Pop Drops (“Pop Drops,” “we,” or “us”), which operates https://popdrops.com
If you are a resident of the European Economic Area (“EEA”), which includes the member states of the European Union (“EU”), you should consult the sections of this policy relating to the “Rights of EEA Residents” and “International Data Transfers” for provisions that may apply to you.
If you are a resident of the State of California, you should consult the sections of this policy pertaining to the “California Privacy Rights” including rights under the California Consumer Privacy Act (“CCPA”), which came into effect on January 1, 2020.
Information We Collect
“Personal Information” is information that may be used to directly or indirectly identify an individual (which in some cases, may include certain device information). The Personal Information we collect may include: names, aliases, postal addresses, unique personal identifiers, online identifiers, Internet Protocol (IP) address, telephone numbers, email addresses or other similar identifiers. We may combine the Personal Information that we obtain about individuals from more than one source.
The Personal Information we collect about users is provided to us by the individuals themselves. We collect and process Personal Information about individuals to (i) provide information about us and our Services and Products; (ii) provide answers to inquiries, questions and feedback; (iii) maintain regular communication with users to inform them of updates and other information regarding us and our Services and Products; (iv) verify the identity of our users; (v) open, maintain, administer and service users’ accounts, including rewards programs; (vi) provide our Services, including processing transactions for our Products; (vii) improve our Site; and (viii) fulfill our legal and professional obligations.
Notifications and Communications from Pop Drops
We may send you email notifications from time to time. Some notifications are marketing communications relating to us and our Services or Products, including our referral program. You may always stop receiving marketing communications from us by following the “Unsubscribe” link provided on the bottom of an email or contacting us at firstname.lastname@example.org. We may also contact you with marketing alerts via text message if you consent to such communications. Message and data rates apply to such communications and you may always opt out of such communications.
Legal or Security Communications
We also send out notices that are required for legal or security purposes. For example, certain notifications are sent for your own protection. In other cases, these notifications involve changes to various legal agreements or policies. Generally, you may not opt out of such emails. We may also send out communications for verification purposes to comply with the CCPA.
We may also send you responses to emails you send us, if appropriate.
Opting Out of Communications
As described above, we may use the Personal Information we collect from you to send you via e-mail or text message newsletters or other communications from us, including those promotional in nature. If you do not want to receive such communications, you can opt out by using the unsubscribe link at the bottom of our communications or following the instructions on text messages. You may also at any time opt out of receiving communications from us by sending an e-mail to email@example.com
with the subject line “Opt Out.”
California Privacy Rights
The following section pertains to the rights of individuals or households in California (“California consumers”).
Civil Code Section 1798.83
Under certain circumstances, California Civil Code Section 1798.83 states that, upon receipt of a request by a California consumer, a business may be required to provide detailed information regarding how that business has shared that customer’s Personal Information with third parties for direct marking purposes. However, the foregoing does not apply to businesses like ours that do not disclose Personal Information to third parties for direct marketing purposes without prior approval or give you a free mechanism to opt out of having their Personal Information disclosed to third parties for their direct marketing purposes.
Rights under the CCPA
As of January 1, 2020, the CCPA (California Civil Code Section 1798.100 et seq.) provides California consumers with additional rights regarding Personal Information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly with a particular consumer or household. The categories of Personal Information are generally described above but differ for individual consumers depending on the Services used by such consumers.
Under the CCPA, qualifying California consumers may have the following rights:
Right to Know and Right to Delete.
A California consumer has the right to request that we disclose what Personal Information we collect, use, disclose and sell. A California consumer also has the right to submit requests to delete Personal Information.
When we receive a request to know or delete from a California consumer, we will confirm receipt of the request within 10 business days and provide information about how we will process the request, including our verification process. We will respond to such requests within 45 days.
Our obligation to delete Personal Information is not required regarding information necessary, among other things: (1) to provide our Services or Products; (2) to detect and resolve issues related to security or functionality; (3) to comply with legal obligations, including our responsibilities and obligations, and privileges; (4) to exercise free speech or to ensure another’s exercise of free speech; or (5) for internal purposes that a consumer might expect.
Right for Disclosure of Information.
A California consumer may also submit requests that we disclose specific types or categories of Personal Information that we collect.
Under certain circumstances, we will not provide such information, including where the disclosure creates a substantial, articulable and unreasonable risk to the security of that Personal Information, or the security of our systems or networks. We also will not disclose California consumers’ social security numbers, driver’s license numbers or other government-issued identification numbers, financial account numbers, any health insurance or medical identification numbers, or account passwords and security questions and answers. Our obligations to disclose information are also subject to legal restrictions placed on us, including our duty to protect information from disclosure, or restrictions placed by legal or court authority.
If you are a California consumer and would like to make any requests under the CCPA, please direct them as follows:
3125 S 52nd St, Ste 108
Tempe, AZ 85282
If we receive any request we will use a two-step process for online requests where the California consumer must first, clearly submit the request and then second, separately confirm the request. We will use other appropriate measures to verify requests received by mail or telephone.
In submitting a request, a California consumer must provide sufficient information to identify the consumer, such as name, e-mail address, home or work address, or other such information that is on record with us so that we can match such information to the Personal Information that we maintain. Do not provide social security numbers, driver’s license numbers, account numbers, credit or debit card numbers, medical information or health information with requests. If requests are unclear or submitted through means other than outline above, we will provide the California consumer with specific directions on how to submit the request or remedy any deficiencies. If we cannot verify the identity of the requestor, we may deny the request.
California Do Not Track Disclosures
Although some browsers currently offer a “do not track (‘DNT’) option,” no common industry standard for DNT exists. We therefore do not currently commit to responding to browsers’ DNT signals.
Rights of EEA Residents
From May 25, 2018, all processing of Personal Information of EEA Residents is performed by us in accordance with the General Data Protection Regulation (2016/679) of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons regarding the processing of Personal Information and on the free movement of such data (“GDPR”).
Although we are based and operated in the United States and do not provide our Services or Products to the EEA, we may obtain the Personal Information of EEA Residents. Under the GDPR, we are a processor or co-processor of the Personal Information of EEA Residents. Our purpose for collecting and processing Personal Information from or about EEA Residents is to authenticate contacts for our mailing list or provide marketing information about our Services. The legal basis for collecting Personal Information is to fulfill these purposes, including requests and contact from you. We also rely on you consent, including receiving communications regarding us and our Services or Products.
We will not share the Personal Information that we obtain about residents of the EEA with third parties except as described above regarding Personal Information.
Under the GDPR, EEA Residents may also have the right to: obtain confirmation that we hold Personal Information about the resident, request access to and receive information about the Personal Information we maintain about the resident, receive copies of the Personal Information we maintain about the resident, update and correct inaccuracies in Personal Information, object to the continued processing of Personal Information, and have the Personal Information blocked, anonymized or deleted, as appropriate. The right to access Personal Information may be limited in some circumstances by local law and by our legal obligations.
If you qualify, in order to exercise these rights, please contact us through one of the methods below:
3125 S 52nd St, Ste 108
Tempe, AZ 85282
We may ask individuals making requests to provide additional information for identity verification purposes.
Please understand, however, that we reserve the right to retain an archive of such Personal Information for a commercially reasonable time to ensure that its deletion does not affect the integrity of our data; and we further reserve the right to retain an anonymous version of such Information.
For information regarding opt-out rights to communications from us please see above section regarding “Notifications and Communications from Pop Drops.” and “Opting Out of Communications.”
International Data Transfers
If you are resident outside the United States, including in the EEA, we transfer Personal Information provided by you for processing in the United States. Under the GDPR, we are considered a processor or co-processor of the Personal Information of EEA Residents and provide processing of data at the request of individuals who may be controllers or processors of such data. By providing Personal Information to us for the purpose of obtaining information about us and our Services or Products, you consent to the processing of such data in the United States. The transfer of Personal Information to the United States is necessary for the performance of a contract between you and us. Please note that you may always remove yourself from our mailing list by contacting us at firstname.lastname@example.org.
Please note that the United States does not have data protection laws equivalent to those in the EEA and other jurisdictions.
Personal Information Retention
We limit access to the Personal Information we have you to those employees who have a legitimate business need to access such information. We take commercially reasonable steps to protect your Personal Information against unauthorized disclosure or loss. However, no data transmission over the Internet or any security measures can be guaranteed to be 100% secure.
Therefore, while we strive to protect user information we cannot ensure or warrant the security of any information you transmit to us. You engage in such transmissions at your risk. If you believe your Personal Information is being improperly used by us or any third party, please immediately notify us via email at email@example.com. Your Responsibilities We ask that you keep the Personal Information that you provide to us current and that you correct any information you have provided us by contacting us at firstname.lastname@example.org