arcatar.com Website Privacy & You

Last updated: OCT 23, 2024

I. Privacy & You - Some General Information

Arcatar (“we” or “Company”) supports your digital life and your success in an environment where we win together, as a community. Therefore, we only use your personal information for the defined, appropriate purpose of providing Arcatar’s mobile app, desktop app, browser extension, tools, website, and any services offered from time to time (each, and collectively, “Site”). And we aim to do that in a manner that meets - and hopefully exceeds - your expectations. Your use of our Site is subject to this Privacy Notice (“Notice”) our Terms of Use (“Terms”) and, where applicable, our Ethical Licensing Principles.

We care about your privacy and want to hear from you if you have questions, comments, or concerns. Contact us at privacy@arcatar.com.

We support the principles and values of Privacy by Design.

By using our Site, you consent to the procedures in this Notice.

What Information do we collect and what do we do with it?

On our website we use cookies to remember you. You can turn off most cookies and learn more at our Cookie Policy page. We use customer relationship management software that helps us document your visits, consents, preferences, and contact information; we use this information to contact you, respond to your requests, keep our Site(s) up and running, and keep records of how we resolved any concerns. We use analytics tools that provide us and our website host with anonymized website traffic and click information. We use this information to improve the website’s and other Sites’ visual aesthetics, make information easier to find, and generally provide you with a great experience that gets even better over time when you visit our Site.

Contact and Customer Service Information

When you provide contact information or billing information to submit a request or open an account or make a payment, we will collect and use that information to respond to you or conduct the requested transaction. In many cases, we will also make a record of what we did. For example, if you submit a help desk request and we respond to that request, we’ll also keep a copy of that conversation in case you need help again and we need to remember where we left off.

General Feedback, Surveys, and Reaching Out to Us

You’re not going to believe this, but if you submit feedback, we’re going to read it! So, whatever you write to us might get shared in our office as we respond and help you as best as we can. Please also note that any suggestions or feedback sent to us about our Site will not be treated as your intellectual property. And please do not include any confidential information in any feedback.

If you are participating in a focus group, any type of early access program, or are otherwise given special or early access to our Site, please note that you may be subject to additional rules and restrictions, including rules or restrictions relating to confidentiality, intellectual property, and feedback communications.

Automated Collection

If you swing by our website on the way to any one of our other Site(s), we remind you that the website does use cookies, but they are there to make sure the website works, not sell you anything.

On the website and within the app, we collect anonymous information about how people are working with and exploring the website or app, and information about how people are accessing our products (for example, your mobile device type). We use that information to give you a nice experience using our products that get even nicer over time, identify bugs, or do things like make sure we allocate the right amount of computer resources in the right places. After all, we don’t want to be wasteful!

Billing Information

We will collect standard billing information when fees are due. We keep records, including transaction details and related contact information, when we charge money for anything. That keeps our accountants happy.

What Else Do We Do With Your Information?

We have some compliance and customer service responsibilities that will require us to record and hold information about your account. In addition, we collect some data that allows us to create statistics and analyze how well our products work and if we can make them better.

Overall, we generally make sure that we treat your personal data respectfully and securely no matter who you are or where you live. We collect and use the minimum amount of data necessary to accomplish tasks with your information.

Third Parties

We work with some third parties. For example, we work with third parties to store information in databases, host our website, or process payments. Although we are not responsible for third party product or service issues, we value your feedback regarding your use of these third parties and their terms.

Cookies

With regard to cookies that are placed by our Site in your browser, please see the Cookie Policy at our website https://www.arcatar.com.

Data Rights

Everyone has rights to their data. It is yours after all. So whether you live in California, Colorado, or the EU, or any other state in the U.S. that has put many of these rights into a law or is planning to do so, we respect your rights to that data (“Data Rights”) and you can submit data-related requests to privacy@arcatar.com or the “Contact Us” button at our website. The “Specifics” section below provides more detail about how to exercise your Data Rights. Please note that only those persons who meet the definition of “consumer” are protected under those laws.

NOTE TO CALIFORNIA RESIDENTS: This information in this Notice applies to you, and a specific notice to California residents concerning "Shine the Light" law (Civil Code Section § 1798.83) is included below.

Kids

We have not developed our Site, and have not knowingly marked our Site, at persons under the age of 18. People under 18 should not use our Site unless a parent or guardian approves that use. If you are that parent or guardian, please use extra care to help the younger ones use our Site responsibly.

Data Transfers

Our databases are located in the USA, so if you are located outside the USA, data will be transferred to our servers in the USA. Generally regarding data transfers, we seek to follow best practices regarding all cross-border data transfers utilizing adequacy decisions, standard contractual clauses, and encryption and security practices as our guideposts for safely and securely handling and transferring data. If you have a specific question about your data, its residency, or transfers, please contact privacy@arcatar.com.

Changes and Updates

If you want to change or update your settings, including withdrawal of consent for something, check out your account settings or contact us at the “Contact Us” button on our website, https://www.arcatar.com/ . If we want to change something, be it this Notice or something about how our Site or Services work, we can do so. When changes are made or planning to be made, you will be notified as long as we have your contact information. Otherwise, it is up to you to come back from time to time for updates.

II. Privacy & You - The Specifics

This section sets out more specific statements, procedures, and policies about data collection and your Data Rights. Please read this section carefully to understand how to exercise your Data Rights and other important information about data collection. This section below is in addition to the general information above in Section I.

Information We Collect

We may collect or receive information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer, household, or device ("Personal Information" also means what others states’ laws may refer to as “Personal Data”). Personal Information does not include:

Publicly available information from government records.
Deidentified or aggregated consumer information.
Information excluded from the scope of some states’ privacy laws, such as health or medical information covered by HIPAA–and the California Confidentiality of Medical Information Act (“CMIA”)--or clinical trial data.
Personal Information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) and the Driver's Privacy Protection Act of 1994.
Information excluded from the scope of other federal laws

We may collect or receive (and may have done so during the 12-month period prior to the last update of this Notice) the types of Personal Information defined above in Section I and as further specified in the chart below.

NONE of this information is ever sold, shared, or used for targeted advertising. From time to time, our Site may ask you how or whether you may wish to engage with advertisers as part of our own Services, but any such Services are available only if and when you provide express consent, in advance, to participate in such Services.

The following chart of information may duplicate other collection information described in this Notice.

Category	Examples, Category of Recipients & How Shared	Collect
Biometric information	Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.	NO
Commercial information	Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. We record what Services you may purchase through our Site for our own record-keeping purposes. We do not share information about purchasing tendencies. We may share other commercial information with business and service partners that process data of financial transactions for their own independent use and to support us in providing customer support and verification Services to you.	YES
Communications	Communication details such as content of emails, text messages, call logs, or other communications where Arcatar is a party to the exchange. We may share this with business partners that receive data for their own independent use and to support us in providing customer support Services to you.	YES
Device and Online Activity Information	"Device" means any device that can access the Site such as a computer, a cell phone or a digital tablet. We may share this information with service partners and contractors as part of managing quality of Services for our customers, including security and other updates to the Site(s), and other purposes set forth in this Notice.	YES
Demographic Information	Examples include age, gender, citizenship, ethnicity, date of birth, family or marital status, household income, education, professional employment information, family health, number of children, number of cars owned, and software or virtual assets. Our Site includes certain types of virtual or digital assets in terms of managing your connection to your own content but does not otherwise include or collect “Demographic Information.”	YES
Financial Information	Credit or debit card numbers, financial account numbers, and claims information. When you make a purchase through our Site, we collect that purchase information that you give us. We may share that information with business partners and contractors who support our financial transaction systems.	YES
Geolocation data	Physical location or movements. We may share this with business and service partners that process data for security purposes, for their own independent use and to support us in providing customer support Services to you.	YES
Identifiers	A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver's license number, passport number, or other similar identifiers. We may share this with business and service partners that process data for security, account and identity verification, and for their own independent use and to support us in providing customer support Services to you.	YES
Inferences drawn from other personal information	Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. We may share this with business and service partners that process data to provide the services you request or as your activities and interests suggest on our Site, and in keeping with our Cookies Consent policy.	YES
Internet or other similar network activity	Browsing history, search history, information on a consumer's interaction with a Product or advertisement. We may share this with business and service partners that process data to provide the services you request or as your activities and interests suggest on our Site, and in keeping with our Cookies Consent policy.	YES
Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99))	Education records related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.	NO
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))	A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, education, employment, employment history, medical information, or health insurance information. (Some personal information included in this category may overlap with other categories.) We collect this information only to the extent needed to verify your identity. We share this information with service providers and contractors as part of the purpose of verifying your identity.	YES
Professional or employment-related information	Current or past job history or performance evaluations. We do not collect this information from consumers, nor do we share this information. We may collect this information, if at all, internally for our own human resource management purposes.	NO
Protected classification characteristics under California or federal law	Age (40 years or older), race, color, ancestry, national origin, citizenship, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information). This information may be collected only insofar as a means of identification, such as a government-issued identification, includes this information. We may share that identifying information with service providers and contractors to confirm your identity.	YES
Sensitive Personal Information	Examples include government-issued identifiers (such as social security, driver’s license, state identification card, or passport number), racial or ethnic origin, religious beliefs, mental or physical health diagnosis, sexuality, citizenship or immigration status, genetic or biometric data that is processed uniquely for the purpose of identifying an individual, personal data collected from a known child, and precise geolocation. (Some personal information included in this category may overlap with other categories.) This information may be collected only insofar as a means of identification, such as a government-issued identification that includes this information. We may share that identifying information with service providers and contractors to help us confirm your identity and record actions confirming that we did so. We do not ever knowingly collect personal data from anyone under the age of 18, nor do we use any government-issued identification outside the purpose of verifying your identity.	YES
Sensory data	Audio, electronic, visual, thermal, olfactory, or similar information	NO

We obtain the categories of personal information listed above from the following categories of sources:

Directly from you. For example, when you provide direct and informed consent for us to set up an account, a profile, a channel, or when you request or allow us to connect your social media accounts or other accounts or platforms that you own or control, or when you provide information about any specific gaming achievements and preferences. Confirming that we are dealing with humans is a significant part of our Company mission. Therefore we may obtain this information directly from you while confirming your activity with or on a Site is really you. We also may obtain financial and commercial information directly from you when you purchase a Service on our Site.
Indirectly from you. For example, from third parties for the identity validation process or from observing your actions with our Site.

As the chart above reflects, we do use and partner with different types of entities, business partners and contractors, to assist with our daily operations and manage our Services. Where we refer to or mention these other entities, we recommend that you review those companies’ privacy policies, which control their services provided to us, to ensure you agree with those policies.

For more on the information we collect, please see the remainder of this Notice.

And though we hate to repeat ourselves, we say it again here because it is important to our business as a Company: Arcatar does not sell your personal information.

Specifics around the Use of Personal Information

We collect and use personal information for business and commercial purposes in accordance with practices described in this Notice and our Terms and other related documentation (which is incorporated by reference into this Notice) including one or more of the following business purposes:
- To fulfill or meet the reason you provided the information. For example, if you share your name and contact information to create an account or ask a question about our products or Services, we will use that personal information to verify who you are and respond to your inquiry.
- To provide, support, personalize, and develop our Site.
- To create, maintain, customize, and secure your account with us.
- To process your requests, purchases, transactions, and payments and to prevent transactional fraud.
- To provide you with support and to respond to your inquiries, including to investigate and address your concerns and monitor and improve our responses.
- To help maintain the safety, security, and integrity of our Site, databases and other technology assets, and overall business.
- To help prevent and address fraud, breach of policies or terms, and threats or harm.
- Sending you technical notices, updates, security alerts, information regarding changes to our policies, and support and administrative messages.
- For testing, research, analysis, and product development, including to develop and improve our Site.
- To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
- As described to you when collecting your personal information.
- To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, other sale or transfer of some or all of our assets, or another similar business transaction, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred.
- To fulfill any other business or commercial purposes at your direction or with your notice and/or consent.
We will not collect additional categories of personal information or use the personal information we collected for materially different unrelated or incompatible purposes without providing you notice.

Sale or Share of Personal Information of Consumers Under 16 years of Age

Arcatar does not intend for its Site or any of its Services to be used by anyone under the age of 18. Arcatar thus does not sell or share (for any type of cross-context behavior advertising) the personal information of consumers under 16 years of age.

Your Data Rights and Choices

This section describes your specific Data Rights–including for California residents–and explains how to exercise those rights. Please note that if we do not have any data that can be associated with you (such as only aggregated or de-identified data), we may not be able to respond to your request beyond a statement that confirms our inability to satisfy a request due to the fact that we do not have any such data.

a. Right to Know

You have the right to request that we disclose certain information to you about our collection and use of your personal information in the preceding 12 months. Some states’ laws may refer to this as a Right to Access. Either way, you have the right to know this type of information. We first need to receive from you an “Authenticated Request” (a type of request that California law calls a “Verifiable Consumer Request”). We will then disclose to you, based upon your request:

The categories of personal information we collected about you.
The categories of sources for the personal information we collected about you.
Our business or commercial purpose for collecting that personal information.
The categories of third parties with whom we share that personal information.
The specific pieces of personal information we collected about you (this information also may be called and may trigger a data portability request).
If we sold or disclosed your personal information for a business purpose, two separate lists disclosing:
- sales, identifying the personal information categories that each category of recipient purchased; and/or
- disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained.

b. Right to Correct

If we maintain inaccurate personal information about you, you have the right to request us to correct that inaccurate personal information. Upon receipt of an Authenticated Request from you, we will use commercially reasonable efforts to correct the inaccurate personal information.

c. Right to Delete

You also have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive from you an Authenticated Request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.

We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:

Complete the transaction for which we collected the personal information, provide goods or services that you requested or that was requested on your behalf, take actions reasonably anticipated within the context of our ongoing business relationship with you, fulfill the terms of a written warranty, or otherwise perform our contract with you
Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities
Debug products to identify and repair errors that impair existing intended functionality
Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law
Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546, et seq.)
Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us
Comply with a legal obligation
Make other internal and lawful uses of that information that are compatible with the context in which you provided it

d. Right to Opt-Out and Opt-In

Arcatar does not sell personal information. To do so would be contrary to one of the primary reasons we exist as a Company! However, you may do so if you choose such an option as it may be available from time to time on our Site. Nevertheless, you have the right to direct us to not sell your personal information at any time (the "Right to Opt-Out"). Consumers who opt-in to personal information sales may opt-out of future interactions at any time.

e. Right to Data Portability

You may request to receive a copy of your Personal Information, including specific pieces of Personal Information, including, where applicable, to obtain a copy of the Personal Information you provided to us in a portable format.

Please note that if the Data Right concerns the Right to Access or the Right to Data Portability, we are not obligated to provide the information to the same consumer more than twice in a 12-month period.

How to Exercise Your Data Rights

If you would like to exercise any of the Data Rights described above, this section will tell you how to do so. Please read this section for what information we will need from you to respond to your request. There are two ways to contact us: You may (1) send us an email – using the address privacy@arcatar.com – or (2) contact us at our website https://www.arcatar.com/ by clicking “Contact Us.”

If you choose to contact us about one of your Data Rights, there is certain information we will need from you when you contact us. And because this relates to your personal information, keep in mind that only you, or someone legally authorized to act on your behalf, may make such a request for your personal information. This is why we require an Authenticated Request. (Even though our website (and Site) are not designed to be used for anyone under the age of 18, you may also make an Authorized Request on behalf of your minor child.)

Here is what we will need from you when you contact us to exercise any of the Data Rights:

An Authenticated Request: This means we need enough information to identify you, such as your full name, address and any user name, or any customer, account, or other reference number (if one was provided to you when you signed up on our Site for any of our Services)
A description of (1) what right you want to exercise and (2) the information to which your request relates

If we cannot verify your identity from the information you provide us with your initial request, we may request additional information, such as some type of government I.D., or perhaps a recent utility bill.

Keep in mind that we are not obligated to make a substantive response to you if we cannot verify that the person making the request is the person about whom we actually collected information, or is someone authorized to act on your behalf or such person's behalf.

For some requests, California’s CCPA does not require a “verifiable consumer request” to trigger a required response from us.

Any personal information we collect from you to verify your identity in connection with an Authenticated Request will be used solely for the purposes verifying the identity of the person making the request or verifying the requesting party’s authority to make the request

Timing for our Response and Format

If your request is one regarding your Right to Delete, Right to Correct or Right to Know, we will confirm receipt of your request within 10 days. If for some reason you do not receive such a confirmation receipt within 10 days, please send us an email to privacy@arcatar.com as an error may have occurred.

We will make a substantive response within forty-five (45) days of our receipt of your request. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing to the email address that you provide to us. We cannot be responsible for a failure to respond if you do not update your email address where we may reach you.

Any disclosures we provide will only cover the 12-month period preceding the date on which we receive your Authenticated Request. The response we provide will also explain the reasons we cannot comply with a request, if applicable.

Once we find we have the information required to verify your identity and determine that we have data that is subject to your data to have that data deleted, we will delete that data. Our response to you will describe and verify this course of action.

Fee

We do not charge a fee to process or respond to your Authenticated Consumer Request unless it is excessive, repetitive, or manifestly unfounded.

Appeal Process If We Deny Your Request

Your Deadline to Appeal: If you disagree and wish to dispute our response to your Authenticated Request, you may appeal our decision by (1) contacting us at privacy@arcatar.com and including APPEAL in the subject line; and (2) state the reasons for your appeal. You must send your request for an appeal no later than 20 days after you receive our response to your Authenticated Request.
Our Deadline to Respond to Your Appeal: We will make a substantive response to your appeal request for an appeal on or before 45 days after we receive your request. We are only required to respond to your appeal if we receive your request on or before the 20th day after you receive our response to your Authenticated Request.
Denial of Appeal: If we deny your appeal, you may contact the relevant enforcement authorities in your state for next steps, if any. The list below includes contact information for those states that have enacted privacy laws with a specific appeal process to the local enforcement authority. If your state is not listed here, we recommend you consult the relevant agency in your state, which is typically the Office of the Attorney General for your state.

California

Frequently Asked Questions (FAQs) - California Privacy Protection Agency (CPPA)
- You may submit a complaint; or
- You may file a paper complaint by printing and filling out this form and mailing the complaint to the address listed on the form.

Colorado

Consumer Protection
Office of the Attorney General / Colorado Department of Law
Ralph L. Carr Judicial Building
1300 Broadway, 10th Floor
Denver, CO 80203
(720) 508-6000

Connecticut

Complaint Form Landing page
Consumer Assistance Unit: 860-808-5420
General Inquiries: Attorney.General@ct.gov
Office of the Attorney General
165 Capitol Avenue
Hartford, CT 06106

Delaware

Personal Data Privacy Portal - Delaware Department of Justice - State of Delaware
Consumer Complaints - Delaware Department of Justice - State of Delaware
If you are unable to fill out the Consumer Complaint Form available at the links above:
- Call (800) 220-5424 or
- e-mail consumer.protection@delaware.gov for assistance.

Iowa

File a Consumer Complaint | Iowa Attorney General
consumer.consumer@ag.iowa.gov
515-281-5926 or 888-777-4590
Office of the Attorney General of Iowa/Consumer Protection Division
Hoover State Office Building
1305 E. Walnut Street
Des Moines, Iowa 50319-0106

Minnesota

File a Complaint
Office of Minnesota Attorney General
445 Minnesota Street, Suite 1400
St. Paul, MN 55101
(651) 296-3353 (Twin Cities Calling Area)
(800) 657-3787 (Outside the Twin Cities)
(800) 627-3529 (Minnesota Relay)

Montana

Office of Consumer Protection - Montana Department of Justice
800-481-6896
contactocp@mt.gov
Office of Consumer Protection
P. O. Box 200151
Helena, MT 59620-0151

Nebraska

AGO | Nebraska Attorney General's Office (includes link for form to complete and submit online)
Consumer Affairs Response Team
Nebraska Attorney General's Office
2115 State Capitol
Lincoln, NE 68509
1-800-727-6432

New Hampshire

Consumer Protection & Antitrust Bureau | New Hampshire Department of Justice
New Hampshire Department of Justice
Office of the Attorney General
1 Granite Place South
Concord, NH 03301
(603) 271-3658

New Jersey

Pages - To File a Complaint
Department of Law and Public Safety
Division of Consumer Affairs
124 Halsey Street, Newark, New Jersey 07102
(973) 504-6200 or (800) 242-5846
AskConsumerAffairs@dca.njoag.gov (general inquiries)

Oregon

Consumer Privacy - Oregon Department of Justice (includes Complaint Form)
Consumer Hotline: 1-877-877-9392

Tennessee

File a Complaint
(615) 741-4737 or (800) 342-8385

Texas

Consumer Protection Hotline: (800) 621-0508
File a Consumer Complaint | Office of the Attorney General
Consumer Complaint Portal

Utah

Office of the Attorney General
Utah State Capitol Complex
350 North State Street Suite 230
SLC UT 84114-2320
Complaints - Utah Attorney General
https://dcp.utah.gov/

Virgina

Consumer Protection Hotline: 804-786-2042
https://www.oag.state.va.us/images/OAG-Tile-Image.jpg

No Discrimination

We will not discriminate against you for exercising any of your Data Rights. Unless permitted by applicable law, we will not:

Deny you goods or services.
Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
Provide you a different level or quality of goods or services.
Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services if you choose to exercise your rights.

No Financial Incentive

We do not offer any financial incentives or service difference in an attempt to influence a consumer’s decision whether or not to exercise a right afforded to the consumer under their state consumer privacy laws.

Other California Privacy Rights

California's "Shine the Light" law (Civil Code Section § 1798.83) permits users of our Product and Services that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. In particular, customers who are residents of California may request:

a list of the categories of personal information disclosed by us to third parties during the immediately preceding calendar year for those third parties’ own direct marketing purposes; and
a list of the categories of third parties to whom we disclose(d) such information.

To make such a request, please send an email to privacy@arcatar.com or reach out on our website https://www.arcatar.com/ by clicking on “Contact Us.”

For these other requests as well, we may require additional information from you to allow us to verify your identity. Please note that we are only required to respond to requests once during any calendar year.

ADDITIONAL CONTACT INFORMATION

arcatar, Inc.,
ATTN: Privacy, arcatar, Inc.,
1101 W 34^th Street, #115
Austin, Texas 78705