Effective Date: November 10, 2020
If you are a resident of the State of California, please also read Your California Privacy Rights below to understand additional rights you may have pursuant to California Civil Code Section 1798.83 and the California Consumer Privacy Act of 2018.
Information We Collect and How We Collect It. We may collect information from and about your use of the Services, any RDS customer’s use of the Services when provided to us by the RDS, directly from any RDS customers when they use our Services, or automatically while you, or RDS customers, use the Services. When you, or RDS customers, interact with our Services, we may collect a record of each interaction. Lastly, and only with the customer’s permission, we may collect information from and about the RDS customers, even when the Services are not in use. For example, with the permission of RDS customers, we may access their location even if the Services are not being actively used so that we are able to precisely determine their delivery location even in circumstances when the customer has limited connectivity. Our goal in collecting information is to provide and improve our Services and services, to administer use of the Services, and to enable you, and all RDS customers, to enjoy and easily navigate our Services.
Information Provided via the Services; Account Information; Payment Information. Personal information is data that can be used to uniquely identify or contact a single person. Our Services receive personal information, concerning consumers of restaurant delivery services, in a variety of ways. When an RDS makes our Services available to its customers and its customers interact with our Services, we may collect a record of each interaction. For example, when the RDS customer downloads, registers with, or uses the Services, they will be required to establish an account that may include the customer’s name (first and last), email address, password, delivery address, billing address, and payment information. Later, when the customer uses the Services to place an order for restaurant delivery services, we will be able to use the customer’s account information to provide the RDS any information needed to complete the delivery. A record of each order for restaurant delivery services submitted by the customer using the Services is also saved, and this allows the customer to scroll through and resubmit a subsequent order from a list of previously submitted orders without having to, once again, manually enter the details of the order. When the customer downloads the Services, we will request permission to send the customer push notifications related to the Services. See “Changes in Personal Information; Opt-Out; Your Choices” section below to learn more about how a customer can change the push notification preferences. You, and any RDS customer, may be offered the opportunity to be contacted by one of our representatives to provide additional information about our Services or services. We also may collect information RDS customers provide to us through their device’s camera. By initiating any activity or transaction that uses payment information in the Services, for example by placing an order for delivery, the customer must consent to providing their financial information to us and our service providers processing the transaction to the extent required to provide the payment services. When we collect payment information directly from the customer, like credit card numbers and expiration dates, the payment data is transmitted directly from the customer to the credit card processing company and it is not stored by us. To clarify, the third party payment processor is the keeper of payment information, not us. Customers should always review, and, if they prefer, adjust their privacy settings on third-party websites and services before linking or connecting them to the Services, including where the Services have connectivity to social media via plug-ins or any other means.
Automatic Collection. When customers download, register with, or use the Services, the Services may use technologies to automatically collect usage information (e.g., the customer’s use of features of the Services), location information (real-time information about the location of the device the customer is using to access the Services) and device information (e.g., device type, mobile network information, unique device identifier, operating system, browser type, application version). This information is sometimes called “traffic data” and helps us improve and customize the Services. This information is generally non-identifying, but if we associate it with the customer as an identifiable person, we will treat it as personal information.
Location Information. In order to perform our Services, we or our service providers are required to receive or infer information about the customer’s location from a variety of sources. For example, we may use the customer’s IP address to identify their general location or we may receive more precise location data from their mobile device (such as via GPS, wireless networks, cell towers, Wi-Fi access points). We are required to save a record of the customer’s delivery location when a specific order is submitted so that the RDS can complete the delivery, and at all times thereafter until the RDS completes the delivery. We may use location data to analyze certain information, and to improve our Services and relevance of the information we provide via the Services. Please note that if the RDS, or the RDS customer, does not share location information then the functionality of the Services will be limited.
Technologies Used to Automatically Collect Information. Technologies we use on the Services to collect traffic data, directly or through our service providers, may include cookies (data files placed on your mobile device used to access the Services), analytics software (e.g., Google Analytics) and pixel tags (transparent graphic image, sometimes called a web beacon or tracking beacon, placed on a web page or in an email, which indicates that a page or email has been viewed). A pixel tag may tell the user’s browser to get content from another server. We, or our service providers, may place cookies or similar files on the mobile device of an RDS customer used to access the Services for security purposes, to facilitate Services navigation and to create a personalized experience while visiting the Services. It may be possible to refuse to accept mobile cookies by activating the appropriate setting on the mobile device. However, if an RDS customer selects this setting the customer may be unable to access all or parts of our Services and some of our feature and services on the Services may not operate as intended.
Third-Party Information Collection; Cross-Device Collection. When RDS customers use the Services, certain third parties may use automatic information collection technologies to collect information about their device. These third parties may include their mobile service provider, their mobile device manufacturer, and third parties engaged by us to host or store information, including information obtained through the Services, or provide certain services for us, including promotional campaigns, fulfillment and loyalty/rewards programs. These third parties may use tracking technologies to collect information from RDS customers when they use the Services. The information they collect may be associated with RDS customer’s personal information or they may collect information, including personal information, about your online activities over time and across different websites, apps, or other online services websites. We do not control these third parties’ tracking technologies or how they may be used. If RDS customers have any questions about an advertisement or other targeted content, the customer should contact the responsible provider directly.
How We Use Information That We Collected. We use information we collect about you, RDS customers, or that each RDS provides to us about its customers, including any personal information, to provide RDS customers with the Services and its contents, and to provide other information, products, offers or services requested from us, fulfill any other purpose for which the RDS provides such information, to communicate with the RDS, or its customers, about our Services, provide offers and promotions to RDS customers, give RDS customers notice about any RDS offers and promotions, notify RDS customers when Services updates are available, and of any changes to any of our services we offer or provide through the Services. The usage information helps us improve our Services and to deliver a better and more personalized experience by enabling us to estimate our audience size and usage patterns, store information about usage preferences and recognize RDS customers when they use the Services. Lastly, we use location information to connect the physical locations of the RDS and RDS customers, so that the RDS can complete deliveries.
Disclosure of Information. We may use or disclose your information, or an RDS customer’s information, including personal information, to our third-parties to protect the security and integrity of the Services, to correct technical problems and malfunctions on the Services, to technically process any information, to fulfill our offers, promotions and coupons, to take precautions against liability, and to provide our Services to the RDS for the RDS to use for its own business purposes. We may also provide your information, or an RDS customer’s information, to our service providers who provide services on our behalf (e.g., our analytics provider and payment processor). We reserve the right to transfer any information we have about you, or RDS customers, in connection with a sale, merger, consolidation, change in control, transfer of assets, reorganization or liquidation of our business. We reserve the right to disclose any personal information as needed if that information is requested by law enforcement agencies or if we are required to do so by law, treaty, regulation, subpoena, court order, or by a government entity. We also may disclose your personal information to third parties if we have reason to believe that disclosing such information is necessary to conduct investigations of possible breaches of law, to cooperate in any legal investigation, or to identify, contact, or bring legal action against someone who may be violating any agreement with us.
Do-Not-Track Requests; Third-Party Tracking. Unless your, or an RDS customer’s, browser or device settings are configured to make Services activities and publicly available information about Services activities (such as traffic data described above) invisible to usage analytics tools, we do not presently have the capability to omit you, or an RDS customer, from usage analytics to the extent your browser only sends a “do not track” message and does not otherwise screen you from tracking without any action on our part. To learn more about browser tracking signals and “Do Not Track”, please visit http://allaboutdnt.org. Third parties, other than our service providers, do not have authorization from us to track which websites, apps, or other online services you, or an RDS customer, visits prior to and after visiting the Services. Please note, however, that we cannot control third-party tracking and there may be some third-party tracking that occurs without our consent or knowledge.
Changes in Personal Information; Opt-Out; Your Choices. If you, or an RDS customer, needs to correct, update, or delete personal information, please contact us at any time by sending an email to email@example.com. Please note that we may not be able to correct or update personal information previously provided to us by third parties. You, or any RDS customer, can also choose to delete your account.
- Push Notifications: If an RDS customer does not want to receive push notifications from us, the customer may opt out of receiving these when they first launch the Services or at a later stage by using the settings on their mobile device.
- Camera: An RDS customer can choose whether or not to allow the Services to collect information about their device’s camera and photos through their device’s settings. The RDS customer can manage these preferences when the Services is first launched or at a later stage by using the setting on your mobile device. If the RDS customer blocks the use of camera or photos, an essential part of the Services will be inaccessible and will not function properly. For example, if the RDS customer does not allow the Services access to the camera on their phone, then we will be unable to leverage the camera to precisely determine the RDS customer’s location. We may contact the RDS customer periodically to make them aware of these limitations.
Children. The Services are intended for adults and not intended for children in the United States under 13 years of age, and we do not knowingly collect any personal information from children under 13. If we learn we have collected or received personal information from a child under 13 without verification of parental consent, we will take steps to delete the information as soon as possible. If you are under the age of 13, please do not provide any personal information to us. If you believe we might have any information from or about children under 13, please contact us at firstname.lastname@example.org.
Your California Privacy Rights. Pursuant to Section 1798.83 of the California Civil Code, California residents have the right to request from a business with whom the California resident has an established business relationship: (1) What types of personal information, if any, of the California resident the business shares with third parties for direct marketing purposes of those third parties; and (2) the identities of the third parties with whom the business has shared such information in the immediately preceding calendar year.
California Do Not Track Disclosure:
California Consumer Additional Information under California Consumer Privacy Act of 2018 (“CCPA”)
You will not receive discriminatory treatment by us for exercising your privacy rights conferred on you by the CCPA.
You have certain additional rights regarding your personal information, pursuant to California law. These include the rights to:
- receive a list of the categories of personal information we have collected about you;
- receive a list of the categories of sources from which your personal information was collected;
- receive a list of the categories of your personal information that we have disclosed for a business purpose;
- receive a list of the categories of third parties to whom your personal information was disclosed for a business purpose;
- know the business or commercial purpose for collecting your personal information;
- receive a list of specific personal information we collected and for what purposes;
- have your personal information deleted by us and direct our service providers to delete your information. However, it may be retained pursuant to an allowed exception if applicable;
- know if personal information was collected from sources other than from you and the categories of sources from which the information was obtained; and
- receive your personal information in a useable electronic format and transmit it to a third party (right to data portability).
- Please submit your request for information or deletion of information concerning you as noted below. In order to provide you with your requested information or to delete the information which we have concerning you, we must be able to verify that you are the person requesting the information or deletion. With your request please provide at least two items of information which you have previously provided to us for us to use for verification of your identity. If this is not sufficient, we will contact you for additional means of verification.
You may designate an authorized agent to make a request for you. If your agent has a power of attorney pursuant to California Probate Code sections 4000 to 4465, please provide proof to the same. If your agent does not have a power of attorney pursuant to California Probate Code sections 4000 to 4465, we will require you to provide the authorized agent written permission to make the request, verify your own identity directly with us and require your agent to submit proof that they are authorized by you to act on your behalf.
For information concerning you or for deletion of information concerning you, please email email@example.com or request by mail addressed to:
Fullsteam Operations LLC
Attn. Compliance CCPA
540 Devall Drive, Suite 301
Auburn, AL 36832
By email: firstname.lastname@example.org
Address: Data Dreamers, C/O Fullsteam Operations, Attn. Compliance, 540 Devall Drive, Suite 301, Auburn, AL 36832
Phone: (334) 329-0389