This Privacy Policy explains how Alpine AX (“X”, “we” or “us”) collects, uses, and discloses information about you when you access or use our website other products and services (collectively, the “Services”), contact our customer service team, or otherwise interact with us.
We may change this Privacy Policy from time to time. If we make changes, we will notify you by revising the date at the top of the policy and, in some cases, we may provide you with additional notice (such as adding a statement to our website homepage or sending you a notification). We encourage you to review the Privacy Policy whenever you access the Services or otherwise interact with us to stay informed about our information practices and the choices available to you.
When you access or use our Services, we automatically collect information about you, including:
We may also obtain information about you from other sources. For example, we may collect information about you from third parties, including but not limited to publicly available sources.
We use the information we collect to identify and research opportunities and businesses that may be interested in or appropriate for our acquisition. We also use the information we collect to:
We may share information about you as follows or as otherwise described in this Privacy Policy:
We may also share aggregated or de-identified information that cannot reasonably be used to identify you.
We may allow others to provide analytics services and serve advertisements on our behalf across the web and in mobile applications. These entities may use cookies, web beacons, device identifiers and other technologies to collect information about your use of the Services and other websites and applications, including your IP address, web browser, mobile network information, pages viewed, time spent on pages, links clicked, and conversion information. This information may be used by AX and others to, among other things, analyze and track data, determine the popularity of certain content, deliver advertising and content targeted to your interests on our Services and other websites, and better understand your online activity. For more information about interest-based ads, or to opt out of having your web browsing information used for behavioral advertising purposes, please visit [email protected].
X is based in the United States and we process and store information in the United States. Therefore, we and our service providers may transfer your information to, or store or access it in, jurisdictions that may not provide equivalent levels of data protection as your home jurisdiction.
You may update certain account information you provide to us at any time by emailing us at [email protected]. If you wish to delete your personal information, please email us at [email protected], but note that we may retain certain information as required by law or for legitimate business purposes. We may also retain cached or archived copies of information about you for a certain period of time.
Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove or reject browser cookies. Please note that if you choose to remove or reject cookies, this could affect the availability and functionality of our Services.
You may opt out of receiving promotional emails or text messages from AX by following the instructions in those emails or text messages or by emailing us at [email protected]. If you opt out, we may still send you non-promotional emails, such as those about our ongoing business relations.
We disclose personal data for business purposes as follows:
| Category of Personal Data | Examples of Personal Data We Collect | Categories of Third Parties To Whom We Disclose Personal Data |
|---|---|---|
| Profile or Contact Data | First and last name Email address Phone number Mailing address IP address | Operating systems and platforms Data storage service providers Technical, administrative, and information service providers |
| Identifiers | User name and login credentials | Operating systems and platforms Data storage service providers Technical, administrative, and information service providers |
| Device/IP Data | IP address Device ID Type of device/operating system/browser used to access the Services | Operating systems and platforms Data storage service providers Technical, administrative, and information service providers |
| Web Analytics | Web page interactions Referring webpage/source through which you accessed the Services Statistics associated with the interaction between device or browser and the Services | Operating systems and platforms Data storage service providers Technical, administrative, and information service providers |
| Geolocation Data | IP-address-based coarse location information including city, state, postal code, country, region and time zone | Operating systems and platforms Data storage service providers Technical, administrative, and information service providers |
Under the California Consumer Privacy Act, as amended by the California Privacy Rights Act of 2020 (together, the “CCPA”), sharing your data through third party cookies for online and cross-contextual behavioral advertising may be considered a “share” of personal information.
We share your personal data for the purposes of cross-contextual behavioral advertising with the following categories of third parties:
| Category of Personal Data | Examples of Personal Data We Collect | Categories of Third Parties To Whom We Disclose Personal Data |
|---|---|---|
| Profile or Contact Data | First and last name Email address Phone number Mailing address IP address | Advertising Partners Analytics Partners Business Partners |
| Device/IP Data | IP address Device ID Type of device/operating system/browser used to access the Services | Advertising Partners Analytics Partners Business Partners |
| Web Analytics | Web page interactions Referring webpage/source through which you accessed the Services Statistics associated with the interaction between device or browser and the Services | Advertising Partners Analytics Partners Business Partners |
| Geolocation Data | IP-address-based coarse location information including city, state, postal code, country, region and time zone | Advertising Partners Analytics Partners Business Partners |
We do not sell personal information for monetary or other valuable consideration.
To our knowledge, we do not sell or share the personal data of minors under 18 years of age for any purpose, including cross-contextual behavioral advertising and targeted advertising.
We only use or disclose your sensitive personal information for the purposes set forth in section 7027(l) of the CCPA proposed regulations and we do not collect or process sensitive personal information with the purpose of inferring any characteristics about you.
We will not discriminate against you for exercising your rights under the CCPA. We will not deny you our goods or services, charge you different prices or rates, or provide you a lower quality of goods and services if you exercise your rights under the CCPA. However, we may offer different tiers of our Services as allowed by applicable data privacy laws (including the CCPA) with varying prices, rates or levels of quality of the goods or services you receive related to the value of personal data that we receive from you.
If you are a California resident, you may also authorize an agent (an “Authorized Agent”) to exercise your rights on your behalf. To do this, you must provide your Authorized Agent with written permission to exercise your rights on your behalf, and we may request a copy of this written permission from your Authorized Agent when they make a request on your behalf.
If you are a resident of the European Union (“EU”), United Kingdom (“UK”), Lichtenstein, Norway or Iceland, you may have additional rights under the EU or UK General Data Protection Regulation (together, “GDPR”) with respect to your personal data, as outlined below.
We will only process your personal data if we have a lawful basis for doing so. Lawful bases for processing include consent, contractual necessity and our “legitimate interests” or the legitimate interest of others, as further described below.
Contractual Necessity: We process the following categories of personal data as a matter of “contractual necessity”, meaning that we need to process the data to perform under our Terms of Service with you, which enables us to provide you with the Services. When we process data due to contractual necessity, failure to provide such personal data will result in your inability to use some or all portions of the Services that require such data.
Legitimate Interest: We process the following categories of personal data when we believe it furthers the legitimate interest of us or third parties:
Examples of these legitimate interests include (as described in more detail above):
Consent: In some cases and where required by law, we may collect or process personal data based on the consent you expressly grant to us at the time we collect such data. When we process personal data based on your consent, it will be expressly indicated to you at the point and time of collection.
Other Processing Grounds: From time to time we may also need to process personal data to comply with a legal obligation, if it is necessary to protect the vital interests of you or other data subjects, or if it is necessary for a task carried out in the public interest.
The Services are hosted and operated in the United States (“U.S.”) through AlpineX and its service providers, and if you do not reside in the U.S., laws in the U.S. may differ from the laws where you reside. By using the Services, you acknowledge that any personal data about you, regardless of whether provided by you or obtained from a third party, is being provided to AlpineX in the U.S. and will be hosted on U.S. servers, and you authorize AlpineX to transfer, store and process your information to and in the U.S., and possibly other countries. In some circumstances, your personal data may be transferred to the U.S. pursuant to a data processing agreement incorporating standard data protection clauses.
While the Privacy Shield is no longer a valid basis on which AlpineX may rely to transfer personal data from the EU to the U.S. pursuant to the GDPR, AlpineX continues to comply with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks set forth by the U.S. Department of Commerce regarding the collection and use of personal data transferred from the EU and Switzerland to the U.S., respectively. For more information about the Privacy Shield Program, and to view AlpineX’s certification, please visit www.privacyshield.gov. AlpineX is committed to the Privacy Shield Principles of (1) notice, (2) consent, (3) accountability for onward transfer, (4) security, (5) data integrity and purpose limitation, (6) access and (7) recourse, enforcement and liability with respect to all personal data received from within the EU and Switzerland in reliance on the Privacy Shield. The Privacy Shield Principles require that we remain potentially liable if any third party processing personal data on our behalf fails to comply with these Privacy Shield Principles (except to the extent we are not responsible for the event giving rise to any alleged damage). AlpineX’s compliance with the Privacy Shield is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.
Please contact us as described below with any questions or concerns relating to our Privacy Shield Certification. If you do not receive timely acknowledgment of your Privacy Shield-related complaint from us, or if we have not resolved your complaint, you may also resolve a Privacy Shield-related complaint through JAMS, an alternative dispute resolution provider located in the U.S. You can visit https://www.jamsadr.com/eu-us-privacy-shield for more information or to file a complaint, at no cost to you. Under certain conditions, you may also be entitled to invoke binding arbitration for complaints not resolved by other means.
AlpineX commits to cooperate with EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) and comply with the advice given by such authorities with regard to human resources data transferred from the EU and Switzerland in the context of the employment relationship.
If you have any questions about this Privacy Policy, please email us at [email protected] or contact us at the postal address listed on our “Contact” page.