Last Updated: May 30, 2018
What information does Application obtain and how is it used?
User Provided Data: Application collects User Provided Data, including but not limited to, personal information, location, content (wine journal and tasting notes entries), actionable events (stamps, wish list adds, etc.) and uploaded media (profile, wine journal and tasting note photos). Personal information includes full name, email address, city, state and password, all of which is required for access to Application. All other data (street address, age, zip code, phone, etc.) is optional. Owner and Application do not require, never ask for or store any credit card and other User payment information. Owner is not liable for the unauthorized release of any data, which is stored by Owner on a secure remote third-party server and locally on User device.
User Provided Personal Information Data will never be distributed, shared or sold to any third party, with the exception of:
1) the company that hosts Application servers;
2) MailChimp for “The Tasting Room” subscription, upon User confirmation;
3) the companies that handle the backup transfer of data from the Application servers to local and cloud-based servers. For more, see “Third-party access to information” below;
4) friend search, which User’s profile photo, name, city and state are made available; all connections must be agreed upon by both Users;
5) tasting notes feature User’s name and profile photo; User has option to make public or private;
6) wine purchase, tasting and club lead requests, which, along with personal information, may also require street address, phone number and age, is shared with wineries. If lead goes unclaimed by winery, Owner may provide request to partner to fulfill;
7) lead, message or feedback submissions where User opts into marketing, which may result in email, mail and other messaging from Owner, Application or winery; User is made aware which will send the marketing upon submission;
8) the event of a reorganization, merger, sale, joint venture, transfer of Owner control of Application occurs;
9) in compliance under applicable law, to comply with the legal process, to protect Owner from any liability with User use of Application.
Social: User has the option to sign in via their Facebook or Google accounts to Application. Authentication for the connection is completed by Facebook or Google. Owner has no access to, nor does it retain, login credentials. Application will attempt to import User’s full name, city and state. User may disconnect social accounts through Facebook settings. Application will not make posts on behalf of User unless User authorizes the request (i.e. sharing a tasting visit). Please read full terms on Facebook for more information regarding authentication.
In-App Purchases: Application on iOS offers in-app purchase to remove any display advertising, but not native advertising. Billing occurs through iTunes and Owner doesn’t see or have access to User billing information. All transaction-related questions should be directed to Apple.
Location: Application use location information on nearby and map searches to display wineries near User location. User location also obtained upon winery stamp in order to verify if stamp took place at winery. Application will ask for permission to access User location in order for any of this information to be obtained and, in all cases, stored. User may enable or disable location services in their device settings.
Messages: User may receive messages within Application from wineries in scenarios, including, but not limited to: 1) user stamped Application at winery; 2) user has winery on their wish list; 3) User requested to join a wine club, book tasting and/or buy wine. User may also receive messages from Owner. For 1. and 2., no personally identifiable information is shared with these wineries. For 3., User has option to share or not to share information with winery and partner.
Emails: User may receive emails in the following scenarios, but not limited to: 1. friend requests; 2. Application messages (see “Messages”); 3. reminders to rate a recent tasting visit; 4. confirmations upon message, feedback, lead and other submissions. Winery doesn’t ever have access to User’s email unless User provides. User may opt out of messages 1, 2 and 3 using the link in the email.
Automatically Collected Information – Application may collect certain User information automatically, such as the type of mobile device, geographic location, mobile operating system, and information about Application usage. See “Automatic Data Collection and Advertising” section for examples.
Do third parties see and/or have access to information obtained by Application?
Application does not have access to User mobile number or mobile UDID. User data is stored on a secure remote server, then backup mirrored: 1) weekly by the company that hosts the Application servers; 2) daily by the companies that handle remote backup, which use military-grade encryption, to local and cloud-based servers. User email address will be sent to MailChimp for potential subscription to the Application newsletter, “The Vineyard,” upon successful registration. User must select “Subscribe” within the email to opt-in. User may delete the email to not subscribe or opt out at any time to unsubscribe. Recommended Winery partners have access to aggregate stamps, wish list adds and other data related to their business, but never User personal information. Wineries will have access to your personal information if you submit a wine purchase, tasting or club lead request through Application. These requests are optional and User initiated. If lead is unclaimed, Owner will provide information to partner to fulfill request.
Automatic Data Collection and Advertising
Application is supported in part via advertising, and collects data to help Application serve ads. Owner works with analytics and monitoring companies to help understand how Application is being used, such as the frequency and duration of usage, and Application performance. Owner work with advertisers and third-party advertising networks, who need to know how User interact with advertising provided in Application.
Application stores User’s device advertising identifier and device token upon sign in, and User click data based on usage of Application.
What are my opt-out rights?
User has multiple Application opt-out options:
Opt-out of all information collection by uninstalling Application – User can stop all collection of information by Application easily by uninstalling Application. User may use the standard uninstall processes as may be available as part of your mobile device or via the mobile application marketplace or network.
Opt-out from the use of information to serve targeted advertising by advertisers and/or third-party network advertisers by upgrading to the Certified version of Application.
Data Retention Policy, Managing Your Information
Owner will retain User Provided Data and analytics data for as long as User use Application and thereafter. If User would like Owner to delete User Provided Data that has been provided via Application, please reach out using the Application support form and Owner will respond in a reasonable time. Please note that some or all of the User Provided Data may be required in order for Application to function properly, and Owner may be required to retain certain information by law.
Owner does not use Application to knowingly solicit data from or market to individuals under the age of 18 (Canada) and 21 (United States). Owner does not condone the use of Application by anyone under the age of 18 in Canada, 21 in the United States or the legal age of alcohol consumption in User territory. If a parent or guardian becomes aware that his or her child has provided Owner with information without their consent, he or she should reach out using the Application support form. Owner will delete such information from our files within a reasonable time.
Owner is concerned about safeguarding the confidentiality of User information. Owner provide physical, electronic, and procedural safeguards to protect information that is processed and maintained. For example, Owner limit access to this information to authorized employees and contractors who need to know that information in order to operate, develop or improve Application. Please be aware that, although Owner acts to provide reasonable security for information that is processed and maintained, no security system can prevent all potential security breaches. Owner is not liable for the unauthorized release of any data.