Privacy Policy - Nothing But LEDs

This Privacy Policy ("Policy") describes how Nothing But LEDs ("NothingButLEDs," "we," "us," or "our") collects, protects, and uses the personally identifiable information ("Personal Information") you ("User," "you," or "your") provide on the NothingButLEDs.com website (the "Website" or "Service") and its related products and services (collectively, "Services"). It also outlines your choices regarding our use of your Personal Information and how you can access and update this information.  

This Policy is a legally binding agreement between you and NothingButLEDs. By accessing and using the Website and Services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Policy. This Policy does not apply to third-party practices we do not control or individuals we do not employ or manage. 

1. Automatic Collection of Information:

  • No Logs Policy: Our priority is customer data security, and we adhere to a no logs policy.

  • Minimal Data Processing: We process only the minimal user data necessary to maintain the Website and Services.

  • Usage and Traffic Analysis: Automatically collected information is used to identify potential abuse and for statistical information regarding Website and Service usage and traffic. This statistical data is not aggregated in a way that identifies individual users.

2. Collection of Personal Information:

  • No Obligation to Provide: You can access and use the Website and Services without revealing your identity or any personally identifiable information.

  • Optional Information for Features: Certain features may require you to provide Personal Information (e.g., name, email address).

  • Information You Provide: We collect and store information you knowingly provide when you create an account, make a purchase, or fill out online forms.

  • Types of Information Collected: This may include:

    • Personal details (name, country of residence)

    • Contact information (email address, address)

    • Payment information (credit card details, bank details)

  • Sources of Information: We collect information directly from you and may also collect Personal Information from public databases and joint marketing partners.

  • Voluntary Provision: You can choose not to provide Personal Information, but this may limit your access to certain Website features. Contact us if you are unsure about mandatory information.

3. Use and Processing of Collected Information:

We collect and use your Personal Information for various purposes, including:

  • Creating and managing user accounts

  • Fulfilling and managing orders

  • Delivering products or services

  • Improving products and services

  • Responding to inquiries and providing support

  • Requesting user feedback

  • Enhancing user experience

  • Posting customer testimonials

  • Enforcing terms and conditions and policies

  • Protecting against abuse and malicious users

  • Responding to legal requests and preventing harm

  • Running and operating the Website and Services

The processing of your Personal Information depends on your interaction with the Website and Services, your location, and applicable legal bases, such as:

  • Your consent (except where overridden by specific data protection laws)

  • Necessity for the performance of a contract with you

  • Compliance with a legal obligation

  • Tasks carried out in the public interest or under official authority

  • Legitimate interests pursued by us or third parties

Under certain legislations, we may process information until you object (opt-out) without relying on consent. We will clarify the specific legal basis for processing upon request.

4. Billing and Payments:

  • Payment Information: For services requiring payment, we request credit card or other payment account information solely for processing payments.

  • Transaction Data Retention: Your purchase transaction data is stored only as long as necessary to complete the transaction and is then deleted.

  • Secure Payment Gateways: All direct payment gateways adhere to the latest security standards managed by the PCI Security Standards Council.

  • Secure Communication: Sensitive and private data exchange occurs over SSL and is encrypted.

  • PCI Compliance: The Website and Services comply with PCI vulnerability standards.

  • Malware Scans: Regular malware scans are performed for security.

5. Managing Your Information:

  • Deletion of Personal Information: You can delete certain Personal Information we hold about you. The specific information you can delete may change.

  • Retention of Unrevised Information: When you delete Personal Information, we may retain a copy in our records for the necessary duration to comply with obligations and for the purposes outlined in this Policy.

  • Account Deletion: You can delete your Personal Information or permanently delete your account through your account settings or by contacting us.

6. Disclosure of Information:

  • Trusted Third Parties: With your consent, we may share your information with trusted third parties who assist us in operating the Website and Services. This includes affiliates and subsidiaries.

  • No Sharing with Unaffiliated Third Parties: We do not share Personal Information with unaffiliated third parties.

  • Service Provider Limitations: Our service providers are authorized to use or disclose your information only as necessary to perform services on our behalf or comply with legal requirements.

  • Privacy-Consistent Third Parties: We share information only with third parties whose privacy policies align with ours or who agree to abide by our standards.

  • Limited Information Sharing: Third parties receive only the Personal Information necessary to perform their functions and are prohibited from using it for their own marketing or other purposes.

  • Legal Disclosure: We will disclose Personal Information if required or permitted by law (e.g., subpoenas, legal processes) or when we believe disclosure is necessary to protect our rights, safety, investigate fraud, or respond to government requests.

  • Business Transitions: In the event of a merger, acquisition, or sale of assets, your user account and Personal Information may be transferred to the acquiring entity.  

7. Retention of Information:

  • We will retain your Personal Information for the period necessary to comply with our legal obligations, resolve disputes, and enforce our agreements, unless a longer retention period is required or permitted by law.

  • Aggregated Data: We may use aggregated data derived from your Personal Information after you update or delete it, but not in a way that identifies you personally.

  • Data Deletion After Retention: Once the retention period expires, Personal Information will be deleted, and rights to access, erasure, rectification, and data portability cannot be enforced.

8. The Rights of Users:

You have certain rights regarding your Personal Information processed by us, including:

  • (i) Right to Withdraw Consent: You can withdraw your consent to processing where you have previously given it.

  • (ii) Right to Object to Processing: You can object to processing if it is based on legal grounds other than consent.

  • (iii) Right to Access Information: You can learn if your information is being processed, obtain details about the processing, and get a copy of your information.

  • (iv) Right to Rectification: You can verify the accuracy of your information and request updates or corrections.

  • (v) Right to Restrict Processing: Under certain circumstances, you can restrict the processing of your information, in which case we will only store it.

  • (vi) Right to Erasure: Under certain circumstances, you can request the deletion of your Personal Information.

  • (vii) Right to Data Portability: You can receive your information in a structured, commonly used, and machine-readable format and have it transmitted to another controller, where technically feasible and the processing is based on consent, contract, or pre-contractual obligations and carried out by automated means.  

9. California Privacy Rights:

California residents have the right to request information about the Personal Information we share with other businesses for their marketing purposes once per calendar year. This information would include the categories of Personal Information and the names and addresses of those businesses. To obtain this information, please contact us.

10. How to Exercise These Rights:

Any requests to exercise your rights should be directed to NothingButLEDs using the contact details provided in this document. We may ask you to verify your identity before responding to your request. Your request must provide sufficient information to allow us to verify your identity and understand your request. We cannot respond or provide you with Personal Information without verifying your identity and confirming the Personal Information relates to you.

11. Privacy of Children:

We do not knowingly collect Personal Information from children under the age of 18. If you are under 18, please do not submit any Personal Information through the Website and Services. We encourage parents and guardians to monitor their children's online activity and help enforce this Policy by instructing them not to provide Personal Information without permission. If you believe a child under 18 has provided us with Personal Information, please contact us. You must also be old enough to consent to the processing of your Personal Information in your country (parental consent may be required in some countries).

12. Cookies:

The Website and Services use "cookies" to personalize your online experience. Cookies are text files placed on your hard disk by a web page server. They cannot run programs or deliver viruses. Cookies are unique to you and can only be read by a web server in the domain that issued the cookie. We may use cookies for statistical purposes to operate the Website and Services. You can accept or decline cookies in your browser settings. Declining cookies may limit your experience of the Website and Services. For more information about cookies and how to manage them, visit internetcookies.org.

13. Do Not Track Signals:

Some browsers offer "Do Not Track" features. As there is no uniform standard for how browsers communicate these signals, the Website and Services are not yet set up to interpret or respond to them. However, as detailed in this Policy, we limit our collection and use of your Personal Information.

14. Advertisements:

We may allow third-party companies to help us tailor advertising and collect data about user activities on the Website. These companies may use cookies and other tracking methods.

15. Email Marketing:

We offer voluntary electronic newsletters. We are committed to keeping your email address confidential and will not disclose it to third parties except as outlined in the "Use and Processing of Collected Information" section or to utilize third-party providers for sending emails. We maintain email information in accordance with applicable laws. In compliance with the CAN-SPAM Act, all emails will clearly identify the sender and provide contact information. You can unsubscribe from our newsletters or marketing emails via the unsubscribe instructions in the emails or by contacting us. However, you will continue to receive essential transactional emails.

16. Links to Other Resources:

The Website and Services may contain links to third-party resources not owned or controlled by us. We are not responsible for the privacy practices of these resources. We encourage you to be aware when you leave our Website and Services and to read the privacy statements of any resource that collects Personal Information.

17. Information Security:

We secure your information on computer servers in a controlled, secure environment protected from unauthorized access, use, or disclosure. We maintain reasonable administrative, technical, and physical safeguards. However, no data transmission over the Internet or wireless networks can be guaranteed. While we strive to protect your Personal Information, you acknowledge the inherent security and privacy limitations of the Internet and that the security, integrity, and privacy of data exchanged cannot be guaranteed.  

18. Data Breach:

In the event of a security breach of the Website and Services or disclosure of users' Personal Information to unrelated third parties due to external activity (e.g., security attacks, fraud), we reserve the right to take appropriate measures, including investigation, reporting, and cooperation with law enforcement. We will make reasonable efforts to notify affected individuals if there is a reasonable risk of harm or if notification is required by law. Notifications may be posted on the Website, sent via email, or mailed via letter.  

19. Changes and Amendments:

We reserve the right to modify this Policy at any time and will notify you of material changes in how we treat Personal Information. We will revise the "Updated Date" at the bottom of this page and may provide notice through other means (e.g., email). Updated versions of this Policy are effective immediately upon posting unless otherwise specified. Your continued use of the Website and Services after the effective date constitutes your consent to the changes. However, we will not, without your consent, use your Personal Information in a materially different manner than stated at the time of collection.

20. Acceptance of This Policy:

By accessing and using the Website and Services, you acknowledge that you have read this Policy and agree to all its terms and conditions. If you do not agree to abide by this Policy, you are not authorized to access or use the Website and Services.

21. Contacting Us:

If you have any questions about this Policy or wish to contact us regarding your Personal Information and rights, please do so by: