Updated on August 5, 2022
In addition to the terms we defined above, other terms in this document have the following meanings:
We understand that you trust us when you use our Service, Software, or Websites and we want you to understand how we handle your Personal Information. We take important steps to protect your Personal Information:
We will retain Personal Information while we have an ongoing legitimate business interest, contractual obligation, or legal requirement to do so. If we have a legal obligation to retain Personal Information we will do so for the period of time required by law. For Personal Information which is required for the operation of our Service, we retain it for the period of time it is required under contract to our Clients or our legitimate business interest in maintaining our Service. When we no longer have a legal or contractual obligation or legitimate business need to retain Personal Information we will delete it from our system and the system of any sub-processors we use. Information which is deleted may still be stored for a period of time in backup files or systems but this information will be isolated from further processing until the backup files in which the information is stored are no longer required.
We do not make available to the general public any Personal Information except that we may use the company names of our Clients in public lists of our users unless we are prevented by law or contract from doing so. You may request in writing (which may be by email) that we do not use your company name publicly and we will comply with any such requests. We may use the Personal Information we collect for a range of reasons:
Before we use your Personal Information to contact you for marketing purposes, we will obtain your consent to do so. We may ask for your consent when you subscribe to receive marketing emails from us, create an account or subscription to our Service, or purchase a product from us. From time to time, we may ask you to confirm your consent to continue to receive marketing messages from us. In each marketing email we send to you we will include a link which you can use to unsubscribe from future marketing messages. You may also contact us by the means described in the “Questions and Contacts” section below to opt out from further marketing messages. If you are a Client you will still receive messages from us which are not marketing or promotional in nature even if you opt out of marketing emails. These may include messages about your account, billing, service alerts, technical support, or other transactional messages which are necessary to maintain your account with us. Unless you cancel your account with us, you can not opt out of these messages.
We may use user submitted content such as ratings, reviews, feedback (“User Content”) in a number of different ways, including displaying it on Websites, reformatting it, incorporating it into other works, creating derivative works from it, promoting it, or distributing it. Accordingly, you grant us permission to use your User Content for any purpose. You also grant the Website users the right to access User Content in connection with their use of the Website. You assume all risks associated with User Content, including reliance on its accuracy, completeness or usefulness, or any disclosure by you of information in your User Content that makes you personally identifiable. You may not imply that User Content is in any way sponsored or endorsed by us. We cannot and do not review all User Content feedback, nor do we have any control over the same. Under no circumstances shall we be held responsible or liable for any claims or damages arising out of any reviews or feedback. We may remove, edit or reinstate User Content at any time without notice. You may request removal of User Content which you have submitted or which contains your Personal Information by contacting us using the means described in the “Questions and Contacts” section below.
Clients can manage much of the Personal Information that they provide to us from within the Refactored Group or Automatic FFL Services. If you have provided consent to us to collect or process certain information you can withdraw consent at any time by contacting us. If you withdraw your consent this action will not affect the lawfulness of any collection or processing that we conducted prior to withdrawal of consent and it will not affect the lawfulness of any processing we perform on lawful grounds other than consent. If you are a Client and receive a data protection rights request from a Customer you can submit a request to us on behalf of your Customer to exercise these rights. If we receive a data protection request from a Customer, we will direct the Customer to contact the Client who provided the Customer’s information to us. You can request that we delete your Personal Information from our system and the systems of our sub-processors. We are required by law to maintain certain records which may contain Personal Information for specified periods of time and will inform you if this requirement applies to your data in our response to your request. If you wish to exercise any of the rights described in this section or request additional information about your rights or the Personal Information which we collect, process, or store you can contact us using the information described in the “Questions and Contacts” section below. We will respond to all data protection requests we receive. We may not “discriminate” against you for exercising these privacy rights. We cannot deny goods or services, charge different prices, or provide a different quality of goods or services to those consumers. There are some exceptions, however, on the service levels that can be provided.
If Refactored Group or any of our sub-processors experiences a security incident which may have exposed Personal Information we will notify you as soon as reasonably possible and take immediate steps to identify, remediate, and prevent future occurrences of any such incidents. We will also fulfill our obligations under applicable laws and regulations to notify appropriate authorities. If you are a Client and you or your Customers are effected by a security incident, we will work with you to take appropriate steps including notifying Customers who may be effected as well as any additional authorities as may be appropriate or required under law.
We want you to understand how we protect your privacy. If you have any questions about this notice, please contact us. For certain requests we may require that you contact us in writing by email or certified mail if required by law or our internal policies. We will inform you of this requirement if it applies to your request in our response. We may ask you to verify your identity in order to ensure your privacy and help us respond appropriately. We maintain a list of sub-processors and information about the services they provide to us which you may request at any time. When you write, include your name, address, and account user name or email address. Send questions or requests by email to firstname.lastname@example.org, contact us by phone at +1 (469) 828-6801, or by mail at Refactored Group, ATTN: Privacy Request Processing, PO Box 560634, The Colony, Texas 75056, USA. We are required to respond to all requests within 45 days, free of charge to you.