What personal information do we collect from the people that visit our blog or website?
When contacting us or requesting data recovery services you may be asked to enter your name, email address, mailing address, phone number or other details to help you with your experience.
When do we collect information?
We collect information from you when fill out our contact form or our data recovery terms of service agreement.
How do we use your information?
We use the information to reply to your inquiries, update you on your data recovery case, or request payment for services.
How do we protect your information?
An external PCI compliant payment gateway handles all CC transactions.
If you fill out our contact form the information you enter, as well as your IP address, is sent to us via email.
If you fill out our data recovery terms of service agreement then your personal information is only accessible by a limited number of persons who have special access rights to the information and are required to keep the information confidential.
We do not collect sensitive/credit information on our website.
All transactions are processed through a gateway provider and are not stored or processed on our servers.
Do we use ‘cookies’?
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.
If you turn cookies off, it should not affect the user’s experience.
We do not sell or trade your Personally Identifiable Information (PII) to outside parties.
We use third party payment gateways to request payment for services. If we request a payment for services then we will enter your name, email address, and service specifics on a 3rd party, PCI compliant, website.
Occasionally, at our discretion, we may include links to third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.
We use our server logs to analyze visitor paths, visitor locations, referring links and websites, and other details that can help us increase our exposure to new customers as well optimize the visitor experience.
Google and Bing:
We use Google Analytics to monitor conversions that result from our Google Adwords campaigns.
We track conversions for our Bing ad campaigns.
California Online Privacy Protection Act:
According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
Can change your personal information:
• By emailing us
• By calling us
How does our site handle Do Not Track signals?
We honor Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third-party behavioral tracking?
We do not allow third-party behavioral tracking
COPPA (Children Online Privacy Protection Act):
When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not specifically market to children under the age of 13 years old.
Do we let third-parties, including ad networks or plug-ins collect PII from children under 13?
Fair Information Practices:
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify you via email
• Within 7 business days
We will notify the users via in-site notification
• Within 7 business days
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act:
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
• Respond to inquiries, and/or other requests or questions.
• Process service orders and to send information and updates pertaining to services you have requested.
• Send you additional information related to your service.
To be in accordance with CANSPAM, we agree to the following:
• Not use false or misleading subjects or email addresses.
• Identify the message as an advertisement in some reasonable way.
• Include the physical address of our business or site headquarters.
• Monitor third-party email marketing services for compliance, if one is used.
• Honor opt-out/unsubscribe requests quickly.
• Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails, you can reply to our message with a request to no longer receive correspondence and we will promptly remove you from future correspondence.
Privacy and Data Retention Policy for Data Recovery Cases
When you fill out and submit our data recovery terms of service form (TOS) we retain the provided personal information indefinitely. The form may be filed physically or digitally. Once your media is received, it may be handled by more than one person. Currently, all tech and office personnel are Blizzard family members. There are no outside employees. We feel this is important, so we will update this policy if we hire non-family members in the future. We understand that there could be confidential business and personal data on your media, so we handle each case with privacy in mind. We typically review a limited number of personal files for successful recovery verification. This allows us to tell you with some confidence that your recovered data is not corrupt.
After your recovery is complete, we send, to the email address you provided, a file and folder list for review. This list is not encrypted or password protected. While it is just a list of recovered files and not the actual files, it could have sensitive data in the names of the files and folders. If this is a concern, you should request in advance that we do not provide a list for review.
Once the recovery is complete, we will ship your recovered data on media that is NOT encrypted. If you require encryption then you must provide suitable encrypted return media in advance.
We retain a copy of your recovered data for at least 7 days after delivery of your data to your provided shipping address. Typically, the retention time is longer, and your recovered data will be wiped when we reclaim the storage space for new cases. If a special case is made for delivery via cloud storage, you will have access for 14 days. You can request via email at any time that all copies of your recovered data in our possession be deleted. Upon us receiving notice to delete all copies, you will receive notification within 48 hours that your data has been wiped from our storage.
Last Edited on 2019-01-20