Who We Are
This Policy applies to our “Services” which include our website at bevridge.co (including any subdomains or mobile versions the “Site”), our in-person and online events (“Events”) and our online sales and marketing.
Your use of our Services indicates your acknowledgement of the practices described in this Policy.
Collection and use of personal data
Personal Data We Collect
In order to provide our Services, we may collect and process information that relates to identified or identifiable individuals (“Personal Data”). We collect and process the following categories of Personal Data (note, specific Personal Data elements are examples and may change):
Personal Data about you and your identity, such as your name, username, biographic/profile data, and other Personal Data you may provide on registration forms or as part of an account profile.
Identity Data used to contact an individual, e.g. email address, physical address, or phone number.
Personal Data we collect in connection with a transaction or purchase, such as your order, the price, and other similar information.
Data about your billing address and method of payment, such as credit, debit, or other payment card information.
Personal Data relating to your device, browser, or application e.g. IP addresses, MAC addresses, application ID/AdID/IDFA, identifiers from cookies, session history and similar browsing metadata, and other data generated through applications and browsers, including via cookies and similar technologies.
Audio/visual streams, recordings, images, and similar content collected through our Service.
User Content: Personal Data included in content provided by users of the Service in any free-form or unstructured format, such as in a “contact us” box, free text field, in a file or document, or messages to us.
How We Collect Personal Data
We collect Personal Data from various sources based on the context in which the Personal Data will be processed:
We collect Personal Data from you directly, for example, when you input information into an online form, sign up for a list, or contact us directly.
We may collect certain Personal Data automatically from your devices. For example, we collect Device Data automatically using cookies and similar technologies when you access our Sites or when you open our marketing communications.
We may process Personal Data from our Clients with whom we have a relationship, and who may provide us, or grant us access to systems providing information about users, personnel, account information, etc.
We receive Personal Data from third parties with whom we have a relationship in connection with their performance of services or processing of transactions on our behalf.
Data we create:
We (or third parties operating on our behalf) create and infer Personal Data based on our observations or analysis of other Personal Data we process, and we may correlate this data with other data we process about you.
How we Process Personal Data
KITS AND OTHER PURCHASES
We (or our third-party service providers) generally process Identity Data, Payment Data, Device Data, Transaction Data and Contact Data when you engage in a purchase transaction, e.g. when you purchase a kit through our Services. We process this Personal Data as necessary to perform or initiate a contract with you, process your order and payment, ensure the security of our Service, and carry out fulfillment and delivery. In addition, we may also collect or create Inference Data related to the products and services you purchase.
This data, together with other data we collect in this context is used as necessary in connection with our business interests, such as ensuring the security of our Service and to prevent fraud, providing you with information about our Service, to contact you about administrative matters, to manage and respond to any queries or complaints you make or any correspondence you send us. We may use also use Personal Data collected from your purchases and transactions for certain commercial purposes, including to create customer profiles, and for marketing purposes, so that we can customize your profile, or recommend kits or other products or services that may interest you, and as described further below.
When you participate in an Event, we (or our third party Service Providers) may process Identity Data and Contact Data. For in person events, we may receive from organizers of events certain attendee data that includes your Identity Data or Contact Data. Additionally, for online events, we may process Device Data and if you choose (e.g. by enabling audio or video) we will process Audio/Visual Data and User Content. We and our third party service providers use this information in order to enroll you in the event, for ticketing or to authenticate access, and to otherwise operate the Event. Additionally, we may link Transaction Data relating to the Event attendance information (such as a list of Events you’ve participated in) to your user account.
Subject to your rights & choices, we use Identity Data and Contact Data as necessary to customize, deliver, and otherwise process marketing communications, and in order to tailor certain communications to individuals’ preferences and requests. Additionally, we may process Device Data from devices receiving those marketing communications as part of our business interests in understanding whether our emails are opened or other aspects of engagement with such marketing communications.
FEEDBACK AND SURVEYS
We generally process Identity Data, Contact Data, Inference Data, and User Content collected in connection with customer surveys or questionnaires. We generally process this Personal Data as necessary to respond to customer requests/concerns, to create aggregate analytics regarding customer satisfaction, and to improve our services. We may also store and analyze feedback for our purposes, for example, to personalize our Service, and help recommend relevant offers or services.
When you contact us though the Site using a contact us box, through our chat, or via email, we process Personal Data such as Identity Data, Device Data, and any Personal Data contained within any User Content. We use Identity Data, Contact Data, and User Content as necessary to communicate with you about the subject matter of your request and related matters.
Cookies and Similar Tracking Technologies
We, and certain third parties, automatically collect and process Identity Data, Inference Data, and Device Data when you interact with cookies and similar technologies on our Services. We may receive this data from third parties to the extent allowed by the applicable partner. Please note that the privacy policies of third parties may also apply to these technologies and the Personal Data collected through them.
Subject to your rights & choices, we may use this information as follows:
- for “essential” or “functional” purposes, such as to enable certain features of the Services, or keeping you logged in during your session;
- for “analytics” and “personalization” purposes, consistent with our business interest in how the Services are used or perform, how users engage with and navigate through our Service, what sites users visit before visiting the Service, how often they visit the Service, and other similar information, as well as to greet users by name and modify the appearance of the Service to usage history, tailor the Service based on geographic location, and understand characteristics of users in various technical and geographic contexts; and Note: Some of these technologies can be used to identify you across platforms, devices, sites, and services.
Business Purposes of Processing
In addition to the processing described above, we generally process Personal Data for several common purposes in connection with our business. For example, we process your Personal Data:
- To provide our Services and fulfill our obligations to you
- To provide, improve, and secure our products and Services
- To enable and improve our customer service
- To comply with the law, and in the public interest
Please see below for more information regarding the purposes for which we process your Personal Data.
OPERATE OUR SERVICES AND FULFILL OBLIGATIONS
We process any Personal Data as is necessary to provide the Services, and as otherwise necessary to fulfill our obligations to you, e.g. to provide you with the information, features, and services you request.
INTERNAL PROCESSES AND SERVICE IMPROVEMENT
We may use any Personal Data we process through our Services as necessary in connection with our improvement of the design of our Services, understanding how are Services are used or function, for customer service purposes, in connection with the creation and analysis of logs and metadata relating to service use, and for ensuring the security and stability of the Services. Additionally, we may use Personal Data to understand what parts of our Service are most relevant to users, how users interact with various aspects of our Services, how our Services perform or fail to perform, etc., or we may analyze use of the Services to determine if there are specific activities that might indicate an information security risk to the Services or our Users. This processing is subject to users’ rights and choices.
We process Personal Data as necessary in connection with our creation of aggregate analytics relating to how our Services are used, the products and services our users purchase, to create service delivery metrics, and to create other reports regarding the use of our Services, demographics of our Users, and other similar information and metrics. The resulting aggregate data will not contain information from which an individual may be readily identified.
COMPLIANCE, SAFETY & PUBLIC INTEREST
Note that we may, without your consent or further notice to you, and to the extent required or permitted by law, process any Personal Data subject to this Policy for purposes determined to be in the public interest or otherwise required by law. For example, we may process information as necessary to fulfil our legal obligations, to protect the vital interests of any individuals, or otherwise in the public interest or as required by a public authority. Please see the data sharing section for more information about how we disclose Personal Data in extraordinary circumstances.
OTHER PROCESSING OF PERSONAL DATA
If we process Personal Data in connection with our Services in a way not described in this Policy, this Policy will still apply generally (e.g. with respect to users’ rights and choices) unless otherwise stated when you provide it.
Information we collect may be shared with a variety of parties, depending upon the purpose for and context in which that information was provided. We generally transfer data to the categories of recipients or in connection with specific business purposes, each described below.
In connection with our general business operations, product/service improvements, to enable certain features, and in connection with our other lawful business interests, we may share Personal Data with service providers or subprocessors who provide certain services or process data on our behalf. For example, we may use cloud-based hosting providers to host our Services or disclose information as part of our own internal operations, such as security operations, internal research, etc.)
Your Personal Data may be processed in the event that we go through a business transition, such as a merger, acquisition, liquidation, or sale of all or a portion of our assets. For example, Personal Data may be part of the assets transferred, or may be disclosed (subject to confidentiality restrictions) during the due diligence process for a potential transaction.
In order to streamline certain business operations, share promotions and content we believe would be of interest to you, and develop products and services that better meet the interests and needs of our customers, we may share your Personal Data with any of our current or future affiliated entities, subsidiaries, and parent companies.
Your Rights & Choices
Applicable law may grant you rights in your Personal Data. These rights vary based on your location, state/country of residence, and may be limited by or subject to our own rights in your Personal Data. You may contact us with respect to rights requests at INFO@BEVRIDGE.CO.
All rights requests we receive directly must be verified to ensure that the individual making the request is authorized to make that request, to reduce fraud, and to ensure the security of your Personal Data. We may require that you log in to your account or verify that you have access to your account or the email on file in order to verify your identity. If an agent is submitting the request on your behalf, we reserve the right to validate the agent’s authority to act on your behalf.
For information regarding your California Privacy Rights (if you are a California resident), please see below.
Note: We are able to fulfill rights requests regarding Personal Data that we control or process. Please contact the third party directly to exercise your rights in third party-controlled information.
You may have the following choices regarding the Personal Data we process, to the extent required under applicable law:
If you consent to processing, you may withdraw your consent at any time. You may be required to close your account in order to withdraw consent where your consent is necessary to perform essential aspects of our Services.
You have the choice to opt-out of or withdraw your consent to marketing communications. You may have a legal right not to receive such messages in certain circumstances, in which case, you will only receive direct marketing communications if you consent. You may exercise your choice via the links in our communications or by contacting us re: direct marketing.
Cookies & Similar Tech:
We receive Personal Data from third parties with whom we have a relationship in connection with their performance of services or processing of transactions on our behalf.You may have the right under applicable law to object to our processing of your Personal Data for certain purposes, including without limitation, situations where we process in accordance with our business interests. You may do so by contacting us re: data rights requests. Note that we may not be required to cease processing based solely on your objection.
We implement and maintain reasonable security measures to safeguard the Personal Data you provide us. However, we sometimes share Personal Data with third parties as noted above, and though we may enter contracts to help ensure security, we do control third parties’ security processes. We do not warrant perfect security and we do not provide any guarantee that your Personal Data or any other information you provide us will remain secure.
We retain information for so long as it, in our discretion, remains relevant to its purpose, and in any event, for so long as is required by law. We will review retention periods periodically, and may sometimes pseudonymize or anonymize data held for longer periods, if appropriate.
Our Services are neither directed at nor intended for use by individuals under the age of 21. Further, we do not knowingly collect Personal Data from such individuals. If we learn that we have inadvertently done so, we will promptly delete it.
We operate in and use service providers located in the United States. If you are located outside the U.S., your Personal Data may be transferred to the U.S. The U.S. may not provide the same legal protections guaranteed to Personal Data in foreign countries. Contact us for more information regarding transfers of data to the U.S.
YOUR CALIFORNIA PRIVACY RIGHTS
Under the California Consumer Privacy Act (“CCPA”) and other California laws, California residents may have the following rights, subject to your submission of an appropriately verified request (see below for verification requirements):
RIGHT TO KNOW
You may have the right to request any of following, for the 12 month period preceding your request: (1) the categories of Personal Data we have collected about you, or that we have sold, or disclosed for a commercial purpose; (2) the categories of sources from which your Personal Data was collected; (3) the business or commercial purpose for which we collected or sold your Personal Data; (4) the categories of third parties to whom we have sold your Personal Data, or disclosed it for a business purpose; and (5) the specific pieces of Personal Data we have collected about you.
RIGHT TO DELETE
You may have the right to delete certain Personal Data that we hold about you, subject to exceptions under applicable law.
RIGHT TO NON-DISCRIMINATION
You may have the right to not to receive discriminatory treatment as a result of your exercise of any rights conferred by the CCPA.
You may request a list of Personal Data we have disclosed about you to third parties for direct marketing purposes (if any) during the preceding calendar year.
OPT-OUT OF SALE
At this time, we do not sell Personal Data. If we engage in sales of Personal Data in the future (as defined by applicable law), you may direct us to stop selling or disclosing Personal Data to third parties for commercial purposes.
SUBMISSION OF RIGHTS REQUESTS
You may submit rights requests to us at INFO@BEVRIDGE.CO. You may be required to provide additional verification information in order to complete your request, as described below.
Verification of Rights Requests
All rights requests must be verified to ensure that the individual making the request is authorized to make that request, to reduce fraud, and to ensure the security of your Personal Data. We may require that you provide the email address we have on file for you (and verify that you can access that email account) and we may request additional information such as an address, phone number, or other data we have on file, in order to verify your identity. Depending on the sensitivity of the Personal Data you request and what type of request you submit, we may request additional information from you. If an agent is submitting the request on your behalf, we reserve the right to validate the agent’s authority to act on your behalf.
Supplemental Data Processing Disclosures
CATEGORIES OF PERSONAL DATA DISCLOSED FOR BUSINESS PURPOSES
For purposes of the CCPA, we may disclose to Service Providers for “business purposes” the following categories of Personal Data: Identity Data, Contact Data, Transaction Data, Payment Data, Device Data, Audio/Visual Data, and User Content.
For purposes of the CCPA, we do not “sell” your Personal Data.
CHANGES TO OUR POLICY
We may change this Policy from time to time. Please visit this page regularly so that you are aware of our latest updates. Your use of the Services following notice of any changes indicates acceptance of any changes.
Feel free to contact us with questions or concerns using the appropriate address below.
General inquiries: INFO@BEVRIDGE.CO
Privacy Rights & Compliance: INFO@BEVRIDGE.CO