Last modified January 1, 2020
This does not apply to the Personal Information of our employees, independent contractors and job applicants when such information is collected and used by us when they act in those capacities. We make disclosures about their Personal Information in other documents.
Personal Information is information that identifies, relates to, describes, is reasonably capable of being associated with,or could reasonably be linked, directly or indirectly, withyou or your household. Personal Information does not include aggregated or de-identified information that cannot personally identify you, your accounts or devices.
We receive or collect Personal Information from you when you use the Service, contact or interact with us, sign up for our newsletter or other mailing list, and voluntarily provide us with your feedback, comments and other content in connection with using the Service.
The following list describes the general categories of Personal Information We have collected or otherwise received in the past 12 months, along with examples of some of the types of information within these categories that may constitute Personal Information and which We may have collected or otherwise received. It also describes categories of such information We may continue to collect and our uses of it. These examples are not intended to be comprehensive, and there may be overlap between categories.
Contact information and other identifiers, such as name, contact information including email address, telephone number, and other similar identifiers.
Unique device and online identifiers, such as IP address, device IDs, and other similar identifiers.
Demographic and association-related information, such as age, date of birth, gender, residency information, information on other characteristics of protected classes individuals may provide to us, information required for background checks on job applicants once an offer of employment has been extended and on independent contractors, family member information, authorized signatories, employee beneficiary information, and information on parties associated with an account. We collect much of this information in the HR context.
Internet/Electronic network activity, such as your device’s Internet Protocol address, the domain name of your Internet service provider, your location, your mobile device information (e.g. device model and operating system version), your page visits, information about connections with Facebook, Twitter, and Pinterest pages you access from our Services, and your social sharing activity. We also collect aggregated information that, on its own, cannot be used to specifically identify you.
Audio information, such as voice call recordings from our call center.
Additional Personal Information We collect is described in the Analytics and Cookies sections below.
We use the information that We collect for several purposes, including:
Performance of a contract
The use of your Personal Information may be necessary to perform the agreement you have with us to provide products and services. For example, to complete your purchase, to register and maintain your account, to help with delivery issues, to handle returns, and to respond to your requests.
We may use your Personal Information for our legitimate interests. For example, We rely on our legitimate interest to analyze and improve our Services and the content on our website, to send you notifications about our Services, or to use your Personal Information for administrative, fraud detection, or legal purposes.
Prior to accessing this site and providing your Personal Data, you provided your informed consent to the collection and use of said Personal Data. You are free to withdraw your consent at any time, subject to the “your Choices Regarding your Information” section below and the preceding Legal Bases for Using Personal Information in this Section.
B. Business Changes. If We become involved in a merger, acquisition, sale of assets, joint venture, securities offering, bankruptcy, reorganization, liquidation, dissolution, or other transaction or if the ownership of all or substantially all of our business otherwise changes, We may transfer your information to a third party or parties in connection therewith.
D. Investigations and Law. We may disclose information about you to third parties if We believe that such disclosure is necessary to:
Comply with the law or guidance and cooperate with government or law enforcement officials or private parties;
Investigate, prevent or take action regarding suspected illegal activities, suspected fraud, the rights, reputation, safety, and property of us, users or others, or violations of our policies or other agreements with us;
Respond to claims and legal process (for example, subpoenas); and/or protect against legal liability.
E. Aggregated Information. We may share aggregated information relating to users of the Service with affiliated or unaffiliated third parties. This aggregated information does not contain Personal Information about any user.
G. Cookies and Other Tracking Technologies
Cookies are small files that are transferred to and stored on your computer through your Web browser (if you allow it) that enable the website’s or service provider’s system to recognize your browser and capture and remember certain information. You can instruct your browser to stop accepting cookies. But if you do not accept cookies, you may not be able to use all portions of all functionality of the Service.
Flash cookies (also known as local shared objects) are data files that can be created on your computer by the websites you visit and are a way for websites to store information for later use. Flash cookies are stored in different parts of your computer from ordinary browser cookies. You can disable the storage of flash cookies. For additional information about managing and disabling flash cookies, please visit our website.
Web beacons are small strings of code that provide a method for delivering a graphic image on a Web page or in an email message for the purpose of transferring data. You can disable the ability of Web beacons to capture information by blocking cookies.
We implement and maintain reasonable security appropriate to the nature of the Personal Information that We collect, use, retain, transfer or otherwise process. Our reasonable security program is implemented and maintained in accordance with applicable law and relevant standards However, there is no perfect security, and reasonable security is a process that involves risk management rather than risk elimination. While We are committed to developing, implementing, maintaining, monitoring and updating a reasonable information security program, no such program can be perfect; in other words, all risk cannot reasonably be eliminated. Data security incidents and breaches can occur due to vulnerabilities, criminal exploits or other factors that cannot reasonably be prevented. Accordingly, while our reasonable security program is designed to manage data security risks and thus help prevent data security incidents and breaches, it cannot be assumed that the occurrence of any given incident or breach results from our failure to implement and maintain reasonable security.
WE ASSUME NO LIABILITY FOR DISCLOSURE OF YOUR INFORMATION DUE TO TRANSMISSION ERRORS, THIRD PARTY ACCESS, OR CAUSES BEYOND OUR CONTROL.
Any information collected through the Service is stored and processed in the United States. If you use our Service outside of the United States, you consent to have your data transferred to the United States.
We will retain your information for as long as you use the Service and for a reasonable time thereafter. Sundance is a regulated entity and must retain order records under United States Food and Drug Administration regulations. We may maintain anonymized or aggregated data, including usage data, for analytics purposes. We may retain and use your information as necessary to comply with our legal obligations, resolve disputes, and/or for the period required by laws in applicable jurisdictions. Please note that some or all of the information We have collected may be required for the Service to function properly. Our current policy is to maintain order records for two (2) years to allow us to protect and meet our legal and policy requirements, rights, and responsibilities.
You have choices regarding the use of information by the Service. We respect your privacy rights and provide you with reasonable access to the Personal Data that you may have provided through your use of the Services. You may update, correct, or delete your information and preferences at any time by emailing us at [email protected] Please note that while any changes you make will be reflected in active user databases instantly or within a reasonable period of time, We may retain all information you submit for backups, archiving, prevention of fraud and abuse, analytics, satisfaction of legal obligations, or where We otherwise reasonably believe that We have a legitimate reason to do so.
You may decline to share certain Personal Data with us, in which case We may not be able to provide to you some of the features and functionality of the Service.
EU Data Subjects may, at any time, object to the processing of your Personal Data, on legitimate grounds, except if otherwise permitted by applicable law, or lodge a complaint with a supervisory authority.
If you are a California resident, you may have certain rights with respect to Personal Information We collect about you, as set forth in the California Consumer Privacy Act of 2018 (“CCPA”). The following sections describe those rights in greater detail and how California residents can exercise them.
Your Right To Request Disclosure of Information We Collect and Share About You
We are committed to ensuring that you know what Personal Information We collect. To that end, you can request the following information from us, with respect to the Personal Information that We have collected about you in the 12 months prior to our receipt of your request:
You can also submit a request to us for the categories of Personal Information that We have disclosed for a business purpose.
Your Right To Request Deletion of Personal Information We Have Collected From You
Upon your request, We will delete the Personal Information We have collected about you, except for situations where the CCPA authorizes us to retain specific information, including when it is necessary for us to provide you with a product or service that you requested; perform a contract We entered into with you; maintain the functionality or security of our systems; or comply with or exercise rights provided by the law. The law also permits us to retain specific information for our exclusively internal use, but only in ways that are compatible with the context in which you provided the information to us or that are reasonably aligned with your expectations based on your relationship with us.
California Shine the Light
California Civil Code Section 1798.83, also known as the “Shine the Light” law, permits California residents to annually request, free of charge, information about the Personal Information (if any) disclosed to third parties for direct marketing purposes in the preceding calendar year. We do not share Personal Information with third parties for their own marketing purposes.
Exercising Your Rights and How We Will Respond
For requests for access or deletion, We will first acknowledge receipt of your request within 10 days of receipt of your request. We provide a substantive response to your request as soon as We can, generally within 45 days from when We receive your request, although We may be allowed to take longer to process your request in certain jurisdictions or under certain circumstances. If We expect your request is going to take us longer than normal to fulfill, We will let you know.
We usually act on requests and provide information free of charge, but We may charge a reasonable fee to cover our administrative costs of providing the information in certain situations.
In some cases, the law may allow us to refuse to act on certain requests. When this is the case, We will endeavor to provide you with an explanation as to why.
Verification of Identity – Access or Deletion Requests
If We are unable to verify your identity with the degree of certainty required based on the type of information or action you are requesting, We will not be able to respond to the request. We will notify you to explain the basis of the denial.
You may designate an agent to submit requests on your behalf. The agent can be a natural person or a business entity that is registered with the California Secretary of State.
If you would like to designate an agent to act on your behalf, you and the agent will need to comply with our agent verification process. You will be required to verify your identity by providing us with certain Personal Information as described above, depending on whether you hold an account with us or not and the nature of the information your require, which We will endeavor to match the information submitted to information We maintain about you. Additionally, We will require that you provide us with written confirmation that you have authorized the agent to act on your behalf, and the scope of that authorization. The agent will be required to provide us with proof of the agency relationship, which may be a declaration attesting to the agent’s identity and authorization by you to act on their behalf, signed under penalty of perjury. If the agent is a business entity, it will also need to submit evidence that it is registered and in good standing with the California Secretary of State. Information to identify and verify your agent can be submitted through the same mechanism and at the same time that you submit information to verify your identity.
Please note that this subsection does not apply when an agent is authorized to act on your behalf pursuant to a valid power of attorney. Any such requests will be processed in accordance with California law pertaining to powers of attorney.
Requests for Household Information
There may be some types of Personal Information that can be associated with a household (a group of people living together in a single dwelling). Requests for access or deletion of household Personal Information must be made by each member of the household. We will verify each member of the household using the verification criteria explained above.
If We are unable to verify the identity of each household member with the degree of certainty required, We will not be able to respond to the request. We will notify you to explain the basis of our denial.
Our Commitment to Honoring Your Rights
EU Residents Rights to Access, Transfer or Delete Personal Information, or Withdraw Consent to Collection or Processing
Changing your Information – To change your information, please contact us at [email protected].
Your browser or device may offer you a “Do Not Track” option, which allows you to signal to operators of websites, web applications, mobile applications and services (including behavioral advertising services) that you do not wish such operators to track certain of your online activities over time and/or across different websites or applications. Our Service does not support Do Not Track requests at this time.
Our Service is not intended for children under 13 years of age. We do not knowingly collect or sell Personal Information from individuals under age 13. If you are under the age of 13, please do not submit any Personal Information through the Service. If you have reason to believe that We may have accidentally received Personal Information from an individual under age 13, please contact us immediately at [email protected]..
To make accessibility-related requests or report barriers, please contact us at 1800 544 1925 or [email protected]..