Privacy Policy for Nothing Can Stop This s.r.o
Effective Date: May 7, 2025
Nothing Can Stop This s.r.o ("we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your data in compliance with applicable laws, including the General Data Protection Regulation (GDPR) in the European Union and relevant privacy laws in the United States, such as the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA). This policy applies to all users of our services, website, and any other interactions with our business.
1. Information We Collect
We collect information that you provide to us directly, information collected automatically, and information from third parties, as described below:
a. Personal Information You Provide
Contact Information: Name, email address, phone number, or mailing address when you register, contact us, or make a purchase.
Account Information: Username, password, and other details when you create an account.
Payment Information: Credit card details, billing address, or other financial information processed through secure third-party payment processors.
User-Generated Content: Feedback, reviews, comments, or other content you submit to us.
Other Information: Any additional information you voluntarily provide, such as through surveys, forms, or customer support interactions.
b. Information Collected Automatically
Usage Data: Information about your interactions with our website or services, including IP address, browser type, operating system, pages visited, and time spent on our site.
Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to enhance your experience, analyze usage, and deliver personalized content. See Section 8 for details on cookies.
Device Information: Hardware model, device identifiers, and network information when you access our services.
Location Data: Approximate location based on IP address or precise location if you enable location services (with your consent).
c. Information from Third Parties
Third-Party Services: Information from social media platforms, analytics providers, or other partners when you link accounts or interact with our services through their platforms.
Publicly Available Information: Data from public sources, such as business directories, to enhance our services or verify your information.
2. How We Use Your Information
We use your information for the following purposes, subject to applicable legal bases under GDPR (e.g., consent, contract, legitimate interest) and U.S. laws:
To Provide and Improve Services: Process transactions, deliver products or services, manage accounts, and enhance user experience.
To Communicate: Respond to inquiries, send transactional emails (e.g., order confirmations), and provide customer support.
For Marketing and Personalization: Send promotional offers, newsletters, or targeted advertisements (with your consent where required). You may opt out at any time (see Section 6).
For Analytics and Research: Analyze usage trends, monitor performance, and improve our website and services.
For Security and Fraud Prevention: Protect against unauthorized access, detect fraudulent activity, and ensure the security of our systems.
To Comply with Legal Obligations: Fulfill regulatory requirements, respond to legal requests, or enforce our terms and policies.
3. Legal Bases for Processing (GDPR)
For users in the European Economic Area (EEA), we process personal data based on the following legal grounds under GDPR:
Consent: Where you have given explicit consent, such as for marketing communications or certain cookies.
Contract: To fulfill our obligations under a contract, such as delivering products or services you purchased.
Legal Obligation: To comply with legal requirements, such as tax reporting or responding to authorities.
Legitimate Interests: For purposes like improving our services, preventing fraud, or ensuring network security, provided these interests do not override your rights.
4. How We Share Your Information
We do not sell your personal information. We may share your data in the following circumstances:
Service Providers: With trusted third-party vendors (e.g., payment processors, hosting providers, analytics services) who process data on our behalf under strict confidentiality agreements.
Business Transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred to a successor entity, with notice to you where required.
Legal Requirements: To comply with laws, court orders, or government requests, or to protect our rights, property, or safety.
With Your Consent: When you explicitly agree to share your data, such as through third-party integrations.
All third parties we share data with are required to comply with applicable privacy laws and maintain appropriate safeguards.
5. Your Rights and Choices
a. GDPR Rights (EEA Residents)
Under GDPR, you have the following rights regarding your personal data:
Access: Request a copy of the personal data we hold about you.
Rectification: Correct inaccurate or incomplete data.
Erasure: Request deletion of your data, subject to legal exemptions (e.g., data needed for tax purposes).
Restriction: Limit how we process your data in certain circumstances.
Portability: Receive your data in a structured, machine-readable format or have it transferred to another controller.
Objection: Object to processing based on legitimate interests, including for direct marketing.
Withdraw Consent: Revoke consent at any time where processing relies on consent, without affecting prior lawful processing.
To exercise these rights, contact us at [insert contact email] or via the contact details in Section 12. We will respond within one month, extendable by two months for complex requests.
b. CCPA/CPRA Rights (California Residents)
Under the CCPA/CPRA, California residents have the following rights:
Know: Request details about the categories and specific pieces of personal information we collect, use, disclose, or sell.
Delete: Request deletion of your personal information, subject to exemptions.
Opt-Out of Sale: Opt out of the sale of your personal information. We do not sell personal information.
Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
To exercise these rights, submit a request via [insert contact email] or call [insert toll-free number]. We will verify your identity and respond within 45 days, extendable by an additional 45 days if necessary.
c. Other Choices
Marketing Opt-Out: Unsubscribe from marketing emails by clicking the "unsubscribe" link in our emails or contacting us.
Cookies: Manage cookie preferences through our cookie consent tool or browser settings (see Section 8).
Do Not Track: Our website does not respond to Do Not Track signals, but you can opt out of tracking via cookie settings.
6. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, or resolve disputes. For example:
Account data is retained while your account is active and for a reasonable period thereafter (e.g., for customer support or legal compliance).
Transaction data is kept for at least seven years to comply with tax and accounting laws.
Marketing data is retained until you unsubscribe or request deletion.
When data is no longer needed, we securely delete or anonymize it.
7. International Data Transfers
As a business operating in both the EU and the U.S., we may transfer personal data across borders. For EEA residents, transfers outside the EEA (e.g., to U.S. servers) are conducted in compliance with GDPR, using:
Standard Contractual Clauses (SCCs): Legally binding agreements ensuring data protection by recipients.
Adequacy Decisions: Where applicable, transferring data to countries deemed to have adequate data protection by the European Commission.
Other Safeguards: Binding corporate rules or certifications, where appropriate.
We ensure all transfers meet GDPR and CCPA requirements and maintain appropriate safeguards.
8. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience, analyze usage, and deliver personalized content. Cookies may include:
Essential Cookies: Necessary for website functionality (e.g., session management).
Performance Cookies: Collect analytics data to improve our services.
Functional Cookies: Enable enhanced features, such as remembering preferences.
Advertising Cookies: Deliver targeted ads based on your interests (with consent where required).
You can manage cookie preferences through our cookie consent tool or your browser settings. Note that disabling certain cookies may affect website functionality. For more details, see our Cookie Policy.
9. Security
We implement industry-standard technical and organizational measures to protect your data, including:
Encryption of data in transit (e.g., HTTPS) and at rest.
Access controls to limit data access to authorized personnel.
Regular security audits and vulnerability assessments.
Secure third-party vendors compliant with GDPR and CCPA.
While we strive to protect your data, no system is completely secure. If you suspect unauthorized access, contact us immediately.
10. Children’s Privacy
Our services are not directed to individuals under 16 (or 13 in the U.S. under COPPA). We do not knowingly collect personal information from children. If we learn that a child’s data has been collected, we will delete it promptly. Contact us if you believe we have inadvertently collected such data.
11. Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in our practices, legal requirements, or operational needs. We will notify you of material changes by posting the updated policy on our website or, where required, by email or other means. The updated policy will take effect upon posting, unless otherwise stated.
12. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
Nothing Can Stop This s.r.o
admin@ncst.studio
13. Additional Information for California Residents
Under the CCPA/CPRA, we disclose the following:
Categories of Personal Information Collected: Identifiers (e.g., name, email), commercial information (e.g., purchase history), internet activity (e.g., browsing data), geolocation data, and inferences drawn from this data.
Categories Shared with Third Parties: Identifiers, commercial information, and internet activity shared with service providers for operational purposes.
No Sale of Personal Information: We do not sell personal information as defined by the CCPA.
Right to Opt-Out: Not applicable, as we do not sell personal information.
Privacy Policy for Nothing Can Stop This s.r.o
Effective Date: May 7, 2025
Nothing Can Stop This s.r.o ("we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your data in compliance with applicable laws, including the General Data Protection Regulation (GDPR) in the European Union and relevant privacy laws in the United States, such as the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA). This policy applies to all users of our services, website, and any other interactions with our business.
1. Information We Collect
We collect information that you provide to us directly, information collected automatically, and information from third parties, as described below:
a. Personal Information You Provide
Contact Information: Name, email address, phone number, or mailing address when you register, contact us, or make a purchase.
Account Information: Username, password, and other details when you create an account.
Payment Information: Credit card details, billing address, or other financial information processed through secure third-party payment processors.
User-Generated Content: Feedback, reviews, comments, or other content you submit to us.
Other Information: Any additional information you voluntarily provide, such as through surveys, forms, or customer support interactions.
b. Information Collected Automatically
Usage Data: Information about your interactions with our website or services, including IP address, browser type, operating system, pages visited, and time spent on our site.
Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to enhance your experience, analyze usage, and deliver personalized content. See Section 8 for details on cookies.
Device Information: Hardware model, device identifiers, and network information when you access our services.
Location Data: Approximate location based on IP address or precise location if you enable location services (with your consent).
c. Information from Third Parties
Third-Party Services: Information from social media platforms, analytics providers, or other partners when you link accounts or interact with our services through their platforms.
Publicly Available Information: Data from public sources, such as business directories, to enhance our services or verify your information.
2. How We Use Your Information
We use your information for the following purposes, subject to applicable legal bases under GDPR (e.g., consent, contract, legitimate interest) and U.S. laws:
To Provide and Improve Services: Process transactions, deliver products or services, manage accounts, and enhance user experience.
To Communicate: Respond to inquiries, send transactional emails (e.g., order confirmations), and provide customer support.
For Marketing and Personalization: Send promotional offers, newsletters, or targeted advertisements (with your consent where required). You may opt out at any time (see Section 6).
For Analytics and Research: Analyze usage trends, monitor performance, and improve our website and services.
For Security and Fraud Prevention: Protect against unauthorized access, detect fraudulent activity, and ensure the security of our systems.
To Comply with Legal Obligations: Fulfill regulatory requirements, respond to legal requests, or enforce our terms and policies.
3. Legal Bases for Processing (GDPR)
For users in the European Economic Area (EEA), we process personal data based on the following legal grounds under GDPR:
Consent: Where you have given explicit consent, such as for marketing communications or certain cookies.
Contract: To fulfill our obligations under a contract, such as delivering products or services you purchased.
Legal Obligation: To comply with legal requirements, such as tax reporting or responding to authorities.
Legitimate Interests: For purposes like improving our services, preventing fraud, or ensuring network security, provided these interests do not override your rights.
4. How We Share Your Information
We do not sell your personal information. We may share your data in the following circumstances:
Service Providers: With trusted third-party vendors (e.g., payment processors, hosting providers, analytics services) who process data on our behalf under strict confidentiality agreements.
Business Transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred to a successor entity, with notice to you where required.
Legal Requirements: To comply with laws, court orders, or government requests, or to protect our rights, property, or safety.
With Your Consent: When you explicitly agree to share your data, such as through third-party integrations.
All third parties we share data with are required to comply with applicable privacy laws and maintain appropriate safeguards.
5. Your Rights and Choices
a. GDPR Rights (EEA Residents)
Under GDPR, you have the following rights regarding your personal data:
Access: Request a copy of the personal data we hold about you.
Rectification: Correct inaccurate or incomplete data.
Erasure: Request deletion of your data, subject to legal exemptions (e.g., data needed for tax purposes).
Restriction: Limit how we process your data in certain circumstances.
Portability: Receive your data in a structured, machine-readable format or have it transferred to another controller.
Objection: Object to processing based on legitimate interests, including for direct marketing.
Withdraw Consent: Revoke consent at any time where processing relies on consent, without affecting prior lawful processing.
To exercise these rights, contact us at [insert contact email] or via the contact details in Section 12. We will respond within one month, extendable by two months for complex requests.
b. CCPA/CPRA Rights (California Residents)
Under the CCPA/CPRA, California residents have the following rights:
Know: Request details about the categories and specific pieces of personal information we collect, use, disclose, or sell.
Delete: Request deletion of your personal information, subject to exemptions.
Opt-Out of Sale: Opt out of the sale of your personal information. We do not sell personal information.
Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
To exercise these rights, submit a request via [insert contact email] or call [insert toll-free number]. We will verify your identity and respond within 45 days, extendable by an additional 45 days if necessary.
c. Other Choices
Marketing Opt-Out: Unsubscribe from marketing emails by clicking the "unsubscribe" link in our emails or contacting us.
Cookies: Manage cookie preferences through our cookie consent tool or browser settings (see Section 8).
Do Not Track: Our website does not respond to Do Not Track signals, but you can opt out of tracking via cookie settings.
6. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, or resolve disputes. For example:
Account data is retained while your account is active and for a reasonable period thereafter (e.g., for customer support or legal compliance).
Transaction data is kept for at least seven years to comply with tax and accounting laws.
Marketing data is retained until you unsubscribe or request deletion.
When data is no longer needed, we securely delete or anonymize it.
7. International Data Transfers
As a business operating in both the EU and the U.S., we may transfer personal data across borders. For EEA residents, transfers outside the EEA (e.g., to U.S. servers) are conducted in compliance with GDPR, using:
Standard Contractual Clauses (SCCs): Legally binding agreements ensuring data protection by recipients.
Adequacy Decisions: Where applicable, transferring data to countries deemed to have adequate data protection by the European Commission.
Other Safeguards: Binding corporate rules or certifications, where appropriate.
We ensure all transfers meet GDPR and CCPA requirements and maintain appropriate safeguards.
8. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience, analyze usage, and deliver personalized content. Cookies may include:
Essential Cookies: Necessary for website functionality (e.g., session management).
Performance Cookies: Collect analytics data to improve our services.
Functional Cookies: Enable enhanced features, such as remembering preferences.
Advertising Cookies: Deliver targeted ads based on your interests (with consent where required).
You can manage cookie preferences through our cookie consent tool or your browser settings. Note that disabling certain cookies may affect website functionality. For more details, see our Cookie Policy.
9. Security
We implement industry-standard technical and organizational measures to protect your data, including:
Encryption of data in transit (e.g., HTTPS) and at rest.
Access controls to limit data access to authorized personnel.
Regular security audits and vulnerability assessments.
Secure third-party vendors compliant with GDPR and CCPA.
While we strive to protect your data, no system is completely secure. If you suspect unauthorized access, contact us immediately.
10. Children’s Privacy
Our services are not directed to individuals under 16 (or 13 in the U.S. under COPPA). We do not knowingly collect personal information from children. If we learn that a child’s data has been collected, we will delete it promptly. Contact us if you believe we have inadvertently collected such data.
11. Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in our practices, legal requirements, or operational needs. We will notify you of material changes by posting the updated policy on our website or, where required, by email or other means. The updated policy will take effect upon posting, unless otherwise stated.
12. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
Nothing Can Stop This s.r.o
admin@ncst.studio
13. Additional Information for California Residents
Under the CCPA/CPRA, we disclose the following:
Categories of Personal Information Collected: Identifiers (e.g., name, email), commercial information (e.g., purchase history), internet activity (e.g., browsing data), geolocation data, and inferences drawn from this data.
Categories Shared with Third Parties: Identifiers, commercial information, and internet activity shared with service providers for operational purposes.
No Sale of Personal Information: We do not sell personal information as defined by the CCPA.
Right to Opt-Out: Not applicable, as we do not sell personal information.