LAST REVISED ON: 8/30/2019
COMPANY: AFFINITY CANVAS INC and its affiliated entities (“Company”, “us”, “our”, and “we”)
COMPANY CONTACT INFORMATION:
Attention: Affinity Canvas
2097 South 900 East, Lehi, Utah 84043
COMPANY WEBSITE: The website located at (together with any websites on related domains or subdomains, the “Site”).
COMPANY APPS: The mobile or online application(s) entitled “Affinity Canvas” (together with any other applications or platforms available via the Site or published by the Company, collectively, the “App”).
1. WHEN USER INFORMATION IS COLLECT. Company collects your information during your access or use of (i) any websites or web application provided, published, developed or made available by the Company, including the Site; (ii) any mobile or online applications provided, published, licensed, developed or made available by the Company, including the App; and (iii) any feature, content, software, hardware, services or other products available on or through the Site or the App or otherwise provided by the Company (together with the Site and the App, the “Services”). Your access and use of the Services is conditioned on your providing us with any requested User Information, and your refusal to provide requested User Information may prevent Company from providing certain Services.
2. WHAT INFORMATION IS COLLECTED.
2.1 Personally Identifiable Information. Company may collect any personally identifiable information that you provide in connection with any Services, including, without limitation: your name, email address, mailing address, phone number, photograph, birthdate, and other similar information provided with respect to your business or its employees, officers, representatives or affiliates, and certain historical, contact, and demographic information about you.
2.2 Device Information. Company may collect information about your device when you access any Services, including the hardware model, operating system and version, unique device identifier, mobile network information, and information about the device’s interaction with the Services, as well as GPS information and information about the location of your device when using any Services.
2.3 Payment Information. Company may collect information provided in connection with you making, accepting, requesting or recording payments, credits or money transfers through any Services, including: payment card numbers, bank accounts information, when and where the transactions occur, the names of the transacting parties, a description of the transactions, the payment or transfer amounts, billing and shipping information, and the devices and payment methods used to complete the transactions.
2.4 Tax Information. Company may collect information regarding your tax information, including states of residence, withholding allowances and tax filing status.
2.5 Purchase Information. Company may collect information and data about your purchase information and preferences, including products and services purchased, amounts paid, frequency of purchases, location of purchases, and similar information.
2.6 Usage Information. Company may collect information and data about how you use the Services, including access time, Services accessed, browser type and language, Internet Protocol (“IP”) address, other applications on your device, webpages and applications viewed and used, time spent on webpages and applications, links clicked, and conversion information (e.g., transactions entered into).
2.7 Aggregated Data. Company may collect aggregated data about you or your use of Services or any other aggregated form of the other types of User Information set forth above. Aggregated data that we collect cannot be specifically associated with you individually, unlike most of the other forms of User Information.
3. HOW USER INFORMATION IS COLLECTED.
3.1 Information Given By You. You provide certain User Information when you register for your account with the Services and as you use the Services. We consider all such information voluntarily provided.
3.2 Automatic Collection. User Information can be recorded and collected by software or processes that run automatically on your computer or device or Company’s servers as you use the Services.
3.3 Cookies. User Information may be collected by sending cookies to your device. Cookies are small data files that are stored on your hard drive or in your device memory when you use the Services. Among other things, cookies support the integrity of the Company registration process, retain your preferences and account settings, and help evaluate and compile aggregated statistics about your activity. Company may use both session cookies and persistent cookies. A session cookie disappears after you close your browser. A persistent cookie remains after you close your browser and may be used by the browser on subsequent uses of the Services. Company may link the information stored in cookies to your User Information submitted while using the Services. You can typically remove and reject cookies from our Site with your browser settings. Many browsers are set to accept cookies until you change your settings. If you remove or reject our cookies, it could affect how the Services are provided.
3.4 Web Beacons. User Information may also be collected by using web beacons. Web beacons are electronic images that may be used in connection with the Services. Company may use web beacons to deliver cookies, track the number of visits to the Services, understand Service usage and effectiveness, and determine whether an email has been opened and acted upon.
4. HOW COLLECTED USER INFORMATION IS USED.
4.1 As Permitted by Law. Company may use, publish, store, duplicate, manipulate and share User Information in any way not otherwise prohibited by applicable privacy laws.
4.2 Provide Services. User Information is stored and used so that you can verify your identify and save your preferences, profile, and information in connection with creating, using and accessing your account with the Services, and to deliver, operate, provide, maintain, enhance, personalize, tailor and facilitate your use of the Services.
4.3 Improve Services. User Information is also used to develop new products and Services, provide optimization, statistical analysis, and improvements for existing Services, and to improve web design and functionality.
4.4 Communication Purposes. User Information is used to deliver technical notices, security alerts, support messages, administrative notices and alerts, and communications relevant to your use of the Service, as well as to inform you about software compatibility issues, send news or information, conduct surveys and collect feedback. User Information is also used to communicate with you about products, services, contests, promotions, discounts, incentives, gift cards, loyalty programs, and rewards, based on your communication preferences and applicable privacy laws.
4.5 Facilitate Payments. Using and storing your User Information is necessary for us to be able to process or record payment transactions or money transfers.
4.6 Track and Display Consumer Behavior. User Information is stored so that the Services can track historical transactions, payments, invoices, receipts, and past order information. User Information is also used to display current, ongoing, pending or requested transactions or orders.
4.7 For Automated Decisions. User Information may be used by the Services to automatically trigger certain actions by the Services, including targeted advertisements or content, directing you to specific products or offerings, suggesting various actions or offerings based on behavior and preferences, etc.
4.8 Legal Compliance. User Information is stored so that we can comply with applicable laws and regulations, including the privacy laws and anti-money laundering laws.
4.9 Aggregated Data Collection. User Information is collected and aggregated to monitor aggregate usage and web traffic routing of all users of the Services, as well as to generate aggregated statistics about purchasing behavior of different demographics and populations.
5. HOW COLLECTED USER INFORMATION IS SHARED.
5.1 As Permitted by Law. Company may share User Information in any way not otherwise prohibited by applicable privacy laws.
5.2 With Consent. User Information may be shared with other parties with your consent, such as for marketing uses that you authorize or consent to.
5.3 Facilitate Third Party Services. The Company, like many businesses, sometimes hire other companies or individuals to perform certain business-related functions and will need to share certain User Information for such parties to perform such functions. These third-party functions may include: anonymous site metrics, analytics services, payment processing, point of sale services, task management services, delivery of loyalty programs, management of gift cards, creation and delivery of promotional materials, product support and maintenance, order fulfillment and shipment/delivery of products and services to users, mailing services, maintaining databases and other features or services included in or necessary for the Services. When the Company employs another party to perform a function of this nature, we only provide them with the information that they need to perform their specific function.
5.4 Delivery of Targeted Services and Ads. User Information may also be shared or licensed to third parties without your consent to deliver targeted and non-targeted third-party content and advertisements in connection with the Services as well as un-related services, websites and applications.
5.6 Sale of User Information. User Information may be sold, transferred or assigned to third parties without your consent for their uses, subject to applicable privacy laws.
5.7 Business Transfers. As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, User Information may be part of the transferred assets.
5.8 Affiliated Entities, Agents, Consultants and Related Third Parties. We may also share your User Information with our affiliated entities for purposes consistent with this Policy.
6. HOW COLLECTED USER INFORMATION IS PROTECTED.
6.1 Protective Measures. Company takes commercially reasonable measures, including administrative, technical, and physical safeguards, to (i) protect User Information from loss, theft, misuse, and unauthorized access, disclosure, alteration, and destruction, (ii) ensure the security, confidentiality, and integrity of the User Information, (iii) protect against any anticipated threats or hazards to the security or integrity of the User Information, (iv) protect against unauthorized access to, or unauthorized use or disclosure of, the User Information, and (v) take such security measures required by any applicable privacy laws.
6.2 Third-Party Partners and Employees. Company may, by itself or using third-party service providers, hold, process and store User Information, including in the United States, Canada, the European Union, and other countries. Company restricts access to User Information to those employees, contractors, and agents who need to know that information for purposes of performing their obligations to Company or you, and who are subject to contractual confidentiality obligations, and who may be disciplined or terminated if they fail to meet these obligations. Company third-party service providers store and transmit User Information in compliance with appropriate confidentiality and security measures.
6.3 Security Breach. The Company cannot guarantee that unauthorized third parties will never be able to defeat Company security measures or use User Information for improper purposes. In the event that any User Information in Company’s possession or under Company’s control is compromised as a result of a security breach, Company shall give prompt notice to you, with full particulars, and shall immediately commence a thorough investigation of any such incident.
6.4 Company Not Liable for Breach. Company will not be liable for any damages, claims, liability, or causes of action that arise as a result of any such security breach.
7. EXCLUSIONS. This Policy shall not apply to (i) information posted by you to any public areas of the Services, such as bulletin boards, chat room, community pages or comment areas, (ii) any ideas for new products or modifications to existing products, and (iii) other unsolicited submissions (collectively, “Unsolicited Information”). All Unsolicited Information shall be deemed to be non-confidential and voluntarily given, and Company shall be free to reproduce, use, disclose, and distribute such Unsolicited Information to others without limitation or attribution.
8. CHOICES; INTERNATIONAL PRIVACY LAWS; RETENTION.
8.1 Right to be Informed; Access. We strive to be completely transparent in how we are using your personally identifiable information (your “Personal Data”). You have the right to know exactly what Personal Data is held about you and how it is processed.
8.2 Right of Rectification. You are entitled to correct your Personal Data if it is inaccurate or incomplete.
8.3 Right of Erasure or to Decline to Share. You have the right to have your Personal Data deleted or removed for any or no reason, and you have the right to decline to share certain Personal Data with us. However, if you choose to exercise either of these rights, your ability to use and access our websites, apps, products, and services may be impacted because various features require your Personal Data to function correctly.
8.4 Right to Data Portability. You have the right to retain and reuse any Personal Data for your own purpose.
8.5 Right to Object; Restrict Processing. In certain circumstances, you are entitled to object to the use of your Personal Data. This includes when your Personal Data is used for the purpose of direct marketing, scientific and historical research or the performance of a task in the public interest, when such use has a consequence with a legal bearing on yourself, or when such use is for automatic decision making that has a material impact outside your use of our websites, apps, products or services. You may not object if our use of your Personal Data is otherwise permitted by applicable law.
For personally identifiable information received from the European Union, we also certify that we adhere to the EU-US Privacy Shield Principles of Notice, Choice, Onward Transfers, Security, Data Integrity & Purpose Limitation, Access and Recourse, and Enforcement.
8.7 Data Retention. We only retain your Personal Data for as long as your account with us is active, and then for an additional limited period of time for as long as we need it to fulfill the purposes for which we initially collected such information unless otherwise required by law or to protect our rights. For example, we may be required to retain copies of certain information to comply with legal obligations, to resolve disputes or enforce our agreements.
9. DUTIES OF USER
9.1 User shall take reasonable precautions to secure usernames, passwords, and any other means of gaining access to the services and hosted data.
9.2 User shall notify Company promptly of any known or suspected unauthorized access. User will assist Company in any efforts by user to investigate and respond to any unauthorized access.
10. CHANGES TO POLICY.
10.1 Notification of Changes. This Policy is subject to occasional revision, and if we make any substantial changes, we may notify you through the Services, by sending you an e-mail to the last e-mail address you provided to us (if any), and/or by prominently posting notice of the changes on the Site or through your account. You are responsible for providing us with your most current e-mail address. In the event that the last e-mail address that you have provided us is not valid, or for any reason is not capable of delivering to you the notice described above, our dispatch of the e-mail containing such notice will nonetheless constitute effective notice of the changes described in the notice.
10.2 Effectiveness of Changes. Any changes to this Policy will be effective upon the earlier of fifteen (15) calendar days following our dispatch of an e-mail notice to you (if applicable) or fifteen (15) calendar days following our posting of notice of the changes on our Site. These changes will be effective immediately for new users of the Services.
10.3 Use and Acceptance of Policy. Continued use of the Services following notice of changes to this Policy shall indicate your acknowledgment and acceptance of such changes and agreement to be bound by the updated Policy.
10.4 Last Revision Date. This Policy was last updated on the date indicated above. Please review this policy periodically, and especially before you voluntarily provide any User Information.