Last updated and effective on: June 15, 2021.
This Application collects some Personal Data from its Users.
Owner and Data Controller
Lyric Financial LLC
P.O. Box 120008 Nashville, TN 37212
Owner contact email: firstname.lastname@example.org
Categories of Personal Data collected
The categories of Personal Data we may collect are:
Personal Identifiers: Name, postal address, online identifier, Internet Protocol (IP) address, email address, account name, or other similar identifiers that a User may choose to submit;
Customer service information: Name, signature, address, telephone number, customer number; we also may collect the communications that we exchange with you through online forms, by email, over the phone or by mail, and summaries or voice recordings of your interactions with our customer service team;
Commercial information: Records of products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies;
Device Information: We may collect and/or use third-party website analytics tools that collect information about visitor traffic on our websites and Services, including IP address, unique personal identifiers, device ID, device type, and browser and operating system type;
Internet or other electronic network activity information: Browsing history, search history, and information regarding a consumer’s interaction with an Internet website, application, or advertisement;
At the time you create an account and profile for the Services, we collect your name, your email address, and other contact information.
We collect information directly from you, and automatically through the Services. If you choose not to disclose certain personal information, it may limit your access to certain services or features, including account registration.
Users are responsible for any third-party Personal Data obtained, published or shared through this Application and confirm that they have the third party's consent to provide the Personal Data to the Owner.
Purposes and Legal Bases for Our Using of Your Information
We do not sell your personal data – such as your name and contact information – to third parties to use for their own marketing purposes. We use the information we collect for our legitimate interests, which include the following:
Provide our Services. To provide you the Services, communicate with you about your use of the Services, respond to your inquiries, provide troubleshooting, and for other customer service purposes.
Analytics. To gather metrics to better understand how users access and use the Services; to evaluate and improve the Services, including the Ad services and personalization, and to develop new products and services.
Comply with Law. To comply with legal obligations, as part of our general business operations, and for other business administration purposes.
Where the use of your personal information is necessary for the performance of a contract we are about to enter into or have entered into with you;
Where the use is necessary for the purposes of our legitimate interests (or those of a third party);
Where we need to comply with a legal or regulatory obligation; or
Where you have provided your consent, which can be withdrawn at any time.
Processing of Personal Data
Methods of processing
The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Owner, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of this Application (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Owner at any time.
The Personal Data is processed at the Owner's operating offices in the United States and in any other locations where the parties involved in the processing are located.
Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own. To find out more about the place of processing of such transferred Data, Users can check the section containing details about the processing of Personal Data.
Users are also entitled to learn about the legal basis of Data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Owner to safeguard their Data.
If any such transfer takes place, Users can find out more by checking the relevant sections of this document or inquire with the Owner using the information provided in the contact section.
Access and Amend Your Information
You may update or correct your account information at any time by logging in to your account. You may also make a number of other adjustments to settings or the display of information about you as described in more detail in the following section about Your Choices.
How We Protect Your Information
We use reasonable security measures to protect the confidentiality of your personal information under our control and appropriately limit access to it. We implemented safeguards to prevent, and monitor for, security breaches. We use a variety of information security measures to protect your online transactions with us. If you have any questions regarding which measures and techniques we use, feel free to contact us. However, no data transmission over the Internet and no method of data storage can be guaranteed to be secure. We do not guarantee the security of any of your private transmissions against unauthorized or unlawful interception or access by third parties. We urge User to take steps to keep your personal information safe, such as choosing a strong password and keeping it private, as well as logging out of your user account, and closing your web browser when finished using the Services on a shared or unsecured device
Personal Data is processed and stored for as long as required by the purpose they have been collected for. Therefore:
Personal Data collected for purposes related to the performance of a contract between the Owner and the User shall be retained until such contract has been fully performed.
Personal Data collected for the purposes of the Owner’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the Owner within the relevant sections of this document or by contacting the Owner.
The Owner may be allowed to retain Personal Data for a longer period whenever the User has given consent to such processing, as long as such consent is not withdrawn. Furthermore, the Owner may be obliged to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.
Upon expiration of the retention period, Personal Data will be deleted. Therefore, the right to access, the right to deletion, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.
Information Shared with Third Parties
We may share information as set forth and with the following categories of third parties set forth below:
Service Providers. We may share your information with third-party service providers who use this information to perform services for us, such as payment processors, advertisers, hosting providers, auditors, advisors, consultants, customer service and support providers.
Business Partners. We may share your information with third-party business partners who use this information to perform services for Users, such as advertisement exchanges and other service providers. Information provided to such business partners are subject to such business partners’ privacy policies.
If Legally Required. We may disclose your information if we are required to do so by law.
To Protect Rights. We may disclose information where we believe it necessary to respond to claims asserted against us or, comply with legal process (e.g., subpoenas or warrants), enforce or administer our agreements and terms, for fraud prevention, risk assessment, investigation, and protect the rights, property or safety of Lyric, its users, or others.
For Metrics. We may share with our advertisers or publishers aggregate statistics, metrics and other reports about the performance of their ads or content in the Services such as the number of unique user views, demographics about the users who saw their ads or content, conversion rates, and date and time information. We do not share IP addresses or personal information, but certain features may allow you to share your personal information with advertisers on our platform, if you choose to do so.
Anonymized and Aggregated Data. We may share aggregate or de-identified information with third parties for research, administrative, marketing, analytics and other purposes provided such information does not identify a particular individual.
We also use non-personally identifiable information so that we can improve our products and services and for business, educational and administrative purposes. We may also use or share with third parties as listed above for any purpose anonymized data that contains no personally identifiable information.
Currently, we do not share your personal information with third parties for direct marketing purposes.
Information Sharing Options
We offer you certain choices about the collection, use and sharing of your information. Withdrawing your consent to use your Personal Information may mean that you cannot take advantage of certain offerings or Services.
Cookies. Most browsers will tell you how to stop accepting new cookies, how to be notified when you receive a new cookie, and how to disable existing cookies. Please note, however, that without cookies you may not be able to take full advantage of all of our Services’ features. In addition, disabling cookies may cancel opt-outs that rely on cookies, such as web analytics or targeted advertising opt-outs.
Data Analytics. If you do not wish to have technology used to gather information about how you interact with our Services, please install the Google Analytics Opt-out Browser Add-on available here: https://tools.google.com/dlpage/gaoptout and employ it at the start of each session on our websites. A cookie will be set on your browser that instructs this technology not to start for that session. Please note that the next time you access our Services the analytics will be reactivated, so you will have to disable the technology each time. If you reject the cookies and web beacons we use, you may still use certain aspects of our Services, but you will not be maximizing the value of our Services. Place of processing: United States. See Google Analytics’ privacy policies.
Advertising serving infrastructure: We use:
Facebook & Instagram (optimized and targeted advertisements); place of processing: United States. See Facebook’s privacy policies.
Hosting and backend infrastructure: We use:
Amazon Web Services (AWS) (Amazon Web Services, Inc.), a hosting and backend service provided by Amazon.com Inc. Place of processing: United States. See AWS’ privacy policies.
MongoDB Atlas, a cloud hosting service provided by MongoDB, Inc. Place of processing: United States. See MongoDB Atlas’ privacy policies.
Redis Labs, a cloud and platform as a service database hosting and management service provided by Redis Labs, Inc. Place of processing: United States. See Redix Labs’ privacy policies.
Other Vendors and Business Partners. Some of our Services require the services of the following third parties, and the collection, processing, use and retention of any personal information transferred by Lyric or you to such third parties is subject to those parties’ privacy policies:
Cross-border Transfer of Information
We generally maintain servers and systems in the United States hosted by third party service providers. We also may subcontract the processing of your data to, or otherwise share your data with, other third parties in the United States or countries other than your country of residence. As a result, where the personal information that we collect through or in connection with our Services is transferred to and processed in the United States or anywhere else outside the European Economic Area (EEA) for the purposes described above, we will take steps to ensure that the information receives the same level of protection as if it remained within the EEA, including entering into data transfer agreements, using the EU Commission approved Standard Contractual Clause. You may have a right to details of the mechanisms under which your data is transferred outside the EEA.
The Services are not intended for use by anyone under the age of 13. If you are under 13, please do not attempt to create an account or send any information about yourself to us, including your name, address, telephone number, or email address. No one under the age of 13 may provide any personal information to us, and we do not knowingly collect personal information from anyone under the age of 13. If we learn that we have collected personal information from a child under age 13 without verification of parental consent, we will delete that information as quickly as possible. If you believe that we might have any information from or about a child under the age of 13, please contact us immediately.
Notice to California Customers - Your California Privacy Rights
The following details the Personal Information that we collect and have collected over the past twelve (12) months, if any, in the following categories: Personal Identifiers, including full name and email address; information you submitted for purposes of the Services; Commercial Information; Device Information; Location Information and Internet or Other Network Activity Information, including Geolocation Data; and customer service information.
Under the California Consumer Protection Act of 2018 (“CCPA”), a California consumer has the following special rights:
right to request that the business disclose what personal information it collects, uses, discloses, and sells;
right to request the deletion of their personal information collected by the business; and
the right, at any time, to direct a business that sells personal information about the consumer to third parties not to sell the consumer’s personal information (“right to opt-out”).
Over the past twelve (12) months, we have disclosed the following categories of Personal Information to service providers or other parties for business purposes: Personal Identifiers, Commercial Information, Network Activity Information
Based on our understanding of the term "sell" under the CCPA, we do not sell your Personal Information.
For any of the above-mentioned rights, you may designate an authorized agent to make a request on your behalf. In the request, you or your authorized agent must provide including information sufficient for us to confirm the identity of an authorized agent. We are required to verify that your agent has been properly authorized to request information on your behalf and this may take additional time to fulfill your request.
To exercise their rights and request copies of the data collected about them in the past 12 months, that their personal information collected by Lyric be deleted or to exercise their right of opt-out, California residents may make a request at email@example.com or use the online request form. Such request must include sufficient information to allow us to verify that you are the person about whom we have collected Personal Information, and describes your request in sufficient detail to allow us to understand, evaluate, and respond to it. Opt-Out Requests may be canceled by making an Opt-In Request.
We will work to respond to your valid request within 45 days of receipt. We will not charge you a fee for making a valid request unless your valid request(s) is excessive, repetitive, or manifestly unfounded. If we determine that your valid request warrants a fee, we will notify you of the fee and explain that decision before completing your request.
We will use the information you provide to make your CCPA rights requests to verify your identity, identify the personal information we may hold about you, and act upon your request. We strongly recommend that you submit the email that you used when you registered with the Services. After you submit a CCPA rights requests using one of our forms, you will be required to verify access to the email address you submitted. You will receive an email with a follow-up link to complete your email verification process. You are required to verify your email in order for us to proceed with your CCPA rights requests. Please check your spam or junk folder in case you can't see the verification email in your inbox. If you are a California resident and have any questions regarding your CCPA rights under this Privacy Notice, please contact us at firstname.lastname@example.org.
Right to be free from discrimination.
You may exercise any of the above rights without fear of being discriminated against. We are permitted to provide a different price or rate to you if the difference is directly related to the value provided to you by your data.
California Online Privacy Protection Act
California Customers may request further information about our compliance with California’s privacy law and may request to review and request changes to their personal information collected and stored by Lyric e-mailing email@example.com or contacting us as stated below.
For questions or concerns about the business’s privacy policies and practices using a method reflecting the manner in which the business primarily interacts with the consumer or to exercise your right of Opt-Out, you may contact Lyric at firstname.lastname@example.org or use the request form available here.
Shine The Light Law
California’s "Shine the Light" law, Civil Code section 1798.83, requires certain businesses to respond to requests from California customers asking about the business' practices related to disclosing personal information to third parties for the third parties’ direct marketing purposes. If you wish to opt-out of our sharing of your information with third parties for the third parties’ direct marketing purposes or to find out more about your opt-out rights, please contact us at:
P.O. Box 120008 Nashville, TN 37212
Or by email email@example.com
California Do Not Track Disclosure
Do Not Track is a privacy preference that users can set in their web browsers. When a user turns on the Do Not Track signal, the browser sends a message to websites requesting them not to track the user. At this time, we do not respond to Do Not Track browser settings or signals. For information about Do Not Track, please visit: www.allaboutdnt.org.
Additional information about Data collection and processing
The User's Personal Data may be used for legal purposes by the Owner in Court or in the stages leading to possible legal action arising from improper use of this Application or the related Services.
The User declares to be aware that the Owner may be required to reveal personal data upon request of public authorities.
Additional information about User's Personal Data
System logs and maintenance
For operation and maintenance purposes, this Application and any third-party services may collect files that record interaction with this Application (System logs) use other Personal Data (such as the IP Address) for this purpose.
Information not contained in this policy
More details concerning the collection or processing of Personal Data may be requested from the Owner at any time. Please see the contact information at the beginning of this document.