Your data rights

Region: LATAM (Latin America) Lei Geral de Proteção de Dados (LGPD) is a comprehensive data protection law in Brazil that takes its inspiration from the EU’s GDPR. The data protection law applies to all data subjects located in Brazil and who are served different products or services from companies operating inside or outside Brazil and to public authorities in Brazil. The law establishes ten legal bases for the lawful processing and handling of data, as well as accountability requirements, mandatory breach notifications and DSRs - imposing heavy penalties upon violation.

Region: EMEA (Europe, the Middle East and Africa) The European Union’s General Data Protection Regulation (GDPR) is considered to be the most comprehensive data protection legal framework that aims to protect personal data of natural persons and grants several rights to them. The regulation applies to companies established in the EU. It also applies to organizations not established in the EU that monitor individuals’ behavior in the EU or offer goods or services to data subjects in the EU. Inspired by the GDPR, countries all around the world have formulated their data protection laws based on the similar framework.

Law No. 8968, on the Protection of the Individual against the Processing of Personal Data. The bill was processed under file No. 16,679 and is an initiative of deputies from various political factions. It was approved on June 27, 2011 and published in La Gaceta No. 170 of September 05, 2011. In 2012, through Executive Decree No. 37554-JP, the Regulations to Law No. 8968 were issued. To date, the Law has not been reformed, while Executive Decrees No. 40008-JP in 2016 and No. 41582 in 2019 amended some articles of the Regulations.

Region: NA (North America) PIPEDA is a federal law that governs the data collection, processing, and protection by federal works, undertakings or businesses operating within Canada. The data privacy and protection regulations were enacted to assure the global community of the data protection practices and compliance of the Canadian private sector. The regulations apply to for-profit federally regulated organizations offering commercial services in Canada such as banks, radio and television studios, airports and airlines, inter-provincial trucking, telecommunication companies, railways etc.

What this policy is for: We value your privacy and want to be accountable to you, and transparent with you, in the way that we collect and use your personal information. Your privacy is important to us at birthday.gold ("birthday.gold" "Company," "we," "us," or "our"), and we are committed to safeguarding, preserving, and respecting your privacy rights. If you are a California resident, you have certain rights with respect to the collection, use, transfer, and processing of your personal information, as defined by the California Consumer Privacy Act ("CCPA"), Cal. Civ. Code § 1798.100 et seq., as amended by the California Privacy Rights Act ("CRPA") and implementing regulations. Our policy describes how we collect, use, share, disclose, retain, and secure the personal information we gather about you through our Site https://birthday.gold (the "Site"). We reserve the right to limit these rights where permitted under applicable law, including where your identity cannot be reasonably verified or to the extent your rights adversely affect the rights and freedoms of others. Information We Collect birthday.gold actively collects information from its visitors directly from you when you: create an online account, create a search, sign up to our newsletter, give a rating or review, take a survey, fill out an online form, enter a promotion or engage with us. The types of information we collect include the following: Contact Information - We may ask about your personal information such as name, address or location, telephone or mobile number, or email address. Account Login Information - We will require you to provide information to set up an account with us. Demographic Information - We may collect demographic information such as your gender, age, ethnicity and postcode if and when you fill out an online form or a survey. Information You Share and Submit - We may collect information that you post either publicly or on a channel/platform we provide (e.g. forum, comment section, survey form and social media) for sharing among users. Location Information - If you have enabled location services on your mobile device, we may collect your location information to improve the services we offer. This enables us to provide location-based services. If you wish to change our access or permissions, you may do so in your device's settings. Use of Cookies "Cookies" are small pieces of information (text files) that a Site sends to your computer's hard drive or electronic browsing device while you are viewing the Site. These text files can be used by Sites to make the users experience more efficient. The law states that we can store these cookies on your device if they are strictly necessary for the operation of this Site. For all other types of cookies, we need your permission. To that end, this Site uses different types of cookies. Some cookies are placed by third party services that appear on our pages. We and some third parties may use both session Cookies (which expire once you close your web browser) and persistent Cookies (which stay on your computer until you delete them) to provide you with a more personal and interactive experience on our services and to market the services. Use of Your Information In general, personal information you submit to us is used either to respond to requests that you make, aid us in serving you better, or market our services. We use your personal information in the following ways: To provide our service to you. To protect your account. To notify you in a personalized manner about features and offerings. By using our Site and signing up for our service, we collect the following categories of personal information and are illustrative examples from the CCPA from the birthday.gold Site: Category Examples Collected By Us Retention Period Identifiers A real name, alias, postal address, online identifier, Internet Protocol address, email address, or other similar identifiers. Yes 5 years Personal Information A name, address, or telephone number. Some personal information included in this category may overlap with other categories Yes 5 years Protected Classification Characteristics Under California or Federal Law Age, sex (including gender, gender identity, gender expression), veteran or military status. Yes N/A Commercial Information Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. No N/A Biometric Information Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. No N/A Internet or Other Similar Network Activity Search history, information on interaction with our Site. Yes 5 years Geolocation Data Physical location or movements. Yes 5 years Sensory Data Audio, electronic, visual, thermal, olfactory, or similar information. No N/A Professional or Employment-Related Information Current or past job history or performance evaluations. No N/A Non-Public Education Information Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. No N/A Inferences Drawn of the Consumer Inferences drawn from Personal Information identified above to create a profile about a consumer reflecting a consumer's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. No N/A Sensitive Personal Information Personal information that reveals (a) Social Security, driver's license, state identification card, or passport number; (b) account log-in, financial account, debit card, or credit card number in combination with any required security or access code, password, or credential allowing access to an account; (c) precise geolocation; or (d) the contents of a consumer's mail, email, and text messages unless the business is the intended recipient of the communication. (a) - No(b) - No (c) - Yes(d) - Yes 5 years Sensitive Personal Information We will not knowingly collect or otherwise process your Sensitive Data, as defined under applicable state laws, without first obtaining your consent. Sensitive Data as defined in the CTDPA, UCPA, and VCDPA includes precise geolocation information. For the purposes of serving you relevant advertisements based on your location, we collect geolocation information to perform geofencing. We will not collect this information from Connecticut, Utah, and Virginia residents without first obtaining consent. Disclosure of Your Personal Information We disclose your personal information as described below and as described elsewhere in this Privacy Policy. Third Parties Designated by You: When you use the Services, the personal information you provide will be shared with the third parties that you authorize to receive such information. Third Party Service Providers: We may share your personal information with third party service providers to: provide you with the Services that we offer you through our Services; conduct quality assurance testing; to provide technical support; market the Services; and/or to provide other services to us. Data Retention Policy We will keep your Personal Data for as long as you are a registered user ecommerce platform, or for as long as is necessary for us to provide products or services for you, and for a limited period of time afterwards including but not limited to: Operate, maintain, and improve our Site(s) services; Respond to comments and questions and provide customer service; Develop, improve and advertising our podcast Services; Fulfill and manage our service, payments, and other transactions related to the Application; Identify you as a user in our system; Your personal information may be kept and processed on servers in the United States. We may also create anonymous data records from your personal information by completely excluding information (such as your name) that makes the data personally identifiable to you. We use this anonymous data to analyze request and usage patterns so that we may enhance the content of our Services and improve Site functionality. Third Party Sites Our Site contain links to third party Sites. When you click on a link to any other Site or location, you automatically exit our Site or Services and go to another site, and another entity may collect personal information or anonymous data from you. We have no control over, do not review, and are not responsible for, these outside Sites or their contents. Please, be aware that the terms of this Privacy Policy, do not apply to these outside Sites or contents, or to any collection of your personal information after you click on links to such outside Sites. Your Choices Regarding Information We offer you choices regarding the collection, use, and sharing of your personal information. We may periodically send you emails that directly promote the use of our Services. When you receive promotional communications from us, you may indicate a preference to stop receiving further communications from us and you will have the opportunity to "opt-out" by following the unsubscribe instructions provided in the email you receive or by contacting us directly. Despite your indicated email preferences, we may send you service-related communications, including notices of any updates to our Terms of Use or Privacy Policy. Children's Privacy Protecting the privacy of the very young is especially important. While our service is intended for individual who identify as 18 years or older, we are fully aware and enjoy when adults celebrate their children's birthdays through our service. We have put safegaurds in place to prevent individuals who identify as under 13 years old. Outside of a Parental Account, we do not knowingly collect personal information from children under 13. In the event that we learn that we have collected personal information from a child under age 13 without verification or parental consent, we will immediately terminate that information. If you believe that we might have any information from or about a child under 13, please contact us using the information provided in the "Contact Us" section below. If you are an individual who identifies as under 18 years old, you must ask a parent or legal guardian to use our service. Policy Update birthday.gold reserves the right to change, amend, or modify our Privacy Policy without advanced notice. We will post the amended Policy on this page and indicate at the top of the page the date the Privacy Policy was effective. Please check our Site and this page periodically for updates. Your continued use of our Site constitutes acceptance of the most current version of this Privacy Policy. Contact Us To contact us regarding anything in this Privacy Policy or how we collect or store your personal data, please get in touch with us by using the 'Contact Us' page on our Site: legal@birthday.gold

Region: EMEA (Europe, the Middle East and Africa) The UK Data Protection Act (DPA) 2018 is the amended version of the Data Protection Act that was passed in 1998. The DPA 2018 implements the GDPR with several additions and restrictions. The DPA 2018 is divided into three kinds of processing including general data processing, processing by law-enforcement agencies, and processing by intelligence services. The DPA 2018 must be read together with the UK GDPR, which is the GDPR as it was on 31st December 2020 and any applicable case law at that point.