What personal data we collect and why we collect it
When filling out a form or registering on our site, as appropriate, you may be asked to enter your name, email address, mailing address, phone number or other details about yourself and your business such as social security number, tax id number, credit history and financial data.
When do we collect information?
We collect information from you when you register on our site, fill out a form or enter information on our site, and when you fill out an application for financing.
How do we use your information?
We may use the information we collect from you when you register, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
- To personalize your experience and to allow us to deliver the type of content and product offerings in which you are most interested.
- To improve our website in order to better serve you.
- To allow us to better service you in responding to your customer service requests.
- To show advertisements for our products and/or offers to you on third party sites.
- To measure and analyze the performance of advertising campaigns
- Cross Device
We may share data, such as hashed email derived from emails or other online identifiers collected on our site(s) with NextRoll and Google. This allows our partners to recognize and deliver you ads across devices and browsers. To read more about the technologies used by NextRoll and their cross-device capabilities please refer to NextRoll’s Privacy Notice.
How do we protect your information?
Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.
We do not use Malware Scanning.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your personal information.
All transactions are processed through a gateway provider and are not stored or processed on our servers.
Do we use ‘cookies’?
- Understand and save user’s preferences for future visits.
- Keep track of advertisements.
- Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since each browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.
If you turn cookies off, some feature will be disabled. Your experience will no longer be personalized but you will still be able to place orders.
Our partners may use non-cookie technologies that may not be impacted by browser settings that block cookies. Your browser may not permit you to block such technologies. For this reason you can use the following third party tools to decline the collection and use of information for the purpose of serving you interest based advertising:
We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users.
We have not enabled Google AdSense on our site but we may do so in the future.
California Online Privacy Protection Act
According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
Can change your personal information:
- By logging in to your account
California Consumer Privacy Act (CCPA)
The California Consumer Privacy Act (the CCPA) gives residents of the state of California additional rights regarding information Kapitus may have about you.
If you’re a California resident, you have the “Right to Know” or the “Right to Access Information” that Kapitus collects about you. More details are below. Fill out the form to complete your Right to Information about Collection request. The information you provide will only be used to fulfill your CCPA request.
The “Right to Know” or the “Right to Information About Collection, Disclosure and Sale of your Personal Information” gives you the right to request the following information:
- Categories of personal information Kapitus has collected about you;
- Categories of sources from which the personal information was collected;
- Categories of your personal information that Kapitus sold or disclosed for a business purpose;
- Categories of third parties to whom the personal information was sold or disclosed for a business purpose;
- The business or commercial purpose for collecting or selling personal information; and
- The specific pieces of personal information that Kapitus has about you.
You have the Right to Deletion of information you have shared with us, subject to certain exceptions. Refer to the additional details on these exceptions below. Fill out the form to complete your Right to Deletion request. The information you provide will only be used to fulfill your CCPA request.
We may deny your deletion request if we must retain your information for us or our service providers to:
- Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
- Debug products to identify and repair errors that impair existing intended functionality.
- Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.).
- Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent.
- Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
- Comply with a legal obligation.
- Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
You have the Right to Opt Out of the Sale of Your Personal Information, unless such personal information was collected from a government source.
• Fill out the form to complete your Right to Opt Out of the Sale of Your Personal Information request. The information you provide will only be used to fulfill your CCPA request.
• If you have opted out of the sale of your personal information but would like to Opt Back in, please fill out this form and state your request. The information you provide will only be used to fulfill your CCPA request.
Kapitus will never discriminate against you for exercising your CCPA rights.
If you would like to exercise your CCPA rights over the phone, please call customer service at 1-800-780-7133 and clearly state that you are a resident of the state of California and wish to exercise your CCPA rights. We will ask for additional information to verify your identity.
An authorized agent may make a CCPA request on your behalf. The authorized agent will need to provide the information necessary to confirm your identity, as well as written and signed permission to act on your behalf. An “authorized agent” must also be a natural person or business registered with the Secretary of State in California.
We reserve the right to use a third party to verify your identity and this third party may require additional information for verification purposes. The data you provide will only be used to fulfill your CCPA request.
How does our site handle Do Not Track signals?
We honor Do Not Track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third-party behavioral tracking?
It’s also important to note that we allow third-party behavioral tracking. Kapitus has partnered with a number of selected service providers, whose services and solutions complement, facilitate and enhance our own. These third parties include, but are not limited to communications and content delivery networks (CDNs), data and cyber security services, billing and payment processing services, domain name registrars, fraud detection and prevention services, web analytics, e-mail distribution and monitoring services, performance measurement and data optimization services, and content providers.
Such Third Party Services may receive or otherwise have access to our Visitors’ and Users’ Personal Information and/or Users-of-Users’ Personal Information, in its entirety or in part – depending on each of their particular roles and purposes in facilitating and enhancing our Services, and may only use it for such purposes.
Note that while our Services may contain links to other websites or services, we are not responsible for such websites’ or services’ privacy practices, and encourage you to be aware when you leave our Services and read the privacy statements of each and every website and service you visit.
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not specifically market to children under the age of 13 years old.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify you via email
- Within 7 business days
We will notify the users via in-site notification
- Within 7 business days
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to: To be in accordance with CANSPAM, we agree to the following:
If at any time you would like to unsubscribe from receiving future emails, you can email us at [email protected] and we will promptly remove you from ALL correspondence.
120 W. 45th Street
New York, NY 10036
Last Edited on 3/1/2021