Global Orange Development, LLC (also referred to as “we,” “our,” “us”) has one goal: To support BIGGBY® COFFEE retail establishments in being the best coffee shop in your neighborhood.
Table of Contents
- What Information Do We Gather?
- What Do We Do With the Information We Collect?
- Who Can Use the Information We Collect and How?
- How Do We Protect the Personal Information We Collect?
- What Are Your Rights Regarding Your Personal Data?
- How Do You Opt-out of Personal Information Sharing with Our Business Partners?
- How Do You Correct and Update Your Personal Data?
- What Happens When You Link to a Third-Party Web Site?
- Your California Privacy Rights
- Your European Union Privacy Rights
- What If You Have Questions?
What Information Do We Gather?
When you visit our Websites (www.biggby.com, store.bhappylounge.com, www.bhappylounge.com, or www.biggbyfranchising.com), the BIGGBY® App for iOS, and BIGGBY® App for Android applications (“Site”), we collect only the information and personal data you have agreed to provide to us that is necessary to identify your needs and to provide you with better service. Through your use of the Site or registration as a new user, we may request personal data including, but not limited to:
- First and last name
- Date of birth
- Contact information including address, state, province, zip or postal code, and city
- Your email address and cell phone number
- Demographic information including product preferences and interests
- Internet Protocol (“IP”) Address and other persistent identifiers including browser type, browser version, the time and date of your visit, the time spent on those pages, and other diagnostic data
- Usage data
- Other information relevant to customer surveys and offers
- Location data
- If you become a registered user or if you conduct transactions through this Site, we will collect information about the transactions you engage in while on the Site and other potential activities on the Site. This information may include, without limitation, areas of the Site that you visit, transaction type, content that you view, download or submit, transaction amount, payment, and billing information as well as the nature, quantity and price of the goods you purchase.
Some of this personal data, including name and contact information, will only be collected if you voluntarily provide it during the user registration process. We may also track information such as the domain name and the name of the web page from which you entered our Site, and how much time you spend on each of our pages. We collect information that is combined with other web visitors’ information, such as how many times visitors click on each web page and the methods by which our Site was found.
What Do We Do With the Personal Information We Collect?
You will be asked to provide personal data in certain fields on this Site that allow you to be able to use our Services. The personal data we collect is used only for the purpose we state at the time of collection or for purposes contained below. For example, our uses may include, but are not limited to, the following:
To process transactions
We use personal data such as name, physical address, telephone number, and email address to engage in interactions with you, including contacting you about your transactions with the site.
To process payments
To provide support or other services
We may use your personal data to provide you with newsletters or other specific requests.
To provide information based on your needs and respond to your requests
We may use your personal data to provide you with notices of new products.
To select content, improve quality, and facilitate use of the websites
We may use your personal data, including the information gathered as a result of site navigation and electronic protocols and cookies (including third-party cookies), to help create and personalize website content, improve website quality, track marketing campaign responsiveness, evaluate page response rates, conduct usability testing, and facilitate your use of the websites (for example, to facilitate navigation and the login process, avoid duplicate data entry, enhance security, keep track of shopping cart additions, and preserve order information between sessions).
To serve personalized advertising to you
We don’t share your personal data with advertisers without your consent. We allow advertisers to choose the characteristics of users who will see their advertisements, and we may use any of the non-personally-identifiable data attributes we have collected to select the appropriate audience for those advertisements. When you click on or otherwise interact with an advertisement, there is a possibility that the advertiser may place a cookie in your browser and that your attributes meet the criteria the advertiser selected.
To communicate with you about events
We may communicate with you about events hosted or co-sponsored by us or one of our business associates. This may include information about the event’s content, updates, and additional information related to the event.
To engage with third parties
We may share your personal data with third parties in connection with services that these individuals or entities perform for or with us. These third parties are restricted from using this data in any way other than to provide services for us or for the collaboration in which they and we are contractually engaged (for example, hosting our database or engaging in data processing on our behalf, or mailing you information that you requested). These third parties are carefully selected by us and obligated to keep your data secure.
To protect our content and services
To get feedback or input from you
In order to deliver products and services of most interest to our customers, from time to time, we may ask customers and website visitors to provide us input and feedback.
To protect our information assets as well as your own personal data
The Global Orange Development, LLC Information Security Program protects the confidentiality, integrity, and availability of our information assets by following a risk management approach based on policies, standards, guidelines, and procedures to meet security objectives while supporting business and operational goals.
To the extent that we collect certain demographic information about you, we may use this information in our market research, but we will do so only after we “anonymize” or “pseudonymize” the data, i.e., remove information that would confirm your identity. We will use your personal data to send commercial or marketing messages to you when we have a legal basis for doing so, such as your consent or a contract with us.
This Site does not collect personal data when you browse the Site and request pages from our servers unless you voluntarily and knowingly provide such information to us. This means that we will not know your name, your email address, or any other personal data just because you browse the Site unless you:
- Access the Site from a link in an email that we have sent to you;
- Have created a profile and you either log-in to your account or choose to be remembered via your cookie or your web-enabled mobile device.
In these cases, we will know who you are based on the information you previously supplied to us. When you request a page from our Site, our servers log the information provided in the HTTP request header including the IP number, the time of the request, the URL of your request and other information that is provided in the HTTP header. We collect the HTTP request header information in order to make our Site functions correctly and provides you with the functionality that you expect to see. We also use this information to personalize content presented to you, better understand how visitors use our Site and how we can better tune it, its contents, and functionality to meet your needs. We only use your personally identifiable information for those activities listed at the time you submit your information to us. For example, if you provide us with an email to inform you of special events, then that is what we will use your email address to do. If we would like to use your personally identifiable information for an unrelated activity, we will first request your consent to do so.
Who Can Use the Information We Collect and How?
We may provide your personal data to third parties, or third parties may collect personal data from you on our behalf if we have contracted with that third-party to provide some part of the information or service that you have requested. Other than those who act on our behalf and except as explained in this Policy, personal data you provide at this Site will not be transferred to unrelated third parties, unless we have a legal basis to do so. However, please note that personal data provided to this Site is subject to disclosure pursuant to judicial or other government subpoenas, warrants or orders. We will only provide this information after approximately two weeks following receipt of a valid subpoena or other legal process in a civil case.
How Do We Protect the Personal Information We Collect?
Security of Personal Data
We are committed to protecting the security of your personal data. Depending on the circumstances, we may hold your information in hard copy and/or electronic form. For each medium, we use technologies and procedures to protect personal data. We review our strategies and update as necessary to meet our business needs, changes in technology, and regulatory requirements. We take our security obligations seriously and so should you. While we are responsible for maintaining the security of this Site, you must also access and use this Site in a manner that is responsible and secure. In addition, we have implemented a series of policies, procedures, and training to address data protection, confidentiality, and security, and we update and review the appropriateness of these measures on a regular basis.
Storage and Transfer of Personal Data
We also collaborate with third parties such as cloud hosting services and suppliers located around the world to serve the needs of our business, workforce, and customers. In some cases, we may need to disclose or transfer your personal data within our company or to third parties in areas outside of your home country. When we do so, we take steps to ensure that personal data is processed, secured, and transferred according to applicable law.
If you would like to know more about our data transfer practices, please contact firstname.lastname@example.org.
Retention of Personal Data
We retain personal data for as long as necessary to provide the services and fulfill the transactions you have requested, or for other business purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. We are required by law to keep some types of information for certain periods of time (e.g., statute of limitations). If your personal data is no longer necessary for the legal or business purposes for which it is processed, we will generally destroy or anonymize that information.
What Are Your Rights Regarding Your Personal Data?
We respect your right to access and control your personal data. You have choices about the data we collect. When you are asked to provide personal data that is not necessary for the purposes of providing you with our Products and Services, you may decline. However, if you choose not to provide data that is necessary to provide a Service, you may not have access to certain features, Sites, Products, or Services.
Access to personal data
In some jurisdictions, you have the right to request access to your personal data. In these cases, we will comply, subject to any relevant legal requirements and exemptions, including identity verification procedures. Before providing data to you, we will ask for proof of identity and sufficient information about your interaction with us so that we can locate any relevant data. We may also charge you a fee for providing you with a copy of your data (except where this is not permissible under local law).
Correction and deletion
In some jurisdictions, you have the right to correct or amend your personal data if it is inaccurate or requires updating. You may also have the right to request deletion of your personal data. Please note that such a request could be refused because your personal data is required to provide you with the products or services you requested, e.g. to deliver a product or send an invoice to your email address, or that it is required by the applicable law.
If you reside within the European Union, you have the right to ask for a copy of your personal data and/or ask for it to be ported to another provider of your choice. Please note that such a request could be limited to the only personal data you provided us with or that we hold at that given time and subject to any relevant legal requirements and exemptions, including identity verification procedures.
If you have provided us with your contact information, we may, subject to any applicable Spam Act or similar regulation, contact you via email, postal mail or telephone about our products, services and events that may be of interest to you, including newsletters.
E-mail communications you receive from us will generally provide an unsubscribe link allowing you to opt-out of receiving future email or to change your contact preferences. E-mail communications may also include a link to directly update and manage your marketing preferences. If you have an online account with us, you can also change your contact preferences through “All About Me” on www.bhappylounge.com. Please remember that even if you opt out of receiving marketing emails, we may still send you important Service information related to your accounts.
If you are in the EU/UK, you have certain additional privacy rights that are listed below in Section 12.
How Do You Opt-out of Personal Information Sharing with Our Business Partners?
For more information about how targeted Network Advertising works, please visit: http://www.youradchoices.com/ or http://www.networkadvertising.org/understanding-online- advertising.
You may opt-out of third-party targeted advertising or analytics in two ways: 1) By directly notifying a Network Advertising service provider via its opt-out tools (Please see above), or 2) using your browser’s Do Not Track (DNT) settings to indicate that you do not wish to receive targeted advertising based on your overall internet usage. For more information about DNT and how it works, please visit the Future of Privacy Forum’s website: http://www.allaboutdnt.com/.
We will make a good faith reasonable effort to honor your DNT browser settings for opting out of receiving targeted third-party advertising based on your overall Internet usage. Please note that various browsers frequently update technology or change their settings and business practices without advance notice, and we may not have the latest information on how to honor your preferences. If you exercise either opt-out option – the cookie opt-out or the browser opt-out – you will continue to receive advertising, but such advertising may not relate to your specific interests, previous purchases, or search history.
However, you cannot opt-out of our contextual analytics and advertising, which is based on your usage of only our Services. We will continue to serve you contextual advertising. We will also continue to monitor your usage and search or transaction history to provide us with analytics on how well our Services, features, and activities are functioning and used. We will also share this information in an aggregated or anonymized form (meaning that no one individual person can be identified) within our company.
You can also opt out of our marketing emails at any time by contacting us at email@example.com, changing your “All About Me” settings on www.bhappylounge.com, or by sending us a post card to “OPT OUT”, Global Orange, LLC; 2501 Coolidge Rd., Ste. 302; East Lansing, MI 48823
How Do You Correct and Update Your Personal Data?
We aim to keep all personal data that we hold accurate, complete, and up-to-date. While we will use our best efforts to do so, we encourage you to tell us if you change your contact details. If you believe that the information we hold about you is incorrect, incomplete or out-of-date, please update this information in the “All About Me” settings on www.bhappylounge.com, or contact firstname.lastname@example.org.
You can change or correct your personal data at any time by updating the information in the “All About Me” settings on www.bhappylounge.com, or sending an email with your old information and your corrections to email@example.com with “Correction” in the subject line.
We understand the importance of protecting the privacy of all individuals, especially the very young. Our services are intended for United States audiences over the age of 18. Our Site and its Services are not directed to children, and you may not use our Services if you are under the age of 13. You must also be old enough to consent to the processing of your personal data in your country (in some countries we may allow your parent or guardian to do so on your behalf). Subscribing to our Services is restricted to adults who are either 18 years of age or older or as otherwise legally defined by the country of your residency.
What Happens When You Link to a Third-Party Web Site?
Your California Privacy Rights
If you are a California resident and have an established business relationship with us and want to receive information about how to exercise your third-party disclosure choices, you must send a request to the following address with a preference on how our response to your request should be sent (email or postal mail). You may contact us in two ways. Send an email to firstname.lastname@example.org
Alternatively, you may contact us at:
Attn: Your California Privacy Rights
c/o Privacy Administrator
Global Orange Development, LLC
2501 Coolidge Rd., Ste. 302
East Lansing, MI 48823
For requests sent via email, you must put the statement “Your California Privacy Rights” in the subject field of your email. All requests sent via postal mail must be labeled “Your California Privacy Rights” on the envelope or post card and clearly stated on the actual request. For all requests, please include your name, street address, city, state, and zip code. (Your street address is optional if you wish to receive a response to your request via email. Please include your zip code for our own recordkeeping.) We will not accept requests via the telephone or by facsimile. We are not responsible for responding to notices that are not labeled or not sent properly, or do not have complete information.
If you are a California resident under the age of 18, and a registered user of any site where this policy is posted, California Business and Professions Code Section 22581 permits you request and obtain removal of content or information you have publicly posted. To make such a request, please send an email with a detailed description of the specific content or information to email@example.com. Please be aware that such a request does not ensure complete or comprehensive removal of the content or information you have posted and that there may be circumstances in which the law does not require or allow removal even if requested.
Your European Union Privacy Rights
If you are in the European Union, under the General Data Protection Regulation (Regulation EU 2016/679) (also known as GDPR), you may have certain rights as a data subject. A data subject is a person who can be identified by a name, identification number, location, online identifier, or other physical, physiological, genetic, mental, economic, cultural or social identity of the person. Under the GDPR, personal data is information that relates to a data subject. The processing of your data is either based on your consent or in case the processing is necessary for the performance of a contract to which you are a party, or in order to take steps at your request prior to entering into a contract, cf. GDPR art. 6(1)(a)-(b). If the processing is based on your consent, you may at any time withdraw your consent by contacting us at firstname.lastname@example.org.
In order to enter into a contract to use our Services, you must provide us with the required personal data. If you do not to provide us with all the required information, it will not be possible to deliver the Service.
To request information about or avail yourself of those rights, please send an email to email@example.com with “GDPR Request” in the subject line. In the email please describe, with specificity, the GDPR right you are requesting assistance with. Please note additional information may be requested prior to initiation of a request and that we reserve the right to charge a fee with respect to certain requests. Upon completion of our review, you will be notified if your request has been granted, denied, or exemptions apply.
The Data Controller and Processor for Personal Data
A Data Controller is a company that collects people’s personal data and makes decisions about what to do with it. A Data Processor is a person or company that deals with personal data as instructed by a Data Controller for specific purposes and services.
The Data Controller’s information is as follows:
Global Orange Development, LLC
2501 Coolidge Rd., Ste. 302
East Lansing, MI 48823
The Data Processor’s information is as follows:
Global Orange Development, LLC
2501 Coolidge Rd., Ste. 302
East Lansing, MI 48823
The Purpose and Legal Basis for Collection
Recipients of Your Data and Categories of Data Collected
Transferring personal data from the EU to the US or other jurisdictions
The 8 Rights of Individuals
Under the GDPR, you will benefit from increased rights including:
- The right to be informed
– The right to be informed encompasses the obligation to provide you with ‘fair processing information.’ It emphasizes the need for transparency over how your personal data is used.
- The right of access
-Under the GDPR, you will have the right to obtain confirmation that your data is being processed, access to your personal data, and other supplementary information.
- The right to rectification
-You are entitled to have your personal data rectified if it is inaccurate or incomplete.
- The right to erasure
-The right to erasure is also known as ‘the right to be forgotten.’ You may request the deletion or removal of personal data where there is no compelling reason for its continued processing.
- The right to restrict processing
-We are permitted to store your personal data, but not further process it without consent.
- The right to data portability
-The right to data portability allows you to obtain and reuse your personal data for your own purposes across different services. You may move, copy or transfer personal data easily from one IT environment to another in a safe and secure way, without hindrance to usability.
- The right to object
-You have the right to object to processing based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling), direct marketing (including profiling); and processing for purposes of scientific/historical research and statistics.
- Rights in relation to automated decision making and profiling
-The GDPR provides safeguards for you against the risk that a potentially damaging decision is taken without human intervention.
What If You Have Questions?
If you have questions or concerns regarding this statement, you should first contact us via email at firstname.lastname@example.org.
This site, like many others, uses small files called cookies to help us customize your experience. Find out more about cookies and how you can control them.
What are cookies?
Cookies are small text files that are stored by the browser (for example, Internet Explorer or Safari) on your computer or mobile phone. They allow websites to store things including your user preferences. Think of cookies as providing a ‘memory’ for the website, so that it can recognize you when you come back and respond appropriately.
On our Site, you may encounter the following types of cookie:
- Site performance cookies
- Anonymous analytics cookies
- Geotargetting cookies
- Registration cookies
- Advertising cookies
- Third-party advertising cookies
Site performance cookies
This type of cookie remembers your preferences for tools found on the Company’s website, so you don’t have to re-set them each time you visit. Examples include:
- Volume settings for our video player
- Whether you see new content first
- Video streaming speeds that are compatible with your browser
Anonymous analytics cookies:
Every time someone visits our website, software provided by another organization generates an “anonymous analytics cookie.” These cookies can tell us whether or not you have visited the site before. Your browser will tell us if you have these cookies and, if you don’t, we generate new ones. This allows us to track how many individual users we have, and how often they visit the site.
Unless you are signed in to the Site, we cannot use these cookies to identify individuals. We use them to gather statistics, for example, the number of visits to a page. If you are logged in, we will also know the details you gave to us for this, such as your username and email address.
These cookies are used by software which tries to work out what country you are in from the information supplied by your browser when you click on a web page. This cookie is completely anonymous, and we only use it to help target our content – such as whether you see a country specific home page – and advertising.
When you register with us, we generate cookies that let us know whether you are signed in or not. Our servers use these cookies to work out which account you are signed in with, and if you are allowed access to a particular service. It also allows us to associate any comments you post with your username. If you have not selected “keep me signed in”, your cookies get deleted when you either close your browser or shut down your computer. While you are signed into either of the sites, we combine information from your registration cookies with analytics cookies, which we could use to identify which pages you have seen.
Third-party advertising cookies
Other third-party cookies
On some pages of our website, other organizations may also set their own anonymous cookies. They do this to track the success of their application, or to customize the application for you. Because of how cookies work, our website cannot access these cookies, nor can the other organization access the data in cookies we use on our website.
How do I turn cookies off?
It is usually possible to stop your browser accepting cookies, or to stop it accepting cookies from a particular website. However, we cannot tell if you are signed in without using cookies, so you would not be able to post comments.
All modern browsers allow you to change your cookie settings. You can usually find these settings in the Options or Preferences menu of your browser. To understand these settings, the following links may be helpful, or you can use the Help option in your browser for more details.
- Cookie settings in Internet Explorer
- Cookie settings in Firefox
- Cookie settings in Chrome
- Cookie settings in Safari web
- Cookie settings in iOS
If you are primarily concerned about third-party cookies generated by advertisers, you can turn these off by going to the http://www.youronlinechoices.com/uk.
You can also visit the trade body representing these advertising platforms for more information: http://www.networkadvertising.org/
If you would like to find out more about cookies and their use on the Internet, you may find the following links useful:
The IAB has provided the following website to give information specifically about privacy issues around Internet advertising: http://www.youronlinechoices.com/uk/
For further legal information about privacy issues, you may find these links useful:
If you would like to contact us about cookies, please email us: email@example.com