Privacy Policy

Effective date: 04.03.2025

When operating this site and doing business with local contractors (“we,” “our,” or “us”), the site operators, we are committed to protecting the privacy and security of personal data collected from visitors and users (“you” or “your”) of our website. Our business primarily serves users located in the USA as a marketing platform only (please read our important legal disclaimer for more). We strictly adhere to the applicable data protection laws of the European Union (EU), including the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679), and the state data privacy laws applicable within the United States, including relevant provisions of the California Consumer Privacy Act (CCPA).

The business has just started and is not yet legally registered, as our revenue is below the first minimum taxable amount our local area. However, we provide contact information for our business’s legal contacts at the bottom of each legal page on this site, and the individual who is responsible for the data collection in your specific area is always known to our partner contractor so please just contact them here: https://artificialgrasslubbock.org/contact/.

By using our Website, you consent to the practices described in this Privacy Policy.

1. Definitions

For the purposes of this Privacy Policy, the following definitions shall apply:

  • Personal Data“: Any information relating to an identified or identifiable natural person (“Data Subject”) as defined under GDPR Art. 4(1) and Arizona Revised Statutes where applicable.
  • Processing“: Any operation or set of operations performed on Personal Data, whether or not by automated means, including collection, recording, storage, alteration, retrieval, use, disclosure, erasure, or destruction as defined under GDPR Art. 4(2).
  • Data Controller“: The natural or legal person, public authority, agency, or other body which determines the purposes and means of the processing of Personal Data as defined under GDPR Art. 4(7).
  • User“: Any individual who accesses and interacts with our Website.

2. Data Collection

We collect and process Personal Data from Users of our Website. This includes contact information such as names, phone numbers, and other details you provide when contacting us or filling out forms on our Website. We also collect technical data, such as IP addresses, browser types, operating systems, referral URLs, and other information automatically collected via cookies and tracking technologies like pixels and tags. Additionally, we gather usage data related to how you use our Website, including interactions, browsing patterns, and preferences.

Data is collected either voluntarily through contact forms, email communications, or subscription forms, or automatically through cookies, analytics tools, and server logs.

3. Legal Basis for Processing

Our processing of Personal Data is conducted in compliance with the following legal bases. As per GDPR Art. 6(1), we only process Personal Data if consent has been given by the User for specific purposes, processing is necessary for the performance of a contract to which the User is a party, processing is necessary for compliance with a legal obligation, or processing is necessary for the purposes of legitimate interests pursued by our business, provided such interests are not overridden by the rights and freedoms of the User.

4. Purpose of Data Collection

Personal Data is collected and processed exclusively for the following purposes:

  • To comply with legal obligations and safeguard our legal rights.
  • To promote and market our services, provided explicit consent has been obtained where required under GDPR Art. 6(1)(a).

Additionally, we use Personal Data to provide, operate, and maintain our Website, to communicate with Users by responding to inquiries, comments, or requests, to improve and enhance the functionality, content, and user experience of our Website, and to conduct analytics, monitor usage patterns, and optimize the performance of our Website.

We strictly limit the use of Personal Data to these stated purposes and ensure that processing activities remain transparent and accountable. All processing is conducted in a manner that ensures security, confidentiality, and integrity as required by GDPR Art. 5 and applicable US state laws.

6. Data Sharing & Transfers

We share Data you provide with third-party service providers, such as hosting providers and analytics tools, only when necessary for the operation of our Website and the provision of our services. Cross-border data transfers from the USA to other regions are conducted in compliance with GDPR and other law requirements under Articles 44ā€“50, ensuring that appropriate safeguards are in place to protect the rights and freedoms of Users.

Data sharing is limited to the extent necessary for the legitimate purposes of our business and is conducted under contracts that ensure compliance with relevant data protection laws.

7. Data Storage & Security Measures

We implement appropriate security protocols to protect the integrity and confidentiality of Personal Data. Measures include encryption, access controls, and regular security assessments as well as having a secure server connection protocol (SSL) installed.

Personal Data is stored only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. Once the data is no longer needed, it is securely deleted or anonymized.

8. Your Rights as a User

As a User, you have specific rights concerning your Personal Data under various privacy laws, including the California Consumer Privacy Act (CCPA), General Data Protection Regulation (GDPR), and other applicable privacy regulations. These rights are designed to provide you with more control over your Personal Data and how it is processed.

Your Rights Include:

  • Right to Access: You have the right to request details about the Personal Data we hold about you, including the categories of data, the sources from which it was collected, the purpose for its collection, and with whom it has been shared.
  • Right to Rectification: You can request the correction of inaccurate or incomplete Personal Data.
  • Right to Deletion (Right to be Forgotten): You have the right to request the deletion of your Personal Data under certain circumstances, such as when the information is no longer necessary for the purposes for which it was collected or when you withdraw your consent (where applicable).
  • Right to Restrict Processing: You can request that we limit the processing of your Personal Data in specific cases, such as when you contest the accuracy of the data or object to its processing.
  • Right to Data Portability: You have the right to obtain your Personal Data in a structured, commonly used, and machine-readable format. Where technically feasible, you may request that we transfer this data to another data controller.
  • Right to Object: You may object to the processing of your Personal Data for reasons related to your specific situation. This includes the right to object to data processing for direct marketing purposes.
  • Right to Opt-Out of Sale of Personal Data (CCPA-specific): If applicable, you have the right to opt-out of the sale of your Personal Data to third parties.
  • Right to Non-Discrimination (CCPA-specific): Exercising your privacy rights will not result in any form of discriminatory treatment, including denial of services, differences in pricing, or reduced service quality.

To exercise any of your rights, you may contact us using the contact information provided below. We will respond to all legitimate requests promptly, and in accordance with applicable laws, typically within 30 days.

9. Cookie Policy

We utilize cookies and similar tracking technologies to enhance your experience on our Website. Cookies are small text files stored on your device that help us analyze website traffic, personalize content, and improve overall functionality. Additionally, cookies may be used for marketing, advertising, and analytics purposes.

Types of Cookies We Use:

  • Essential Cookies: Necessary for the core functionality of the Website. Disabling these cookies may result in restricted access to certain features or functionalities.
  • Performance Cookies: Collect information on how visitors interact with the Website, such as pages visited, time spent, and errors encountered. These cookies help us improve user experience by optimizing website performance.
  • Functional Cookies: Allow the Website to remember your preferences and settings, such as language selection, region, or personalized features.
  • Marketing & Advertising Cookies: Track user activity across the Website to deliver relevant advertising content and measure campaign effectiveness.

Managing Cookies:

You can manage your cookie preferences at any time through your browser settings or by using our cookie consent management tool provided on the Website. Note that blocking or disabling certain cookies may affect your ability to fully access and use all features of the Website.

Legal Basis:

As required by GDPR Art. 7 (Conditions for Consent) and the ePrivacy Directive (Directive 2002/58/EC), we obtain your consent before placing cookies that are not strictly necessary for the Websiteā€™s operation. For California residents, we comply with the CCPA by providing you with the ability to opt-out of the sale of your Personal Data.

10. Childrenā€™s Privacy

Our Website is not intended for individuals under the age of 16. We do not knowingly collect, process, or store Personal Data from children. Should we become aware that we have inadvertently collected such information, we will take immediate steps to delete it.

We comply with GDPR Art. 8, which sets the age limit for consent to data processing, and the Childrenā€™s Online Privacy Protection Act (COPPA) in the United States, which applies to children under the age of 13.

11. Data Retention Policy

We retain your Personal Data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by applicable laws and regulations.

Criteria for Data Retention:

  • Legal Requirements: Personal Data will be retained for as long as necessary to comply with applicable legal obligations, such as record-keeping, auditing, and regulatory compliance.
  • Business Needs: Personal Data will be retained for the duration necessary to fulfill contractual obligations, enhance services, conduct research, maintain business records, and uphold legitimate business interests.

In accordance with GDPR Art. 5(1)(e) – Storage Limitation, we ensure that Personal Data is not kept longer than necessary for the purposes for which it was collected. Additionally, we comply with CCPA requirements by not retaining Personal Data for longer than reasonably necessary to achieve the disclosed purposes for which the data was collected.

If you have any questions or wish to exercise your rights, please contact us using the contact details provided on the bottom of this page.

12. Data Breach Response Plan

In the event of a data breach, this are the procedures we have established to promptly identify, respond to, and mitigate any risks posed by the breach:

  1. Identification: We will immediately investigate the breach and determine the scope and nature of the incident.
  2. Notification: We will notify the relevant authorities, including the supervisory authority, within 72 hours of becoming aware of the breach as required by GDPR Art. 33.
  3. Communication to Affected Individuals: If there is a high risk to user rights and freedoms, we will communicate the breach to the affected individuals without undue delay in accordance with GDPR Art. 34.

Additionally, we comply with the Arizona Data Security Breach Notification Law (ARS Ā§ 18-552), which mandates that affected individuals be notified of any breaches involving their personal information.

13. Third-Party Links and Integrations

Our Website may contain links to third-party websites or services especially in the informational content. These third-party sites have their own privacy policies, and we are not responsible for their practices. We encourage you to review the privacy policies of any third-party websites before sharing any personal information.

Please note that third-party services, such as plugins or integrations, may collect data independently of us. We do not have control over their data collection methods and are not responsible for their data handling practices.

14. International Data Transfers

As our business is based outside of the United States, Personal Data may be transferred, processed and held outside the USA. We ensure that such transfers are carried out in compliance with applicable data protection laws, including the use of Standard Contractual Clauses (SCCs), as stipulated under GDPR Art. 46.

Additionally, we comply with the Schrems II decision regarding cross-border data transfers and ensure that data protection safeguards are in place.

15. Legal Disclosure

We may disclose your Personal Data when required to do so by law, such as to comply with a subpoena, court order, or other legal processes. We will also disclose data if we believe in good faith that such disclosure is necessary to:

  • Comply with a legal obligation under GDPR Art. 6(1)(c) (Legal Obligation).
  • Protect and defend our rights, property, or safety, or that of others.

This may include sharing data with law enforcement or other government authorities when legally mandated.

16. Privacy Shield Framework Compliance (if applicable)

If applicable, we adhere to the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework, as set forth by the U.S. Department of Commerce. These frameworks ensure that data transferred from the EU or Switzerland to the United States is handled in compliance with EU data protection standards.

Additionally, we rely on the adequacy decisions issued by the European Commission or other legal bases for international data transfers, including Standard Contractual Clauses (SCCs).

17. Marketing Communications

We may use your Personal Data for marketing and advertising purposes, but only with your explicit consent as required by GDPR Art. 6(1)(a). You have the right to withdraw your consent at any time by following the unsubscribe instructions provided in our marketing emails or by contacting us directly.

As per GDPR Art. 21, you have the right to object to processing for direct marketing purposes. Additionally, under Arizona law, you have the right to opt-out of receiving marketing communications.

18. Changes to Privacy Policy

We reserve the right to update this Privacy Policy from time to time. Any changes will be communicated by posting the updated Privacy Policy on our Website. We recommend reviewing this policy periodically to stay informed about how we are protecting your Personal Data.

If any significant changes are made, we will notify you via email or through a notice on our Website.

19. Contact Information

Email: legal.correspondence.web@gmail.com

Contractor Phone: https://artificialgrasslubbock.org/contact/