top of page

Privacy Policy

Introduction

We take the protection of users data of our website and/or mobile app (the "Website" or "Mobile App") very seriously, and we are committed to safeguarding the information that users provide to us in connection with the use of our website and/or mobile app (collectively, "digital assets"). We are further committed to protecting and using your data in accordance with applicable law.

This Privacy Policy explains our practices regarding the collection, use, and disclosure of your data when you access and use our digital assets ("services") via your devices.

Please read the Privacy Policy carefully and make sure that you fully understand our practices regarding your data before using our services. If, after reading this policy, you fully understand it and do not agree with our practices, you must discontinue using our digital assets and services. By using our services, you acknowledge the terms of this Privacy Policy. Continued use of the services constitutes your acceptance of this Privacy Policy and any changes to it.

This Privacy Policy will explain:

  • How we collect data

  • What data we collect

  • Why we collect this data

  • Who we share the data with

  • Where the data is stored

  • How long we retain the data

  • How we protect the data

  • How we handle minors

  • Updates or changes to the Privacy Policy

What data do we collect?

Below is an overview of the data we may collect:

  • Non-identified and non-identifiable information that you provide during the registration process or that is collected through your use of our services ("Non-Personal Data"). Non-Personal Data cannot be used to identify the individual from whom it was collected. The Non-Personal Data we collect mainly consists of technical and aggregated usage information.

  • Individually identifiable information, meaning any data that can identify you or could reasonably be used to identify you ("Personal Data"). The Personal Data we collect through our services may include information such as names, email addresses, addresses, phone numbers, IP addresses, and more, as requested from time to time. If we combine Personal Data with Non-Personal Data, we will treat the combined data as Personal Data as long as it remains combined.

How do we collect data?

Below are the main methods we use to collect data:

Why do we collect this data?

We may use your data for the following purposes:

  • To provide and operate our services;

  • To develop, customize, and improve our services;

  • To respond to your feedback, requests, and needs and to offer support;

  • To analyze demand and usage patterns;

  • For other internal, statistical, and research purposes;

  • To improve our data security and fraud prevention capabilities;

  • To investigate violations and enforce our terms and policies, as well as to comply with applicable laws, regulations, and governmental orders;

  • To send you updates, news, promotional materials, and other information related to our services. You can choose whether to continue receiving promotional emails. If you do not wish to, simply click the unsubscribe link in these emails.

Who do we share this data with?

We may share your data with our service providers in order to operate our services (e.g., storing data via third-party hosting services, providing technical support, etc.).

We may also disclose your data under the following circumstances:

  1. to investigate, detect, prevent, or take action against illegal activities or other misconduct;

  2. to establish or exercise our right to defend ourselves;

  3. to protect our rights, property, or personal safety, as well as the safety of our users or the public;

  4. in the event of a change in control of our company or one of our affiliates (e.g., through a merger, acquisition, or the sale of substantially all of its assets);

  5. to collect, hold, and/or manage your data through authorized third-party providers (e.g., cloud service providers) to the extent reasonably necessary for business purposes;

  6. to collaborate with third-party providers to improve your user experience.

 

For the sake of clarity, we reserve the right to transfer, share, or otherwise use non-personal data with third parties at our discretion.

When you visit or access our services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, and other technologies and analytics services (“Tracking Technologies”). These tracking technologies may allow third parties to automatically collect your data in order to enhance the navigation experience on our digital assets, optimize their performance, ensure a personalized user experience, and for purposes of security and fraud prevention.

For more information visit our Cookie Policy.

Without your consent, we will not share your email address or any other personal data with advertising companies or ad networks.

We may serve advertisements through our services and digital assets (including websites and applications that use our services), which may also be tailored to you, such as ads based on your recent browsing behavior across websites, devices, or browsers.

To deliver these ads to you, we may use cookies and/or JavaScript and/or web beacons (including clear GIFs) and/or HTML5 Local Storage and/or other technologies. We may also use third parties, such as network advertisers (i.e., third parties that display advertisements based on your website visits), to serve targeted ads. External providers of ad networks, advertisers, sponsors, and/or traffic measurement services may also use cookies and/or JavaScript and/or web beacons (including clear GIFs) and/or Flash cookies and/or other technologies to measure the effectiveness of their ads and to personalize advertising content for you. These third-party cookies and other technologies are subject to the specific privacy policy of the respective third party and not this one.

Where Do We Store the Data?

Non-Personal Data


Please note that our company and our trusted partners and service providers are located worldwide. For the purposes outlined in this Privacy Policy, we store and process all non-personal data we collect in various jurisdictions.


Personal Data


Personal data may be maintained, processed, and stored in the United States, Ireland, South Korea, Taiwan, Israel, and other jurisdictions as necessary for the proper provision of our services and/or as legally required (as further explained below).

How Long Do We Retain the Data?

Please note that we retain the data we collect for as long as necessary to provide our services, comply with our legal and contractual obligations to you, resolve disputes, and enforce our agreements.
 

We may correct, complete, or delete inaccurate or incomplete data at our discretion at any time.

How Do We Protect the Data?

The hosting service for our digital assets provides us with the online platform through which we can provide our services to you. Your data may be stored through our hosting provider's data storage, databases and general applications. They store your data on secure servers behind a firewall and they provide secure HTTPS access to most areas of their services.

All payment options offered by us and our hosting provider for our digital assets adhere to the PCI-DSS (Payment Card Industry Data Security Standard) regulations of the PCI Security Standards Council, a collaboration between brands such as Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card data (including physical, electronic and procedural measures) by our store and service providers.

Despite the measures and efforts taken by us and our hosting provider, we cannot and do not guarantee the absolute protection and security of any information you upload, post or otherwise transmit to us or others.

For this reason, we ask that you use strong passwords and, if possible, avoid sending us or others any confidential information that you believe could cause you significant or lasting harm if disclosed. Additionally, because email and instant messaging are not considered secure forms of communication, we ask that you do not send any confidential information through any of these communication channels.

How Do We Handle Minors?

Children can use our services. However, if they wish to access certain features, they may need to provide some information. The collection of certain data (including data collected through cookies, web beacons, and other similar technologies) may occur automatically. If we knowingly collect, use, or disclose data collected from a child, we will notify and seek parental consent in accordance with applicable law. We do not condition a child's participation in an online activity on providing more contact information than is reasonably necessary for the activity. We use the data we collect only in connection with the services requested by the child.

 

We may also use a parent's contact details to communicate about the child's activities within the services. Parents can review the data we have collected from their child, prohibit us from collecting further data about their child, and request that all data we have collected be deleted from our records.

 

Please contact us to review, update, or delete your child's data. To protect your child, we may request proof of your identity. We may deny access to the data if we believe your identity is questionable. Please note that certain data may not be deleted due to other legal obligations.

We use your personal data only for the purposes set out in the Privacy Policy and only when we are convinced that:

  • The use of your personal data is necessary to fulfill or enter into a contract (e.g., to provide you with the services themselves or customer support and technical assistance);

  • The use of your personal data is required to comply with legal or regulatory obligations; or

  • The use of your personal data is necessary to support our legitimate business interests (provided that this is done in a manner that is proportional and respects your privacy rights).

As an EU Resident, You Can:

  • Request confirmation of whether personal data concerning you is being processed and access your stored personal data as well as certain additional information;

  • Request the receipt of personal data you have provided to us in a structured, commonly used, and machine-readable format;

  • Request the correction of your personal data that we hold;

  • Request the deletion of your personal data;

  • Object to the processing of your personal data by us;

  • Request the restriction of the processing of your personal data; or

  • File a complaint with a supervisory authority.

 

Please note that these rights are not absolute and may be subject to our legitimate interests and regulatory requirements. If you have general questions about the personal data we collect and how it is used, please contact us as indicated below.

 

In the course of providing the services, we may transfer data across borders to affiliated companies or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using the services, you consent to the transfer of your data outside the EEA.

 

If you are located in the EEA, your personal data will only be transferred to locations outside the EEA when we are satisfied that an adequate or equivalent level of protection for personal data is in place. We will take appropriate steps to ensure that we have suitable contractual agreements with our third parties to ensure that appropriate safeguards are in place to minimize the risk of unlawful use, alteration, deletion, loss, or theft of your personal data and that these third parties act in compliance with applicable laws at all times.

Rights Under the California Consumer Privacy Act

If you use the services as a California resident, you may have rights under the California Consumer Privacy Act (CCPA) to request access to and deletion of your data.

 

To exercise your rights to access and deletion of your data, please see below for how to contact us.

The Website Does Not Sell User Data

We do not sell any personal data of users for purposes and intents under the CCPA.

Updates or Changes to the Privacy Policy

We may revise this Privacy Policy from time to time at our discretion. The version published on the website is always the current one (see "Last Updated" date). We encourage you to review this Privacy Policy regularly for any changes. For significant changes, we will post a notice on our website. Your continued use of the services after being notified of changes on our website will be considered as your acceptance and agreement to the revised Privacy Policy and your consent to be bound by the terms of the changes.

Contact

If you have general questions about the services or the data we collect about you and how it is used, please contact us at:

info@sootasun.com

Disclaimer

The information provided here does not constitute legal advice and should not be relied upon solely. Specific legal requirements and policies can vary from state to state and/or from one legal system to another. As outlined in our Terms of Service, you are responsible for ensuring that your use of the services complies with the applicable laws and regulations.

To ensure full compliance with your legal obligations, we strongly recommend seeking professional legal advice to better understand the specific requirements that apply to you.

bottom of page