KITA Application Privacy Policy
Last Updated: October 17th, 2023
SpoiledChild Inc. (“SPOILEDCHILD®”, “we”, “us”, or “our”) respects the privacy of your Personal Data (defined below), and as such, we make every effort to ensure that your Personal Data is protected and private.
This KITA Privacy Policy (“Privacy Policy”) describes how we use Personal Data that we collect, receive, and store about individuals in connection with the use of the KITA Application, and any other related or affiliated websites and mobile applications (the “App”), and related services, such as tracing and tracking an order of purchased items (the “Services”). Users with disabilities who wish to access this Privacy Policy in an alternative format can contact us by emailing us at: hello@spoiledchild.com; or sending us U.S. mail to: SpoiledChild Inc., 110 Greene St., Second Floor, New York, NY 10012.
YOU SHOULD CAREFULLY READ THIS PRIVACY POLICY.
By accessing, browsing, and/or otherwise using the App and/or Services, you are creating a binding contract between you and us, and you are acknowledging that you have read, understood, and agreed to be bound by this Privacy Policy, in its entirety. If you do not agree with the terms and conditions of this Privacy Policy in their entirety and/or would prefer that we not collect, use, or disclose your Personal Data as described herein, you should not use the App and/or Services, or otherwise provide us with any information.
INTRODUCTION
This Privacy Policy explains our online information practices and the choices you can make about the way your Personal Data is collected and used in connection with our App.
When we refer to “Personal Data” in this Privacy Policy, we are referring to any information that may be used, either alone or in combination with other information, to personally identify an individual, as well as the personal or material circumstances of an identified or identifiable individual. Different states, countries, and jurisdictions define Personal Data (and similar terms, such as personal information and personally identifiable information) to include different things, but Personal Data includes information, such as first and last name, email address, home or other physical address, telephone number, and other contact information. It may also include your computer or mobile device IP address, and geo-location information, if such data can be linked to a particular person.
This Privacy Policy applies only to Personal Data and other information provided by you and/or collected by us through the App. It does not apply to Personal Data and/or other information that we, or other parties, may collect through other means, such as through any business relationship between you and us. Other than where mandated by applicable law, including the GDPR and UK-GDPR (as those terms are defined below), this Privacy Policy also does not apply to information that you submit on other websites or applications, even if we communicate with you on those other websites or applications, or provide a link to those websites through our App. For example, if you login via or post something on Facebook®, LinkedIn®, Twitter®, or other social media or networking sites or applications, that information is governed by the privacy policies of those websites or applications, not by this Privacy Policy.
LEGAL BASIS
We collect Personal Data that you provide to us (e.g., during the registration, email submission, and/or other interactions with us) to fulfill your request to receive additional information or for the purpose of handling the contractual relationship that you have with SPOILEDCHILD®. We only use and store your Personal Data if we have a legal basis for doing so, including where you have given us your express consent, where we have a legitimate business interest or pursuant to a contractual relationship between you and SPOILEDCHILD®. Please be advised that users may withdraw consent at any time by using the options made available in this Privacy Policy.
END USER LICENSE AGREEMENT
This Privacy Policy forms part of, and is fully incorporated into, our End User License Agreement (“EULA”), which are available here.
SUPPLEMENTAL SECTIONS APPLICABLE TO CERTAIN JURISDICTIONS:
VISITING OUR SITES FROM OUTSIDE THE UNITED STATES; INTERNATIONAL TRANSFERS OF PERSONAL DATA
ADDITIONAL RIGHTS APPLICABLE TO RESIDENTS OF THE EUROPEAN UNION AND THE UNITED KINGDOM
PRIVACY PROVISIONS FOR CALIFORNIA RESIDENTS
PRIVACY PROVISIONS FOR NON-CALIFORNIA US RESIDENTS
ADDITIONAL RIGHTS APPLICABLE TO CANADIAN USERS
ADDITIONAL RIGHTS APPLICABLE TO AUSTRALIAN USERS
PRIVACY POLICY QUICK LINKS
HOW AND WHY WE COLLECT PERSONAL DATA
HOW AND WHY WE MAY CONTACT YOUR MOBILE DEVICE
HOW AND WHY WE DISCLOSE PERSONAL INFORMATION
HOW WE COLLECT AND USE NON-PERSONALLY IDENTIFIABLE INFORMATION
YOUR RIGHTS REGARDING YOUR INFORMATION
OUR SECURITY MEASURES
LINKS TO AND INTERACTION WITH THIRD PARTY PRODUCTS
CHILDREN’S PRIVACY
MODIFICATIONS OF THIS PRIVACY POLICY
QUESTIONS REGARDING OUR PRIVACY PRACTICES
FILING A COMPLAINT WITH THE FEDERAL TRADE COMMISSION
HOW AND WHY WE COLLECT PERSONAL DATA
Please see our Provisions for California Residents below for additional details regarding the categories of Personal Data collected, and the business purposes for such collection.
Providing Personal Data is Your Choice. However, if you choose to download the App, make use of certain Services and/or App features, you may need to provide certain Personal Data to us. If you choose not to provide mandatory Personal Data, you may still visit parts of our App but you may be unable to access certain options, programs, offers, and Services that involve our interaction with you. If you do provide us with Personal Data as described below, you agree that it will be accurate and complete, and it is your responsibility to keep it current.
The types of Personal Data you may be asked to provide, and the circumstances in which we request it, are described below. We present the information below based on the categories of information collected, but please be aware that similar specific pieces of information may apply to multiple categories. For example, your name and email address may be included within each of the “Identification and Contact Information” and “User-Provided Information” categories described below.
1) Identification and Contact Information.
a) This is information that identifies you as an individual, such as your first and last name, and information that enables us to contact you, such as an email address, mailing address, or phone number, as well as information about your device and information about landing pages and products you have browsed, and actions taken on these pages. This information is generally collected when you: (i) create an account with us; (ii) contact us using the App; (iii) provide answers to quizzes and/or surveys provided by us; (iv) access the App from certain marketing material, links and emails; (v) request to receive newsletters and other materials; (vi) submit a product review; and (viii) participate in interactive features of the App, such as image upload.
b) Below is some additional information on how we collect this information:
i) Account Edit: During your use of our App, and in order to use certain Services, you may choose, or be required, to use your Spoiled Child’s account, referred to herein as an “Account.” While using the App you may request to edit the details of your Account.
(1) Direct registration, where you input your Personal Data to complete and submit a registration form directly on our App.
(2) Registration using third party accounts, where you use a “login with…” (or similar) button that we display on our Appfor a designated third party service, referred to herein as a “Third Party Account”, such as Facebook® or Google®. Doing so will enable you to link your Account and your Third Party Account. If you choose this option, then you will be required to approve the connection as well as the types of information (which may include Personal Data) that we will obtain from your Third Party Account and the types of activities that we may perform in connection with your Third Party Account. Please note that in order to use this option, you will need to have, and may need to be signed-in to, an existing Third Party Account.
ii) Share with Friends Services: Our App may allow you to invite friends to use our App by sending them an invitation email or message. You may do so by:
(1) Using our App to send or post an invitation message via your Third Party Account; and/or
(2) Using our App to send an invitation email to your friend’s external email address (for example, a Gmail address).
(3) If you send or post an invitation message to a friend, we may collect Personal Data about the recipient, such as their email address or Third Party Account user name and ID. Your name and/or email address may also be included in their invitation or email message. If we collect Personal Data about the recipient of an invitation from you, we will only use such Personal Data for the one (1) time purpose of sending the subject invitation message, and for no other purpose.
iii) Interactive App Services: Our App may from time to time offer interactive services that allow or request you to submit information about yourself in order to receive information, products, and services from us. For example, for our quiz(s), image(s) upload or similar digital experiences, you may elect to submit, or we may ask you to provide, pictures of yourself.
c) We collect and use Identification and Contact Information:
i) for purposes of verifying your identity when you create an Account, or access certain Services and/or other features of our App;
ii) for purposes of providing you with services, or content you have used, or otherwise engaged with;
iii) for purposes of contacting you regarding your use of the Services, or your Account, which may include providing updates and/or seeking feedback on our products and Services;
iv) for purposes of sharing invitations and messages with your friends at your request;
v) for purposes of responding to your inquiries and administrative requests;
vi) subject to your right to opt out and subject to applicable law, for purposes of sending you newsletters and other marketing and promotional communications that we believe may be of interest to you;
vii) for purposes of targeting you with relevant ads on third party media companies;
viii) for purposes of providing and improving our App and associated Services; and
ix) for internal business purposes, such as analysing and managing our service offerings including, without limitation, the Services.
We may also combine the information we have gathered about you with information from other sources.
2) Photo Data.
a) You may be offered the opportunity to submit a photograph (“Photograph”) in order for us to identify skin and hair conditions and properties, for skin and body care. We may apply software and algorithms against the Photographs to detect the general structure of your face, skin, hair and scalp (“Structural Data”, together with the Photograph, the “Photo Data”) and generate data derived from your Photo Data.
b) When using your Photo Data for research and analytics purposes, it will be de-identified, anonymized, and/or aggregated as those terms are defined by applicable law (“Derived Data”) as legally permitted.
c) We only collect Photo Data if you provide it to us through your mobile device, computer or other digital transfer as part of our quizzes or other Services.
d) We use Photo Data and Derived Data to (i) diagnosis of hair or skin condition; (ii) provide prediction on the improvement of hair or skin condition, such as prediction on hair growth ; (iii) track such improvement, such as the improvement of hair growth;(iv) match our users with products relevant to them; (v) improve our software and algorithms in order to provide the most accurate Services, and/or (vi) for research, analytics, product development, general Service improvements, and other legal purposes.
e) Our legal basis for processing Photo Data provided by you to us is our legitimate business interests, specifically our ability to improve and develop our existing and future App, Services and products.
f) Unless required to retain Photo Data to comply with the law or defend our rights, we will delete Photo Data upon the earlier of: (1) the initial purpose for collecting or obtaining such Photo Data being satisfied, or (2) 5 years since of your last interaction with SPOILEDCHILD®.
3) Billing Information.
a) You may indicate through our App that you wish to repurchase or purchase products or services from Spoiled Child’s website . Such a transaction will be conducted by Spoiled Child’s website and subject to Spoiled Child’s terms of use and privacy policy. However, you may choose to edit or update your information to enable the transaction by using our App. Such information could include a credit card number and related account and billing information, invoice related information, and other data required to process the order. Please note that credit card information is considered “Sensitive Data” for purposes of this Privacy Policy.
b) We collect and use this type of information for the purpose of enabling Spoiled Child’s website to process required payments.
c) Our legal basis for processing this information is your contractual agreement to pay for Spoiled Child’s products.
d) We will retain this information for as long as necessary to complete your purchase and/or to process any return, unless you have opted to save your billing information. If you do so, we will retain the information for as long as you maintain your Account.
4) User-Provided Information.
a) Some parts of our App may enable you to build a public profile in connection with your Account, referred to herein as a “Public Profile.” Your Public Profile may include your name and other information that you choose to include in your Public Profile, such as your gender and a profile picture. Our App may also include interactive features, such as pages that allow users to submit product reviews or upload content. If you participate in any of these interactive areas, we will collect whatever Personal Data you choose to include.
b) We collect and use this information for the purpose of allowing our customers and fans to engage with us and others through the App.
c) Our legal basis for processing this information is our legitimate business interests, specifically our ability to operate an interactive platform that allows our customers and others to learn more about our products and for us to learn more about our customers’ needs and preferences with respect to our existing or future product lines.
d) We will retain this information for as long as we have a business need to do so, unless a longer period is required by law. Note that while you can, in some circumstances, request removal of this type of information, in some cases we may not be able to remove Personal Data that you voluntarily disclose due to technical limitations. We will inform you if we cannot remove information as requested.
e) A Special Note About User-Provided Information. If you create a Public Profile or use other interactive features of the App, or engage with us via any social media websites, the information (including Personal Data) that you submit may be seen and used by others for as long as the applicable web pages remain active, and may be visible longer if pages are cached (depending on your privacy settings associated with your accounts with the applicable social media websites). This information may be used by other end-users of the App or the public to send you unsolicited messages. We provided notices and tools on our App to inform you of which content may be publicly available. However, we are not responsible for the Personal Data that you choose to post in this manner, and we encourage you to think carefully before posting anything in any public area of our App, and only to post information that you are sure you want to be accessible to everyone. Further, the social media websites operate independently from us, and we are not responsible for such social media websites’ interfaces or privacy or security practices. We encourage you to review the privacy policies and settings of the social media websites with which you interact to help you understand those social media websites’ privacy practices. If you have questions about the security and privacy settings of any social media websites that you use, please refer to their applicable privacy notices or policies.
5) Location Information.
a) We may provide certain location-based services, or “Location Services”, through our App that are dependent on data related to the geographic location, or the Location Data, of your mobile device and/or other device through which you are accessing our App. You should be able to use the settings on your mobile device or other device to turn off location-sharing features.
b) We collect this information for purposes of offering the Location Services on our App such as for order delivery tracking, so that we can provide the applicable location-based content and any location-based Services to you.
c) Our legal basis for processing this information is our legitimate business interests, specifically our ability to provide Services that are applicable in the area in which our users are accessing and using the App.
d) We will retain this information for only as long as the location services are active on your device.
6) Log Files.
a) We may (directly or through third parties) make use of log files. The information inside the log files includes the type of device and device ID, country, Internet service provider (ISP), date/time stamp, referring/exit pages, clicked pages, and any other information that your app may send to us.
b) We may (directly or through third parties) use such information to analyze trends, administer our App and/or Services, track users’ movement around our App, and gather information.
7) Analytics Services.
a) Our App may use the tools described below (the “Analytics Services”) to collect information about the use of our App, such as how often users visit our App, what pages they visit when they do so, and what other sites they used prior to visiting our App. We use the information we collect from the Analytics Services to maintain and improve our App and our products and services.
b) The Analytics Services we use include, but are not limited to:
i) Google® Analytics. Our App may use a tool called “Google Analytics®.” We may combine the information collected through the use of Google Analytics® with Personal Data. Google’s® ability to use and disclose information collected by Google Analytics® about your visits to and use of our App is restricted by the Google Analytics® Terms of Service, available here, and the Google® Privacy Policy, available here. You may learn more about how Google® collects and processes data specifically in connection with Google Analytics® here. You may prevent your data from being used by Google Analytics® by downloading and installing the Google® Analytics Opt-out Browser Add-on, available at here.
ii) Amplitude. Our App may use a tool called Amplitude. We may combine the information collected through the use of Amplitude with Personal Data. Amplitud’s ability to use and disclose information collected by Amplitude about your visits to and use of our App is restricted by the Amplitude Terms of Service, available here, and the Amplitude Privacy Notice, available here.
iii) Our App may use an analytics tool called “Hotjar®.” Hotjar’s® use of information collected through its analytics tools is set forth in the Hotjar® privacy policy available here. You may also opt-out of Hotjar® analytics tracking by visiting the Hotjar® Do Not Track Page, available here.
iv) Our App may use a web analysis tool called Klaviyo®. Klaviyo’s® use of information and privacy policy can be found here.
v) Our App may use a tool called “BigQuery®.” BigQuery® is owned and operated by Google®. We may combine the information collected through use of BigQuery® with Personal Data. Google’s® ability to use and disclose information collected by BigQuery® about your visits to and use of our App is restricted by the Google® Privacy Policy, available here. You may learn more about how Google® collects and processes data specifically in connection with BigQuery® here.
vi) Our App may use an analytics tool called “AppsFlyer.” AppsFlyer use of information collected through its analytics tools is set forth in the AppsFlyer privacy policy available here.
BigQuery®, Google® and Google Analytics® are registered trademarks of Google, Inc. (“Google”). Hotjar® is a registered trademark of Hotjar Ltd. (“Hotjar”). Klaviyo® is a registered trademark of Klaviyo Inc. (“Klaviyo”). Please be advised that SPOILEDCHILD® is not in any way affiliated with Google, Hotjar or Klaviyo, nor are the Services endorsed, administered or sponsored by any of the foregoing entities.
HOW AND WHY WE MAY CONTACT YOUR MOBILE DEVICE
At times, we may want to contact you via your mobile device regarding your use of the Services. Please review our full Privacy Policy to learn how we protect your privacy and use your Personal Data.
1) EU/UK Residents.
For EU and UK residents, we will only contact you via your mobile device (including artificial voice calls, pre-recorded messages, calls, and/or SMS text messages delivered via automated technology, to the telephone number(s) that you provided) regarding your use of the Services and/or for marketing purposes (including cart reminders) where you provide your consent as required under the GDPR and UK-GDPR, respectively, or we have another valid legal basis under the GDPR and UK-GDPR, respectively, to do so.
2) Canadian Residents.
For Canadian residents, we will only contact you via your mobile device via SMS text messages to the telephone number(s) that you provided regarding your use of the Services and/or for marketing purposes (including cart reminders) where you provide your consent as required under CASL, or there is an exemption under CASL enabling us to do so.
3) U.S. Residents.
For US residents, where you provide “prior express consent” within the meaning of the Telephone Consumer Protection Act (47 USC § 227), and its implementing regulations adopted by the Federal Communications Commission (47 CFR § 64.1200), as amended from time-to-time (“TCPA”), you consent to receive telephone calls, including artificial voice calls, pre-recorded messages, calls, and/or SMS text messages delivered via automated technology, to the telephone number(s) that you provided.
Please note that you are not required to provide this consent in order to obtain access to the Services, and your consent simply allows SPOILEDCHILD® to contact you via these means.
The frequency of SMS text messages that you receive from us may vary. Standard message and data rates may apply. Where you provide your consent as set forth above, you represent that you are the line subscriber and primary user of the telephone number that you provided (“Active Telephone Number”) and, as such, have the authority to agree to receive SMS text messages on the Active Telephone Number. Please be advised that by agreeing to this Privacy Policy, you are obligated to immediately inform us if and when your Active Telephone Number changes. Without limiting the foregoing, if you: (a) have your Active Telephone Number reassigned to another person or entity; (b) give up your Active Telephone Number so that it is no longer used by you; (c) port your Active Telephone Number to a landline or vice versa; or (d) otherwise stop using your Active Telephone Number for any reason (collectively “Phone Number Change”), you agree that you shall promptly notify SPOILEDCHILD® of the Phone Number Change via e-mail at: hello@spoiledchild.com, or by using one of the methods set forth in the “Contact Us” section below.
Our legal basis for processing this Personal Data is our legitimate business interests, specifically our ability to provide you with the requested Services, to offer you our products and services, and to promote our Services and the content of our App.
We will retain this Personal Data for as long as we continue to have a business purpose for doing so (which will be at least as long as you continue to maintain an Account), unless a longer period is required by law. Such business purposes may include legal, taxation, accounting, risk management, and other purposes.
To stop receiving text messages from SPOILEDCHILD®, please reply “STOP” to the text message that you received from us. Please note this preference will only apply to the phone number that received the text message. Please reply “HELP” to receive help information.
Please promptly notify SPOILEDCHILD® of any change to the mobile telephone number provided to us via e-mail at: hello@spoiledchild.com, or by using one of the methods set forth in the “Contact Us” section below.
HOW AND WHY WE DISCLOSE PERSONAL INFORMATION
Please see our Provisions for California Residents below for additional details regarding how we disclose Personal Data that we collect.
We may disclose Personal Data to third parties in the following circumstances:
1. Sharing Personal Data with Affiliates.
We may transfer your Personal Data to other companies within our group, including our subsidiaries, affiliates, and/or related companies, for the purpose of storing, using or processing such information on our behalf. We require that these parties agree to process such information in compliance with this Privacy Policy.
2. Sharing Personal Data with Third Parties.
2.1. We may disclose your Personal Data to our third party service providers and partners, but only to assist us with our business operations and to provide our Services to you and other users. For example, our service providers may deliver products you have ordered, or handle our data management, email distribution and analytics. We use commercially reasonable efforts to only engage or interact with third party service providers and partners that post a privacy policy governing their processing of Personal Data.
2.2. We may disclose your Personal Data to our third party media partners in an anonymous, encrypted, or hashed format (primarily SHA256 encryption) or in standard format that is hashed or encrypted by the third party upon receipt in order to track and optimize performance of our marketing efforts (including tracking across multiple devices) and to provide you with relevant content across the web, such as banner ads including products you may have shown interest in, or sales offers.
2.3. We may disclose your Personal Data to our third party analytics service providers in order to help to improve the functionality and features of the App and Services.
2.4. We may disclose your Personal Data to our Email Service Provider(s) that help us to send you our marketing and/or transactional text messages.
2.5. We may disclose your Personal Data to our SMS Service Provider(s) that help us to send you our marketing and/or transactional text messages.
2.6. We may disclose your Personal Data or any information you submitted via our App if we have a good faith belief that disclosure of such information is required, reasonably necessary or helpful to: (a) comply with any applicable law, regulation, legal process, subpoena, court order, or governmental request; (b) enforce this Privacy Policy or our Terms, including investigations of potential violations thereof; (c) detect, prevent, or otherwise address fraud or security issues; and (d) protect against harm to our rights, property or safety, and with respect to our users, yourself or the public.
2.7. We may disclose your Personal Data or any information you submitted via our App where we are the subject of bankruptcy proceedings, in connection with, during negotiations of, or as a part of the closing of, any merger, sale of company assets, or acquisition of all or a portion of our business to another company in which Personal Data about our App users is among the assets transferred; provided, however, that if we are involved in a bankruptcy proceeding, merger, acquisition or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on the App of any change in ownership or uses of your Personal Data, as well as any choices that you may have regarding your Personal Data.
2.8. We will only use, disclose, and otherwise process Derived Data where permitted by law.
2.9. We will store, transmit, and protect your Photo Data using a reasonable standard of care at least as protective as used to protect other confidential and sensitive information from disclosure. We disclose your Photo Data (i) to our affiliates, and/or related companies, for the purpose of storing, using or processing such Photo Data on our behalf; (ii) to our service providers whom we prohibit from using the Photo Data for any purpose other than performing services for us; (iii) in connection with any proposed or actual type of acquisition, business combination or transfer of all or any portion of our assets; and (iv) to comply with the law or defend our rights.
2.10. We will not disclose your information to third parties except as otherwise specified under this Privacy Policy, unless you have given us your separate, express, permission to do so.
HOW WE COLLECT AND USE NON-PERSONALLY IDENTIFIABLE INFORMATION
Please see our Provisions for California Residents below for additional details regarding how we collect and disclose your non-personally identifiable information.
1. Non-personally identifiable information refers to information that is not and cannot be used to identify a specific individual. While this information may define how you fit into a particular group of people, it is not unique to you, and it cannot be used (without being combined with other information) to specifically identify you. Some jurisdictions may consider some of the following categories of information to be personally identifiable information, in which case, we will collect and use such information as personally identifiable information.
2. “Anonymous Information” refers to information that does not enable identification of an individual user, such as aggregated or demographic information about users of our App. We may use Anonymous Information or disclose it to third party service providers in order to improve our Appand enhance your experience with our App. We may also disclose Anonymous Information (with or without compensation) to third parties, including advertisers and partners.
YOUR RIGHTS REGARDING YOUR INFORMATION
Please see our Provisions for California Residents below for additional details regarding how California State residents can delete and/or access their Personal Data.
1) Opting Out.
You may choose not to receive future promotional, advertising, or other App-related emails from us by sending us an email to: hello@spoiledchild.com, or selecting an unsubscribe link at the bottom of each email that we send. Please note that even if you opt out of receiving the foregoing emails, we may still send you a response to any “Contact Us” request as well as administrative emails (for example, in connection with a password reset request) that are necessary to facilitate your use of our Appand notifications regarding your orders.
2) Correcting and Updating Information.
If you are a registered user of our App, you can access and edit your Account Information online by clicking the “My Account” button on the App. You may also have any Personal Data you have provided revised by sending us an email to privacy@spoiledchild.com.
3) Removing Information.
a) As noted above, we have standard retention practices with respect to the Personal Data we collect. If you would like to request any earlier removal of your Personal Data, you can email us at hello@spoiledchild.com.
b) Please note that we may not be able to completely remove Personal Data from our systems in certain circumstances. This will be true if the data is not in searchable format, if it is retained in backup systems or cached or archived pages, if we need it in order to prevent fraud or future abuse, or if we are required by law to keep it.
c) Any deletion request will not impact our ownership rights or continued processing of Derived Data to the extent permitted by law.
HOSTING OF OUR APP
We do not ourselves host any of our App– all hosting is done by third party service providers that we engage. This means that data you provide us or that we collect from you (including any Personal Data) is hosted with such third party service providers on servers that they own or control. Regardless of where such third party service providers are located (and some are located in the US), their servers may be located anywhere in the world (including the US). Your data may even be replicated across multiple servers located in multiple countries. By using any of our App, you are consenting to your data being transferred to various third party service providers, possibly around the world (including the US).
OUR SECURITY MEASURES
We endeavor to safeguard and protect our users’ Personal Data. When users make Personal Data available to us, their Personal Data is protected both online and offline (to the extent that we maintain any Personal Data offline). Where our registration/application process prompts users to enter Sensitive Data and when we store and transmit such Sensitive Data, that Personal Data is encrypted with advanced TLS (Transport Layer Security).
Access to your Personal Data is strictly limited, and we take reasonable measures to ensure that your Personal Data is not accessible to unauthorized parties. All our users’ Personal Data is restricted in our offices, as well as the offices of our third-party service providers. Only employees or third-party agents who need user Personal Data to perform a specific job are granted access to user Personal Data. Our employees are dedicated to ensuring the security and privacy of all users’ Personal Data. Employees not adhering to our firm policies are subject to disciplinary action. The servers that we store user Personal Data on are kept in a secure physical environment. We also have security measures in place to protect the loss, misuse and alteration of Personal Data under our control.
Please be advised, however, that while we take every reasonable precaution available to protect your data, no storage facility, technology, software, security protocols or data transmission over the Internet or via wireless networks can be guaranteed to be 100% secure. Computer hackers that circumvent our security measures may gain access to certain portions of your Personal Data, and technological bugs, errors and glitches may cause inadvertent disclosures of your Personal Data, and any attempt to breach the security of the network, our servers, databases or other hardware or software may constitute a crime punishable by law. For the reasons mentioned above, we cannot warrant that your Personal Data will be absolutely secure. Any transmission of data at or through the Sites, other Site Offerings or otherwise via the Internet or wireless networks, is done at your own risk.
In compliance with applicable laws, we shall notify you and any applicable regulatory agencies in the event that we learn of an information security breach with respect to your Personal Data. You will be notified via e-mail in the event of such a breach. Please be advised that notice may be delayed in order to address the needs of law enforcement, confirm and determine the scope of network damage, and to engage in remedial measures.
LINKS TO AND INTERACTION WITH THIRD PARTY PRODUCTS
Our App may enable you to interact with or contain links to your Third Party Account and other third party websites that are not owned or controlled by us, referred to herein as “Third Party Services.” We are not responsible for the privacy practices or the content of such Third Party Services. Please be aware that Third Party Services may collect Personal Data from you. Accordingly, we encourage you to read the terms and conditions and privacy policy of any Third Party Services that you choose to use or interact with.
CHILDREN’S PRIVACY
Please see our Provisions for California Residents below for additional details regarding our practices related to the collection and use of the Personal Data of California State residents who are under sixteen (16) years of age.
Our Sites are not structured to attract people under eighteen (18) years of age. Further, we do not intend to collect Personal Data from anyone we know to be under eighteen (18) years of age; provided, however, that if you are sixteen (16) years of age or older, but younger than eighteen (18) years of age, you can submit information to the App through and with the permission of a parent or legal guardian, but only after that parent or legal guardian has reviewed and agreed to the terms of this Privacy Policy in their entirety. If we learn that we have collected Personal Data from a person under eighteen (18) years of age (other than as expressly permitted in the relevant jurisdiction), we will delete that information as quickly as possible. If you believe that we might have any such information, please contact us at hello@spoiledchild.com.
MODIFICATIONS OF THIS PRIVACY POLICY
SPOILEDCHILD® reserves the right to change or update this Privacy Policy at any time by posting a notice on the App that we are changing our Privacy Policy. If the manner in which we use Personal Data changes, SPOILEDCHILD® will notify users by: (a) sending the modified policy to our users via email; and/or (b) by any other reasonable means acceptable under applicable law. You will have a choice as to whether or not we use your information in this different manner, and we will only use your information in this different manner where you affirmatively consent to such use.
QUESTIONS REGARDING OUR PRIVACY PRACTICES
If you have any comments or questions regarding our Privacy Policy, or how we may be storing and/or using your Personal Data, please contact us via e-mail at: privacy@spoiledchild.com, or by mail at: IM Pro Makeup NY LP, 110 Greene St., Second Floor, New York, NY USA 10012.
FILING A COMPLAINT WITH THE FEDERAL TRADE COMMISSION
To file a complaint regarding our privacy practices, please Click Here.
VISITING OUR SITES FROM OUTSIDE THE UNITED STATES; INTERNATIONAL TRANSFERS OF PERSONAL DATA
If you are using our App from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States, as well as any other location where Amazon Web Services (“AWS”) servers are located or the servers of other third party hosting services that we utilize are located (collectively, “Server Locations”). Except as expressly described in this Privacy Policy, we make no representation that the practices we describe are compliant with the laws of other jurisdictions, including laws that apply to the collection, use, disclosure, and security of Personal Data.
If you are from Australia, the EU, UK or are otherwise located in the European Economic Area (EEA), we are required to give you information about the transfer of your information outside Australia, the EEA or UK, respectively. If this applies to you, whenever you voluntarily give us your Personal Data, you should understand that your information will be sent by you to the United States and/or the applicable Server Locations. These jurisdictions may not provide the same framework for the protection of Personal Data as Australia, the EEA and UK. By sending us your Personal Data, you are expressly consenting to the transfer of information from your location within Australia, the EEA and UK to our servers in the United States and/or the applicable Server Locations.
In addition, if we send any of your Personal Data to servers located within the EEA and/or UK, if we then transfer your Personal Data from those servers to areas located outside of the EEA and/or UK, we will adopt adequate measures as required by the GDPR and UK-GDPR, respectively (for example, the adoption of standard, approved contractual clauses between us and the recipient).
ADDITIONAL RIGHTS APPLICABLE TO RESIDENTS OF THE EUROPEAN UNION AND THE UNITED KINGDOM
For our users who are residents of the European Union (“EU”) or the United Kingdom (“UK”), this Privacy Policy is intended to comply with the EU’s General Data Protection Regulation (“GDPR”) and the United Kingdom General Data Protection Regulation (“UK-GDPR”). If you are an EU resident or a UK resident, you have the following rights, subject to certain limitations and exceptions imposed by the GDPR and UK-GDPR, respectively:
1. Right to Access – this is the right to request copies, in a machine readable format, of those portions of your Personal Data that we have collected.
2. Right to Correct – this is the right to have Personal Data in our possession or control corrected if it is accurate or incomplete.
3. Right to Erasure – this is the right to ask us to delete or remove your Personal Data from our systems.
4. Right to Restrict Use – this is your right to block us from using, or to limit the ways we can use, your Personal Data.
5. Right to Data Portability – this is your right to request that certain of your Personal Data be transferred to a different provider.
6. Right to Object – this is your right to object to our use of your Personal Data, including when we use it for our legitimate interests, including for marketing purposes.
7. Questions or Comments Regarding Your Privacy Rights.
7.1. If you have questions relating to the above rights, you can contact us at: hello@spoiledchild.com.
7.2. If you are a resident of the EU and are not satisfied with how we have responded to any request that you submit to us regarding the above rights, you may be able to raise your complaint with the Data Protection Authority in your jurisdiction. You can find your national Data Protection Authority here.
7.3. For purposes of the GDPR and UK-GDPR, if you are located in the EU or UK, the Data Controller of the information you provide is SpoiledChild Inc., 110 Greene St., Second Floor, New York, NY USA 10012. Our Data Protection Officer may be contacted at privacy@spoiledchild.com.
7.4. If you are located in the EU, for purposes of the GDPR, you may contact Achieved Compliance Advocacy, our appointed representative in the EU, at the following addresses: spoiledchild@gdprrepresentative.eu; or Achieved Compliance Advocacy, Ltd. C/o Renata Kloss, Singel 250, 1016 AB Amsterdam, Netherlands.
7.5. If you are located in the UK, for purposes of the UK-GDPR, you may contact Achieved Compliance Advocacy, our appointed representative in the UK at spoiledchild@privacyrep.co.uk; or Achieved Compliance Advocacy, Ltd. C/o Robert Cain, 40 Oxford Road, High Wycombe, Buckinghamshire, UK HP11 2EE.
7.6. UK residents may also send complaints regarding how we responded to the above requests/how we use your data to the Information Commissioner’s Office (“ICO”) at: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. Alternatively, the ICO helpline number is: 0303 123 1113 and website is located at: https://www.ico.org.uk.
PRIVACY PROVISIONS FOR CALIFORNIA RESIDENTS
These Privacy Provisions for California Residents (“CA Privacy Provisions”) supplement the information contained in the Privacy Policy set forth above. These CA Privacy Provisions apply solely to residents of the State of California (“User(s)”). We adopt these CA Privacy Provisions in compliance with the California Consumer Privacy Act of 2018 (as amended by the California Privacy Rights Act of 2020) (the “CCPA”). Any terms defined in the CCPA (such as “personal information”) have the same meaning when used in these CA Privacy Provisions.
1. Shine the Light.
California Civil Code Section 1798.83 permits our customers who are California State residents to request certain information regarding our disclosure of Personal Data to third parties for their direct marketing purposes. We may, in certain limited instances, disclose your Personal Data to third parties who perform administrative functions on our behalf. California State residents may request the following information regarding our disclosure of your Personal Data to third parties:
a. How your Personal Data was disclosed to third parties;
b. A list of certain categories of Personal Data that we have disclosed to certain third parties during the immediately preceding calendar year; and
c. A list of certain categories of third parties that received Personal Data from us during that calendar year.
To make such a request, please send an email to privacy@spoiledchild.com. Please note that we are only required to respond to one request per customer each year.
2. Privacy Rights for California Minors in the Digital World.
In addition, if you are a California State resident under eighteen (18) years of age and a registered user, California Business and Professions Code Section 22581 permits you to remove content or Personal Data that you have publicly posted on the App. If you wish to remove such content or Personal Data and you specify which content or Personal Data you wish to be removed, we will do so in accordance with applicable law. Please be aware that after removal, you will not be able to restore removed content. In addition, such removal does not ensure complete or comprehensive removal of the content or Personal Data you have posted and, as such, there may be circumstances in which the law does not require us to enable removal of content.
3. Categories of Information We Collect.
We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular User or device (“personal information”). In particular, we have collected the following categories of personal information from Users within the last twelve (12) months:
A. Identifiers
a. Examples: A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, telephone number, or other similar identifiers.
b. Collected: YES
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).
a. Examples: A name, signature, Social Security number, physical characteristics or description, postal address, telephone number, passport number, driver's license or State identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.
b. Collected: YES
C. Protected classification characteristics under California or federal law.
a. Examples: Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military
b. Collected: YES
D. Commercial information.
a. Examples: Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
b. Collected: YES
E. Internet or other similar network activity.
a. Examples: Browsing history, search history, information on a User's interaction with a website, application or advertisement.
b. Collected: YES
F. Sensory data.
a. Examples: Audio, electronic, visual, thermal, olfactory, or similar information.
b. Collected: YES
G. Sensitive Personal Information
a. Examples: Account log-in information, credit card numbers, information that may reveal a consumer’s racial, ethnic origin or health condition.
b. Collected: YES
We obtain the categories of personal information listed above from the following categories of sources (with the specific categories of personal information indicated in parenthesis):
Directly from our Users. For example, from online registration forms, quizzes or photos that our Users submit to us in connection with the products and/or services that we offer by and through the Sites (Category A, B, C,D, E, F and L)
Indirectly from our Users. For example, through information we collect from our Users in the course of providing our Services to them (Category A, B, C, D, E and F)
Directly and indirectly from activity on the App. This includes the type of browser that you use (e.g., Safari, Chrome, Internet Explorer), your IP address, the type of operating system that you use (e.g., Android or iOS) and the domain name of your Internet Service Provider. In addition, we obtain certain App-related usage details and analytics as same are collected automatically by us and our third party partners (Category E)
When our Users interact with us on our social media accounts, including commenting on and/or liking our posts (Category E)
From third-parties that interact with us in connection with the products and/or services that we offer to our Users. For example, third party entities that assist us in sending direct and electronic mail, removing duplicate information from User lists, analyzing data and providing marketing analysis (Category A, B, C, D and E)
4. Use of Personal Information
We may use or disclose each of the categories of personal information set forth above for one or more of the following business or commercial purposes (with the specific categories of personal information indicated in parenthesis):
· To fulfill or meet the reason for which the information is provided. For example, if you provide us with personal information in connection with your purchase of products and/or services, we will use that information to process your order (Category A, B, C, D and F).
· To improve and better customize the products and services offered to you by us (Category B, C and L).
· To provide you with information, products or services that you request from us (Category A, B, C, D and F).
· To create, maintain, customize and secure your account with us (Category A, B, C, D, E and F)
· To provide you with e-mail, direct mail and telemarketing messages concerning certain SPOILEDCHILD® products and/or services, as well as third-party products and/or services, that we believe may be of interest to you (Category A, B, C, D, E and F)
· To deliver relevant Sites-related content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you (Category A, B, C, D and E).
· To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including the App’s respective EULA (Category A, B, C, D, E and F).
· To improve the App and better present their respective contents to you (Category A, B, C, D and F).
· For customer service purposes and to respond to inquiries from you (Category A, B, C, D and E).
· For testing, research, analysis, product and services development (Category A, B, C, D, E, F and L).
· As necessary or appropriate to protect our rights, property or safety, and that of our clients or others (Category A, B, C, D, E and F).
· To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations (Category A, B, C, D, E and F).
· As described to you when collecting your personal information or as otherwise set forth in the CCPA (Category A, B, C, D, E and F).
· To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation or similar proceeding, in which personal information held by us is among the assets transferred (Category A, B, C, D, E and F).
We collect or use your sensitive personal information as necessary to perform the services or as otherwise permitted by the CCPA.
We will not collect additional categories of personal information or use the personal information that we collected for materially different, unrelated or incompatible purposes without providing you with notice.
5. Disclosure of Personal Information
We disclose each of the categories of personal information set forth above for the business and commercial purposes described in the Use of Personal Information section.
In the preceding twelve (12) months, we have disclosed the following categories of personal information for the business or commercial purposes set forth in the Use of Personal Information section:
Category A
Identifiers.
Category B
California Customer Records personal information categories.
Category C
Protected classification characteristics under California or federal law.
Category D
Commercial Information.
Category E
Internet or other similar network activity.
Category F
Sensory Data.
Category L
information that may reveal a consumer’s racial, ethnic origin or health condition
We disclose your personal information for a business or commercial purpose to the following categories of third parties (with the specific categories of personal information indicated in parenthesis):
· Our affiliates (Category A, B, C, D, E, F and L).
· Service providers (Category A, B, C, D, E and F).
· Third parties who provide certain of the products and/or services featured on the App (Category A, B, C, D, E and F).
· Third parties to whom you authorize us to disclose your personal information in connection with the products and/or services that we provide to you (Category A, B, C, D, E and F).
6. Selling and Sharing of Personal Information.
We work with other companies and businesses to deliver advertising to you on other sites and services. In working with other companies and businesses, we may disclose personal information in a way that is “selling” or “sharing” personal information as defined under the CCPA.
In the preceding 12 months, we have sold or shared the following category of personal information with third party analytics providers, advertising partners, and ad networks for analytics and advertising purposes.
Category A Identifiers
We do not sell or share any of your sensitive personal information, and do not sell or share the personal information of consumers under 16 years of age.
How Long We Keep Your Personal Information
We generally keep your personal information for as long as necessary to provide our products and services. When deciding how long we need information, we consider the following factors:
· how long the information is needed to provide our products and services;
· how long the information is needed to comply with legal or regulatory obligations or to resolve disputes or defend against legal claims;
· whether the information is needed for other legitimate purposes such as to prevent harm to us or others, including our rights, property, or products; to enforce our terms and policies, or to promote security and integrity.
7. Your Rights and Choices
The CCPA provides Users (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.
Access to Specific Information and Data Portability Rights
You have the right to request that we disclose certain information to you about our collection and use of your personal information. Once we receive and confirm your verifiable User request, we will disclose to you:
· The categories of personal information we collected about you.
· The categories of sources for the personal information we collected about you.
· Our business or commercial purpose for collecting or selling that personal information.
· The categories of third parties with whom we have shared that personal information.
· The specific pieces of personal information we collected about you (also called a data portability request).
· If we sold or disclosed your personal information for a business purpose, two separate lists disclosing:
sales, identifying the personal information categories that each category of recipient purchased; and
disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained.
Deletion Request Rights
You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable User request, we will delete (and direct our service providers to delete) your personal information from our (their) records, unless an exception applies; provided, however, that in some cases, strictly for regulatory compliance purposes and to better evidence/honor opt-out/unsubscribe requests (and for no other purposes), we may retain certain items of your personal information on a de-identified and aggregated basis in such a manner that the data no longer identifies you.
We may deny your deletion request if retaining the information is necessary for us or our service providers to:
· Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our obligations in connection with our contract with you.
· protect against malicious, deceptive, fraudulent or illegal activity, or prosecute those responsible for such activities.
· Debug products to identify and repair errors that impair existing intended functionality.
· Exercise free speech rights, ensure the right of another User to exercise her/his free speech rights or exercise another right provided for by law.
· Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.).
· Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, but only if you previously provided informed consent.
· Enable solely internal uses that are reasonably aligned with User expectations based on your relationship with us.
· Comply with a legal obligation.
· Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
Right to Correct.
You have a right to request that we correct inaccurate personal information we maintain about you. We will take into account the nature of the personal information and the purposes for which we process it. We may require documentation from you in order to process your request, including your name, email address, phone number, and request details.
Right to limit use and disclosure of sensitive personal information.
You have the right to request that we limit our use and disclosure of sensitive personal information we maintain about you only as necessary to perform the services or provide the goods reasonably expected, or as otherwise permitted by the CCPA.
Right to Opt Out of Sale or Sharing.
You have a right to direct us not to “sell” or “share” your personal information (as those terms are defined under the CCPA). To exercise this right, please click on the following link: Do Not Sell or Share My Personal Information.
Exercising Access, Data Portability, Deletion, and Correction Rights.
To exercise your access, data portability, deletion, and/or correction rights described above, please submit a verifiable User request to us by either:
2) Emailing us at: hello@spoiledchild.com; or
3) Sending us U.S. Mail to: SpoiledChild Inc., 110 Greene St., Second Floor, New York, NY 10012.
Only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable User request related to your personal information.
You may only make a verifiable User request for access or data portability twice within a 12-month period. The verifiable User request must:
· Provide sufficient information that allows us to reasonably verify that you are: (1) the person about whom we collected personal information; or (2) an authorized representative. If you use an authorized agent to submit a consumer request, the authorized agent must provide documentation or other proof indicating that they are authorized to act on your behalf. For requests to correct, access or delete, we may require you to verify your identity directly with us and directly confirm with us that you provided the authorized agent permission to submit the request.
· Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm that the personal information relates to you. Making a verifiable User request does not require you to create an account with us. We will only use personal information provided in a verifiable User request to verify the requestor's identity or authority to make the request.
Response Timing and Format
We endeavor to respond to all verifiable User requests within forty-five (45) days of the receipt thereof. If we require more time (up to ninety (90) days), we will inform you of the reason and extension period in writing. We will deliver our written response by mail or electronically, at your option. Any disclosures we provide will only cover the twelve (12) month period preceding the receipt of your verifiable request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable User request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
Non-Discrimination
We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:
· Deny you goods or services;
· Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties;
· Provide you a different level or quality of goods or services; and/or
· Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
Changes to these Privacy Provisions
We reserve the right to amend these Privacy Provisions in our discretion and at any time. When we make changes to these Privacy Provisions, we will notify you by email or through a notice on the App’s respective homepages.
Contact Information
If you have any questions or comments about these Privacy Provisions, our Privacy Policy, the ways in which we collect and use your personal information, your choices and rights regarding such use, or wish to exercise your rights under California State law, please do not hesitate to contact us by either:
Emailing us at: hello@spoiledchild.com; or
Sending us U.S. Mail to: SpoiledChild Inc., 110 Greene St., Second Floor, New York, NY 10012.
PRIVACY PROVISIONS FOR NON-CALIFORNIA US RESIDENTS
These privacy provisions for residents of the United States (“US Privacy Provisions”) supplement the information contained in the Privacy Policy set forth above. These Privacy Provisions describe how to exercise your rights under the Colorado Privacy Act, the Connecticut Act Concerning Personal Data Privacy and Online Monitoring, the Utah Consumer Privacy Act, and the Virginia Consumer Data Protection Act.
Your Rights and Choices
Depending on where you live and subject to certain exceptions, you may have some or all of the following rights:
Access to Specific Information and Data Portability Rights
You may have the right to request that we confirm whether or not we have or currently are processing your personal data, and you may have the right to request a copy of your personal data that we have collected from you.
Deletion Request Rights
You may have the right to request that we delete any of your personal data that we collected from or about you, subject to certain exceptions. In some cases, strictly for regulatory compliance purposes and to better evidence/honor opt-out/unsubscribe requests (and for no other purposes), we may retain certain items of your personal data on a de-identified and aggregated basis in such a manner that the data no longer identifies you.
Right to Correct.
You may have a right to request that we correct inaccurate personal data we maintain about you. We will take into account the nature of the personal data and the purposes for which we process it. We may require documentation from you in order to process your request, including your name, email address, phone number, and request details.
Exercising Access, Data Portability, Deletion, and Correction Rights
To exercise your access, data portability, deletion, and/or correction rights described above, please submit a verifiable User request to us by either:
Emailing us at: hello@spoiledchild.com; or
Sending us U.S. Mail to: SpoiledChild Inc., 110 Greene St., Second Floor, New York, NY 10012.
We cannot respond to your request or provide you with personal data if we cannot verify your identity or authority to make the request and confirm that the personal data relates to you. Making a verifiable User request does not require you to create an account with us. We will only use personal data provided in a verifiable User request to verify the requestor's identity or authority to make the request.
Response Timing and Format
We endeavor to respond to all verifiable User requests within forty-five (45) days of the receipt thereof. If we require more time, we will inform you of the reason and extension period in writing. We will deliver our written response by mail or electronically, at your option. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal data that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable User request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
Changes to these Privacy Provisions
We reserve the right to amend these US Privacy Provisions in our discretion and at any time. When we make changes to these US Privacy Provisions, we will notify you by email or through a notice on the Sites’ respective homepages.
Contact Information
If you have any questions or comments about these Virginia Privacy Provisions, our Privacy Policy, the ways in which we collect and use your personal data, your choices and rights regarding such use, or wish to exercise your rights under Virginia State law, please do not hesitate to contact us by either:
Emailing us at: hello@spoiledchild.com; or
Sending us U.S. Mail to: SpoiledChild Inc., 110 Greene St., Second Floor, New York, NY 10012.
ADDITIONAL RIGHTS APPLICABLE TO CANADIAN USERS
We are committed to providing transparency to outside parties (which we may electronically communicate with) with respect to our compliance practices associated with Canada’s Anti-Spam Legislation, and its implementing rules and regulations (“CASL”). The types of commercial electronic messages (“CEM”) that we may send from time to time may include: (a) email and/or text messages sent to our current or potential end-users; (b) messages sent to our users’ social media profiles; and (c) CEM sent in connection with your use of the Services and/or SPOILEDCHILD® products and/or services that we think might be of interest to you.
If you have received a CEM from us, it is because either: (i) you have previously provided your express consent, as required by CASL; (ii) we have your implied consent, strictly as permitted under CASL; or (iii) the type of CEM sent is exempt under CASL. Without limiting the foregoing, a CEM sent by us would be exempt if the CEM or the relationship between you and SPOILEDCHILD® includes any of the following: (A) you have a personal relationship or a family relationship with the SPOILEDCHILD® employee who contacted you; (B) the CEM was sent by SPOILEDCHILD® to you in order to respond to your request or inquiry (including, without limitation, your request for Site Offerings and/or other SPOILEDCHILD® products and/or services); (C) the CEM was sent by SPOILEDCHILD® to you, in order to enforce a legal right or obligation (for instance, if you have an outstanding debt, breached the EULA, etc.); (D) the CEM only facilitates or confirms a transaction; (E) the CEM only provides SPOILEDCHILD® data security information; and/or (F) the CEM only provides information about your ongoing use of the Services if you have made a purchase during the prior two (2) year period.
If you have received a CEM, and you believe that you should not have, please contact us immediately at: hello@spoiledchild.com in order to unsubscribe and we will remove your electronic address from our database within ten (10) business days.
ADDITIONAL RIGHTS APPLICABLE TO AUSTRALIAN USERS
We take reasonable steps to make sure that third party recipients located outside Australia handle your personal information in a secure manner and in accordance with this Privacy Policy. However, we cannot always ensure that such third party recipients will comply with Australian privacy law in relation to your Personal Data. As such, where a foreign third party recipient does not handle your Personal Data in compliance with Australian privacy law, we will not be accountable to you and you will not be able to seek redress under Australian privacy law for such non-compliance. By providing us with your Personal Data, you consent to us disclosing your Personal Data to recipients outside Australia on this basis.
If you have any questions, concerns or complaints in relation to our handling of your Personal Data, you can contact us at: hello@spoiledchild.com. If you are unhappy with, or have further questions concerning, our handling of your question, concern, or complaint, you may contact the Office of the Australian Information Commissioner (telephone +61 1300 363 992 or email enquiries@oaic.gov.au).