QuizToo, Inc. Website Privacy Policy

Introduction

At QuizToo, Inc. (“Company”, “We”, “Us”, “Our”, etc.), We strive to be clear about what we’re doing with your data, whether that’s how we store it, where we get it from, what we need it for, and more. Privacy is about freedom of identity, and that’s why we want you (“You”, “Your”, etc.) to feel like you are making a clear decision if you consent to our privacy policy.

This privacy policy applies to our data collection practices when you visit or interact with quiztoo.com (“Website”) or any of our properties, such as those managed through notifications by email or other direct communication. It covers QuizToo, Inc. and its employees’ handling of your data collected under the terms of this policy.

If we get data from or about you from a different source, then it is not governed by this privacy policy unless we explicitly state otherwise. One example of a different source would be if you walked into our office and left your business card — we’d have information about you, but it wouldn’t be covered by this privacy policy. Another example would be if you had given your business card to your neighbor, and your neighbor gave us your business card because they thought it would be helpful — that also wouldn’t be covered by this privacy policy. This policy also doesn’t apply to any links to other websites. Links to other websites are governed by the privacy policies of those specific websites.

For the purposes of the General Data Protection Regulation (known as the “GDPR”), QuizToo, Inc., located at 3120 Southwest Fwy Ste 101 PMB 562942, Houston, TX, 77098-4520, is a “Data Controller.” This means that we direct the flow of collected personal information, as opposed to being a “Data Processor,” which is a person or company that does things with and to the information.

What You Can Do to Let Us Know You Accept This Privacy Policy

We do our best to remind you that you are opting-in to specific types of data gathering and use when you are interacting with our site. This includes when we display a button requiring users to accept the Company terms before they can submit information.

Technology isn't perfect though, so those reminders might not always be there. That's why we ask you to please remember as you use the site, that when you provide any information to us, that information will be stored and used by us as described in this policy. Some information that we gather isn't as obvious though, like, for example, when we collect information using cookies. That's why it's important to remember that using our website means that you are opting-in to our use of cookies and other automatic tracking technologies. To learn more about what we collect, how we collect it, and why, keep reading!

Information We Collect About You

We use this section to explain our data collection practices to you. We only collect information from you that allows us to make the site run smoothly and provide you with our services.

Personally Identifiable Information

Personally identifiable information is information that can identify you as a person — simple, right? Well personally identifiable information can also be a combination of information that reveals who you are.

For example, if I know your birthday is on July 4, 1976, I can’t necessarily figure out who you are. However, if I know your birthday, where you went to college, whether you’re married or not, and maybe your zip code, then I probably know enough to figure out who you are if I really wanted to. So personally identifiable information can be either something very specific about you, like your full name, or it can be a combination of general details that let me narrow down the possibilities until I figure out that it can only be you.

What

We purposefully seek the following personally identifiable information from you in a variety of circumstances:

• Your full name;
• Email address;
• Telephone number;
• Login credentials; and
• Internet Protocol (IP) address.

When

We may seek personally identifiable information from you using a number of methods, including:

• Registration forms;
• Contact forms;
• Social media integrations;
• Cookies;
• Communication methods, such as chat, email, or phone widgets; and
• From publicly available data.

Why

We may use personally identifiable information in the following ways:

• Improving the website or services;
• Delivering the product or service requested by users;
• Marketing other Company offerings directly to the users; and
• Understanding who is using the website or services.

We may use your information for marketing purposes. However, we allow our users to opt out of marketing if that is their preference.

We store any personally identifiable information that we’ve collected for internal purposes related to the functionality of the site, your profile, or other information required to provide services to you via our web portal.

Non-Identifiable Personal Information

Non-identifiable personal information is information that’s technically about you, but cannot be linked directly to you without being combined with personal information. For example, if I know that you use Google Chrome when you visit my site, I will never be able to figure out who you are without combining it with personally identifiable information — even if I know what search terms you typed in, what kind of computer you are using, and how long you use the site for every time you visit, I will not be able to figure out that the user is you without personally identifiable information.

What

We purposefully seek the following non-identifiable personal information from you in a variety of circumstances:

• Your username or public display name within the site;
• Your profile picture or avatar;
• Self-supplied profile information;
• Optional biographical information provided in your profile;
• Social media profiles; and

When

We may request non-identifiable personal information from you in a variety of ways, including:

• Registration forms;
• Contact forms;
• Social media integrations;
• Cookies;
• Communication methods, such as chat, email, or phone widgets; and
• From publicly available data.

Why

We may use non-identifiable personal information in the following ways:

• Improving the website or services;
• Delivering the product or service requested by users;
• Marketing other Company offerings directly to the users; and
• Understanding who is using the website or services.

We store any non-identifiable personal information that we’ve collected for internal purposes related to the functionality of the site, your profile, or other information required to provide services to you via our web portal.

Sensitive Information

Sensitive information is the type of information that you might not necessarily want people to know, or at least, you would want to control who knows the information and how they come across it. An example of sensitive information could be your credit score or your social security number. As you can imagine, sensitive information should only be requested by a company if they really need the information to provide you with services.

We collect some sensitive information from you for various reasons and at various times, including using Stripe or a similar service for payment and credit card information from learners, and to pay the experts and content creators. When we collect sensitive information, it's so we can improve the website or services, deliver the product or service requested by users, market other Company offerings directly to the users, understand who is using the website or services. We collect information via registration forms, contact forms, social media integrations, cookies, communication methods, such as chat, email, or phone widgets, from publicly available data. We do not personally retain your sensitive information.

About Automated Collection

Automated technologies help us make our website run more smoothly. Through the use of automated means, we are able to see which of our pages are most popular, how users find our website, what causes errors in the website, and a lot of other details which help us make the website the best it can be.

We may use a number of automation technologies, including cookies, flash cookies, web beacons, or others as they become available or necessary.

Cookies

Cookies are small text files that a website sends to your computer to try to make your experience online a smoother one. Cookies often contain very little data, such as a User ID or the last time you logged in to a particular site. When your computer connects to the website, the website might read the cookie to figure out whether you’re a returning customer, whether you’ve seen the most recent privacy policy update, or whether you need to be automatically logged out. As you can probably tell from those examples, cookies serve a variety of necessary functions. However, if you’d prefer, you can disable cookies. You can visit www.allaboutcookies.org for information about deleting and blocking cookies on your browser.

Our automated technologies are supported by the use of third-party cookie technologies, including Third Party Cookies - API Searched.

Please note that disabling and deleting cookies might make this website (and others) work improperly.

Flash Cookies

Flash cookies are functionally similar to regular cookies, but they are not subject to the same controls as regular cookies are. While you can follow the directions in the “Cookies” section to block most cookies, flash cookies require a different type of opt out. To learn how you can manage your Flash cookie settings, visit the Flash player settings page on Adobe's website.

Web Beacons

Web Beacons are tiny files that load when a user completes an action like visiting a particular webpage, or opening an email. Because the tiny file is loaded from a server, and the server can see that your computer is trying to open the page or email, the server can deduce that you have visited the page or viewed the email.

“Do Not Track”

“Do Not Track” signals are a brand new feature that some web browsers allow their users to send. The idea behind the “Do Not Track” signals is that all of the websites of various companies will come to an agreement about standardizing a way to not track people who visit their websites. That way, people who turn on “Do Not Track” will always know what parts of their privacy are protected without having to read every single privacy policy.

There is not yet an industry consensus on how to handle “Do Not Track” signals, so our website is not yet set up to handle them. In the future, this section will discuss how the “Do Not Track” signals are honored.

Who Else Sees Your Data

Most websites who collect user data have relationships with other companies or people that result in user data being shared with those companies or people. This section explains how those relationships work, and what our relationships with others look like when it comes to your data.

When we share your data with third parties, we restrict them from using that data other than to help us perform our services or obligations through this website.

Processors Who Help Us Run Our Site

Most businesses need others’ help to run properly (imagine using eBay without PayPal!). When a business hires another business or uses another business’s services, that other business is sometimes called a third party processor, or a subprocessor.

We try to keep this section up-to-date with who our subprocessors are, and what kinds of information they collect.

At this time, we use subprocessors to process payment information concerning user subscriptions and payments from Experts to QuizToo. We have included a list of these subprocessors below and recommend checking their individual sites for terms of use and applicable privacy policies:

• Stripe: https://stripe.com/legal/ssa

Third Parties We Share Information With

Businesses often have complicated relationships with other businesses. Some companies are owned by other companies, they work with companies that are owned by the same company, they engage in partnerships, and find any variety of ways to work together to bring services and products to the public.

We don't share any user information with third parties as of the date at the top of this policy. If we ever change that, we'll let you know!

However, one thing to note - if we ever sell the company, part of the company, or any of the assets of the company, our users' data would probably be shared with the purchasing company or person. Be aware that sharing of your data might have to happen in that kind of circumstance.

Third Parties Who Share Information With Us

Some companies get information from third parties for a variety of reasons. One example might be if a website is trying to create a more personalized web browsing experience for their users. If a website knows the kind of content you like, and they’re able to share that information with another website, then that other website can also make sure to only show you content that you like. However, there can be any number of reasons why a website needs information from third parties, like for credit checks, allowing users to login through social media, or other reasons.

Children Under the Age of Majority

Our Website is not intended for anyone under the age of majority in their respective jurisdiction, and in no case is our website to be used by anyone under the age of 18 years of age. No one under the age of majority may provide any information to or on the Website. We do not knowingly collect personal information from those under the age of majority. If you are under the age of majority, do not use or provide any information on this Website or through any of its features, register on the Website, make any purchases through the Website, use any of the interactive or public comment features of this Website, or provide any information about yourself to us, including your name, address, telephone number, email address, or any screen name or user name you may use. If we learn we have collected or received personal information from a person under the age of majority, we will delete that information. If you believe we might have any information from or about a person under the age of majority, please contact us using the contact information at the bottom of this policy.

Security

We make efforts to provide security to our user data. It’s impossible to guarantee that data security will be 100% effective, that’s why you hear about hacks or viruses all the time now. Small companies, large companies, and even governments are sometimes the victims of cyber attacks. We take steps to protect your data by encrypting data at rest, encrypting data in transit, granting each of our technologies only the minimum required access to perform necessary functions, regularly training our employees in security best practices, conducting regular security audits, restricting access to user data to the Company employees or contractors who need access to perform their job duties, taking regular backups of our data, only using tools from providers who we determine to have adequate security practices relevant to market position, contractually obligating our employees to maintain the confidentiality of our users' data, regularly updating all of our systems and services, monitoring website and services activity for anomalous behaviors, using data storage and service providers who have adequate physical security measures.

Your Choices and Rights

This section describes your choices and rights regarding how we handle your data. In order to protect user data from theft or misuse, we may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights).

You won’t have to pay anything to exercise your rights, the only exceptions being if your request is clearly unfounded, repetitive or excessive. In those situations we might also refuse to comply with your request.

We try to respond to all legitimate requests under these rights within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated as to when we expect to have the request completed.

The rights guaranteed by law (as described below) only generally apply to people and companies who are present in and residents of those jurisdictions. If access to the rights listed below are not guaranteed for you by law, then they are unavailable to you.

GDPR

The General Data Protection Regulation is a law passed in the European Union that grants EU internet users a variety of rights regarding their data. Those rights include

• The right to request access to their data;
• The right to request correction of their data;
• The right to request erasure of their data;
• The right to object to the processing of their data;
• The right to request their data in a machine readable format;
• The right to be free of decisions affecting their rights based solely on automated processes; and
• The right to withdraw their consent to undue data processing.

Legal Bases for Processing

The GDPR also requires that companies list their “Legal Basis” for each type of processing. Depending on the circumstances, our legal bases include:

• User consent;
• Necessity for the performance of our obligations to the user; and
• Necessity for the purposes of our justified legitimate interests.

For more information on how legal bases work, please visit https://gdpr-info.eu/art-6-gdpr/.

California Rights

The rights listed in this section are specific to California residents.

California's "Shine the Light" law allows California users of our website to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. We attempt to be transparent about where your data is going. If you would like to request more information or clarification about whether your data is only going to third parties as described in this privacy policy, please contact us using your preferred method in the “Contact Us” section at the end of this policy.

California users are also allowed to opt out of any sales of their personal information that may occur. Users who opt out may opt back in at any time.

California users may request that we delete their personal information, but those requests have some exceptions. One example of an exception would be if you paid for one of our products or services, and then requested that your data be deleted before we could deliver the product or service you paid for.

Processing of Data Outside of the EU

The internet is a complex, interwoven, global structure, so your data may move across the planet. Be aware that this includes areas outside of the European Economic Area. By continuing to use this website, you are telling us that you consent to these transfers, even if the countries your data travels to don’t have the same level of privacy protection as your home country.

Changes to This Privacy Policy

This policy may be updated from time to time. When updates are made, we will let you know via notifications by email or other direct communication.

The date that the most recent updates went into effect is listed at the beginning of this policy.

Contact Info

If you ever have any questions, concerns, or comments about this policy or about exercising the options made available to you in this privacy policy, please contact us through your preferred method as listed below:

QuizToo, Inc.

Attention Rita Syed

3120 Southwest Fwy Ste 101 PMB 562942

Houston, TX, 77098-4520

Email: [email protected]