AppLock - Privacy Policy

Last updated: March 1, 2025

At AppLock, your privacy is important to us. This Privacy Policy is designed to explain how we collect, use, process, share, and safeguard Personal Information about you gathered through the AppLock applications, including AppLock’s Applock Pro - App Lock & Guard and AppLock - Lock Screen (collectively, the “Services”) with additional disclosures and notices for California, Colorado, Connecticut, Delaware, Florida, Iowa, Montana, Nebraska, Nevada, New Hampshire, New Jersey, Oregon, Texas, Utah and Virginia residents in the U.S State Privacy Notice section below. To the extent that there is a conflict between this Privacy Policy and the U.S. State Privacy Notice section, the U.S. State Privacy Notice section will control regarding the residents of those states. The terms “AppLock,” “we,” and “us” include AppLock LLC and our affiliates. By using the Services, you agree to the processing of your Personal Information as described in this Privacy Policy. Beyond the Privacy Policy, your use of the Service is also subject to our Terms of Service.

1. Information We Collect And Use

We collect several different types of information for various purposes to provide and improve our Service to you:

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). Personally identifiable information may include, but is not limited to:

Usage Data

When you access the Service by or through a mobile device, we may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.

Tracking & Cookies Data

When you use our Services, we and our third party service providers may collect information from you through automated means, such as cookies, web beacons, and web server logs. Examples of Cookies we use include:

Session Cookies. We use Session Cookies to operate our Services.
Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
Security Cookies. We use Security Cookies for security purposes.

By using the Services, you consent to the placement of cookies, beacons, and similar 3-technologies in accordance with this Privacy Policy. The information collected in this manner includes IP address, browser characteristics, gyroscopic position, service strength, data provider, device IDs and characteristics, country code or approximate location, operating system version, language preferences, referring URLs, and information about the usage of our Services. We work with analytics’ providers such as Google Analytics, which uses cookies and similar technologies to collect and analyze information about use of the Services and report on activities and trends. This service may also collect information regarding the use of other websites, apps and online resources. You can learn about Google’s practices by going to https://www.google.com/policies/privacy/partners/, and opt out of them by downloading the Google Analytics opt-out browser add-on, available at https://tools.google.com/dlpage/gaoptout.

Third parties that advertise goods or services on the Service (collectively, “Advertisers”) may also use cookies or other technologies to track your use of the Service. Advertisers also may use cookies to track your online activities across websites over time to provide interest-based advertising. Those third parties may also provide us with data collection, reporting, ad-response measurement, analytical information, and assist with delivery of relevant marketing messages and advertisements. Some of our Advertisers are members of the Network Advertising Initiative or the Digital Advertising Alliance, or for users in the EU, the European Interactive Digital Advertising Alliance’s Consumer Choice Page (http://www.youronlinechoices.eu). Please visit these organizations' opt-out pages to learn about how you may opt out of receiving web-based personalized ads from member companies. Please visit your device’s settings or install the AppChoices app to learn more about how you may opt out of receiving personalized ads in mobile apps.

Further, if you are a resident of the EU, advertisements shown to you may be supplied via the Ogury Choice Management Platform (“Ogury CMP”), which is compatible with version 2.0 of the IAB Europe Transparency and Consent Framework (“TCFV2”). Accordingly, your prior consent will be collected via Ogury CMP, which supports TCFV2. If you do not want information collected through the use of cookies, most browsers allow you to automatically decline cookies or be given the choice of declining or accepting the transfer to your device of a particular cookie (or cookies) from a particular site. You may also wish to refer to http://www.allaboutcookies.org/manage-cookies/index.html. Your mobile operating system should also give you the option to manage your cookies and advertising preferences (this may be found in the "settings" function on your device).

If, however, you do not accept cookies, you may experience some inconvenience in your use of the Services.

2. How We Use Your Personal Information

Internal and Service-Related Usage. We use Personal Information for internal and Service-related purposes, including to operate, provide and maintain the Services.

Communications

If you contact us directly, we may receive additional information about you. For example, when you contact our Customer Support Team, we may receive your name, email address, phone number, the contents, date and time of a message or attachments that you may send to us, and other information you choose to provide.

Advertising

We and our advertising partners may use your Personal Information, including your location and your activities on the Service to facilitate the delivery of advertisements.

Aggregate Data

We may de-identify and aggregate information collected through the Services for statistical analysis and other lawful purposes.

Business Partners

If you work for one of our business partners or vendors, we will collect your contact details to manage the business relationship.

Job Application

If you apply for a job with us, we will collect your application information, including your resume and the contact details of your referees, as well as any other information you chose to provide to us in the context of your application.

Legal

We may use your Personal Information to enforce our Terms of Service to defend our legal rights, to comply with our legal obligations and internal policies.

If you are located in the European Economic Area, we only process your Personal Information based on a valid legal ground, including when:

You have consented to the use of your Personal Information, for example to receive electronic marketing communications;
We need your Personal Information to provide you with the Services, including for account registration, to respond to your inquiries, or for customer support;
We have a legal obligation to use your Personal Information; or
We or a third party, have a legitimate interest in using your Personal Information. We only rely on our or a third party’s legitimate interests to process your Personal Information when these interests are not overridden by your rights and interests.

3. How We Share Your Personal Information

We disclose Personal Information that we collect about you in the context of the Services to third parties in the following circumstances:

We may share Personal Information about you with our affiliates and subsidiaries.
We may share Personal Information about you with our third party service providers who perform services on our behalf, such as website hosting, payment processing, data analysis, information technology and related infrastructure provision, customer service, email delivery, online advertising, auditing, and other services. We do not sell your Personal Information and only share it with third party service providers to operate our Services. We may share your Personal Information with our service providers that provide user support and perform other business operations on our behalf, under our instructions and in compliance with appropriate technical and organizational security measures to protect your data. For example, we may partner with other companies to provide you support services, authentication services, perform analytics, maintain the accuracy of our databases.
To a potential or actual acquirer, successor, or assignee as part of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in bankruptcy or similar proceedings). We will use reasonable efforts to direct the new entity to process your information in a way that does not materially differ from that set forth in this Privacy Policy.
If required to do so by law or in the good faith belief that such action is appropriate: (a) under applicable law, including laws outside your country of residence; (b) to comply with legal process; (c) to respond to requests from public and government authorities, including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of our affiliates; (f) to protect our rights, privacy, safety or property, and/or that of our affiliates, you or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain.

We may use and disclose aggregate information that does not identify or otherwise relate to an individual for any purpose.

4. Third Party Services and Links

This Privacy Policy applies only to the processing of your Personal Information by AppLock. It does not address, and we are not responsible for, the privacy, information or other practices of any third parties, including any third party operating any site or service to which the Services link, such as social net. The inclusion of a link on the Services does not imply endorsement of the linked site or service by us or by our affiliates.

5. Security

We maintain administrative, technical and physical safeguards that are intended to appropriately protect Personal Information against accidental or unlawful destruction, accidental loss, unauthorized alteration, unauthorized disclosure or access, misuse, and any other unlawful form of processing of the Personal Information in our possession.

6. Data Retention

We take measures to delete your Personal Information or keep it in a form that does not allow you to be identified when this information is no longer necessary for the purposes for which we process it, unless we are required by law to keep this information for a longer period. When determining the retention period, we take into account various criteria, such as the type of Services provided to you, the nature and length of our relationship with you, possible re-enrollment with our Services, the impact on the Services we provide to you if we delete some information from or about you, mandatory retention periods provided by law and the statute of limitations.

European Privacy Rights. Depending on your country and, in particular, if you are located in the European Economic Area or Switzerland, you may have the following additional rights:

Request access to and receive information about the Personal Information we maintain about you, to update and correct inaccuracies in your Personal Information, to restrict or to object to the processing of your Personal Information, to have the information anonymized or deleted, as appropriate, or to exercise your right to data portability to easily transfer your Personal Information to another company. In addition, you may also have the right to lodge a complaint with a supervisory authority, including in your country of residence, place of work or where an incident took place.
Withdraw any consent you previously provided to us regarding the processing of your Personal Information, at any time and free of charge. We will apply your preferences going forward and this will not affect the lawfulness of the processing before your consent withdrawal.

7. Use of Services By Children

The Services are not directed to individuals under the age of thirteen (13), and we request that they not provide personal information through the Services. We do not knowingly collect, maintain or use Personal Information (as that term is used herein and as defined in the Federal Trade Commission’s Children’s Online Privacy Protection Act Rule) from children under the age of thirteen (13). If you are located in the European Economic Area or Switzerland, we do not knowingly collect, maintain or use Personal Information from children under the mandated minimum age set by each country within the European Economic Area. If a parent or guardian becomes aware that his or her child has provided us with Personal Information, he or she should contact us at [email protected] and we will take steps to immediately delete that information.

8. International Cross-Border Data Transfer

AppLock is based in the United States. If you are visiting the Service from Europe or other regions with laws governing data collection and use, then please note that your Personal Information may be transferred to countries that do not have the same data protection laws as the country in which you initially provided the information. By providing your Personal Information to the Services, you consent to any transfer of your Personal Information to the United States and other countries in accordance with this Privacy Policy. When we transfer your Personal Information to other countries, we will protect that information as described in this Privacy Policy.

9. California Privacy Rights

If you are a California resident you may request a notice from us describing what categories of personal information (if any) we have shared with third parties, including our corporate affiliates, for their direct marketing purposes during the preceding calendar year. You may request such notice once a year and free of charge. To request a notice, please contact AppLock as provided in the “Contact Us” section of this Policy and indicate in the email subject line “California Shine The Light Request” so that we can process your request. Please include your mailing address, state of residence and email address with your request.

As of January 1, 2020, California residents also have the following rights provided to them under the California Consumer Privacy Act of 2018, Civil Code §1798.100 et seq. (CCPA): (1) Right to Know About Personal Information Collected. California residents have the right to request that a business disclose to them the Personal Information it collects, uses, discloses, and sells, subject to certain exceptions and limitations. (2) Right to Request Deletion of Personal Information. California residents also have the right to request the deletion of their Personal Information collected or maintained by AppLock, subject to certain exceptions and limitations. (3) Right to Opt-Out of the Sale of Personal Information. California residents have the right to opt-out of the sale of their Personal Information. Under the CCPA, the “sale” of Personal Information broadly includes any communication of Personal Information to any business that is deemed to be a “third party” (as defined in the CCPA) for monetary or other valuable consideration, subject to certain exceptions and limitations. (4) Authorized Agent. California residents may use an authorized agent to exercise certain privacy-related requests and rights on their behalf. The authorized agent’s exercise or request on your behalf sent by mail shall include a power of attorney or a notarized statement properly signed by you appointing such authorized agent for such purpose. If your authorized agent submits the exercise or request online via the link below, a copy of the power of attorney or the original notarized statement shall be mailed to the following address: AppLock, LLC, One East Erie, Suite 525, Chicago, IL 60611; Attention: Privacy, within five (5) days after submitting such online request, or we may in our discretion otherwise verify the agent’s authority to our reasonable satisfaction. (5) Notice of Financial Incentive. California residents have the right to receive notice of financial incentives provided to them by a business. (6) Right to Non-Discrimination for the Exercise of a Consumer’s Privacy Rights. California residents have a right not to receive discriminatory treatment by a business in the event that the California resident exercises one or more of their privacy rights conferred by the CCPA. (7) How to Submit Your Request. AppLock offers California consumers (or their authorized agent) two (2) ways to submit requests concerning their California privacy rights under the CCPA: (i) by emailing us at [email protected] (Attn: California Privacy Requests); or (b) by mailing your request to the following address: AppLock, LLC, One East Erie, Suite 525, Chicago, IL 60611 (Attn: California Privacy Requests). AppLock will review all properly-submitted requests and respond in a timely manner in accordance with the CCPA and applicable regulations thereunder. As part of this process, and to prevent unauthorized use of your Personal Information, you may be asked to verify your identity so that we can match you to a person in our systems. The verification methods we use may include requests to disclose your first name, last name, email address, location information, security question, Service activity and other information; such verification may be conducted by a third-party on our behalf.

We may make changes to this Privacy Policy. The “Last Updated” date at the top of this page indicates when this Privacy Policy was last revised. If we make material changes, we may notify you through the Services or by sending you an email or other communication. We encourage you to read this Privacy Policy periodically to stay up-to-date about our privacy practices. Your continued use of the Services following these changes means that you accept the revised Privacy Policy.

10. Residents in the United Kingdom, New Zealand, Canada, or Australia

For residents of the United Kingdom, New Zealand, Canada, or Australia, AppLock complies with all applicable data protection laws, including the General Data Protection Regulation (GDPR) and the Privacy Act 1988 (Cth) (Australia).

If you are a resident of one of these countries, you have certain data protection rights:

The right to access, update or to delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Information by contacting us at [email protected].
The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
The right to object. You have the right to object to our processing of your Personal Information.
The right of restriction. You have the right to request that we restrict the processing of your Personal Information.
The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.
The right to withdraw consent. You also have the right to withdraw your consent at any time where AppLock relied on your consent to process your Personal Information.
Right to Correct. You have a right to correct any information that you consider to be incorrect or incomplete. To access Personal Information AppLock may have collected about you, and/or to correct any information AppLock has collected about you, please contact us by email at [email protected].

Please note that we may ask you to verify your identity before responding to such requests.

11. Contact Us

AppLock, LLC is the entity responsible for the processing of your Personal Information. If you have any questions about this Privacy Policy, or if you would like to exercise your rights to your Personal Information, you may contact us at [email protected] or write to us at:

Privacy Team (Attn: Justin M. Hines)
AppLock, LLC.
One East Erie, Suite 525
Chicago, IL, 60611
United States of America

US STATE PRIVACY NOTICE

Last updated effective March 1, 2025

This U.S. State Privacy Notice (“Notice”) applies to “Consumers” as defined respectively under the California Consumer Privacy Act of 2020, as amended by the California Privacy Rights Act (collectively, the “CCPA”), Colorado Privacy Act (“Colorado Law”), Utah Consumer Privacy Act (“Utah Law”), Connecticut Act Concerning Personal Data Privacy and Online Monitoring (“Connecticut Law”), Virginia Consumer Data Protection Act (“Virginia Law”), Nevada Privacy of Information Collected on the Internet from Consumers Act (“Nevada Law”), Delaware Personal Data Privacy Act (effective January 1, 2025) (“Delaware Law”), Florida Digital Bill of Rights (effective July 1, 2024) (“Florida Law”), Iowa Act Relating to Consumer Data Protection (effective January 1, 2025) (Iowa Law”), Montana Consumer Data Privacy Act (effective October 1, 2024) (“Montana Law”), Nebraska Data Privacy Act (effective January 1, 2025) (“Nebraska Law”), New Hampshire Act Relative to the Expectation of Privacy (effective January 1, 2025) (“New Hampshire Law”), New Jersey Act Concerning Online Services (effective January 15, 2025) (“New Jersey Law”), Oregon Consumer Privacy Act (effective July 1, 2024) (“Oregon Law”), Texas Data Privacy and Security Act (effective July 1, 2024) (“Texas Law”), and all laws implementing, supplementing, or amending the foregoing, including regulations promulgated thereunder, as well as any additional U.S. state privacy laws now or hereafter applicable to the Company (each a “U.S. State Privacy Law” and collectively, “U.S. State Privacy Laws”). Capitalized terms used but not defined in this Notice shall have the meanings given to them under the relevant U.S. State Privacy Laws or (if applicable) in other sections of our Privacy Policy.

Applicability

Section A of this Notice provides notice of our data practices, including our collection, use, disclosure, and sale of Consumers’ personal information or personal data under relevant U.S. State Privacy Laws (collectively, “PI”).
Sections B-F of this Notice provide information regarding Consumer rights under applicable U.S. State Privacy Laws and how you may exercise them.
Section G of this Notice provides additional information for residents of certain states only.

A. Notice of Data Practices

The description of our data practices in this Notice covers the twelve (12) months prior to the Effective Date and will be updated at least annually. Our data practices may differ between updates to this Notice; however, if materially different from this Notice, we will provide supplemental pre-collection notice of the current practices, which may include references to other privacy policies, notices, or statements. Otherwise, this Notice serves as our notice at collection. We may receive or collect your PI directly from you or from your Devices, from Third Party Services, or from other individuals and businesses, as well as public sources of data.

Generally, we process your PI to provide you our Services and as otherwise related to the operation of our business, including for one or more of the following Business Purposes: Performing Services; Managing Interactions; Security; Debugging; Providing Advertising & Marketing Services; Quality Assurance; Processing Interactions and Transactions; and Research and Development. We may also use PI for other Business Purposes in a context that is not a Sale or Share under applicable U.S. State Privacy Laws, such as disclosing it to our Service Providers, Contractors, or Processors that perform services for us (“Vendors”), to you, or to other parties at your direction or through your action; for the additional purposes explained at the time of collection (such as in the applicable privacy policy or notice); as required or permitted by applicable law; to the government or private parties to comply with law or legal process; and in Business Transactions (collectively, “Additional Business Purposes”). Subject to restrictions and obligations under U.S. State Privacy Laws, our Vendors may also use your PI for Business Purposes and Additional Business Purposes and may engage their own vendors to enable them to perform services for us.

We may also use and disclose your PI under this Notice for Commercial Purposes, which may be considered a “Sale” or “Share” under applicable U.S. State Privacy Laws, such as when Trusted Third Parties collect your PI via third-party cookies, and when we process PI for certain advertising purposes. In addition, we may make your PI available to third parties for their own use via third-party cookies or otherwise.

As permitted by applicable law, we do not treat deidentified data or aggregate consumer information as PI and we reserve the right to convert, or permit others to convert, your PI into deidentified or aggregate consumer information, and may elect not to treat publicly available information as PI. We have no obligation to re-identify information or keep it longer than we need it to respond to your requests. Data exempt from U.S. State Privacy Laws are not included in this Notice.

We provide more detail on our data practices in the two charts that follow.

i. PI Collection, Disclosure, and Retention – By Category of PI

We collect, disclose, and retain PI as follows:

Category of PI	Examples of PI Collected and Retained	Categories of Recipients
Identifiers	This may include, but is not limited to: a real name, unique personal identifier, online identifier, Internet Protocol address, email address, account name, or other similar identifiers.	Business Purpose Disclosure: -Vendors (e.g., data processors, IT service providers, storage vendors, marketing service providers, security providers, and professional advisors) -Affiliates -Government entities (where we are under a duty to disclose or to protect our rights or the rights of others) -Other parties within the limits of Additional Business Purposes Sale/Share: -Cookie Operators (only to the extent such data is collected by a cookie or other Tracking Technology) -Licensees
Internet Usage Information	This may include, but is not limited to your interaction with an Internet Web site, application, or advertisement
Geo-location Data	This may include, but is not limited to: precise physical location or movements and travel patterns
Professional or Employment Information	This may include, but is not limited to: professional, educational, or employment-related information

As required by Florida Law and Texas Law, we provide you with the following notice:

NOTICE: We may sell your sensitive personal data.

We retain your PI based on how long we believe we have a legitimate purpose for the retention. In general, we retain all categories of PI listed in the chart above for as long as a User account is open and for an additional 3 years after the account is closed; however, some data may be retained for a shorter or longer period. When deciding how long to keep your PI, we consider (among other things) whether we have an active relationship with you, whether we need to retain the PI to provide you our Services, whether we are subject to any legal obligations (e.g., any contracts or laws that require us to maintain certain data for a certain period of time), our Data Purposes, our Business Purposes and Additional Business Purposes. Rather than delete your PI, we might deidentify it by removing identifying details so it is no longer considered PI, in which event we will not attempt to re-identify that data.

There may be additional information we collect that meets the definition of PI under applicable U.S. State Privacy Laws but is not reflected by a category above, in which case we will treat it as PI as required but will not include it when we describe our practices by PI category.

ii. PI Use and Disclosure – By Processing Purpose

We use and disclose PI for the processing purposes described below. For the categories of recipients for each purpose, please refer to the chart above at Section A(i) (PI Collection, Disclosure, and Retention – By Category of PI), as indicated by relevant category of PI below:

Processing Purpose(s)	Example(s) of Processing Purpose	Categories of PI Implicated
Performing Services	Provide our Services : to provide you with the AppLock Services Contact You : to contact and communicate with you about your use of our Services, including changes to our Services or our Services’ policies Account management : to process your registration with our Services, verify your info is active and valid, and otherwise manage your account User Service : to respond to any questions, comments, or requests you have for us or for other User service purposes Other : marketing, administrative, operational, business, and commercial purposes subject to applicable law and not inconsistent with this Privacy Policy or other notice by us at collection	Identifiers User Account Details/Commercial Information Internet Usage Information Geo-location Data
Managing Interactions and Transactions	Auditing : related to counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with User interaction or transaction specifications and standards	Identifiers User Account Details/Commercial Information Internet Usage Information
Security	Security/fraud prevention : to protect the security of Company, our Services, and its Users and to prevent and address fraud and violations of our terms and policies	Identifiers Internet Usage Information User Account Details/Commercial Information
Debugging	Repairs : identify and repair errors that impair existing intended functionality of our Services	Identifiers Internet Usage Information User Account Details/ Commercial Information
Quality Assurance	Quality and Safety of Service : undertaking activities to verify or maintain the quality or safety of our Services, and to improve, upgrade, or enhance our Services	Identifiers Internet Usage Information User Account Details/ Commercial Information Geo-location Data Inferences
Processing Interactions and Transactions	Short-term, transient use : including, but not limited to, non-personalized advertising shown as part of a Consumer’s current interactions related to your use of our Services	Identifiers Internet Usage Information User Account Details/ Commercial Information Geo-location Data Sensory Data Inferences
Research and Development	Research and analytics : to better understand how Consumers access and use our Services, both on an aggregated and individualized basis, to improve our Services and respond to User preferences, and for other research and analytical purposes Market research and User satisfaction surveys : to administer surveys and questionnaires, such as for market research or User satisfaction purposes	Identifiers Internet Usage Information User Account Details/ Commercial Information Geo-location Data Inferences
Additional Business Purposes	Compliance with legal obligations : to comply with legal obligations, as part of our general business operations, and for other business administration purposes Prevention of illegal activities, fraud, injury to others, or violation of our terms and policies : to investigate, prevent or take action if someone may be using info for illegal activities, fraud, or in ways that may threaten someone’s safety or violate of our terms or policies Purposes disclosed at PI collection : We may provide additional disclosures at the time of PI collection, such as on an Offer page Related or compatible purposes : for purposes that are related to and/or compatible with any of the foregoing purposes	Identifiers Personal Records Personal Characteristics or Traits User Account Details/Commercial Information Internet Usage Information Geo-location Data Sensory Data Professional or Employment Information Inferences
Commercial Purposes	We may collect and use your PI for commercial purposes such as for interest-based advertising and disclosing PI in a manner that is deemed a sale under the CCPA or other applicable U.S. State Privacy Laws.	Identifiers Personal Records User Account Details/Commercial Information Internet Usage Information Geo-location Data Professional or Employment Information Inferences

B. Your Consumer Rights and How to Exercise Them

We provide Consumers the privacy rights described in this section pursuant to the requirements of their applicable U.S. State Privacy Law as of the effective date of each such law, provided any such request meets the requirements for a Verifiable Consumer Request (defined below). For residents of states without applicable U.S. State Privacy Laws, we may consider requests under this section but will apply our discretion in whether and how we process them. We may also apply state law rights in states with U.S. State Privacy Laws prior to the effective date of such laws in our sole and absolute discretion.

To submit a request to exercise your Consumer privacy rights under U.S. State Privacy Laws, or to submit a request as an authorized agent, please mail your request to the following address: AppLock, LLC, One East Erie Street, Suite 525 (#342), Chicago, Illinois 60611, Attention: Privacy, and respond to any follow-up inquiries we make. Please be aware that we do not accept or process requests through other means (via phone, fax, chats, social media, etc.). More details on the request and verification process are provided in Section C below. The Consumer rights we accommodate are as follows:

i. Right to Limit Sensitive PI Processing

With regard to PI that qualifies as Sensitive PI under U.S. State Privacy Laws, if you elect to provide us with that Sensitive PI, you will have consented to our collection and processing of it. You may submit a request to limit certain processing of your Sensitive PI to the following address: AppLock, LLC, One East Erie Street, Suite 525 (#342), Chicago, Illinois 60611 or by email at [email protected]. However, under applicable U.S. State Privacy Laws, your request will not affect the following permitted processing purposes, or any other purposes permitted by law:

To perform our Services at your request or at your direction;
To prevent, detect, and investigate security incidents, fraudulent activity, and illegal actions;
For short term transient use, including, but not limited to, non-personalized advertising as part of your interaction with our Services; and
To maintain or service accounts, provide User service, verify User information, or provide similar services.

ii. Right to Know/Access

Consumers have the right under U.S. State Privacy Laws to request access to PI maintained by the Company. This right may be limited in some circumstances by law.

a) Categories

California residents have a right to submit a request for any of the following for the period that is 12-months prior to the request date:

The categories of PI we have collected about you.
The categories of sources from which we collected your PI.
The Business Purposes or Commercial Purposes for our collecting or Selling your PI.
The categories of third parties to whom we have shared your PI.
A list of the categories of your PI disclosed for a Business Purpose and, for each, the categories of recipients, or that no disclosure occurred.
A list of the categories of your PI sold and, for each, the categories of recipients, or that no sale occurred.

Residents of Delaware and Oregon can request additional information regarding certain third party disclosures of your PI (e.g., excluding disclosures to our service providers and processors).

Consumers of other states subject to U.S. State Privacy Laws have the right to confirm if we are processing your PI, which we will treat as a Categories request.

b) Specific Pieces (Transportable Copies)

You may request to obtain a transportable copy of your PI that we have collected and are maintaining, as required by applicable U.S. State Privacy Laws. If you wish to receive specific pieces of your PI, we will attempt to honor requests for specific pieces of your PI where reasonably possible. We have no obligation to re-identify information or to keep PI longer than we normally retain it or longer than we are required to under applicable law to comply with access requests.

iii. Do Not Sell / Share / Target for Advertising

Various U.S. State Privacy Laws have broad and differing concepts of “Selling” PI for which an opt-out is required, with some states including PI transfers for non-monetary consideration and other states only including PI transfers for monetary consideration. California also has an opt-out from “Sharing” for Cross-Context Behavioral Advertising purposes (use of PI from different businesses or services to target advertisements across websites or apps). Other states have an opt-out of “Targeted Advertising” (defined differently, but also addressing tracking, profiling, and targeting of advertisements). We may Sell or Share your PI and/or use your PI for Targeted Advertising, as these terms apply under U.S. State Privacy Laws. However, we provide you with an opt-out of Sale/Sharing/Targeting that is intended to combine all of these various state opt-outs into a single opt-out available regardless of which U.S. State Privacy Law is applicable to your PI.

Ad Networks and other Trusted Third Parties may associate cookies and other Tracking Technologies that collect PI about you on AppLock Sites and Features or in connection with our Services, or otherwise collect and process PI that we make available about you. We understand that making your PI available on AppLock Sites and Features or in connection with our Services, or otherwise, to Trusted Third Parties could be deemed a Sale and/or Share under some U.S. State Privacy Laws and thus we will treat such PI (e.g., cookie ID, IP address, and other online IDs and internet or other digital activity information) collected by Trusted Third Parties that are not limited to acting as our Service Provider (or Contractor or Processor), as a Sale and/or Share and subject to your right to make a Do Not Sell/Share/Target opt-out request. We will not Sell your PI, Share your PI for Cross-Context Behavioral Advertising, or process your PI for Targeted Advertising if you make a Do Not Sell/Share/Target opt-out request as follows:

Opt-out for non-cookie PI: If you want to limit our processing of your non-cookie PI (e.g., your email address or web browsing activity) for Targeted Advertising, or opt-out of the Sale/Sharing of such PI, you may make an opt-out request to the following address: AppLock, LLC, One East Erie Street, Suite 525 (#342), Chicago, Illinois 60611or by email at [email protected].

Opt-out for cookie PI: If you want to limit our processing of your cookie-related PI for Targeted Advertising, or opt-out of the Sale/Sharing of such PI, you may exercise an opt-out request by mail to the following address: AppLock, LLC, One East Erie Street, Suite 525 (#342), Chicago, Illinois 60611or by email at [email protected]. Since your browser opt-out is designated by a cookie, if you clear or block cookies on your Device, your preferences may no longer be effective, and you will need to enable them again via our cookie management tool.

Opt-out preference signals ("OOPS"), as they are known in California; also known as global privacy control (or GPC): Some of the U.S. Privacy Laws require businesses to process OOPS or GPC signals, which are signals sent by a platform, technology, or mechanism, enabled by individuals on their devices or browsers, that communicate the individual's choice to opt-out of the Sale and Sharing of PI. To use an OOPS/GPC, you can download a compatible internet browser or a plugin for on your current internet browser and follow the settings to enable to OOPS/GPC.

We may disclose your PI for the following purposes, which are not a Sale or Share: (i) if you direct us to disclose PI; (ii) to comply with a Consumer rights request you submit to us; (iii) disclosures amongst the entities that constitute Company as defined above, or as part of a Business Transaction; and (iv) as otherwise required or permitted by applicable law.

iv. Right to Delete

Except to the extent we have retention rights under applicable law, you may request that we delete your PI. Our retention rights include, without limitation:

To complete transactions and services that you have requested;
For security purposes;
For legitimate internal Business Purposes (e.g., maintaining business records);
To comply with law and to cooperate with law enforcement; and
To exercise or defend legal claims.

Please also be aware that making a deletion request does not ensure complete or comprehensive removal or deletion of PI or content you may have posted.

Under certain U.S. State Privacy Laws, your deletion right may apply only to PI that we collected directly from you.

v. Right to Correct

Consumers in certain states may bring inaccuracies they find in their PI that we maintain to our attention, and we will act upon such a report as required by applicable law.

You can also make changes to your PI in your online account in the account settings section of the account. That will not, however, necessarily change your PI in other places where we may maintain it.

C. How We Process Your Consumer Privacy Requests

To submit a request to exercise your Consumer privacy rights, or to submit a request as an authorized agent, please mail your request to the following address: AppLock, LLC, One East Erie Street, Suite 525 (#342), Chicago, Illinois 60611, Attention: Privacy, and respond to any follow-up inquiries we make. In addition, you may email [email protected] and we will respond with the appropriate web submission form for you to use for the submission of your request. To submit a Do Not Sell/Share/Targeting Request for cookie-related PI or the right to limit Sensitive PI processing, email us at [email protected]. Please be aware that we do not accept or process requests through other means (via phone, fax, chats, social media, etc.).

i. Your Request Must be a Verifiable Consumer Request

As permitted or required by applicable U.S. State Privacy Laws, any request you submit to us must be a Verifiable Consumer Request, meaning that when you make a request, we may ask you to provide verifying information, such as your name, e-mail, telephone number and/or account information. We will review the information provided and may request additional information (e.g., transaction history) to ensure we are interacting with the correct individual. We may not fulfill your Right to Know/Access, Right to Delete, or Right to Correct request unless you have provided sufficient information for us to reasonably verify you are the Consumer about whom we collected PI. We do not verify requests to Opt-out of Sell/Share/Target or Limit Sensitive PI unless we suspect fraud.

You are not required to create a password-protected account with us to make a Verifiable Consumer Request, but you may use your password-protected account to do so. If we suspect fraudulent or malicious activity on or from the password-protected account, we may decline a request or request that you provide further verifying information.

We verify each request as follows:

Right to Know/Access (Categories): If you do not have a password-protected account, we verify your Request to Know/Access Categories of PI to a reasonable degree of certainty, which may include matching at least two data points provided by you with data points maintained by us, which we have determined to be reliable for the purpose of verifying you. If we cannot do so, we will refer you to this Notice for a general description of our data practices.
Right to Know/Access (Specific Pieces): If you do not have a password-protected account, we verify your Request To Know/Access Specific Pieces of PI to a reasonably high degree of certainty, which may include matching at least three data points provided by you with data points maintained by us, which we have determined to be reliable for the purpose of verifying you together with a signed declaration under penalty of perjury that you are the Consumer whose PI is the subject of the request. If you fail to provide requested information, we will be unable to verify you sufficiently to honor your request, but we will then treat it as a Right to Know Categories Request if you are a California resident.
Do Not Sell/Share/Target & Limit Sensitive PI: No specific verification required unless we suspect fraud.
Right to Delete: If you do not have a password-protected account, we may verify your Request to Delete to either (i) a reasonable degree of certainty, which may include matching at least two data points provided by you with data points maintained by us, or (ii) a reasonably high degree of certainty, which may include matching at least three data points provided by you with data points maintained by us, depending on the sensitivity of the PI and the risk of harm to the Consumer posed by unauthorized deletion. If we cannot verify you sufficiently to honor a deletion request, you can still make a Do Not Sell/Share/Target and/or Limit Sensitive PI request.
Right to Correct: If you do not have a password-protected account, we verify your Request to Correct to either (i) a reasonable degree of certainty, which may include matching at least two data points provided by you with data points maintained by us, or (ii) a reasonably high degree of certainty, which may include matching at least three data points provided by you with data points maintained by us, depending on the sensitivity of the PI and the risk of harm to the Consumer posed by unauthorized correction.

To protect Consumers, if we are unable to verify you sufficiently, we will be unable to honor your request. We will use PI provided in a Verifiable Consumer Request only to verify your identity or authority to make the request and to track and document request responses, unless you also gave it to us for another purpose.

ii. Agent Requests

Authorized agents may exercise rights on behalf of Consumers, depending on the Consumer’s state of residency, but we reserve the right to also verify the Consumer’s identity directly as described above. We will require the agent to demonstrate authority to act on behalf of the Consumer by providing evidence sufficient to verify the agent’s identity and authority to act on behalf of the Consumer. For example, if you are California Consumer, we may require evidence of the agent’s identity, proof of registration with the California Secretary of State (if the agent is a business), and at least one of the following evidencing proof of the agent’s legal authority to act on behalf of the individual Consumer: (i) a Power of Attorney granted under the Probate Code that we can reasonably verify; or (ii) signed, written permission by the Consumer. We apply similar verification standards for agent requests received on behalf of Consumers in other states where agent requests are permissible.

We may also require the Consumer to verify their own identity directly with us and to directly confirm with us that they provided the authorized agent permission to submit the request.

In addition, residents of certain states may use an agent to make an opt-out request subject to reasonable verification of agent authority and consumer identity.

In the absence of any of the general conditions detailed above, we are entitled to reject any request submitted through an agent. In addition, the agent is subject to the verification standards applicable to the type of request(s) made.

iii. Our Responses

Some PI that we maintain is insufficiently specific for us to be able to associate it with a Consumer. We do not include that PI in response to those requests. If we deny a request, in whole or in part, we will explain the reasons in our response.

We will make commercially reasonable efforts to identify Consumer PI that we process to respond to your Consumer request(s). In some cases, particularly with voluminous and/or typically irrelevant data, we may suggest you receive the most recent or a summary of your PI and give you the opportunity to elect whether you want the rest. We reserve the right to direct you to where you may access and copy responsive PI yourself. We may also refuse to act upon a request that is excessive, repetitive, unfounded, or overly burdensome.

D. Non-Discrimination/Non-Retaliation

We will not discriminate or retaliate against you in a manner prohibited by applicable U.S. State Privacy Laws for your exercise of your Consumer privacy rights.

E. Our Rights and the Rights of Others

Notwithstanding anything to the contrary, we may collect, use and disclose your PI as required or permitted by applicable law and this may limit or affect your rights under U.S. State Privacy Laws. In addition, we are not required to honor your requests to the extent that doing so would infringe upon our or another person’s rights or conflict with applicable law.

F. Additional Notices for California Residents

This Notice provides additional information on our online practices and the rights of residents of certain states related to the AppLock Services.

i. Shine the Light—California Residents

We also provide California residents with the option to opt-out of the disclosure of “personal information,” as defined by California’s “Shine the Light” law, with third parties (other than with Company affiliates) for such third parties own direct marketing purposes. California residents may exercise this opt-out, request information about our Shine the Light law compliance, and/or obtain a disclosure of third parties we have disclosed information to and the categories of information disclosed. California residents may make such a request, or inquire further about our compliance with this law, by emailing [email protected] or mailing us at the address set forth in the Contact Us section above. You must put the statement “Shine the Light Request” in the body of your correspondence. In your request, please attest to the fact that you are a California resident and provide a current California address for your response. This right is different than, and in addition to, CCPA rights, and must be requested separately. We are only required to respond to one request per person each year. We are not required to respond to requests made by means other than through the provided e-mail address or mailing address (requests by phone, fax, chats, social media, etc.). We are not responsible for requests that are incomplete or not labeled and sent properly.

ii. Affirmative Opt-In for Sale or Sharing, or use for Targeted Advertising, of PI of “Child” Residents of Certain States

We do not knowingly Sell or Share, or use for Targeted Advertising, the PI of Consumers who meet the definition of a “child” (or other similar term) under applicable U.S. State Privacy Laws, unless we receive affirmative opt-in authorization from (i) the Consumer, if that person is at least 13 years of age and Consumer consent is required under the applicable law, or (ii) the parent or guardian of the Consumer, if the Consumer is less than 13 years of age. If you think we may have unknowingly Sold or Shared PI, or used PI for Targeted Advertising, of a Consumer under the threshold age (as set by the applicable U.S. State Privacy Law) without the appropriate affirmative opt-in authorization, please report that to us as described in the Contact Us section above.

Residents in the United Kingdom, New Zealand, Canada, or Australia