This Privacy Notice for California Residents (“CA Privacy Notice”) supplements the information contained in our Privacy Policy located at https://www.webshare.io/privacy-policy and applies to all visitors and users who reside in the State of California (“consumers” or “you”) who use our website, app or services.  With respect to users who are California residents, this notice is incorporated and made a part of our Privacy Policy, and the terms of this CA Privacy Notice shall control with respect to California residents in the event of any inconsistency between our Privacy Policy and this CA Privacy Notice.  Where we use capitalized terms in this CA Privacy Notice that are not expressly defined here or in the CCPA, those terms have the meaning provided in the Privacy Policy.

I. Information We Collect

Our Services collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“Personal Information”). In particular, we collect through our Services, and/or have collected during the last twelve (12) months, the categories of Personal Information indicated below:

‍

For purposes of this CA Privacy Notice, Personal Information does not include:

• Publicly available information from government records;
• De-identified or aggregated consumer information not capable of being associated with or be linked, directly or indirectly, to a particular consumer or household;
• Information that is excluded from the CCPA’s scope, such as health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA), or personal information covered by certain privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) and the Driver’s Privacy Protection Act of 1994.

In general, we obtain the categories of Personal Information listed above from the following categories of sources:

• Directly from our users. For example, from forms our users complete on our websites or information they provide in connection with an account with us, through our communications with our users or through any other interaction we have with our users;  
• Indirectly from our users and their agents. For example, from observing user actions in their use of our Service, or when someone authorizes a third party to provide us the information on their behalf;
• Indirectly from our service providers. For example, third-party service providers we use to help us provide aspects of the Service (such as payment processing) may receive Personal Information related to our users that we receive access to;
• External reports of potential abuse/misuse of our Service.  We sometimes receive reports from third parties about abuse or misconduct possibly originating from the use of Webshare's Service. These complaints typically include web activity and IP address of one or more Webshare users.  We use this information to assess the validity of the report and to determine any appropriate actions to take, but we do not disclose any private information to the complaining party.

Additional information regarding the ways that we collect the foregoing information is set forth in our Privacy Policy.  

II. Purposes for Collecting the Personal Information

We may use the categories of Personal Information we collect as set forth above for the following purposes:

Purposes

A. Identifiers.

• To provide our Service to our users.  This includes sharing Personal Information with certain third-party vendors we contract with to provide aspects of the Service as described further under the heading “Sharing Personal Information” below;
• To perform account-related services, provide customer service, process and fulfill orders and transactions, verify customer information, process payments, to communicate with our users and perform other customer services functions such as notifying you about aspects of our products and Service and changes to our website or policies;
• Detecting and responding to security incidents, protecting against malicious, deceptive, fraudulent or illegal activity, and cross-relating users and activities to assess proxy uses and to detect and prevent abuse/misuse of our Service;
• Undertaking activities to verify or maintain the quality or safety of, and to upgrade and enhance, our products and services (including through customer feedback and A/B testing);
• Short-term, transient use where the Personal Information (i) is not disclosed to another third party, and (ii) is not used to build a profile about a Consumer or alter their individual experience outside the current interaction.

B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).

• To provide our Service to our users.  This includes sharing Personal Information with certain third-party vendors we contract with to provide aspects of the services as described further under the heading “Sharing Personal Information” below;
• To perform account-related services, provide customer service, process and fulfill orders and transactions, verify customer information, process payments, to communicate with our users and perform other customer services functions such as notifying you about aspects of our products and services and changes to our website or policies;
• Detecting and responding to security incidents, protecting against malicious, deceptive, fraudulent or illegal activity, and cross-relating users and activities to assess proxy uses and to detect and prevent abuse/misuse of our Service;
• Undertaking activities to verify or maintain the quality or safety of, and to upgrade and enhance, our products and services (including through customer feedback and A/B testing);
• Short-term, transient use where the Personal Information (i) is not disclosed to another third party, and (ii) is not used to build a profile about a Consumer or alter their individual experience outside the current interaction.

‍

C. Commercial information

• To provide our Service to customers and other users, including facilitating purchases and payments via the Service.  This includes sharing Personal Information with certain third-party vendors we contract with to provide aspects of the services as described further under the heading “Sharing Personal Information” below;
• To perform account-related services, provide customer service, process and fulfill orders and transactions, verify customer information, process payments, to communicate with our users and perform other customer services functions such as notifying you about aspects of our products and services and changes to our website or policies;
• Undertaking activities to verify or maintain the quality or safety of, and to upgrade and enhance, our products and services (including through customer feedback and A/B testing);
• Detecting and responding to security incidents, protecting against malicious, deceptive, fraudulent or illegal activity, and cross-relating users and activities to assess proxy uses and to detect and prevent abuse/misuse of our Service;
• Short-term, transient use where the Personal Information (i) is not disclosed to another third party, and (ii) is not used to build a profile about a Consumer or alter their individual experience outside the current interaction.

D. Internet or other similar network activity.

• To provide our Service to customers and other users.  This includes sharing Personal Information with certain third-party vendors we contract with to provide aspects of the services as described further under the heading “Sharing Personal Information” below;
• To perform account-related services, provide customer service, process and fulfil orders and transactions, verify customer information, process payments, to communicate with our users and perform other customer services functions such as notifying you about aspects of our products and services and changes to our website or policies;
• Detecting and responding to security incidents, protecting against malicious, deceptive, fraudulent or illegal activity, and cross-relating users and activities to assess proxy uses and to detect and prevent abuse/misuse of our Service;
• Undertaking activities to verify or maintain the quality or safety of, and to upgrade and enhance, our products and services;
• Auditing related to a current interaction with a consumer using the Service (including through customer feedback and A/B testing);
• Short-term, transient use where the Personal Information (i) is not disclosed to another third party, and (ii) is not used to build a profile about a Consumer or alter their individual experience outside the current interaction.

E. Inferences drawn from other personal information.

• To provide our Service to customers and other users.  This includes sharing Personal Information with certain third-party vendors we contract with to provide aspects of the services as described further under the heading “Sharing Personal Information” below;
• To perform account-related services, provide customer service, process and fulfil orders and transactions, verify customer information, process payments, and to perform other customer services functions such as notifying you about aspects of our products and services and changes to our website or policies;
• Undertaking activities to verify or maintain the quality or safety of, and to upgrade and enhance, our products and services (including through customer feedback and A/B testing);
• Short-term, transient use where the Personal Information (i) is not disclosed to another third party, and (ii) is not used to build a profile about a Consumer or alter their individual experience outside the current interaction.

In addition, we may use information in any of the categories described above:

• As described to you and consented to by you when collecting your Personal Information or as otherwise set forth in the CCPA;
• To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations or to otherwise comply with legal obligations applicable to us.

Additional information regarding these uses of data, including Personal Information, are set forth in our Privacy Policy.  

III. Sharing Personal Information

In the previous 12 months, we have disclosed for our business purposes the categories of personal information listed in the Information We Collect section of this CA Privacy Notice, to the categories of third parties listed in the Disclosure of Data section of our Privacy Policy. 

IV. Your Rights and Choices

The CCPA provides consumers (California residents) with specific rights regarding their Personal Information. This section describes your CCPA rights and explains how to exercise those rights.

A. Right to Access/Know 

You have the right to request that we disclose certain information to you about our collection and use of your Personal Information over the past 12 months.  Once we receive and confirm your verifiable consumer request, we will disclose to you:

• The categories of Personal Information we have collected about you;
• The categories of sources for the Personal Information we collected about you;
• Our business or commercial purpose for collecting or, if applicable, selling that Personal Information;
• The categories of third parties with whom we share that Personal Information;
• The specific pieces of Personal Information we collected about you (also called a data portability request);

• The categories of Personal Information we have sold about you (if any), and the categories of third parties to whom the information was sold; and
• The categories of Personal Information that we have disclosed to third parties for a business purpose, and the categories of third parties to whom this information was disclosed. 

To make a request to have your Personal Information disclosed you can make a request for the information by sending us an email at support@webshare.io.

B. Deletion Request Rights

You have the right to request that we delete any of your Personal Information that we collected from you and retained, subject to certain exceptions under applicable law.  Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your Personal Information from our records, unless an exception applies.

‍C. Exercising Access and Deletion Rights

To exercise the access, data portability, and deletion rights described above, please submit a verifiable consumer request to us by contacting us as follows:

(1) writing to us at 340 S LEMON AVE #6464 WALNUT, CA 91789; or 

(2) emailing us at: support@webshare.io.  

You may only make a verifiable consumer request for access twice within a 12-month period. The verifiable consumer request must describe your request with enough detail that allows us to properly understand, evaluate, and respond to it.

Before processing your request, we will need to verify your identity and confirm you are a resident of the State of California. In order to verify your identity, we will generally either require the successful authentication of your Webshare account, or the matching of sufficient information you provide us to the information we maintain about you in our systems. This process may require us to request additional personal information from you, including, but not limited to, your email address, last four digits of your payment card information, and/or the date and amount of any payment you have made to us.

In certain circumstances, we may decline a request to exercise the right to know and/or right to deletion, particularly where we are unable to verify your identity.

Authorized Agents

In certain circumstances, California residents are permitted to use an authorized agent to submit requests to know or delete personal information on their behalf through the designated methods set forth in this Notice, where we can verify the authorized agent’s authority to act on their behalf by:

• receiving a power of attorney valid under the laws of California from the consumer or their authorized agent; or
• receiving sufficient evidence to show that the consumer has:

i. provided the authorized agent signed permission to act on their behalf;

ii. verified the consumer’s own identity directly with us pursuant to the procedures set forth in this CA Privacy Notice; and

iii. directly confirmed with us that the consumer provided the authorized agent permission to submit the request on their behalf.

• For requests to opt-out of personal information “sales”: receiving a signed permission demonstrating your authorized agent has been authorized by you to act on your behalf.

D. Response Timing and Format

We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt.  If we require more time, we will inform you of the reason and extension period in writing within forty-five (45) days of receipt of your request.

The response we provide will also explain the reasons we cannot comply with a request, if applicable.  For data access requests, we will select a format to provide your Personal Information that is readily usable and should allow you to transmit the information from one entity to another entity without hindrance, specifically by electronic mail communication.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded.  If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

E. Personal Information Sales Opt-Out and Opt-In Rights

We do not sell Personal Information of our users to third parties.

F. Non-Discrimination

Consumers have the right not to be discriminated against because you exercised your privacy rights provided under the CCPA. We will not discriminate against you for exercising any of your CCPA rights.
Please note, however, that if the exercise of the rights described above limits our ability to process personal information (such as in the case of a deletion request), we may not be able to provide our services and offerings to individuals who exercise these rights, or to otherwise engage with such individuals going forward.

G. California Shine the Light Law

California’s “Shine the Light” law (Civil Code Section § 1798.83) may permit users of our Websites that are California residents to request certain information regarding our disclosure of Personal Information to third parties for their direct marketing purposes, and to prevent future disclosures for direct marketing purposes of your Personal Information.  To make such a request, please contact us using the contact information provided below.

V. Changes to this Notice

We reserve the right to amend this CA Privacy Notice at our discretion and at any time. When we make changes to this privacy notice, we will post the updated notice on our website. We will notify you about material changes in the way we treat Personal Information via email and/or a prominent notice on our Service prior to the change becoming effective. 

VI. Contact Information

If you have any questions or comments about this notice, the ways in which we collect and use your information described in the CA Privacy Notice and in the Privacy Policy, your choices and rights regarding such use, or wish to exercise your rights under California law, please do not hesitate to contact us as follows:

Email our customer services team at support@webshare.io