1. Introduction
At RebateSnap, we are committed to safeguarding the personal data of our users. We recognize the importance of data privacy and take our responsibilities seriously to ensure that your personal information is handled in compliance with the General Data Protection Regulation (GDPR) of the European Union, as well as relevant US state privacy regulations, including the California Consumer Privacy Act (CCPA).
2. Data Collection
– 2.1. Types of Data Collected:
We collect personal data that you voluntarily provide when registering, using our services, or interacting with the platform. This may include, but is not limited to, your name, email address, billing information, IP address, and browsing behavior.
– 2.2. Purpose of Data Collection:
The data we collect is used to provide, operate, maintain, and improve our services, personalize your experience, process transactions, and communicate with you about your account and our services.
3. Data Processing
– 3.1. Legal Basis for Processing: We process personal data based on one or more of the following legal bases:
– Consent: When you provide your explicit consent for a specific purpose, such as receiving marketing communications.
– Contractual Necessity: When the processing of your data is necessary for the performance of a contract with you (e.g., to provide our services).
– Legitimate Interests: When processing is necessary for the legitimate interests of RebateSnap or a third party, provided that such interests are not overridden by your fundamental rights and freedoms.
– Compliance with Legal Obligations: When we need to process your data to comply with a legal obligation.
4. Data Storage and Retention
– 4.1. Data Storage:
Your personal data is stored on secure servers located within the European Economic Area (EEA) and/or the United States. We implement appropriate technical and organizational measures to protect your data from unauthorized access, disclosure, alteration, or destruction.
– 4.2. Data Retention:
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements. Specific retention periods depend on the type of data and the purposes of processing.
5. Data Sharing and Disclosure
– 5.1. Third-Party Service Providers:
We may share your personal data with third-party service providers who assist us in operating our platform, conducting our business, or providing services to you. These providers are contractually obligated to protect your data and only use it for the purposes specified by RebateSnap.
– 5.2. Legal Compliance:
We may disclose your personal data if required by law, court order, or governmental regulation, or if we believe in good faith that such disclosure is necessary to protect the rights, property, or safety of RebateSnap, our users, or the public.
– 5.3. Business Transfers:
In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred to the acquiring company. We will notify you of any such transfer and provide you with an opportunity to opt-out if your data will be used in a manner different from that stated at the time of collection.
6. Data Subject Rights
– 6.1. Access and Portability:
You have the right to request access to the personal data we hold about you and to receive a copy of that data in a structured, commonly used, and machine-readable format.
– 6.2. Rectification and Erasure:
You have the right to request the correction of inaccurate or incomplete personal data. You also have the right to request the erasure of your personal data when it is no longer necessary for the purposes for which it was collected, or if you withdraw your consent.
– 6.3. Restriction and Objection:
You have the right to request the restriction of processing your personal data in certain circumstances and the right to object to the processing of your personal data based on legitimate interests or direct marketing.
– 6.4. Withdraw Consent:
If we are processing your personal data based on your consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
7. Data Security
– 7.1. Security Measures:
We implement appropriate technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include encryption, access controls, and regular security assessments.
– 7.2. Breach Notification:
In the event of a data breach that poses a high risk to your rights and freedoms, we will notify you and the relevant supervisory authorities within 72 hours of becoming aware of the breach, as required by GDPR and applicable US state regulations.
8. International Data Transfers
– 8.1. Cross-Border Transfers:
Your personal data may be transferred to, and processed in, countries outside of the European Economic Area (EEA), including the United States. When we transfer your data internationally, we ensure that appropriate safeguards are in place to protect your data, in accordance with GDPR requirements.
– 8.2. Standard Contractual Clauses:
For transfers of personal data outside the EEA, we use European Commission-approved Standard Contractual Clauses (SCCs) as a legal mechanism to ensure that your data is protected when transferred to countries without an adequacy decision.
9. Children’s Privacy
Our services are not directed to individuals under the age of 16, and we do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete that information.
10. Updates to This Policy
We may update this Data Protection Responsibility section from time to time to reflect changes in our practices or for legal, technical, or regulatory reasons. We will notify you of any significant changes by posting the updated policy on our platform and indicating the date of the latest revision.
11. Contact Us
If you have any questions or concerns about our data protection practices or your rights, please contact us at:
RebateSnap Data Protection Officer
Email: [info@rebatesnap.com] (mailto:info@rebatesnap.com)Â
—
This section comprehensively covers your responsibility regarding user data protection, including adherence to GDPR and relevant US state regulations like CCPA. It includes details on data collection, processing, storage, sharing, and the rights of data subjects.