Privacy Policy for AmericanStandUp.com
1. Introduction
At AmericanStandUp.com (“we,” “our,” or “us”), we are committed to safeguarding your privacy and protecting your personal data. We recognize the importance of transparency, accountability, and security in how we handle your information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit and interact with our website, americanstandup.com, or engage with our services. We abide by all applicable privacy laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”), and we strive to maintain the highest standards of data protection.
2. Scope and Data Controller
This Privacy Policy applies to all users of the website americanstandup.com and related services. For users in the European Union (EU) or European Economic Area (EEA), we act as the Data Controller of your personal information for the purposes of the GDPR. For California residents, we are also considered a “business” under the CCPA.
We are responsible for determining how, why, and on what lawful grounds we process your personal data. If you have any questions or requests concerning your privacy rights or this Policy, you may contact us at [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data: Includes details about how you use our website, including IP address, browser type, geographic location, operating system, referral source, pages viewed, session duration, and navigation paths.
b. Account Data: Information provided during account creation, subscription, or registration, such as your full name, email address, mailing address, telephone number, and login credentials.
c. Profile Data: Preferences, interests, purchasing behavior, and browsing history on americanstandup.com.
d. Communication Data: Includes records of communications with us, such as customer support inquiries, chat messages, contact forms, feedback submissions, and email correspondence.
e. Technical Data: Information related to your device, such as device type, operating system, system configuration, screen resolution, and language preferences.
f. Transaction Data: Details of products or services you have purchased or considered, including billing address, shipping address, payment method (not card data itself), order history, and delivery tracking data.
g. Preference Data: Includes marketing consent preferences, communication preferences, promotional opt-ins, and other expression of interests or settings configured by you.
4. Legal Bases for Processing Personal Data
We process personal data in compliance with applicable laws and only when a lawful basis applies. The legal bases under GDPR that we rely on include:
– Contractual necessity: Processing required to fulfill our agreement with you, such as providing purchased services or managing your user account.
– Consent: Processing based on your explicit consent, especially for marketing communications or analytics cookies. You have the right to withdraw consent at any time.
– Legal obligation: Processing necessary to comply with applicable law and legal obligations.
– Legitimate interests: Processing necessary for our own legitimate business interests, such as preventing fraud, improving service usability, and securing our systems, provided that these interests do not override your rights and freedoms.
5. Your Rights Under GDPR and CCPA
We respect and uphold your rights over your personal data. Under applicable laws, including the GDPR and CCPA, you have the following rights:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request corrections to any inaccurate or incomplete personal data.
– Right to Erasure: You may request deletion of your personal data where legally appropriate (“right to be forgotten”).
– Right to Restriction: You may request that we limit processing of your information in certain cases.
– Right to Data Portability: You may request a copy of your personal data in a commonly used, machine-readable format and transmit it to another controller.
– Right to Object: You may object to the processing of your data for direct marketing or legitimate interest purposes.
– Right to Non-Discrimination (under CCPA): You will not be discriminated against for exercising your privacy rights.
To exercise any of these rights, please contact us at [email protected]. We may require verification of your identity before responding to your request.
6. Security Measures
We place a high priority on information security. To protect your personal data, we implement reasonable and appropriate physical, technical, and organizational safeguards, including:
– Data encryption in transit and at rest;
– Role-based access controls and multi-factor authentication;
– Regular system backups and secure hosting environments;
– Firewalls, intrusion detection systems, and anti-malware protection;
– Employee privacy training and confidentiality agreements;
– Incident response and breach notification protocols.
Despite our security measures, no system is entirely immune from risks. We encourage you to use a strong password and regularly update software and security preferences.
7. International Data Transfers
When necessary, we transfer personal data to countries outside of your jurisdiction, including to the United States or other countries where we or our service providers operate. We ensure such transfers comply with applicable laws by employing appropriate safeguards, including:
– Standard Contractual Clauses approved by the European Commission;
– Adequacy decisions issued by regulatory authorities;
– Binding corporate rules or equivalent arrangements.
By submitting your personal data and engaging with americanstandup.com, you acknowledge that your data may be transferred internationally and processed in accordance with this Policy.
8. Data Retention Policy
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including compliance with legal, accounting, or reporting obligations. Specific retention periods include:
– Account Data and Profile Data: Retained for the duration of account activity and up to 3 years following inactivity;
– Transaction Data: Retained for up to 7 years for tax and audit purposes;
– Communication Data: Retained for up to 5 years from the last interaction;
– Usage and Technical Data: Retained for up to 24 months for analytics and troubleshooting;
– Marketing Data: Retained until you withdraw consent or opt-out.
Once data is no longer needed under these criteria, it is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies on americanstandup.com to improve user experience, analyze site traffic, and personalize content. Cookies are small data files stored on your browser that may serve various purposes:
– Essential Cookies: Required for website functionality, including navigation and access to secure areas.
– Functional Cookies: Allow the website to remember user choices and provide personalized features.
– Analytics Cookies: Help us understand how visitors interact with our website via aggregated usage statistics.
– Performance Cookies: Enable performance optimization and error management.
10. Cookie Management and Legal Compliance
We comply with GDPR and CCPA requirements for cookie usage. Consent is obtained before non-essential cookies are placed on your device. You may manage your cookie preferences using the cookie settings tool available on our website at any time.
In addition, your browser may offer controls to delete or block cookies. Please note that disabling cookies may impact certain features or performance of americanstandup.com.
For CCPA-specific matters, California users have the right to opt-out of “sale” of personal information (as defined by the CCPA). We do not sell your data in the conventional sense, but you may still exercise your opt-out rights by contacting us or adjusting cookie and tracking preferences accordingly.
11. Protection of Children’s Privacy
Our services are not directed toward, nor intended for use by, children under the age of 13. We do not knowingly collect personal data from children. If you believe that a child has provided us with personal data without parental consent, please contact us at [email protected] and we will delete the information promptly.
12. Policy Changes and User Notification
We reserve the right to modify this Privacy Policy at our discretion to reflect changes in our practices, legal requirements, or technological advancements. Updates will be posted directly to this page. Where required by law, we will provide notice of significant changes and, where applicable, obtain your consent. We encourage you to review this Privacy Policy regularly to remain informed of how your data is protected at americanstandup.com.
13. Contacting Us
For any questions, concerns, or requests regarding this Privacy Policy or how your personal information is handled, you may contact us:
Email: [email protected]
We are committed to protecting your privacy and ensuring your experience on americanstandup.com complies with applicable data protection laws. Please do not hesitate to reach out to us with any privacy-related concerns.
