Effective Date: September 1, 2020
1. PII and Children
The Children’s Online Privacy Protection Act (“COPPA”) requires online service providers to obtain parental consent before they knowingly collect PII from children who are under 13 years of age. We do not knowingly collect or solicit PII from children under 13. If you are a child under 13, please do not attempt to send any personal information about yourself to us through our Services. If we learn that we have collected PII from a child under age 13 without parental consent, we will delete that information as quickly as possible as may be required by COPPA and other laws. If you believe that a child under 13 may have provided us personal information without parental consent, please contact us at firstname.lastname@example.org.
2. PII that We Collect because You Provide It.
- Registration. If you register and create a profile through our Services, then we will collect the information you provide when you register for our Services and create an account profile. This information will generally include your basic contact information, such as a mobile phone number and an email address, as well as your mailing address.
- Communications. If you use the Services to upload information and/or communicate with other Users, we will collect the information you provide in those communications. In addition, if other users provide information about you in response to your communications, we may collect that information too.
- Customer Support. We may collect information about you through your communications with our customer-support team.
3. PII that We Collect Automatically.
- Location Information. If you enable the geolocation settings in your mobile device to send location information about you, we will automatically collect that information.
- Computer and Mobile Device Information. When you use our Services, we will collect certain information that your browser on your Internet Access Device sends to us (such as your browser type and version), your device’s Internet Protocol address, your location (if geolocation is enabled), your operating system, and statistics about how you use the Services.
- Cookies. We also automatically collect “cookie” information. “Cookies” are identifiers that we transfer to your browser or device that allow us to recognize your browser or device and tell us about your visit to our Services: for example, we will gather information about your navigation history through our Services.
4. How We Use Your PII.
We may use the information we collect in the following ways:
- General and Marketing Communications. We may use your PII to deliver marketing communications to you as a supplement to the App. If we send you a marketing communication through the Services, it will include instructions on how to opt out of receiving these communications in the future (for more information about opting out, see Section 6 below).
- Combined Information. We may combine your PII with information we automatically collect from your computer or mobile device to serve you specifically, or for advertising or advertising targeting purposes.
- Specific Communications. We may use your PII to respond to your submissions, questions, comments, requests and complaints, and to provide you with customer service.
- Security. We may use your PII to improve our security measures as part of our efforts to keep the Services safe and secure.
- Analytics. We may use your PII to facilitate our internal operations, including troubleshooting, data analysis, testing, research, customization, and enhancements and improvements to the Services. As part of these efforts, we strip PII of its sensitive and individual data and make it anonymous so that it is no longer PII (“non-PII”), and then we aggregate that non-PII and subject it to analysis in its aggregate form. Quantitative analyses of aggregated non-PII data can tell us how often Users access a particular feature of the Services, and we can use that knowledge to make the Services more efficient, and to make them as useful to as many Users as possible. We also use anonymous non-PII, some of which is obtained via pixels or web beacons, for internal research and development purposes to improve our products, and to improve and test the features and functions of our Services.
- Administrative Communications. We may use your PII to send you confirmations, updates, security alerts, and support and administrative messages about the state of the Services or about your account.
- Legal Enforcement. We may use your PII to protect our users and to protect or enforce our users’ or Prosimo’s legal rights.
- Retention. We may retain your PII as long as you are registered to use the Services. As discussed in Section 6 below, you may close your account and delete your account profile, but we may retain your PII in a secure manner for an additional period as is permitted or required under applicable laws. Further, even if we delete your PII from our active records, it may persist on backup or archival media for an additional period of time for legal, tax or regulatory reasons or for our legitimate and lawful business purposes.
5.The Limited Ways in which we Share PII with Third Parties.
Prosimo will never sell or rent your PII. However, Prosimo may share PII with a third party in the following ways:
- Consented Uses. If we obtain your consent, such as when you choose to opt-in to the sharing of data, we may share your PII in order to provide the Services to you. Similarly, we may need to disclose some of your PII in order to fulfill a request from you.
- Contracts with Partners and Service Providers. We may enter into contracts with other companies and people to perform tasks on our behalf, and so we may need to share your PII with them to provide products or services to you. These vendors do not have any right to use the PII we share with them beyond what is necessary to assist us, and their agreements with us bind them to confidentiality obligations in regard to your PII.
- Marketers. We may engage with a service provider for marketing and promotional purposes, and effective marketing may require us to provide some PII to the marketing service provider.
- Asset Purchases or Sales. We may choose to buy or sell business assets. In these types of transactions, customer information is typically one of the business assets that would be transferred. Also, if we (or our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, PII could be one of the assets transferred to or acquired by a third party. In any transaction of this sort, strict confidentiality and non-disclosure provisions would bind the parties to an obligation to preserve the confidentiality of your PII.
- Aggregate Non-PII. We may provide anonymized non-PII information in aggregate form to our partners and service providers, who may perform various analytics on our Services or may use the aggregated information to develop their own marketing for their own business purposes. In such circumstances, we never disclose aggregate information to a partner in a manner that would identify you personally, as an individual.
- Enforcing Legal Rights. We may need to disclose your PII to protect the rights of our users or to protect Prosimo’s rights or property.
- Complying with Legal Orders. We may be required to use and retain PII for legal and compliance reasons, such as the following: to prevent, detect, or investigate a crime such as fraud or identity theft; to prevent loss of confidential information; to meet our internal and external audit requirements; to provide security; to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities; to enforce our terms and conditions; to respond to any other necessary compliance circumstances under applicable laws; and, to protect our rights, privacy, safety, or property, or those of other persons. To help us achieve these lawful purposes, we reserve the right to access, read, preserve, and disclose any information that we believe is necessary for us to comply with law or with an order from a court or regulatory agency, to enforce our agreements, or to protect the rights, property, or safety of our employees, our Users, or others.
6.Your Control Over Our Use of Your PII.
You have the right to control the use of your PII in the following ways:
- General Communications. If you do not want to receive general communications from us, which will include marketing materials from us and from our partners, you may opt-out of receiving such communications, and we ask that you please indicate your preferences on your account settings. Please remember that even if you opt out of receiving general communications from us, we may still send you important information related to your account or to the Services.
- Text Messages. If you are receiving texts sent via the Service and you wish to opt out, reply STOP to any such message, or send an email with your cellphone number and the subject line “Opt-Out” to email@example.com.
- Location Information. You can prevent us from collecting location information from your Internet Access Device by changing the settings on your Device.
- Social Media Notifications. If you connect a social media account such as Facebook or Instagram to your Prosimo account profile, you may receive updates on what your friends are doing on the Services. However, you can manage these notifications by toggling your social settings to ensure your privacy or by disconnecting such social media integration.
- Cookies. Users who prefer not to accept cookies can set their Internet browser to notify them when they receive a cookie or to prevent cookies from being placed on their hard drive. You can read more about cookies at http://www.allaboutcookies.org/cookies/.
- Google Analytics. One of the service providers that we use for data analytics is Google Analytics. If you do not want Google Analytics to collect and use information about your use of the Service, then you can install an opt-out in your web browser (https://tools.google.com/dlpage/gaoptout/).
- Marketing and California’s Shine the Light Law. Under California Civil Code Sections 1798.83-1798.84, California residents are entitled to ask us for a notice which identifies the categories of PII that we share with any third parties for marketing purposes, and which provides contact information for such affiliates and/or third parties. If you are a California resident and would like a copy of this notice, please submit a written request to firstname.lastname@example.org
7.Our Response to DO NOT TRACK Preferences.
If you use a popular browser (such as, but not limited to, Safari, Chrome, Internet Explorer, or Firefox) you can set the “Do Not Track” (or DNT) preference setting on your browser to opt-out of online behavioral tracking, which is done by various companies, particularly by those that provide targeted advertising. Your right to opt-out of such tracking is protected under CalOPPA. We respond to Do Not Track (DNT) signals, as we are required to do under CalOPPA.
8.Users Who Reside in Jurisdictions Other than the United States.
If you access the Services from a jurisdiction in the European Union or from another jurisdiction with laws governing data collection and use, please note that you are using Services with privacy and security safeguards designed to comply with the applicable state and federal laws of the United States. By using the Services, you are agreeing to the transfer of your information to the United States and processing of such information in the United States in accordance with this Policy.
- No Guarantee of Complete Security. Although we use commercially reasonable efforts consistent with industry standards to keep your PII secure, we cannot guarantee complete security. If you are a Customer, your account is protected by a password for your privacy and security. You bear the responsibility and obligation to prevent unauthorized access to your account and your PII by selecting and protecting your password and/or other sign-on mechanism appropriately and limiting access to your Internet Access Device. Unauthorized entry or use, hardware or software failure, and other factors beyond our control, may compromise the security of user information at any time.