Privacy Policies
ENOSIX PRIVACY POLICY
YOUR CALIFORNIA RIGHTS
The California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act (“CPRA”), provides California consumers specific rights concerning their personal information, including, the right to request that we disclose what personal information we collect, use, disclose, and sell. This Section describes your rights and how you may exercise those rights as well as describes how we and third parties handle your personal information. This California privacy notice is for residents of California and supplements the information contained in the Enosix Privacy Policy located here and applies solely to all visitors, users, and others who reside in the state of California.
Information We Collect
We collect information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer (“personal information”). In particular, we have collected the following categories of personal information from consumers within the last twelve (12) months:
| Category | Examples | Collected |
| A. Identifiers. | A real name, alias, postal address, unique personal identifier, online identifier Internet Protocol address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers | YES |
| B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). | A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories. | YES |
| C. Protected classification characteristics under California or federal law. | Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information). | NO |
| D. Commercial information. | Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. | NO |
| E. Biometric information. | Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. | NO |
| F. Internet or other similar network activity. | Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement. | YES |
| G. Geolocation data. | Physical location or movements. | YES |
| H. Sensory data. | Audio, electronic, visual, thermal, olfactory, or similar information. | NO |
| I. Professional or employment-related information. | Current or past job history or performance evaluations. | YES |
| J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). | Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. | NO |
| K. Inferences drawn from other personal information. | Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. | YES |
We may obtain the categories of personal information listed above from the following categories of sources:
- Directly from you or your agent.
- Indirectly from you or your agent. For example, through cookies and other automated technologies.
- Directly and indirectly from activity on our websites.
- We may use or disclose the personal information we collect for one or more of the following business purposes:
- Provide you with functionality of the Site;
- Administer and manage the Company;
- Provide client service and/or marketing products or services;
- Conduct research and perform analysis to measure, maintain, protect, develop, and improve our products or services;
- Administer, enhance, and communicate with you regarding the Company’s events, marketing, and advertising; and/or
- Make communications necessary to notify you regarding order confirmations, products, services, market research, requests, marketing, security, privacy, and administrative issues.
- To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
- As described to you when collecting your personal information or as otherwise set forth in the CPRA.
- To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred.
In the preceding 12 months, we have disclosed and shared personal information to third parties for a commercial or business purpose, as authorized under applicable law. We do not sell your personal information. In the preceding twelve (12) months, we have disclosed and shared the following categories of personal information for a business purpose:
- Category A: Identifiers.
- Category B: California Customer Records personal information categories.
- Category C: Protected classification characteristics.
- Category D: Commercial information.
- Category F: Internet or other similar network activity.
- Category K: Inferences drawn from other personal information.
We disclose and share your personal information for a business purpose to the following categories of third parties:
- Vendors, consultants, and suppliers.
- Third parties to whom you or your agents authorize us to disclose your personal information in connection with products or services we provide to you.
The Right to Know / Confirm & Right to Access
You have the right to know/confirm whether we are processing your personal data and access any personal data we have processed, including:
- The categories of personal information we have collected about you
- The categories of sources from which the personal information was collected
- Our business or commercial purpose for collecting, selling, or sharing personal information
- The categories of third parties with whom we sell or share personal information, if any; and
- The specific pieces of information we have collected about you
You also have the right to obtain a copy of the personal information you have provided to us in a portable, readily usable format that can be easily transferred to a third party.
Please note that we are not required to:
- Retain any personal information about you that was collected for a single one-time transaction if, in the ordinary course of business, that information about you is not retained;
- Re-identify, de-aggregate, or otherwise link any data that, in the ordinary course of business, is not maintained in a manner that would be considered personal information; or
- Provide the personal information to you more than twice in a 12-month period.
The Right to Delete or Correct
You have the right to delete or correct the information we have retained about you. Subject to certain exceptions, on receipt of a verifiable request from you, we will:
- Delete your personal information from our records;
- Direct any service providers to delete your personal information from their records; and
- Correct any inaccuracies in your personal information.
Your request to know or delete may be denied for any reason allowable under applicable state privacy law. For example, we may deny your request to delete if the personal information is necessary for us or a service provider to complete the transaction for which we collected the personal information, comply with a legal obligation, or make other internal or lawful uses of that information that are compatible with the context in which you provided.
The Right to Opt-Out
You have the right to opt-out of the following uses of your personal information:
- Targeted (behavioral) advertising, or sharing of personal data, as described in the Privacy Policy at “Third-Party Use of Cookies and Other Tracking Technologies”
Sale of personal data, as described in the Privacy Policy “Disclosure of Your Information.”
The Right to Non-Discrimination
You have the right to not be discriminated against by us because you exercised any of your rights under the applicable state privacy law. This means we cannot, among other things:
- Deny goods or services to you;
- Charge different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties;
- Provide a different level or quality of goods or services to you; or
- Suggest that you will receive a different price or rate for goods or services or a different level or quality of goods or services.
However, we may offer you certain financial incentives permitted by the CPRA that can result in different prices, rates, or quality levels. Any CPRA-permitted financial incentive we offer will reasonably relate to your personal information’s value and will be described to you in writing. Participation in a financial incentive program requires your prior opt-in consent, which you may revoke at any time.
Consumers Under the Age of 18
If you are 16 years of age or older, you have the right to opt-out from the sale or sharing of your personal information. We do not sell or share the personal information of consumers we actually know are less than 16 years of age, unless we receive affirmative authorization (the “right to opt-in”) from either the consumer who is between 13 and less than 16 years of age, or the parent or guardian of a consumer less than 13 years of age. Consumers who opt-in to personal information sales may opt-out of future sales at any time.
The Right to Limit Use of Sensitive Data/strong>
You have the right to limit our use of your Sensitive Data to only purposes necessary to perform the service or provide the goods that you request from use, with the exception of the following:
- Collection or processing of sensitive personal data for security purposes;
- Maintaining/servicing accounts; and
- Undertaking activities to verify/maintain the quality of a service
How to Exercise Your Rights
You may submit a request to know, delete or correct, free of charge, by emailing us at privacy@enosix.com or through online through our interactive webform (accessible by clicking the link in the footer of this page and following the instructions). Note that for requests to delete, we will require you to separately confirm that you want your personal information deleted. To verify your identity, we require you provide your name and email or your email, an order number for your most recent purchase, your billing or shipping address for your most recent order, and/or the products purchased in your most recent order. For some requests, we may also require you to sign a declaration under penalty of perjury that you are the consumer whose personal information is the subject of the request. Once submitted, you will receive an email within 10 days that we will use to verify your identity and provide confirmation of your request. We will respond to your request to know or request to delete within 45 days from the day we receive the request. If necessary, we may extend the time period to a maximum total of 90 days from the day we receive the request. In such case, you will receive an email notifying you of the extension and explaining the reason for the extension. Any disclosure in response to a request to know will cover the 12-month period preceding the business’s receipt of the request and will be delivered in a readily useable format, by mail or electronically at the consumer’s option.
Your request to know, correct or request to delete may be denied for any reason allowable under the CPRA. For example, we may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:
- Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
- Comply with a legal obligation.
- Make other internal and lawful uses of that information that are compatible with the context in which you provided it or any other purpose permitted by the CPRA.
- Similarly, we may deny requests:
- For specific pieces of personal information if the disclosure creates a substantial, articulable, and unreasonable risk to the security of that personal information, your account with us, or the security of our systems or networks.
- To access or delete information that is de-identified.
- If your identity cannot be verified to a degree of certainty required by the CPRA.
- From an authorized agent that does not submit proof that they have been authorized by the consumer to act on the consumer’s behalf
- For specific pieces of personal information if the disclosure creates a substantial, articulable, and unreasonable risk to the security of that personal information, your account with us, or the security of our systems or networks.
To exercise the right to opt-out, you may submit a request through the interactive webform (accessible by clicking the link in the footer of the page and following the instructions) or by emailing us at privacy@enosix.com. We will act upon your request no later than 15 days from the date we received the request. Note that we may deny a request to opt-out if we have a good-faith, reasonable, and documented belief that the request is fraudulent. Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize personal information sales. However, you may change your mind and opt back in to personal information sales at any time by clicking the link in the footer of this page and following the instructions.
If you are concerned about our response or would like to correct the information provided, you may contact our Privacy Officer at privacy@enosix.com.