Passed in 2016, the General Data Protection Regulation (GDPR) is the most significant legislative change in European data protection laws since the EU Data Protection Directive (Directive 95/46/EC), introduced in 1995. The GDPR, which came into force on May 25, 2018, seeks to strengthen the security and protection of personal data in the EU and serve as a single piece of legislation for all of the EU. It will replace the EU Data Protection Directive and all the local laws relating to it.
- Who We Are
- What We Collect and Store
- Who On Our Team Has Access
- What We Share with Others
- Where We Send Your Data
- How Long We Retain Your Data
- What Rights You Have Over Your Data
- Contact Us About Your Privacy
- How We Protect Your Data
- What Data Breach Procedures We Have in Place
Who We Are
This website is owned and operated by Sproutee Inc. Our full web address is: https://sproutee.com. Sproutee Inc and its affiliates (collectively ‘Sproutee’, ‘we’ and ‘us’) respect your privacy.
We offer web design and development services as well as content marketing, WordPress hosting, user support, website maintenance and domain registration for businesses and organisations.
What We Collect and Store
If you choose to contact us through a contact form on our site, then your IP address, user agent, name, email address, website, and message wil be sent to the Akismet service (owned by Automattic) for the sole purpose of spam checking. The actual contact form data is stored in the database of this website. It is emailed directly to us. This email will include the your IP address, timestamp, name, email address, website, and message. We use this data in order to respond to your queries. We may store your name and email address as a contact in our email account.
In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user. Our site collects failed login attempts data such as IP address and user agent. We also set a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human.
Cookies are small text files that can be used by websites to make a user’s experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This site uses different types of cookies: necessary, preferences, and statistics.
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
Who On Our Team Has Access
Members of our team have access to the information you provide us. For example, Administrators can access information included in your contact form submissions or collected by our statistical monitoring. Our team members have access to this information to help respond to your queries as well as to improve the experience of using this site.
What We Share With Others
We share information with third parties who help us provide our services to you. Third parties include email services.
Third Party Links
Our site may contain external links. When you click an external link, the third-party companies may receive your IP address when serving such content to you and may also utilise other technologies such as cookies or web beacons. While we don’t provide any personally identifiable information to these third-party companies, we cannot and do not guarantee their privacy policies and practices.
Where We Send Your Data
In order to send messages from our contact form, our site uses the Mailgun Plugin for WordPress. Mailgun receives SMTP requests from our site and processes / sends the message to our email address. Mailgun collects your name, email, subject line and message body. Mailgun is fully GPDR compliant; all our site’s Mailgun data is stored in the US/North America.
How Long We Retain Your Data
We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, if you have a client account with us, we will store order information for 7 years for tax and accounting purposes. This may include:
- Billing and shipping addresses
What Rights You Have Over Your Data
If you have an account on this site, or have used a contact form to email us, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. Please send Right of Access or Right of Erasure Requests to firstname.lastname@example.org.
Contact Us About Your Privacy
Have questions or concerns about your privacy? Please contact us:
1900 Empire Blvd, Unit 199
Webster, NY 14580
How We Protect Your Data
We seek to protect your data in a number of ways, such as:
- Our site uses an SSL connection
- We enforce a ‘strong’ password policy for Administrators and Shop Managers
- 2 factor authentication is used with our third party service providers
What Data Breach Procedures We Have in Place
If data breaches are detected, we contact anyone affected via email as soon as the breach is discovered.