LAST UPDATED: December 29, 2022
NOTICE TO CALIFORNIA RESIDENTS: THE CALIFORNIA CONSUMER PRIVACY ACT (CCPA) PROVIDES CALIFORNIA RESIDENTS WITH SPECIFIC RIGHTS WHICH ARE EXPLAINED IN THE FOLLOWING SECTIONS:
NOTICE UNDER THE EUROPEAN UNION’S GENERAL DATA PROTECTION REGULATION (“GDPR”). THE GDPR PROVIDES THE EU’S DATA SUBJECTS (AS SUCH TERM IS DEFINED IN THE GDPR) WITH SPECIFIC RIGHTS WHICH ARE EXPLAINED TO SUCH PARTIES AS FOLLOWS:
SECTION 1 - INFORMATION WE COLLECT
We collect Personal Information (also known as Personal Data) that You provide directly to Us. For example, we may collect Personal Information from You under these circumstances:
- When You inquire about any of Our products or services or You make an online purchase, We may collect and use your Personal Information to provide the products and services that You have ordered or requested, to process and ship orders, to send order and shipping confirmations (or other transactional information), and to provide customer service and/or future promotional offers and information that might be of interest to You;
- If you create an online account with Us that enables You to track Your orders or receive “back in stock” notifications (although it is not necessary to create an account in order to use any Company Website), We may collect and use Your Personal Information to keep You updated about special offers, send updates related to the Company and the Company Website, and facilitate checkout during purchase transactions;
- If You request any customer support or request any exchange or return of any of the Company’s products or services;
- If You sign up to receive promotional emails or marketing from Us or if You otherwise request any information from or about the Company (such as a newsletter, e-alert, or any other information about Our products, services, events or business partners), We may contact You about sales, special offers and new features available through the Company Website.
- If You provide Us with any other Personal Information about You through the Company Website or any other Company Program, or via telephone;
- If You fill out any other information through any Company Program;
- We also may obtain, collect and aggregate information (including Personal Information) about You that is provided to us by third parties such as third party social media sites that You may participate in and who collaborate or work with Us, as well as from other advertising networks, marketing service providers, demographic companies, analytics companies, and other vendors that collaborate or work with Us; or
- If You communicate with any other representative of our Company or otherwise communicate with Us in any other way.
In these instances, the types of Personal Information that We may collect from You includes:
- Your name;
- Mailing address and/or billing address;
- E-mail address;
- Phone (or mobile) number;
- Date of birth or age;
- Credit or debit card number and other information about the same (if You make a payment either directly to Us or by using a third party payment provider that handles payments and will receive Your payment card information);
- Information about Your bank or checking account (if you make a payment through Your bank transfer);
- Gift card information or related gift information;
- Information You provide when You purchase any of Our goods or services, including product or service parameters or preferences You provided when making a purchase; or
- Information You provide or otherwise involved in the return or exchange of a product, such as information about the transaction, product details, purchase price, and the date and location/media of the transaction.
When a User accesses or otherwise uses the Company Website or any other Company Program, We automatically collect certain Personal Information about You, including:
Device Information; Cookies and other Web-based Tracking Technologies: We (or our service providers or contractors) may collect information about the computer, tablet, phone or other device you use to access any of the Company Programs, including the Internet Protocol address, hardware models, operating system and version, mobile network information and other unique device identifiers. We (or our service providers) may also use different technologies such as cookies, web beacons, or other types of small temporary files or web-based tracking technologies to gather certain information. Without limiting the foregoing, We hereby notify You of the following:
- We and/or our service providers or contractors may use Flash cookies and other similar technologies, which allow a website to store certain information locally on an individual’s computer or device and then access and use that information to enhance and facilitate certain website experiences, processes and functionality. Flash cookies are different from other cookies and may not be removed in the same manner. For more information about cookies, please visit: https://www.allaboutcookies.org/.
- We and/or our service providers or contractors may also use web beacons (also known as “clear GIFs” or “pixel tags”) for similar purposes. These beacons or tags are typically small images embedded into emails or the website that verify when the website is viewed, when an email is opened and when links or other content in an email are clicked or viewed. The following third parties collect Personal Information from you when you visit the Company Website:
- Shopify & Corresponding Apps
- ERP System
- Shipping Providers
- Flow / Global-e
Geo-Location Data: Subject to any of Your device permissions, We (or our service providers) may be able to collect information about the precise location of your device or may gather other general location data based on GPS data, mailing address, and/or billing address (hereinafter collectively referred to as “Geo-location Data”).
Personal Information does not include:
- Publicly available information from government records.
- De-identified or aggregated consumer information.
- Information excluded from the CCPA's scope, such as: (i) health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clinical trial data; or (ii) personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver's Privacy Protection Act of 1994.
SECTION 2 - HOW WE USE YOUR INFORMATION
Provide Service To You: We use Your Personal Information to process purchase transactions, fulfill orders, process exchanges, returns and send shipping notifications, to send support and administrative messages, and to respond to Your comments, questions, and customer service requests;
Access and Use: If You provide Personal Information in order to obtain access to or use of the Company Website, We will use the Personal Information to provide You with and monitor such access and use. We may also use Your Personal Information to personalize Your experience and the advertisements and content You see when You use any Company Program based on Your preferences, interests, and browsing and purchasing behavior.;
Internal Business Purposes: We may use your Personal Information for internal business purposes including, without limitation, to:
- Help Us improve the content and functionality of the Company Website and to better understand Our users, including without limitation to monitor and analyze trends, usage, and activities in connection with Our goods or services;
- Protect against fraud, including without limitation to perform credit checks, credit card screenings or to otherwise protect against fraud or unauthorized transactions, including by identifying potential unauthorized users or hackers; and/or
- Otherwise manage Your account and to generally manage the Company Website and Our business.
Marketing: We may use your Personal Data for the following reasons:
- To communicate with You for certain marketing and advertising purposes, including, without limitation, to inform You about and to facilitate offers, surveys, contests, sweepstakes, or promotions and process and deliver entries and rewards, and to display content and advertising on or off the Company Website which may be of relevance to You; and/or
- To otherwise communicate with You about any other products, services, offers, and events offered by Us and others, and provide news and information We think will be of interest to You.
- If You prefer not to receive any of the above mentioned marketing or promotional communications from Us, you may “Opt Out” at any time by following the “Opt Out” instructions in Section 5 herein.
Customer Service: If You provide Personal Information for a specific reason (such as the resolution of a customer service issue), We may use the Personal Information in connection with the reason for which it was provided.
Aggregated Personal Data: We (either directly or through a service provider) may conduct research on our customer demographics, interests and behavior based on Personal Information and other information.
Social Media: To facilitate Your use of various social media sharing features or other integrated tools (such as the Facebook “Like” button) which You may use as part of social media pages.
Other Purposes: To carry out any other purpose described to You at the time the Personal Information is collected.
- To use with, or otherwise distribute, share or disclose to, any of the Company’s professional advisors such as attorneys or accountants (“Outside Professionals”) in order to facilitate the professional advice from those Outside Professionals; or
- To use with, or otherwise distribute, share or disclose to, any government agencies or third parties in order to comply with, or otherwise pursuant to, any subpoena, court order, or other governmental order, law or regulation (including without limitation for the Company’s tax reporting).
We will use or share Your Personal Information only for the purposes as described in this Section 2 and in Section 3 herein, unless We reasonably determine We need to use it for another reason and that reason is compatible with the original purpose(s) described herein. For example, We consider de-identification, aggregation, and other forms of anonymization of Personal Information to be compatible with the purposes listed herein and in Your interest because the anonymization of such information reduces the likelihood of improper disclosure of that information. If We need to use Your Personal Information for an unrelated purpose, We will notify You and We will explain the legal basis which allows Us to do so.
SECTION 3 - SHARING OF YOUR INFORMATION
We may distribute, share or disclose Personal Information about You as follows or as otherwise described herein:
Order Fulfillment: If you choose to make a purchase on the Website, MOTHER may provide certain information such as your credit card number, billing address and other information related to such purchase, to unaffiliated third parties as necessary to complete your purchase (for example, to process your credit card and/or ship the products).
Service Providers and Contractors: We, like many businesses, sometimes engage other companies to perform certain business-related functions on our behalf so that we can focus on our core business. Examples of these services include but are not limited to, payment processing and authorization, third party credit card processors, other third party payment service providers, fraud protection and credit risk reduction, product customization, order fulfillment and shipping, marketing and promotional material distribution, website evaluation, data analysis and, where applicable, data cleansing. In connection with services those service providers provide for Us, We may grant them access to certain Personal Information or otherwise share or disclose Your Personal Information with these service providers in connection with carrying out the operations of Our Company Programs, including without limitation the following types of service providers that We may engage:
- Email, internet or other telecommunication service providers;
- Cloud, other data storage, or other hosting service providers;
- Third party payment service providers, including without limitation third party credit card processors (see Third Party Application Providers below);
- Analytics companies who assist Us with various types of data analytics (see Analytics Partners below);
- Third party shippers; or
- Other third party contractors we engage to assist Us in providing Our goods and services.
Advertising Partners: We may work with third party advertising companies (collectively, “Advertising Partners”) in order to provide You with advertisements or other information that We think may interest You. These Advertising partners may set or access their own cookies, pixel tags or similar technologies on our Company Programs or they may otherwise collect or have access to data about You which they may collect over time and across different online services. These Advertising partners may also provide Us with their own independent data about potential customers and such data could include data about You previously collected by the Advertising Partner.
(b) “Remarketing with Google Analytics” to place ads on other sites directed to people who have visited the Website.
(c) “Google Display Network Impression Reporting” to report how people’s interactions with our ads relate to their visits to the Website.
- You can opt-out of Google Analytics for Display Advertising and customize Google Display Network ads by changing the ad settings at https://support.google.com/ads/answer/2662856. You also can opt-out from being tracked by Google Analytics in the future by downloading and installing Google Analytics Opt-out Browser Add-on for your current web browser at https://tools.google.com/dlpage/gaoptout/.
Third Party Marketers: We may share certain information with other marketers whose products or services We feel may be of interest to you.
Social Media Features: The Company Programs may offer social media features, including certain sharing tools or other integrated tools (such as the Facebook “Like” button), which let You share actions that You take on Our social media pages. Your use of such features enables the sharing of Personal Information with the public, depending on the settings You establish with the entity that provides the social sharing feature.
Facebook and Instagram Advertising: Without limiting the above description about social media features, We may, in particular, share Your Personal Information with Facebook. We use a measurement tag (“Measurement Tag”) that is a Facebook Product that allows Us to send data about performance of our ads (“Campaign Data”) to Facebook, including to track impressions and clicks on those ads. Facebook may process Campaign Data to prepare reports on the impact of advertising campaigns and other online content (“Campaign Reports”). Facebook will not disclose the Campaign Reports, or any portion thereof, to any third party without our permission, unless (i) they have been combined with Campaign Reports from numerous other third parties and (ii) our identifying information is removed from the combined Campaign Reports. Facebook uses Campaign Data (including that collected on cross-publisher campaigns) to assess the fractional performance of ads delivered on or through the Facebook Company Products (such ads, the “Facebook Ads”) only and use only the results of that Facebook Ad-specific assessment in connection with ad targeting and delivery optimization. Facebook will not otherwise use Campaign Data to retarget advertising to an individual, to append information specific to ads other than Facebook Ads to user profiles, or in association with our brand (except to provide services to You), unless Facebook has permission or are required to do so by law. Facebook may also use Campaign Data to promote safety and security on and off the Facebook Company Products, to provide measurement and analytics services, for research and development purposes, and to maintain the integrity of and to improve the Facebook Company Products. For more information and the latest version of how Facebook uses data you can visit: https://www.facebook.com/privacy/explanation and https://www.facebook.com/privacy/explanation#sharing-partner-information.
Affiliates and Subsidiaries: We may disclose Your Personal Information with our affiliates or subsidiaries for any of the purposes described herein.
Legal Requirements, Subpoenas or Similar Government Orders: We may access, preserve, share, or disclose Your Personal Information if We believe doing so is required or appropriate to: (i) comply with all laws or regulations, including any tax reporting requirements of the Company; (ii) comply with any other law enforcement requests or legal process, such as a court order or subpoena; (iii) respond to Your requests; or (iv) protect Your, Our, or others’ rights, property, or safety. FOR THE AVOIDANCE OF DOUBT, WE MAY BE REQUIRED TO DISCLOSE YOUR PERSONAL INFORMATION TO: (I) TAXING AUTHORITIES AS PART OF OUR TAX REPORTING REQUIREMENTS; OR (II) LAW ENFORCEMENT AUTHORITIES OR OTHER GOVERNMENTAL AGENCIES OR VIA SUBPOENA ARISING OUT OF YOUR USE OF ANY UNLAWFUL OR INFRINGING CONTENT WHILE USING ANY COMPANY PROGRAM.
Company’s Outside Professional Advisors: We may share or disclose Your Personal Information with any of the Company’s Outside Professional Advisors (as defined in Section 2.2 herein) in order to facilitate the professional advice such Outside Professionals provide to the Company.
Aggregated Form: We may make certain automatically-collected, aggregated, or otherwise de-identified Personal Information available to third parties for various purposes, including (i) compliance with various reporting obligations; (ii) for business or marketing purposes; or (iii) to assist such parties in understanding our Users’ interests, habits, and usage patterns for certain programs, content, services, advertisements, promotions, and/or functionality available through the Company Programs.
Other uses: Your Personal Information for other purposes upon obtaining Your permission.
SECTION 4 - ADDITIONAL RIGHTS OF CALIFORNIA RESIDENTS UNDER THE CCPA
Personal Information Shared for Direct Marketing Purposes
If you are a California resident and have provided personal information to us, you are entitled by law to request certain information about the personal information we shared, if any, with other businesses for their own direct marketing uses. To make such a request, fill out our CCPA request form linked here OR send an email to email@example.com with "Request for California Privacy Information" on the subject line and in the body of your message, include the website or line of business to which your request pertains. We will provide the requested information to you at your e-mail address in response. Please allow thirty (30) days for a response. We are required to respond to only one request per customer each year, and we are not required to respond to requests made by means other than through the above email address or form.
We will not share your personal information with third parties for their direct marketing purposes if you request that we do not do so. You may make such a request by sending us an email at firstname.lastname@example.org or mailing your request to MOTHER, LLC 5300 S. Santa Fe Ave.
Vernon, California 90058, Attn: Privacy Team. When contacting us, please indicate your name, address, email address, which website or line of business to which your request pertains, and what personal information you do not want us to share with third parties for their direct marketing purposes. Please note that there is no charge for controlling the sharing of your personal information or for processing this request.
California Do Not Track Disclosures
California Business & Professions Code Section 22575(b) (as amended effective January 1, 2014) provides that California residents are entitled to know how a website operator responds to “Do Not Track” (DNT) browser settings. DNT is a feature offered by some browsers which, when enabled, sends a signal to websites to request that your browsing is not tracked, such as by third party ad networks, social networks and analytic companies. We do not currently take actions to respond to DNT signals because a uniform technological standard has not yet been developed. We continue to review new technologies and may adopt a DNT standard once one is created. For information about DNT, please visit: www.allaboutdnt.org.
Each User has the right to request that the Company disclose certain information to You about the Company’s collection and use of Your Personal Information over the past 12 months. Once the Company receives and confirms Your verifiable consumer request (see Section: Exercising Your Access, Data Portability, Data Correction, and Deletion Rights), the Company will disclose to You (per your request):
- The categories of Personal Information We collected about You, including Sensitive Personal Information.
- The categories of sources for the Personal Information We collected about You.
- Our business or commercial purpose for collecting, sharing or selling that Personal Information.
- The categories of third parties with whom We share that Personal Information.
- The specific pieces of Personal Information We collected about You (also called a data portability request).
Please note that we are not required to:
- Retain any personal information about you if, in the ordinary course of business, that information about you is not retained;
- Reidentify or otherwise link any data that, in the ordinary course of business, is not maintained in a manner that would be considered personal information; or
- Provide the personal information to you more than twice in a 12-month period.
Disclosure of Personal Information Sold, Shared, or Disclosed for a Business Purpose
We do not sell consumers’ personal information for money. We do, however, share consumers’ personal information with certain third parties in ways that might be considered a “sale” of personal information under the California Consumer Privacy Act, even though we do not receive any fee from the third parties in exchange. In connection with any personal information we may "sell", share, or disclose to a third party for a business purpose, you have the right to know:
- The categories of personal information about you that we have sold or shared and the categories of third parties to whom the personal information was sold or shared; and
- The categories of personal information that we have disclosed about you for a business purpose and the categories of persons to whom the personal information was disclosed for a business purpose.
Each User has the right to request that the Company delete any of Your Personal Information that the Company collected from You and retained, subject to certain exceptions. Once the Company receives and confirms Your verifiable consumer request (see Section: Exercising Your Access, Data Portability, Data Correction; and Deletion Rights), the Company will delete (and direct our service providers to delete) Your Personal Information from our records, unless an exception applies. However, the Company may deny Your deletion request if retaining the information is necessary for the Company or its service provider(s) to:
- Complete the transaction for which We collected the Personal Information, provide a good or service that You requested, take actions reasonably anticipated within the context of Our ongoing business relationship with You, or otherwise perform Our contract with You;
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities;
- Debug products to identify and repair errors that impair existing intended functionality;
- Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law;
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.);
- Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if You previously provided informed consent;
- Enable solely internal uses that are reasonably aligned with consumer expectations based on Your relationship with Us;
- Comply with a legal obligation; or
- Make other internal or lawful uses of that information that are compatible with the context in which You provided it.
Each user has the right to request correction of inaccurate personal information maintained by us about you. Upon receipt of a verifiable request from you, we will use commercially reasonable efforts to correct the inaccurate personal information.
To exercise the access, data portability, deletion rights, correction rights, and other rights described in this Section 4, the User must submit a verifiable consumer request to the Company by either:
Please note that you may only make a data access or data portability disclosure request twice within a 12-month period.
If you choose to contact us directly, you will need to provide us with:
- Enough information to identify you (e.g., your full name, address and customer or matter reference number); and
- A description of what right you want to exercise and the information to which your request relates.
We are not obligated to make a data access, correction, deletion or data portability disclosure if we cannot verify that the person making the request is the person about whom we collected information or is someone authorized to act on such person’s behalf.
Any personal information we collect from you to verify your identity in connection with your request will be used solely for the purposes of verification.
The verification we may request will reflect personal information that you have previously provided to us.
Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information.
You may also make a verifiable consumer request on behalf of your minor child.
You may only make a verifiable consumer request for access or data portability twice within a 12-month period. These requests are free, though we reserve the right to implement a reasonable fee for excessive or complex requests you may submit. The verifiable consumer request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative.
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
Before responding to a request by you, we will ask you to verify your identity using personal information you have previously provided to us, in order to protect your privacy. The manner in which we do so will vary on how you make a request and what is being requested. For example, if you submit an inquiry via email, we will respond with an email requesting verification. Otherwise, we may ask you verbally if you make this request over the phone (or in person). We may not be able to oblige all requests, as we are prohibited from disclosing some information.
In the event that you are using an authorized agent to request a disclosure, correction or the deletion of your information, we may ask you to send us a signed letter, including your name, email, your agent's name, and your agent's email, authorizing your agent. We may then ask you to verify your identity with us by email before responding to a request by your agent. Alternatively, you may directly confirm with us that the agent is authorized to submit the request.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.
Response Timing and Format
We endeavor to respond to a verifiable consumer request for access, correction or deletion within forty-five (45) days of its receipt, and a verifiable opt-out or limit use request within fifteen (15) days from receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.
Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request's receipt, or after January 1, 2022 – as directed by you. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
Personal Information Sales Opt-Out and Opt-In Rights
If you are 16 years of age or older, you have the right to opt-out and direct us to not sell your personal information at any time. We do not sell the personal information of consumers we actually know are less than 16 years of age, unless we receive affirmative authorization (the "right to opt-in") from either the consumer who is between 13 and 16 years of age, or the parent or guardian of a consumer less than 13 years of age. Consumers who opt-in to personal information sales may opt-out of future sales at any time.
SECTION 5 - CERTAIN ADDITIONAL CHOICES YOU MAY HAVE ABOUT YOUR INFORMATION
Right to Opt-Out of the Sale or Sharing of Personal Information
You have the right to opt-out of the sale or sharing of your personal information.
You have the right to direct us to not sell or share your personal information at any time (the "right to opt-out"). To exercise the right to opt-out, you (or your authorized representative) may submit a request to us by visiting the following Internet Web page link: Web Form
Do Not Sell or Share My Personal Information:
You do not need to create an account with us to exercise your opt-out rights. We will only use personal information provided in an opt-out request to review and comply with the request.
Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize personal information sales. However, you may change your mind and opt back in to personal information sales at any time by e-mailing us at email@example.com.
If you are subscribed to receive promotional communication from us you may unsubscribe by taking the following steps:
- To unsubscribe from our promotional email communications (eg. New arrivals or sale announcements, etc) please click this link & unsubscribe your email. Please note you may still receive transactional communications if you place an order, return an item or contact our customer service.
- To unsubscribe from our promotional SMS/MMS communications (eg. New arrivals or sale announcements, etc) please text STOP to the last message you received from us.
Right to Limit Use and Disclosure of Sensitive Personal Information:
You have the right to opt-out of the use and disclosure of your sensitive personal information for anything other than supplying requested goods or services.
You have the right to direct us to limit the use and disclosure of your sensitive personal information at any time (the "right to opt-out"). To exercise the right to limit the use and disclosure, you (or your authorized representative) may submit a request to us by visiting the following Internet Web page link: Web Form
Limit Use and Disclosure of My Sensitive Personal Information:
You do not need to create an account with us to exercise your limit use and disclosure rights. We will only use personal information provided in a limit use request to review and comply with the request.
Please note that MOTHER can use sensitive personal information for the following purposes, and you do not have the right to limit the use and disclosure of sensitive personal information being used in the following ways:
- To perform the services or provide the goods reasonably expected by an average consumer who requests those goods or services.
- To detect security incidents that compromise the availability, authenticity, integrity, and confidentiality of stored or transmitted personal information, provided that the use of the consumer’s personal information is reasonably necessary and proportionate for this.
- To resist malicious, deceptive, fraudulent, or illegal actions directed at the business and to prosecute those responsible for those actions, provided that the use of the consumer’s personal information is reasonably necessary and proportionate for this purpose.
- To ensure the physical safety of natural persons, provided that the use of the consumer’s personal information is reasonably necessary and proportionate for this purpose.
- For short-term, transient use, including, but not limited to, nonpersonalized advertising shown as part of a consumer’s current interaction with the business, provided that the personal information is not disclosed to another third party and is not used to build a profile about the consumer or otherwise alter the consumer’s experience outside the current interaction with the business.
- To perform services on behalf of the business, such as maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services on behalf of the business.
- To verify or maintain the quality or safety of a service or device that is owned, manufactured, manufactured for, or controlled by the business, and to improve, upgrade, or enhance the service or device that is owned, manufactured by, manufactured for, or controlled by the business.
- If You elect to Opt Out, and provided You properly delivered Your Opt Out request to the Company in accordance with this Section 5.2, You will no longer receive emails directly from Us after a commercially reasonable time from the date You sent Your Opt Out notice to the Company, provided, however:
(ii) If You Opt Out of receiving future communications, You may still be sent certain transactional communications related to the purchase or shipment of those items. For example, if You placed an order online, We will send You an email confirming Your order and may need to contact You by phone, email and/or regular mail if We have questions about Your order.
(iii) Even after You Opt Out, We may send You messages if we are required to do so by law.
SECTION 6 – RIGHT TO NON-DISCRIMINATION
The Company will not discriminate against You for exercising any of Your rights under the CCPA. Unless permitted by the CCPA, We will not:
- Deny You goods or services;
- Charge You different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties;
- Provide You a different level or quality of goods or services; or
- Suggest that You may receive a different price or rate for goods or services or a different level or quality of goods or services.
SECTION 8 - USER RESPONSIBLE FOR UPDATING USER’S OWN PERSONAL INFORMATION
Users are solely responsible for correcting, updating, or modifying any and all of the User’s Personal Information as it appears in, and as otherwise stored or contained in, any Company Program. Without in any way limiting the foregoing, User acknowledges and agrees that the Company does not have an independent obligation to maintain the accuracy or completeness of any of the Personal Information provided by the User to the Company, including such Personal Information once it is stored, described or otherwise contained in the Company Website or in any other Company Program.
SECTION 9 - LINKS TO, AND USE OF, THIRD PARTY SITES OR PROGRAMS
The Company Website or other Company Programs may now or in the future provide links or other access to Internet websites, forums or other programs which are not under the Company’s sole control and not solely owned by the Company (collectively referred to as “Third Party Sites”). If a User clicks on a link to, or otherwise gains access to, any such Third Party Site, the User will be transported to one of these Third Party Sites.
WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, EACH USER AGREES THAT IF THE USER USES ANY THIRD PARTY SITES IN ANY WAY, THE USER IS AWARE THAT ANY OF THE USER’S PERSONAL INFORMATION THAT THE USER PROVIDES TO THAT THIRD PARTY SITE MIGHT BE READ, COLLECTED, SHARED, DISTRIBUTED, OR OTHERWISE USED BY OTHER USERS OF THAT THIRD PARTY SITE OR BY ANY OTHER THIRD PARTIES, AND COULD BE USED TO SEND THE USER UNSOLICITED MESSAGES. THE COMPANY IS NOT RESPONSIBLE FOR ANY PERSONAL INFORMATION THAT THE USER ELECTS TO SUBMIT IN, OR OTHERWISE MAKE AVAILABLE TO, THESE THIRD PARTY SITES.
Any link to any Third Party Site from the Company Website or any other Company Program does not imply any endorsement of the privacy practices of such Third Party Site by the Company, and no such Third Party Site is authorized to make any representation or warranty on our behalf.
SECTION 10 - ADDITIONAL NOTICE UNDER THE EUROPEAN UNION’S GENERAL DATA PROTECTION REGULATION (“GDPR”)
Data Subjects (as such term is defined in the GDPR) are hereby notified that they have the following additional rights pursuant to the GDPR and UK-GDPR:
- Pursuant to GDPR Article 15 (Right of Access by the Data Subject), to obtain from Us confirmation as to whether or not Personal Data (as such term is defined in the GDPR) has been Processed (as such term is defined in the GDPR) and, if that is the case, access to that Personal Data and additional information about how it has been Processed, including without limitation: (i) the purpose of the Processing; (ii) the category of Personal Data concerned; (iii) the categories of recipients to whom the Data Subject’s Personal Data has been disclosed; (iv) the planned retention period; (v) the existence of Your right of rectification, deletion, limitation of processing or opposition; (vi) the existence of a right to complain; (vii) the source of the collection of Personal Data if not collected from Us; (viii) and the existence of automated decision-making including profiling and, where appropriate, meaningful information about their details;
- Pursuant to GDPR Article 16 (Right to Rectification), to request the correction (modification) of incorrect Personal Data or any completed Personal Data stored by Us;
- Pursuant to GDPR Article 17 (Right to Erasure; “Right to be Forgotten”), to request the deletion of the Data Subject’s Personal Data stored by Us, except for the allowed continued uses permitted by the GDPR, including without limitation as far as the Processing is needed to exercise the right to freedom of expression and information, for the fulfillment of a legal obligations, for reasons of the public interest or for the assertion, exercise or defense of legal claims if required;
- Pursuant to GDPR Article 18 (Right to Restriction of Processing), to demand the restriction of the Processing of the Data Subject’s Personal Data where one of the following applies: (i) as far as the accuracy of the Personal Data is disputed by the Data Subject; (ii) the Processing of the Personal Data is unlawful, but the Data Subject rejects its deletion; (iii) We no longer need the Personal Data, but the Data Subject requires it to exercise or defend legal claims; or (iv) the Data Subject has objected to the Processing of the Personal Data in accordance with GDPR Article 21;
- Pursuant to GDPR Article 20 (Right to Data Portability), the right of the Data Subject to receive his/her Personal Data as provided to Us, in a structured, common and machine-readable format or to request the transfer to another person responsible;
- Pursuant to GDPR Article 7(3) (Conditions of Consent), the Data Subject’s right to withdraw, at any time, the Data Subject’s once granted consent. As a result, We are no longer allowed to continue the Processing of Personal Data based on that consent for the future, but such withdrawal does not affect the lawfulness of the Processing of Personal Data based on such consent before such withdrawal; and
- Pursuant to GDPR Article 77 (right to Lodge a Complaint with a Supervisory Authority), the right of the Data Subject to complain to a Supervisory Authority, as such term is defined in the GDPR. As a general rule, the Data Subject can contact the Supervisory Authority of the Data Subject’s usual place of residence or work or place of the alleged infringement.
We will process your requests in accordance with applicable data protection laws. If you would like to exercise any of the above-described rights, please contact: firstname.lastname@example.org so that we may consider your request in accordance with applicable law.
SECTION 11 - NOTICE TO CANADIAN RESIDENTS
SECTION 12 - CROSS-BORDER DATA TRANSFERS
SECTION 13 - SUSPICIOUS EMAILS
Identity theft and “phishing” are of great concern to us. Please note that MOTHER will not, at any time, ask you to provide your Personal Data or other personal information in a non-secure or unsolicited email. If you receive such an email, please contact us to bring it to our attention. For more information about phishing, visit the Federal Trade Commission at http://www.consumer.ftc.gov/articles/0003-phishing.
SECTION 14 - PROTECTION OF PERSONAL INFORMATION
We have put in place appropriate physical, electronic and managerial procedures to safeguard against foreseeable risks, such as unauthorized access. While no security program can fully protect PI (Personal Information) from unauthorized disclosure, we have implemented internal policies and technical measures to protect PI from loss, accidental destruction, misuse or disclosure. Such internal policies and technical measures include:
- The use of pseudonymization and encryption of personal data where appropriate;
- Procedures and controls to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and platforms;
- Procedures for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing;
- Procedures to ensure that data is not accessed, except by individuals in the proper performance of their duties;
- The use of contractual language requiring our service providers and other third parties to whom we disclose PI to comply with applicable data privacy laws and to protect the confidentiality of the information; and
- Training all of our employees who handle PI on how to properly handle and protect PI.
Please be aware that the Website and data storage are run on software, hardware and networks, any component of which may, from time to time, require maintenance or experience problems or breaches of security beyond our control. We are not responsible for the acts and omissions of any third parties.
No transmission of data over the internet is guaranteed to be completely secure. We cannot guarantee the security of the information on and sent from the Website. It may be possible for third parties not under our control to intercept or access transmissions or private communications unlawfully. While we strive to protect your PI, we cannot ensure or warrant the security of any information you transmit to us over the internet. Any such transmission is done at your own risk.
SECTION 15 – LENGTH OF PI RETENTION
We retain personal information for as long as needed or permitted in light of the purposes for which it was obtained and consistent with applicable law. The criteria used to determine our retention periods include:
- The length of time we have an ongoing relationship with you and provide our products and services to you (for example, for as long as you have an account with us or keep using our products and services);
- Whether there is a legal obligation to which we are subject (for example, certain laws require us to keep records of your transaction or communications for a certain period of time before we can delete them); and
- Whether retention is advisable in light of our legal rights (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).
SECTION 16 – COMPROMISE OF PERSONAL INFORMATION
In the event that PI is compromised as a result of a breach of security, we will promptly notify those persons whose PI has been compromised, as required by applicable law.
SECTION 17 – INFORMATION FROM CHILDREN
SECTION 19 – GOVERNING LAW
SECTION 20 - UPDATES TO THIS POLICY
SECTION 21 - CONTACTING US
5300 S. Santa Fe Ave.
Vernon, California 90058
P (323) 923-5941 – Monday through Friday 8:30 am to 5:30 pm (PST)