Introduction

Welcome to CoffeeCard!

CoffeeCard Inc. (“Company,” “we,” “our” or “us”) understands that privacy is important to our users (“you” or “your”). This Privacy Policy discloses our practices regarding our collection and processing of data through our website located at www.coffeecard.com (“Website”) and the CoffeeCard app (“App”, together with the Website, “Service”). Please note that this Privacy Policy does not apply to any other website or app unless it appears on that service.

Overview

• This Privacy Policy covers Company’s privacy and data security practices. Specifically, this Privacy Policy notes that:
• We collect information from users of our Service when it is voluntarily provided by the user (see Information We Collect).
• We automatically collect information from users of our Service for analytical purposes (see Information We Collect, and Cookies and Other Tracking Technologies).
• You can control certain uses of your information (see Your Rights, Choices, and Opt-Out).
• We will not use or share your information except as described in this Privacy Policy.
• Please read this Privacy Policy carefully to understand our policies and practices regarding your information and how we will use it. If you do not agree with this Privacy Policy, you should not use the Service. By accessing or using this Service, you agree to this Privacy Policy. If you have questions or would like to contact us for any reason, you can always contact us using the information in the section below titled “Contact.”

Information We Collect

Personally Identifiable Information. You are not required to register or provide any Personally Identifiable Information in order to browse our Service and learn more about our company, our products, and our technology. We do not collect Personally Identifiable Information unless you submit that information to us through the Service, such as when you choose to subscribe to our newsletter or other materials, create an account, contact us or otherwise provide information directly to us or interact with us on the Service. “Personally Identifiable Information” is information that specifically identifies you. For example, the categories of Personally IdentifiableInformation we collect may include:

• Identity data such as your first and last name and username, birthday and gender.
• Contact data such as your email address, physical address and telephone number.
• Through our third party payment provider, financial and transaction data such as your payment card details, details about payments to and from you, and products and services you have purchased from us.
  


• Cookies and Other Tracking Technologies. We or our third party partners may store some information on your device or device hard drive as a "cookie" or similar type of file (such as clear gifs, pixels, web beacons, tags, and similar technologies) to collect technical and usage data related to the use of the Service and for the purpose of facilitating and enhancing your communication and interaction with the Service. We may also use similar technologies that work on mobile devices. The data collected may include, without limitation, the address of the websites you visited before and after you visited the Service, the type of browser you are using, your Internet Protocol (IP) address, what pages in the Service you visit and what links you clicked on, how long you used the Service, IP-geolocation data as well as the latitude and longitude (i.e., lat/long) coordinates of your device. We use this information to help us maintain and enhance the efficiency and usefulness of the Service and may use it and other non-Personally Identifiable Information for the purposes described in this Privacy Policy. Cookies and similar items are not used by us to automatically retrieve information that can specifically identify you without your knowledge. However, some of the information we collect may include data, such as IP address data or the identifiers associated with your device and may be unique to your computer or device (e.g., IDFA for iOS and Android ID for Android).
  
  Please be advised that certain third parties that are beyond the scope of this Privacy Policy may collect information in connection with the Service. We are not responsible for the acts or omissions of such third parties. For example, we use Google Analytics to understand how visitors interact with our Service, and Firebase, Firestore, Storage Authentication, Hosting and Cloud Function cookies to aid our implementation of the Service. You can opt out of Google Analytics on most browsers through the mechanisms made available by Google here: https://tools.google.com/dlpage/gaoptout, and opt out of other Cookies as detailed in the RIGHTS, CHOICES, AND OPT-OUTS section below.
  
  Clickstream Data. As you use the Internet, a trail of electronic information is left at each website you visit. This type of technical and usage data, which is sometimes referred to as “clickstream data” can be collected and stored by a website’s server. Clickstream data can tell us the type of device and browsing software you use and the address of the website from which you linked to the Service. We may collect and use clickstream data to determine how much time visitors spend on websites, how visitors navigate throughout websites and how we may tailor our Website to better meet consumer needs. This information will be used to improve our Website. Any collection or use of clickstream data will not intentionally contain any Personally Identifiable Information.

Use and Sharing Information

• We may use or disclose the information we collect, including Personally Identifiable Information, for the following purposes:
• to contact you about our products and services and provide you with our products and services;
• to allow you to use and interact with our Service;
• to respond to your direct inquiries;
• to add you to our mailing lists and send you emails and marketing materials from time to time;
• to enable our service providers to work on our behalf, including to provide our Service, fulfill user requests, or to process your payment. For example, when you make a purchase through the Service, your payment is processed by our payment processing company, Stripe. Please visit Stripe’s privacy policy located at https://www.stripe.com/privacy;
• to our coffee providers and their partners;
• to respond to law enforcement and regulatory requests and as required by applicable law, legal process, court order, or governmental regulations;
• to carry out our obligations and enforce our rights, including in connection with our Service or the CoffeeCard Terms and Conditions;
• to protect the rights, property, or safety of members of the CoffeeCard community, visitors to our Service, our customers, the public, or our employees;
• as described to you when collecting your Personally Identifiable Information;
• to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which the information held by us about our users is transferred; and for other legitimate business interests.
• 
  Please note that if you specifically consent to additional uses of your Personally Identifiable Information, we may use your Personally Identifiable Information in a manner consistent with that consent. Finally, we reserve the right to use and disclose information that is not Personally Identifiable Information in any manner permitted by law except as otherwise provided in this privacy policy.

Rights, Choices, and Opt-Outs

Communications: You can opt-out of receiving commercial emails from us at any time by emailing us at hello@coffeecard.nyc or by clicking on the unsubscribe link at the bottom of our email. Even if you have unsubscribed from receiving commercial e-mails from us, we may send you other types of important, transactional e-mail communications without offering you the opportunity to opt out of receiving them, where permitted by law. Please note that opting out of receiving commercial e-mails will affect only future communications from us.

Cookies: In addition to the specific Cookie opt-outs noted above, if you want to stop or restrict the placement of cookies or flush any cookies that may already be on your computer or device, please refer to and adjust your web browser preferences. Further information on cookies is available at www.allaboutcookies.org. By deleting our cookies or disabling future cookies you may not be able to access certain areas or features of our Service or some of its functionality may be affected.

Precise Location Data: You may adjust the settings on your mobile device to allow or restrict the sharing of location information. For example, the "location" permissions on your mobile device may allow you to elect whether to never share location information with CoffeeCard, to share location information only while you are using the Service (e.g., to help you find nearby offers), or always share location information even if you are not using the Service. If you elect to not share your location information, you may be unable to access some features of our Service that are designed for mobile devices. Also, in the event that you prevent the sharing of location information, we may still estimate your general location based on the IP address you use to access our Service.

Do Not Track: Please note that we do not respond to or honor “do not track” (a/k/a/ DNT) signals or similar mechanisms transmitted by web browsers.

Data Security

The security of your information is very important to us.   We have put in place commercially reasonable physical, electronic, and managerial procedures designed to safeguard the information we collect.   However, due to the inherent open nature of the Internet, we cannot guarantee that communications between you and Company, or information stored on the Service or our servers, will be free from unauthorized access by third parties such as hackers and your use of the Service demonstrates your assumption of this risk. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), please immediately notify us of the problem by contacting us in accordance with the in the section below titled “Contact.”

Data Retention

We will retain your information for as long as needed to provide you with the Service and for a reasonable time thereafter in accordance with our standard procedures or as necessary to comply with our legal obligations, to resolve disputes, and to enforce our agreements. Even if we delete some or all of your information, we may continue to retain and use anonymous or aggregated data previously collected. Please note that we will not be liable for disclosures of your data due to errors/unauthorized acts of third parties.

Information Relating to Children

Our Service is not intended for children under 16 years of age. No one under age 16 may provide any individually identifiable information through the Service. We do not knowingly collect individually identifiable information from children under 16. If you are under 16, do not use or provide any individually identifiable information on this Service. If we learn we have collected or received individually identifiable information from a child under 16 without verification of parental consent, we will delete that information. If you believe we might have any individually identifiable information from or about a child under 16, please contact us in accordance with the in the section below titled “Contact.”

Miscellaneous

California Consumer Privacy Act / General Data Protection Regulation: The state of California has enacted the California Consumer Privacy Act of 2018 (“CCPA”), which imposes certain obligations on “businesses” (as defined under the CCPA) to provide certain rights to California residents regarding their personal information. Please note that we are not a “business” under the CCPA. Similarly, our Service is not subject to the European Union’s (EU) General Data Protection Regulation (“GDPR”). Our Service is maintained in and only intended for users situated in the United States. We do not engage in transactions in the EU on our Service and we do not intentionally monitor the behavior of or target our Service to EU users. If in the future we become a “business” for purposes of the CCPA, or our Service becomes subject to the GDPR, this Privacy Policy will be updated accordingly at that time.

Privacy Policy Updates: We reserve the right, at our discretion, to change, modify, add, or remove portions from this Privacy Policy at any time by posting the modified policy on this page, provided that any such modifications will only be applied prospectively. We encourage you to periodically review the Service for the latest information on our privacy practices. Your continued use of the Service following the posting of any changes to this Privacy Policy means you accept such changes.

Contact: For questions or concerns relating to this Privacy Policy or your information, we can be contacted at: hello@coffeecard.nyc