Privacy Policy
Last updated: August 20, 2022
We’re glad you’re checking out our Privacy Policy - it is something we encourage everyone to do. We also encourage companies to try to make them easier to understand. While there are no standards across the industry, we think a consistent structure, similar to what the financial industry uses (mandated by law in that case), would help consumers navigate the web with greater comfort, knowing what data about them are captured and how they are used. We think that some of the work the IAB has done to create a “Data Label” (ala the nutrition labels on food) is a good step in that direction, and could be a model for what to create for consumers, too.
If you are interested in working with us to develop a model that could serve as an example for the industry please email us at policy@licorice.solutions.
Below you will see explanations of what data we collect on the Licorice.solutions site, how we use it, and what rights you have regarding it. We include several summary points at the top, too. We try to write each section so it is clear to those of us who are not lawyers (though legalese is hard to avoid entirely).
Note that this policy is different from the one on Licorice.me, which is our website for consumers (and the core Licorice product).
If you have any questions about any of the below, please contact us at policy@licorice.solutions.
Definitions & Key Points
Below are definitions to help you understand this privacy policy. They are in bold.
This Privacy Policy explains how Licorice, Inc. (subsequently referred to as “Licorice”; “we”; “us”; or “our”) collects and processes information through our website at licorice.solutions (referred to below as “Website”). Please read this Privacy Policy carefully to understand our information policies and practices. By visiting our Website, you agree to this Privacy Policy.
We do not have access to any data which could be uniquely tied to you or your household (“Unique User Data”), including IP address.
We only have records of your visits (“Visit Data”) in an aggregated form, and we only use them to measure how much activity we have on our Website.
We do not use, nor have an ability to use, your Visit Data to:
Create a profile of you
Match your cookie with a third party cookie
Try to identify you
Target messages to you somewhere else based on your activity on our Website
Because we do not have any access to Unique User Data, we have no way of attaching Visit Data to you or your household.
We do work with Squarespace for hosting and Website measurement and they do have access to information your browser sends to their servers when accessing our Website. This includes:
Your IP address
Information about your browser, network and device type
The referring URL or domain of a website you were on when you clicked a link to come to licorice.solutions
Web pages you view on licorice.solutions
Note that for users accessing our Website from California and European countries subject to data protection laws like GDPR and the e-Privacy Directive 2002/58/EC Squarespace confirms their policies are in line with both jurisdictions.
Complete Squarespace terms are at https://www.squarespace.com/privacy and anything that references “End Users” applies to you.
We have disabled both analytics cookies and activity logging for our Website within Squarespace. We only have “Strictly necessary” cookies enabled with them (for this reason you will not see a “cookie banner” or “cookie pop-up” on our Website - you are already opted out from all but strictly necessary cookies)
Our Website also calls third parties which we use to load font libraries needed to display the Website properly. The two providers we use are Adobe and Google. Neither places any cookies on your device in the loading of our Website. Both also confirm that the data collected does not include IP address and are only used to track use of the font for payment to font creators, not for any other commercial purposes tied to other parts of Adobe’s and Google’s businesses.
You can exercise certain rights regarding your information with Licorice as described in the YOUR RIGHTS, CHOICES AND OPT OUT section below. Users in certain jurisdictions, such as California, the European Union and the United Kingdom, have specific rights which are set forth below.
Information Collection
|
Below is a table indicating the different sets of data we do, and don’t, collect. It is organized in a structure that some U.S. states have recommended. |
This is our explainer text for what you see to the left (or just above, if on mobile). It will always appear just like this, in italics. Its aim is to help make our policies a little easier to understand (and in this case, the description to the left needs no further explanation). |
|
Category |
Details |
Purposes for Which Such Information Was Collected in the Preceding 12 Months or Will be Used |
Categories of Sources From Which Personal Information Has Been Collected in the Preceding 12 Months or will be Collected |
Categories of Third Parties With Whom the Service Shares or Sells Personal Information |
|
Identifiers such as a name, Internet Protocol address, email address, phone number, or other similar identifiers |
We do not collect or log any identifiers or personal information for use of our Website. |
We do not use any identifiers, including IP address, for use of our Website. |
None have been collected by us. |
IP address is visible to our site hosting and font service providers. Details related to them are below. |
|
Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies |
None |
None |
None |
None |
|
Biometric information |
None |
None |
None |
None |
|
Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding a consumer’s interaction with an Internet Web site, application, or advertisement |
None |
None |
None |
None |
|
Precise geolocation data |
None |
None |
None |
None |
|
Professional, education or employment-related information |
None |
None |
None |
None |
|
Inferences drawn from any of the information identified in this subdivision to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes |
None |
None |
None |
None |
COOKIES
|
Cookies are used to keep track of information related to your browsing sessions over time. There are different types of cookies which serve different purposes and have different properties, like how long they can store data for. There is a good description of the types of cookies at https://gdpr.eu/cookies, which is the EU’s website detailing their General Data Protection Regulation, a law that went into effect in May 2018 and whose goal is to protect the privacy of EU citizens when browsing the web. While the site is built for EU citizens, the description of cookies applies well everywhere, and the US and other markets are also beginning to require notices about cookies (which is why you see a lot of those pop-ups when you visit websites). Cookies were created to make the browsing experience smoother, and were actually created to try to limit the ability for entities to track users activity across sites, but over time companies have become adept at finding ways to do that, and as a result cookies have been used to synch up data across sites for a single user. In particular, loading third party cookies when on a website enables a lot of this sharing of cookie data, which is why browsers increasingly are blocking third party cookies by default, even though it can hamper some of the good things cookies enable. We do recommend using a browser which blocks third party cookies by default in order to minimize the ability for companies to track you across sites and even match you with offline activity, including purchases. Currently browsers which block third party cookies by default include Firefox and Safari. Use of our Website requires only “Strictly Necessary” cookies, which is why we are not required to have a pop-up about cookies when you visit licorice.solutions (or any of our other sites). The only cookies you will see when using our Website will come from Squarespace, our hosting provider. See below for more details about them. We do not use cookies for analytics at all. This is not common, and does make measuring activity on our Website more difficult, but we are trying to keep cookie use to only those “Strictly Necessary”. |
Cookies have a valuable purpose, but third party cookies have been taken advantage of to enable a lot of tracking of users across sites, often unbeknownst to you. We recommend using a browser which blocks third party cookies by default, like Firefox or Safari. Visiting our Website only requires “Strictly Necessary” cookies, which is why you will not see a cookie pop-up banner appear on our Website (we essentially opt you out of all the cookies you can opt out of) |
HOW WE USE YOUR INFORMATION
|
We do not collect any data from you at all nor have any records of your individual visits. The data Squarespace, Adobe and Google see in the serving of our Website and how they use it is referenced in links below. |
This is a declaration of the purposes for which we use the data you provide to us or that we collect (all described above in “Information Collection”) In this case, we do not collect any of your data, so have nothing to declare. |
DISCLOSURE OF YOUR INFORMATION
|
We do not collect any data from you at all nor have any records of your individual visits. The data Squarespace, Adobe and Google see in the serving of our Website and how they may disclose it is referenced in links below. |
We do not have any data about you and therefore have no way of disclosing any of your data to anyone else. |
SERVICES PROVIDED TO LICORICE BY THIRD-PARTY VENDORS
|
Squarespace We currently work with Squarespace to provide our web hosting and site management needs. Their servers host licorice.solutions, which gives them the ability to see:
Note that for users accessing our Website from California and European countries subject to data protection laws like GDPR and the e-Privacy Directive 2002/58/EC, Squarespace confirm their policies are in line with both jurisdictions. Full Squarespace terms are at https://www.squarespace.com/privacy and anything that references “End Users” applies to you. |
Our goal is to use as few third party vendors as possible to minimize the risk of data being leaked, shared or stolen. We currently are using Squarespace to host our Website but intend to shift a partner who has a more definitive statement that they will not use your data for any purpose but to provide hosting services to us. Note that Adobe and Google, whom we use solely to render specific fonts, make clear that they do not use your data for any purpose but to display the font and pay the font’s creator appropriately. No data are tied to other data Adobe or Google collect, including for advertising. |
|
Google Fonts We use fonts which Google manages. While their servers are called, they do not place any cookies and make clear that even though they see your IP address, they do not store it, and none of the data they see are used for anything but tracking use for payment to the font creators. Google’s statement about this service and the fact that they do not collect any data is here. |
|
|
Adobe Fonts We also use fonts which Adobe manages. While their servers are called, they do not place any cookies and make clear that even though they see your IP address, they do not store it, and none of the data they see are used for anything but tracking use for payment to the font creators. Adobe’s statement about this service and the fact that they do not collect any data is here. |
DATA RETENTION
|
We do not have a record of any data which could be attributed to you or your visits to our Website. |
We do not have any data about your visit. While you can read our statement about opting out below, we actually have no data about you. |
YOUR RIGHTS, CHOICES AND OPT OUT
|
California Users - If you are a resident of California, you have certain rights under the California Consumer Privacy Act (“CCPA”) as described below. If you are in another jurisdiction which has similar rights by law that apply to both you and our Website, then we will honor such rights for you. |
New privacy laws in some locations, such as California, require us to give you these disclosures and honor these rights. We will honor your desire to have your data deleted regardless of where you live. (Note that the following is included despite that we have no data about you to delete) |
|
1. Right to Know About Personal Information Collected, Disclosed or Sold If you are a resident of California, you have the right to request that we disclose certain information to you about our collection, use, disclosure or sale of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request (see Exercising Access, Deletion and Opt-out Rights), and subject to certain limitations that we describe below, we will disclose such information to you. You have the right to request any or all of the following:
2. Right to Request Deletion You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request (see Exercising Access, Deletion and Opt-out Rights), we will delete (and direct our service providers to delete) your personal information from our records. However, we may retain personal information that has been de-identified or aggregated. Furthermore, we may deny your deletion request if retaining the information is necessary for us or our service provider(s) to perform certain actions, such as detecting security incidents and protecting us from illegal activity, or an exception under the CCPA applies which allows us to retain the information. 3. Sale of Personal Information We do not sell your personal information, as defined under the CCPA. 4. Exercising Access, Deletion and Opt-out Rights To exercise the access, deletion and opt-out rights described above, please submit a request to us by:
Only you, or an appropriate authorized agent, may make the requests set forth above. The request should include your contact information and describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it. In addition, you should provide sufficient information that allows us to reasonably verify that you are the person about whom we collected the personal information. If you use an authorized agent to make a request, you must provide the authorized agent written permission to do so, and we may require that you verify your identity directly with us. In order to protect the security of your personal information, we will not honor a request if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. The method used to verify your identity will vary depending on the nature of the request. You have the right not to receive discriminatory treatment for exercising any of your privacy rights. |
|
|
EEA & UK Users - If you are a situated in the European Economic Area, United Kingdom or Switzerland and the General Data Protection Regulation (“GDPR”) or a similar law applies, as a data subject, you have the following rights: |
The privacy law in the EU, known as the “GDPR”, gives users lots of rights and you are welcome to exercise them. |
Licorice, Inc. is the Controller of all personal data we collect through the Service. We shall only process your personal data pursuant to a lawful basis, which will usually be with your consent, when we have a legitimate interest, or to perform a contract to which we are subject. Additionally, if we rely on consent for the processing of your personal data, you have the right to withdraw it at any time and free of charge. When you do so, this will not affect the lawfulness of the processing before your consent withdrawal. To exercise your rights under the GDPR, please contact us at gdpr@licorice.me. Please note that in order for you to assert these rights, we may need to verify your identity to confirm your right to access your personal data. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. In order to verify your identity, we may need to gather more personal data from you than we currently have. If you are situated in the EU, UK or Switzerland and have any complaints regarding our privacy practices, you have the right to complain to a supervisory authority. |
|
SECURITY
|
We take the security of our data, especially any data attached to your account, very seriously. We take what we believe are a lot of precautions to protect against unauthorized access to our systems and to prevent data from being disclosed to unauthorized parties. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. |
While we do not collect any data about you or from you, we want to be clear that if we did, we cannot guarantee that someone will not find a way to access our data and the information we have tied to your account. |
CHANGES TO OUR PRIVACY POLICY
|
We may change this Privacy Policy at our discretion at any time. If we do make any changes, such changes will appear on this page of our Website. The date the Privacy Policy was last revised is identified at the top of the page. Your continued use of this Website following any changes means that you have accepted, consent to, and agree to be bound by such revised Privacy Policy. |
If we change our privacy policy, we will let you know. If the changes are really significant, we will indicate it both here and in a more visible location. |
CHILDREN UNDER THE AGE OF 13
|
Our Website is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn we have collected or received personal information from a child under 13 without verification of parental consent, we will delete that information. If you believe we might have any personal information from or about a child under 13, please contact us at policy@licorice.me. |
We don’t collect any data from anyone, whether you are over or under 13 (and if you are under 13 and reading this, congratulations, you might be the only one!) |
UNITED STATES OF AMERICA / CROSS BORDER DATA TRANSFERS
|
Our Website is maintained in the United States of America. By visiting this Website, you authorize the export of personal information to the USA and its storage and use as specified in this Privacy Policy. We transfer personal information from the EU, UK and Switzerland to the USA and other countries, some of which have not been determined by the European Commission or other regulators to have an adequate level of data protection. Information stored in the USA may be subject to lawful requests by the courts or law enforcement authorities in the USA. |
We are located in the U.S., so that’s where your data would reside…if we collected any…which we don’t. |
CONTACT US
|
If you have any questions about this Privacy Policy, please contact us at policy@licorice.me. |