UK GDPR), the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), and other applicable global privacy frameworks.

1. Definitions

  • Service: Any service provided by the Company.
  • Data Subject / User: Any living individual who is using our Service and is the subject of Personal Data.
  • Personal Information / Data: Information about an individual that is personally identifiable and not publicly available (e.g., name, contact details, credit card information).
  • Data Controller: The entity that determines the purposes and manner of processing personal information. For this policy, we are the Data Controller.
  • Data Processors (Service Providers): Any natural or legal person who processes data on behalf of the Data Controller.
  • Usage Data: Data collected automatically, either generated by the use of the Service or from the Service infrastructure.

2. Information We Collect

If you choose not to provide requested Personal Information, you may not be able to register, subscribe, make purchases, or obtain certain services.

2.1 Information You Provide Directly

  • Account & Profile Details: Full name (First and last name), username, password, and profile settings.
  • Contact Information: Email address, phone number.
  • Address Details: Billing address, shipping address, State, Province, ZIP/Postal code, City.
  • Payment Information: Processed securely through third-party processors. We do not store or collect full card numbers or billing details directly.
  • Communications: Inquiries, support requests, and any information voluntarily submitted.
  • Comments: When visitors leave comments, we collect the data shown in the comments form to help spam detection. An anonymized string (hash) from your email may be provided to the Gravatar service (Privacy Policy: https://automattic.com/privacy/). Once approved, your profile picture is publicly visible in the context of your comment.

2.2 Information Collected Automatically

  • IP address and approximate geolocation.
  • Browser type, version, operating system, device identifiers, and hardware model.
  • Pages visited, time spent, navigation paths, referring URLs, and exit pages.
  • Purchase history and browsing behavior on our Website.
  • Cookies and Tracking Technologies: Small pieces of data stored on your device used to collect information, analyze, and improve our Service.

2.3 Information from Third Parties

  • Payment Processors: Transaction confirmations and fraud signals (Visa, Mastercard, PayPal, Google Pay, Apple Pay, Stripe, Link, etc.).
  • Analytics Providers: (e.g., Google Analytics).
  • Social Media Platforms: If you connect your account or interact with our pages.
  • Identity Verification Providers: Where required by law.

3. Legal Basis for Processing (GDPR / UK GDPR)

For users in the EEA, UK, or similar jurisdictions, we rely on:

  • Performance of a Contract: Fulfilling your order, providing services, managing accounts, verifying subscriber status, and processing transactions.
  • Legitimate Interests: Analytics, automated spam detection for comments, fraud prevention, improving services, and direct marketing where permitted.
  • Legal Obligation: Compliance with applicable laws, subpoenas, court orders, governmental requests, or defending against legal claims.
  • Consent: For non-essential cookies, marketing materials, and specific data processing. You may withdraw consent at any time.

4. How We Use Your Information

  • To process transactions, deliver products, and confirm subscriptions/cancellations.
  • To create, manage, and verify your user account status.
  • To send order confirmations, receipts, and customer support communications.
  • To send newsletters, promotional emails, and marketing materials (with your consent/opt-out option).
  • To personalize your experience and improve our website, products, and services.
  • To detect, investigate, and prevent fraud, unauthorized access, spam, and illegal activity.
  • To enforce our Terms and Conditions, protect physical safety, and respond to legal requests.

5. Cookies and Tracking Technologies

5.1 Types of Cookies We Use

  • Essential / Security Cookies: Required for the Website to function (e.g., shopping cart, login sessions) and for security purposes. Cannot be disabled.
  • Analytics Cookies: Help us understand how visitors use our Website.
  • Preference Cookies: Remember your settings, information, and various screen display choices.
  • Marketing / Advertising Cookies: Used by advertising partners to deliver targeted advertisements.

5.2 Specific Cookie Lifespans

  • Comment Cookies: Opt-in saving of details lasts for one year.
  • Login Cookies: Last for two days. If you select “Remember Me”, it persists for two weeks. Logging out removes these.
  • Screen Options Cookies: Last for one year.
  • Temporary Session Cookies: Set on the login page to test browser support; contains no personal data and is discarded when closing the browser.

5.3 Your Cookie Choices

You can manage preferences via our Cookie Consent banner or browser settings. Disabling cookies may affect website functionality. For more information, visit www.allaboutcookies.org.

6. Sharing and Disclosure of Your Information

We do not rent or sell your personal information to unrelated third parties. We may share data with:

  • Payment Processors: Solely to process transactions adhering to PCI-DSS standards managed by the PCI Security Standards Council.
  • Service Providers: Hosting, email delivery, automated spam detection, analytics, fraud detection, and customer support providers operating under data processing agreements.
  • Legal Authorities: To comply with legal processes, court orders, subpoenas, or to protect the rights, property, or safety of the Company, users, or the public.
  • Business Transfers: In connection with a merger, acquisition, or asset sale, subject to confidentiality.
  • Professional Advisors: Lawyers, accountants, and auditors under confidentiality obligations.

7. International Data Transfers

Your personal information may be transferred to and processed in countries other than your country of residence. We implement appropriate safeguards for such transfers, including Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or other legally recognized transfer mechanisms.

8. Data Retention

We retain personal information as long as necessary to fulfill the purposes set out in this policy, unless a longer period is required by law:

  • Transaction and Order Records: 7 years for accounting, tax, and legal compliance.
  • Account Data: Duration of account plus 2 years after closure.
  • Comments and Metadata: Retained indefinitely so we can recognize and approve follow-up comments automatically.
  • User Profiles: Registered users’ data is stored in their profiles. Users can see, edit, or delete their data at any time (except usernames). Website admins can also view and edit that data.
  • Marketing Data: Until you withdraw consent or opt out.

9. Data Security and Confidentiality

We implement industry-standard technical, physical, electronic, and managerial security measures:

  • SSL/TLS Encryption: Used for all sensitive data (such as credit card numbers) transmitted to and from our website.
  • Account Password Protection: Your account information is password-protected. You are responsible for maintaining its secrecy. The Company is not liable for failures to maintain password secrecy.
  • Internal Access Controls: Secure, encrypted storage and restricted internal system access.
  • Internet Risk Acknowledgment: While we use reasonable efforts, internet transmissions cannot be made absolutely secure. We have no liability for disclosures due to transmission errors, unauthorized acts of third parties, or viruses on your computer.

10. Your Rights & Choice Options

10.1 Opt-Out Options

If you do not wish to receive promotional offers or communications, you can opt-out at any time using the unsubscribe link in our emails, editing your account preferences, or contacting customer service. You can also request account deletion, which will revoke access to features requiring payment.

10.2 Rights Under GDPR / UK GDPR (EEA & UK Residents)

  • Right of Access / Update: Obtain a copy of your personal data or update/delete it directly in your account settings.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your data under certain conditions.
  • Right to Restrict / Object to Processing: Limit or object to data processing based on legitimate interests or direct marketing.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Withdraw Consent: Withdraw consent at any time without affecting prior lawful processing.

10.3 Rights Under CCPA / CPRA (California Residents)

  • Right to Know & Access: Know what personal information we collect, use, and share.
  • Right to Delete & Correct: Request deletion or correction of inaccurate personal info.
  • Right to Opt-Out of Sale/Sharing: We do not sell or share personal info for cross-context behavioral advertising.
  • Right to Limit Use of Sensitive Personal Information.
  • Right to Non-Discrimination for exercising your rights.

10.4 Rights Under PIPEDA (Canadian Residents)

  • Right to access held personal information.
  • Right to challenge accuracy and completeness.
  • Right to withdraw consent and lodge a complaint with the OPC.

To exercise any rights, contact us at privacy@mghfx.com. We typically respond within 30 days and may require identity verification.

11. Children’s Privacy

Our Website is not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. In order to register, you must be at least 18 years of age. No information may be submitted by persons under the age of 13 without verified parental or legal guardian consent. If we have inadvertently collected such info, please contact us at privacy@mghfx.com to delete it.

12. Third-Party Links & Embedded Content

Our Website may contain links to third-party websites or embedded content (e.g., videos, images, articles). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These third parties may collect data, use cookies, embed additional tracking, and monitor interaction. We are not responsible for their privacy practices.

13. Third-Party Advertising (e.g., Google AdSense)

Ads appearing on our site may be delivered by advertising partners who set cookies to deliver targeted advertisements. This privacy policy does not cover the use of cookies by advertisers.

Google AdSense

Some ads may be served by Google using the DART cookie. This enables it to serve ads to Users based on visits to our Site and other internet sites using “non-personally identifiable information” (it does NOT track name, email, address, etc.). You may opt out of the DART cookie by visiting: http://www.google.com/privacy_ads.html.

14. Changes to This Privacy Policy

We may update this policy from time to time. We will notify you of material changes by posting the updated Policy on our Website with a new “Last Updated” date, or via a notice banner/email at our sole discretion. Your continued use of the Website constitutes acceptance of the updated Policy.

15. Contact Us & Supervisory Authorities

15.1 Contact Us

15.2 Supervisory Authorities

If unsatisfied with our response, you have the right to lodge a complaint with your local data protection authority:

California Residents: California Privacy Protection Agency (CPPA).

EEA Residents: Your national Data Protection Authority (DPA).

UK Residents: Information Commissioner’s Office (ICO) – www.ico.org.uk

Canadian Residents: Office of the Privacy Commissioner of Canada – www.priv.gc.ca

Shopping Cart
Scroll to Top