1. Definitions

Personal Data: Information that identifies or can be used to identify an individual (e.g., name, email address, or payment details).

Usage Data: Information collected automatically through your use of the Service (e.g., IP address, browser type, or pages visited).

Cookies: Small data files stored on your device to enhance your experience on our Service.

Data Controller: The entity responsible for determining how and why personal data is processed (in this case, Getpaidto).

Data Processor: A third party that processes data on behalf of the Data Controller.

Data Subject: The individual to whom the personal data relates.

User: Anyone who uses our Service.

2. Data We Collect

We collect various types of information to provide and improve our Service:

• Identity Data: Name, username, date of birth, and gender.
• Contact Data: Email address, billing address, and delivery address.
• Financial Data:Payment information, such as bank account or PayPal details.
• Transaction Data: Details of purchases or payments made through our Service.
• Profile Data:Username, password, preferences, feedback, and survey responses.
• Marketing Data: Your preferences for receiving marketing communications.

Usage Data

Technical information such as IP address, browser type, device identifiers, and pages visited.

Data about how you interact with our Service, including time spent on pages and click patterns.

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience and analyze Service usage. You can manage cookie preferences through your browser settings, but disabling cookies may limit certain features of our Service.

3. How We Use Your Data

• To provide, maintain, and improve our Service.
• To process transactions and deliver cashback rewards.
• To communicate with you about updates, offers, and promotions.
• To monitor and analyze Service usage for optimization.
• To detect and prevent fraud or technical issues.
• To comply with legal obligations and enforce our policies.

4. Data Sharing and Disclosure

With Service Providers: Third parties who assist us in operating the Service (e.g., payment processors, email marketing providers).

For Legal Compliance: When required by law or to protect our rights, safety, or property.

With Affiliate Networks: To facilita te cashback rewards and track transactions.

We ensure all third parties adhere to strict data protection standards and use your data only for the purposes specified.

5. Data Security

We prioritize the security of your data and implement industry-standard measures to protect it.

6. Your Rights

• Access:Request a copy of the data we hold about you.
• Correction: Update or correct inaccurate or incomplete data.
• Erasure: Request deletion of your data under certain conditions.
• Data Portability: Receive your data in a structured, machine-readable format.
• Withdraw Consent:Opt out of data processing at any time.

To exercise these rights, contact us at matthew.james@getpaidto.io

7. Data Retention

We retain your data only as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations. Usage data may be retained for shorter periods unless used for security or Service improvement.

8. International Data Transfers

Your data may be transferred to and processed in countries outside your jurisdiction. We ensure such transfers comply with applicable data protection laws and provide adequate safeguards.

9. Third-Party Services

Our Service may contain links to third-party websites or services. We are not responsible for their privacy practices, and we encourage you to review their policies before providing any personal information.

10. Children’s Privacy

Our Service is not intended for individuals under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with data, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page, and we will notify you via email or a prominent notice on our Service. Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Collection and Use of Personal Information

We may collect and process the following types of personal information:

• Identity Information:Such as your full name, email address, date of birth, and gender.
• Contact Information:Including your residential address, state/province, postal/ZIP code, and city.
• Usage Data: This includes information such as your device's IP address, browser type and version, the pages of our service that you visit, the time and date of your visit, time spent on those pages, unique device identifiers, and other diagnostic data.
• Tracking Technologies and Cookies: We use cookies and similar tracking technologies to monitor activity on our services and store certain information.

We use the personal data we collect for various purposes, including:

• To provide and maintain our services, including to monitor usage of our platform;
• To manage your account and provide customer support;
• To perform our contractual obligations;
• To contact you by email, phone, SMS, or other equivalent forms of communication when necessary or reasonable;
• To provide you with updates, promotional offers, and general information related to the service unless you have opted not to receive such information;
• To manage and respond to your inquiries and requests.

13. Contact Us

If you have questions or concerns about this Privacy Policy or your data, please contact us at: Email: matthew.james@getpaidto.io

1. Data Processing Compliance and Legal Basis

In compliance with the General Data Protection Regulation (GDPR), the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA), the Utah Consumer Privacy Act (UCPA), the Connecticut Privacy Act (CTPA), the Nevada Privacy Law (SB 220), the Maine Privacy Protection Law, and the New York Shield Act, we are committed to protecting your personal data and ensuring your privacy rights are respected. We process data in accordance with applicable privacy laws and provide the following privacy rights for our users.

Legal Basis for Processing:

We process your personal data based on the following legal grounds:

• User Consent:When you consent to the processing of your personal data, you have the right to withdraw consent at any time.
• Contractual Obligation:We may process your data as necessary to fulfill our contractual obligations with you.
• Legal Obligation: We may process your data to comply with legal requirements.
• Legitimate Interest: We process data to optimize our services and business operations in accordance with our legitimate interests.

2. User Rights (Under GDPR and State Privacy Laws)

Under GDPR and applicable state privacy laws, you have the following rights:

• Access:You have the right to request a copy of the personal data we hold about you.
• Correction:You have the right to update or correct any inaccurate or incomplete personal data.
• Erasure: You have the right to request the deletion of your personal data under certain circumstances (e.g., if data is no longer necessary or you withdraw consent).
• Data Portability: You have the right to request your personal data in a structured, machine-readable format and transfer it to another service provider.
• Objection: You have the right to object to the processing of your personal data based on legitimate interests.
• Withdraw Consent: You have the right to withdraw your consent at any time if the processing of your personal data is based on consent.

How to Exercise These Rights:

You can contact us by email at: matthew.james@getpaidto.io . We will process your request within the statutory time frame.

3. Data Breach Notification (Under State Privacy Laws)

In the event of a data breach, we will notify affected users promptly in accordance with the New York Shield Act and other relevant laws. If a breach may result in harm to the personal data of users, we will provide appropriate notifications and take necessary measures to mitigate the impact.

4. Cross-Border Data Transfers (In Compliance with GDPR)

Your personal data may be transferred to and processed in countries outside your jurisdiction, particularly when we use third-party service providers. We ensure that any such transfers comply with applicable privacy laws and provide adequate safeguards, such as Standard Contractual Clauses (SCCs), to protect your data.

5. Cookies and Tracking Technologies (Under State Privacy Laws)

We use cookies and similar tracking technologies to enhance your experience. In compliance with VCDPA, CPA, and other state privacy laws, we will provide you with the option to manage your cookie preferences. You can manage your cookie settings via your browser, and you may choose to opt out of personalized advertising.

6. Data Protection Officer (DPO)

We have appointed a Data Protection Officer (DPO) to ensure our data processing activities comply with the GDPR and other applicable privacy laws. If you have any questions regarding data protection, please contact the DPO via the following:
- Email: matthew.james@getpaidto.io

7. Data Processing Agreement (DPA)

When we work with third-party data processors, we ensure that we have a Data Processing Agreement (DPA) in place that outlines the terms of data processing and the obligations of both parties to ensure compliance with data protection laws.

8. Applicable Laws and Jurisdiction

Depending on your location, your personal data may be protected by the following privacy laws:

• EU GDPR
• Virginia Consumer Data Protection Act (VCDPA)
• Colorado Privacy Act (CPA)
• Utah Consumer Privacy Act (UCPA)
• Connecticut Privacy Act (CTPA)
• Nevada Privacy Law (SB 220)
• Maine Privacy Protection Law
• New York Shield Act

9. Updates to Privacy Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page, and we will notify you via email or a prominent notice on our Service. Continued use of the Service after such changes constitutes acceptance of the updated policy.