Privacy Policy

Day-O-Lite respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website www.dayolite.com, or use our services. It also explains your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

 

1.0 Information We Collect

We collect the following categories of personal information from users:

1.1 Personal Data

  • 1.1.1 Identifiers: Name, postal address, email address, phone number, IP address, or other unique personal identifiers.
  • 1.1.2 Commercial Information: Records of products or services purchased, obtained, or considered, or other purchasing or consuming histories.
  • 1.1.3 Internet or Other Electronic Network Activity Information: Browsing history, search history, interaction with our website, or ad preferences. 1.1.4 Geolocation Data: Location information collected from your device or IP address.
  • 1.1.5 Payment Information: Credit or debit card numbers, billing address, or other financial information when you make purchases.
  • 1.1.6 User Preferences: Communication preferences, survey responses, and any other data you provide voluntarily.

1.2 Sensitive Personal Information (If Applicable)
Depending on your interaction with us, we may also collect sensitive personal information, such as financial details, or precise geolocation data. We will only process sensitive personal data where legally allowed and only for specified, legitimate purposes.

1.3 Children’s Privacy
Our services are not intended for use by individuals under the age of 16, and we do not knowingly collect personal information from children. If you believe we have inadvertently collected personal data from a child, please contact us, and we will promptly take measures to delete the information and verify that we have done so.

1.4 How We Collect Data

1.4.1 We collect data directly from you when you:

  • • Fill out forms on our website.
  • • Make a purchase or create an account.
  • • Interact with customer service.
  • • Subscribe to newsletters or opt-in for marketing.
  • • Engage with surveys, contests, or promotions.
  • • Provide feedback through reviews or surveys.

1.4.2 We may also collect personal data automatically through the use of cookies, web beacons, and similar tracking technologies, which may capture information like IP addresses, browser type, and browsing behavior.

 

2.0 Use of Your Information

We use your personal information for the following purposes:

2.1 Service Delivery: To provide, manage, and improve our products and services.

2.2 Order Fulfillment: To process and fulfill your orders, and provide customer support.

2.3 Communication: To contact you regarding your account, purchases, and any requests or inquiries you have made.

2.4 Marketing and Advertising: To deliver personalized marketing communications, including promotional offers, emails, newsletters, and advertisements.

  • 2.4.1 By contacting us through our website via email it is implied that you agree to accept electronic or other communications in direct response, and that you may be put on email or standard mail lists for future marketing communications.
  • 2.4.2 You may opt-out of marketing and promotional communications at any time by unsubscribing from emails or contacting us at info@dayolite.com.

2.5 Compliance and Legal Obligations: To comply with legal, regulatory, and tax obligations.

2.6 Fraud Prevention: To detect, prevent, and address fraud or security issues

2.7 Improvement and Analytics: To analyze data and trends to improve our website, products, and services.

2.8 Legal Basis for Processing (GDPR)

We process personal data based on the following legal grounds under
the GDPR:

  • 2.8.1 Performance of a Contract: Where processing is necessary for the performance of a contract, such as providing services or delivering products.
  • 2.8.2 Consent: Where you have provided explicit consent for marketing, cookies, or processing of sensitive data.
  • 2.8.3 Legitimate Interests: Where processing is based on our legitimate interests, such as improving services, fraud prevention, or ensuring network security.
  • 2.8.4 Compliance with Legal Obligations: Where processing is required by law, including tax regulations and legal claims.

 

3.0 Sharing of Your Information

We may share your personal information with the following entities:

3.1 Service Providers: We may share data with third-party service providers that assist us with business operations, including payment processors, IT support, marketing services, and customer service platforms. These providers are contractually obligated to protect your data and use it only for the services they provide to us.

3.2 Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal information may be transferred to the successor company.

3.3 Legal Disclosures: We may disclose your personal information if required by law, to respond to legal processes, enforce our terms and conditions, or protect the rights,
property, or safety of us, our users, or others.

3.4 Third-Party Marketing: We do not sell personal information. However, with your
consent, we may share your information with business partners for joint marketing
activities. You may opt-out of such data sharing at any time.

 

4.0 Cookies and Tracking Technologies

Our Website uses tracking technologies to enhance your experience:

4.1 We use cookies, web beacons, web forms and similar tracking technologies to collect and store information about your interactions with our website. This information is used to enhance user experience, analyze usage patterns, and provide personalized content and advertisements.

  • 4.1.1 You can manage your cookie preferences in your browser settings. For more information about our use of cookies please contact us at info@dayolite.com.

4.2 Google Analytics: Tracks and reports Website traffic. Google may collect data such as IP addresses and device identifiers. To learn more about how Google collects and processes data, visit Google Privacy (https://policies.google.com/privacy).

4.3 Microsoft Clarity: Records user interactions (e.g., mouse movements, clicks) to improve Website usability. Learn more at Microsoft Privacy Policy (https://privacy.microsoft.com).

4.4 Cookies and tracking technologies on our website comply with European Union legal requirements.

 

5.0 Your Privacy Rights

5.1. GDPR Rights (For European Union Residents)

As an EU data subject, you have the following rights under GDPR:

  • 5.1.1 Right to Access: You have the right to request access to your personal data and receive a copy of it.
  • 5.1.2 Right to Rectification: You have the right to request that we correct any inaccurate or incomplete data.
  • 5.1.3 Right to Erasure (Right to Be Forgotten): You have the right to request the deletion of your personal data, under certain conditions.
  • 5.1.4 Right to Restrict Processing: You have the right to request that we limit the processing of your personal data under certain circumstances.
  • 5.1.5 Right to Data Portability: You have the right to request the transfer of your personal data to another organization or to you.
  • 5.1.6 Right to Object: You can object to the processing of your personal data, including for direct marketing purposes.
  • 5.1.7 Right to Withdraw Consent: You can withdraw your consent at any time where processing is based on consent.
  • 5.1.8 To exercise your rights, please contact us at info@dayolite.com. We will respond to your request within 30 days.

5.2 CCPA Rights (For California Residents)

If you are a California resident, the CCPA provides you with specific rights to the extent applicable:

  • 5.2.1 Right to Know: You have the right to request the categories and specific pieces of personal information we have collected, the categories of sources, the business or commercial purposes for which we collect the information, and the categories of third parties with whom we share your personal information.
  • 5.2.2 Right to Delete: You have the right to request that we delete any personal information we have collected from you, subject to certain exceptions.
  • 5.2.3 Right to Opt-Out of the Sale of Personal Information: We do not sell personal information. If we ever decide to do so, you will have the right to opt out.
  • 5.2.4 Right to Non-Discrimination: We will not discriminate against you for exercising your rights under the CCPA.
  • 5.2.5 To exercise your CCPA rights, please contact us at info.dayolite.com. We will respond to your request within 45 days.

 

6.0 Data Security

We take reasonable and appropriate measures to protect your personal data from unauthorized access, disclosure, or destruction. This includes physical, electronic, and procedural safeguards. However, please note that no method of transmission over the internet is completely secure.

6.1 Data Breach: In the event of a data breach that compromises your personal information, we are committed to informing you as quickly as possible and providing details about the nature of the breach, the data affected, and steps to protect your information. Below is an outline of our procedure for notifying you in the case of a data breach.

  • 6.1.1 If a data breach occurs that effects your personal information, we will notify you within 72 business hours of us becoming aware of the breach, in accordance with applicable data protection laws, including:
    • • Details of the breach, including the nature of the incident, the data involved, and the potential impact on your personal information.
    • • Steps we have taken to address the breach, including containment, investigation, and remediation efforts.
    • • Recommendations for steps you can take to protect yourself, such as updating passwords or monitoring your accounts for suspicious activity.
    • • Contact information for our support team, should you have any questions or need assistance.
  • 6.1.2 What We Will do Following a Data Breach:
    • • Contain and assess: We will immediately assess the scope of the breach, isolate affected systems, and determine the nature of the data that was compromised.
    • • Investigate: A thorough investigation will be conducted to determine how the breach occurred, who was affected, and the potential risks involved.
    • • Notify affected parties: We will notify individuals whose data was compromised as soon as possible, in accordance with applicable laws, including details of the breach and how to protect themselves.
    • • Report to authorities: We will report the breach to relevant authorities, including data protection regulators, where required by law.
    • • Improve security measures: We will review and enhance our security measures to prevent future incidents.
  • 6.1.3 Types of Personal Data That May Be Affected:
    • • Name, email address, and contact details
    • • User account information (e.g., login credentials)
    • • Payment information (e.g., credit card numbers, billing addresses)
    • • Transaction details
    • • Any other personal or sensitive data that you have provided through our services
  • 6.1.4 What You Can Do:
    • • Review your account: Monitor your accounts and transactions for any signs of unauthorized activity.
    • • Update passwords: Change passwords for your accounts, especially if you use the same password across multiple platforms.
    • • Beware of phishing: Be alert to any phishing emails or communications that may attempt to exploit the breach for fraudulent purposes.
    • • Contact us: If you suspect any misuse of your information or need further assistance, please contact our support team immediately at info@dayolite.com.
  • 6.1.5 Security Measures: We employ a range of technical and organizational security measures to protect your data, including encryption, secure access controls, regular security audits, and employee training. While we are committed to safeguarding your personal information, no security system is completely invulnerable. If a breach occurs, we will work diligently to minimize its impact and enhance our security practices moving forward.
  • 6.1.6 Your Rights. You have the right to:
    • • Access your personal data.
    • • Correct any inaccuracies in your personal data.
    • • Request the deletion of your personal data (subject to certain legal limitations).
    • • Object to processing of your personal data in certain circumstances.
  • 6.1.7 If you wish to exercise any of your rights or have concerns regarding a data breach, please contact us using the details provided below (10).

 

7.0 Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce agreements. We will
securely delete or anonymize your data when it is no longer needed.

 

8.0 International Data Transfers

As part of our operations, we may transfer your personal data from the United States to other countries where we or our third-party service providers operate, including countries outside the European Economic Area (EEA), the United Kingdom, and other jurisdictions with data protection laws that may not be as comprehensive as those in the United States.

8.1 Legal Basis for International Data Transfers

We will only transfer your personal data internationally where we have a lawful basis to do so under applicable data protection laws. This may include one or more of the following legal grounds:

  • 8.1.1 Consent: You have given explicit consent to the transfer of your personal data to countries outside the United States.
  • 8.1.2 Contractual Necessity: The transfer is necessary for the performance of a contract between you and us, or to take steps at your request prior to entering into a contract.
  • 8.1.3 Legitimate Interests: The transfer is necessary for our legitimate interests or the legitimate interests of a third party, provided that such interests are not overridden by your rights and freedoms.

8.2 Safeguards for International Transfers
We take the protection of your personal data seriously and implement safeguards to ensure its security during international transfers. These safeguards may include:

  • 8.2.1 Standard Contractual Clauses (SCCs): We may use the Standard Contractual Clauses approved by the European Commission or other relevant authorities to ensure that your data is protected during its transfer to other jurisdictions.
  • 8.2.2 Privacy Shield Framework: In some cases, we may rely on frameworks such as the EU-U.S. and Swiss-U.S. Privacy Shield, or other recognized certifications, for the transfer of personal data.
  • 8.2.3 Additional Safeguards: We may implement additional measures, such as data encryption, pseudonymization, or other relevant security practices, to further protect your data when transferred internationally.

8.3 Your Rights Regarding International Data Transfers

  • 8.3.1 You have certain rights concerning the processing and transfer of your personal data. Depending on your jurisdiction, these rights may include the ability to:
  • 8.3.2 Request information about the safeguards we use for international transfers.
  • 8.3.3 Withdraw consent (where consent is the legal basis for the transfer).
  • 8.3.4 Access, correct, delete, or restrict the processing of your personal data.
  • 8.3.5 Lodge a complaint with a supervisory authority.

 

9. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or the content of those websites. Please review their privacy policies before providing any personal information.

 

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with the effectivity date. We encourage you to review this policy periodically to stay informed about how we protect your data.

10.1 Policy Enforcement:

Day-O-Lite enforces compliance of this policy through periodic internal reviews. Additions to the policy, as well legally required updates will be posted with a new effective date as needed.

 

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Day-O-Lite
info@dayolite.com
(401) 467-8232
126 Chestnut Street, Warwick, RI 02888