Effective Date: November 19, 2020
- The Scope of this Policy
- The Information We Collect
- How We Collect Your Personal Information
- How We Use Your Personal Information
- How We Share Your Information
- How We Protect Your Information
- Children’s Information
- California Residents’ Privacy Rights
- European Users’ Privacy Rights
- Contact Us
2. The Information We Collect
When you use our Sites, you may choose to provide certain information directly to us to request more information or services, including the following Personal Information:
- first name, last name;
- email address;
- work address;
- phone number;
- job title
- job level
- job role
- company name
- company size
- company industry,
- professional interests,
- and other related business/professional information.
or to interact with us, but certain functionality will not be available if you do not provide certain
Personal Information. For example, if you do not provide certain Personal Information, we may not be
able to respond to your requests, perform a transaction with you, or provide you with marketing that
we believe you would find valuable.
- new or returning visitor;
- time of visit;
- duration of visit;
- pages viewed;
- where you found the Sites (search, direct, social media, etc.);
- country you’re visiting from; and
- technology you’re using (browser, screen resolution, etc.).
We collect Personal Information when you:
- visit our Sites;
- request information;
- fill out a form; and
- participate in surveys or promotions.
In accordance with the sub-section below, “Social Media Sites” we may also collect Personal Information
from third party social media networks.
A “cookie” is a small data file stored on your web browser or on your mobile device that allows us to recognize your computer or mobile device when you visit the Sites by associating identification numbers with other user information you have provided us. Some cookies will remain on the hard drive of your computer or mobile device for the duration of your browser or user session, while others will remain until deleted by you. You may also be able to configure your computer or mobile device to limit the collection of these “cookies,” but that limitation may also limit our ability to provide all the services or functionality of the Sites. Some third party service providers may use “flash cookies,” which are saved on your computer, but cannot be rejected, disabled, turned off, opted out of, or deleted in the same way as regular cookies. To learn how to manage your flash cookie settings, visit the Flash player settings page on Adobe’s website.
You can learn more about Google’s practices at http://www.google.com/policies/privacy/partners and view its currently available opt-out options at https://tools.google.com/dlpage/gaoptout.
4. How We Use Your Personal Information
Aggregage collects and uses your Personal Information for the following purposes:
- to personalize user experience;
- we may use information in the aggregate to understand how users as a group use the services and resources provided on our Sites;
- to improve our Sites;
- to improve customer service;
- to more effectively respond to your customer service requests and support needs;
- to share your information with third parties;
- to administer a content, promotion, survey or other Site feature;
- to send you information you have agreed to receive about topics we think will be of interest to you; and
- if you decide to opt-in to our mailing list, you will receive emails that may include company news, updates, related product or service information, etc. If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email or you may contact us via our Sites.
We use your personal information to provide the Sites to send communications to you about new services, features, or enhancements that may be of interest to you and to handle your customer service questions or issues. We will also share the personal information we collect from you under the following circumstances:
- Protection of rights. We will share personal information if we have a good faith belief that (i) access, use, preservation or disclosure of such information is reasonably necessary to satisfy any applicable law, regulation, legal process, such as a court order or subpoena, or a request by law enforcement or governmental authorities, (ii) such action is appropriate to enforce the Terms and Conditions or any other agreement, understanding or arrangement between you and the Sits, including any investigation of potential violations thereof, (iii) such action is necessary to detect, prevent, or otherwise address fraud, security or technical issues associated with the Site, or (iv) such action is appropriate to protect the rights, property or safety of the Company, its employees, users of the Sites or others.
- Asset transfers. If we become involved in a merger, acquisition or other transaction involving the sale of some or all of the Company’s assets, user information, including personal information collected from you through your use of the Site, could be included in the transferred assets. Should such an event occur, we will use reasonable means to notify you through email and/or a prominent notice on the Apps and/or Site.
Aggregage also may disclose your Personal Information:
- to third parties for marketing or any other legally permissible purpose at our sole discretion (if you are a user from the European Union, we will ask for your consent before doing this);
- to a third party or parties, with your consent and where disclosure is required or permitted by law; and
- if, in the reasonable judgment of Aggregage, it is necessary to enforce compliance with our internal policies or to protect our Sites, customers, or others.
Third party websites
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. Notably, we use SendGrid to facilitate our email communications. You can view SendGrid’s Privacy Policies here: https://sendgrid.com/policies/privacy/.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
Social Media Sites
We work with third parties, including social network sites like Twitter, Facebook and LinkedIn. We provide access to our Sites by third parties and business partners so we can generate interest in our products among members of your social networks and to allow you to share product interests with friends in your network.
The use of any features made available to you on our Sites by a third party may result in information being collected or shared about you by us or by the third party. Information collected or shared through any such third party features is considered public information by us because the Social Media Sites made it publicly available. If you do not want us to be able to access information about you from Social Media Sites, you must instruct Social Media Sites not to share the information. Aggregage is not responsible for how these third parties may use information collected from or about you, so be sure to review the privacy policies and privacy settings on your social networking sites to make sure you understand the information they are sharing. If you do not want a Social Media Site to share information about you, you must contact that site and determine whether it gives you the opportunity to opt out of sharing such information. However, we do identify any areas on our Sites where third parties share information about you.
We use features on Social Media Sites that allow you to express positive opinions about our products or services. Those Social Media Sites may collect or register your views about our products and make those views available to Aggregage and on public portions of the Social Media Sites. If you do not wish any of this to happen, you should not express your views about our products on Social Media Sites, you should not buy our products through Social Media Sites, and you should review your privacy settings on such Social Media Sites. We are not obligated to display your name or other identifying information, account name, profile photo or other information or content on our Sites even if you express an opinion about one of our products or have consented to our use of such information or content. We reserve the right to remove the information of any person for any reason. We may also remove from our Sites, in our sole discretion, any product offering or any photo or product description relating thereto. If you would like us to delete the data we have collected about you that we have received through any social media provider or Social Media Site, please contact us. However, if your information is deleted you may not have access to certain promotions, product information or opportunities as a result.
The Sites may list or link to third party products or services. Aggregage does not have any control over the quality, safety or legality of the items advertised, the truth or accuracy of the listings, the ability of suppliers to sell items or the ability of buyers to buy items. For these reasons, Aggregage and its affiliates cannot ensure that a buyer or supplier will actually complete a transaction. Aggregage will not be a party to any transactions between you and such third parties and any correspondence concerning such transactions should be conducted between you and the third party.
6. How We Protect Your Information
We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your Personal Information, username, password, transaction information and data stored on our Sites.
Sensitive and private data exchange between the Sites and their users happens over a SSL secured communication channel and is encrypted and protected with digital signatures.
The personal information that you provide to us is stored on servers, which are located in secured facilities and protected by protocols and procedures designed to ensure the security of such information. However, no server, computer or communications network or system, or data transmission over the Internet can be guaranteed to be 100% secure. As a result, while we strive to protect user information, we cannot ensure or warrant the security of any information you transmit to us or through the use of any of the Sites and you acknowledge and agree that you provide such information and engage in such transmissions at your own risk. Once we receive a transmission from you, we will endeavor to maintain its security on our systems.
In the event that personal information you provide to us is compromised as a result of a breach of security, when appropriate we will take reasonable steps to investigate the situation, notify you and take the necessary steps to comply with any applicable laws and regulations.
7. Children’s Information
The Sites are not directed to children under the age of 13. Children under the age of 13 are prohibited from submitting any personally identifiable information to Aggregage through the Sites. If you believe a child has provided us with information, contact us at firstname.lastname@example.org.
8. California Residents’ Privacy Rights
California Consumer Privacy Act
The California Consumer Privacy Act of 2018 (the “CCPA”) is a California law that gives California residents (“consumers”), the right to learn about and control certain aspects of how a business handles the personal information that a business collects about them. Pursuant to the CCPA, effective January 1, 2020, consumers whose personal information have been collected by us, have certain rights, including:
- The right to know the categories of personal information we’ve collected and the categories of sources from which we got the information;
- The right to know the business purposes for sharing personal information;
- The right to know the categories of third parties with whom we’ve shared personal information;
- The right to access the specific pieces of personal information we’ve collected; and
- The right to delete your information.
- California residents also have the right to not be discriminated against if they choose to exercise their privacy rights.
To learn more about these rights, your personal information under the CCPA, please visit our California Privacy Rights homepage. You can also email us at email@example.com with any questions.
To exercise your right to opt-out of the sale of personal information, please email us at firstname.lastname@example.org and mention the email address you would like to opt-out from sharing personal information of.
Shine the Light
Additionally, if you are a California resident, you have the right to request information from us regarding the manner in which Aggregage shares certain categories of Personal Information with third parties for their direct marketing purposes, in addition to the rights set forth above. Under California law, you have the right to send us a request at the designated address listed below to receive the following information:
- The categories of information we disclosed to third parties for their direct marketing purposes during the preceding calendar year;
- the names and addresses of the third parties that received the information; and
- if the nature of the third party’s business cannot be determined from their name, examples of the products or services marketed.
This information may be provided in a standardized format that is not specific to you. The designated email address for these requests is: email@example.com.
Do Not Track
Also, please note that we have not yet developed a response to browser “Do Not Track” signals, and do not change any of our data collection practices when we receive such signals. We will continue to evaluate potential responses to “Do Not Track” signals in light of industry developments or legal changes.
9. European Users’ Privacy Rights
Legal Basis for Processing Information
If you are located in the EEA or Switzerland, we rely on several legal bases to process your Personal Information. These legal bases include where:
- The processing is necessary to perform our contractual obligations, such as to provide you with our services;
- You have given your prior consent, which you may withdraw at any time (such as for marketing purposes or other purposes we obtain your consent for from time to time);
- The processing is necessary to comply with a legal obligation, a court order or to exercise or defend legal claims;
- The processing is necessary for the purposes of our legitimate interests, such as in improving, personalizing, and developing our services, marketing new features or products that may be of interest, and promoting safety and security as described above.
If you have any questions about this, or would like further information concerning the legal basis on which we collect and use your Personal Information, please contact us by emailing firstname.lastname@example.org.
If you are an Aggregage customer, we will retain your Personal Information as long as we are providing the services to you. We retain Personal Information after we cease providing services to you, even if you close your Stripe account, to the extent necessary to comply with our legal and regulatory obligations, and for the purpose of fraud monitoring, detection and prevention. We also retain Personal Information to comply with our tax, accounting, and financial reporting obligations, where we are required to retain the data by our contractual commitments to our financial partners, and where data retention is mandated by the payment methods that we support. Where we retain data, we do so in accordance with any limitation periods and records retention obligations that are imposed by applicable law.
Rights Under the General Data Protection Regulation
If you are located in the EEA or Switzerland, you have the following rights in respect of your Personal Information that we hold:
- Right of access. The right to obtain access to your Personal Information.
- Right to rectification. The right to obtain rectification of your Personal Information without undue delay where that Personal Information is inaccurate or incomplete.
- Right to erasure. The right to obtain the erasure of your Personal Information without undue delay in certain circumstances, such as where the Personal Information is no longer necessary in relation to the purposes for which it was collected or processed.
- Right to restriction. The right to obtain the restriction of the processing undertaken by us on your Personal Information in certain circumstances, such as where the accuracy of the Personal Information is contested by you, for a period enabling us to verify the accuracy of that Personal Information.
- Right to portability. The right to portability allows you to move, copy or transfer Personal Information easily from one organization to another.
- Right to object. You have a right to object to processing based on legitimate interests and direct marketing.
- Withdrawing consent. If our processing of your Personal Information is based on your consent,
you have the right to withdraw your consent at any time. Please note that if you withdraw your
consent, this will not affect the lawfulness of our processing of your information on the basis of
your consent before the point in time when you withdraw your consent.
If you wish to exercise one of these rights, please email us at email@example.com. Please note, some rights may be limited, and we may need to retain certain Personal Information, as required or permitted by applicable law. You also have the right to lodge a complaint to your local data protection authority. Further information about how to contact your local data protection authority is available at http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.
Transfer of Personal Information Outside of Europe
We take steps to ensure that we handle your Personal Information subject to appropriate safeguards. As a US company, most of our operations are conducted in the United States and in order to provide the Sites, Personal Information will be processed in the United States, where laws regarding processing of Personal Information may be less stringent than the laws in your country. We provide appropriate protections for cross-border transfers as required by applicable law for international data transfers. With respect to transfers originating from the European Economic Area we implement the standard contractual clauses approved by the European Commission. Where required by such laws, you may request a copy of the suitable mechanisms we have in place by contacting us as detailed below.
We do not use automated decision-making without human intervention, including profiling, in a way
that produces legal effects concerning you or that otherwise significantly affects you.
11. Contact Us
If you have any questions about your privacy or security on our Sites, please contact us using the following information:
525 South Douglas Street, Suite 260,
El Segundo, CA 90245