1. What Personal Information do we collect?
1.1 Personal information you disclose to us In Short: We collect personal information in various ways depending on your interactions with us.
We collect personal information such as name, company name, email, phone number, and information about how we can help you that you voluntarily provide to us when you contact us directly, express an interest in obtaining information about us or our products and Services, or if you contact us for customer service.
In order to provide our Services, attribute rewards to you on behalf of our Clients, and communicate with our Client and their third-party services, merchants, and payment providers regarding your use of the Services, we use various technologies selected by our Clients as described below.
If you provide your personal information to a Client, merchant, payment processor, or other third-party service provider for which we are providing Services, we do not use any of the personal information that you share with such third party for our own purposes, other than providing the Services. Any personal information that you provide to third-parties is governed by those third-parties’ privacy policies. Be sure to read and understand those policies.
1.2 If you contact us for customer service regarding our Client’s program in which you are enrolled, we may collect personal information on behalf of our Clients in accordance with their privacy policies. We will use your personal information for the purposes of your customer service request on behalf of our Clients.
1.3 Information automatically collected In Short: Some information — such as your Internet Protocol (IP) address and/or browser and device characteristics — may be collected automatically when you use our Services.
We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services, and other technical information. This information is primarily needed to provide geographically relevant content to you, deliver an optimal user experience depending upon your device type, maintain the security and operation of our Services, and for our internal analytics and reporting purposes.
The information we collect includes:
1.4 Log and Usage Data. Log and usage data is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Services and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type and settings, and information about your activity in the Services (such as the date/time stamps associated with your usage, pages and files viewed, searches, and other actions you take such as which features you use), device event information (such as system activity, error reports (sometimes called 'crash dumps'), and hardware settings).
1.5 Device Data. We collect device data such as information about your computer, phone, tablet, or other device you use to access the Services. Depending on the device used, this device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information.
Cookies. Cookies are alphanumeric identifiers that we transfer to your device through your web browser for record-keeping purposes. Some cookies allow us to make it easier for you to navigate our Service, while others are used to allow us to track your activities at our Service. There are two types of cookies: session and persistent cookies.
Session Cookies. Session cookies exist only during an online session. They disappear from your device when you close your browser or turn off your device. We use session cookies to allow our to uniquely identify you during a session.
Persistent Cookies. Persistent cookies remain on your device after you have closed your browser or turned off your device. We use persistent cookies to track aggregate and statistical information about user activity and other purposes.
Disabling Cookies. Most web browsers automatically accept cookies, but if you prefer, you can edit your browser options to block them in the future. The “Help” portion of the toolbar on most browsers will tell you how to prevent your computer from accepting new cookies, how to have the browser notify you when you receive a new cookie, or how to disable cookies altogether. Visitors to our site and Service who disable cookies will be able to browse certain areas of the site, but some features may not function.
Location Data. We collect location data such as information about your device's location, which can be either precise or imprecise depending on how our Clients’ have set up our Services on their sites and mobile apps. How much information we collect depends on the type and settings of the device you use to access the Services. For example, if our Clients use our Services on their sites and apps, we may use GPS and other technologies to collect geolocation data. You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your Location setting on your device. Note however, if you choose to opt out, you may not be able to use certain aspects of the Services.
Authentication data. Tracking code or reference number which is unique to each user.
Transaction Data. We receive information from merchants pertaining to each transaction you complete, including purchases and returns, in conjunction with your use of our Clients’ sites and mobile apps. Please refer to those parties’ privacy policies for more specific information about the personal information collected, which may include a date and time stamp of a transaction, transaction amount, amount of reward earnings generated, discount or coupon codes used, a descriptor of item(s) in each transaction, and other characteristics of the transaction.
Aggregate and De-Identified Information. We share aggregate, anonymized, or de-identified information about users with third parties for marketing, advertising, research, or other purposes as permitted by applicable law.
1.7 Personal Information collected through a Client’s App In Short: We collect personal information regarding your mobile device and push notification permissions when you use our Client’s third-party rewards program app powered by Trashie. If you use our Clients’ app, we may also collect the following information depending on their configuration of our Services:
Mobile Device Access. We may request access or permission to certain features from your mobile device, including your mobile device's accessibility permissions, browser extensions, and other features. If you wish to change access or permissions, you may do so in your device's settings.
Mobile Device Data. We automatically collect device information (such as your mobile device model and manufacturer), operating system, version information and system configuration information, device and application identification numbers, browser type and version, hardware model Internet service provider and/or mobile carrier, and IP address (or proxy server). If you are using our Client’s app, we may also collect information about the phone network associated with your mobile device, your mobile device’s operating system or platform, the type of mobile device you use, your mobile device’s unique ID and information about the features of our Clients’ app you accessed.
Push Notifications. We may request to send you push notifications regarding your account or certain features of our Clients’ app. If you wish to opt-out from receiving these types of communications, you may turn them off in your device's settings. This information is primarily needed to provide the Services, maintain the security and operation of our Client’s app, for troubleshooting and for our internal analytics and reporting purposes.
2. How we use your information
In Short: We process your personal information on behalf of our Clients and for our own internal purposes. As described above, we generally collect personal information on behalf of our Clients to provide our Services to our Clients including customer service.
We collect personal information of our Client’s personnel and prospects to provide and market our Services to our Clients and prospective clients. We use the personal information we collect or receive:
- To send administrative information to Clients. We may use your personal information to send product, service and new feature information and/or information about changes to our terms, conditions, and policies.
- To protect our Services. We may use personal information as part of our efforts to keep our Services safe and secure (for example, for fraud monitoring and prevention).
- To enforce our terms, conditions and policies for business purposes, to comply with legal and regulatory requirements or in connection with our contract with our Client.
- To respond to legal requests and prevent harm.
- To deliver and facilitate delivery of Services. We may use your personal information to provide the requested Service.
- To respond to inquiries/offer support to our Client’s users. We may use personal information to respond to inquiries and solve any potential issues you might have with the use of our Services on behalf of our Clients.
- To send our Clients and prospects marketing and promotional communications. We and/or our third-party marketing partners may use the personal information for our marketing purposes if you contact us directly in accordance with your marketing preferences. For example, when expressing an interest in obtaining information about us or our Services, subscribing to marketing or otherwise contacting us, we will collect personal information from you. You can opt-out of our marketing emails at any time (see the "WHAT ARE YOUR PRIVACY RIGHTS?" below).
- Deliver targeted advertising on behalf of our Clients. We may use your personal information to develop and display personalized content and advertising (and work with third parties who do so) tailored to your interests and to measure its effectiveness at our Clients’ request
- For other business purposes. We may use your personal information for other business purposes, such as data analysis, identifying usage trends, determining the effectiveness of our Services and to evaluate and improve our Services, products, marketing, and your experience. We may also use de-identified or aggregated information that does not identify you for any purpose in compliance with applicable law.
3. Information Sharing
Our Clients determine the purposes and means of processing and instruct us how and with whom to share personal information we collect on their behalf. Please refer to their privacy policies for further details. We may process or share the personal information that we hold as a controller or business as follows:
- Service Providers. We may share your data with service providers, contractors or agents who perform services for us or on our behalf and require access to such information to do that work. Examples include: cloud computing, IT services, and payment processing, data analysis, email delivery, hosting services, customer service, and marketing efforts.
- Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company
- Business Partners. We may share your information with our business partners to offer you certain products, services, or promotions.
4. Is your Personal Information transferred internationally?
In Short: We may transfer, store, and process your personal information in countries other than your own.
Our servers are located in the United States. If you are accessing our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed by us in our facilities and by those third parties with whom we may share your information (see "WHO WILL YOUR PERSONAL INFORMATION BE SHARED WITH?" above), in the United States, and other countries.
If you are a resident in the European Economic Area (EEA) or United Kingdom (UK), the United States may not necessarily have data protection or other similar laws as comprehensive as those in your country.
5. How long do we keep your personal information?
6. How do we keep your personal information safe?
In Short: We aim to protect your personal information through a system of organizational and technical security measures; however, no technology is 100% secure.
We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Transmission of personal information to and from our Services is at your own risk.
In Short: We do not knowingly collect personal information from or market to children.
We do not knowingly solicit data from or market to children. If we learn that personal information from children has been collected, we will deactivate the account and take reasonable measures to promptly delete such personal information from our records. If you become aware of any personal information, we may have collected from children, please contact us at firstname.lastname@example.org.
8. What are your Privacy Rights?
In Short: In some regions, such as certain U.S. states, the European Economic Area (EEA) and United Kingdom (UK), you may have specific rights over your personal information.
Please note: If we are processing your personal information under the instructions of our Clients, we ask that you direct your privacy rights request to our Clients so that they may properly instruct us how to handle the request.
- Marketing e-Mails. You can opt-out of our marketing emails at any time by clicking on the link in any marketing email you receive from us or you may log into your account and update your preferences. Please note that you may still receive operational emails.
- Consent. If we are relying on your consent to process your personal information, you have the right to withdraw your consent at any time.
- Push Notifications. You may opt-out from allowing us to send you push notifications by adjusting the permissions in your mobile device. You may also choose which types of push notifications to receive by adjusting the permissions within the application. This opt-out choice does not apply to in-app notifications.
- Do Not Track. Most web browsers and some mobile operating and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preferences. At this time, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online.
EEA & UK
In some regions (like the EEA and UK), you have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your personal information, (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; and (iv) if applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your personal information. To make such a request, please use the contact details provided below. We will consider and act upon any request in accordance with applicable data protection laws and when applicable, the instructions of our Clients.
In our role as a controller under applicable data protection laws, we may process your personal information under the following legal bases:
- Consent: We may process your personal data if you have given us specific consent to use your personal data for a specific purpose. You have the right to withdraw your consent at any time. Please note, however, that this will not affect the lawfulness of the processing before its withdrawal, nor will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.
- Legitimate Interests: We may process your personal data when it is reasonably necessary to achieve our legitimate business interests
- Performance of a Contract: Where we have entered into a contract with you, we may process your personal data to fulfill the terms of our contract.
- Legal Obligations: We may disclose your personal data where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).
- Vital Interests: We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or as evidence in litigation in which we are involved.
If you are a resident in the EEA or UK and you believe we are unlawfully processing your personal information, you also have the right to lodge a complaint with your local data protection supervisory authority. You can find their contact details here: https://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.
If you are a resident in Switzerland, the contact details for the data protection authorities are available here: https://www.edoeb.admin.ch/edoeb/en/home.html.
If you are a resident of California, you have specific rights regarding your personal information that is used by our Clients, which are considered “businesses” under the California Consumer Privacy Act (CCPA). When Trashie provides Services to our Clients, Trashie is a “service provider” under the CCPA. When a California resident makes a privacy rights request under the CCPA (for example, to access or delete their personal information), our Clients are responsible for verifying the identity of the resident and directing us how to respond. Please refer to our Clients’ privacy policies for further information about their privacy practices and how to exercise your privacy rights.
10. Contact Us
For Days INC
228 Park Ave South, Unit 35757New York, NY 10003