Act as a lawyer specializing in data protection and privacy regulations (GDPR, CCPA). Draft a complete privacy policy compliant with applicable data protection laws. Company details: - Company name: legal name - Registration number: EIN/registration - Website/app: URL - Data Protection Officer: name and email - Personal data collected: e.g., name, email, phone, address, payment data, cookies, geolocation - Processing purposes: e.g., registration, order processing, marketing, behavior analysis - Third-party sharing: e.g., payment gateway, Google Analytics, email marketing platform - Data storage: e.g., US servers, AWS, international servers The policy must include: 1. Controller and DPO identification 2. What personal data is collected and how 3. Legal basis for each processing type (consent, contract performance, legitimate interest, legal obligation) 4. Specific purposes for data processing 5. Who data is shared with and why 6. International data transfers (if applicable) 7. Data retention period and deletion criteria 8. Data subject rights (access, correction, deletion, portability, consent withdrawal) 9. How subjects can exercise their rights (contact channel) 10. Security measures adopted 11. Cookies and tracking technologies 12. Policy changes and notification Write in clear, accessible language as required by data protection laws. Mark with [TO BE FILLED] any specific fields.