Effective Date: January 9, 2019.
Notice of Information We Collect and How We Use It
We collect two types of data about individuals: (1) technical data automatically collected from all visitors to the Website, and individuals that use the Website (“Passive Data Collection”) and (2) information that you or others voluntarily submit to us (“User-Submitted Information,” for example when ordering products from us, we collect your name, billing address, shipping address, telephone number, email, and items to ship).
Passive Data Collection
We automatically track certain information based upon your behavior on the Website. We use this information to do internal research on our users’ demographics, interests, and behavior to better understand, protect and serve you and our community.
Like most websites, we automatically receive and record certain information about our users’ behavior on our Website and when using our Website. Our servers automatically gather technical information about our Website traffic and store it in log files. This information includes, but is not limited to, Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. We aggregate this information with other pieces of information to analyze trends, to administer and improve the Website, to track users’ movements around the Website and to make inventory purchasing decisions that will best serve our customer base. Pages of the Website may also use devices that permit us to count users who have visited those pages and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity).
If you order a product from us, we request certain Personal Information (“User-Submitted Information) from you on our order form, for example, billing address, shipping address, telephone number, email, and items to ship. We use this information for billing purposes. If we have trouble processing an order, we will use this information to contact you. We also use two third party services for payment processing, Paypal and Stripe. They handle all the credit card info so we don't have to handle financial information (such as your credit card number and expiration date).
We provide some Personal Information to third parties for their use in performing internal business functions (e.g., mailing, maintenance, security, data analytics, email transmission, CRM, database management services, credit card payment processing or data hosting) on our behalf. For example, we use two third party services for payment processing, Paypal and Stripe. They handle all the credit card info so we don't have to handle financial information (such as your credit card number and expiration date).
As Required By Law / Certain Business Transactions
We may disclose Personal Information if we have a good-faith belief that doing so is required by a subpoena or other judicial or administrative order or otherwise required by law or in connection with an actual or proposed corporate transaction or insolvency proceeding involving all or part of the business or asset to which the information pertains. This may include responding to legal requests from jurisdictions outside of the United States, where we have a good faith belief that the response is required by law in that jurisdiction.
To Protect Rights
Additionally, we may disclose Personal Information where we, in good faith, deem it appropriate or necessary to prevent violation of the Terms and Conditions, or our other agreements; take precautions against liability; protect the rights, property, or safety of Granberg International, any individual, or the general public; maintain and protect the security and integrity of our Services or infrastructure; protect ourselves and our Services from fraudulent, abusive, or unlawful uses; investigate and defend ourselves against third-party claims or allegations; or assist government enforcement agencies.
Tracking Technologies and Tailored Advertisements / Choices
Granberg International also partners with advertising companies to place our advertising on publisher websites on the Internet. These advertising companies collect anonymous information about your visits to our Website to analyze user behaviors in the aggregate. They are used to analyze and optimize our Website, measure conversion, and tailor content to interests.
Our Website is not at this time configured to read or respond to “do not track” settings or signals in your browser headings, which vary by browser provider. In lieu of a browser-based opt-out solution, you can utilize the Network Advertising Initiative approved methods for placement of “opt-out” cookies described here. Our Website and those of our third party advertisers or other vendors are configured to read and honor these opt-out cookies, so long as they are present on your computer. (If you delete all cookies, you will need to reset your opt-out cookies.) Specific instructions on how to do so are available here. However, please be aware that we do not control these opt-out processes.
Links to Other Websites
Access to Personally Identifiable Information
If your information changes, or if you no longer desire our Services, you may correct, update, delete it or deactivate your account by going to your account or by emailing email@example.com, by contacting us by telephone (925-380-9393) or by postal mail at Granberg International, 1051 Los Medanos, Pittsburg, CA 94565.
The security of your information is important to us, including, but not limited to, the Personal Information collected via the Website. We use reasonable security measures to protect against the loss, unauthorized access, misuse, alteration and destruction of Personal Information under our control, both during the transmission and once we receive it. This includes, but is not limited to, the use of firewalls and encryption. Although we make good faith efforts to maintain the security of such Personal Information, no method of transmission over the Internet or method of electronic storage, is 100% secure and we cannot guarantee that it will remain free from unauthorized access, use, disclosure, or alteration. Further, while we work hard to ensure the integrity and security of our network and systems, we cannot guarantee that our security measures will prevent “hackers” or other unauthorized persons from illegally accessing or obtaining this information. We keep Personal Information no longer than necessary for legitimate business purpose or as required by law.
As part of securing personal data stored on our servers, we restrict access to Personal Information to Granberg International employees, contractors and agents who need to know that information in order to operate, develop or improve the Services. These individuals are bound by confidentiality obligations and may be subject to discipline, including termination and criminal prosecution, if they fail to meet these obligations.
If we learn of a security breach, we may attempt to notify you electronically so that you can take appropriate protective steps. By using the Services or the Website or by providing Personal Information to us, you agree that we can communicate with you electronically regarding security, privacy, and administrative issues relating to your use of the Services.
If a security systems breach occurs, we may post a notice on our homepage granberg.com or elsewhere on the Website and may send email to you at the email address you have provided to us. Depending on where you live, you may have a legal right to receive notice of a security breach in writing. This notice paragraph applies to users of Services and the Website.
Change of Ownership
In the event of a change in ownership, or a merger with, acquisition by, or transfer or sale of all or a portion of our assets to, another entity, we reserve the right to transfer all of your Personal Information, including email addresses, to that entity. We will use reasonable efforts to notify registered users of any such transfer to an unaffiliated third party (by a posting on our homepage, or by email to your email address that you provided to us, as chosen by us in our discretion).
The Children’s Online Privacy Protection Act (“COPPA”) protects the online privacy of children under 13 years of age. In fact, Granberg International and the Website are not directed toward individuals under the age of eighteen (18), and we request that such individuals do not provide Personal Information through our Website. Additionally, we do not knowingly collect or maintain Personal Information from anyone under the age of 18, unless or except as permitted by law. If we learn that Personal Information has been collected from a user under 18 years of age on or through the Website, then we will take the appropriate steps to cause this information to be deleted. If you are the parent or legal guardian of a child under 18 who has registered on the Website or you believe has otherwise provided Personal Information to Granberg International, please send an email to firstname.lastname@example.org or contact Granberg International at 925-380-9393 to have that child’s account terminated and information deleted.
Notice to California Residents
If you are a resident of the state of California, California’s “Shine the Light” law permits you to request information regarding the disclosure of your Personal Information by us to a third party for the third party's direct marketing purposes. To make such a request, please write us at Granberg International, 1051 Los Medanos, Pittsburg, CA 94565.
The EU-US Privacy Shield
The EU-US Privacy Shield decision was adopted on 12 July 2016 and the Privacy Shield framework became operational on 1 August 2016. This framework protects the fundamental rights of anyone in the EU whose personal data is transferred to the United States for commercial purposes. The framework also brings legal clarity for businesses relying on transatlantic data transfers.
The new arrangement includes
- • strong data protection obligations on companies receiving personal data from the EU
- • safeguards on US government access to data
- • effective protection and redress for individuals
- • an annual joint review by EU and US to monitor the correct application of the arrangement.
Your Additional Rights as an Individual in the EU under the GDPR (EU 2016/679)
The European Union’s General Data Protection Regulation (GDPR) came into force in May of 2018.
Your ‘data subject’ rights:
Under data protection law, you have a number of rights in relation to your personal information. If you wish to exercise any of your rights, we may ask you for information to confirm your identity.
Accessing your personal information
You have the right to request a copy of the personal information that we hold about you. To make a request, please email or write to us at the address at the end of this policy. You do not have to pay us a fee to access your personal information unless we believe your access request is unfounded, repetitive or excessive. In this case we may charge you a reasonable fee to access your personal information or we may decide not to comply with your request. We will notify you if this is the case.
Correcting and updating your personal information
The accuracy of your information is important to us and we are continually developing ways in which to make it easier for you to review and amend the personal information that we retain. In the meantime, if you change your name or address/email address, or you find that any of the information that we hold about you is incorrect or out of date, please let us know by contacting us via the means described at the end of this policy.
Withdrawing your consent
You may withdraw your consent as the legal basis for processing your personal information at any time. To do this, please contact us via the details provided at the end of this policy. You can use our unsubscribe tool to withdraw your consent to receiving any direct marketing that you previously opted-in for. You can also update your preferences. If you withdraw your consent, our use of your personal data prior to your withdrawal remains lawful.
Objecting to our use of your personal information and automated decisions made about you.
You may object to us using your personal data for these purposes by contacting us in writing by any of the means stated at the end of this policy. We will temporarily stop processing your personal information in line with your objection request until we have investigated the matter further, except for the purposes for which we are sure we can continue to process your personal information. If we agree that your objection is justified, in accordance with your rights under the data protection laws, we will permanently cease using your information for those purposes. If we do not agree, we will provide you with our justification as to why we are under obligation to continue using your data.
We will automatically comply with your request if you object to us using your personal data for direct marketing purposes. To contest any decision that is made about you based on automated processing, please contact the data protection department using the details at the end of this policy.
Erasing your personal information or restricting its processing
You have the right to ask for your personal information to be removed from our systems. You can do this by emailing or writing to us at the address stated at the end of this policy. You may also ask us to stop or limit the processing your personal data in the following situations:
- • where you believe we are unlawfully using your personal data,
- • you have objected to our use of your personal data and have a pending investigation, or you require us to retain your data in connection with legal proceedings.