ET Prebuilts Store

Privacy Policy

Privacy Policy

Last updated: [Month Day, Year]

Legal owner/controller: [Your Company Legal Name] (“we,” “us”, or “our”).

Registered address: [Your Full Postal Address].

Contact (privacy): [privacy@yourdomain.com] | [Phone – optional].

Data Protection Officer (if appointed): [Name / Title / Email].

EU/EEA representative (if required): [Company / Contact / Address].

UK representative (if needed): [Company / Contact / Address].

This policy explains what personal Information we collect, how we use it, who we share it with, and the choices and rights you have. It covers all of our websites, apps, and services that link to it (together, the “Services”).

Quick summary

  • We collect Information you give us, Information collected automatically (like device and usage data), and information from partners.
  • We use it to operate the Services, provide support, secure our systems, improve features, and (where allowed) personalize and market.
  • We share Information with service providers and partners who help us run the Services, and otherwise only when necessary (e.g., legal reasons) or with your permission.
  • You control your Information: you can access, correct, delete, or export it, and opt out of specific uses. Region‑specific rights are described below.

Information we collect

A. Information you provide

Account, profile, and contact details (e.g., name, email, Phone, postal address, company), content you submit (messages, forms, uploads), order and billing data (payment method, invoices, VAT/GST), and support communications.

B. Information collected automatically

Device identifiers, IP address, browser type, app version, operating system, language, time zone, approximate location (from IP), pages viewed, links clicked, referral pages, and interaction logs. We and our providers use cookies, SDKs, and similar technologies.

C. Information from others

We may receive Information from: payment processors, analytics/advertising providers, business partners/resellers, single‑sign‑on (SSO) providers, and publicly available sources.

Sensitive Information

We do not seek to collect sensitive personal data (such as health, biometric, precise location, or government IDs). If we ever need it for a specific purpose, we will obtain your consent or rely on another lawful basis permitted by applicable law.

How we use Information

We use personal Information to:

  1. Provide and operate the Services, including creating and managing accounts, processing transactions, and delivering content or features.
  2. Support and communicate, including responding to requests, sending service notices, updates, and security alerts.
  3. Personalize and improve, including testing, research, analytics, and developing new features.
  4. Marketing, including recommending content or offers, sending newsletters, and measuring campaign performance (where permitted). You can opt out at any time.
  5. Safety, security, and fraud prevention, including monitoring, preventing, and investigating malicious or illegal activity, enforcing terms, and protecting our rights and users.
  6. Legal compliance, including tax and accounting, responding to lawful requests, and maintaining business records.

Legal bases (where required, e.g., EU/EEA/UK): consent, contract performance, legitimate interests (such as improving services and securing systems), legal obligation, and, when applicable, vital interests.

Cookies and similar technologies

We use cookies, pixels, local storage, and SDKs to remember settings, keep you signed in, analyze usage, and personalize content. You can manage cookies in your browser and, where provided, in our on‑site preferences. If you turn off certain cookies, some features may not work.

Signals: Where required, we honor valid browser or device signals that express your privacy choices (for example, Global Privacy Control) for applicable jurisdictions.

How we share Information

We share Information only as described below:

  • Service providers/Processors who perform services for us (hosting, storage, analytics, email, payments, customer support, security, marketing/ads tech) under contracts that limit how they use your data.
  • Business partners when you choose to connect or integrate their services, or when we jointly offer content or promotions.
  • Legal and safety when required by law or to protect our rights, users, or the public.
  • Business transfers in connection with any merger, sale, or reorganization of our business.
  • With your direction or consent, including when you publish content or make Information public through the Services.

We do not sell your personal Information in the ordinary sense of the word. Where “sale” or “share” is defined broadly by law (e.g., for cross‑context behavioral advertising), you may have the right to opt out; see Your rights & choices.

International transfers

We are based in [Country] and may process Information in other countries. When we transfer personal Information internationally, we use lawful safeguards (for example, standard contractual clauses, data processing agreements, and additional technical/organizational measures).

Data retention

We keep personal Information only as long as needed for the purposes above, for as long as you maintain an account, and as required by law (for example, tax and accounting). When no longer needed, we delete or anonymize it.

Security

We use reasonable technical and organizational measures to protect personal Information. No method of transmission or storage is entirely secure. If we discover a security incident that affects your Information, we will notify you and/or regulators as required by law.

Your rights & choices

Depending on your location, you may have the right to:

  • Access the personal Information we hold about you.
  • Correct inaccurate or incomplete Information.
  • Delete your Information.
  • Port your Information to another service.
  • Restrict or object to specific processing (including profiling for direct marketing).
  • Withdraw consent where processing is based on consent.
  • Opt out of targeted advertising and, where applicable, the “sale” or “sharing” of your personal Information.
  • Appeal our decision if we decline your request (where required by law).

To exercise rights, contact us at [privacy@yourdomain.com]. We may ask for Information to verify your identity. You can also manage email marketing by using the unsubscribe link in our messages. Authorized agents may submit requests where allowed by law, subject to verification.

Do Not Track & Global Privacy Control: Where legally required, we treat recognized signals as opt‑out requests for targeted advertising or similar processing.

Non‑discrimination: We will not discriminate against you for exercising your privacy rights.

Children’s privacy

Our Services are not directed to children under [13/16 – choose the age that applies to your service and region]. We do not knowingly collect personal Information from children. If you believe a child has provided us with personal Information, contact us and we will take appropriate action.

Third‑party links and integrations

The Services may link to third‑party sites or integrate third‑party tools. Their privacy practices are governed by their own policies. Review those policies before using their services.

Changes to this policy

We may update this policy from time to time. We will post the revised version with a new “Last updated” date and, if changes are material, provide additional notice as required by law. Your continued use of the Services after an update means you accept the revised policy.

Contact us

[Your Company Legal Name]

Attn: Privacy

[Your Full Postal Address]

[privacy@yourdomain.com]

[Phone – optional]

Region‑specific notices

Complete only those that apply to your customers. If you serve these regions, keep the section active; otherwise you may remove it.

European Economic Area (EEA), UK, and Switzerland

  • Controller: [Your Company Legal Name], [Address], [Email].
  • DPO: [Name / Contact] (if appointed).
  • EU/UK Representative: [Name / Contact / Address] (if required).
  • Legal bases: We process your Information under one or more of the following: consent; contract performance; legitimate interests (such as providing, improving, and securing the Services); legal obligation; and vital interests.
  • International transfers: When transferring outside the EEA/UK, we use approved safeguards (e.g., Standard Contractual Clauses and supplementary measures).
  • Your rights: access, rectification, erasure, restriction, portability, objection, and the right to withdraw consent. You also have the right to complain to your local supervisory authority.
  • Supervisory authority contact: [Insert your main EU lead authority or country authority; e.g., Ireland DPC/ICO].

United States – State privacy laws (including California)

  • You may have rights to access, correction, deletion, portability, and to opt out of targeted advertising, the sale or sharing of personal Information, and specific profiling.
  • We provide ways to exercise these rights: [Link to your web form/email] and [“Do Not Sell or Share My Personal Information” Link, if applicable]. We honor recognized Global Privacy Control signals in appropriate jurisdictions.
  • Categories we collect: identifiers (e.g., name, email, IP), commercial Information (orders, transaction history), internet/usage data, geolocation (coarse), inferences (to personalize), and customer service records.
  • Purposes: as described in How we use Information.
  • Sources and disclosures: we collect from you, your devices, and service providers; we disclose to service providers and partners as described in How we share Information.
  • Sensitive Information: We do not use or disclose sensitive personal Information for purposes that require a right to limit, unless we clearly say so and provide that control.
  • Non‑discrimination: we do not discriminate for exercising rights.

Brazil (LGPD)

  • Controller: [Your Company Legal Name].
  • Legal bases: consent; contract; compliance with legal or regulatory obligations; exercise of rights; protection of life or physical safety; health (when applicable); legitimate interests; and credit protection (where applicable).
  • Your rights: confirmation of processing, access, correction, anonymization/blocking/deletion, portability, Information about sharing and consent, and the right to revoke consent.
  • Contact for LGPD requests: [Email/Portal].

Canada (PIPEDA)

  • You have the right to access and correct your personal Information, and to challenge our compliance with PIPEDA principles.
  • Contact: [Email/Address].
  • If we transfer Information to service providers outside Canada, we take steps to provide a comparable level of protection.

Australia (Privacy Act and APPs)

  • You may request access to and correction of personal Information.
  • If you have a privacy complaint, contact us; if unresolved, you can contact the Office of the Australian Information Commissioner (OAIC).
  • Contact: [Email/Address] | OAIC: https://www.oaic.gov.au

Singapore (PDPA)

  • You may request access to or correction of personal data and withdraw consent.
  • DPO Contact: [Name/Email].