Privacy Policy
B.I SCIENCE PRIVACY POLICY
[Last Updated: June 23, 2024]
This Privacy Policy (“Privacy Policy”), is an integral part of our Website Terms of Service (“Terms”), and governs the processing and transfer of personal data collected or processed by B.I Science (2009) Ltd. (“BiScience”, “we”, or “our”) in connection with our website and Services. Any capitalized terms not defined herein shall have the meaning ascribed to them in the Terms.
This Privacy Policy governs the data processing from the following individuals or sources:
- Visitors to our websites and people who contact us via our websites, via email, or other means (“Visitors”).
- Panelists, using mobile apps and browser extensions which measureme ad occurrences viewed and interacted (“End User”).
- Customers using our digital intelligence services (“Customer”).
The Visitors, Customers and End-Users shall all be referred to herein as “you“, or “your“.
You may have additional rights based on your jurisdiction, if you are a resident of California, Virginia, Connecticut, Utah, Colorado please review our CCPA Privacy Notice here and the “Additional US Notices” section below. To learn about your rights please review the Data Subject Request Form available here.
POLICY AMENDMENTS: We reserve the right to amend this Policy from time to time, at our sole discretion. The most recent version of the Policy will always be posted on the website. The updated date of the Policy will be reflected in the “Last Updated” heading. We will provide notice to you if these changes are material, and, where required by applicable law, we will obtain your consent. Any amendments to this Policy will become effective within 30-days upon the display of the modified Policy. We recommend you review this Policy periodically to ensure that you understand our most updated privacy practices.
- CONTACT DETAILS OF THE CONTROLLER
BiScience is considered as the “Data Controller” of the Personal Data we collect from you.
B.I Science (2009) Ltd., registered number 514220680, address at: 6 Hanechoshet St. Tel Aviv, Israel (the “Controller”)
You may contact us and our Data Protection Officer, as follows:
- Our online contact us form available at: https://www.biscience.com/contact-us/
- By Email: dpo@bisceince.com
Representative for data subjects in the EU and UK:
We value your privacy and your rights as a data subject and have therefore appointed Prighter Group with its local partners as our privacy representative and your point of contact.
Prighter gives you an easy way to exercise your privacy-related rights (e.g. requests to access or erase personal data). If you want to contact us via our representative, Prighter or make use of your data subject rights, please visit the following website. https://prighter.com/q/13252349120
- THE DATA WE COLLECT
You can find here information regarding the purposes for which we process your personal data as well as our lawful basis for processing, the definition of “personal” and “non-personal” data and how it is technically processed.
We may collect two types of data from you, depending on your interaction with us:
The first type of information we collect is aggregated, non-identifiable, non-personal information, which may be made available or gathered via your use of the service or interaction with the Website (“Non-Personal Data”), such as device type, operating system and browser type, etc. We are not aware of the identity of the user from which the Non-Personal Data was collected.
The second type of information is individually identifiable information, namely information that identifies an individual or entity or may with reasonable effort identify an individual (“Personal Data”).
For the avoidance of doubt, any Non-Personal Data that is connected or linked to any Personal Data shall be considered as Personal Data for as long as such connection or linkage exists.
We do not collect or process or infer any Personal Data constituting or revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning a person’s health or data concerning a person’s sex life or sexual orientation (“Special Categories of Personal Data”).
The data collected by us from our Visitors:
Types of Data |
Purpose of Processing |
Lawful Basis |
Contact Information If you voluntarily contact us through any form available on the website or by email, you may be required to provide us with certain information such as your full name, email address, and any additional information you decide to share with us (“Contact Information”). |
We will process the Contact Information to provide you with a response to your inquiry. We may also process the contents of our correspondence with you in order to improve our customer service. |
We process Contact Information subject to our legitimate interest. We may keep such correspondence if we are legally required to. |
Online Identifiers and Usage Data When you access our website, we collect certain online identifiers through first party cookies, which are strictly necessary for the operation of the website, for our internal analytics. Such identifiers include, IP address, log files, device identifiers, unique ID and other unique identifiers. A device identifier may remain persistently on your device, to help you log in and navigate the Services better (“Online Identifiers”). Through these cookies, we also collect information on how you use our website, such as click stream data, duration of use, time and date you enter or exit the website (“Usage Data”). |
The purposes of using first party cookies are operational and technical purposes, such as to enable the website to be uploaded, as well as fraud prevention and data security, to remember you when you re-enter the Services, enable the cart to upload, etc. |
First party cookies which are strictly necessary for operating the website are based on our legitimate interest to enable the operation of the website and the Services.
|
The data collected by us from our Customers:
Types of Data |
Purpose of Processing |
Lawful Basis |
Request a Demo If you wish to become our Customer, and request a demo we will ask you to provide your Contact Information.
|
This information will be processed for the purpose of performing our contract with you, to set up your scheduled demo. In addition we may use your email, in order to send you needed information related to the service and our business engagement (e.g., to notify you regarding any updates to our Service, send applicable invoices, and additional occasional communications related to the service. |
Performance of contract. In addition the direct marketing and updates are subject to our legitimate interest. |
Login Cridentials When we desigant you an online dashboard, from which you can use our Services, we will process your email address and a designated password. We also process log data that lets us know when you entered the dashboard. |
This information will be processed for the purpose of performing our contract with you, to set up your account with us and enable you to use our Service.
|
Performance of a contract |
Customer Support When our customers contact us for customer support, we will process your Contact Information. |
We will use Contact Information to provide the customer support needed. We will retain such correspondence for as long as needed, and to evidence the support was provided. |
We process such information for performing our contract with you. |
Direct Marketing As a customer, we will send you invoices, materials and marketing content through the email information you provided during your onboarding (“Direct Marketing”). |
We will use this information to keep you updated with offers and content such as new capabilities and features, surveys, invoices and supporting documentation.
|
We process such information subject to our legitimate interest. You can opt-out at any time by using the “unsubscribe” option. |
Online Identifiers When you access to or interact with the dashboard, we may, either directly or indirectly (through our third-party service providers) collect your IP address, as well as technical Non-Personal Data, such as your language preference.
|
We may process this data, for operating, providing, maintaining, protecting, managing, customizing, and improving our services, and how we offer it. In the event required under applicable law, we will obtain your consent to gather such information through our use of cookies. |
legitimate interests |
The data collected by us from our End-Users:
The services we provide to our Customer include the creation of analytics and measurements insights with regards to End-Users engagement with media across online, mobile and emerging technologies (“Insights”). Those research Insights, reports, and analyses of End-Users behaviors which we provide our Customers are based on web browsing activities data we, including through our trusted affiliated companies and business partners, collect and process from End-Users and Web data, extracted from publically available data. We process End User raw browsing data, which include click stream data, ads viewed, interaction with ads, where the ads were placed, unique identifier and approximate location (“Raw Data”). The Raw Data is collected directly through various methods, including cookies, JavaScript, pixel tags, SDKs and server to server connections, or extracted from public available web pages. Note that, in most cases the Raw Data does not include Personal Data, however, sometimes web browsing data contains terms that could be considered as Personal Data, this is why we filter and scrape this data to remove any Personal Data including any unique identifiers, before it is transferred or used.
It is important you understand, we are not interested in knowing who you are, target or profile you.
The Raw Data is processed by BiScience for the purpose of creating the marketing Insights our Customers requested , we share and sell these Insights with our Customers for threir commercial use. In most cases the Insights are shared and soled in an aggregated non-identifying manner, however, in certain cases we will sell or share the insights with a general unique identifier, this identifier does not include your name or contact information, it is a random serial number associated with an End Users’ browsing activity. However, in certain jurisdictions this is considered Personal Data, and thus, we treat it as such.
- HOW WE COLLECT YOUR INFORMATION?
Depending on the nature of your interaction with the Website and Services, we may collect information either automatically, voluntarily provided by you or through third parties;.
We collect the above data from you, in the following ways:
- Automatically, when you access our website or use our services through the use of cookies (as further detailed below) or other similar tracking technologies.
- When you voluntarilychoose to provide us with information, e.g., when you contact us.
- Provided to us by third parties such as our affiliates companies and business partners.
- Directly through our pixel, SDK, etc.
- Publically available information.
- WITH WHOM DO WE SHARE INFORMATION?
We share your data with third parties, including our service providers that help us provide our Services. You can find here information about the categories of such third-party recipients.
CATEGORY OF RECIPIENT |
DATA THAT WILL BE SHARED |
PURPOSE OF SHARING |
Customers |
Insights |
We will share the Insights we produce with our Customers for their commercial use. The data we share for this purpose may include in certain cases Personal Data, however in most cases our practice is to create and share only aggregated Insights. |
Service Providers
|
Various data sets |
We may disclose Personal Data to our trusted agents (such as legal counsel) and service providers (including, but not limited to, our Cloud Service Provider, Analytics Service Provider, fraud and security detection providers etc.) so that they can perform the requested services on our behalf. These providers are prohibited from using your Personal Data for any purposes other than providing us with requested services. When we share information with services providers, we ensure they only have access to such information that is strictly necessary for us to provide the Services. These parties are required to secure the data they receive and to use the data for pre-agreed purposes only while ensuring compliance with all applicable data protection regulations (such service providers may use other non-personal data for their own benefit). |
Any acquirer of our business |
All data |
We may share Personal Data, in the event of a corporate transaction (e.g., sale of a substantial part of our business, merger, consolidation or asset sale). In the event of the above, our affiliated companies or acquiring company will assume the rights and obligations as described in this Policy. |
Legal and law enforcement
|
Subject to law enforcement authority request. |
We may disclose certain data to law enforcement, governmental agencies, or authorized third parties, in response to a verified request relating to terror acts, criminal investigations or alleged illegal activity or any other activity that may expose us, you, or any other user to legal liability, and solely to the extent necessary to comply with such purpose. |
We reserve the right to use, disclose or transfer (for business purposes or otherwise) aggregated and processed Non-Personal Data to third parties, including, inter alia, affiliates and Business Partners, for various purposes including commercial use. This information may be collected, processed and analyzed by us and transferred in a combined, collectively and aggregated manner (i.e., your information is immediately aggregated with other users) to third parties.
- COOKIES & TRACKING TECHNOLOGIES
We or our third-party service providers may use cookies and other similar tracking technologies or methods of web and mobile analysis to gather, store, and track certain information related to your access to, activity and interaction with our Website.
A “cookie” is a small piece of information that a website assigns to your device while you access such a website. Cookies are very helpful and may be used for a variety of different purposes. These purposes include, among other things, allowing you to navigate between pages efficiently, enabling automatic activation of certain features, remembering your preferences and making the interaction between you and our Service quicker, easier and smoother. Cookies are also used to help customize your experience and for advertising purposes (including personalized advertising). You can find out more information about cookies at www.allaboutcookies.org.
You may change the cookie setting at any time by clicking on the “cookie setting” link at the bottom of the page.
- DATA RETENTION
Basically, we only keep your data as long as required to fulfill the purpose for which the data was collected, or as we are required by law
We retain the information we collect as long as it remains necessary for the purposes set forth above, all in accordance with applicable laws. We may at our sole discretion, delete or amend information from our systems, without providing any notice to you, once we deem it is no longer necessary for our purposes.
- USER RIGHTS
You may have certain rights regarding the Personal Data that we have collected about you, note, we provide all individuals, regardless of where you are based, the same opportunity to exercise your rights.
We acknowledge that different people have different privacy concerns and preferences. Our goal is to be clear about what information we collect so that you can make meaningful choices about how it is used. We allow you to exercise certain choices, rights, and controls in connection with your information. Depending on your relationship with us, your jurisdiction and the applicable data protection laws that apply to you, you have the right to control and request certain limitations or rights to be executed.
For California please review our CCPA Privacy Notice.
If you wish to exercise any or all of the above rights, please fill out the Data Subject Request Form (“DSR”) available here, and send it to our privacy team at: privacy@biscience.com.
Opt out from sharing Raw Data: each product from which we collect the Raw Data includes an opt out toggel, within that apps’ settings.
- DATA SECURITY
We take great care in implementing and maintaining the security of our Website, our Services and your information. We employ industry standard procedures and policies to ensure the safety of individuals’ information and prevent unauthorized use of any such
Your privacy is very important to us and therefore we use security techniques to prevent your information from being accessed without authorization, improperly used or disclosed, unlawfully destructed or accidental loss, as detailed in our Information Security Policy. If you believe that your privacy was treated not in accordance with this Privacy Policy, or you have a reasonable concern that any person attempted to abuse our Service, please contact us at: privacy@biscience.com
Further, in the event of a security incident, in which we discover your Personal Data may be at risk, we will make reasonable efforts to notify you and the applicable authority (if required, subject to applicable laws).
- CHILDREN INFORMATION
We do not collect information from children.
The website and Services are not intended for use by children and we do not knowingly collect or maintain information about anyone under the age of 16. If you become aware or have any reason to believe that a Child has shared any information with us, please contact us (as detailed below) and we will take reasonable steps to ensure that such information is immediately deleted from our files.
- TRANSFER OF DATA
We may store or process your Personal Data within the EU, the United States or in other countries. Thus, any information you provide us or collected from you may be transferred to and processed in countries other than the country from which you accessed our Website or used the Services. We will take appropriate measures to ensure that your Personal Data receives an adequate level of data protection upon its transfer. When Personal Data that was collected within the European Economic Area (“EEA”) is transferred outside the EEA, we will take necessary steps in order to ensure that sufficient safeguards are provided during the transferring of such Personal Data, in accordance with the provision of the Standard Contractual Clauses approved by the European Commission. You may exercise your rights, where applicable, to receive information regarding the transfer mechanism that was used during such transfer.
- AMENDMENTS
The terms of this Privacy Policy will govern the use of the Website, the Services and any information collected therein. We reserve the right to change this Privacy Policy at any time, so please re-visit this page frequently. In the event of any substantial change of this policy, we will make reasonable efforts to post a clear notice on the Website. Otherwise, all other changes to this Privacy Policy are effective as of the stated “Last Revised” date and your continued use of the Services after the Last Updated date will constitute acceptance of, and agreement to be bound by, those changes.
US JURISDICTION SPECIFIC PRIVACY NOTICES:
- Additional Notice to California Residents
This section applies only to California residents, pursuant to the California Privacy Act of 2018 (“CCPA”) effective November 2020, and as amended by the California Privacy Rights Act, effective January 1, 2023.
Please see the CCPA Notice here which discloses the categories of personal information collected, purpose of processing, source, categories of recipients with whom the personal information is shared for a business purpose, the right to limit the use or disclosure of Sensitive Data, whether the personal information is sold or shared, the retention period, and how to exercise your rights as a California resident.
- Additional Notice for Colorado Residents
According to the Colorado Privacy Act (“CPA“), if you reside in Colorado and are engaging solely in a personal or household capacity (excluding any commercial, employment, job applicant, or beneficiary roles related to employment), your personal data rights are outlined below.
“Personal Data” as defined in the CPA means: “information that is linked or reasonably linkable to an identified or identifiable individual” and does not include any of the following: publicly available information, de-identified or aggregated consumer, and information excluded from the CPA scope, such as: Health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPPA) or 42 CFR Part 2- “Confidentiality Of Substance Use Disorder Patient Records”, Personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or and the Driver’s Privacy Protection Act of 1994, Children’s Online Policy Protection Act of 1998 (COPPA), Family Educational Rights and Privacy Act of 1974, national Security Exchange Act of 1934, higher education data and employment data.
Sensitive Data includes (i) racial or ethnic origin, religious beliefs, mental or physical health condition or diagnosis, sex life or sexual orientation; (ii) Genetic or biometric data that can be processed to uniquely identify an individual; or (iii) child data. We do not process or collect any sensitive data.
Section 2 “Data We Collect” of the Privacy Policy, we describe our collection and processing of personal data, the categories of personal data that are collected or processed, and the purposes. Additionally, in Section 4 “With whom do we share information?” details the categories of third-parties the controller shares for business purposes.
Your rights under CPA
Herein below, we will detail how consumers can exercise their rights, and appeal such decision.
Right to Access/ Right to Know |
You have the right to confirm whether and know the Personal Data we collected on you |
You can exercise your right by reviewing this Privacy Policy, in case you would like to receive the Personal Data please fill in this form to receive a copy of your data. |
Right to Correction |
You have the right to correct inaccuracies in your Personal Data, taking into account the nature of the Personal Data and the purposes of the processing of your Personal Data. |
You can exercise this right directly through your account or by filling in this form. |
Right to Deletion |
You have the right to delete the Personal Data, this right is not absolute and in certain circumstances we may deny such request. We may deny your deletion request, in full or in part, if retaining the information is necessary for us or our service provider(s) for any of the following reasons: (1) Complete the transaction for which we collected the Personal Data, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, or otherwise perform our contract with you; (2) Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities; (3) Debug products to identify and repair errors that impair existing intended functionality; (4) Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law; (5) Comply with the law or legal obligation; (6) Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent; (7) Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us; (8) Make other internal and lawful uses of that information that are compatible with the context in which you provided it. We will delete or de-identify personal information not subject to one of these exceptions from our records and will direct our processors to take similar action. |
If you would like to delete your Personal Data please fill in this form. You do not need to create an account with us to submit a request to know or delete. |
Right to Portability |
You have the right to obtain the personal data in a portable, and to the extent technically feasible, readily usable format that allows you to transmit the data to another entity without hindrance. |
If you would like to receive the Personal Data please fill in this form to receive a copy of your data we will select a format to provide your Personal Data that is readily usable and should allow you to transmit the information from one entity to another entity without hindrance. |
Right to opt out from selling Personal Data |
You have the right to opt out of the sale of your Personal Data for the purposes of targeted advertising, sale to a third party for monetary gain, or for profiling in furtherance of decisions that produce legal or similarly significant effects concerning you or any other consumer. You may authorize another person acting on your behalf to opt out, including by broad technical tools, such as DAA, NAI, etc. |
We do not sell your personal information, so we do not offer an opt out. You may opt-out of our sharing of the Insights through our product settings. |
Right to opt out from Targeted Advertising |
||
Right to opt out from Profiling |
We do not profile you, thus we do not need to provide an opt-out. |
|
Right to Appeal |
If we decline to take action on your request, we shall so inform you without undue delay, within 45 days of receipt of your request. The notification will include a justification for declining to take action and instructions on how you may appeal. If we deny the appeal, you may contact the Colorado Attorney General using this link: https://coag.gov/office-sections/consumer-protection/ or (720) 508-6000. |
Not more than 60 days after receipt of an appeal we will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reason for the decisions. |
Duty not to violet the existing laws against discrimination or non-discrimination |
Such discrimination may include denying a good or service, providing a different level or quality of service, or charging different prices. |
We do not discriminate our users. |
How to submit a request under CPA?
Only you, or someone legally authorized to act on your behalf, may make a request to know or delete related to your Personal Data. If the DSR is submitted by someone other than the consumer about whom information is being requested, proof of authorization (such as power of attorney or probate documents) will be required.
We will respond to your request within 45 days after receipt of a verifiable Consumer Request and for no more than twice in a twelve-month period. We reserve the right to extend the response time by an additional 45 days when reasonably necessary and provided consumer notification of the extension is made within the first 45 days. If we refuse to take action on a request, you may appeal our decision within a reasonable period time by contacting us at privacy@biscience.com and specifying you wish to appeal. Within 60 days of our receipt of your appeal, we will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If the appeal is denied, you may submit a complaint as follows: Colorado AG at https://coag.gov/file-complaint/
If you have an account with us, we may deliver our written response to that account or via email at our sole discretion. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. You do not need to create an account for submitting a request.
Any disclosures we provide will only cover the 12-month period preceding our receipt of your request. The response we provide will also explain the reasons we cannot comply with a request, if applicable.
- Additional Notice to Virginia Residents
Under the Virginia Consumer Data Protection Act, as amended (“VCDPA”) if you are a resident of Virginia acting in an individual or household context (and not in an employment or commercial context), you have the following rights with respect to your Personal Data.
“Personal data” means any information that is linked or reasonably linkable to an identified or identifiable natural person. “Personal data” does not include de-identified data or publicly available information. Personal Data does not include de-identified data or publicly available data, and information excluded from the scope such as: HIPAA, GBPA, non-profit entities, higher education, employment data and FCRA, Driver’s Privacy Protection Act of 1994, Family Educational Rights and Privacy Act, Farm Credit Act.
The VCDPA requires us to disclose the Categories of data processing and the purpose of each category, as detailed in Section I.2 “Data We Collect” of the Privacy Policy, the categories of data shared and the third parties with whom it is shared, as detailed in Section I.4 “With whom do we share information?”. Further, the table above under Section II.2 “Additional Notice to Colorado Residents” details the rights you have under VCDPA and how you may exercise your rights.
How to Submit a Request Under VCDPA?
We shall respond to your request within 45 days of receipt. We reserve the right to extend the response time by an additional 45 days when reasonably necessary and provided consumer notification of the extension is made within the first 45 days. If we refuse to take action on a request, you may appeal our decision within a reasonable period time by contacting us at: privacy@biscience.com and specifying you wish to appeal. Within 60 days of our receipt of your appeal, we will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If the appeal is denied, you may submit a complaint as follows: Virginia Attorney General at https://www.oag.state.va.us/consumercomplaintform
We shall provide information in response to your request free of charge, up to twice annually, unless requests are manifestly unfounded, excessive or repetitive. If we are unable to authenticate your request using commercially reasonable efforts, we may request additional information reasonably necessary to authenticate you and your request. If we cannot authenticate you and your request we will not be able to grant your request.
- Additional Notice to Connecticut Residents
Under the Connecticut Data Privacy Act, Public Act. No. 22-14 (the “CDPA”) if you are a resident of Connecticut, acting in an individual or household context (and not in a commercial or employment context or as a representative of business, non-profit or governmental entity), your rights with respect to your personal data are described below.
“Personal data” means any information that is linked or reasonably linkable to an identified or identifiable individual. It does not include de-identified data or publicly available information. If further does not include information excluded from the scope such as: HIPAA, GBPA, non-profit entities, higher education, employment data and FCRA, Driver’s Privacy Protection Act of 1994, Family Educational Rights and Privacy Act, Farm Credit Act.
The categories of personal data processed, purpose of processing, are detailed in Section I.2 “Data We Collect”, categories of personal data shared with third parties, categories of third parties with whom data is shared, are detailed in Section I.4 “With whom do we share information?”.
Instructions on how to exercise your rights are detailed in the table above under Section II.2 “Additional Notice to Colorado Residents” details the rights you have under CDPA and how you may exercise your rights.
How to Submit a Request Under CDPA?
We shall respond to your request within 45 days of receipt. The response period may be extended once by 45 additional days when reasonably necessary, taking into account the complexity and number of requests and we inform you of such extension within the initial 45 days response period, together with the reason for the extension.
If we decline to take action on your request, we shall so inform you without undue delay, within 45 days of receipt of your request. The notification will include a justification for declining to take action and instructions on how you may appeal. Within 60 days of our receipt of your appeal, we will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If the appeal is denied, you may submit a complaint to the Connecticut Attorney General at link: https://www.dir.ct.gov/ag/complaint/ or (860) 808-5318.
We shall provide information in response to your request free of charge, up to twice annually, unless requests are manifestly unfounded, excessive or repetitive. If we are unable to authenticate your request using commercially reasonable efforts, we may request additional information reasonably necessary to authenticate you and your request. If we cannot authenticate you and your request, we will not be able to grant your request.
- Additional Notice to Utah Residents
Under the Utah Consumer Privacy Act (the “UCPA”) if you are a resident of Utah, acting in an individual or household context (and not in a commercial or employment context) your rights with respect to your personal data are described below. “Personal Data” refers that is linked or reasonably linkable to an identifiable individual, and does not include de-identified data and publicly available data.
The categories of personal data processed, purpose of processing, are detailed in Section I.2 “Data We Collect”, categories of personal data shared with third parties, categories of third parties with whom data is shared, are detailed in Section I.4 “With whom do we share information?”.
Further, the table above under Section II.2 “Additional Notice to Colorado Residents” details the rights you have under CDPA and how you may exercise your rights.