1. In General
Importantly, we may collect Personal Information directly from you when you visit our Site or access and use our Site or Services.
3. Collection of Information
We may collect certain information from you when you use our Services. We collect and obtain your information in a few ways: there is information that you choose to give to us, information we obtain through your use of our Services and information we obtain from third parties. Each of these is detailed below:
We collect the Personal Information you choose to give us when you use the Services, including your name, e-mail address, physical address, telephone number, and the like.
We automatically collect certain kinds of non-personal information from you when you use the Services, including device, browser type, operating system, CPU speed, referring or exit webpages, click patterns, session ID, and your computer’s IP address.
We may on occasion supplement or correct the Personal Information you submit to us and your IP address with information in our other databases or information from third-party sources in order to reduce errors in our database, authenticate our users, prevent fraud and prevent abuse of our Services, as well as to provide more consistent, relevant experiences to our users.
We may collect general information about use of the Services, such as what pages visitors access, the number of visits, average time spent on the Services, and other similar factors. This information is generally collected in aggregate form, without identifying any user individually, although IP addresses and Session ID in relation to downloads may be tracked as part of our fraud prevention efforts.
4. Location-Based Services
Some Services may contain functionality that can enable us to access your location and tailor your experience based on your location (“Location-based Services”). To use Location-based Services, you must enable certain features of your mobile device (e.g., GPS, WiFi, or Bluetooth) to allow us to identify your location. To the extent your location is collected through WiFi or Bluetooth sensors, such sensors, and the associated data services, may be provided by a third party that may access such information for the purpose of providing such data services to us. You agree to such access by such third parties. You may enable or disable such Location-based Services at any time via a menu within the Services. If you choose to disable any Location-based Services on your device and/or opt out of any Location-based Services through the menu, you will not be able to utilize certain features of the Services. By enabling Location-based Services on your device, you agree and acknowledge that (i) device data we collect from you is directly relevant to your use of the Services; (ii) we may provide Location-based Services related to and based on your then-current location; and (iii) we may use any such information collected in connection with the provision of Location-based Services in providing the Services. PLEASE NOTE THAT LOCATION DATA MAY NOT ALWAYS BE ACCURATE, AND WE DISCLAIM ANY AND ALL WARRANTIES RELATED TO LOCATION-BASED SERVICES.
We may use your location to provide you with advertisements, offers, and other promotional content as part of the Services.
5. How Your Information is Used
Except as provided herein, we collect and use your personal and non-personal information for internal purposes only or for gathering aggregate and anonymized data. We may use, store, and process your information in the following ways:
To enable you to access and use the Services.
To conduct routine business operations such as billing, identification, authentication, contact purposes and general research. As part of our routine business operations, we may transfer your Personal Information to certain third parties with whom we contract for the limited purpose of providing services such as web hosting, email, and credit card processing. These service providers are obligated to protect your information, and they do not use your Personal Information for their own commercial purposes.
To employ internal marketing techniques such as tracking customer preferences to provide a customized experience and communicating with you about Services, special offers, and other services.
To enhance the Services.
To gather product, location and other contributed information to make reports based on aggregate anonymized data, which we may use internally, or which we may sell to others.
To comply with court and governmental orders.
To fulfill another legitimate interest, when not overridden by your interests or, where applicable, your fundamental rights and freedoms which require the protection of Personal Information.
When you otherwise consent for us to do so. We may ask for your consent to process your Personal Information for a specific purpose that we communicate to you, for instance, to receive our newsletter and other such mailings you may be interested in. When you consent to our processing your Personal Information for a specified purpose, you may withdraw your consent at any time and we will stop processing of your data for that purpose.
In order to improve our Services and provide more convenient, relevant experiences to our customers, we and our agents may use “cookies,” “web beacons,” and similar devices to track your activities. A cookie is a small amount of data that is transferred to your browser by a web server and can only be read by the server that gave it to you. It functions as your identification card and enables us to record your passwords and preferences. It cannot be executed as code or deliver viruses. A web beacon is a small transparent .gif image that is embedded in an HTML page or email used to track when the page or email has been viewed. Most browsers are initially set to accept cookies, and most services that include similar devices are typically initially activated to collect data. You can set your browser to notify you when you receive a cookie, giving you the chance to decide whether to accept it. We do not support browsers’ Do Not Track features. You can enable or disable Do Not Track by visiting the preferences or settings page of your browser. If you disable cookies, you may lose some of the features and functionality of using our Site, as cookies may be necessary to track and enhance your use and access.
We may, either directly or indirectly, track your behavior on our Services for purposes of our own customer support, analytics, research, product development, fraud prevention, risk assessment, regulatory compliance, investigation, as well as to enable you to use and access the Services and pay for your activities on the Services. We may also, either directly or through third parties we engage to provide services to us, track your behavior on our Services.
7.Protecting Your Information
We use a variety of security measures, including SSL, encryption, and authentication tools, to help protect your information. We do not retain your Personal Information for longer than is necessary for our business purposes. When we no longer need your Personal Information, we dispose of it safely.
Our security measures include standard international data protection measures as well as those described in the EU GDPR implementing regulations. These measures may also include periodic system-wide password resets with high password strength requirements. We strongly discourage password sharing. Due to the nature of the information and related technology, we cannot be held responsible if you share your own login credentials with others. If we learn of a security breach, then we will immediately reset your account password and attempt to notify you as per GDPR guidelines to take appropriate steps.
In submitting any third-party Personal Data within the context of the Services (“Third-Party Data”), the parties agree that you shall be the Data Controller and you appoint us as a Data Processor of such data, for the purpose of providing the Services. To the extent that we are a Data Processor for you in respect of such Third-Party Data, we will:
Implement appropriate technical and organizational measures to safeguard the Third-Party Data against any unauthorized or unlawful access, loss, destruction, theft, use or disclosure. We implement basic level security in accordance with United States law. If higher levels of security are required, please contact us.
Limit access to the Third-Party Data only to those employees who need to know it to enable the Data Processor to perform the Services and shall take appropriate steps to ensure the reliability of those of our employees or subcontractors who have access to such Third-Party Data.
Not disclose the Third-Party Data to any third-party without your prior written consent. Such consent is granted on, for example, your instruction to share a dashboard with third parties (public or within a restricted group).
You represent and warrant that you have all the appropriate consents from data subjects whose Personal Data are submitted to us in the course of the provision of the Services.
9. Disclosure to Third Parties
We will not share your Personal Information with third parties without your express consent, except in the limited circumstances described below:
We may share your Personal Information third party service providers for the limited purposes described in the section entitled “How Your Information is Used”.
We will share your Personal Information when required by law, regulation, or litigation, and as necessary for purposes of national security, law enforcement, or other issues of public importance.
We may also engage third parties, including but not limited to technology services and services to help verify your identification, to conduct checks against databases such as, but not limited to, public government databases (where legally allowed), to otherwise assist us with fraud prevention and risk assessment, to assist us with customer service, to serve targeted ads, and to facilitate the payments or refunds. We may provide Personal Information about you to these third parties, or give them access to this Personal Information, for the limited purpose of allowing them to provide these services. We will ensure that such third parties have contractual obligations to protect this Personal Information and not to use it for unrelated purposes.
If we sell assets or are acquired by or merged with another entity, we may provide such entity customer information without obtaining your further consent. We may provide to you notice of such asset sales, acquisitions, or mergers.
If you are visiting this Site from a country other than the United States, the various communications you send and receive may result in the transfer of information across international boundaries. If you are located in the European Union you should be aware that information you provide or which is otherwise collected on this Site rendered may be transferred to countries (including the United States) which may not have data protection laws deemed as adequate as those in the EU.
Notwithstanding the foregoing, the Site are intended for users in the United States and those not governed by privacy policies of other countries. Users outside the United States are advised not to disclose Personal Information to us.
11.Your Privacy Rights
We will ensure that you can exercise your rights pertaining to your Personal Information, including rights as provided by various data protection laws. We therefore inform you that, where applicable under relevant law, you are entitled:
to have access to your Personal Information upon simple request – that is, you may receive a copy of such data (if requested), unless such data is made directly available to you, for instance within your personal account;
to have access upon simple request, and free of charge, the categories and names of addresses of third parties that have received Personal Information for direct marketing purposes;
to obtain a rectification of your Personal Information should it be inaccurate, incomplete or obsolete;
to obtain the deletion of your Personal Information in the situations set forth by applicable data protection law (the “right to be forgotten”).
to withdraw your consent to the data processing without affecting the lawfulness of processing, where your Personal Information has been collected and processed based on your consent. If at any time you wish to withdraw your consent to our processing of your data or opt out of our use of your information for internal marketing purposes or for compiling aggregate risk reports, you may do so by sending a written notice to: Privacy@hyprskn.com. Note that your withdrawal of consent may prevent us from providing the Services to you;
to object to the processing of your Personal Information (where it has been collected and processed based on our legitimate interests) in which case we may ask you to justify your request by explaining to us your situation;
to request a limitation of the data processing in the situations set forth by applicable law;
to have your Personal Information directly transferred by us to a third-party processor of your choice (where technically feasible and when processing is based on your consent); and
for non-discrimination, as defined under relevant law, in the Services or quality of Services you receive from us for exercising your rights.
Under certain laws, you may also have the right to “opt-out” of having your Personal Information sold to a third party. However, we do not sell your Personal Information to any other party. Only in the case of a merger, sale, financing, acquisition, or other transaction involving all or part of us may your information be involved in a transaction.
For deletion/“right to be forgotten” requests, we will undertake a good faith effort to accommodate requests for access to or deletion of personal information. However, these requests may be subject to the evaluation of additional factors, including disproportionate burden or expense, or the risk to the rights, including the privacy rights, of others.
We will strive and work to resolve any inquiry you may have regarding our privacy practices. EU residents may also file a complaint before a competent data protection authority regarding the processing of your Personal Data. While we suggest that you contact us beforehand, if you wish to exercise this right, you should contact the competent data protection authority directly.
If you have any questions, would like to exercise any of these rights, or if you need any assistance with privacy related matters, please contact us as described in the “How to Contact Us” section below. We will take the necessary steps to respond to you as soon as possible.
If at any time you are uncomfortable with our use of your Personal Information for internal marketing purposes and for the purpose of creating aggregate reports, you may opt-out by email as described in “Your Privacy Rights.” Note that if you opt not to provide us with certain mandatory information, then our products and services may be unavailable to you.
You may similarly opt out of receiving communications from us, although we may find it necessary to continue to communicate with you regarding your use of the Services.
14.How to Contact Us
If you have any questions regarding this Policy or our privacy practices, you can contact us at:
Attn: Keith McCurdy, CEO
328 Broome Street
New York, NY 10002
Or by email at: Privacy@hyprskn.com