WEBSITE DATA PROTECTION POLICY AND PRIVACY NOTICE

Effective Date June 1, 2022

1. Introduction

This is the website data protection policy and privacy notice (“Policy”) for Mintz Group LLC (a Limited Liability Company incorporated in Delaware, USA) and associated offices of MG practicing under the MG name in other jurisdictions, together referred to as “MG” or “we.”

This Policy describes the types of Personal Information (as defined below) we collect, how we may use it and with whom we may share it; how we protect your information; and your rights with respect to your Personal Information.   You can read our GDPR Privacy Policy here.  If you are a MG employee or job applicant, our policies and practices regarding the collection and processing of your Personal Information are detailed in our Employee Privacy Notice.

In addition to this Policy, we may separately provide you with other specific notices regarding your Personal Information, depending on the nature of our relationship with you and the context in which we collect your Personal Information. Any such separate notice should be read in conjunction with this Policy and, to the extent there is any conflict between such separate notice and this Policy, such separate notice shall control. For the purposes of certain data protection and privacy laws, we act as a controller in respect of your Personal Information.

This Policy may change from time to time and you should review it periodically.

2. DEFINITIONS

The following definitions shall apply to this Policy:

“Personal Information” means any information which directly or indirectly identifies a natural living person, which is in the possession or under the control of MG (or its representatives or service providers). Such personal information may include name, an identification number, email address, address, telephone number, location data, financial data, or an online identifier of that natural living person. In addition to factual information, it may include any expression of opinion about an individual and any indication of the intentions of MG or any other person in respect of an individual. If you are a resident of a jurisdiction with data protection legislation that provides a different definition for this or any similar term (e.g. “personal data”) then “Personal Information” shall also include the data covered by such definition. For the avoidance of doubt, “Personal Information” shall include the data covered by the definition of ‘Personal Information’ as defined under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively referred to herein as the “CCPA”), and ‘Personal Data’ as defined under the Virginia Consumer Data Protection Act (“VCDPA”), Colorado Privacy Act (“CPA”), and Utah Consumer Privacy Act (“UCPA”).

“Sensitive Personal Information” has the meaning ascribed to this or any similar term provided by applicable data protection legislation (e.g. “sensitive personal data”, “sensitive data” or “special categories of personal data”).

3. THE TYPES OF PERSONAL INFORMATION WE COLLECT

We may collect Personal Information directly from you, as well as from other sources, such as social media platforms, publicly available databases, joint marketing partners, press releases issued by companies and organizations, professional and other association membership lists, referrals from clients and other third parties, and lists of attendees at industry conferences and events. We may collect the following categories of Personal Information from or about you:

4. OUR USE OF PERSONAL INFORMATION

We may use your Personal Information to operate, manage, and maintain our business, to provide our products and services, and to accomplish our business purposes and objectives, including, for example, to: develop, improve, repair, and maintain our products and services; personalize, advertise, and market our products and services; conduct research, analytics, and data analysis; maintain and secure our facilities and infrastructure; undertake quality and safety assurance measures; conduct risk and security control and monitoring; detect and prevent fraud; perform identity verification; perform accounting, audit, and other internal functions, such as internal investigations; comply with law, legal process, and internal policies; maintain records; and exercise and defend legal claims.

5. DISCLOSURE OF PERSONAL INFORMATION

We do not sell Personal Information to third parties or target advertising to individuals based on their Personal Information obtained from their online activity on nonaffiliated websites or applications (“cross-context behavioral advertising” or “targeted advertising”).

We have collected, and disclosed for a business purpose, the following categories of Personal Information within the last twelve (12) months:

  1. Identifiers.” Identifiers, such as name and contact information;
  2. Customer Records Information.”  Personal Information as defined in the California customer records law, such as financial information;
  3. Protected Class Information.”  Characteristics of protected classifications under California or federal law, such as sex, age, race, and national origin;
  4. Transaction Information.”  Commercial information, such as transaction information and history;
  5. Online Use Information.”  Internet or network activity information, such as interactions with our website;
  6. Geolocation Data.”  Geolocation data such as device location and approximate location derived from IP address;
  7. Audio/Video Data.”  Audio, electronic, visual and similar information, such as photos and audio and video recordings;
  8. Employment Information.”  Professional or employment-related information, such as work history and prior employer; and
  9. Inferences.”  Inferences drawn from any of the Personal Information listed above to create a profile or summary about, for example, an individual’s preferences and characteristics.

We share Personal Information with the following categories of third parties:

In the preceding 12 months, we disclosed for our operational business purposes the following categories of Personal Information to the following categories of third parties:

Categories of Personal InformationDisclosed to Which Categories of Third Parties for Operational Business Purposes
IdentifiersService Providers, Clients, Social Networks, Marketing Partners, Legal Authorities, Other Parties in Litigation
Customer Records InformationService Providers, Legal Authorities, Other Parties in Litigation
Protected Class InformationService Providers, Clients, Social Networks, Legal Authorities, Other Parties in Litigation
Transaction InformationService Providers, Clients, Social Networks, Legal Authorities, Other Parties in Litigation
Online Use InformationService Providers, Social Networks, Legal Authorities, Other Parties in Litigation
Geolocation DataService Providers, Clients, Social Networks, Legal Authorities, Other Parties in Litigation
Audio/Video DataService Providers, Clients, Legal Authorities, Other Parties in Litigation
Employment InformationService Providers, Clients, Legal Authorities, Other Parties in Litigation
InferencesService Providers, Clients, Social Networks, Legal Authorities, Other Parties in Litigation

We may disclose or transfer your information to relevant third parties in the event of a divestiture, merger, consolidation, or asset sale, or in the unlikely event of a bankruptcy.

We may use or share anonymous or aggregated data with third parties such as service providers in order to facilitate our business operations. To the extent such data constitutes de-identified data under the CCPA, VCDPA, CPA, or UCPA, we will maintain and use such data without attempting to re-identify the data.

6. LINKS TO OTHER WEBSITES

From time to time, we may provide links to other websites for your information or convenience or offer additional services through separate websites linked to this website. These websites operate independently from our website and may be subject to alternative terms of use, including terms concerning use of your Personal Information. We have not reviewed these third party sites and do not control and are not responsible for any of these sites, their content or their privacy policies. Thus, we do not endorse or make any representations about them, or any information, software, or other products or materials found there, or any results that may be obtained from using them. If you decide to access any of the third party sites listed on our website, you do so at your own risk.

7. HOW WE PROTECT YOUR PERSONAL INFORMATION

We have implemented and maintain commercially reasonable and appropriate technical and organizational measures designed to protect the confidentiality, integrity, and security of your Personal Information. Please note, however, that no security measures are perfect or impenetrable. We therefore cannot guarantee and do not warrant the absolute security of your Personal Information. We retain your Personal Information for no longer than reasonably necessary to fulfill the purposes for which we collected it or to comply with the law, prevent fraud, facilitate an investigation, defend against legal claims, or exercise our legal rights.

Depending on your location, the Personal Information we collect about you may be transferred to a jurisdiction that does not provide the same level of protection of Personal Information as the jurisdiction in which you reside. Where such transfers occur, we have adopted appropriate safeguards to better protect your Personal Information, consistent with applicable legal requirements. You may contact us using the contact information provided below to learn more about the appropriate safeguards that apply to your Personal Information and to request a copy of such safeguards.

8. YOUR RIGHTS

To the extent provided by the law of your jurisdiction, you may have legal rights in relation to the Personal Information about you that MG holds. These rights may include:

You can inquire about your rights, which are applicable to you, by contacting MG using the details listed below in Section 11.

9. COOKIES AND HOW TO REMOVE THEM

When you use this website, we may send one or more cookies (which are small text files containing a string of alphanumeric characters) to your computer or mobile device, to help analyze our web page flow, customize our content, measure promotional effectiveness, and promote trust and safety.  You are always free to decline our cookies if your browser permits, although doing so may interfere with your ability to use this website or certain features of this website.  We may also use Google Analytics or a similar service that uses cookies to help us analyze how users use this website.

10. CALIFORNIA PRIVACY RIGHTS

If you are a California resident, this section of the Policy is intended to provide you with information concerning your rights under the CCPA. 

If you are a California resident, you have the right to request certain information from us regarding the manner in which we share with third parties certain categories of information that identify you. MG does not share Personal Information with third parties for those third parties’ own direct marketing purposes.

The CCPA provides you with certain rights that are in addition to the rights set out in Section 8 above:

  1. the right to request, up to twice in a twelve month period, your Personal Information (including, as applicable, any available information as to the source of the Personal Information, the retention period for the Personal Information, MG’s purposes for collecting such Personal Information, the categories of Personal Information we have disclosed and the categories of third parties to whom such Personal Information has been disclosed) in a format that is portable and, to the extent technically feasible, in a readily useable format that will allow you to transmit it to another entity.
  2. the right to request that we delete your Personal Information, except in circumstances where MG is legally entitled to retain Personal Information regardless of any such request.
  3. effective January 1, 2023, the right to request that we correct inaccurate Personal Information maintained about you.
  4. the right to opt out of any sale of your Personal Information to any third parties or, effective January 1, 2023, the sharing of your Personal Information for the purposes of cross context behavioral advertising.  Note that we do not sell Personal Information to third parties or share it with third parties for purposes of cross context behavioral advertising.
  5. the right to limit our use of your Sensitive Personal Information to those uses which are necessary to perform our services or provide goods as reasonably expected.
  6. the right not to face discrimination, as defined under the law, for exercising your rights.

If you wish to exercise any of the rights enumerated in this section, please contact us at www.mintzgroup.com or 855-594-2130. We will verify and respond to your request consistent with applicable law, taking into account the type and sensitivity of the Personal Information subject to the request.  We may need to request additional Personal Information from you, such as a copy of your ID, in order to verify your identity and protect against fraudulent requests.  We may send our response to your request to the contact point in our records that is associated with the Personal Information that is requested.  If you make a request to delete Personal Information, we may ask you to verify your request before we delete your Personal Information.

If you are the authorized agent of a consumer, exercising a consumer’s right on behalf of the consumer, we will ask you for:

  1. proof of your registration with the California Secretary of State to conduct business in California.
  2. proof that the consumer has authorized you to exercise a consumer’s right on the consumer’s

If an authorized agent has not provided us with a power of attorney from the consumer pursuant to Probate Code sections 4000-4465, we may also:

  1. require the consumer to provide you with a written permission signed by the consumer to make the request on the consumer’s behalf; and
  2. verify the identity of the consumer as we would if the consumer were making the request personally.
  3. Obtain verification from the consumer that they provided the authorized agent permission to make the request.

11. HOW TO CONTACT US

If you have any questions or complaints about MG’s handling of your Personal Information, or about this Policy, please contact us using the contact information set out below.

Mintz Group, LLP
110 Fifth Avenue, 8th Floor
New York, NY 10011
Attn: General Counsel

Email: dataprotectionteam@mintzgroup.com

5.1 Disputes Generally

We take your privacy concerns seriously. If you believe that MG has not adhered to this Privacy Policy, please contact MG as described in Section 4 above. In your correspondence, please describe in as much detail as possible the ways in which you believe that this Privacy Policy has not been complied with. We will do our best to address your concerns and to respond to you within 1 to 3 months of receipt of your correspondence. If you feel that your complaint has been addressed incompletely, we invite you to let us know for further investigation.

12. UPDATES TO THIS PRIVACY POLICY

We may update or change this Policy. The “Effective Date” at the top of this page states when this Policy was last revised. Any change to this Policy will become effective when we post the revised Policy on our website. Keep in mind that your use of our website means that you accept our Policy.

If any change may materially and negatively affect the privacy of your Personal Information, we will use reasonable efforts to notify you in advance and give you a reasonable period of time to object to any changes.

We encourage you to periodically review this Policy to stay informed about how we collect, use, and share Personal Information.