Last Update: August 1, 2021.
Information We Collect And Why We Collect It
We strive to provide our users with information relevant to their particular desires, needs and/or interests. The information we gather helps us to better serve our purpose. We specifically collect the following information for the identified purposes:
|Source/Type||Specific Data Category||Use/Purpose|
|Data You Provide||Name||ID verification and to connect users utilizing the service, and to process invoices|
|ID verification and to connect users utilizing the service, and to process invoices|
|Cannabis License Information||Verification of authorization to transact cannabis business in the State of California and interface with the State of California’s track-and-trace system|
|Metrc Key Information and Track and Trace Data||ID verification and to interface with the State of California’s track-and-trace system in order to verify user transactions|
|Cannabis Strain Profile and Cultivation Information||Assist in maintaining a registry of cannabis cultivars. Cannabis Strain Profile and Cultivation Information is only shared with your consent.|
|Strain licensing information.||To document and prepare invoices for transactions between cannabis breeders and growers.|
|Marketing data||Product interests||Targeting of messages to specific interests|
|Location data||User-provided county/territory location||Facility transactions between users|
Providing us with PII about yourself is voluntary, and you can always choose not to provide certain information, but then you may not be able to take advantage of or participate in some of the Site’s features.
We actively and passively gather, analyze and/or store PII and other information generally by way of two different sources: (1) the PII voluntarily submitted by visitors when using or registering to use or receive our services or offers; and (2) by tracking and analyzing online and mobile data and activity through mechanisms that identify site usage, user location, device type, browser types, IP addresses, and other data. We do not collect PII through advertisements on our Site, and the PII we collect is not shared with third parties except as set forth herein. We will make reasonable efforts to destroy, erase or make anonymous any PII that is no longer required to fulfill the original purpose for which it was originally collected.
Strain Profile Information & Transaction History
We are unable to access or view any documents that you have loaded into your “time capsule” on the Site. We are also unable to access or view any invoices that you receive from Canopyright or have been sent by Canopyright on your behalf. We do not track this information, or any metrics based on this information, which we deem to be your confidential property. We do, however, track invoice processing fees that may be payable to us.
When your computer or mobile device contacts our web servers (for example, when you visit this Site, or view an HTML email), our web servers automatically collect usage information. Such usage information includes information about how our visitors use and navigate our Site. It can include the number and frequency of visitors to each web page and the length of their stays, browser type, location, device type, referrer data that identifies the web page visited prior and subsequent to visiting our Site, and IP addresses (see below for more information on IP addresses). We also may determine the applicable technology available in order to serve you the most appropriate version of a web page, email, advertising or promotional announcement or similar service. This information is used by Canopyright for the operation of the service, to maintain quality of the service, and to provide general statistics regarding use of the Site.
Use of IP Address
An IP address is a number that is assigned to your computer, device or network when you are linked to the Internet. When you request pages from this Site, our servers log your IP address. We may use IP address for a number of purposes, such as system administration, to report aggregate information to our business partners or to audit the use of the Site. We may associate your IP address with the PII you provide.
We also may collect and store information about you that we receive from other sources to enable us to update and correct the information contained in our database and to provide product recommendations and special offers that we think will interest you.
Canopyright secures the PII you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure. No website, Internet transmission, computer system or wireless connection is completely secure, however. We cannot guarantee that unauthorized access, hacking, data loss, or other breaches will never occur. Your use of the Site is at your own risk. Whenever you provide personal information, we will take commercially reasonable steps to protect the information by establishing a secure connection with your web browser. Canopyright uses an industry standard security protocol for encrypting sensitive information. When personal information (such as a credit card number) is transmitted to other websites, it is protected through the use of encryption, such as the Secure Socket Layer (SSL) protocol. Unfortunately, no security measures are perfect or impenetrable, and data transmission over the Internet cannot be guaranteed 100% secure. We cannot and do not ensure or warrant the security of any information you transmit to or through Canopyright, and you do so at your own risk.
We are not in the business of selling your information, and we do not sell, rent or lease our customer lists or your strain information to third parties. We consider your information to be an important part of our relationship with you, and will use your PII solely to provide our services and otherwise as described in this policy.
We may share your information with third parties under the following circumstances:
Third parties providing services on our behalf and/or through our services: We may engage third parties to perform services in connection with the operation of our business. Examples of these services include: (a) content provision, (b) product customization, (c) marketing and promotional material distribution, (d) website evaluation, (e) data collection, storage, management, analysis and, where applicable, cleansing, and (f) any other services designed to assist us in maximizing our business potential. Additionally, certain third parties engage us to facilitate their own functionality and operation. All of such third parties may have access to this Site’s user information, including PII, to the extent it is needed to perform their specific duties and functions.
Legal Requirements and Protection of Rights: We may release information about our users, including PII, without notice when legally required to do so, at the request of governmental authorities conducting an investigation or to verify or enforce compliance with the policies governing our Site and applicable laws. We may also disclose such user information whenever we believe disclosure is necessary to protect the rights, property or safety of Canopyright or any of our respective affiliates, business partners, employees, customers, or others.
Aggregate Information: We may disclose non-identifying, aggregated user statistics to third parties for a variety of purposes, including describing our services to prospective partners and other third parties. Examples of such non-personal information include the number of users who visited this Site during a specific time period or purchased a specific product through this Site.
Consent to Processing
By using our Site, participating in any of our services and/or providing us with your information, you consent and agree to the collection, transfer, storage and processing of your information to and in the United States. You understand that the technical processing and transmission of this Site may involve (a) transmissions over various networks; and (b) changes to conform and adapt to technical requirements of connecting networks or devices.
We recognize the importance of safeguarding the privacy of children and encourage parents to check and monitor their children’s use of online activities regularly. The Site supports and complies with the Children’s Online Privacy Protection Act (“COPPA”) and other applicable laws. The Site is not aimed at nor intended for persons under the age of 21. If you are under the age of 21, please do not use the Site. If we discover that a person under the age of 18 has provided us with any PII, we will use commercially reasonable efforts to delete such person’s PII from its system.
You can visit the Site without providing any PII. If you choose not to provide any PII (or only provide certain requested PII), you may not be able to use certain services.
Users of our Site and services are required to inform us about any change concerning their data, in particular about changes of email address. We are not liable for the consequences resulting from providing mistaken data.
You can access, correct and update certain personal information that you have provided to us, if any, by emailing us at email@example.com. Please be aware that we will process your request as quickly as we reasonably can, but it may not be possible to update our systems immediately. In addition, you should be aware that it is not always possible to completely remove or delete all of the original information from our databases without some residual data because of backups and other reasons. Information that is posted to the blockchain may not be deleted.
You will have an opportunity to unsubscribe from receiving promotional material from this Site by clicking on an “unsubscribe” hyperlink contained in promotional emails we send you. Additionally, you may email firstname.lastname@example.org. Because customer lists often are prepared well in advance of an offering (sometimes a few months before the offer is made), you may continue to receive some offers after you send us a request not to use your information for specified marketing purposes. Please be aware that we will process your request as quickly as we reasonably can, but it may not be possible to update our systems immediately. We appreciate your patience and understanding in giving us time to meet your request.
Notice to CA Residents/Your CA Privacy Rights
California residents have the following additional choices:
Data Information: You may, up to two times during any twelve-month period, request details of personal information which we hold about you. If you would like a copy of the information we keep on our systems about you, please contact us as provided below. If you believe that any information we are holding is incorrect or incomplete, please contact us (through the means provided below) as soon as possible. We will promptly correct any information found to be incorrect. In your request, please attest to the fact that you are a California resident and provide a current California address for our response. We will take action to verify the requestor’s identity and/or California residence.
Your California Privacy Rights: We may disclose your personal information to our affiliates or other related third parties for their use in marketing to you. Pursuant to California’s “Shine the Light Act,” California residents are permitted to request information about the manner in which we share certain categories of information with third parties for their marketing use. Please send an email to the address provided below to request a copy of our disclosure pursuant to California law. Residents of the State of California have the right to request from certain businesses with whom the California resident has an established business relationship a list of all third parties to which the business, during the immediately preceding calendar year, has disclosed certain personally identifiable information for direct marketing purposes. We are only required to respond to a customer request once during any calendar year. To obtain this information, you should send a written request to the email address provided below with the subject heading “California Privacy Rights.” In your request, please attest to the fact that you are a California resident and provide a current California address for our response. Please be aware that not all information sharing is covered by the California Privacy Rights requirements and only information on covered sharing will be included in our response.
“Do Not Track” Browser Settings: We do not use technology that recognizes a “do-not-track” signal from your web browser.
We may allow third-party companies to serve ads and/or collect certain anonymous information when you visit our Site. These companies may use non-personally identifiable information (e.g., click stream information, browser type, time and date, subject of advertisements clicked or scrolled over) during your visits to this and other websites in order to provide advertisements about goods and services likely to be of interest to you. These companies typically use a cookie or third party web beacon to collect this information. As noted, our Site does not recognize browser “Do Not Track” signals, but several of our service providers who utilize these cookies or beacons on our web sites enable you to opt out of this behavioral advertising. To learn more about how to opt out of the behavioral advertising conducted by these providers, you can visit http://www.networkadvertising.org/.
Notice to OR Residents/Your OR Privacy Rights
We strive to use reasonable physical, technical and administrative measures to protect information under our control. However, you must keep your Account password secure and your Account confidential, and you are responsible for any and all use of your Account. If you have reason to believe that the security of your Account has been compromised, please notify us immediately in accordance with the “Contacting Us” section below.
To help protect the privacy of data you transmit through the Site, where personally identifiable information is requested, we also use technology designed to encrypt the information that you input using industry-standard encryption technology. We take steps to protect the user data we collect against unauthorized access. However, you should keep in mind that the Site and our services are run on software, hardware, and networks, any component of which may, from time to time, require maintenance or experience problems or breaches of security beyond our control. We do not accept liability for unintentional disclosure. In addition, persons with access to your computer, phone, or other mobile or other devices may be able to access the Site and information about you contained in the Site.
By using the Site, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of the Site. If we learn of a security system’s breach, we may attempt to notify you electronically by posting a notice on the Site or sending an e-mail to you. You may have a legal right to receive this notice in writing.