This Privacy Policy describes the policies and procedures of BodyArt App Inc. and any subsidiaries and affiliated entities (together, “BodyArt App”, “we” or “us”) with respect to the Services (defined in our Terms of Services) offered or made available by BodyArt App. By using or accessing the Services, or by submitting information to BodyArt App, You consent to this Privacy Policy.

For purposes of this Privacy Policy, users may be theShop Owner, the Client, an Authorized User, the Parent (collectively, the ShopOwner, Client, Authorized User, Parent are referred to as “User”, “You”,“Your”).

Any terms capitalized terms that are not defined herein this Privacy Policy are defined in the Terms of Services.

Changes

We may revise and update these Terms of Services from time to time in our sole discretion. All changes are effective immediately when we post them, and apply to all access to and use of the Site thereafter. Your continued use of the Site following the posting of revised Terms of Services means that You accept and agree to the changes. You are expected to check this page from time to time so You are aware of any changes, as they are binding on You.

As used in this policy, the terms "using"and "processing" information include subjecting the information to statistical or other analysis and using or handling information in any way, including, but not limited to collecting, storing, evaluating, modifying, deleting, using, combining, disclosing and transferring information within our organization or among our affiliates within the United States or internationally and using cookies on a computer.

‍

Security and Protection of Your Information

BodyArt App is very concerned with safeguarding Your information and protecting the security of Your personal information. We use appropriate, industry-standard security measures and technology to protect against unauthorized access to, or unauthorized alteration, disclosure or destruction of user information covered by this Privacy Policy (excluding any such data that may be disclosed or publicly shared in accordance with this Privacy Policy). In this regard, we employ administrative, physical and electronic measures (including certain encryption technologies) designed to protect Your personal information from unauthorized access and disclosure and to safeguard Your information against loss, theft, alteration and destruction. No method of security is 100% secure. In addition, some of Your information maybe protected by passwords selected and maintained by You. Accordingly, the security of such information will depend upon the strength of Your selected password and Your ability to keep such password secured and confidential.

We will make any legally required disclosures of any breach of the security, confidentiality, or integrity of Your electronically stored personal data to Your email or in writing in an expedient manner and without unreasonable delay, insofar as these are consistent with (i) the legitimate needs of law enforcement or (ii) any measures necessary to determine the scope of the breach and restore the reasonable integrity of the data system.

‍

Information We Collect About You

We collect, receive, generate and store the following types of information:

Personal Information

Personal information is information that can be used to identify or contact You, including but not limited to Your name, address, company name, email address, birthday, telephone number, account identifiers, account password, payment information, credit card information and other billing data.
We collect, receive and store certain of Your personal information when You connect or register for the Services or when You directly provide such information in connection with sign-up, registration, use or interaction with the Services, including without limitation when You use the Services online, download or link to the Services, open any related account, enter or upload Your personal information into the Services, subscribe to a newsletter, respond to a survey, fill out a form, or complete Your profile through the Services.
Clients will also be asked to provide medical information (including information about their diseases, medical conditions, allergies, and medication use) when they use the Service. They may also be asked for a driver’s license number or passport number and for images of their ID.
If You sign up via a social network like Facebook, Your agreement (and our access to Your information) takes place when You instruct, accept, or allow Facebook to register You for the Site or otherwise connect You to the Site. We will collect such information as You allow based onYour social media settings and the policies of the social media site. We may also collect information to verify Your social media credentials.
We may receive some of Your personal information from third parties with which You have signed up or have an account and which are involved with or connected to the Services. In connection with any of the foregoing, we may receive personally identifiable health information from or about You, in which case, such personally identifiable health information will be subject to certain confidentiality and legal protections as described in detail below.

‍

Information We Collect Through Automatic Data Collection Technologies

We receive, collect, generate and store certain types of information whenever you use the Services or otherwise interact with us. We may do this directly or through third party tools, services, stores, accounts or hosting platforms involved with or connected to the Services (including without limitation analytics tools and ad serving technologies). See Cookie Policy for more information. For example, we and our third party service providers may automatically record Your use of and activity on the Services (such as amount, type and manner of use and interaction; time and date of Your activities; type and amount of User Data submitted to the Services and other metrics).
‍
We and our service providers may also collect information about Your mobile device or computer on which You use the Services, such as Your unique device identifiers, device type, model and version, Apple ID or Android, coarse location, fine location, GPS coordinates, source and status of network connection, internet service provider, IP address, browser type, operating system or other software used, page views, domains and similar information.

Also, we may automatically send and receive information to and from Your device or computer in connection with Your use of the Services. Like many websites and online applications and services, we may also use "cookies" (see below), log files, web beacon technologies and other automated tools to obtain certain types of information when Your web browser or other application accesses our Services.

‍

How We Use Your Information

BodyArt App may use the information submitted, collected, received or generated from or about all Users of the Services for any of the following purposes:

To provide Services to User.
To operate, provide, administer, develop, and improve the Services and to operate and support BodyArt App’s related businesses.
To better understand how Users access and use the Services on an aggregated and individualized basis, to track and monitor usage, to conduct quality control, to fix technical and other errors or problems, to conduct market research and to respond to User desires and preferences.
To analyze, compile, publish, and otherwise similarly utilize information (other than personal health information) relating to usage of the Services.
For advertising, marketing and promotional purposes by or for BodyArt App (but not to provide personal health information to third parties for advertising by such third parties unrelated to the BodyArtApp or the Services).
To provide personalized experiences and recommendations, language and location customization, personalized help and instructions, or other responses to Your usage of our Services.
To track Your purchases and usage as necessary for the purpose of our complying with any third party agreements or obligations (such as, for example, payments to third parties).
To provide You with support and handle inquiries.
To communicate with or contact You concerning Your account or Your usage of or participation in the Services, and for other customer service. This may include use of Your e-mail address to send You messages and notices for the purposes described above and below.
If applicable, to bill Shop Owner, process payments and for authorization, account history and billing purposes. For example, this may include credit card authorization and verification for purchases made from BodyArt App.
To offer Shop Owner content, services, or other products and services, including to develop new services and products.
To provide You with news and newsletters, special offers, promotions, and targeted advertising.
To comply with applicable laws, rules and regulations and any regulatory mandate or court order.
To enforce our Terms of Service and other applicable agreements, rights and remedies.
To protect the safety of any person, to address fraud, security or technical issues, or to protect BodyArt App’s rights or property.

‍

When We Disclose Your Information

BodyArt App does not rent, sell or publicize Your personal information or personally identified health information without Your prior consent. Use of personal health information is further subject to the restrictions described in more detail below.
‍
Information provided by our Users is an important part of our business. BodyArt App will share and disclose information submitted, collected, received or generated from and/or about You only as compatible with the purposes described above (except for certain personal health information which shall be kept confidential as described below), when we have Your consent(as may be provided by you from time to time through the Services or otherwise), and as described in this section as follows:

Public Forum. Any User Data or other User information, content or materials submitted, posted, shared, transmitted or otherwise provided to public portions of the Services (such as video chatrooms, discussion groups, bulletin boards and similar forums) or portions of the Services designed for broad user access (such as reviews, focused user groups, etc.) are or may be shared with the public without restriction. BodyArtApp also reserves the right to publish or make publicly available any information that is already publicly available prior to the time first provided to or collected by BodyArt App or information that becomes publicly available without any action or omission on the part of BodyArt App.
Disclosures in Connection with Permitted User. BodyArt App may disclose Your information to third parties (including without limitation to publishers and business partners) in connection with the purposes described in the previous section such as, for example, to implement advertising, marketing, publishing or promotional activities or transactions, or to publish, sell and otherwise exploit information (other than personal information or personal health information) relating to usage and users of the Services.
BodyArt App Affiliates. We may share Your information with our subsidiaries and other affiliates, but only if those entities are either subject to this Privacy Policy or follow practices at least as protective as those described in this Privacy Policy.
Contractors, Collaborators and Agents. We may employ other companies and individuals to perform functions or otherwise act on our behalf. Examples include processing payments, resolving service problems, correcting errors related to the execution of the Services, sending postal mail and e-mail, removing repetitive information from customer lists, analyzing data, providing marketing assistance (including data concerning marketing and promotional programs), hosting websites or software, developing websites and software, providing customer service, assisting BodyArt App with providing, administering, developing or improving the Services, and/or for other purposes within the ordinary course of business. All contractors, collaborators and agents agree to abide by same confidentiality obligations as BodyArtApp, including associated heightened privacy requirements relating to personal health information You provide to us where, if applicable, mandated by law.
Business Transfers and Collaborations. As we continue to develop our business, we might sell our company and its business or assets or sell or buy online sites, services, subsidiaries, or other businesses; or we might collaborate or partner with other companies in strategic transactions, publishing or distribution arrangements, business arrangements or licenses. In such transactions, client, customer, and user information and information regarding usage of the Services generally would be one of the transferred business assets or otherwise one of the components of, or involved in, the transaction, we may therefore share this information in connection with such transactions or arrangements.
Compliance with Law and Protection of BodyArt App and Others. We reserve the right to disclose Your personal information and any other information when we believe release is appropriate to comply with the law, judicial proceeding, court order, subpoena or other legal process provided that we provide You reasonable notice of the order, subpoena or request to allow You to seek a protective order, if necessary; detect, prevent, or otherwise address fraud, security, emergency situations or technical issues; enforce or apply our Terms of Service and other agreements, rights and remedies; or protect the rights, property, or safety of BodyArt App, our employees and contractors, our users, or others. This includes exchanging information with law enforcement, other companies and organizations for criminal activity, fraud protection and credit risk reduction purposes.

‍

Confidentiality And Security of Health Information

We are required to, among other things, apply reasonable and appropriate measures to safeguard the confidentiality, integrity and availability of PHI we store and process on behalf of such providers. We are also subject to laws and regulations governing the use and disclosure of certain PHI.

‍

Assessing And Correcting Your Information

You may also send us an email at contact@bodyart.app request access to, correct or delete any personal information that You have provided to us. We cannot delete Your personal information except by also deleting Your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.
‍
If You would like us to delete Your personal information in our system, please contact us at contact@bodyart.app and we will accommodate Your request (but will not do so if we have any legal obligation to retain the record). In such cases, we ask individual users to identify themselves and the information requested to be accessed, corrected or removed before processing such requests. If BodyArt App is unable to destroy or delete the information due to legal obligations or because it is not feasible or because it is unduly burdensome or impractical or would jeopardize the privacy of others or the integrity of the Services, BodyArt App is not obligated to do so, but BodyArt App shall provide a written response stating the reason(s) it cannot fulfill the request. Because of the way we maintain certain Services, after You delete Your information, residual copies may take a period of time before they are deleted from our active servers and may remain in our backup systems. We are not responsible for updating, correcting or removing any of Your information disclosed to or held by third parties.

Please be aware BodyArt App is under no obligation to maintain and store any of Your information (including any personal information or User Data) or otherwise to maintain and operate the Services. BodyArt App reserves the right to cease or modify operation of the Services at any time – in such case, Your information (including any personal information and User Data) may no longer be available. If You desire to maintain access to any such information, You are encouraged to keep a backup of such information in other locations.

‍

Cookies And Other Files

Like many services, websites or applications, we may use "cookies", pixel tags, locally shared objects, web beacons or similar technologies to collect information. A cookie is a small data file that we transfer to Your computer's or device’s memory for record-keeping purposes. Please see our Cookie Policy for more information. We may use cookies or such other technologies to improve the quality of the Services, including for storing user preferences and tracking user trends and for any of the other purposes permitted in this Privacy Policy. We may utilize persistent cookies to save Your registration/member ID and login password for future logins to the Services. We may utilize session ID cookies to enable certain features of the Services, to better understand how You interact with the Services and to monitor aggregate usage by BodyArt App users and traffic routing on the Services. Unlike persistent cookies, session cookies are usually deleted from Your computer or device when You log off from the Services and then close Your browser or application. Third party advertisers on the Services may also place or read cookies on Your browser or within the Services or other application.
‍
Log file information may be automatically reported by Your browser or device application each time You access a web page, app or other electronic location. When You use the Services, our servers may record certain information that Your web browser, the Services or other application sends whenever You utilize the Services, visit any website or utilize any other services or applications.

‍

Your California Privacy Rights

If You are a California resident, California law may provide You with additional rights regarding our use of Your personal information. To learn more about Your California privacy rights, reference BodyArt App Privacy Policy For California Residents, below.

‍

International Transfer

Our Services are hosted in the United States. If You use the Services from the European Union, Asia or any other country outside the United States with laws or regulations governing personal data collection, use and disclosure that differ from the United States laws and regulations, please be advised that through Your continued use of the Services, You are transferring Your information to the United States and You consent to that transfer. Your information may be transferred to - and maintained on - computers located outside of Your state, province, country or other governmental jurisdiction where the privacy laws may not be as protective as those in Your jurisdiction. If You are located outside the United States and choose to provide information to us or use the Services, BodyArt App transfers personal information to the United States and processes it there, and Your submission of such information represents Your consent and agreement to that transfer. We ensure Your personal data is protected by requiring all our group companies to follow the same rules when processing Your personal data. These rules are called "model contract clauses rules". Please contact us if You want further information on the specific mechanism used by us when transferring Your personal data out of the EEA.

‍

Data Retention

By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for [six] years after they cease being customers for tax purposes.

In some circumstances we will anonymize Your personal data (so that it can no longer be associated with You) for research or statistical purposes, in which case we may use this information indefinitely without further notice to You.

In the event that You do not use the App for a period of 7 Years then we will treat the account as expired and Your personal data may be deleted.

‍

Your Legal Rights

Under certain circumstances You have the following rights under data protection laws in relation to Your personal data.

You have the right to:

Request access to Your personal data (commonly known as a "data subject access request"). This enables You to receive a copy of the personal data we hold about You and to check that we are lawfully processing it.
Request correction of the personal data that we hold about You. This enables You to have any incomplete or inaccurate data we hold about You corrected, though we may need to verify the accuracy of the new data You provide to us.
Request erasure of Your personal data. This enables You to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove Your personal data where You have successfully exercised Your right to object to processing (see below), where we may have processed Your information unlawfully or where we are required to erase Your personal data to comply with local law. Note, however, that we may not always be able to comply with Your request of erasure for specific legal reasons which will be notified to You, if applicable, at the time of Your request.
Object to processing of Your personal data and there is something about Your particular situation which makes You want to object to processing on this ground as You feel it impacts on Your fundamental rights and freedoms. You also have the right to object where we are processing Your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process Your information which override Your rights and freedoms.
Request restriction of processing of Your personal data. This enables You to ask us to suspend the processing of Your personal data in the following scenarios:
(a) if You want us to establish the data's accuracy; (b) where our use of the data is unlawful, but You do not want us to erase it; (c) where You need us to hold the data even if we no longer require it as You need it to establish, exercise or defend legal claims; or (d) You have objected to our use of Your data but we need to verify whether we have overriding legitimate grounds to use it.
Request the transfer of Your personal data to You or to a third party. We will provide to You, or a third party You have chosen, Your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which You initially provided consent for us to use or where we used the information to perform a contract with You.
Withdraw consent at any time where we are relying on consent to process Your personal data. However, this will not affect the lawfulness of any processing carried out before You withdraw Your consent. If You withdraw Your consent, we may not be able to provide certain products or services to You. We will advise You if this is the case at the time You withdraw Your consent.

You can exercise any of these rights at any time by contacting us at contact@bodyart.app

‍

Children's Privacy

In order to use our Services You must represent and warrant that You are over the age of 18 before using, downloading or accessing the Services. Children under the age of 18 are not eligible to use the Services and must not attempt to download the Services, register with BodyArt App and/or submit any personal information to us without the consent and at the direction of a Parent. We do not knowingly collect personal information from any person who is under the age of 18 or allow them to register without Parent consent. I fit comes to our attention that we have collected personal data from a person under the age of 18, we will delete this information as quickly as possible.
‍
Without limiting the generality of the foregoing, our Services do allow users above the age of 18 years old – such as care providers, parents and guardians – to submit personal information about others, including minors. Such Users assume full responsibility over their submission, use and transmission of such information.

‍

Third Party Sites, Services, And Applications

Our Services may contain links to, interoperate with, and allow You to share content to and from third party services, websites and applications. The fact that we link to a website, service or application or allow You to share content through these third parties is not an endorsement, authorization or representation that we are affiliated with that third party, nor is it an endorsement of their privacy or information security policies or practices. Other websites, services and applications follow different rules regarding the collection, use, storage or disclosure of the personal and other information. The use, storage and disclosure of such information by these third parties is subject to their own privacy policies and BodyArt App has no responsibility or liability for such third parties’ acts or omissions, or the information provided to them.

‍

Contact Information

If You have any questions or comments about this PrivacyPolicy, the ways in which BodyArt App collects and uses Your information described here and in the Privacy Policy, Your choices and rights regarding such use, or wish to exercise Your rights under California law, please do not hesitate to contact us at:
‍
Email: contact@bodyart.app

Postal Address:
‍BodyArt App, Inc.
Attn: Data Privacy Officer
170 CaliforniaAve., No 1681
Oakdale, CA 95361 United States

If You need to access this Privacy Notice in an alternative format due to having a disability, please contact us at contact@bodyart.app

‍

BodyArt App Privacy Policy For California Residents

This Privacy Policy for California Residents supplements the information contained in BodyArt App's Privacy Policy and applies solely to all visitors, users, and others who reside in theState of California ("consumers" or "you").We adopt this notice to comply with the California Consumer Privacy Act of 2018 (CCPA) and any terms defined in the CCPA have the same meaning when used in this Policy.
‍
Where noted in this Policy, the CCPA temporarily exempts personal information reflecting a written or verbal business-to-business communication ("B2B personal information") from some its requirements.

‍

Information We Collect

Our Site collects information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer, household, or device ("personal information"). Personal information does not include:

Publicly available information from government records.
Deidentified or aggregated consumer information.

In particular, our Site has not collected the following categories of personal information from consumers within the last twelve (12)months:

‍

Category

Examples

Collected

A. Identifiers

A real name, alias, postal address, unique personal identifier, online identifier,Internet Protocol address, email address, account name, driver's license number, passport number, or other similar identifiers.

B. Personal information categories listed in the California CustomerRecords statute (Cal. Civ. Code § 1798.80(e)).

A name, signature, physical characteristics or description, address, telephone number, passport number, driver's license, bank account number, credit card number, debit card number, or any other financial information, medical information, or health information.

Some personal information included in this category may overlap with other categories.

C. Protected classification characteristics under California or federal law.

None.

D. Commercial information.

Products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.

E. Biometric information.

Fingerprints and faceprints.

F. Internet or other similar network activity.

Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.

G. Geolocation data.

Physical location or movements.

H. Sensory data.

None.

I. Professional or employment-related information.

None.

J. Non-public education information (per the Family Educational Rightsand Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).

None.

K. Inferences drawn from other personal information.

Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

‍

Our Site obtains the categories of personal information listed above from the following categories of sources:

Directly from you. For example, from forms you complete or products and services you purchase.
Indirectly from you. For example, from observing your actions on our Site.

‍

Use of Personal Information

We may use, or disclose the personal information we collect for one or more of the following purposes:

To fulfill or meet the reason you provided the information. For example, if you share your name and contact information to request a price quote or ask a question about our products or services, we will use that personal information to respond to your inquiry. If you provide your personal information to purchase a product or service, we will use that information to process your payment and facilitate delivery. We may also save your information to facilitate new product orders or process returns.
To provide, support, personalize, and develop our Site, products, and services.
To create, maintain, customize, and secure your account with us.
To process your requests, purchases, transactions, and payments and prevent transactional fraud.
To provide you with support and to respond to your inquiries, including to investigate and address your concerns and monitor and improve our responses.
To personalize your Site experience and to deliver content and product and service offerings relevant to your interests, including targeted offers and ads through our Site, third-party sites, and via email or text message (with your consent, where required by law).
To help maintain the safety, security, and integrity of our Site, products and services, databases and other technology assets, and business.
For testing, research, analysis, and product development, including to develop and improve our Site, products, and services.
To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
As described to you when collecting your personal information or as otherwise set forth in the CCPA.
To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us about our Site users is among the assets transferred.

We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.

‍

Sharing Personal Information

We may share your personal information by disclosing it to a third party for a business purpose. We only make these business purpose disclosures under written contracts that describe the purposes, require the recipient to keep the personal information confidential, and prohibit using the disclosed information for any purpose except performing the contract. In the preceding twelve (12) months, BodyArt App has not disclosed personal information for a business purpose to the categories of third parties indicated in the chart below.

We do not sell personal information. We may also share your personal information by selling it to third parties, subject to your right to opt-out of those sales. In the preceding twelve (12) months, BodyArt App has not sold the following categories of personal information to the categories of third parties indicated in the chart below. For more on your personal information sale rights, see Personal Information Sales Opt-Out and Opt-In Rights.

‍

Personal Information Category

Category of Third-Party Recipients

Business Purpose Disclosures

Sales

A. Identifiers.

YES

B. California Customer Records personal information categories.

YES

C. Protected classification characteristics under California or federal law.

D. Commercial information.

YES

E. Biometric information.

YES

F. Internet or other similar network activity.

YES

G. Geolocation data.

YES

H. Sensory data.

I. Professional or employment-related information.

J. Non-public education information.

K. Inferences drawn from other personal information.

‍

Your Rights And Choices

The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.
‍

Right to Know and Data Portability

‍
‍You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months (the "right to know"). Once we receive your request and confirm your identity (see Exercising Your Rights to Know or Delete), we will disclose to you:

The categories of personal information we collected about you.
The categories of sources for the personal information we collected about you.
Our business or commercial purpose for collecting or selling that personal information.
The categories of third parties with whom we share that personal information.
If we sold or disclosed your personal information for a business purpose, two separate lists disclosing:
sales, identifying the personal information categories that each category of recipient purchased; and
disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained.
The specific pieces of personal information we collected about you (also called a data portability request).
We do not provide a right to know or data portability disclosure for Users that provide B2B personal information.

‍

Right to Delete

‍
‍You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions (the "right to delete"). Once we receive your request and confirm your identity (see Exercising Your Rights to Know or Delete), we will review your request to see if an exception allowing us to retain the information applies. We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:

Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, or otherwise perform our contract with you.
Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
Debug products to identify and repair errors that impair existing intended functionality.
Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if you previously provided informed consent.
Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
Comply with a legal obligation.
Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
We will delete or de-identify personal information not subject to one of these exceptions from our records and will direct our service providers to take similar action.

We do not provide these deletion rights for Users that provide B2B personal information.
‍

Exercising Your Rights to Know or Delete

‍
‍To exercise your rights to know or delete described above, please submit a request by emailing us at contact@bodyart.app.
‍
Only you, or someone legally authorized to act on your behalf, may make a request to know or delete related to your personal information.

You may also make a request to know or delete on behalf of your child by emailing us at contact@bodyart.app.

You may only submit a request to know twice within a 12-month period. Your request to know or delete must:

Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information.
Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.

You do not need to create an account with us to submit a request to know or delete. However, we do consider requests made through your password protected account sufficiently verified when the request relates to personal information associated with that specific account.

We will only use personal information provided in the request to verify the requestor's identity or authority to make it.

For instructions on exercising your sale opt-out or opt-in rights, see Personal Information Sales Opt-Out and Opt-In Rights.
‍

Response Timing and Format

‍
‍We will confirm receipt of your request within ten (10) business days. If you do not receive confirmation within the 10-day timeframe, please contact us at contact@bodyart.app.
‍
We endeavor to substantively respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to another 45 days), we will inform you of the reason and extension period in writing.

If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option.

Any disclosures we provide will only cover the 12-month period preceding our receipt of your request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

‍

Personal Information Sales Opt-Out and Opt-In Rights

‍
‍If you are age 16 or older, you have the right to direct us to not sell your personal information at any time (the "right to opt-out"). However, we do not sell the personal information of consumers we actually know are less than 18 years old, unless we receive affirmative authorization (the "right to opt-in") from the parent or guardian of a consumer less than 18 years old. Consumers who opt-in to personal information sales may opt-out of future sales at any time.
‍
To exercise the right to opt-out, you (or your authorized representative) may submit a request to us by emailing contact@bodyart.app.

Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize personal information sales.However, you may change your mind and opt back into personal information sales at any time by emailing contact@bodyart.app.

You do not need to create an account with us to exercise your opt-out rights. We will only use personal information provided in an opt-out request to review and comply with the request.

‍

Non-Discrimination

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

Deny you goods or services.
Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
Provide you a different level or quality of goods or services.
Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.

However, we may offer you certain financial incentives permitted by the CCPA that can result in different prices, rates, or quality levels. Any CCPA-permitted financial incentive we offer will reasonably relate to your personal information's value and contain written terms that describe the program's material aspects. Participation in a financial incentive program requires your prior opt-in consent, which you may revoke at any time.

‍

Other California Privacy Rights

California's "Shine the Light" law (Civil CodeSection § 1798.83) permits users of our Site that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an email to contact@bodyart.app or write us at: BodyArt App, Inc., Attn: Data Privacy Officer, 170 California Ave, No. 1682, Oakdale, CA 95361.

‍

Canada Privacy Rights

Our privacy practices are intended to comply with applicable privacy laws, and we will maintain the privacy and security of your Information as required by applicable privacy laws. Your Personal Health Information will be stored on servers physically located in Canada (but may be temporarily viewed, accessed, used or transferred outside of Canada as necessary for installing, implementing, maintaining, repairing, trouble shooting or upgrading the Platform). Personal Information (but not Personal Health Information) may be stored outside of Canada.

‍

Changes To Our Privacy Policy

We reserve the right to amend this privacy policy at our discretion and at any time. When we make changes to this privacy policy, we will post the updated notice on the Site and update the notice's effective date. Your continued use of our Site following the posting of changes constitutes your acceptance of such changes.

‍

Contact Information

If you have any questions or comments about this notice, the ways in which BodyArt App collects and uses your information described here and in the Privacy Policy, your choices and rights regarding such use, or wish to exercise your rights underCalifornia law, please do not hesitate to contact us at:
‍
Email: contact@bodyart.app

Postal Address:
‍BodyArt App,Inc.
Attn: Data Privacy Officer
5424 Sunol Blvd. Ste 10 PMB 1149
Pleasanton, CA 94566-7705 United States

If You need to access this Privacy Notice in an alternative format due to having a disability, please contact us at contact@bodyart.app

‍