Privacy Policy

About This Policy

Scope and Applicability

This Policy applies to personal information we process about U.S. residents in connection with the Service. It is designed to comply with applicable U.S. federal and state privacy laws, including but not limited to:

• California Consumer Privacy Act, as amended by the California Privacy Rights Act (CCPA/CPRA)
• Virginia Consumer Data Protection Act (VCDPA)
• Colorado Privacy Act (CPA)
• Connecticut Data Privacy Act (CTDPA)
• Utah Consumer Privacy Act (UCPA)
• Texas Data Privacy and Security Act (TDPSA)
• Oregon Consumer Privacy Act (OCPA)
• Montana Consumer Data Privacy Act (MCDPA)
• Iowa Consumer Data Protection Act (ICDPA)
• Delaware Personal Data Privacy Act (DPDPA)
• New Hampshire, New Jersey, Minnesota, Maryland, Rhode Island, Kentucky, Indiana, and Tennessee comprehensive privacy laws
• Florida Digital Bill of Rights (FDBR)
• Children's Online Privacy Protection Act (COPPA)
• CAN-SPAM Act and Telephone Consumer Protection Act (TCPA)

Where a state law grants rights or imposes obligations that conflict with another, the more protective standard applies to residents of that state.

Definitions

• Company: (referred to as either "the Company", "We", "Us" or "Our") refers to Correll Technologies LLC, a Virginia limited liability company.
• Personal Information / Personal Data: any information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.
• Sensitive Personal Information: as defined under applicable state law, includes precise geolocation, government identifiers, account credentials, racial or ethnic origin, religious beliefs, health information, sexual orientation, biometric data, and similar categories. We do not knowingly collect Sensitive Personal Information through the Service.
• Sale: as defined under CCPA/CPRA and similar state laws, meaning the disclosure of personal information to a third party for monetary or other valuable consideration.
• Sharing: as defined under CCPA/CPRA, meaning the disclosure of personal information to a third party for cross-context behavioral advertising.
• Targeted Advertising: as defined under VCDPA, CPA, CTDPA, and similar laws, meaning the display of ads selected based on personal data obtained from a consumer's activities across nonaffiliated websites.
• Profiling: any form of automated processing of personal data to evaluate, analyze, or predict aspects concerning an individual.
• Service Provider / Processor: a person or entity that processes personal information on behalf of the Company under a written contract.
• Consumer / You: a natural person who is a U.S. resident accessing or using the Service.
• Cookies: small files placed on Your Device that contain identifiers and information about Your browsing.
• Usage Data: data collected automatically through Your use of the Service or from the Service infrastructure itself.
• Website / Service: Correll Technologies, https://correlltechnologies.com, and all related subdomains and APIs operated by the Company.

Categories of Personal Information We Collect

In the preceding twelve (12) months, we have collected the following categories of personal information from consumers:

• Identifiers: name, email address, telephone number, IP address, online identifiers, and similar identifiers, collected when you fill out a form, subscribe to our newsletter, or contact us.
• Customer records: information you provide when applying for employment, requesting a quote, or engaging our services, such as job title, employer, and résumé content.
• Commercial information: records of products or services purchased, considered, or inquired about.
• Internet or network activity: browsing history on our Service, interaction with our Service, pages viewed, referring URLs, device information, and automated abuse-prevention assessments.
• Geolocation data: general geographic location (typically country and region) derived from IP address. We do not collect precise GPS-level geolocation.
• Professional or employment-related information: submitted via the careers portal or contact form.
• Inferences: drawn from the above to characterize preferences and interests for the purpose of communicating about our services.

We do not knowingly collect Sensitive Personal Information, biometric data, genetic data, or precise geolocation.

Sources of Personal Information

We obtain personal information from the following sources:

• Directly from you, when you submit our contact form, careers form, newsletter signup, or otherwise communicate with us.
• Automatically from your device and browser, including through cookies, analytics tools, and server logs.
• From service providers acting on our behalf, including providers of hosting, analytics, error monitoring, and abuse-prevention services.
• From publicly available sources, where appropriate (for example, your business profile on a professional networking site if you provide us a link).

Purposes for Collection and Use

We use personal information for the following business and commercial purposes:

• To provide and maintain the Service including hosting, monitoring usage, and securing the Service against fraud and abuse.
• To respond to inquiries submitted through our contact form, careers portal, or email.
• To process applications for open employment, contractor, or internship positions.
• To send transactional communications such as confirmation emails after you submit a form.
• To send marketing communications where you have provided opt-in consent, including newsletters, product updates, and occasional promotional emails. You may unsubscribe at any time.
• To perform contracts for products, services, or other agreements with us or our affiliates.
• To comply with legal obligations and to enforce our Terms of Service and other agreements.
• For analytics and service improvement including understanding usage trends, evaluating the effectiveness of marketing, and improving the Service.
• For business transfers such as in connection with a merger, acquisition, financing, or sale of all or part of our assets.

Cookies and Tracking Technologies

We use cookies and similar technologies to operate, secure, and improve the Service. Cookies may be "Persistent" (remaining after you close your browser) or "Session" (deleted when you close your browser). We use cookies for purposes including:

• Strictly necessary cookies that enable core site functionality.
• Security cookies to detect and prevent fraud and abuse.
• Analytics and performance cookies to measure site performance.
• Error monitoring to detect, diagnose, and resolve technical issues.

You may disable cookies through your browser settings, but some portions of the Service may not function correctly without them.

Disclosure of Personal Information

We may disclose personal information to the following categories of recipients, only for the purposes described above and under appropriate contractual safeguards:

• Service providers and processors that support hosting, email delivery, analytics, error monitoring, customer relationship management, and abuse prevention.
• Affiliates and subsidiaries under common control with Correll Technologies LLC.
• Professional advisors (lawyers, accountants, auditors, insurers).
• Government authorities, law enforcement, or other parties where required by law, legal process, or to protect rights, property, or safety.
• Parties to a business transaction (such as a merger, acquisition, or financing), subject to notice.

We do not sell personal information for money, and we do not engage in "sharing" of personal information for cross-context behavioral advertising as those terms are defined under the CCPA/CPRA. We do not engage in targeted advertising or profiling that produces legal or similarly significant effects, and we do not knowingly process the personal information of consumers under 16 for sale or sharing.

Your Privacy Rights

Depending on your state of residence, you may have some or all of the following rights regarding your personal information. We honor these rights for all U.S. residents to the extent reasonably practicable, even where not strictly required by law.

• Right to Know / Access: to request confirmation of whether we process your personal information, and to receive a copy of that information in a portable format.
• Right to Correct: to request correction of inaccurate personal information we maintain about you.
• Right to Delete: to request deletion of personal information we have collected from you, subject to legal exceptions.
• Right to Portability: to receive your personal information in a structured, commonly used, and machine-readable format.
• Right to Opt Out of Sale or Sharing: to direct us not to sell or share your personal information. As noted above, we do not sell or share personal information.
• Right to Opt Out of Targeted Advertising: to direct us not to use your personal information for targeted advertising. We do not engage in targeted advertising.
• Right to Opt Out of Profiling: in furtherance of decisions that produce legal or similarly significant effects. We do not engage in such profiling.
• Right to Limit Use of Sensitive Information: to direct us to limit our use of any sensitive personal information. We do not collect sensitive personal information through the Service.
• Right to Appeal: if we deny your request, residents of Virginia, Colorado, Connecticut, Texas, Montana, Oregon, Delaware, New Jersey, New Hampshire, Tennessee, Indiana, Iowa, Kentucky, Maryland, Minnesota, and Rhode Island have the right to appeal our decision.
• Right to Non-Discrimination: we will not discriminate against you for exercising any of these rights.

How to Exercise Your Rights

To exercise any of these rights, please email contact@correlltechnologies.com with the subject line "Privacy Request" and include:

• Your full name and the state in which you reside.
• The email address you used to interact with us, if any.
• A clear description of the right you are exercising.

We will verify your request using information we already maintain about you. We will respond within forty-five (45) days, with one extension of up to forty-five (45) additional days when reasonably necessary, and will notify you of any extension. There is no fee for exercising your rights, except where requests are manifestly unfounded or excessive.

Authorized Agents: You may designate an authorized agent to make a request on your behalf. We will require written authorization and verification of the agent's identity.

Universal Opt-Out Signals: Where required by state law (including in California, Colorado, Connecticut, and Texas), we honor recognized opt-out preference signals such as the Global Privacy Control (GPC) as a valid request to opt out of any sale or sharing of personal information for browsers that send them.

California "Shine the Light" Disclosure

California Civil Code § 1798.83 permits California residents to request information about disclosures of personal information by businesses to third parties for direct marketing purposes. We do not disclose personal information to third parties for their own direct marketing purposes.

Data Retention

We retain personal information only as long as reasonably necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements; to resolve disputes; and to enforce our agreements. Retention periods vary by the type of information and the purpose for which it is processed. When personal information is no longer needed, we will delete, de-identify, or anonymize it in accordance with our retention policy.

Security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These include encryption in transit, restricted access controls, rate limiting, automated abuse-prevention challenges, and ongoing monitoring. No method of transmission over the Internet or method of electronic storage is one hundred percent secure, however, and we cannot guarantee absolute security.

Children's Privacy

Our Service is not directed to children under thirteen (13), and we do not knowingly collect personal information from children under 13. In compliance with the CCPA/CPRA and similar state laws, we also do not knowingly sell or share the personal information of consumers under sixteen (16). If you believe a child under 13 has provided us with personal information, please contact us at contact@correlltechnologies.com and we will promptly delete it.

Geographic Scope

Correll Technologies LLC is headquartered in Virginia, United States, and all personal information collected through the Service is processed in the United States. Our Service is intended only for U.S. residents. Form submissions originating from outside the United States may be filtered or rejected. We do not knowingly transfer personal information internationally.

Do Not Track

Some browsers transmit a "Do Not Track" signal. Because there is no industry-wide standard for interpreting this signal, our Service does not currently respond to Do Not Track signals. However, we honor Global Privacy Control (GPC) and similar universal opt-out signals as described above.

Links to Other Websites

The Service may contain links to websites not operated by us. We are not responsible for the content or privacy practices of those sites and encourage you to review their privacy policies.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The current version will always be posted on this page with an updated "Last updated" date. Material changes will be communicated by prominent notice on the Service or by email to consumers for whom we have a current email address. Your continued use of the Service after any change indicates your acceptance of the revised Policy.