Privacy Policy
At Free Speech Bus (“we,” “us,” or “our”), accessible via freespeechbus.com (the “Website”), we are strongly committed to protecting your privacy and handling your information in a secure and transparent manner. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit and interact with our Website. We honor your fundamental right to data privacy and aim to uphold the highest standards of data protection, in accordance with applicable laws including the European Union’s General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Commitment to Privacy and Data Protection
We recognize the importance of your personal data and are committed to safeguarding it through responsible practices. Our approach is privacy-first: we collect only what is needed, process it lawfully and transparently, and grant you the rights and choices you deserve concerning your information.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through freespeechbus.com or any affiliated services. Free Speech Bus is the data controller for purposes of the GDPR and any relevant U.S. privacy laws, which means we determine the purposes and means of processing your personal data.
If you have any questions regarding this Privacy Policy or our data protection practices, please contact us at [email protected].
3. Categories of Data We Process
We only collect personal data necessary for providing our services, enhancing your experience, and fulfilling legal or contractual obligations. The categories of personal data we collect include:
a. Usage Data
We collect information automatically regarding your interaction with the Website, including IP address, browser type and version, pages visited, session duration, referring/exit pages, and other diagnostic data.
b. Account Data
When you create an account, subscribe to our services, or provide information via forms, we collect details such as your name, email address, phone number, and mailing address.
c. Profile Data
We may collect information related to your preferences, event participation, interests, and behavioral data to better tailor offerings and communications.
d. Communication Data
This includes messages you send via contact forms, customer support inquiries, email communications, and related metadata.
e. Technical Data
Collected from your device and browser, this includes system configuration data, device type, operating system, screen resolution, and mobile network information.
f. Transaction Data
Details of purchases, donations, or any financial transactions made via the Website, including payment identifiers and delivery preferences.
g. Preference Data
Marketing subscriptions, consent choices, and product interest indicators that help us offer appropriate content and outreach.
We do not collect sensitive personal information such as racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, or genetic and biometric data unless explicitly required and consented to.
4. Legal Bases for Processing
We process personal data only where lawfully permitted to do so, under one or more of the following legal bases:
– Consent: When you explicitly consent to us processing your personal data for one or more specified purposes (e.g., marketing subscriptions).
– Contractual Necessity: When data processing is required to fulfill a contract or pre-contractual obligations (e.g., processing transactions or delivering services).
– Legal Obligation: Where we are required to comply with a legal or regulatory obligation.
– Legitimate Interests: Where processing is necessary for our legitimate interests, such as improving Website functionality, fraud prevention, or protecting against misuse, provided it does not override your fundamental rights and freedoms.
5. Your Rights Under GDPR and CCPA
You have specific rights concerning your personal data, some of which are subject to limitations as defined by law:
– Right of Access: To obtain a copy of your personal data we hold.
– Right to Rectification: To correct any inaccurate or incomplete data.
– Right to Erasure: To request deletion of your data where there’s no compelling reason for continued processing.
– Right to Restriction: To limit the processing of your personal data.
– Right to Data Portability: To receive your data in a structured, commonly used, and machine-readable format, or request its transfer to another controller.
– Right to Object: To object to specific uses of your data, such as direct marketing.
– Right to Non-Discrimination: Under the CCPA, you will not be discriminated against for exercising any privacy rights.
– Right to Opt-Out: You may instruct us not to sell or share your personal data (where applicable), or to limit the use of sensitive personal data.
To exercise any of the above rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational safeguards to protect your data against unauthorized access, disclosure, alteration, or destruction. Key measures include:
– SSL encryption in data transmission
– Role-based access and password protection protocols
– Regular data backups
– System monitoring and pseudonymization techniques
– Employee data protection and confidentiality training
Despite our efforts, no environment is completely secure. We therefore encourage users to take appropriate steps to protect their own information and devices.
7. International Transfers
Where data is transferred outside of the European Economic Area (EEA), we employ adequate safeguards including:
– Standard Contractual Clauses approved by the European Commission
– Adequacy determinations for specific jurisdictions
– Other appropriate legal mechanisms
By interacting with freespeechbus.com, you acknowledge and consent to such international transfers, where required.
8. Data Retention
We retain your personal data only as long as necessary to fulfill its purposes, comply with our legal obligations, and enforce our agreements. Retention periods vary depending on data type:
– Usage and Technical Data: Up to 26 months
– Account and Profile Data: Active duration of account plus up to 2 years
– Communication Data: Up to 3 years post-resolution
– Transaction Data: Retained for 7 years due to financial and tax regulations
– Preference Data: Until opt-out is exercised or consent is withdrawn
9. Cookie Policy
We use cookies and similar tracking technologies (e.g., pixels, scripts) to enhance user experiences and collect analytics. Cookies may be:
– Essential Cookies: Required for Website functionality (e.g., navigation, login)
– Functional Cookies: Enable customized features (e.g., saving settings)
– Analytics Cookies: Collect data on user behavior and engagement to improve services
– Performance Cookies: Assist in monitoring Website performance and identifying issues
We do not use cookies to collect sensitive personal information or to sell personal data to third parties.
10. Cookie Management and Compliance Mechanisms
To comply with GDPR and CCPA standards, we offer clear opt-in and opt-out choices for non-essential cookies:
– Cookie Consent Banner: Presented upon first access to provide granular control over stored cookies.
– Browser Settings: You may disable or delete cookies through your browser.
– “Do Not Sell My Information” Link: Featured as required under CCPA.
– Consent Preferences Portal: Where applicable, allows you to revoke or modify consent.
11. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect or solicit personal data from minors. If we become aware that a child under 13 has provided personal information, we will promptly delete it. Parents or guardians with concerns should contact us at [email protected].
12. Updates to This Privacy Policy
We reserve the right to revise this Privacy Policy from time to time to reflect legal, operational, or technological changes. In the event of significant modifications, where legally required, we will seek your renewed consent or provide direct notice. Continued use of freespeechbus.com signifies your agreement to the updated policy.
13. Contacting Us
Your privacy matters. If you have any questions, feedback, complaints, or requests regarding this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
We take all privacy-related communications seriously and aim to respond promptly and transparently in accordance with applicable laws.
Compliance Statement
Free Speech Bus is committed to complying with all applicable data protection regulations, including but not limited to the GDPR and CCPA. We encourage users to reach out at any time to [email protected] with concerns regarding their privacy rights or how their data is handled.