Privacy Policy

Effective Date:2025-04-28

 

This Privacy Policy for ATOMBEAT TECHNOLOGY PTE.LTD. and its affiliates("Atombeat", "we," "us," or "our") describes how and why we might collect, store, use, and/or share ("process") your data when you use our services ("Services"), such as when you ("Users"):

       Visit the website, app, mini programs, and any new forms that may emerge with technological advancements (hereinafter collectively referred to as Platform) of the Bohrium Research Space Station, and the various products and services provided to you, or any website of ours that links to this Privacy Policy.

       Engage with us in other related ways, including any sales, marketing, or events.

 

Questions or concerns?

Reading this Privacy Policy will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at support@bohrium.com

 

Summary of Key Points

This summary provides key points from our Privacy Policy, but you can find out more details about any of these topics by using our table of contents below to find the section you are looking for.

What personal data do we process? When you visit, use, or navigate our Services, we may process personal data depending on how you interact with us and the Services, the choices you make, and the products and features you use.

Do we receive any data from third parties? We may receive data from public databases, marketing partners, social media platforms, and other outside sources.

How do we process your data? We process your data to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your data for other purposes with your consent. We process your data only when we have a valid legal reason to do so.

In what situations and with which types of parties do we share personal data? We may share data in specific situations and with specific categories of third parties.

How do we keep your data safe? We have organizational and technical processes and procedures in place to protect your personal data. However, no electronic transmission over the internet or data storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your data.

What are your rights? Depending on where you are located geographically, the applicable privacy law may mean you have certain rights regarding your personal data.

How do you exercise your rights? The easiest way to exercise your rights is by contacting us. We will consider and act upon any request in accordance with applicable data protection laws.

 

Want to learn more about what we do with any data we collect? Review the Privacy Policy in full.

 

 

Table of Contents

1. Who Is Responsible for Data Processing?

2. Whom Can You Contact?

3. What Data Do We Process?

3.1 Personal Data You Disclose to Us

3.2 Data Automatically Collected

3.3 Data Collected From Other Sources

4. For What Purposes Do We Process Your Data?

5. What Legal Basis Do We Rely on to Process Your Data?

5.1 This Section Applies to Individuals Located in the EU or UK

5.2 This Section Is Applicable to Individuals Located in Canada.

5.3 Exception to Consent

6. Do We Collect Data From Minors?

6.1 No Collection of Personally Identifiable Data From Individuals Under 13 Years Old

6.2 Reporting Provision for Parents or Guardians

6.3 Measures to Remove Data Collected Without Parental Consent

6.4 Parental Consent Requirement for Processing Data

7. How Long Do We Keep Your Data?

7.1 Retention of Personal Data

7.2 Disposal Or Anonymization of Personal Data

8. When and With Whom Do We Share Your Personal Data?

8.1 Sharing of Data With Third-Party Service Providers

8.2 Sharing of Personal Data in Other Specific Situations

9. Do We Use Cookies and Other Tracking Technologies?

9.1 Use of Cookies and Similar Tracking Technologies

9.2 Cookie Settings and Impact on Services

9.3 Do-Not-Track Controls

10. Is Your Data Transferred Internationally?

10.1  Data Transfer and Storage Location

10.2  Data Protection Laws in the European Economic Area (EEA), United Kingdom (UK), or Switzerland

11. How Do We Keep Your Data Safe?

12. What Are Your Privacy Rights?

12.1  Right to Object to Processing

12.2  Exercising Your Rights

13. Do United States Residents Have Specific Privacy Rights?

13.1  What Categories of Personal Information Do We Collect?

13.2  Processing of Personal Data for Targeted Advertising

13.3  Further Information for California Residents

13.4  Further Information for Colorado Residents

13.5  Further Information for Connecticut Residents

13.6  Further Information for Utah Residents

13.7  Further Information for Virginia Residents

14. Do Other Regions Have Specific Privacy Rights?

14.1  Australia and New Zealand

14.2  Republic of South Africa

14.3  Brazil

15. Do We Make Updates to This Policy?

  1. Who Is Responsible for Data Processing?

The Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union, and other provisions related to data protection (hereinafter "Controller") is ATOMBEAT TECHNOLOGY PTE.LTD. and its affiliates.

 

  1. Whom Can You Contact?

If you have questions or comments about this Policy, you may email us at support@bohrium.com

 

  1. What Data Do We Process?
    1. Personal Data You Disclose to Us

In Short: We collect personal data that you provide to us.

We collect personal data that you willingly provide to us when you register on our Services, express an interest in obtaining data about us or our products and services, participate in activities on our Services, or contact us for any other reason.

The personal data that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal data we collect may include the following:

       email addresses;

       usernames;

       data necessary for feedback, complaints, or inquiries, including relevant supporting materials such as images, videos, or text messages. This enables us to promptly address any issues you raise. With your consent, we may utilize the data you voluntarily upload and submit, data generated by calculations, and service log data to provide you with technical support and perform necessary fixes and optimizations.

       Information required to register, activate, and log in as a school userWhen you register, activate, and log in to the account on this Platform as a school user, you can complete the authentication through the unified identity authentication system authorized by your school (hereinafter referred to as the school system). During this process, you authorize us to obtain and verify your personal campus UID(i.e., the unique school identification code), name and other information (subject to the information provided by the school's system) through the school system. The purposes of collection are as follows:

(1)  Identity verification: To confirm your legal identity as a member of the school  through real-time comparison of your personal campus UID, name and other               information with data from the school system.

   (2) Account generation: Based on the personal campus UID, name and other  information, a unique Bohrium Platform UID will be generated to achieve the               association of the account with the school system and control the service permissions.

   (3) Quick login: That is, when you are logged in to the school system, you can directly  log in to the activated Bohrium Platform account with the logged-in school system               account (subject to the display on the platform login page for details).

   (4) Other functions you choose to use and other functions upgraded subsequently to  enhance the service experience of school users.

   If you fail to pass the verification of the school system, you will not be able to complete  the registration, activation, and login of the Bohrium Platform through this method, and               you will not be able to use the business functions that require relevant identity               authentication. However, it will not affect the provision of other services to you by us.

       information required for the academic authentication on the Platform: such as educational email, school information, etc. The aforementioned information collected by us will be used to verify your academic identity and assist you in completing the academic authentication process, enabling you to enjoy the corresponding academic functions and services of the platform. It will not be used for any other purposes without your consent.

3.2   Data Automatically Collected

In Short: Some data - such as your Internet Protocol (IP) address and/or browser and device characteristics - is collected automatically when you visit our Services.

When you visit, use, or navigate our Services, we automatically collect certain data. This data is not personally identifiable (such as your name or contact information), but it includes device and usage data, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, data about your use of our Services, and other technical data. We collect this data primarily to ensure the security and functionality of our Services, as well as for internal analytics and reporting purposes.

The data we collect can be categorized into the following:

  1. Log and Usage Data: This includes service-related diagnostic, usage, and performance data that our servers automatically collect when you access or use our Services. This data is recorded in log files and may include your IP address, device data, browser type. It may also include device event data, such as system activity, error reports, and hardware settings.
  2. Device Data: We collect device-specific data about the computer, phone, tablet, or other device you use to access our Services. This data may include your the browser type and version, the language used by the browser, relevant information about the device's location (IP address), device model, operating system version number, and unique device identifier. This is to enable us to provide you with better services. To ensure the normal operation of functions, we will collect and use information about your mobile device, including the device model, device serial number, operating system version, SN, IMEI, IDFA, IP, MAC address, Android ID, IMSI, VAID, AAID, MID, and OAID. It should be noted that to prevent service interruptions that may affect your user experience, we will still access your device information, such as the Android ID, when the app is in the background state.
  3. Location Data: We collect data about your device's location, which can be either precise or imprecise. The amount of data we collect depends on the type and settings of the device you use to access our Services. For example, we may use GPS and other technologies to collect geolocation data based on your IP address. You have the option to opt out of this data collection by either refusing access to the data or disabling your location setting on your device. However, please note that opting out may restrict your access to certain aspects of our Services.
  4. When you use our App, to ensure that you can maintain instant communication with the back-end server while using the products and/or services of Bohrium Platform, and that you can receive personalized content push notifications in a timely manner, we will:

      a) Obtain and call your device's boot broadcast permission to launch Bohrium Platform;

      b) We adopt a third - party message push service to generate an identification ID for you,  which is used to identify the uniqueness of your device;

      c) Read the device status to determine whether Bohrium Platform is in the foreground or  background, so as to improve the time - effectiveness of the push service.

  5. The information set in your personal profile: We will provide you with personalized recommendation services (including providing you with better user experience and personalized services such as paper recommendations through the notification bar on your mobile phone or tablet, or the list of scientific research documents within the application). When you use the above-mentioned services, we will use the information set in your personal profile, such as your school, major, identity, and research direction, as well as the browsing history information of various contents within the application, such as papers, notebooks, and other app contents. Additionally, we will use the behavioral information such as your likes and language preferences within the application, including data from other relevant applications of DP Technology, to recommend suitable content for you in this application and other applications of DP Technology. You can go to "Menu" > "Account Settings" > "My Account" > "Personalized Recommendations" toggle to turn off the relevant function. After turning off "Personalized Recommendations", you will still receive content recommendations related to "papers", but personalized content will not be pushed by analyzing your personal information.
    1. Data Collected From Other Sources

In Short: We may collect limited data from public databases, marketing partners, social media platforms, and other outside sources.

In accordance with applicable laws and regulations, we may obtain and gather your personal data from public and commercial sources. This is done to enhance our ability to provide you with relevant offers and services, as well as to update our records. The sources from which we collect this data include public databases, joint marketing partners, affiliate programs, data providers, social media platforms, and other third parties.

The personal data we may receive and collect includes mailing addresses, job titles, email addresses, phone numbers, intent data (or user behavior data), Internet Protocol (IP) addresses, social media profiles, social media URLs, and custom profiles. We utilize this data for targeted advertising and event promotion purposes.

Furthermore, if you engage with us on a social media platform using your social media account (e.g., Facebook or Twitter), we may receive personal data about you. This personal data may include your name, email address, and gender. The specific personal data we collect from your social media account is subject to the privacy settings you have chosen for your social media account.

 

3.4 How We Use Your System Permissions

When you use our App, in order to provide you with more convenient and better products and/or services, and in an effort to enhance your experience, we may collect and use your personal information by turning on system permissions in the following additional features we provide to you, such as storage, phone, camera, microphone, calendar, internet connection, install other apps within the app, and create desktop shortcuts. The specific purposes are as follows:

a) Storage Permission: When you open Bohrium Platform for the first time, you can choose to enable this permission to read, modify, or delete the contents in your SD card, which is used for operations such as saving and downloading files.

b) Phone (Device Information) Permission: When you open Bohrium Platform for the first time, you can choose to enable this permission to obtain device information, so as to protect the service and user safety and prevent illegal activities such as fraud.

c) Camera Permission: When you use the camera function in Bohrium Platform, you need to enable this permission to take photos or videos.

d) Contact List Permission: When you use the pre-sales consultation or make phone calls service, you need to enable this permission to read your contact list and select contacts.

e) Microphone Permission: When you use the face-recognition function for real-name authentication in Bohrium Platform, you need to enable this permission to record your real-name authentication video.

f) Face ID/Fingerprint Permission: When you use the security lock verification function in Bohrium Platform, you need to enable this permission to obtain the Face ID/fingerprint permission.

g) Calendar Permission: When you make an appointment for an event or a product, you can choose to enable this permission so that we can send you reminders through the mobile phone system calendar.

h) Software Installation List Permission: When you open Bohrium Platform, you can choose to enable this permission to carry out relevant services such as app security monitoring, so as to protect the security of your account information.

i) Refresh Permission: When you use the background app refresh function in Bohrium Platform, you need to enable this permission to provide you with the refresh function.

j) Floating Window Permission: When you use the floating window function in Bohrium Platform, you need to enable this permission to provide you with the floating function of an independent functional module.

k) Bluetooth Permission: When you participate in a video or voice link-up with a live stream while watching a live stream in our app, you need to enable this permission to provide you with the Bluetooth function.

l) Notification Permission: When you need to receive push notifications and alerts related to Bohrium Platform, you need to enable this permission to provide you with the message push and notification functions.

m) Network Permission: When you need to enable the internet access function to read and update Bohrium Platform in real-time, you need to enable this permission to provide you with the real-time reading and updating functions of Bohrium Platform.

During the process of services, the summary of the mobile device permissions can be found in "Description of Permission Application and Usage". You can also choose to turn off some or all of the permissions at any time in the mobile device settings, thus refusing us to collect your corresponding personal information. The display and turning-off methods of permissions may vary on different devices. Please refer to the device and system instructions or guidelines for details.

 

 

  1. For What Purposes Do We Process Your Data?

In Short: We process your data to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with the law. We may also process your data for other purposes with your consent.

We process your personal data for various purposes, depending on your interactions with our Services. These purposes include:

  1. Account Creation and Authentication: We process your data to facilitate the creation and authentication of user accounts. This allows you to create and log in to your account and ensures the proper functioning of your account.
  2. Service Delivery: We process your data to deliver and facilitate the delivery of services to you. This includes providing you with the requested service and ensuring its proper execution.
  3. User Support and Inquiries: We process your data to respond to your inquiries and offer support. This enables us to address any issues or concerns you may have related to the requested service.
  4. Administrative Communications: We process your data to send you administrative information. This includes details about our products and services, changes to our terms and policies, and other similar information that is necessary for the operation of our Services.
  5. Order Fulfillment and Management: We process your data to fulfill and manage your orders. This includes processing payments, managing returns and exchanges, and ensuring the smooth handling of your orders through our Services.
  6. User-to-User Communications: We may process your data if you choose to use any of our offerings that allow for communication with other users. This enables user-to-user communications and enhances your overall experience with our Services.
  7. Protection of Vital Interests: We may process your data when necessary to protect an individual's vital interests. This includes taking actions to prevent harm or ensure the safety and well-being of individuals.

These processing activities are carried out in accordance with applicable laws and regulations and are necessary for the proper functioning and provision of our Services.

 

  1. What Legal Basis Do We Rely on to Process Your Data?

In Short: We only process your personal data when we believe it is necessary and we have a valid legal reason (i.e., legal basis) to do so under applicable law, like with your consent, to comply with laws, to provide you with services to enter into or fulfill our contractual obligations, to protect your rights, or to fulfill our legitimate business interests.

5.1   This Section Applies to Individuals Located in the EU or UK

In accordance with the General Data Protection Regulation (GDPR) and UK GDPR, we are obligated to provide an explanation of the valid legal bases on which we rely to process your personal data. We rely on the following legal bases for processing your personal data:

  1. Consent: We may process your data if you have provided us with explicit consent to use your personal data for a specific purpose. You have the right to withdraw your consent at any time.
  2. Performance of a Contract: We may process your personal data when it is necessary to fulfill our contractual obligations to you, including providing our Services or at your request prior to entering into a contract with you.
  3. Legal Obligations: We may process your data when it is necessary to comply with our legal obligations, such as cooperating with law enforcement bodies or regulatory agencies, exercising or defending our legal rights, or disclosing your data as evidence in litigation in which we are involved.
  4. Vital Interests: We may process your data when it is necessary to protect your vital interests or the vital interests of a third party, such as in situations involving potential threats to the safety of any person.
    1. This Section Is Applicable to Individuals Located in Canada.

We may process your personal data if you have provided us with specific permission (i.e., express consent) to use your personal data for a particular purpose, or in situations where your permission can be reasonably inferred (i.e., implied consent). You have the right to withdraw your consent at any time.

In certain exceptional cases, we may be legally permitted, under applicable law, to process your data without obtaining your consent. These cases include, but are not limited to, the following:

  1. When the collection of data is clearly in the interests of an individual and obtaining consent is not feasible within a reasonable timeframe.
  2. For the purposes of investigations, fraud detection, and prevention.
  3. In the context of business transactions, provided that certain conditions are met.
  4. When the data is contained in a witness statement and its collection is necessary to assess, process, or settle an insurance claim.
  5. For the purpose of identifying injured, ill, or deceased persons and communicating with their next of kin.
  6. When there are reasonable grounds to believe that an individual has been, is, or may be a victim of financial abuse.
  7. If it is reasonable to expect that collecting and using the data with consent would compromise the availability or accuracy of the data, and the collection is reasonable for the purposes of investigating a breach of an agreement or a contravention of Canadian or provincial laws.
  8. When disclosure is required to comply with a subpoena, warrant, court order, or rules of the court relating to the production of records.
  9. If the data was produced by an individual in the course of their employment, business, or profession, and the collection is consistent with the purpose for which the data was produced.
  10. If the collection is solely for journalistic, artistic, or literary purposes.
  11. If the data is publicly available and is specified by the regulations.
    1. Exception to Consent

Please be aware that there are certain cases in which we are not required to obtain your explicit consent for the collection and use of personal data. These cases include:

  1. Matters related to national security and defense.
  2. Matters related to public safety, public health, and significant public interests.
  3. Matters related to crime investigation, prosecution, trial, and execution of judgments.
  4. When it is necessary to protect the life, property, and other significant legitimate rights and interests of the data subject or other individuals, but obtaining the consent of the data subject is impractical.
  5. When the personal data collected has already been publicly disclosed by the data subject themselves.
  6. When your personal data is collected from legitimate publicly disclosed sources, such as reputable news reports, government information disclosure, and other channels. However, this excludes cases where you explicitly refuse or where handling the data would infringe upon your significant interests.
  7. When it is necessary to enter into a contract at your request.
  8. When it is necessary to maintain the safe and stable operation of the products and/or services provided, such as detecting and resolving malfunctions.
  9. Other cases stipulated by laws and regulations.

If we change the purpose for which we collect and use your personal data, we will seek your authorization once again.

Please note that data that, either alone or in combination with other data, cannot identify you or establish a direct link to you is not considered personal data. However, if we combine such data with other data for the purpose of identifying a natural person as an individual or in combination with personal data, it will be treated as personal data for the duration of the combined use.

 

  1. Do We Collect Data From Minors?

In Short: We do not knowingly collect data from or market to minors Children's Privacy Our Service does not address anyone under the age of 13.

6.1   No Collection of Personally Identifiable Data From Individuals Under 13 Years Old

We do not knowingly collect personally identifiable data from individuals under the age of 13.

6.2   Reporting Provision for Parents or Guardians

Constrained by existing technologies and business models, it is difficult for us to actively identify the personal information of minors during the account registration process. If you are the guardian of a minor and you discover that we have obtained the minor's personal information without authorization, you can contact us through the contact information publicly disclosed in this policy. We will promptly verify the situation upon receiving the notice. If the verification is true, we will promptly delete or anonymize the relevant information. If we proactively review and discover the aforementioned situation, we will also take the initiative to delete or anonymize the relevant personal information.

6.3   Measures to Remove Data Collected Without Parental Consent

In the event that we become aware of collecting Personal Data from individuals under the age of 13 without verification of parental consent, we will take steps to promptly remove that data from our servers.

6.4   Parental Consent Requirement for Processing Data

If we need to rely on consent as a legal basis for processing your data, and your country mandates consent from a parent, we may require your parent's consent before collecting and using that data.

 

  1. How Long Do We Keep Your Data?

In Short: We keep your data for as long as necessary to fulfill the purposes outlined in this Privacy Policy unless otherwise required by law.

7.1   Retention of Personal Data

We will retain your personal data only for as long as necessary for the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law (such as for tax, accounting, or other legal requirements).

7.2   Disposal Or Anonymization of Personal Data

Once we no longer have a legitimate business need to process your personal data, we will either delete or anonymize it. In cases where deletion is not immediately possible (e.g. if your personal data is stored in backup archives), we will securely store your personal data and isolate it from any further processing until deletion becomes feasible.

 

  1. When and With Whom Do We Share Your Personal Data?

In Short: We may share data in specific situations described in this section and/or with the following categories of third parties.

8.1   Sharing of Data With Third-Party Service Providers

We may disclose your data to third-party vendors, service providers, contractors, or agents ("third parties") who perform services on our behalf and require access to such data to fulfill their obligations. We have entered into contracts with these third parties to ensure the protection of your personal data. As per these contracts, they are only authorized to process your personal data as instructed by us and are strictly prohibited from sharing it with any other entity within their organization. They are also obligated to safeguard the data they hold on our behalf and retain it for the duration specified by our instructions. The categories of third parties with whom we may share personal data are as follows:

         Cloud Computing Services

         Communication & Collaboration Tools

         Data Storage Service Providers

         Government Entities

         User Account Registration & Authentication Services

         Website Hosting Service Providers

         Data Analytics Services

8.2   Sharing of Personal Data in Other Specific Situations

We may need to disclose your personal data in the following circumstances:

  1. Business Transfers: We may share or transfer your data in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
  2. Affiliates: We may share your data with our affiliates. In such cases, we will ensure that our affiliates comply with this Privacy Policy. Affiliates include our parent company, subsidiaries, joint venture partners, or other entities under our control or common control.
  3. Business Partners: We may share your data with business partners to offer you specific products, services, or promotions. If you choose to use services provided by third parties on our website, which may involve the embedding of software development kits (SDKs) or similar applications, you acknowledge and agree that your data will be collected and processed directly by those third parties through the SDKs. Please refer to our Information Sharing List for current information regarding third-party SDK services on our platform.
  4. Other lawful reasons provided by law: We may share your personal data with third parties based on other legitimate reasons authorized by applicable law. Examples include responding to public health emergencies or emergency situations necessary for the protection of life, health, and property safety, or conducting news reporting, public opinion monitoring, or other activities in the public interest. We will provide appropriate notification regarding such sharing of information, typically after the emergency situation has been resolved.

 

 

  1. Do We Use Cookies and Other Tracking Technologies?

In Short: We may use cookies and other tracking technologies to collect and store your data.

9.1   Use of Cookies and Similar Tracking Technologies

We may utilize cookies and similar tracking technologies, such as web beacons and pixels, to access or store data. Detailed data on how we employ these technologies and how you can opt out of certain cookies is provided in our Cookie Policy.

9.2   Cookie Settings and Impact on Services

Most web browsers are configured to accept cookies by default. However, you have the option to adjust your browser settings to delete or reject cookies. Please note that such actions may impact certain features or services of our platform. For more information, please refer to our Cookie Policy.

9.3  Do-Not-Track Controls

Certain web browsers, and some mobile operating systems and applications, offer a Do-Not-Track (DNT) feature or setting, enabling you to indicate your preference for not having your online browsing activities monitored and collected. Currently, there is no universally accepted technology standard for recognizing and implementing DNT signals. Consequently, we do not presently respond to DNT browser signals or any other mechanism that automatically communicates your choice to opt out of online tracking. Should a standard for online tracking be established that requires our compliance in the future, we will update this Privacy Policy accordingly to inform you of such practice.

  1. Is Your Data Transferred Internationally?

In Short: We may transfer, store, and process your data in countries other than your own.

10.1  Data Transfer and Storage Location

As part of providing you with the Platform's products and services, we may need to transfer your personal data from your jurisdiction to an overseas jurisdiction. Recipients of the data in these jurisdictions may be subject to data privacy laws less protective or not equivalent to those in your own jurisdiction. Such overseas transfer or processing of your personal data may be necessary to process and administer your account and to provide the products and services (including providing customer services to you, contacting you regarding promotions, products and services, performing risk control, fraud prevention and legal compliance procedures, and conducting payment processing services).

Our servers are situated in the People's Republic of China. If you access our Services from outside the People's Republic of China, please be aware that your data may be transferred to, stored, and processed by us and the third parties with whom we share your personal data (as described in Section 8 "When and With Whom Do We Share Your Personal Data?") in the People's Republic of China and other countries.

10.2  Data Protection Laws in the European Economic Area (EEA), United Kingdom (UK), or Switzerland

If you are a resident of the EEA, UK, or Switzerland, please note that these countries may not have data protection laws or similar comprehensive regulations equivalent to those in your jurisdiction. However, we are committed to taking all necessary measures to protect your personal data in accordance with this Privacy Policy and applicable laws.

 

  1. How Do We Keep Your Data Safe?

In Short: We aim to protect your personal data through a system of organizational and technical security measures.

We have implemented appropriate and reasonable technical and organizational security measures to safeguard the processing of personal data. However, despite our diligent efforts to ensure the security of your data, it is important to note that no electronic transmission over the Internet or storage technology can be guaranteed to be completely secure. Therefore, we cannot provide an absolute assurance or guarantee against unauthorized access, collection, theft, or modification of your data by hackers, cybercriminals, or other unauthorized third parties. While we strive to protect your personal data to the best of our abilities, the transmission of personal data to and from our Services is undertaken at your own risk. It is advised that you access our Services only within a secure environment.

 

  1. What Are Your Privacy Rights?

In Short: In some regions, such as the European Economic Area (EEA), United Kingdom (UK), Switzerland, and Canada, you have rights that allow you greater access to and control over your personal information. You may review, change, or terminate your account at any time.

In certain jurisdictions, such as the EEA, UK, Switzerland, and Canada, you are entitled to specific rights under applicable data protection laws. These rights include:

  1. Right to withdraw consent: You have the right to withdraw your consent for the processing of your personal information at any time. However, please note that the withdrawal of consent does not affect the lawfulness of the processing that occurred prior to the withdrawal, nor does it affect any processing that is permitted by law on grounds other than consent.
  2. Right to object to processing: You have the right to object to the processing of your personal information when such processing is based on legal grounds other than consent.
  3. Right to access personal information: You have the right to know whether your personal information is being processed by us, and if so, to obtain information about certain aspects of the processing and a copy of the personal information being processed. To the extent permitted by law, we may charge a reasonable fee based on the cost of administering the copies of personal information you request.
  4. Right to rectification: You have the right to verify the accuracy of your personal information and request its updating or correction.
  5. Right to restriction of processing: You have the right to restrict the processing of your personal information. In such cases, we will only store your personal information and not process it for any other purpose.
  6. Right to erasure: You have the right to request the erasure or removal of your personal information from our records.
  7. Right to data portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format. If technically feasible, you also have the right to have your personal information transmitted to another controller without any obstacles.
  8. Automated personal decision-making. You have the right to refuse to accept decisions based solely on the automated processing (including analysis) of your personal data that could have a legal or similarly significant impact on you. We will notify you if automated personal decision-making occurs.

Please note that these rights may be subject to certain limitations and exceptions as provided by applicable laws.

12.1  Right to Object to Processing

If your personal information is being processed for public interest, in the exercise of official authority vested in us, or for legitimate interests pursued by us, you have the right to object to such processing by providing grounds related to your particular situation that justify the objection.

However, please note that if your personal information is being processed for direct marketing purposes, you have the right to object to such processing at any time, without charge and without providing any justification. Once you object to processing for direct marketing purposes, your personal information will no longer be processed for such purposes. To determine whether we are processing your personal information for direct marketing purposes, please refer to the relevant sections of this document.

12.2  Exercising Your Rights

To exercise your rights, you can submit a request to us using the contact details provided in Section 2 "Whom Can You Contact?" of this document. Such requests are free of charge and will be promptly addressed by us, ensuring compliance with the information required by law within one (1) month. If necessary, we will also communicate any rectification, erasure, or restriction of processing to each recipient, if any, to whom your personal information has been disclosed, unless this proves impossible or involves disproportionate effort. Upon your request, we will provide you with information about these recipients.

If you are located in the EEA or UK and believe that we are unlawfully processing your personal information, you also have the right to lodge a complaint with your Member State data protection authority or the UK data protection authority.

If you are located in Switzerland, you may contact the Federal Data Protection and Information Commissioner for further assistance.

 

  1. Do United States Residents Have Specific Privacy Rights?

In Short: If you are a resident of California, Colorado, Connecticut, Utah, or Virginia, you are granted specific rights regarding access to your personal information.

13.1  What Categories of Personal Information Do We Collect?

In the past twelve (12) months, we have collected the following categories of personal information. Please note that the examples given below do not represent a complete list and that all categories and examples shown below may not apply to every user.

Category

Examples

Collected

  1. Identifiers

Contact details, such as alias, unique personal identifier, online identifier, Internet Protocol address, email address, and account name

YES

  1. Personal information as defined in the California Customer Records statute

Name, contact information, education, employment, employment history, and

financial information

YES

  1. Protected classification characteristics under state or federal law

Gender and date of birth

NO

  1. Commercial information

Transaction information, purchase history

financial details, and payment information

YES

  1. Biometric information

Fingerprints and voice prints

NO

  1. Internet or other similar network activity

Browsing history, search history, online behavior,  interest data, and interactions with our and other websites, applications, systems, and advertisements

NO

  1. Geolocation data

Device location

YES

  1. Audio, electronic, visual, thermal, olfactory, or similar information

images and audio, video or call recordings created in connection with our business activities

NO

  1. Professional or employment-related information

Business contact details in order to provide you with our Services at a business level or job title, work history, and professional qualifications if you apply for a job with us

NO

  1. Education information

Student records and directory information

NO

  1. Inferences drawn from collected personal information

References drawn from any of the collected personal information listed above to create a profile or summary about, for example, an individual's preferences and characteristics

NO

  1. Sensitive personal information

Social Security numbers, drivers license numbers, passport numbers, and other identification information, precise geolocation data, personal characteristics such as race, ethnicity, and religious beliefs, biometric information (such as fingerprints and genetic data), health information and information regarding sexual life or sexual orientation, content of communications (such as emails and text messages)

NO

We will use and retain the collected above personal information (Category a,b, d, g) as needed to provide the Services or for as long as you have an account with us.

Additionally, we may collect other personal information beyond these categories through various interactions with you, including:

  1. Receiving assistance through our customer support channels.
  2. Participation in customer surveys or contests.
  3. Facilitating the delivery of our Services and responding to your inquiries.
  4. The organization you belong to or the person who arranged for you to access our Services (for example, your employer or the agency you belong to) may provide us with contact information so that we can set up your login information.
  5. Our partners and service providers, such as technology providers associated with your use of our Services.
  6. Public or paid sources, for example, we may obtain information from data resellers or third party marketing lists.

We will not collect any additional categories of personal information without providing prior notification to you.

13.2  Processing of Personal Data for Targeted Advertising

Currently, we do not process your Personal Data for targeted advertising purposes. In the event that we decide to do so, we will inform you in advance and provide you with the right to opt out of such processing of your Personal Data for targeted advertising.

13.3  Further Information for California Residents

This section supplements and incorporates the Privacy Policy of the business operating this Platform, along with its parent, subsidiaries, and affiliates (collectively referred to as "we," "us," "our"). It applies to all Users who are California consumers, as defined by the California Consumer Privacy Act of 2018 (CCPA), as updated by the California Privacy Rights Act (CPRA) and subsequent regulations. For such consumers, this section supersedes any conflicting information in the Privacy Policy. This part of the document uses the term "personal information" as defined in the CCPA/CPRA.

As permitted by the Shine The Light law (California Civil Code Section 1798.83), we allow our California resident users to request and obtain, free of charge and once a year, information about the categories of personal information (if any) that we have disclosed to third parties for direct marketing purposes. We also provide the names and addresses of all third parties with whom we have shared personal information during the preceding calendar year. If you are a California resident and wish to make such a request, please submit a written request using the contact information provided below.

If you are under 18 years of age, reside in California, and have a registered account with our Services, you have the right to request the removal of unwanted data that you have publicly posted. To request the removal of such data, please contact us using the provided contact information and include the email address associated with your account, along with a statement confirming your California residency. While we will ensure that the data is not publicly displayed on our Services, please note that it may not be completely or comprehensively removed from all our systems, including backups.

  1. Your Rights Regarding Personal Information
  1. Right to Request Deletion of Personal Information

You have the right to request the deletion of your personal information. Upon receiving such a request, we will comply and delete your personal information, except in cases where exceptions provided by law apply. These exceptions may include the exercise of another consumer's right to free speech, our legal obligations, or the need to protect against illegal activities.

  1. Right to be Informed

Depending on the circumstances, you have the right to be informed about the following regarding your personal information:

         Whether we collect and use your personal information.

         The categories of personal information that we collect.

         The purposes for which the collected personal information is used.

         Whether we sell or share personal information with third parties.

         The categories of personal information that we have sold, shared, or disclosed for a business purpose.

         The categories of third parties to whom the personal information was sold, shared, or disclosed for a business purpose.

         The business or commercial purpose for collecting, selling, or sharing personal information.

         The specific pieces of personal information we have collected about you.

Please note that in accordance with applicable law, we are not obligated to provide or delete consumer information that has been de-identified in response to a consumer request or to re-identify individual data to verify a consumer request.

  1. Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights.

  1. Right to Limit Use and Disclosure of Sensitive Personal Information

We do not process sensitive personal information of consumers.

  1. Verification Process

To ensure the security and accuracy of your personal information, we will need to verify your identity when you make a request. This verification process may involve asking you to provide information that matches the information we already have on file or contacting you through a previously provided communication method (e.g., email). Additional verification methods may be used as necessary.

The personal information provided in your request will only be used for the purpose of verifying your identity or authority to make the request. We will make every effort to avoid requesting additional information for verification purposes. However, if we are unable to verify your identity based on the information we have, we may request additional information for verification and security purposes. Any additionally provided information will be deleted once verification is complete.

  1. Other Privacy Rights

In addition to the rights mentioned above, you also have the following privacy rights:

         The right to object to the processing of your personal information.

         The right to request correction of your personal information if it is incorrect or no longer relevant, or to request the restriction of its processing.

         The right to designate an authorized agent to make a request under the CCPA on your behalf. We may deny a request from an authorized agent that fails to provide proof of valid authorization in accordance with the CCPA.

  1. Exercise of Rights

To exercise the rights outlined above, you must submit a verifiable request to us using the contact details provided in this document. In order for us to respond to your request, it is necessary for us to verify your identity. Therefore, you may only exercise the aforementioned rights by submitting a verifiable request that must:

         Provide sufficient information to reasonably verify that you are the individual for whom we have collected personal information, or an authorized representative;

         Clearly describe your request in enough detail to enable us to understand, evaluate, and respond to it appropriately.

We will not respond to any request if we are unable to verify your identity and confirm that the personal information we possess is indeed related to you. Creating an account with us is not required to make a verifiable consumer request. Any personal information collected from you for the purpose of verification will be used solely for verification purposes and will not be disclosed, retained longer than necessary, or used for unrelated purposes.

If you are unable to personally submit a verifiable request, you may authorize a person registered with the California Secretary of State to act on your behalf. As an adult, you may also make a verifiable request on behalf of a child under your parental authority. Please note that you may submit a maximum of two requests within a twelve(12)-month period.

  1. Processing of Requests

We will acknowledge receipt of your verifiable request within ten (10) days and provide information on how we will handle your request. We will respond to your request within forty-five (45) days of receipt. If more time is required, we will explain the reasons for the delay and provide an estimated timeframe. Please be aware that in some cases, we may require up to ninety (90) days to fulfill your request. Our disclosure(s) will cover the preceding 12-month period.

You have the right to request personal information collected beyond the twelve(12)-month period. We will provide this information unless it is impossible or would involve a disproportionate effort to do so.

If your request is denied, we will provide an explanation for the denial. We do not charge a fee to process or respond to your verifiable request unless the request is manifestly unfounded or excessive. In such cases, we may charge a reasonable fee or refuse to act upon the request. Regardless, we will communicate our decision and provide the reasons behind it.

  1. Sale of Personal Information

For the purposes of this policy, the term "sale" encompasses any action of "selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic means, a consumer's personal information by the business to a third party, for monetary or other valuable consideration," as defined by the California Consumer Privacy Act (CCPA). This means that a sale may occur when an application displays ads, conducts statistical analyses on traffic or views, or utilizes tools such as social network plugins.

Likewise, the term "sharing" refers to any act of "sharing, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a consumer's personal information by the business to a third party for cross-context behavioral advertising, whether or not for monetary or other valuable consideration, including transactions between a business and a third party for cross-context behavioral advertising for the benefit of a business in which no money is exchanged," as defined by the CCPA.

Please note that the exchange of personal information with a service provider in accordance with a written contract that meets CCPA requirements does not constitute a sale or sharing of your personal information.

  1. Opting Out of Sale or Sharing of Personal Information

We may sell or share your personal information with the third parties listed in detail in Section 8 "When and With Whom Do We Share Your Personal Data?" of this document. These third parties are categorized based on the different purposes of processing.

You have the right to opt out of the sale or sharing of your personal information. This means that if you request us to cease selling or sharing your personal information, we will comply with your request.

You can freely make such requests at any time without the need for a verifiable request.

We will use any personal information collected from you in connection with your opt-out request solely for the purpose of fulfilling the opt-out request.

Once you have opted out, we are required to wait at least twelve (12) months before inquiring if you have changed your mind.

For more information on downloading our GPC, please refer to the relevant section provided.

13.4  Further Information for Colorado Residents

This section of the Privacy Policy is supplementary to and in conjunction with the remaining portions of the document. It is provided by the controller operating this Application and, if applicable, its parent, subsidiaries, and affiliates (collectively referred to as "we", "us", "our" in this section). This section applies to all Users, who are consumers residing in the State of Colorado, in accordance with the "Colorado Privacy Act" (referred to as the "CPA" below), and supersedes any conflicting information in the Privacy Policy. This part of the document uses the term "personal data" as defined in the CPA.

Under the CPA, you have the following rights. However, please note that these rights are not absolute, and in certain circumstances, we may lawfully decline your request:

         Right to be informed of whether we are processing your personal data.

         Right to access your personal data.

         Right to rectify any inaccuracies in your personal data.

         Right to request the deletion of your personal data.

         Right to receive a copy of the personal data you have previously provided to us.

         Right to opt out of the processing of your personal data for targeted advertising, sale of personal data, or profiling that significantly affects legal decisions ("profiling").

If we decline to take action on your request and you wish to appeal our decision, please contact us via email at support@bohrium.com Within forty-five (45) days of receiving your appeal, we will provide you with written notification of the actions taken or not taken in response to your appeal, along with a written explanation of the reasons for our decisions.

  1. Your Rights Regarding Personal Data

You have certain rights regarding the processing of your data by us. Specifically, you have the right to:

  1. Opt out of the processing of your personal data for targeted advertising, sale of personal data, or profiling that significantly affects legal or similarly significant decisions concerning you.
  2. Access your personal data. You can request confirmation of whether or not we are processing your personal data and accessing such data.
  3. Correct inaccurate personal data. You can request the correction of any inaccurate personal data we hold about you, considering the nature and purposes of the processing.
  4. Request the deletion of your personal data. You can request the deletion of any of your personal data.
  5. Obtain a copy of your personal data. We will provide your personal data in a portable and usable format, allowing you to easily transfer it to another entity if technically feasible
  1. Exercise of Rights

To exercise the above rights, you must submit your request to us by contacting us using the provided contact details in this document. We require your identity verification and specification of the right you wish to exercise to respond to your request.

We may not respond to requests if we are unable to verify your identity using commercially reasonable efforts and confirm that the personal data in our possession relates to you. In such cases, we may ask for additional information reasonably necessary to authenticate you and your request. Creating an account is not necessary to make a consumer request, but we may require you to use your existing account. Any personal data collected from you in connection with your request will only be used for authentication purposes, without further disclosure, retention beyond authentication purposes, or unrelated use.

If you are an adult, you can make a request on behalf of a child under your parental authority.

  1. Processing of Requests

We will respond to your request promptly and no later than forty-five (45) days from its receipt. If we require additional time, we will explain the reasons and the estimated timeframe, which may be up to ninety (90) days.

If your request is denied, we will promptly provide a written explanation of the reasons for the denial, within forty-five (45) days from receiving the request. You have the right to appeal this decision by submitting a request to us using the details provided in this document. Within forty-five (45) days of receiving the appeal, we will inform you in writing of any action taken or not taken in response to the appeal, along with a written explanation of the reasons for the decisions. If the appeal is also denied, you may contact the Attorney General to submit a complaint.

We do not charge a fee for responding to your request, up to two requests per year.

  1. Sale of Personal Data

The processing of your personal data by us may qualify as a sale under the Consumer Privacy Act (CPA), as explained in Section 8 "When and With Whom Do We Share Your Personal Data?" of this document. For the purposes of this agreement, the terms "sale", "sell", or "sold" refer to the exchange of personal data for monetary or other valuable consideration from a controller to a third party, as defined by the CPA.

Please note that under the CPA, the disclosure of personal data to a processor that processes personal data on behalf of a controller does not constitute a sale. Additionally, certain exceptions outlined in the CPA may apply, including but not limited to the disclosure of personal data to a third party for providing a requested product or service.

  1. Opting Out of the Sale of Personal Data

You have the right to opt out of the sale of your personal data. If you choose to exercise this right, we will respect your request and cease selling your data. You can exercise your right to opt out by contacting us using the provided contact details in this document. Alternatively, you may utilize the privacy choices link on this Application for a simplified opt-out method.

Any personal data collected from you in connection with your opt out request will be used solely for the purpose of fulfilling the request and ensuring compliance.

13.5  Further Information for Connecticut Residents

This section of the document complements and supplements the information provided in the rest of the Privacy Policy. It is presented by the controller responsible for operating this Application and, if applicable, its parent, subsidiaries, and affiliates (collectively referred to as "we," "us," "our" in this section).

This section applies to all Users, referred to as "you," "your," "yours," who are consumers residing in the State of Connecticut, as defined by "An Act Concerning Personal Data Privacy and Online Monitoring" (also known as "The Connecticut Data Privacy Act" or the "CTDPA"). For such consumers, this section supersedes any conflicting information in the Privacy Policy.

This part of the document uses the term "personal data" as defined in the CTDPA.

  1. Your Rights Regarding Personal Data

Under the CTDPA, you have the following rights. However, please note that these rights are not absolute, and we may decline your request in certain circumstances as permitted by law:

         Right to be informed about the processing of your personal data;

         Right to access your personal data;

         Right to rectify inaccuracies in your personal data;

         Right to request the deletion of your personal data;

         Right to receive a copy of the personal data you previously provided to us;

         Right to opt out of the processing of your personal data for targeted advertising, sale of personal data, or profiling that produces legal or similarly significant effects ("profiling").

  1. Exercise of Rights

To exercise the rights described above, you must submit your request to us using the contact details provided in this document. In order for us to respond to your request, we require sufficient information to verify your identity and identify the right you wish to exercise.

We will not respond to any request if we are unable to verify your identity using commercially reasonable efforts to confirm that the personal data in our possession actually relates to you. In such cases, we may request additional information reasonably necessary for authentication purposes.

Making a consumer request does not require you to create an account with us. However, we may require you to use your existing account. Any personal data collected from you in connection with your request will solely be used for authentication purposes, without further disclosure, retention beyond the necessary authentication period, or unrelated uses.

If you are an adult, you may make a request on behalf of a child under your parental authority.

  1. Processing of Requests

We will promptly respond to your request and ensure that it is processed without undue delay. In all cases, we will provide a response within forty-five (45) days of receiving your request. If we require additional time to fulfill your request, we will inform you of the reasons for the delay and the estimated timeframe for completion.

Please be aware that, in exceptional circumstances, we may require up to ninety (90) days to fulfill your request. If this is the case, we will provide a detailed explanation for the extended timeframe.

If your request is denied, we will promptly explain the reasons for the denial. You have the right to appeal this decision by submitting a request to us using the contact details provided in this document. Upon receipt of the appeal, we will respond within forty-five(45) days, informing you in writing of the actions taken or not taken in response to the appeal. This response will include a written explanation of the reasons behind the decisions made. If the appeal is also denied, you have the option to file a complaint with the Attorney General.

We do not charge any fees for responding to your request, up to one request per year.

  1. Sale of Personal Data

Our use of your personal data may be considered a sale under the CTDPA (Consumer Data Protection Act). For the purposes of this document, "sale", "sell", or "sold" means the exchange of personal data for monetary or other valuable consideration by a controller to a third party, as defined by the CTDPA.

  1. Opting Out of Sale or Sharing of Personal Data

You have the right to opt out of the sale of your personal data. When you request us to stop selling your data, we will comply with your request. To exercise your right to opt out, you can contact us using the provided contact details in this document. Alternatively, you can use the privacy choices link on this Application for a simplified opt-out method.

Use of Personal Data for Opt-Out Requests: Any personal data collected from you in connection with the submission of your opt-out request will be used solely for the purpose of complying with the request.

13.6  Further Information for Utah Residents

This section of the document, provided by the controller operating this Application and, if applicable, its parent, subsidiaries, and affiliates (referred to collectively as "we," "us," "our"), integrates with and supplements the information in the rest of the Privacy Policy. It applies to all Users, specifically consumers residing in the State of Utah, as defined by the "Consumer Privacy Act" (the "UCPA"). For such consumers, this section supersedes any conflicting information in the Privacy Policy.

This part of the document uses the term "personal data" as defined in the UCPA.

  1. Exercise of Rights

To exercise these rights, you must submit your request to us using the contact details provided in this document. We require verification of your identity to respond to your request. If we are unable to verify your identity using commercially reasonable efforts, we may ask for additional information necessary to authenticate you and your request. Creating an account is not necessary to make a consumer request, although we may require you to use your existing account. Any personal data collected from you for authentication purposes will only be used for authentication and will not be disclosed, retained longer than necessary, or used for unrelated purposes. If you are an adult, you may make a request on behalf of a child under your parental authority.

  1. Processing of Requests

We will respond to your request without undue delay, and no later than forty-five(45) days from receipt. If we require more time, we will explain the reasons for the delay and provide an estimated timeframe, which may take up to ninety (90) days. If your request is denied, we will promptly explain the reasons for the denial within forty-five (45) days from receipt. We do not charge a fee for one request per year.

  1. Sale of Personal Data

As outlined in Section 8 "When and With Whom Do We Share Your Personal Data?" of this document, our use of your personal data may be considered a sale under the UCPA. For our purposes, "sale" means the exchange of personal data for monetary or other valuable consideration by a controller to a third party, as defined by the UCPA. Please note that the disclosure of personal data to a processor that processes data on our behalf does not constitute a sale. Specific exceptions set forth in the UCPA may also apply, such as the disclosure of personal data to a third party for the provision of a requested product or service.

We endeavor to respond to verifiable consumer requests within 45 days of receipt. If we need more time (up to 90 days), we will let you know the reason and the extended deadline. We will not normally charge you a fee for fulfilling your request, but we may charge a reasonable administrative fee if your request is clearly unfounded, excessive or repetitive.

  1. Opting Out of Sale or Sharing of Personal Data

You have the right to opt out of the sale of your personal data. When you request us to stop selling your data, we will honor your request. To fully exercise your right to opt out, you can contact us at any time using the provided contact details. For a simplified opt-out method, you can also use the privacy choices link provided on this Application. Any personal data collected in connection with your opt-out request will be used solely for the purpose of complying with the request.

13.7  Further Information for Virginia Residents

This section of the Privacy Policy, provided by the controller operating this Application and, if applicable, its parent, subsidiaries, and affiliates (collectively referred to as "we", "us", "our"), integrates with and supplements the information contained in the rest of the Privacy Policy. This section applies to all Users, referred to as "you", "your", "yours", who are consumers residing in the Commonwealth of Virginia under the "Virginia Consumer Data Protection Act" (VCDPA). For such consumers, this section supersedes any conflicting information in the Privacy Policy. The term "personal data" in this section is defined according to the VCDPA.

  1. Your Rights Regarding Personal Data

Your rights regarding your personal data are as follows:

         Right to be informed whether we are processing your personal data;

         Right to access your personal data;

         Right to correct inaccuracies in your personal data;

         Right to request deletion of your personal data;

         Right to obtain a copy of the personal data you previously shared with us;

         Right to opt out of the processing of your personal data for targeted advertising, sale of personal data, or profiling that produces legal or similarly significant effects ("profiling").

  1. Exercise of Rights

To exercise these rights, you must submit your request to us using the contact details provided in this document. We require verification of your identity to respond to your request. If we are unable to verify your identity using commercially reasonable efforts, we may ask for additional information necessary to authenticate you and your request. Creating an account is not necessary to make a consumer request, although we may require you to use your existing account. Any personal data collected from you for authentication purposes will only be used for authentication and will not be disclosed, retained longer than necessary, or used for unrelated purposes. If you are an adult, you may make a request on behalf of a child under your parental authority.

  1. Processing of Requests

We will promptly respond to your request, ensuring a response is provided no later than forty-five (45) days from the date of receipt. If additional time is required, we will inform you of the reasons for the delay and provide an estimated timeframe. Please note that in certain circumstances, we may require up to ninety (90) days to fulfill your request. If your request is denied, we will promptly provide an explanation for the denial within forty-five (45) days of receiving the request. You have the right to appeal this decision by submitting a request to us using the contact details provided in this document. We will respond to the appeal within sixty (60) days, informing you in writing of any actions taken or not taken, along with a detailed explanation of the reasons for our decisions. If the appeal is denied, you have the option to file a complaint with the Attorney General.

We do not impose a fee for responding to your request, up to a maximum of two requests per year. However, if your request is deemed manifestly unfounded, excessive, or repetitive, we may charge a reasonable fee or refuse to act upon the request. In either case, we will communicate our decision and provide the rationale behind it.

  1. Sale of Personal Data

For the purposes of our policy, "sale" refers to any exchange of personal data for monetary consideration to a third party, as defined by the VCDPA. Please note that under the VCDPA, the disclosure of personal data to a processor acting on behalf of a controller does not constitute a sale. Furthermore, specific exceptions outlined in the VCDPA may apply, such as the disclosure of personal data to a third party for the provision of a requested product or service.

  1. Opting Out of Sale or Sharing of Personal Data

You have the right to opt out of the sale of your personal data. This means that if you request us to cease selling your data, we will comply with your request. To exercise your right to opt out, please contact us using the provided contact details. Any personal data collected from you in connection with your opt-out request will be used solely for the purpose of fulfilling the request.

 

  1. Do Other Regions Have Specific Privacy Rights?

In Short: You may have additional rights based on the country you reside in.

14.1  Australia and New Zealand

We collect and process your personal information in accordance with the obligations and conditions set forth in Australia's Privacy Act 1988 and New Zealand's Privacy Act 2020 (Privacy Act). The term "personal information" in this section is defined according to the Privacy Act.

This Privacy Policy fulfills the notice requirements stipulated in both Privacy Acts. It specifically outlines the personal information we collect from you, the sources from which we collect it, the purposes for which we collect it, and the recipients of your personal information.

Please note that if you choose not to provide the personal information necessary to fulfill the relevant purpose, it may impact our ability to provide certain services, including:

         Offering you desired products or services;

         Responding to or assisting with your requests;

         Managing your account with us;

         Confirming your identity and safeguarding your account.

You have the right to request access to or correction of your personal information at any time. To exercise this right, please contact us using the contact details provided in Section 2 "Whom Can You Contact?"

If you believe that we are unlawfully processing your personal information, you have the right to lodge a complaint regarding a breach of the Australian Privacy Principles with the Office of the Australian Information Commissioner, and a breach of New Zealand's Privacy Principles with the Office of the New Zealand Privacy Commissioner.

14.2  Republic of South Africa

The term "personal information" in this section is defined according to The Protection of Personal Information Act ("POPIA").

You have the right to request access to or correction of your personal information at any time. To exercise this right, please contact us using the contact details provided in Section 2 "Whom Can You Contact?"

If you are dissatisfied with our handling of any complaint related to the processing of your personal information, you may contact the office of the regulator. The contact details for the Information Regulator (South Africa) are as follows:

General enquiries: https://registrations.inforegulator.org.za/landing

Complaints (complete POPIA/PAIA form 5):

https://inforegulator.org.za/wp-content/uploads/2020/07/InfoRegSA-PAIA-Form05-Reg10-1.pdf

14.3  Brazil

a.If you are located in Brazil, under the LGPD you also have the right to:

i. Confirm whether we process your personal data;

ii. anonymize, block or delete any unnecessary or redundant data or data that is not processed in accordance with the LGPD;

iii. to delete personal data that you have consented to being processed;

iv. to obtain information about the entities that share your personal data and the purposes for which they use it;

v. obtain information about the possibility of refusing consent and the consequences of such refusal.

b.We may process your personal data on one or more of the following legal bases:

       where it is necessary to enter into a contract with you or the legal entity you represent, to fulfill our contractual obligations, to provide services, to respond to your requests or to provide customer support;

       where we have a legitimate interest as described above (see “ For What Purposes Do We Process Your Data?”);

       where it is necessary to comply with relevant laws and legal obligations, including responding to lawful requests and orders;

       with your consent.

c. Exercising your data subject rights

You may exercise your data subject rights by submitting a request via email to support@bohrium.com.

Requests under the Data Subject Rights section of the LGPD (Article 18) are free of charge. Please note that the rights granted to you by the LGPD are subject to the exceptions outlined in the LGPD. For example, we may not be able to delete information that we are legally obligated to retain.

While we prefer that you first contact our dedicated team of privacy professionals, you have the right to file a complaint with the Brazilian National Agency for Data Protection (“ANPD”) through official channels.

d. Transferring Your Personal Information Outside of Brazil

We are a global company and your data may be transferred to countries where privacy and data protection laws differ from those in your country, including countries such as the United States. When transferring data across borders, we take steps to comply with applicable data protection laws relating to such transfers.

 

  1. Do We Make Updates to This Policy?

In Short: Yes, we will update this Policy as necessary to stay compliant with relevant laws.

This Privacy Policy may be updated periodically. The revised version will be identified by an updated "Revised" date and will become effective upon accessibility. In the event of significant changes to this Privacy Policy, we may notify you through prominent posting of a notice or direct notification. We encourage you to regularly review this Privacy Policy to stay informed about how we safeguard your data.