Privacy policy
Effective date: 16 March 2023
In this Privacy Policy (“Policy”), we describe how mmjcardonline.com (“MMJ Card Online”) collects, uses, and discloses information that we obtain about visitors to our website mmjcardonline.com (the “Website”) and the services available through our Website (collectively, the “Services”).
By accessing the Website or utilizing any of our Services, you are acknowledging and consenting to the manner in which your personal information will be handled as delineated in this Policy. Any questions or disagreements concerning privacy that may arise during your use of our Website or Services are subject to both this Policy and our Terms of Use, which include specific limitations on damages and dispute resolution. It should be noted that the MMJ Card Online Terms of Use are an integral part of this Policy and are incorporated herein by reference.
As of the date indicated above, this Policy is up-to-date. However, please note that we may modify this Policy periodically, so it is recommended that you check back regularly. Any alterations to this Policy will be posted on our Website and Application. In the event that we make significant changes to this Policy that could impact our practices regarding any personal information previously collected from you, we will make every effort to notify you in advance of the change. This may include highlighting the modification on our Website or contacting you via email.
1. The Information We Collect
Information about you is gathered through various means, including direct collection from you and automatic collection through your use of our Website or Services. The data collected may include your first name, last surname, email address and location.
Information pertaining to your use of our Website is gathered automatically through the employment of cookies, web beacons, and similar technologies. As allowed by the applicable laws, we merge this data with additional information that we have collected about you, which includes your personal details. Further details about this process can be found in the section titled “Cookies and Other Tracking Mechanisms” located below.
Website:
- your operating system;
- web pages you view on the Website;
- links you click on the Website;
2. How We Use Your Information
We use your information, including your personal information, for the following purposes:
- To provide our Services.
- To send you email marketing about our products and services.
- To send you news and newsletters.
- To send you email marketing about products and services of our affiliated entities.
- To assist us in advertising on third-party websites, mobile apps, and other online services, and to evaluate the success of our advertising campaigns through third-party channels (including our online targeted advertising and offline promotional campaigns).
- To better understand how users access and use our Services, both on an aggregated and individualized basis. For example, we will evaluate which features of our Website are more (or least) used by users, and we will use this information.
- To conduct internal analysis of outreach and marketing efforts, as well as for market research or member satisfaction purposes.
- To comply with legal obligations, as part of our general business operations, and for other business administration purposes.
- Where we believe it necessary to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person or violations of our Terms of Use or this Policy.
3. How We Share Your Information
We may share your information, including personal information, as follows:
- Service Providers. We may enlist the assistance of third-party service providers to deliver and facilitate some of the services that are offered through our Website. Additionally, we may depend on these providers to carry out specific tasks on our behalf in relation to your use of our Website and Services, which includes but is not limited to activities such as communication and hosting services, technical and customer support, network security, payment processing, quality assurance testing, marketing of the Service, and other similar functions. In order to enable them to perform their duties or fulfill your requests, we may share information about you or that has been collected from you with these third-party providers. These providers may also share information that they have gathered about you with us and other affiliated companies under common control. On some of our web pages, we may use framing techniques to deliver content from our third-party providers while maintaining the Service’s appearance and user interface. Please be aware that any data you provide in such cases will be transmitted to the third-party provider.
Affiliates. We disclose the information we collect from you to our affiliates or subsidiaries.
We also disclose information in the following circumstances:
- Business Transfers. If (i) we or our affiliates are or may be acquired by, merged with, or invested in by another company, or (ii) if any of our assets are or may be transferred to another company, whether as part of a bankruptcy or insolvency proceeding or otherwise, we may transfer the information we have collected from you to the other company. As part of the business transfer process, we may share certain of your personal information with lenders, auditors, and third-party advisors, including attorneys and consultants.
- In Response to the Legal Process. We disclose your information to comply with the law, a judicial proceeding, court order, or other legal process, such as in response to a court order or a subpoena.
- To Protect Us and Others. We disclose your information when we believe it is appropriate to do so to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, violations of our Terms of Use or this Policy, or as evidence in litigation in which we are involved.
- Aggregate and De-Identified Information. We share aggregate, anonymized, or de-identified information about users with third parties for marketing, advertising, research or similar purposes.
4. Our Use of Cookies and Other Tracking Mechanisms
To monitor your utilization of our Website and Services, both we and our service providers make use of cookies and other tracking methods. This data may be paired with other personal information that has been obtained from you (and our service providers may accomplish this on our behalf).
Cookies. Cookies are a type of alphanumeric code that we transfer to your device’s hard drive via your web browser for the purpose of maintaining records. These cookies serve a variety of functions, including streamlining your navigation of our Website and Services, facilitating a quicker log-in process, and allowing us to track your actions on our Website and Service. There are two categories of cookies: session cookies and persistent cookies.
- Session Cookies. Session cookies exist only during an online session. They disappear from your device when you close your browser or turn off your device. We use session cookies to allow our systems to uniquely identify you during a session or while you are logged into the Website and Services. This allows us to process your online transactions and requests and verify your identity, after you have logged in, as you move through our Website and Services.
- Persistent Cookies. Persistent cookies remain on your device after you have closed your browser or turned off your device. We use persistent cookies to track aggregate and statistical information about user activity.
Use of cookies by MMJ Card Online. We use following third party analytical and advertising cookies and technologies on our website:
| Service | Type of cookie | Opt-out |
|---|---|---|
| Streamable. Privacy policy is available at https://privacy.streamable.com/ | Analytics and Statistics | Please refer to https://privacy.streamable.com/ |
| Google Analytics. Privacy policy is available at https://policies.google.com/technologies/partner-sites | Analytics and Statistics | https://tools.google.com/dlpage/gaoptout |
| Hotjar. Privacy policy is available at https://www.hotjar.com/legal/policies/privacy/ | Analytics and Statistics | https://www.hotjar.com/policies/do-not-track/ |
We use different advertising provided by third party advertising companies. The Network Advertising Initiative tools may provide you with more information companies that we may use. Please use opt-out tool provided by Network Advertising Initiative in order to opt-out from analytics and ads targeting sharing of personal information https://optout.networkadvertising.org
Disabling Cookies. Most web browsers automatically accept cookies, but if you prefer, you can edit your browser options to block them in the future. The Help portion of the toolbar on most browsers will tell you how to prevent your computer from accepting new cookies, how to have the browser notify you when you receive a new cookie, or how to disable cookies altogether. Visitors to our Website and Services who disable cookies will be able to browse certain areas of the Website, but some features may not function. You may also use your in-browser settings in order to opt-out from cookies used on our website:
- https://support.google.com/chrome/answer/95647?hl=en&co=GENIE.Platform%3DDesktop – for Google Chrome
- https://support.mozilla.org/en-US/kb/block-websites-storing-cookies-site-data-firefox – for Mozilla Firefox
- https://support.apple.com/ru-ru/guide/safari/ibrw850f6c51/mac – for Safari
- https://blogs.opera.com/news/2015/08/how-to-manage-cookies-in-opera/ – for Opera
5. Third Party Analytics.
We use automated devices and applications, such Google Analytics, to evaluate usage of our Website. We also may use other analytic means to evaluate our Website. We use these tools to help us improve our Website’s performance and user experiences. These entities may use cookies and other tracking technologies, such as web beacons or local storage objects (LSOs), to perform their services. To learn more about Google’s privacy practices, please review the Google Privacy Policy . You can also download the Google Analytics Opt-out Browser Add-on to prevent their data from being used by Google Analytics .
Cross-Device Use.
Our Website and service providers, including Google, may collect information about you directly from our Website, your devices, or from third parties. This information may be used to identify other devices you use, such as mobile phones, tablets, or other computers. Additionally, we and our service providers may use this cross-device information to provide targeted advertising on your devices and to send you emails. If you wish to opt-out of cross-device advertising, please follow the instructions provided abowe. If you use multiple devices or web browsers, you will need to opt-out of each one individually.
Do-Not-Track. At present, our systems are unable to recognize browser requests to “do-not-track”. Nevertheless, you have the option to disable certain forms of tracking, such as disabling cookies, as explained in this section. You can also choose to opt-out of targeted advertising by following the instructions provided in Section 4 of this Policy.
6. Third-Party Links
Our Website and Services might feature links to websites that are not operated by us. You also may be redirected to websites operated by third parties while using our Services, when we cannot offer you the service you request. Please note that your access to and use of these linked websites is not regulated by this Policy. Instead, their privacy policies will dictate how any information collected is handled. It is important to note that we are not accountable for the information practices of these third-party websites.
7. Security of Personal Information
To safeguard the data we collect against potential loss, misuse, and unauthorized access, disclosure, alteration, or destruction, we have taken reasonable security precautions. Please be advised that while we have made every effort to protect your data, no security measures can guarantee complete protection against all possible threats. We continually assess and update our security measures to ensure they remain effective in preventing unauthorized access to your personal information. In the event that a data breach does occur, we have established procedures in place to promptly investigate and remediate any security incidents. We also advise that you take appropriate measures to protect your personal information, such as using strong passwords, regularly updating your software, and avoiding public Wi-Fi networks when transmitting sensitive information.
8. What Choices Do I Have Regarding Use of My Personal Information?
We may send periodic promotional emails to you. You may opt-out of promotional emails by following the opt-out instructions contained in the email. Please note that it may take up to 10 business days for us to process opt-out requests. If you opt-out of receiving promotional emails, we may still send you emails about your account or any services you have requested or received from us.
Please see more information about choices in the sections below.
9. ADDITIONAL IMPORTANT INFORMATION FOR CALIFORNIA RESIDENTS
We are obligated by the California Consumer Privacy Act (“CCPA”) to inform California consumers about how we collect, use, and disclose their personal information, whether obtained through this website or offline. In accordance with the CCPA, “personal information” encompasses any data that can identify, relate to, describe, be associated with, or reasonably link to a specific consumer or household, including the categories listed in the table below, to the extent that they can be used to identify, relate to, describe, associate with, or reasonably link to a specific consumer or household.
Categories of Personal Information that We Collect, Disclose, and Sell
Below please find the categories of personal information about California residents that we collect, sell, and/or disclose to third parties or service providers for a business purpose.
| Categories of personal information Last Updated: [16 March 2023] | Categories of Sources and Purposes for Collection and Use | Categories of Recipients and Business Purposes for Disclosure |
|---|---|---|
| NAME, CONTACT INFORMATION AND IDENTIFIERS: Identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name. | Sources: – Directly from you; – Automatically when you are visiting our website; – Social networksPurposes of collection: – To provide our Services to you and to fulfill your orders. – To communicate with you about your use of our Services, to respond to your inquiries, and for other customer service purposes. – To tailor the content and information that we may send or display to you, to offer location customization, and personalized help and instructions, and to otherwise personalize your experiences while using the Services. – To send you email marketing about our products and services. – To send you news and newsletters. – To send you email marketing about products and services of our affiliated entities. – To assist us in advertising on third-party websites, mobile apps, and other online services, and to evaluate the success of our advertising campaigns through third-party channels (including our online targeted advertising and offline promotional campaigns). – To better understand how users access and use our Services, both on an aggregated and individualized basis. For example, we will evaluate which features of our Site are more (or least) used by users, and we will use this information. – To conduct internal analysis of outreach and marketing efforts, as well as for market research or member satisfaction purposes. – To comply with legal obligations, as part of our general business operations, and for other business administration purposes. – Where we believe it necessary to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person or violations of our Terms of Service or this Privacy Policy. | Recipients: – Service providers; – Governmental agencies and authorities; – Affiliated and related companiesBusiness purposes: – Ensuring security and integrity of Personal Information – Debug and fix existing errors; – Deliver you our products; – Perform services on our behalf; – Ensuring security and integrity of Personal Information – For internal use by our service provider |
| CUSTOMER RECORDS: Paper and electronic customer recordscontaining personal information, such as name, signature, address, telephone number, bank account number, credit card number, debit card number, or any other financial information. | No | No |
| PROTECTED CLASSIFICATIONS: Characteristics of protected classifications under California or federal law such as race, color, sex, age, religion, national origin, disability, citizenship status, and genetic information. | No | No |
| PURCHASE HISTORY AND TENDENCIES: Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. | No | No |
| BIOMETRIC INFORMATION: physiological, biological or behavioral characteristics that can be used alone or in combination with each other to establish individual identity, including DNA, imagery of the iris, retina, fingerprint, face, hand, palm, vein patterns, and voice recordings, keystroke patterns or rhythms, gait patterns or rhythms, and sleep, health, or exercise data that contain identifying information. | No | No |
| USAGE DATA: Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding a resident’s interaction with an internet website, application, or advertisement. | Sources: – Directly from you; – Automatically when you are visiting our website; – Social networksPurposes of collection: – To provide our Services to you and to fulfill your orders. – To communicate with you about your use of our Services, to respond to your inquiries, and for other customer service purposes. – To tailor the content and information that we may send or display to you, to offer location customization, and personalized help and instructions, and to otherwise personalize your experiences while using the Services. – To send you email marketing about our products and services. – To send you news and newsletters. – To send you email marketing about products and services of our affiliated entities. – To assist us in advertising on third-party websites, mobile apps, and other online services, and to evaluate the success of our advertising campaigns through third-party channels (including our online targeted advertising and offline promotional campaigns). – To better understand how users access and use our Services, both on an aggregated and individualized basis. For example, we will evaluate which features of our Site are more (or least) used by users, and we will use this information. – To conduct internal analysis of outreach and marketing efforts, as well as for market research or member satisfaction purposes. – To comply with legal obligations, as part of our general business operations, and for other business administration purposes. – Where we believe it necessary to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person or violations of our Terms of Service or this Privacy Policy. | Recipients: – Service providers; – Governmental agencies and authorities; – Affiliated and related companiesBusiness purposes: – Ensuring security and integrity of Personal Information – Debug and fix existing errors; – Deliver you our products; – Perform services on our behalf; – Ensuring security and integrity of Personal Information – For internal use by our service provider |
| GEOLOCATION DATA: Precise geographic location information about a particular individual or device | Sources: – Directly from you; – Automatically when you are visiting our website; – Social networksPurposes of collection: – To provide our Services to you and to fulfill your orders. – To communicate with you about your use of our Services, to respond to your inquiries, and for other customer service purposes. – To tailor the content and information that we may send or display to you, to offer location customization, and personalized help and instructions, and to otherwise personalize your experiences while using the Services. – To send you email marketing about our products and services. – To send you news and newsletters. – To send you email marketing about products and services of our affiliated entities. – To assist us in advertising on third-party websites, mobile apps, and other online services, and to evaluate the success of our advertising campaigns through third-party channels (including our online targeted advertising and offline promotional campaigns). – To better understand how users access and use our Services, both on an aggregated and individualized basis. For example, we will evaluate which features of our Site are more (or least) used by users, and we will use this information. – To conduct internal analysis of outreach and marketing efforts, as well as for market research or member satisfaction purposes. – To comply with legal obligations, as part of our general business operations, and for other business administration purposes. – Where we believe it necessary to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person or violations of our Terms of Service or this Privacy Policy. | Recipients: – Service providers; – Governmental agencies and authorities; – Affiliated and related companiesBusiness purposes: – Ensuring security and integrity of Personal Information – Debug and fix existing errors; – Deliver you our products; – Perform services on our behalf; – Ensuring security and integrity of Personal Information – For internal use by our service provider |
| AUDIO/VISUAL: Audio, electronic, visual, thermal, olfactory, or similar information. | No | No |
| EMPLOYMENT HISTORY: Professional or employment-related information. | No | No |
| EDUCATION INFORMATION: Information that is not publicly available personally identifiable information as defined in the federal Family Educational Rights and Privacy Act (20 U.S.C. section 1232g, 34 C.F.R. Part 99). | No | No |
| PROFILES AND INFERENCES: Inferences drawn from any of the information identified above to create a profile about a resident reflecting the resident’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. | No | No |
Selling and sharing personal information. Under recent changes to California legislation, “sell” does not necessarily mean sale of personal information for money, but also includes use of personal information by third parties for their own purposes. Additionally, “sharing” personal information refers to disclosing personal information to third parties for cross-context behavioral advertising. In past 12 months, we have sold and/or shared the following information:
- Name, contact information and identifiers;
- Usage data
- Geolocation data
The categories of recipients include our service providers and other third parties for cross-context behavioral advertising. We only “sell” personal information to third parties as defined in the CCPA for the purposes of cookies or other tracking technologies.
California Residents’ Rights
California law grants California residents certain rights and imposes restrictions on particular business practices as set forth below. California consumers have the right to request that we disclose what personal information we collect, use, disclose, and sell about you.
Do-Not-Sell. You have the right to opt-out of our sale of your personal information if you are a resident of California. However, we do not sell personal information of California residents or any other users of our site. We may only share your personal information as outlined in section 6 of our Policy. To learn how to opt-out of certain types of cookies used on our website, please refer to section 7. If you wish to exercise your rights, please use the link provided below. – “Do Not Sell Or Share My Personal Information”
Verifiable Requests for Copy, Deletion and Right to Know. Subject to certain exceptions, California consumers have the right to make the following requests, at no charge, up to twice every 12 months.
Please see ‘Submitting Requests’ below for instructions about how to exercise your rights:
- Deletion: The right to request deletion of their personal information that we have collected about them, subject to certain exemptions, and to have such personal information deleted, except where necessary that we maintain such personal information in order to:
- Fulfill the purpose for which we collected the personal information, provide a requested product or service, or complete a contract between the business and the consumer.
- Identify and prevent security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activity.
- Debug and repair errors that affect the intended functionality of our service.
- Exercise the right to free speech, enable another consumer’s right to free speech, or exercise another right provided by law.
- Comply with the California Electronic Communications Privacy Act as described in Chapter 3.6 (commencing with Section 1546) of Title 12 of Part 2 of the Penal Code.
- Conduct public or peer-reviewed scientific, historical, or statistical research that serves the public interest and aligns with all applicable ethics and privacy laws. We may not delete the information if doing so would render the research impossible or seriously impair its achievement, provided the consumer has given informed consent.
- Use the personal information for internal purposes that align with the consumer’s expectations based on their relationship with the business.
- Comply with a legal obligation.
- Use the personal information in a lawful manner that is compatible with the context in which the consumer provided it.
- Copy: The right to request a copy of the specific pieces of personal information that we have collected about them in the prior 12 months.
- Right to Know (Collection): Where we have collected their personal information, the right to request that we disclose certain information about how we have handled their personal information in the prior 12 months, including: the categories of personal information collected; categories of sources of personal information; business and/or commercial purposes for collecting and selling their personal information; and the categories of third parties/with whom we have disclosed or shared their personal information.
- Right to Know (Disclosure and Sale): Where we have sold or disclosed for a business purpose their personal information, the right to request that we disclose certain information about how we have handled their personal information in the prior 12 months, including: the categories of personal information collected; categories of third parties to whom the consumer’s personal information has been sold and the specific categories of personal information sold to each category of third party; categories of third parties to whom personal information has been disclosed; and the categories personal information that we have disclosed or shared with a third party for a business purpose.
- Correct inaccurate personal information: California residents have the right to request us to correct your personal information if we maintain inaccurate personal information about you, taking into account the nature of the personal information and the purposes of the processing of the personal information. If we receive a verifiable consumer request to correct inaccurate personal information shall use commercially reasonable efforts to correct the inaccurate personal information as directed by you.
Submitting Requests. You may exercise your rights by doing one of the:
We will respond to your Copy and Right to Know requests within 45 days, unless additional time (up to 45 more days) is needed, in which case we will let you know.
When you submit your request, we will take steps to attempt to verify your identity. We will seek to match the information in your request to the personal information we maintain about you. As part of our verification process, we may ask you to submit additional information, use identity verification services to assist us, or if you have set up an account on our website, we may ask you to sign in to your account as part of our identity verification process. Please understand that, depending on the type of request you submit, to protect the privacy and security of your personal information, we will only complete your request when we are satisfied that we have verified your identity to a reasonable degree of certainty.
Authorized Agents. The CCPA allows California consumers to designate an authorized agent to exercise their rights under CCPA.
Incentives and Discrimination. The CCPA prohibits discrimination against California residents for exercising their rights under the CCPA and imposes requirements on any financial incentives offered to California residents related to their personal information.
Discrimination: If consumers exercise their rights under CCPA, businesses may not discriminate against them including by denying or providing a different level or quality of goods or services or charging or suggesting that a business will charge different prices or rates or impose penalties, unless doing so is reasonably related to the value provided to the consumer by the consumer’s data.
Disclosure of Incentives: If businesses offer any financial incentives for the collection, sale or deletion of their personal information, residents have the right to be notified of any financial incentives offers and their material terms, the right not be included in such offers without prior informed opt-in consent, and the right to be able to opt-out of such offers at any time. Businesses may not offer unjust, unreasonable, coercive or usurious financial incentives. We do not offer any incentives at this time.
California Privacy Rights under California’s Shine-the-Light Law
Under California’s “Shine the Light” law (Cal. Civ. Code § 1798.83), California residents who provide us certain personal information are entitled to request and obtain from us, free of charge, information about the personal information (if any) we have shared with third parties for their own direct marketing use. Such requests may be made once per calendar year for information about any relevant third party sharing in the prior calendar year. California residents who would like to make such a request may submit a request in writing to _______ The request should attest to the fact that the requester is a California resident, and provide a current California address.
California Privacy Rights Statistics
Businesses subject to CCPA who process the personal information of 4 million California consumers are required to make available certain statistical information about the number of privacy rights requests they receive.
10. NOTICE TO NEVADA USERS
Although we do not currently conduct sales of personal information under the meaning of Nevada state privacy law, Nevada residents may submit a request directing us to not sell personal information we maintain about them if our practices change in the future. To exercise this right, email us at support@mmjcardonline.com
11. NOTICE TO VIRGINIA USERS
Under Virginia Consumers Data Protection Act you have the following rights:
- You may opt-out from having your personal data used for targeted advertising. You can do it by using our cookies banner preferences;
- You have the right to know, access and confirm personal data.
- You have the right to delete personal data we store about you.
- You have the right to correct inaccuracies in personal data.
- You have the right to data portability (i.e., easy, portable access to all pieces of personal data held by a company).
- You have the right to opt out of the sale of personal data.
- You have the right to opt out of profiling based upon personal data.
- You have the right to not be discriminated against for exercising any of the foregoing rights.
We do not “sell” personal data in exchange for monetary consideration by a controller to a third party. To execute your rights please, email us at support@mmjcardonline.com
12. NOTICE TO VIRGINIA USERS
If you have questions about our privacy practices or would like to make a complaint, please contact us at support@mmjcardonline.com