If you are a California consumer, you may have additional rights under the California Consumer Protection Act (“CCPA”), as detailed in the California Consumers section.
If you are in the European Union, you may have additional rights under the General Data Protection Regulation (“GDPR”), as detailed in General Data Protection Regulation section.
“Personal information” is any information that identifies, or could be reasonably associated with, an individual and their household (collectively, “individual” or “you”). This may include, for example, your name, contact information, and email-address. It may also include other types of more technical information, but only when this information can identify you as an individual. Information that is aggregated and/or de-identified and cannot be associated with an identifiable individual is not considered to be personal information.
We limit the collection of personal information to what is reasonably required to fulfill the purposes for which it was collected. We collect personal information in a variety of ways detailed in the How we Collect Personal Information section.
Personal information we collect may include:
We collect personal information in a variety of ways, including: directly from you, from other sources, through online technologies (such as when you are interacting with us through our websites) and from third-party social networks.
More specifically, we collect personal information in the following ways:
a. Directly From You
We may collect personal information directly from you by email, over the telephone, through our website contact form or in any other direct manner, for instance when you participate in a survey, interview, or other market research.
b. From Business Partners
Occasionally, we may receive personal information from business partners with whom we provide services. We may also receive your personal information from other sources with your consent or when authorized by law.
c. Through Online Technologies
We may collect certain types of information electronically when you interact with our websites, emails, social media accounts, online advertising, or through the use of our or a third party’s technologies, which include cookies or single pixel gifs or analytics engines. This information helps us understand what actions you take on our websites and allows them to work correctly.
To learn more about the privacy choices available to you, please visit How Can You Change Your Privacy Choices?
The technologies we use include:
You may delete or disable certain of these technologies at any time via your browser. However, if you do so, you may not be able to use some of the features on our websites. To learn more about the privacy choices available to you, please visit How Can You Change Your Privacy Choices?
d. Third-Party Social Networks
We may collect your personal information if you interact with us through our social media pages and accounts (e.g. Twitter, LinkedIn). For instance, we collect the personal information the respective social media platforms allow us to collect from our followers. We may also collect any content you upload to our social network pages (including photos or videos).
We may use all categories of personal information detailed in section 3 to provide you with our services, to manage our business operations and make hiring decisions, conduct market research and as otherwise permitted or required by law.
Learn more about how we use your personal information for: providing services, managing our business, marketing and advertising, and conducting market research and data analytics.
We use your personal information for the following purposes:
a. Providing our Services
We use your personal information in order to provide our services, for instance responding to your inquiries.
b. Managing Our Businesses
We use your personal information to manage our business, for instance:
c. Marketing and Advertising
We use your personal information to market our stores, brands, programs, products, services, special offers, promotions, contests or events, and those of third parties who may sell their products within our stores, that we believe may be of interest to you. We may do this in a variety of ways:
If you no longer wish to receive commercial electronic messages, please let us know by following the unsubscribe directions provided in every commercial electronic message. For more information on managing your marketing preferences, see How Can You Change Your Privacy Choices?
d. Conducting Market Research and Data Analytics
We may use your personal information in order to conduct market research and data analytics by tracking and analyzing current or previously collected information for the following purposes:
We use the personal information we collect to conduct research and analysis that supports our business. In doing so we may generate reports that contain data about our clients’ business. When possible, we will use your information in an aggregated and/or de-identified format. We only disclose such reports to third parties after removing any information that identifies individuals or for which it is reasonably foreseeable in the circumstances that it could be utilized, either alone or with other information, to identify individuals.
The de-identified data that Knightlabs collects may also be shared in aggregate format only with our clients funding the research. We do not share with our clients the Personal Information of our market research survey or interview participants without consent of the individuals involved, subject to the terms of this Policy.
Learn more about how we may share personal information: within Knightlabs, with third party service providers, in the course of a sale or transfer of business or other transaction, for other permitted reasons, and with your consent.
a. Within the Knightlabs Group
b. Service Providers
In the course of providing our services we may share all categories of personal information detailed in section What Personal Information do we Collect? with third party service providers who perform services on our behalf. These service providers help us operate our business, market research, and advertising and marketing. They provide services to us, such as sending emails, data hosting, providing advertisements, market research. We require these service providers to limit their access to and/or use of personal information to what is required to provide their services and require that those third parties adhere to confidentiality as well as security procedures and protections.
c. Sale or Transfer of Business or Other Transaction
We may disclose personal information to a third party in connection with a sale or transfer of business or assets, an amalgamation, reorganization or financing of parts of our business (including the proceedings of insolvency or bankruptcy). In the event the transaction is completed, your personal information will remain protected by applicable privacy laws. In the event the transaction is not completed, we will require the other party not to use or disclose your personal information in any manner whatsoever and to completely delete such information, in compliance with applicable laws.
d. Other Permitted Reasons
Applicable laws may permit or require the use, sharing, or disclosure of personal information without consent in specific circumstances (e.g., when investigating and preventing suspected or actual illegal activities, including fraud, or to assist government and law enforcement agencies). These circumstances include situations when permitted or required by law or when necessary to protect our group of companies, our employees, our customers, or others. If this happens, we will not share more personal information than is reasonably required to fulfill that particular purpose.
e. With Your Consent
Other than the purposes listed above, we may, with your implied or express consent, share or disclose your personal information outside of our group of companies, in accordance with applicable laws.
If you choose not to provide us with certain personal information or if you withdraw your consent, where such withdrawal is available, we may not be able to offer you the programs, products, services, contests, promotions, events or information that you requested or that could be offered to you.
We want you to clearly understand your choices and make informed decisions about your privacy options. There are several options available for you to manage your privacy preferences, including, for example: signing up for market research, contacting us directly, changing your browser settings on your device, and/or, where available, using third party unsubscribe functionality.
Learn more about how to change your privacy choices when you register or by contacting us directly, and using third party unsubscribe functionality.
a. When Register or by Contacting Us Directly
You may opt in to receiving email marketing communications at the time that you register for our services or sign up for market research we are conducting.
You may opt out of:
Please note the following regarding withdrawal of consent or changes in your privacy preferences:
b. Using Third Party Unsubscribe Functionality
We may use third parties (e.g., social media platforms) that use certain technologies to analyze your browsing behaviour as you visit our websites and apps. You can manage your privacy preferences with respect to certain third parties, such as Google, by using the unsubscribe functionality within their platforms. Please note that disabling, blocking or deleting some of these technologies, such as cookies, may cause you to lose the functionality of certain features on our websites and apps.
We also may embed links to other websites, including social media websites, on our websites and apps. For more information about social media plug-in protocols, such as “Like” buttons on Twitter, LinkedIn and their impact on your privacy rights, please visit the appropriate social media help centre (e.g., LinkedIn Help Center at https://www.linkedin.com/help/linkedin).
We take the security of your personal information very seriously and are committed to protecting your privacy by using a combination of administrative, physical, and technical safeguards. Your personal information may be stored in foreign jurisdictions, in which case it will be subject to foreign laws. We will store your personal information in accordance with our retention policies or as otherwise required or permitted by law.
Learn more about how we protect personal information, where we keep personal information and cross-border transfers and how long we keep personal information.
a. How we Protect Personal Information
We employ organizational, physical and technological measures to protect the confidentiality of personal information and to safeguard personal information against loss or theft, as well as unauthorized access, disclosure, copying, use or modification, in light of, among other things, the sensitivity of the information and the purposes for which it is to be used. These safeguards also apply when we dispose of or destroy your personal information. We use reasonable safeguards to ensure that our service providers protect your personal information wherever it is used or stored.
b. How we Keep Personal Information and Cross-border Transfers
We may share personal information within the Knightlabs group of companies, including in Canada, the United States and the European Union. Some of our service providers may also access, process or store your personal information outside of the country where we are located and where you reside. As a result, when your personal information is used or stored in a jurisdiction other than where you are residing, it may be subject to the law of this foreign jurisdiction, including any law permitting or requiring disclosure of the information to the government, government agencies, courts and law enforcement in that jurisdiction.
c. How Long we Keep Personal Information
We will store your personal information in accordance with our retention policies or as otherwise required or permitted by law, after which your personal information will be securely destroyed or anonymized (so the information no longer identifies you).
You may have the right to access and rectify the personal information we hold about you under the law applicable in the jurisdiction where you reside. In this case, upon request, we will provide you with access to your personal information within a reasonable timeframe, in compliance with applicable laws. It is your responsibility to provide accurate, correct and complete information.
You can request access or rectification by contacting the applicable Privacy Office as described in the “Who Can You Contact With Privacy Questions?” section. If you are residing in California, please refer to the California Consumers section for more information on how to exercise your rights.
We do not knowingly request or collect personal information from children under 13 years of age without prior verifiable consent of his or her parent or legal guardian and complying with any other legal requirements. If we become aware that we have unknowingly collected personal information about a child without verifiable parental or legal guardian consent, we will delete this information from our records or take reasonable steps to de-identify the information.
This section describes the rights you have under the CCPA if you are a consumer residing in California.
a. Request to Know about the Personal Information we have Collected and Disclosed
Once every 12 months, you may submit a verifiable request that we disclose the following information to you:
b. Right to Request that we Delete your Personal Information
You may submit a verifiable request that we delete any personal information that we have collected about you, subject to the exceptions provided by the CCPA.
c. Methods for Exercising your Rights and Verification of your Identity
You may exercise these rights using one of the methods detailed in the “Who Can You Contact With Privacy Questions?” section.
In accordance with applicable law, we must take steps to verify your identity before fulfilling any of the above requests. If you maintain an account with us, we may verify your identity through existing authentication practices for the account, such as you username and password. We may also verify your identity by matching two or three data points of identifying information you provide to data points we already maintain about you and have determined to be reliable for the purposes of verification, depending on the nature of your request.
You can authorize an agent to exercise any of these rights on your behalf, but we will take additional measures to verify the legal authority of your agent.
d. Non-Discrimination Right
We will not, because you have exercised any of the rights detailed in this section 12, deny you any goods or services, charge different prices or rates for goods or services, or provide you with a different level or quality of goods or services.
This section describes the rights you have under the GDPR if you are a consumer residing in Europe.
Should you wish to report a complaint or if you feel that Knightlabs has not addressed your concern, you may contact your local European Data Protection Authority: https://edpb.europa.eu/about-edpb/board/members_en.
Under the GDPR, individuals are entitled to the following protection rights:
If you have any questions about how we handle your personal information, please contact us as indicated below. If you have a service, or are participating in market research that is offered by us with a third party, the third party may hold your personal information. If you have any questions or concerns, we will direct you to the appropriate party so that you may make enquiries as to that party’s privacy policies and practices.
Please contact Brian Knight, President, Knightlabs at firstname.lastname@example.org or by mail:
If you are in the U.S.: 12655 W Jefferson Blvd, Los Angeles, CA 90066
If you are in Canada: 263 Adelaide Street West, Toronto, ON M5H 1Y2