Geocaster Privacy Policy
Effective Date: September 22, 2024
Last Revised: September 22, 2024
At Geocaster, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile applications, website, or interact with us in any other way. By accessing or using our Services, you agree to this Privacy Policy.
About Us
Geocaster (“we”, “us”, “our”) is a platform designed to connect users with media linked to physical locations. Through our Services, users can explore geocasts (which may include audio and video content) tied to specific locations, discover new places, and share their own experiences. Our app allows for location-based storytelling, offering walking tours, scavenger hunts, and other media content that plays automatically when a user arrives at certain locations. We believe in giving users control over their location data and media sharing.
Geocaster is committed to handling your personal information responsibly. Whether you’re a registered user sharing your geocasts or a visitor browsing the app, this Privacy Policy outlines what data we collect, how it’s used, and the rights you have over your information.
Section How We Process Your Information
We process your personal information for various purposes depending on how you interact with our services. The primary purposes for processing your personal information are outlined below:
• To Provide and Maintain Our Services
We use your personal information to offer, operate, and improve our services, including making updates, ensuring their security, and troubleshooting issues.
• To Facilitate Account Creation and Authentication
We use your information to help create and log in to your account, maintain user preferences, and keep your account functioning securely. This includes using your username, email address, password, and other account-related information.
• To Deliver Personalized Content and Features
We may process your information to customize your experience, such as providing personalized geocast recommendations based on your location, browsing activity, and interests.
• To Respond to User Inquiries and Provide Support
Your contact information and any content you provide during communication will be used to address and resolve support issues or respond to your inquiries.
• To Fulfill and Manage Transactions
For transactions made within the app, such as purchasing premium features, we process your payment information to complete the transaction. Payment details, including card number and billing address, are handled by third-party providers like Stripe or PayPal.
• To Monitor and Improve Our Services
We use collected data such as browsing information, activity logs, and community interactions to analyze trends, monitor user engagement, and continuously improve our app’s functionality.
• To Ensure Security and Prevent Fraud
We process personal data to ensure the security of our services, protect your account from fraudulent activity, and detect and prevent any illegal or unauthorized activities on the platform.
• To Comply with Legal Obligations
We may need to process your data to comply with relevant laws or respond to regulatory requests, legal proceedings, or law enforcement inquiries.
• For Communication and Promotional Purposes
We use your contact information to send you notifications regarding changes to the app, account updates, security alerts, or promotional messages about new features and offers. You can opt out of promotional communications at any time.
Section Legal Bases for Processing Your Personal Information
We only process your personal information when we have a valid legal basis to do so. The following legal bases apply depending on the type of information and the reason for processing:
• Consent
We rely on your consent when you voluntarily provide personal information, such as when you subscribe to newsletters, sign up for new features, or allow us access to your device’s location data. You can withdraw consent at any time, though this may affect your ability to use certain features of the app.
• Performance of a Contract
We process your personal information when necessary to fulfill a contract we have with you. For example, processing your information to provide you with access to premium features, handle payments, or respond to customer service requests.
• Legitimate Interests
In some cases, we process your personal information because it is in our legitimate business interests, provided that those interests are not overridden by your data protection rights. Examples include improving the services we offer, monitoring usage, or securing the platform from fraud or abuse.
• Compliance with Legal Obligations
In certain situations, we are legally required to process your personal information. This may occur when responding to legal requests, law enforcement, or in compliance with laws or regulations.
• Vital Interests
We may process your information if necessary to protect your vital interests or the interests of another individual. For example, in emergency situations where we believe processing your data will prevent imminent harm.
Section Sharing and Disclosure of Personal Information
We may share or disclose your personal information under certain circumstances. Below are the situations where your information may be shared, and with whom:
Service Providers
We work with third-party service providers to help us deliver and improve our services. These service providers process your personal information on our behalf, under strict confidentiality and security terms. Examples of services they provide include:
• Payment processing (e.g., Stripe, PayPal)
• Cloud storage and hosting
• Analytics and performance tracking
• Customer support
• Marketing services
These providers only have access to the data necessary to perform their services and are prohibited from using it for any other purpose.
Business Transfers
In the event of a merger, acquisition, financing, sale of assets, or bankruptcy, your personal information may be transferred to a successor entity. If this occurs, we will notify you and provide you with an opportunity to opt out of such a transfer if required by law.
Legal Requirements
We may disclose your personal information if required to do so by law, or if we believe that such action is necessary to:
• Comply with a legal obligation, such as a subpoena or court order
• Protect and defend our rights or property
• Prevent fraud or illegal activity
• Protect the safety of users or the public
Affiliates
We may share information with our affiliates, which includes any entity that we control, are controlled by, or are under common control with us. These affiliates are required to treat your personal information in accordance with this privacy policy.
Other Users
When you submit content publicly on our platform (such as geocasts, reviews, or other community interactions), this content, along with certain profile information (e.g., username, profile picture), is available to other users and visitors. Be mindful of the public nature of these posts when sharing personal information.
Aggregated or De-Identified Data
We may share aggregated, anonymized, or de-identified data with third parties for research, analytics, marketing, or other business purposes. This information will not identify you personally.
With Your Consent
In some cases, we may ask for your explicit consent to share your personal information with third parties for purposes not covered by this privacy policy. You have the right to decline or withdraw your consent at any time.
Section Third-Party Websites and Services
Our services may contain links to or integrations with third-party websites, services, or applications that are not owned or controlled by us. We are not responsible for the privacy practices or content of these third-party services. Please review the privacy policies of any third-party websites or services you interact with before providing them with any personal information. Below are common examples of third-party interactions on our platform:
Embedded Content
Our platform may embed content from third-party websites or services, such as videos, maps, or social media posts. When you interact with such embedded content, you may be subject to the privacy policies of the third-party provider, as they control how data is collected and processed when their content is accessed.
For example:
• Videos: Embedded YouTube videos follow YouTube’s privacy policy.
• Maps: Embedded Google Maps follow Google’s privacy policy.
Social Media Sharing
Our services may allow you to share content or your actions on our platform with third-party social media services like Facebook, X (formerly Twitter), and Instagram. If you choose to share information via these social media features, you may share your profile information, posts, or activities with others on those platforms, and the privacy practices of those services will govern how your information is handled.
Third-Party Logins
If you register or log in to our services using a third-party account (such as Facebook, Google, or Apple), the third-party service may share certain information with us, such as your name, email address, and profile picture, based on your permissions with that service. These third-party services operate independently, and their privacy practices are governed by their own terms and privacy policies. We recommend reviewing the privacy policies of any third-party service providers you use for authentication.
External Links
Our platform may contain links to third-party websites that are not operated by us. Clicking on these links will direct you to a third-party website. We are not responsible for the privacy practices or the content of these websites. We recommend reviewing the privacy policies of every site you visit through external links on our platform.
Third-Party Integrations and API Access
Our platform may offer integrations with third-party services through APIs (application programming interfaces). For example, certain content or functionality may be served by third-party providers through an API integration. Any data you provide to these third parties through such integrations will be subject to their respective privacy policies.
Section Cookies and Other Tracking Technologies
Our services use cookies and similar tracking technologies to collect and store information when you interact with our platform. These technologies help us improve the user experience, personalize content, and analyze how our services are used. This section explains how we use cookies, your choices regarding their use, and other tracking technologies we employ.
What are Cookies?
Cookies are small text files that are placed on your device (such as your computer or mobile phone) when you visit a website. They are widely used to make websites work more efficiently and to provide reporting information. Cookies help us understand how users interact with our platform and enable us to personalize your experience.
We use the following types of cookies:
• Essential Cookies: These cookies are necessary for the operation of our services and allow you to use our platform’s essential features, such as accessing secure areas.
• Functional Cookies: These cookies enable us to provide enhanced functionality and personalization, such as remembering your preferences.
• Analytics and Performance Cookies: These cookies help us understand how visitors interact with our services, such as which pages are visited most frequently. The information collected is used to improve our services.
• Advertising and Targeting Cookies: These cookies are used to deliver ads that are relevant to your interests. They may also limit the number of times you see an advertisement and help measure the effectiveness of advertising campaigns.
What Other Tracking Technologies Do We Use?
In addition to cookies, we use other tracking technologies, such as:
• Web Beacons (or Pixels): Web beacons are small graphic files that are embedded on a web page or in an email. They allow us to monitor user behavior, such as which pages have been visited or whether an email has been opened.
• Local Storage: We use local storage to store information about your interactions with our platform, such as your preferences and the settings you have selected.
How We Use Cookies and Tracking Technologies
We use cookies and similar tracking technologies for various purposes, including:
• Authentication and Security: To help authenticate users and provide a secure environment.
• Preferences: To remember your preferences and settings, such as your preferred language.
• Analytics: To understand and analyze how users interact with our platform and identify areas for improvement.
• Advertising: To deliver relevant ads and monitor the performance of our advertising efforts.
Third-Party Cookies
Some of the cookies we use are set by third parties, including advertising partners, analytics providers, and social media platforms. These third parties may use cookies and other tracking technologies to collect information about your online activities over time and across different websites and services. This information may be used to deliver targeted advertisements to you on other websites or platforms.
Your Choices Regarding Cookies
You have control over how cookies are used on our platform. Here are some of the choices available to you:
• Cookie Settings: You can adjust your browser settings to block or delete cookies. However, please note that blocking or disabling certain cookies may affect the functionality of our services and limit your ability to use some features.
• Opting Out of Targeted Advertising: You may opt out of targeted advertising from specific ad networks through the Network Advertising Initiative’s (NAI) opt-out page or the Digital Advertising Alliance’s (DAA) opt-out page. You may also manage your advertising preferences by visiting the privacy settings on your device.
• Do Not Track (DNT): Most modern web browsers provide the option to enable a “Do Not Track” signal. However, there is no consensus on how websites should interpret this signal. Therefore, we do not currently respond to DNT signals.
For more detailed information on how we use cookies and how you can manage your cookie preferences, please refer to our Cookie Policy [insert link to Cookie Policy if applicable].
How Do We Handle Your Social Logins?
Our services offer you the ability to register or log in using your third-party social media account details (such as your Facebook, Google, or Apple account). By choosing this option, you enable us to receive certain information from the social media platform, which may be used to personalize your experience on our services.
Information We Receive from Social Logins
When you register or log in through a social media account, we may access certain profile information from that third-party platform. The specific information we receive may vary depending on the social media provider, but it typically includes:
• Your name
• Email address
• Profile picture
• Friends or contacts list (if applicable)
• Any other information you choose to share via your social media account.
For example, if you log in using Facebook, we may have access to your Facebook profile information, such as your name, profile picture, and friends list. This data allows us to personalize your experience by suggesting connections, communities, or content based on your social network.
How We Use Social Login Information
The information we receive from your social login is primarily used to:
• Create and manage your account: We use your social login details to simplify account creation and authentication.
• Personalize your experience: Based on the information from your social profile, we may tailor content and features to match your preferences.
• Improve interactions: If your social media account is linked to others, we may use that data to suggest connections or communities you may be interested in.
We only collect information that is necessary to provide the service, and we do not use social login information for any purpose other than those specified in this privacy policy.
Your Control Over Social Logins
You can control the information shared by adjusting your settings on the social media platform you use for login. Most platforms provide an option to manage the permissions granted to third-party applications, including our service.
To control what information is shared:
• Facebook: Go to your Facebook privacy settings to manage apps and websites.
• Google: Manage third-party access to your Google account in the Security section of your Google Account settings.
• Apple: Use the “Sign in with Apple” feature in your Apple ID settings to manage apps that use your Apple login.
Security of Social Logins
The security of your account is important to us. When you use a social media account to log in, we take appropriate steps to secure the transmission of your data. However, it is important to note that your social media account is subject to the terms and privacy policies of the platform you are using. We recommend that you review their policies to understand how your information is handled and what security measures are in place.
Revoking Access to Social Logins
If you no longer wish to use your social media account to log in, you can disconnect it from your account at any time. This can typically be done through your account settings within our services or directly on the social media platform itself.
For example:
• Facebook: You can revoke access in your Facebook account settings under “Apps and Websites.”
• Google: You can remove access in the Security section of your Google Account settings under “Third-party apps with account access.”
• Apple: You can manage which apps are linked to your Apple ID in your Apple ID settings.
Please note that revoking access to a social login may impact your ability to use certain features or services. If you have created your account exclusively through a social media login, revoking access may prevent you from accessing your account until you reset your login method.
Is Your Information Transferred Internationally?
We may transfer, store, and process your information in countries other than your own. By using our services, you acknowledge and consent to the transfer of your information to other countries, including the United States, where we may have data centers, servers, or third-party service providers.
Cross-Border Data Transfers
When you access or use our services, your data may be transferred to, stored, and processed in countries where data protection and privacy regulations may differ from those in your country. Specifically:
• Our servers and databases are primarily located in the United States, which may not have the same level of privacy protection as the country in which you reside.
• We may also transfer your information to other countries as necessary to provide our services, such as through cloud service providers or other third-party vendors.
International Data Transfers for EU/UK Residents
For users located in the European Economic Area (EEA) or the United Kingdom (UK), we comply with applicable data protection regulations regarding the transfer of personal data outside of these regions.
When we transfer your personal information outside of the EEA or UK, we take appropriate steps to ensure that your data is adequately protected in accordance with the General Data Protection Regulation (GDPR) and other applicable laws. These measures include:
• Standard Contractual Clauses (SCCs): We rely on SCCs, which are legal agreements approved by the European Commission, to safeguard your information when it is transferred to countries outside the EEA or UK.
• Adequacy Decisions: In certain cases, we may transfer data to countries that have been deemed by the European Commission to provide an adequate level of data protection.
• Other Legal Mechanisms: Where appropriate, we may rely on additional legal mechanisms for cross-border data transfers, such as obtaining your explicit consent or relying on the performance of a contract.
International Data Transfers for Other Regions
For users located outside of the EEA or UK, including in countries such as Canada or Australia, we ensure that your personal information is transferred in compliance with applicable local data protection laws. We take similar safeguards to protect your
How Long Do We Keep Your Information?
We keep your personal information for as long as necessary to fulfill the purposes outlined in this privacy policy unless a longer retention period is required or permitted by law.
Retention of Personal Information
The duration for which we retain your information depends on several factors, including:
• The purpose for which we collected the data: We retain personal information as long as it is needed to provide our services, manage our relationship with you, or fulfill legal obligations.
• Legal, regulatory, and contractual obligations: Certain laws or contractual requirements may obligate us to retain your data for a specified period, particularly in cases of financial records, dispute resolutions, or law enforcement requirements.
• Business purposes: We may retain certain data for as long as is necessary to protect the legitimate interests of our business, such as fraud prevention, security, and improving the quality of our services.
Categories of Retained Data
Different types of data may be retained for different periods based on the reason for their collection:
• Account Information: We retain account-related information (such as your username, email address, and password) for as long as your account is active. If you choose to delete your account, we may still retain certain data (such as transaction records) for legal or regulatory purposes.
• Payment Information: For payment transactions, we retain information such as billing details and payment records for a period required by applicable tax laws or to facilitate refunds or disputes.
• Activity Information: Information related to your interactions with our services, including browsing history, logs, and activity-related data, may be retained for operational purposes, such as improving the performance and user experience of our services.
• Communications: If you contact us for customer service, we may retain your communication records (such as emails or chats) for training, quality assurance, and legal compliance purposes.
Deletion of Personal Information
Once we no longer need to retain your information, we will either delete or anonymize it, depending on the circumstances. If it is not possible to fully delete your data (for example, if it has been stored in a backup archive), we will take steps to ensure it is isolated and protected from further processing.
Retention of Anonymized Data
In some cases, we may anonymize your data, removing any identifying details so that it can no longer be linked to you. We may retain anonymized data indefinitely for analytical or research purposes, as it does not pose a privacy risk once anonymized.
User-Controlled Deletion
You have control over certain data retention policies. For example:
• Account Deletion: You may request the deletion of your account and personal data at any time. Once your account is deleted, we will remove your profile information and disassociate it from any publicly visible content you have posted, although such content (e.g., posts or comments) may remain accessible to others unless you specifically delete it beforehand.
• Content Deletion: You may also delete specific content you have shared, such as comments, posts, or uploaded media. Deleted content will no longer be visible, although backups may exist temporarily until they are overwritten.
Legal Exceptions to Deletion
There are certain instances where we may be required to retain your data for longer periods, even after you have requested deletion. These instances include:
• Compliance with legal obligations: We may retain data where required by law, such as for tax records, financial reporting, or responding to law enforcement requests.
• Dispute resolution: We may retain data necessary to resolve disputes, enforce our agreements, or protect the rights and safety of others, including our users or third parties.
• Fraud prevention: Retaining certain data for a longer period may be necessary to prevent fraud or abuse of our services.
Data Retention for Minors
We comply with applicable laws regarding the retention of personal data for minors. We do not knowingly collect or retain personal information from children under the age of 1If you believe we have collected information from a minor, please contact us so we can take appropriate action, including the deletion of such information.
Your Right to Request Data Deletion
Depending on the jurisdiction in which you reside, you may have the right to request that we delete personal information we have collected about you. To submit a data deletion request:
• Visit our data request page (provided in this policy), or
• Contact us directly via the contact information in this privacy policy.
We will review and respond to your request in accordance with applicable data protection laws and will notify you of the actions we have taken.
How Do We Keep Your Information Safe?
We take the protection of your personal information seriously and implement a range of technical and organizational security measures to ensure its safety. However, it’s important to remember that no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.
Security Measures We Implement
We have implemented several security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction:
• Encryption: We use encryption technologies, such as TLS (Transport Layer Security), to protect sensitive information during transmission over the internet, ensuring that your data is secure while it is being sent to or from our systems.
• Access Controls: We limit access to your personal information to authorized personnel who need it to perform their job duties. Our employees are required to follow strict data protection policies, and we employ role-based access controls to restrict access to sensitive data.
• Anonymization and Pseudonymization: Where possible, we employ techniques such as anonymization or pseudonymization to remove identifying information from your data. This reduces the risk that your data can be linked back to you in the event of unauthorized access.
• Data Minimization: We only collect and retain the minimum amount of personal information necessary to fulfill the purposes described in this privacy policy, reducing the overall exposure to potential risks.
• Firewalls and Intrusion Detection Systems: We use firewalls, intrusion detection systems, and other security tools to detect and prevent unauthorized access to our systems.
• Regular Security Audits: We conduct regular security audits and assessments of our systems and practices to ensure that our security measures are up-to-date and effective.
• Incident Response Plan: We have an incident response plan in place to swiftly address any data breaches or security incidents that may occur. If we become aware of a data breach involving your personal information, we will take appropriate steps to mitigate the impact and notify you as required by applicable laws.
Protecting Your Account
You play an important role in keeping your account secure. We encourage you to take the following steps to protect your account and personal information:
• Use Strong Passwords: Choose a unique, strong password for your account, and avoid using easily guessable information, such as your name or birthdate. It is also recommended to use a combination of upper and lower-case letters, numbers, and special characters.
• Enable Two-Factor Authentication (2FA): We offer two-factor authentication (2FA) to provide an extra layer of security for your account. With 2FA enabled, you will be required to provide a second verification code, typically sent to your mobile device, in addition to your password when logging in.
• Keep Your Login Information Private: Do not share your login credentials with others, and be cautious when logging in from public or shared devices. If you suspect that someone has gained unauthorized access to your account, change your password immediately and contact our support team.
Data Breach Notification
While we take every precaution to secure your personal information, in the unlikely event that we experience a data breach, we will:
• Notify You Promptly: If a breach of personal information occurs that poses a significant risk to your rights or freedoms, we will notify you as soon as reasonably possible. We will provide you with details about the nature of the breach, the information that was affected, and any steps you can take to protect yourself.
• Report to Authorities: Where required by law, we will report data breaches to relevant data protection authorities and work closely with them to address the incident and mitigate any potential harm.
• Remediation Efforts: We will take immediate steps to investigate the breach, close any security gaps, and prevent similar incidents from occurring in the future.
Security Risks Related to Third Parties
We work with third-party service providers and partners to offer our services. To ensure the security of your personal information when shared with these third parties, we:
• Contractual Safeguards: We enter into contracts with third-party service providers that include stringent data protection and security requirements. These contracts ensure that your personal information is handled in accordance with our privacy standards.
• Third-Party Audits: We review the security practices of third-party service providers to ensure they meet our requirements for protecting personal data. We may also conduct periodic audits to verify that they are following best practices for data security.
• Minimal Data Sharing: We only share the personal information necessary for third parties to perform their services, and we require them to protect your information with the same care and attention that we provide.
Do We Collect Information From Minors?
We are committed to protecting the privacy and safety of minors. Our services are not directed toward, nor do we knowingly collect personal information from, children under the age of without appropriate parental consent or legal guardian approval.
Age Restrictions
Our services are intended for a general audience and are not specifically targeted at children under the age of 18. We do not knowingly allow individuals under 18 years old to create accounts, provide personal information, or use our services without obtaining prior consent from a parent or legal guardian. If you are under years old, you must not use our services without first obtaining verifiable parental consent.
Parental Consent Requirements
If we become aware that we have inadvertently collected personal information from a user under 18 years of age without verified parental or guardian consent, we will:
• Delete the Data: Promptly delete the child’s personal information from our records unless the law requires us to retain it.
• Notify the Parent/Guardian: Make efforts to inform the child’s parent or guardian about the collection of the data and the actions taken.
How We Handle Children’s Data
We take the following measures to safeguard children’s privacy when we are legally required to collect data from individuals under with parental consent:
• Parental Controls: Parents or legal guardians may be given control over the personal data provided by their child. This may include the ability to review, delete, or request changes to the data.
• Limited Data Collection: In cases where data collection is permitted for users under 18, we aim to collect only the minimum amount of personal information necessary to provide the service.
• Data Use: Any data collected from minors will only be used for the purposes for which it was provided and as explicitly permitted by applicable laws.
• Data Sharing: We do not share data from users under the age of with third parties unless required by law or with verified parental consent.
How to Notify Us About Children’s Data
If you become aware that a child under has provided us with personal information without appropriate consent, please contact us immediately. You can notify us through the contact information provided in this policy. We will take prompt action to remove any personal information relating to the child from our records.
Compliance With the Children’s Online Privacy Protection Act (COPPA)
We adhere to the U.S. Children’s Online Privacy Protection Act (COPPA), which imposes certain requirements on operators of websites or online services directed to children under the age of 1or that knowingly collect personal information from children under 1In compliance with COPPA, we:
• Do not knowingly collect, use, or disclose personal information from children under without parental consent.
• Do not condition participation in a service on the disclosure of more personal information than is reasonably necessary.
International Privacy Standards for Minors
In addition to COPPA, we comply with other international privacy regulations concerning the collection and handling of personal data from minors, including but not limited to:
• The EU General Data Protection Regulation (GDPR), which imposes strict rules for obtaining consent from parents or legal guardians for minors under the age of (or 1depending on local laws).
• Other Applicable Local Laws: We comply with local laws governing the collection and use of personal information from minors in countries where we operate.
Parental Control Over Minors’ Accounts
If your child has created an account without your consent, or if you would like to review or delete the information associated with their account, you can contact us directly. We will verify your status as the child’s parent or legal guardian and take appropriate action to delete or modify the account and any associated personal information.
What Are Your Privacy Rights?
Depending on your location and the applicable privacy laws, you may have specific rights regarding the personal information we collect, use, and process. This section outlines the rights you may be entitled to and how you can exercise them.
Right to Access
You have the right to request access to the personal information we hold about you. This includes:
• Confirmation of whether or not we are processing your personal data.
• A copy of the personal data we have collected and how it is being used.
Right to Rectification
If the information we have about you is incorrect or incomplete, you have the right to request that we correct or update that information. You can update most of your personal details through your account settings, but if you need further assistance, you can contact us directly.
Right to Deletion (Right to Be Forgotten)
In certain circumstances, you have the right to request the deletion of your personal data, such as when:
• The data is no longer necessary for the purposes for which it was collected.
• You withdraw your consent and no other legal basis for processing exists.
• You object to the processing and there are no overriding legitimate grounds for the processing.
• Your data has been unlawfully processed.
Please note that we may retain certain information as required by law or for legitimate business purposes, such as fulfilling legal obligations or resolving disputes.
Right to Restriction of Processing
You may request the restriction of the processing of your personal data in the following situations:
• If you contest the accuracy of the data, we will restrict processing until the accuracy of the data is verified.
• If the processing is unlawful, but you prefer the restriction of data processing rather than deletion.
• If we no longer need your data, but you require it to establish, exercise, or defend legal claims.
• If you have objected to the processing and we are considering whether our legitimate grounds for processing override your rights.
Right to Data Portability
You have the right to request a copy of the personal information you provided to us in a structured, commonly used, and machine-readable format. Where technically feasible, you may also request that we transmit this data directly to another controller of your choice.
Right to Object to Processing
You have the right to object to the processing of your personal information at any time:
• For direct marketing purposes.
• When we are processing your data based on legitimate interests, and you believe such processing infringes on your rights or freedoms.
• For statistical or research purposes where the processing is not necessary for public interest.
We will stop processing your data upon receiving your objection, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing is necessary for the establishment, exercise, or defense of legal claims.
Right to Withdraw Consent
Where we rely on your consent to process personal data, you have the right to withdraw that consent at any time. However, this will not affect the lawfulness of any processing carried out before you withdrew your consent.
How to Exercise Your Rights
To exercise any of the rights mentioned above, you may:
• Submit a Request: Contact us through the methods provided in the “How to Contact Us” section of this policy or through a designated form available in your account settings.
• Verification: To protect your privacy and security, we may need to verify your identity before we process your request. This may involve asking you for certain information or requiring you to log into your account.
• Response Time: We aim to respond to your request within a reasonable timeframe, typically within days. In some cases, it may take longer, depending on the complexity and number of requests.
Non-Discrimination
We will not discriminate against you for exercising your privacy rights. This means we will not:
• Deny you services.
• Charge you different prices or rates for services.
• Provide you with a different level of service.
Exceptions and Limitations
While you have the above rights, certain legal limitations and exceptions may apply depending on your jurisdiction. For example:
• We may retain some information for legitimate business purposes or to comply with legal obligations, even after you request deletion.
• We may decline requests that are unreasonable, repetitive, or that jeopardize the privacy or safety of others.
Additional Rights for EEA, UK, and California Residents
If you are located in the European Economic Area (EEA), United Kingdom (UK), or California, additional rights may apply under the General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA). These rights are outlined in the sections specific to these jurisdictions within this privacy policy.
• EEA/UK Users: You have the right to lodge a complaint with your local data protection authority if you believe our processing of your personal data violates GDPR.
• California Users: Please refer to the “California Privacy Rights” section for more information on your rights under CCPA.
Controls for Do-Not-Track Features
What is Do-Not-Track (DNT)?
Do-Not-Track (DNT) is a privacy preference that you can set in most web browsers to signal websites that you do not want to be tracked. When you activate the DNT signal in your browser, it sends a signal to websites requesting that they do not track your browsing activities across different sites.
How Do We Respond to Do-Not-Track Signals?
Currently, there is no universal standard or regulation governing how websites should respond to Do-Not-Track signals. As a result, like many websites and online services, we do not respond to DNT browser settings or signals.
Managing Your Privacy Preferences
Although we do not respond to Do-Not-Track signals, we provide a variety of tools and options to manage your privacy preferences:
• Cookies and Similar Technologies: You can control or disable cookies and similar technologies through your browser settings. Please note that disabling cookies may affect the functionality and availability of certain services.
• Personalized Advertising: You can opt out of certain personalized advertising practices, as described in our Cookie Notice and advertising controls sections.
• Analytics and Tracking Technologies: You may also manage the collection and use of certain information by third-party analytics and advertising services through their own opt-out tools, such as Google Analytics or industry opt-out tools like the Network Advertising Initiative (NAI) or Digital Advertising Alliance (DAA).
Future Developments in Do-Not-Track
While we currently do not respond to DNT signals, we monitor developments around privacy standards and technologies. Should a consensus or legal requirement emerge regarding Do-Not-Track practices, we will adjust our practices and update this privacy policy to reflect any changes.
Do California Residents Have Specific Privacy Rights?
Overview of California Consumer Privacy Act (CCPA)
The California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), grants California residents specific rights regarding their personal information. These rights provide additional control over how personal information is collected, used, and shared. This section outlines those rights and how you, as a California resident, can exercise them.
California Consumer Rights
If you are a California resident, the CCPA grants you the following rights:
• Right to Know: You have the right to request details about the categories of personal information we have collected, the sources of that information, the purposes for which we use it, and whether we share or sell your personal information. You may also request specific pieces of personal information that we have collected about you.
• Right to Delete: You have the right to request the deletion of personal information we have collected about you, subject to certain exceptions under the law, such as when information is needed to complete a transaction or comply with a legal obligation.
• Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information. We do not sell or share personal information in the traditional sense; however, we may engage in certain practices defined as “sharing” under the CCPA for targeted advertising purposes.
• Right to Correct: If your personal information is inaccurate, you have the right to request that we correct it.
• Right to Limit Use of Sensitive Personal Information: You may limit how your sensitive personal information is used in specific circumstances. However, we do not collect or process sensitive personal information in a way that would invoke this right.
• Right to Non-Discrimination: You have the right to not be discriminated against for exercising any of your CCPA rights. We will not deny services, provide a different level of service, or charge a different price if you choose to exercise your rights.
How to Exercise Your CCPA Rights
If you are a California resident and wish to exercise your rights under the CCPA, you can do so by following these steps:
• Submitting a Request: You can submit a request to access, delete, or correct your personal information by contacting us using the contact details provided at the end of this policy or through our dedicated data request form on our website.
• Verification of Your Identity: To protect your privacy and ensure the security of your data, we will verify your identity before processing any requests. You may be asked to provide specific information to confirm your identity, such as details related to your account or prior interactions with our services.
• Authorized Agents: If you use an authorized agent to exercise your rights, we may request additional documentation or information to verify the agent’s authority, such as proof of signed permission or power of attorney.
Personal Information Categories Collected in the Last Months
Under the CCPA, we are required to disclose the categories of personal information we have collected from California residents in the last months. These may include:
• Identifiers (e.g., name, email address, IP address)
• Commercial Information (e.g., transaction history)
• Internet or Other Network Activity (e.g., browsing history, interactions with websites)
• Geolocation Data (e.g., approximate location based on IP address)
• Inferences drawn from other personal information (e.g., preferences or behavior analysis)
For more detailed information about the types of personal information we collect, please refer to the relevant sections of this privacy policy.
No Sale or Sharing of Personal Information
We do not sell or share the personal information of California residents for monetary consideration. However, we may engage in certain practices that are considered “sharing” for cross-contextual behavioral advertising, as defined by the CCPA. You have the right to opt out of such sharing.
Additional Resources for California Residents
For more information about your rights under the CCPA, you can visit the California Attorney General’s website at: https://oag.ca.gov/privacy/ccpa.
Do Virginia Residents Have Specific Privacy Rights?
Yes, if you are a resident of Virginia, you may be granted specific rights regarding access to and use of your personal information under the Virginia Consumer Data Protection Act (CDPA).
Definition of “Consumer” and “Personal Data” Under the Virginia CDPA:
• Consumer: A natural person who is a resident of the Commonwealth acting only in an individual or household context. It does not include natural persons acting in a commercial or employment context.
• Personal Data: Any information that is linked or reasonably linkable to an identified or identifiable natural person. “Personal Data” does not include de-identified data or publicly available information.
• Sale of Personal Data: The exchange of personal data for monetary consideration.
Rights for Virginia Residents:
Virginia residents have the following rights under the CDPA:
• The processing of your personal data for purposes of targeted advertising,
• The sale of your personal data, and
• Profiling in furtherance of decisions that produce legal or similarly significant effects concerning you.
Exercising Your Rights:
You can exercise your rights by:
• Visiting www.geocaster.co to submit a request,
• Contacting us at privacy@geocaster.co.
Please note that we may need to verify your identity before processing any requests.
Verification Process:
We may request that you provide additional information reasonably necessary to verify your identity when submitting a request. If an authorized agent submits the request on your behalf, we may need additional information to verify their authority to act on your behalf.
Right to Appeal:
If we deny a request, you have the right to appeal our decision. Appeals can be submitted by contacting us at [contact info]. We will respond to the appeal within days of receipt. If your appeal is denied, you may contact the Virginia Attorney General to submit a complaint.
Do We Make Updates to This Notice?
Yes, we will update this privacy notice as necessary to stay compliant with relevant laws and to reflect any changes in our business practices.
When Will We Update?
We may update this privacy notice from time to time. If there are any significant changes, we will notify you by:
• Revising the “last updated” date at the top of this privacy notice, and
• In some cases, providing additional notice, such as sending an email to the email address associated with your account or by posting a prominent notice on our Services.
We encourage you to review this privacy notice regularly to stay informed about our data practices and how we are protecting your personal information.
How Can You Contact Us About This Notice?
If you have any questions or comments about this privacy notice or wish to exercise any of your data protection rights, you can contact us using the following methods:
By Email:
• You can reach us at: privacy@geocaster.com
By Mail:
• Send your inquiries to our physical address:
Geocaster, Inc.
Attn: Privacy Office
12Exploration Lane
Bend, OR 97703
United States
Online Form:
• You can also submit your requests or queries through our online contact form on our website: geocaster.com/contact-us
We will respond to all legitimate requests within a reasonable time frame and may request additional information from you to verify your identity before we can process your request.
How Can You Review, Update, or Delete the Data We Collect From You?
You have the right to review, update, or delete your personal information that we collect from you. To exercise these rights, follow the steps below:
18.1 Reviewing Your Data:
If you would like to review the personal information we hold about you, you can submit a data access request through the following methods:
• Email: Send a request to privacy@geocaster.com with your account details.
• Online Form: Submit a request via the data access request form on our website.
18.2 Updating Your Data:
To update or correct your personal information:
• Account Settings: You can log into your Geocaster account and edit your personal information under the “Account Settings” section.
• Support Request: You can contact us at support@geocaster.com to request an update of any data that is not editable through your account.
18.3 Deleting Your Data:
To request the deletion of your account and the associated data:
• Account Deletion Request: You can initiate a deletion request by contacting us at delete@geocaster.com or by submitting a request through our online deletion form.
• Once we receive your request, we will delete your personal information and deactivate your account within days. Some information may be retained in accordance with legal requirements or for legitimate business purposes (as outlined in Section 9 of this policy).
We are committed to honoring your data protection rights and ensuring that your information is managed in compliance with applicable privacy laws.
Controls for Do-Not-Track Features
Some web browsers and mobile operating systems offer a “Do-Not-Track” (DNT) feature or setting that lets you signal your preference not to have data about your online browsing activities tracked. This feature allows you to control whether websites and online services track your online behavior for purposes such as advertising or data analytics.
How We Handle DNT Signals:
• Currently, we do not respond to Do-Not-Track signals sent by your browser or device. The reason is that no uniform standard has been established for DNT signals across the industry.
• If a standard for online tracking becomes accepted and we are required to comply, we will inform you of changes in our practices.
Opting Out of Tracking:
You can still manage and control tracking mechanisms such as cookies and personalized ads by adjusting your browser or device settings, as described in Section 6 (Cookies and Other Tracking Technologies) of this Privacy Policy.
California Residents’ Privacy Rights
If you are a resident of California, you are entitled to certain rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). These rights give you greater control over the collection and use of your personal information.
Your Rights Under the CCPA and CPRA:
As a California resident, you have the following rights concerning your personal information:
• Right to Know: You have the right to request what personal information we collect, use, disclose, and sell about you.
• Right to Access: You have the right to access specific pieces of personal information we have collected about you.
• Right to Deletion: You can request that we delete personal information we have collected about you, subject to certain exceptions.
• Right to Correct: You have the right to request correction of inaccurate personal information we have collected about you.
• Right to Opt-Out of Sale/Sharing: You have the right to opt-out of the sale or sharing of your personal information.
• Right to Non-Discrimination: You have the right not to be discriminated against for exercising any of your CCPA/CPRA rights.
How to Exercise Your Rights:
You may exercise your California privacy rights by contacting us via email at [privacy@yourcompany.com], or by visiting our Data Request Portal.
• When making a request, we will verify your identity by asking you to provide information matching what we already have on file or by asking for additional proof of identity.
• You may also designate an authorized agent to make a request on your behalf. We may require proof that you have provided the agent with permission to submit the request.
Categories of Personal Information Collected and Disclosed:
In the last months, we have collected the following categories of personal information:
• Identifiers (e.g., name, email, IP address)
• Commercial information (e.g., purchase history)
• Internet or other electronic network activity (e.g., browsing history)
• Geolocation data
For more details on the specific information we collect and disclose, please see Sections 1-4 of this Privacy Policy.
Sale of Personal Information:
We do not sell personal information as defined under the CCPA. However, we may share personal information with service providers or third-party partners, which could be considered a “sale” under California law. If you wish to opt-out of such sharing, please visit our Do Not Sell or Share My Personal Information page or adjust your settings in your account.
Shine the Light Law:
California’s “Shine the Light” law allows users who are California residents to request and obtain a list of personal information we have disclosed to third parties for direct marketing purposes, as well as the names and addresses of those third parties. If you would like to make such a request, please contact us at [privacy@yourcompany.com].
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or how we handle your personal information. When we do, we will update the “Last Updated” date at the top of this policy to reflect the most recent revision.
If the changes we make are significant, we will provide a more prominent notice, such as by emailing you directly or placing a notification on our website or app. We encourage you to periodically review this Privacy Policy to stay informed about how we are protecting your personal information.
Your continued use of the Geocaster Services after we make changes to this Privacy Policy means that you accept those changes.
How to Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out to us through any of the following contact methods:
Email:
You can email our Privacy Team at [privacy@geocaster.com].
Mailing Address:
Geocaster, Inc.
Attn: Privacy Team
1Privacy Lane
Bend, OR, USA
We are committed to responding to all legitimate requests as soon as possible, typically within days. Please note that we may need to verify your identity before we can fully process certain requests, such as access, modification, or deletion of personal data.