Privacy Policy

This Privacy Policy describes how Fitness Technologies Group LL dba Indigo Tech Group and our affiliated companies (such as Indigo Payments, LLC , collectively “Indigo Tech,” “we,” “our” or “us”), collect, use, store, share and protect your information. We support the special payment processing needs of franchises of all types and sizes. Our solutions include data processing, management and billing platforms (the “Indigo Payments System”), and associated components, functionalities, modules, tools, applications and other software (collectively, the “Services.”) 

Please read this Policy carefully. By using our Services or Websites that link to or reference this Privacy Policy, you agree to this Policy and our Website Terms of Use.  If you do not agree, please do not provide us with Personal Information, exit the Indigo Payments System immediately, and refrain from using our Site or Services.

 

1. Key Definitions. 

“Personal Information” is usually your name in combination with another identifier, such as date of birth, postal address, email address, telephone number, or government-issued identification number. The specific definition of Personal Information often varies from one jurisdiction to another.

Subscribers and End Users (collectively, “you”) access or use our Services or Website. “Subscribers” are our clients who contract for our Services. “Responsible Parties” are individuals who act on behalf of Subscribers, such as their employees and agents. “Business Sites” or “Sites” are the business facilities or offices of Subscribers. Franchisors and franchisor operators operate under Brands controlled by their Subscriber.

“End Users” are the individual customers of our Subscribers. End Users create user accounts within the Indigo Payments System to regularly interact with our Services. Absent any provision to the contrary, visitors to the Website are treated as “End Users” for purposes of this Policy.

Subscribers are “Data Controllers” of all “Subscriber Data” and its component “End User Data” that we process in our system. 

We collect and store Personal Information about End Users as instructed by our Subscriber. Both we and the Subscriber seek to limit End User Data to that which is necessary to provide the Subscriber’s goods and services. We are not responsible for the End User Data that our Subscribers collect from you and retain. If you have any questions about the Personal Information collected about you by a Subscriber, please contact the Subscriber directly. 

 

2. Collection of Information from Site Visitors. 

In general, we collect Personal Information when you provide it to us, either on our Website or as a Subscriber or End User. 

From visitors to our Website, we collect Personal Information you provide directly to us, such as your name, email address, and phone number. 

We also collect your Personal Information when you sign up with us for a mailing list, survey or promotion. You may also provide us with Personal Information when you contact us through our email address or social media pages.

We use the information we collect from and about visitors to our Website to improve it and analyze its usage by visitors.

 

3. Collection of information from Subscribers. 

a. Business Site Set-Up. Information provided to us so that we can set up your Business Site(s) and establish your Indigo Payments account settings. Business Site set-up information includes, but is not limited to, a Subscriber’s trade name, business entity, principal address, owner information, phone number, email forecasted business volume and banking information.

b. Account Settings. Information provided that relates to your Business Site(s), all of which can be controlled by the individual or individuals within your organization or other Responsible Parties who have “master admin” rights or have otherwise been granted permission.

c. Subscriber Data. All information associated with your Business Site(s) in the Indigo Payments System. Subscriber Data includes, but is not limited to, End User Data, which includes Cardholder Data as a subset.  

e.Billing information. Information about how we charge you for Services. Billing information may include your bank name, account and routing number, or information linked to one or more credit cards.

f. Other data you want to share. We may collect other information or data that you choose to send us, for example, a positive review or testimonials.

 

4. Collection of information about Subscribers and End Users. 

a. Usage data. We collect usage data whenever you interact with our Services.

b. Device and application data. We collect data about the devices and applications used when connecting to or accessing our Services, including but not limited to, IP address and browser type. 

c. Location data. We can usually infer geographic data based on your IP address, but we also use technology to geofence a mobile phone to a location once it is a certain distance from a store. You can change our collection and use of precise location data in the Settings of your mobile phone for our app. 

d. Referral data. If you visit our Websites from an external source (like another website or via email link), we might record information about the source that referred you to us. You should contact those external sources if you have questions about their collection or sharing of information.

e. Other End User Information from our Subscribers. Subscribers collect and manage all End User Data and will often implement their own privacy policies, which you should review. 

f. Information from cookies and web beacons. We use third-party tracking services that use cookies, web beacons and other mechanisms to collect data about visitors to our Websites, which may include usage statistics. For more information on our use of tracking technologies, see our Cookie Policy.

g. Information from third parties. We might collect Personal Information or data about a Subscriber or End User from third parties if the Subscriber / End User receives permission from you to share such information with us. 

h. Information provided directly by you as an End User. 

 

5. Use of Subscriber and End User Information. 

We use the information we collect about you for the following reasons:

a.To provide our Services.

b. To review, investigate and analyze how to improve our Services.

c. To communicate with you and respond to your requests for customer service.

d. To analyze and measure user behavior and trends, and to understand how people are using our Services.

e. To monitor, troubleshoot and improve our Services, including the evaluation of new features.

h.  For internal purposes designed to keep our Services secure and operational.

i. If you are an End User that connects or uses an outside social media (or some other third-party) platform with our account, we may use the information you make available through those platforms, consistent with this Policy.

j. To enable our service providers to help us provide Services to you, in which case those third parties are required to comply with this Privacy Policy and other technical and organizational measures.

h. To protect our legal rights and interest under the Agreement, this Policy or our Terms and Conditions.

 

6. Legitimate Basis for Processing.

a. Subscriber Data. We are using Subscriber Data to fulfill our contractual obligations with you, and, if you are acting on behalf of a legal entity, we have a legitimate interest to use your data in order to maintain the relationship with that company as an Indigo Payments customer. 

b. End User Data. We are processing End User Data in accordance with the terms and conditions of the business relationship that you have with our Subscriber and any consents you have provided us. We encourage you to read carefully any separate privacy policies that the Subscriber might have related to its products and services.

 

7. Sharing of Information. 

We share Personal Information with our employees on a need-to-know basis to provide you with the Services.

We may share End User Personal Information with our Subscribers and their franchisors, and franchise operators, as well as our service providers, provided they agree to maintain the security and confidentiality of the Personal Information, not disclose it, and use it only for the purposes we have shared it. Certain Personal Information may be collected by franchisors or franchisees or shared by them with us. 

Otherwise, we will only disclose your Personal Information to third parties when we have your permission; when it is required by a competent authority in the exercise of its duties (for example, in order to investigate, prevent or take action regarding illegal activities); in the event of an Indigo Payments sale, assignment or other business transaction, like a merger, acquisition or reorganization; or as otherwise required by law. 

 

8. Cookies. 

Cookies are small text files containing a string of alphanumeric characters. We and our service providers may collect information using cookies, pixel tags, or similar technologies. We use these technologies to recognize you when you return to the Site, improve the quality of the Site and our services, administer the Site and communicate with you. We may also use cookies for tailoring our services and advertising to suit your personal interests or show you relevant ads on other sites. 

Our cookies generally fall into one of four categories: Essential, Functional, Analytics and Target. 

Cookie Category	Description
Essential Cookies	Necessary to provide you with services available through our Site. If you refuse them, it will impact your ability to access some of the Site’s functions and features.
Performance Cookies	Help us enhance the performance and functionality of our Site and service but are not necessary for your use. Still, certain functions or features may become unavailable if you refuse them.
Analytics Cookies	Collect information that is used to help us understand the use of our Website and services, the effectiveness of our marketing campaigns, or to help us customize our Website to enhance your experience.
Target Cookies	Record your visit to our Website, the pages you visited and the links you followed, so we can recognize you as a prior visitor and track your activity on our Website and others you visit. These Cookies remain on your device for us to use during a next visit to our Website. In contrast to these “persistent” cookies, some cookies (“session cookies”) are deleted when your browsing session has ended.

 

We also allow third parties to use Cookies on our Website to collect information about your online activities over time and across different websites you visit. This information is used to provide advertising tailored to your interests on websites you visit, also known as interest-based advertising, and to analyze the effectiveness of such advertising.

To learn more about the use of cookies by Google for analytics and to exercise choice regarding those cookies, please visit the Google Analytics Opt-out Browser Add-on or the Digital Advertising Alliance.

You may refrain from providing, or withdraw, your consent for cookies. Your browser’s help function should contain instructions on how to set your computer to accept all cookies, to notify you when a cookie is issued; or to not receive cookies at any time. The Services may not function the same if you reject cookies.

There are “do not track” or similar browser restriction choices available, but given the present lack of consensus regarding the breadth or effects of such choice, our Website and Services will not operate any differently when a “do not track” signal is received. 

 

9. Retention of your information. 

We retain Subscriber Data, including End User Data, as long as it is necessary and relevant for our operations. We may retain information from closed accounts to comply with the law, prevent fraud, collect any fees owed, resolve disputes, troubleshoot problems, assist with any investigation, enforce our Terms and Conditions, and/or take any other action permitted by law.  When retention ends, the data will be anonymized.

 

10. Securing your information. 

We use appropriate measures to protect the security of your data both online and offline. These measures vary based on the sensitivity of the information that we collect, process and store and the current state of technology. Please note though that no service is completely secure. So, while we strive to protect your data, we cannot guarantee that unauthorized access, hacking, data loss or a data breach will never occur. If you have any questions about the security of your information, please contact us at support@indigotechgroup.com (Attn: Privacy). 

 

11. Use of passwords.

Any Password for our Services will be the exclusive property and confidential information of the Indigo Payment and may be used by you solely for your use of the Services. You are responsible for maintaining the confidentiality of any Password. All activities that occur using your Password are your responsibility, whether you authorized them or not. You agree to immediately notify us of any unauthorized use of your Password or accounts. 

 

12. Links

Our Site may contain links of third parties. This Policy does not apply to third-party applications, products, services, websites or social media features that may be accessed through links that we provide on our websites and interfaces. Accessing those links may result in the collection of information about you by a third party. We do not control or endorse those third-party websites or their privacy practices. We encourage you to review the privacy policies of such third parties before interacting with them.

 

13. Data Movement.  

Indigo Tech may maintain the Personal Information it collects from you on computers located outside of your state, province, country, or other government jurisdiction where the data protection laws may differ from those from your jurisdiction. We process data, including Personal Information, in the United States. 

We do not transfer your Personal Information to another country without the existence of adequate security and privacy controls. We transfer Personal Information to the United States only with your consent or to perform a contract with you, and consistent with the practices described in this Privacy Policy.  

 

14. Children. 

We do not collect the Personal Information of children under the age of 13. If you learn that your child has accessed the Site and provided us with Personal Information without your consent, please e-mail us at support@indigotechgroup.com (Attn: Privacy).

 

15. Your privacy rights.

a. Subscriber right to access, correct, change or delete. Subscribers can access all Subscriber Data at their Business Site(s) with the secure log-in credentials provided at the time of sign-up. Anyone with “master admin rights” (“Master Administrators”), as designated and authorized by Subscriber, can change, modify, correct or delete all Subscriber Data in the Indigo Payments System with the exception of certain Franchisor or chain-level settings, as applicable, and certain limited functionalities that only Indigo Payments can disable. Any questions about disabling or changing site settings, or modifying Subscriber information can be directed to support@indigotechgroup.com (Attn: Privacy).

b. End Users right to access, correct, change or delete. You can access all of your End User Data, including any Personal Information, at your Indigo Payments account using your secure log-in credentials created at the time of account creation. You can change, modify, correct or delete any of your End User Data, with the exception of some Cardholder Data, in your Indigo Payments account. Please direct any other questions about accessing, correcting or deleting data directly to the Subscriber. 

c. Portability rights. If you would like to receive an electronic copy of your personal information for purposes of transmitting it to another company (to the extent this right to data portability is permitted by applicable law or contract rights), please make your request through support@indigotechgroup.com and indicate “Attn: Privacy - Request for Electronic Record” in the subject line. For your protection, we take steps to verify your identity before transmitting any information outside the Indigo Payments System. We reserve the right to forward or refer your request to the Subscriber, who may be in a better position than we are to comply with your request.

d. Deletion rights and requests. If you would like for your Personal Information to be permanently purged or deleted from the Indigo Payments System, please send the request to the Subscriber directly. Please note that we may need to retain certain information for recordkeeping purposes and/or to complete any transactions that you began prior to requesting a deletion of Personal Information. There may also be residual information that will remain within our databases and other records, which will not be removed.

 

16.  Additional Privacy Rights. In addition to the privacy rights described below, residents of certain jurisdictions may have additional or different rights. The links below provide more information:

1. California. [attached]
2. European Union / EEA. [attached]
3. Australia.
4. Canada.
5. Dominican Republic.
6. Hong Kong.
7. Indonesia. 
8. Japan.
9. Malaysia.
10. Mexico.
11. New Zealand.
12. Singapore.
13. South Korea.
14. Switzerland.
15. United Arab Emirates.

 

17. Communication Preferences.

We may contact you at the addresses, email addresses and phone numbers you provide us.

a. Indigo Payments Account and Website. In order to keep your Personal Information accurate and complete, you can log in to review and update your account information, including contact and billing information, via your Indigo Payments Website or End User account, as applicable. If you are a Subscriber and would like to change the way we communicate with you, including a change in your primary point of contact (whether for billing purposes or otherwise), please send us the request at support@indigotechgroup.com.

b. Email. If you do not wish to receive emails sent through the Indigo Payments System, you may opt out at any time by following the opt-out or unsubscribe link contained at the bottom of the email itself. Please note that it may take up to ten (10) days to process your request. Please note that if you opt-out from receiving promotional or marketing emails, you may continue to receive emails with information related to your account or our Services. If you do not wish to receive any service-related emails from us, you have the option of deactivating your account.

c. Text (SMS). If you consent to receive texts from us, you must have a wireless device of your own.  Carrier traffic may result in delayed or undelivered messages.  Your wireless carrier may charge you fees or taxes on these messages.  We will not share your mobile phone number or your texting consent with third parties. You must affirmatively elect to receive “SMS Promotional Messages” by selecting that choice on the platform. If so, you will be required to verify your request by replying “YES” to a follow-up text message sent to the mobile phone number associated with your account. You can always choose to stop receiving promotional texts by relying “STOP,” or you can receive help by replying “HELP.” 

As an End User, you can control your communication preferences through an emailed link, or you can update fields and other setting directly from your Indigo Payments account. In the “Communication Preferences Link,” End Users can change settings related to “Email,” “Non-Promotional SMS Notifications” (stating information only, for example, a booking reminder), and “Promotional SMS Notifications” (like advertisements, promotions or marketing material sent by Subscriber). In addition, it may take several days for us to register a change of preference across all our systems.

 

18. Changes to this Privacy Policy. 

We may amend this Privacy Policy from time to time. You may be required to accept the amended Privacy Policy upon logging into the Indigo Payments System in order to continue using Services. Otherwise, use of the Site or Services after the posted update will be subject to the amended Privacy Policy. 

 

19. Contact us. 

If you have any questions regarding this Privacy Policy, you can contact us via email at support@indigotechgroup.com, or via U.S. mail at 

ATTN: 

Privacy, Indigo Tech Group

10045 Dynamite Road Suite 220

Scottsdale, AZ

85262

 

PRIVACY RIGHTS FOR THE HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT (HIPAA)

The HIPAA Privacy Rule gives individuals the right to be informed of privacy practices regarding their personal health information.  The notification here within is to provide information of how Indigo may use your information and disclose your information.  This notification also provides an explanation of how you may exercise your rights to attain and request removal of attained information.  Indigo is required by law to always maintain privacy of your health information.  You may contact Indigo by email or regular mail by using the information provide in the “Contact Us” section (section 19).  

• Indigo in some situations may attain information that is classified as protected health information when users utilize certain gym machine functions.  Indigo does not share this information with third parties, nor does it store this data longer than required for functionality.  
• At any time, the user may contact Indigo to request what specific health information is captured, how long it is maintained on record, and may request the information be deleted.  

 

PRIVACY RIGHTS OF CALIFORNIA RESIDENTS

The California Consumer Privacy Act (“CCPA”), as amended, provides certain rights to residents of California. This section of the Privacy Notice applies if you are a natural person who is a resident of California (“California Consumer”) and use our Services. This notice supplements the information in the Indigo Tech Privacy Policy. Certain terms used below have the meanings given to them in the CCPA.  

The following sets forth the categories of information we collect and purposes for which we may use California Consumers’ Personal Information.

For California residents, “Personal Information” does not include:

• Publicly available information from government records.
• Deidentified or aggregated consumer information.
• Information excluded from the scope of the California Consumer Privacy Act (CCPA), like:
• health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA), clinical trial data, or other qualifying research data;
• Personal Information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver's Privacy Protection Act of 1994.

 

CALIFORNIA CONSUMER PRIVACY RIGHTS 

In addition to rights of access, correction and deletion, as described in the Privacy Notice, California Consumers may have certain additional rights in connection with the personal information we collect about you. 

California residents have the right to:

• Access, correct, or delete Personal Information;
• The right to obtain a portable copy of Personal Information;
• The right to limit the use of Sensitive Personal Information in certain circumstances;
• The rights to opt out of targeted advertising, sales of personal information, or profiling;
• The right not to receive discriminatory treatment for exercising your privacy rights; and
• The right to appeal our decisions about your requests if you disagree with them.

 

Categories of Personal Information Collected:

• Identifiers (such as your contact information (name, email address, postal address, phone number) or unique personal identifiers (wireless device ID, cookies, IP address) (“Identifiers”)
• Commercial information (such as transaction data, purchase history, or delivery information) (“Commercial Data”)
• Financial information (such as credit or debit card information, verification number, and expiration date) (“Financial Data”)
• Internet or other network or device activity (such as browsing history, browser type and language, operating system or app usage) (“Internet Data”)
• Geo-location information (such as city, state and zip code associated with your IP address or derived through Wi-Fi triangulation; and with your permission in accordance with your mobile device settings, precise geolocation information from GPS-based functionality on your mobile devices (“Geolocation Data”)
• Inference information about you (such as preferences, characteristics, and behaviors) (“Inference Data”)
• Legally protected classifications (such as gender) (“Protected Data”)
• Profile data about you and any inferences drawn from the profile data (such as characteristics, behaviors, attitudes) (“Profile data”)
• Information that identifies or can be reasonable associated with you (“Associated Data”)
• Sensitive personal information (such as account log-in; debit card or credit card number in combination with any required security or access code, password or credentials; religious or philosophical beliefs; contents of mail, email and text messages) (“Sensitive Personal Information”)

 

 

For the past twelve (12) months, depending on how you interact with us, the following table describes the categories, purposes and sources of Personal Information collected. 

Categories	Purposes	Sources
Identifiers	Performing Services; Auditing; Short-term Use; Data Security & Fraud Prevention; Research and Development; Quality and Safety; Commercial Interests	Services Use; Affiliates and Partners; You
Commercial Data	Performing Services; Short-term Use; Commercial Interests	Services Use; Affiliates and Partners; You
Financial Data	Performing Services	Services Use; Affiliates and Partners; You
Internet Data	Performing Services; Auditing; Short-term Use; Data Security & Fraud Prevention; Research and Development; Quality and Safety; Commercial Interests	Services Use; Affiliates and Partners; You
Geolocation Data	Performing Services	Services Use
Inference Data	Performing Services; Commercial Interests; Short-term Use	Affiliates and Partners; Service Use
Protected Data	Performing Services; Commercial Interests; Short-term Use	Affiliates and Partners; Service Use; You
Profile Data	Performing Services; Commercial Interests; Short-term Use	Affiliates and Partners; Service Use; You
Associated Data	Performing Services; Commercial Interests; Short-term Use	Affiliates and Partners; Service Use

EXERCISING YOUR PERSONAL DATA RIGHTS

California residents may submit a request to exercise their California privacy rights. If you would like to access, correct, amend or delete any personal information we have about you, register a compliant, or want more information, you may contact us at support@indigotechgroup.com, or via U.S. mail at 

ATTN: 

Privacy, Indigo Tech Group

10045 Dynamite Blvd Ste 220

Scottsdale, AZ 85262

Once we have verified your identity (and your agent, as applicable), we will respond to your request as appropriate. If we are unable to complete your requests, we will provide you additional information about the reasons that we could not comply with your request.

 Authorized Agents

You may also designate an agent to make requests to exercise your rights under CCPA as described above. We will take steps both to verify the identity of the person seeking to exercise their rights as listed above, and to verify that your agent has been authorized to make a request on your behalf through providing us with a signed written authorization or a copy of a power of attorney. 

We reserve the right to decline to process, or charge a reasonable fee, for requests that are manifestly unfounded, excessive, or repetitive.

 

DO NOT SELL OR SHARE MY PERSONAL INFORMATION 

OPT-OUT RIGHTS IN CALIFORNIA 

If you are age 16 or older, you have the right to direct us to not sell your Personal Information at any time (the "right to opt-out"). Consumers who opt-in to Personal Information sales may opt-out of future sales at any time. 

To exercise the right to opt-out, you (or your authorized representative) may select the “Do Not Sell or Share my Personal Information” button on our Site or submit a request to us using the contact information below.

Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize Personal Information sales. However, you may change your mind and opt back in to Personal Information sales at any time by contacting us.

You do not need to create an account with us to exercise your opt-out rights. We will only use Personal Information provided in an opt-out request to review and comply with the request. 

 

CALIFORNIA SHINE THE LIGHT LAW

Under this law, California residents may ask us to provide them with a list of the types of personal information that we have disclosed during the preceding year to third parties for their direct marketing purposes, and the identity of those third parties. If you are a California resident and would like such a list, please contact us at the address provided below.

For all such requests, please indicate "CA Shine the Light" in the subject field of your request and include the name of the Subscriber and Services with respect to which you are requesting the information. You must also include your full name, email address, street address, city, state, and zip code.

 

RETENTION OF PERSONAL DATA

We will retain your personal data for as long as needed for the uses set out in our Privacy Notice, or while there is a legitimate reason for doing so.  For example, if you have created an account with us or made a purchase online, we will retain your information for the active life of your account until you terminate your account, so we can complete the purchase transaction or until you otherwise request deletion of your data.  In all other cases we will retain records as appropriate to the data category and in line with any legal obligations.

 

HOW TO CONTACT US

If you are a California Consumer, to submit a request, please contact us at support@indigotechgroup.com, or via U.S. mail at:

Privacy, Indigo Tech Group

10045 Dynamite Blvd. Ste 220

Scottsdale, AZ 85262

To protect your privacy and maintain security, we take steps to verify your identity before granting you access to your personal information or complying with your request.  To the extent permitted by applicable law, we may charge a reasonable fee to comply with your request.

 

PRIVACY RIGHTS IN US STATES OTHER THAN CALIFORNIA

Nearly half of the States (e.g., Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia) have in place or have passed comprehensive data privacy laws that provide their residents with rights to:

• Confirm whether we process their personal information.
• Access and delete certain personal information.
• Correct inaccuracies in their personal information, taking into account the information's nature processing purpose (excluding Iowa and Utah).
• Data portability.
• Opt-out of personal data processing for:
  • targeted advertising;
  • sales; or
  • profiling in furtherance of decisions that produce legal or similarly significant effects.
• Either limit (opt-out of) or require consent to process sensitive personal data.

Many of the laws contain the same or similar protections as California, but the exact scope of these rights vary by state. To exercise any of these rights, or, if applicable, to appeal a decision regarding a consumer rights request please contact us using the information below. 

 

Contact Us

If you have any questions, comments, or concerns about our processing activities or your privacy rights, please contact us at support@indigopay.io, or via U.S. mail at 

ATTN:

Privacy, Indigo Tech Group

10045 Dynamite Blvd. Ste 220

Scottsdale, AZ 85262

 

EU RESIDENT PRIVACY RIGHTS

These disclosures apply only to our processing of Personal Data within the scope of the General Data Protection Regulation (“GDPR”) from one or more of the European Union Member States plus Iceland, Lichtenstein and Norway (together known as the “European Economic Area” or “EEA”).

As a resident of the EU or EEA, you have certain rights with respect to the processing of your personal data, including:

• Access. You have the right to know if we are processing personal data about you and, if so, to access and obtain a copy of personal data about you, as well as information relating to the processing of that data.
• Correction. You have the right to have us promptly correct or update any personal data about you that is inaccurate or incomplete.
• Erasure. You have the right to request deletion or erasure of your personal data in a number of circumstances as required by law, including when no longer need the personal data for the purposes for which it was collected, you have withdrawn consent or, when we are relying on legitimate interests as a legal basis, and your rights override our legitimate interests.
• Portability. You have the right to obtain a copy of the personal data we hold about you in a structured machine-readable format and to have it transmitted to another controller. This right only occurs where we are relying on your consent or performance of a contract as our legal basis and the processing is carried out automatically.
• Restriction of Processing. You have the right to restrict or limit the ways in which we process your personal data when you contest the accuracy of the personal data, when your data has been obtained by us unlawfully, when you have objected to our processing of the data and we are considering whether to cease processing, or when we no longer need to process the personal data.
• Withdrawal of Consent. When we rely on consent as the basis for processing personal data, you have the right to withdraw your consent.
• Objection. You have the right to object to our processing of your personal data when we are relying on legitimate interests as our legal basis and your rights override our legitimate interests in processing their personal data. You also have the right to object to our processing of their personal data for direct marketing purposes.
• Complaint. You have the right to make a complaint about our personal data handling practices to your local Supervisory Authority.

If you reside in France, you also have the right to set guidelines for the retention and communication of your personal information after your death.

You are not required to pay any charge for exercising your rights. If you make a request, we have thirty (30) days to respond to you.

Residents in other jurisdictions may also have similar rights to the above.

Retention

We retain personal data pursuant to our records retention program, for as long as is necessary for the purposes set out in our Privacy Policy unless a longer period is required under applicable law or is needed to resolve disputes or protect our legal rights, in accordance with Article 5(1) of the GDPR.

Cross Border Transfer

Personal data that you directly provide to us through our Site is stored on servers in the United States. We do not transfer any personal data from the EEA to the United States without your prior express consent. We do not transfer any personal data from the United States to other countries unless they have adequate protections in place to protect it. 

Data Security

We seek to use reasonable organizational, technical and administrative measures to protect personal data within our firm. Unfortunately, no data system can be guaranteed to be secure at all times. If you have reason to believe that your interaction with us is no longer secure, please immediately contact us.

Contact

If you have questions or concerns about your rights as they relate to this Privacy Policy or the Website, please direct your inquiries to: support@indigotechgroup.com