Last Updated: July 16, 2019
1. In General
The Site and the Services are intended for adult audiences only, and we do not knowingly collect any Personal Information from anyone under 13 years of age. If you are under age 13, please do not provide any Personal Information about yourself to us. If we learn that we have collected Personal Information from a child under age 13, we will delete that information as quickly as possible. If you believe that we might have any Personal Information from a child under the age of 13, please contact us immediately.
3. Collection of Information
- We collect the Personal Information you give us when you use the Services, including name, address, email address, and other Personal Information requested as part of your use of the Site or the Services, or the information you choose to give us when you use the Services.
- We automatically collect certain kinds of non-personal information from you when you use the Site or the Services, including device, browser type, operating system, CPU speed, referring or exit webpages, click patterns, Session ID, and your computer’s IP address.
- We may on occasion supplement or correct the Personal Information you submit to us and your IP address with information in our other databases or information from third-party sources in order to reduce errors in our database, authenticate our users, prevent fraud and prevent abuse of our Site, as well as to provide more consistent, relevant experiences to our users.
- We may collect general information about use of the Site and the Services, such as what pages visitors access, the number of visits, average time spent on the Site and other similar factors. This information is generally collected in aggregate form, without identifying any user individually, although IP addresses and Session ID in relation to downloads may be tracked as part of our fraud prevention efforts.
You agree not to submit any sensitive personally-identifiable information to the Services.
4. Location-Based Services
Some Services may contain functionality that can enable us to access your location and tailor your experience based on your location (“Location-based Services”). To use Location-based Services, you must enable certain features of your mobile device (e.g., GPS, WiFi, or Bluetooth) to allow us to identify your location. To the extent your location is collected through Wi-Fi or Bluetooth sensors, such sensors, and the associated data services, may be provided by a third party that may access such information for the purpose of providing such data services to us. You agree to such access by such third parties. You may enable or disable such Location-based Services at any time via a menu within the Services. If you choose to disable any Location-based Services on your device and/or opt out of any Location-based Services through the menu, you will not be able to utilize certain features of the Services. By enabling Location-based Services on your device, you agree and acknowledge that (i) device data we collect from you is directly relevant to your use of the Services, (ii) we may provide Location-based Services related to and based on your then-current location, and (iii) we may use any such information collected in connection with the provision of Location-based Services in providing the Services. PLEASE NOTE THAT LOCATION DATA MAY NOT ALWAYS BE ACCURATE, AND WE DISCLAIM ANY AND ALL WARRANTIES RELATED TO LOCATION-BASED SERVICES.
We may use your location to provide you with advertisements, offers, and other promotional content as part of the Services.
5. How Your Information is Used
Except as provided herein, we collect and use your personal and non-personal information for internal purposes only or for gather aggregate and anonymized data. We may use your information in the following ways:
- To conduct routine business operations such as identification, authentication, contact purposes and general research. As part of our routine business operations, we may transfer your Personal Information to certain third parties with whom we contract for the limited purpose of providing services such as web hosting and email. These service providers are obligated to protect your information, and they do not use your Personal Information for their own commercial purposes.
- To employ internal marketing techniques such as tracking customer preferences to provide a customized Site experience and communicating with you about Services, special offers, and other services.
- To respond to you, regarding the reason you contacted us, or to fulfill a request, e.g., sending you email updates.
- To enhance the Services.
- To gather generic product, location and other contributed information to make reports based on aggregate anonymized data, which we may use internally, or which we may sell to others.
- To comply with court and governmental orders.
In addition, when you submit a form expressing interest in selling your business, we will use such information to provide our services to you. We will not share such information with third parties without your prior approval, but upon your approval, we may share such information with potential acquirers or financiers, as applicable.
In order to improve our Services and provide more convenient, relevant experiences to our customers, we and our agents may use “cookies,” “web beacons,” and similar devices to track your activities. A cookie is a small amount of data that is transferred to your browser by a web server and can only be read by the server that gave it to you. It cannot be executed as code or deliver viruses. A web beacon is a small transparent .gif image that is embedded in an HTML page or email used to track when the page or email has been viewed. Most browsers are initially set to accept cookies, and most services that include similar devices are typically initially activated to collect data. You can set your browser to notify you when you receive a cookie, giving you the chance to decide whether or not to accept it. We do not support browsers’ Do Not Track features. You can enable or disable Do Not Track by visiting the preferences or settings page of your browser.
7. Protecting Your Information
We use a variety of security measures, including SSL, encryption, and authentication tools, to help protect your information. We do not retain your Personal Information for longer than is necessary for our business purposes. When we no longer need your Personal Information, we dispose of it safely.
Our security measures include standard international data protection measures as well as those described in the EU GDPR implementing regulations. If we learn of a security breach, then we will attempt to notify you as per GDPR guidelines to take appropriate steps.
8. Data Processing
In submitting any third-party personal data within the context of the Services (“Third-Party Data”), the parties agree that you shall be the Data Controller and you appoint us as a Data Processor of such data, for the purpose of providing the Services. To the extent that we are a “Data Processor” for you in respect of such Third-Party Data, we will:
- Implement appropriate technical and organizational measures to safeguard the Third-Party Data against any unauthorized or unlawful access, loss, destruction, theft, use or disclosure. We implement basic level security in accordance with United States law. If higher levels of security are required, please contact us.
- Limit access to the Third-Party Data only to those employees who need to know it to enable the Processor to perform the Services, and shall take appropriate steps to ensure the reliability of those of our employees or subcontractors who have access to such Third-Party Data.
- Only process the personal data as specified by this Privacy and in accordance with your instructions, and will not use the Third-Party Data for any purposes other than those related to the performance of the Services or pursuant to your written instructions.
- Not disclose the Third-Party Data to any third-party without your prior written consent. Such consent is granted on, for example, your instruction to share a dashboard with third parties (public or within a restricted group).
We as Data Processor may provide access to a subcontractor processor to any such Third-Party Data if we reasonably consider such access and processing necessary to the performance of the Services. In the event of such access and before the access takes place, we will ensure that an agreement with the third-party is in place which is sufficient to require it to treat personal data in accordance with the applicable provisions of this Agreement and applicable law. In particular, you authorize us to subcontract the provision of technology and commercial services to members of our corporate group.
You represent and warrant that you have all the appropriate consents from data subjects whose personal data are submitted to us in the course of the provision of the Services.
9. Disclosure to Third Parties
We will not share your Personal Information with third parties without your express consent, except in the limited circumstances described below:
- We may share your Personal Information third party service providers for the limited purposes described in the section entitled “How Your Information is Used.”
- We will share your Personal Information when required by law, regulation, or litigation, and as necessary for purposes of national security, law enforcement, or other issues of public importance.
- If we sell assets or are acquired by or merged with another entity, we may provide such entity customer information without obtaining your further consent. We may provide notice of such asset sales, acquisitions, or mergers on the Site.
10. Your Choices
You have the following rights with respect to your personal data:
- Request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
- Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
- Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
- Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
- Request restriction of processing of your personal data. This enables you to ask us to suspend the processing of your personal data in the following scenarios: (a) if you want us to establish the data’s accuracy; (b) where our use of the data is unlawful but you do not want us to erase it; (c) where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or (d) you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
- Request the transfer of your personal data to you or to a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
- Withdraw consent at any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
11. Governing Law
12. Opting-Out or Updating Your Personal Information and Privacy Preferences
You have the right to access, correct and delete inaccuracies in your Personal Information and privacy preferences on the Services at any time by contacting us via postal mail or email.
If at any time you wish to withdraw your consent to our processing of your data or opt out of our use of your information for internal marketing purposes or for compiling aggregate risk reports, you may do so by sending a written notice to firstname.lastname@example.org. Note that your withdrawal of consent may prevent us from providing the Services to you.
13. Privacy Complaints
Also, please note that we are not responsible for the content or privacy practices of third-party websites or integrated products to which the Site or the Services may link. You should review the privacy policies of such sites before using the associated sites.