Last Revised: April 14, 2020
PERSONAL INFORMATION COLLECTED THROUGH PLATFORM
“Personal information” is any information which is related to an identified or identifiable natural person. When you sign up for an Account on the Platform, we may collect the following personal information from you: name, profile photo (optional), mailing address, email address, billing address, IP address, any personal information provided by you voluntarily.
NON-PERSONAL OR AGGREGATE INFORMATION WE MAY COLLECT
We may collect data which is anonymous and pseudonymous, including, but not limited to, browser type, browsing history, number of logins, information concerning user interaction with the Platform, page views, language settings, and time/date of login.
We only use information about you to support your experience throughout the Platform or to communicate with you about our Products. In particular, we collect information about you to:
- recognise you as a registered user of the Platform;
verify your identity;
- process your orders;
- respond to your inquiries or requests;
- display your name in forums;
- send you newsletters and information about the Platform and Products;
- conduct market research;
- allow our partners and vendors (including payment processing and email marketing companies) to help us run our business smoothly;
- comply with all applicable laws or if we are required by law or by a court order to do so;
- analyse non-personal or aggregate information for Platform improvement;
- transfer information in connection with the sale or merger or change of control of Fighttips.
We reserve the right to use and disclose non-personal information and anonymous aggregate statistics for any purpose and to any third party at our sole discretion.
SHARING YOUR INFORMATION WITH OUR PARTNERS & VENDORS
From time to time, we will share your personal information with our partners and vendors (including payment processing companies such as Stripe and PayPal and email marketing service MailChimp) to help us provide you with the Products and the Platform. We do not collect your financial information, our partners do it for us. Please be sure to read the privacy policies of any such partner and vendor. Having said that, it is those partners’ and vendors’ responsibility to protect any information you give them and we cannot be held liable for their wrongful use of your personal information.
If you leave any feedback or suggestions (“Feedback”) on the Platform or in an email to us, you hereby assign to Fighttips all rights in the Feedback and agree that Fighttips shall have the right to use such Feedback and related information in any manner it deems appropriate. We will treat any Feedback you provide to us as non-confidential and non-proprietary. You agree that you will not submit to us any information or ideas that you consider to be confidential or proprietary.
A “cookie” is a small piece of data sent along with pages of a website and stored by the user’s web browser on the user’s computer or mobile device. Cookies were designed to be a reliable mechanism for websites to remember certain information (such as items added in a shopping cart) or to record a user’s browsing activity (including clicking particular buttons, logging in, or recording which pages were visited in the past). Cookies are intended to help you access a site faster and more efficiently because they can store information to help you enter a website without having to log in. In effect, cookies tell the website that your browser has been to the site before. It does not need to know your exact identity. Cookies can also be used to remember arbitrary pieces of information that the user previously entered into form fields such as names, addresses, passwords, and credit card numbers.
Browsers may accept or reject cookies automatically but allow you to change these settings. The help menu on most browsers will tell you how to change your browser’s settings and how to have the browser notify you when you receive a new cookie, and how to disable cookies all together. You can also disable or delete cookies you have previously accepted if you wish to.
By using the Platform, you agree that we may install technical or functional cookies. These cookies ensure that certain parts of the Platform work properly and that your user preferences remain known. By placing functional cookies, we make it easier for you to visit our Platform. This way, you do not need to repeatedly enter the same login information when visiting our Platform. We may place these particular technical and functional cookies without your consent.
Cookies we use:
Cookie, Pixel or Plug-in Name
“LearnDash LMS” WordPress plug-in
To track how many times a user logged in and to track a user’s IP address all in order to save and show you your course progress in participating the online courses we offer
“GamiPress” and “BuddyBoss” plug-ins
To track usage of achievements and badges collected over a period of time
FOR HOW LONG DO WE PROCESS THE COLLECTED DATA?
Your personal information is only processed for as long as needed to achieve the purposes which are described above or up until such time where you withdraw your consent for processing it, unless we or any other third party have an overriding interest in keeping your personal information identifiable or when there is a legal or regulatory obligation or a judicial or administrative order that prevents us from de-identifying your personal information.
We may sell, transfer or otherwise share some or all of our assets, including your personal information, in connection with a merger, acquisition, reorganization or sale of assets or in the event of bankruptcy.
The security of your information is very important to us. We apply all reasonable security measures and comply with the industry standards to protect your personal information (including, preventing the loss, misuse, unauthorized access, disclosure, alteration and destruction of your personal information). Notably, access to the Platform’s database with your personal information is held behind administrative logins and managed, controlled and limited to authorised website administrators and support technicians only. Data transmitted between browser and application servers is encrypted using an HTTPS/SSL certificate. We do not collect or store your passwords. We use XSRF against cross-domain attacks. Data is backed up daily. The Platform’s server software is updated regularly to ensure we are running the latest and safest software (where applicable and depending on compatibility). The server’s firewall is configured to prevent unauthorized access, and activity is automatically monitored to detect and ban malicious activity.
Please be aware, however, that despite our efforts, no security measures are impenetrable. No method of transmission over the Internet, or method of electronic storage, is 100% secure. Thus, while we strive to protect your personal information, we cannot ensure and do not warrant the security of any information you transmit to us.
When you use your login credentials on our Platform, you are solely responsible for keeping them confidential. Do not share them with anyone. If you believe your password has been misused, please contact us immediately. You are also responsible for the security of your personal devices and for making sure they are protected against unauthorized access.
WE DO NOT RESPOND TO DO NOT TRACK SIGNALS
Our Platform does not respond to and does not support the Do Not Track (DNT) header request field. If you turn DNT on in your browser, those preferences will not be communicated to us in the HTTP request header, and we will continue tracking your browsing behaviour.
MINORS (CHILDREN) POLICY
We are committed to protecting children’s personal information. We have a minimum age requirement for those who wish to register for an Account or sign up for one of our monthly membership plans. In order to register for an Account and use all features of the Platform, you must meet minimum age requirements. If you are accessing the Platform from:
- the United States, you must be at least 13;
- the European Union and the European Economic Area, you must at least 16;
- any other part of the world, you must at least 18.
Therefore, we do not knowingly collect or solicit personal information from anyone under the minimum age specified above. If you do not meet minimum age requirements, please do not register for an Account, do not send any information about yourself to us or other users of the Platform, including your name, address, telephone number, or email address. In the event that we learn that we have collected personal information from an individual under the minimum age requirements, we will delete that information as quickly as possible.
YOUR RIGHTS UNDER GDPR
The European General Data Protection Regulation (“GDPR”) is a regulation in EU law on data protection and privacy for all natural persons accessing the Internet from the European Union and the European Economic Area, whatever their nationality or place of residence is. It also addresses the transfer of personal data outside the EU and EEA areas. Our collection, processing and protecting of personal information of those who access the Platform from a European country, is compliant with GDPR.
If you are accessing and using the Platform from the European Union and the European Economic Area, you have the following rights with regard to your personal information:
- the right of access (you can request us to provide you verbally or in writing with the type of information we store about you and we have a month to respond to your request);
- the right to rectify (amend/correct) any personal information about you that is inaccurate;
- the right to erasure (some conditions apply, see Data Retention section below);
- the right to restrict processing your personal information, however, if you restrict us from processing a part of your personal information that is essential to our provision of the Platform and Services, you may be asked to terminate your Account and stop using the Platform;
- the right to data portability (the right to data portability allows users of the Platform to obtain and reuse their personal information for their own purposes across different services; you may request us to transmit your personal information directly from our servers to another company’s servers and we will do so if it is technically feasible);
- the right to object (for example, you have an absolute right to stop us from using your personal information for direct marketing – read our opt-out instructions below; you may express your objection verbally or in writing and we have a month to respond to any such objection; we might still continue processing your personal information if we are able to show that we have a compelling reason for doing so);
- the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or that affects you significantly.
If you would like to exercise any of the above rights, please send an email to: email@example.com
We represent and warrant that your personal information is: processed lawfully, fairly and transparently; collected only for specific legitimate purposes; collection of personal data is adequate, relevant and limited to what is necessary; accurate and kept up to date (with your help); stored only as long as is necessary; and is secure and kept in confidence.
Date Retention: Generally, your personal information will be erased when (i) it is no longer needed for its original processing purpose, (ii) you withdraw your consent for us to store by deleting your Account, (iii) there is no preferential justified reason for the processing of your personal information and you object to our processing of your personal information, or (iv) erasure of your personal information is required in order to fulfil a statutory obligation under the EU law or the right of the EU Member States. Therefore, we will make sure your personal information will be erased under all of the above-mentioned circumstances. You may request us to erase your personal information verbally or in writing and we have one (1) month to respond to any such request.
Data Breach Notification: Should there be a personal data breach leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed, we will notify you and appropriate supervisory authority without undue delay and, where feasible, not later than seventy-two (72) hours after having become aware of it.
YOUR RIGHTS UNDER CCPA
The California Consumer Privacy Act (“CCPA”) is a state-wide data privacy law that regulates how businesses all over the world are allowed to handle the personal information of California residents. CCPA provides California residents with five core rights to data privacy and an effective way to control their personal information.
If you are a California resident, you have the following rights with regard to your personal information:
- the right to know what personal information is being collected about you.
- the right to know whether your personal information is sold or disclosed and to whom.
- the right to say no to the sale of personal information (“the right to opt out”).
- the right to access your personal information (under CCPA, a business may provide personal information to a consumer at any time, but shall not be required to provide personal information to a consumer more than twice in a 12-month period);
- the right to equal service and price, even if you exercise your privacy rights.
Additionally, a California consumer has the right to request that a business delete any personal information about the consumer which the business has collected from the consumer. However, a business or a service provider shall not be required to comply with a consumer’s request to delete the consumer’s personal information if it is necessary for the business or service provider to maintain the consumer’s personal information in order to:
- complete the transaction for which the personal information was collected, provide a good or service requested by the consumer, or reasonably anticipated within the context of a business’s ongoing business relationship with the consumer, or otherwise perform a contract between the business and the consumer;
- detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for that activity;
- debug to identify and repair errors that impair existing intended functionality;
- exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law;
- comply with the California Electronic Communications Privacy Act pursuant to Chapter 3.6 (commencing with Section 1546) of Title 12 of Part 2 of the Penal Code;
- engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the businesses’ deletion of the information is likely to render impossible or seriously impair the achievement of such research, if the consumer has provided informed consent;
- enable solely internal uses that are reasonably aligned with the expectations of the consumer based on the consumer’s relationship with the business;
- comply with a legal obligation;
- otherwise use the consumer’s personal information, internally, in a lawful manner that is compatible with the context in which the consumer provided the information.
Conflict resolution under CCPA: Prior to initiating any action against a business for statutory damages on an individual or class-wide basis, a California consumer shall provide a business 30 days’ written notice identifying the specific provisions of this title the consumer alleges have been or are being violated. In the event a cure is possible, if within the 30 days the business actually cures the noticed violation and provides the consumer an express written statement that the violations have been cured and that no further violations shall occur, no action for individual statutory damages or class-wide statutory damages may be initiated against the business. Contact us should you need to exercise any of your rights under CCPA.
HOW TO LEARN WHAT INFORMATION WE STORE ABOUT YOU
You have a right to learn what personal information about you is kept by us by submitting a request to our email address firstname.lastname@example.org. You can modify or remove information about you that is stored by us by logging into your Account and changing your information from your Account settings or by writing us to the same email address.
PO Box 244
565 Pier Avenue, Hermosa Beach, CA 90254