Privacy Policy

Posted: 08/08/2024

Effective: 08/08/2024

Introduction

Growth, Resilience, and Grit (GRG) has created the following Privacy Policy to let you know what information we collect when you visit or use the Services, why we collect it, and how it is used. All capitalized terms not defined in this Privacy Policy will have the meanings set forth in the GRG Terms of Service.

Information We Collect

When you use our Services, we may collect the following information to provide, improve, protect, and promote our Services:

 Information You Provide to Us

Account Information. When you create an account, we will collect your name and email address. We may also collect your credit or debit card information, address, and phone number. Please note that we use a third-party service provider to collect and process payment card information on the Services. GRG does not directly collect or store any payment card information provided to the Services, but it may receive information associated with your payment card information (e.g., your billing details).

 Your Documents. Our Services are designed as a simple solution to help individuals and businesses create, customize, sign, and download forms and agreements. To provide the Services, we store, process, and transmit your Documents as well as information related to them. We do not sell your Documents.

Form Information. When you interact with or fill out forms, we may store the information you provide even if you do not create an account. We do this to provide the Services to other users, such as if another user sent you a form to fill out or sign, or to provide the Services to you if you return to that form later.

Communications with Us. We may collect personal data from you such as email address, phone number, or mailing address when you request information about our Services, sign up for our newsletter, request customer or technical support, or otherwise communicate with us.

Customer Service and Support. If you call or otherwise interact with GRG's customer service and support, we may collect the information you provide to our representatives. In addition, we may record telephone calls between you and our representatives for training and quality assurance purposes.

Interactive Features. GRG may offer interactive features such as commenting functionalities, collaboration tools, forums, chat services, and social media pages. GRG and other individuals who use our Services may collect the information you submit or make available through these interactive features. By using these interactive features, you assume the risk that the personal data provided by you may be viewed and used by third parties for any number of purposes.

Surveys. We may contact you to participate in surveys. If you decide to participate, you may be asked to provide certain information which may include personal data.

Contacts. We may collect personal data from you about your contacts, to help you do things like share and collaborate on your Documents. We will store those contacts on our servers.

Conferences, Trade Shows, and other Events. We may attend conferences, trade shows, and other events where we collect personal data from individuals who interact with or express an interest in GRG and/or the Services. If you provide us with any information at one of these events, we will use it for the purposes for which it was collected.

Business Development and Strategic Partnerships. We may collect personal data from individuals and third parties to assess and pursue potential business opportunities.

Information We Collect Through Your Use of the Services

We may collect certain information automatically when you use the Services. This information may include your Internet protocol (IP) address, user settings, MAC address, cookie identifiers, mobile carrier, mobile advertising and other unique identifiers, details about your browser, operating system or device, location information (including inferred location based off of your IP address), Internet service provider, pages that you visit before, during and after using the Services, information about the links you click, information about how you interact with the Services, including the frequency and duration of your activities, and other information about how you use the Services. Information we collect may be associated with accounts and other devices.

Cookies and other technologies. We use technologies like cookies and pixel tags to provide, improve, protect, and promote our Services. For example, cookies help us with things like remembering your username for your next visit, understanding how you are interacting with our Services, and improving them based on that information. You can set your browser to not accept cookies, but this may limit your ability to use the Services. If our systems receive a DNT:1 signal from your browser, we'll respond to that signal as outlined here. We may also use third-party service providers that set cookies and similar technologies to promote Dropbox services. You can learn more about how cookies and similar technologies work, as well as how to opt out of the use of them for advertising purposes, here.

Analytics. We may also use Google Analytics and other service providers to collect and process analytics information on our Services. For more information about Google Analytics, please visit www.google.com/policies/privacy/partners/. You can opt out of Google's collection and processing of data generated by your use of the Site by going to https://tools.google.com/dlpage/gaoptout.

Information from Other Sources

Our Customers. If you use our Services on behalf of an organization (e.g., your employer), that organization may provide us with information about you so that we can provision your account.

Third-Party Services and Organizations. We may obtain information about you from other sources, including through third-party services and other organizations. For example, if you access or use our Services through a third-party application, such as a third-party login service, we may collect information about you from that third party that you have made available via your privacy settings.

How We Use Your Information

We process personal data for a variety of business purposes, including:

To provide the Services or Information Requested.

Fulfill our contract with you or the organization on whose behalf you use the Services;

Assess the needs of your business to determine suitable products;

Manage your information;

Process payment card and/or other financial information to facilitate your use of the Services;

Respond to questions, comments, and other requests;

Provide access to certain areas, functionalities, and features of our Services; and

Answer requests for customer or technical support.

Legitimate Interests.

Direct marketing, research and development (including marketing research), network and information security, and fraud prevention; Measure interest and engagement in the Services; Develop new products and Services; Improve our products and Services; Ensure internal quality control and safety; Verify individual identity; Carry out audits; Communicate with you about activities on the Services; Prevent and prosecute potentially prohibited or illegal activities; Enforce our agreements; and Comply with our legal obligations.

Marketing Our Products and Services. We give users the option to use some of our Services free of charge. These free Services are made possible by the fact that some users upgrade to one of our paid Services. If you register for our Services, we will, from time to time, send you information about upgrades when permissible. Users who receive these marketing materials can opt out at any time. If you don't want to receive a particular type of marketing material from us, click the ‘unsubscribe’ link in the corresponding emails.

De-identified and Aggregated Information Use. We may use personal data and other information about you to create de-identified and/or aggregated information, such as de-identified location information, de-identified or aggregated trends, reports, or statistics, or other analyses we create. De-identified and aggregated information is not personal data, and we may use and disclose such information in a number of ways, including research, internal analysis, analytics, and any other legally permissible purposes.

Sharing Content with Friends or Colleagues. Our Services may offer various tools and functionalities. For example, we may allow you to provide information about your friends through our referral services. Our referral services may allow you to forward or share certain content with a friend or colleague, such as an email inviting your friend to use our Services.

 Consent. GRG may use personal data for other purposes that are clearly disclosed to you at the time you provide personal data or with your consent, such as connecting your account with other third-party services or collecting feedback from you to improve our Services and develop new features.

How We May Share Your Information

GRG has collected and disclosed the categories described in the "Information You Provide to Us," "Information We Collect Through Your Use of the Services," and "Information from Other Sources" sections above to third parties.

Service Providers. We may share any personal data we collect about you with our third-party service providers. The types of service providers to whom we entrust personal data include service providers for: (i) the provision of the Services; (ii) the provision of information, products, and other services you have requested; (iii) marketing and advertising; (iv) payment processing; (v) customer service activities; and (vi) the provision IT and related services.

Business Partners. We may provide personal data to business partners to provide you with a product or service you have requested. We may also provide personal data to business partners with whom we jointly offer products or services.

Interest-Based or Personalized Advertising. Through our Services, GRG may allow third-party advertising partners to set cookies and use other technologies to collect information regarding your activities and your device (e.g., your IP address, cookie identifiers, page(s) visited, location, time of day). These advertising partners may use this information (and similar information collected from other services) for purposes of delivering personalized advertisements to you when you visit third party services within their networks. This practice is commonly referred to as “interest-based advertising” or “personalized advertising.” If you prefer not to share your personal data with third-party advertising partners, you may follow the instructions below.

APIs and Software Development Kits. We may use third-party APIs and software development kits (“SDKs”) as part of the functionality of our Services. APIs and SDKs may allow third parties including advertising partners to collect your personal data to provide content that is more relevant to you. For more information about our use of APIs and SDKs, please contact us as set forth below.

Disclosures to Protect Us or Others. We may access, preserve, and disclose your personal data if we believe doing so is required or appropriate to: (i) comply with law enforcement and legal process, such as a court order or subpoena; (ii) protect your, our or others’ rights, property, or safety; (iii) to collect amounts owed to us; (iv) when we believe disclosure is necessary or appropriate to prevent financial loss or in connection with an investigation or prosecution of suspected or actual illegal activity; or (v) if we, in good faith, believe that disclosure is otherwise necessary or advisable.

Merger, Sale, or Other Asset Transfers. If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, purchase or sale of assets, or transition of service to another provider, then your information may be sold or transferred as part of such a transaction as permitted by law and/or contract. We'll notify you (for example, via a message to the email address associated with your account) of any such deal and outline your choices in that event.

 Data Transfers

When transferring data from the European Union, the European Economic Area, the United Kingdom, and Switzerland, GRG relies upon a variety of legal mechanisms, such as contracts with our customers and affiliates, Standard Contractual Clauses, and the European Commission's adequacy decisions about certain countries, as applicable.

 Your Choices

General. You may have the right to object to or opt out of certain uses of your personal data.

 Email Communications. If you receive an unwanted email from us, you can use the unsubscribe link found at the bottom of the email. Note that you will continue to receive transaction-related emails regarding products or Services you have requested. We may also send you certain non-promotional communications regarding us and our Services, and you will not be able to opt out of those communications (e.g., communications regarding the Services or updates to this P

Technologies and Personalized Advertising. If you would like to opt-out of the cookies and other technologies we employ on the Services, you may do so by blocking, disabling, or deleting them as your browser or device permits. Please note that cookie-based opt-outs are not effective on mobile applications. However, you may opt-out of personalized advertisements on some mobile applications by following the instructions for Android and iOS.

 The online advertising industry also provides websites from which you may opt-out of receiving targeted ads from advertisers that participate in self-regulatory programs. You can access these, and also learn more about targeted advertising and consumer choice and privacy, at www.networkadvertising.org/managing/opt_out.asp, https://www.youronlinechoices.eu/ and www.aboutads.info/choices/.

 

Please note you must separately opt out in each browser and on each device.

 Individual Rights in Personal Data

For purposes of the California Consumer Privacy Act, GRG does not "sell" your personal data.

 You have control over your personal data and how it's collected, used, and shared. For example, you can:

 Delete your data. You can delete files you have uploaded in your account, and request that your personal data be deleted. Learn more here.

Change or correct your data. You can manage your account and the contents contained in it, as well as edit some of your personal data, through your account settings page.

Access and take your data elsewhere. You can ask us for a copy of personal data you provided to us or that we've collected, the business or commercial purpose for collecting it, the types of sources we got it from, and types of third parties we've shared it with. Learn more here.

Object to the processing of your personal data. Depending on the processing activity, you can request that we stop or limit processing of your personal data by emailing us at admin@grgmindbody.com.

We will not discriminate against you for exercising any of these rights.

 Data Retention

When you sign up for an account with us, we'll retain information you store on our Services for as long as your account exists or as long as we need it to provide you the Services. If you delete your account, we'll initiate deletion of this information after 30 days. But please note: (1) there might be some latency in deleting this information from our servers and back-up storage; and (2) we may retain this information if necessary to comply with our legal obligations, resolve disputes, or enforce our agreements.

Security of Your Information

We take steps to ensure that your information is treated securely and in accordance with this Privacy Policy. Unfortunately, the Internet cannot be guaranteed to be 100% secure, and we cannot ensure or warrant the security of any information you provide to us. To the fullest extent permitted by applicable law, we do not accept liability for unauthorized disclosure.

 By using the Services or providing personal data to us, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of the Services. If we learn of a security system's breach, we may attempt to notify you electronically by sending a notice through the Services or by sending an email to you.

Third-Party Websites/Applications

The Services may contain links to other websites/applications and other websites/applications may reference or link to our Services. These third-party services are not controlled by us. We encourage our users to read the privacy policies of each website and application with which they interact. We do not endorse, screen or approve, and are not responsible for the privacy practices or content of such other websites or applications. Visiting these other websites or applications is at your own risk.

Changes to Our Privacy Policy

We may revise this Privacy Policy from time to time, and will post the most current version on our website. If a revision meaningfully reduces your rights, we will notify you.

Contact Us

Have questions or concerns about GRG, our Services, or privacy? Contact our Data Protection Officer at admin@grgmindbody.com.