Privacy Policy
Last Updated: 11/30/2023 This Privacy Policy (this “Policy”) provides comprehensive information relating to how Nivel Parts & Manufacturing Co., LLC (“Nivel,” “we,” “us,” or “our”) collects, uses, and shares your Personal Information, as defined below, and the rights you have in relation to this data when you visit our website, download, install, register with, access, or use our mobile applications (the “Apps”), apply for a job with us, purchase and use Nivel products, subscribe to our newsletter, send us messages, or otherwise access or use the various content, features, or other services offered by us through the App (collectively, the “Services”). This Privacy Policy does not apply to information that you provide to or that is collected by any third party, even if you access such third parties through the Services. By using the Services, you consent to and agree that we may collect, process, use, retain, share, and transfer your Personal Information as described in this Privacy Policy. This Privacy Policy supplements and is incorporated into our Website and Application Terms of Use, which may be accessed here. By accessing, registering with, uploading, downloading, subscribing to, or otherwise using our Services, you agree to this Privacy Policy and our Website and Application Terms of Use, including any updates thereto.
1. Collection & Usage of Personal Information: Definition, Methods, Categories; Purposes; Third-Party Collections
1.1 Personal Information: When you access our Services, we collect the information you provide to us, and certain information about your Nivel products, mobile device, and interaction with the Services. In this Privacy Policy, we refer to any information that can uniquely identify an individual as “Personal Information.” See the list below for more information about the means of collecting Personal Information, the categories of Personal Information we collect, the purpose of collection, and to whom we may disclose it and why. This Privacy Policy in no way restricts or limits our use of aggregate data. 1.2 Information you provide to us: Personal Information you provide to us is collected directly from you for the business purposes of providing you with our Services, such as delivering information about Nivel products, maintaining information related to your service warranty, managing software, providing software certifications and updates, product development and optimization, and screening the Services for potential risk, copyright infringement, or fraud. 1.3 You may provide us with your Personal Information when you purchase Nivel Products, , use our Services, download, install, register with, access, or use the App, or when you request or use one of our other Services. If you elect to provide us with your Personal Information, you consent to its transfer and storage on our servers. Categories of Personal Information we may collect directly from you includes:
1.4 Services Usage Information: Personal Information may be collected automatically through the Apps or Nivel products when you access the Services. This information is collected for the business purpose of providing and administering the Services for you, to perform analytics on usage, to optimize our Services and aid our understanding of our Services.
1.5 Third-Party Collection: Certain third parties may use automatic information collection technologies, including cross-site tracking technologies, to collect Personal Information about you or your device. These third parties may include, but are not limited to, your internet service provider, your web browser, your mobile service provider, your mobile device manufacturer, online advertisers, and data analytics companies. We do not control these third parties or how they collect, use, or disclose your Personal Information. As stated above, this Privacy Policy is not applicable to third-party collection, use, or disclosure of your Personal Information. If you have any questions about the privacy practices of any third party, you should contact the responsible third party directly.
2. Disclosing Personal Information: Categories, Purposes
2.1 To the Developer: We may share Nivel product Information with the Developer to improve functionality and user experience. Our Developer is located in China, and you acknowledge this information will be shared outside of the United States. 2.2 Subsidiaries, Affiliates, and Business Partners: We may share your Personal Information within our corporate group, including with our subsidiaries, parent organization, and business affiliates in accordance with this Privacy Policy and applicable law. We do so for the purposes of fulfilling your requests to us, performing our contract with you, providing better service to our customers, and managing warranty, repair, or customer feedback. SMS consent is not shared with any other parties. 2.3 Service Providers and Contractors: We may share your Personal Information with service providers and contractors to help us provide our Services and fulfill obligations to you. These service providers and contractors may include database and cloud service providers, billing systems, customer management services, payment processors, shipping companies, installation and cybersecurity services, professional services such as legal and accounting, and advertising and marketing. We may disclose the Personal Information you share with us to our vendors, contractors, or service providers for a legitimate business purpose such as to process your payments, conduct a background check, or ship your products to you. We may disclose the Personal Information we collect indirectly from you to our vendors, contractors, or service providers for a legitimate business purpose such as for search engine optimization, processing our Services, and performance and analytics of our Services. SMS consent is not shared with any other parties. 2.4 Advertising: We may provide advertisements targeted to you based on the Personal Information we retain about you, such as information relevant to your general location. 2.5 Asset Transfer: We may share your Personal Information with a buyer or successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Information held by us is among the assets being transferred. 2.6 Legal Requests:We may share your Personal Information when required to do so by law enforcement, court order, or other legal process such as a subpoena. We generally do not disclose Personal Information unless we have a good faith belief that an information request by law enforcement or private litigants meets applicable legal standards. We may share your Personal Information when we believe it is necessary to comply with applicable laws, to protect our interests or property, to prevent fraud or other illegal activity perpetrated through the services or using our name, or to protect the safety of any person. This may include sharing Personal Information with other companies, lawyers, agents, or government agencies. Nothing in this Privacy Policy is intended to limit any legal defenses or objections that you may have to a third party’s, including a government’s, request to disclose your information. 2.7 Sharing with Consent: We may share your Personal Information at your direction or any time we have your consent to do so, including implicit and tacit consent. This includes sharing your Personal Information as we have disclosed in this Privacy Policy. 2.8 Depersonalized Information: We may share your Personal Information after it is aggregated or otherwise depersonalized such that it is no longer considered Personal Information.
3. Your Choices and Rights: Sharing Choices, U.S. Law, European Economic Area, International Transfers
3.1 Your Choices: We respect your privacy and seek to provide you with options to manage the Personal Information collected about you while you are using our Services. We abide by the privacy laws applicable to you based upon your jurisdiction.
3.2 U.S. State Resident Rights:Many states, including California, Colorado, and Virginia, are passing privacy laws that may apply to you. Consistent with these laws, Nivel gives you options to access, edit, or remove certain information, as well as choices about how we contact you. Although some of these rights apply generally, certain rights will only apply to limited individuals or circumstances. To the extent that these laws apply, you may exercise the rights listed below. If you would like to exercise these rights, please contact us through the means indicated at the end of this Privacy Policy. If you would like to designate an authorized agent to submit these requests on your behalf, please contact us through the means indicated at the end of this Privacy Policy.
- The categories of Personal Information we collected about you;
- The categories of sources for the Personal Information we collected about you;
- Our business or commercial purpose for collecting, sharing, or selling that Personal Information;
- The categories of third parties with whom we share that Personal Information;
- The specific pieces of Personal Information we collected about you (also called a data portability request) and provide a copy to you in an electronic or paper format; and
- The categories of Personal Information, if any, we disclosed for a business purpose to a third party.
3.2.2 Deletion Request Right: You have the right to request that we delete any of your Personal Information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable Consumer request, we will delete (and direct our contractors and service providers to delete) your Personal Information from our (and their) records, unless an exception applies (as described below). As permitted by certain data protection laws, including the California Consumer Privacy Act, we may delete your Personal Information by (a) permanently and completely erasing the Personal Information on our existing systems with the exception of archived or back-up systems; (b) de-identifying the Personal Information; or, (c) aggregating the Personal Information. We may deny your deletion request if retaining the information is necessary for us or one of our contractors or service providers to:
- Complete the transaction for which we collected the Personal Information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you;
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities;
- Debug products to identify and repair errors that impair existing intended functionality;
- Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law;
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.) or other state laws;
- Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us;
- Comply with a legal, regulatory or law enforcement obligation; or
- Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
3.2.3 Exercising Access, Data Portability, Correction, and Deletion Rights: To exercise the access, data portability, and deletion rights described above, please submit a verifiable Consumer request to us by calling using the contact information at the end of this Privacy Policy. Only you, or a person registered with your resident state that you authorize to act on your behalf, may make a verifiable Consumer request related to your Personal Information. You may only make a verifiable Consumer request for access or data portability twice within a 12-month period, or additional charges may apply. To be verifiable, the Consumer request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative of that person and
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm that the Personal Information relates to you. Making a verifiable Consumer request does not require you to create an account with us. We will only use Personal Information provided in a verifiable Consumer request to verify the requestor’s identity or authority to make the request. Upon receiving a data access, correction, data portability or deletion request from you, we will verify your identity based on the information we have on file for you. Upon verification of your identity, we will proceed to process your request (subject to the exceptions stated above). We endeavor to confirm receipt of your request within ten (10) days of receiving it. We will respond to a verifiable Consumer request within forty-five (45) days of its receipt. If we require more time (up to an additional forty-five (45) days), we will inform you of the reason and extension period in writing. We will deliver our written response via email to the email address associated with you or, if we are unable to determine your email address, via mail. Any disclosures we provide will only cover the 12-month period preceding the verifiable Consumer request receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your Personal Information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance. We do not charge a fee to process or respond to your verifiable Consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request. 3.2.4 Non-Discrimination: We will not discriminate against you simply for exercising your rights under data privacy laws, including the CCPA.
3.3 Notice to Nevada Residents: If you are a Nevada resident who wishes to exercise your sale opt-out rights under Nevada Revised Statutes Chapter 603A you may submit a request to the contact information listed at the end of this Privacy Policy. 3.4 Notice to Residents of Non-U.S. Countries: Our headquarters are located in the United States. The Personal Information we or our service providers and contractors collect may be stored and processed in servers within or outside of the United States and certain Personal Information may be accessible by persons or companies outside of the United States who provide services for us. As such, we and our service providers and contractors may transfer your Personal Information to, or access it in, jurisdictions that may not provide equivalent levels of data protection as your home jurisdiction. We will take reasonable steps to ensure that your Personal Information receives an adequate level of protection in the jurisdictions in which we process it. If you are a resident of a country other than the United States, you acknowledge and consent to our collecting, transmitting, transferring, processing, storing, and otherwise using your Personal Information outside of the country in which you reside. Your acceptance of this Privacy Policy or use of our Services constitutes consent, either express, implied, or tacit, to collect, use, and share your Personal Information as indicated herein. 3.5 Notice to Residents of the European Union and United Kingdom: If you are a resident of the European Union or the United Kingdom (also referred to as a “Data Subject”), the General Data Protection Regulation (“GDPR”) provides you with additional rights regarding our use of your Personal Information. This section is provided pursuant to the GDPR. Each capitalized term used, but not defined, in this section shall have the meaning given to such term in the GDPR. This section describes how we collect, share, disclose, and process the Personal Information of residents of the European Union and United Kingdom. “Personal Information” means any information relating to an identified or identifiable natural person (referred to ‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person and includes all “Personal Information” referred to in this Policy.
- Access: You may request a copy of the Personal Information we maintain about you.
- Portability: If we maintain your Personal Information based on your consent or so that we can enter into or perform under a contract with you, you have the right to obtain your Personal Information from us that you consented to give us, that is necessary to enter into or perform the contract, or that is necessary to provide member benefits to you. We will give you your Personal Information in a structured, commonly used and machine-readable format.
- Correction: If you believe your Personal Information is incorrect, you may request that we correct, amend or delete your Personal Information that is inaccurate or incomplete.
- Deletion or Restriction of Processing: You may request that we erase or restrict the processing of your Personal Information.
- Object to Processing: You may object to the processing of your Personal Information in certain circumstances when we process your Personal Information for the purposes of our legitimate interests.
- Right to Complain: You have the right to file a complaint with a supervisory authority, in particular in the European member state of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of your Personal Information infringes upon your rights.
- Withdraw Consent: If we are processing your Personal Information based on your consent to do so, you may withdraw that consent at any time.
Some of these rights can be exercised online via your account. For example, you can review and modify certain information relating to your use of our Services and unsubscribe to email messages. If you are unable to manage your request via your online account, then please contact us using the contact information at the end of this Policy. 3.5.2 Collection of Personal Information: We collect Personal Information that is reasonably necessary for us to provide our Services. Subject to applicable exceptions, we will obtain your consent before collecting, using and disclosing your Personal Information for the specified purposes. In addition to circumstances in which you consent to the use of your Personal Information, the Personal Information we collect may be used or processed where we have a legitimate interest in or other legal basis for processing such data. The categories of your Personal Information we collect and the purposes for which we collect such Personal Information are indicated above in the section entitled “Collecting Personal Information.” If we use Personal Information in ways other than described in this Policy, we will provide you with specific notice at the time of collection. 3.5.3 Sharing Personal Information: The ways in which we share your Personal Information and the purposes for which we share it are indicated above in the section entitled “Sharing Personal Information.” If we use Personal Information in ways other than described in this Policy, we will provide you with specific notice at the time of collection. 3.5.4 Processing Personal Information: We only process Personal Information when we have a legal basis to do so including:
- When you have consented to the processing of your Personal Information, including processing your Personal Information consistent with this Policy, including the advertising purposes disclosed in this Policy;
- When processing is necessary to perform our obligations to you or fulfill a request you have made to us;
- When processing is necessary to comply with a legal obligation that applies to us; or
- When processing is necessary for purposes that are in our legitimate interests and you have given any required explicit or implicit consent to such processing, including protecting the security of our Services, improving the functioning of our Services, or providing you with information about products in which you have expressed interest.
If we need to process your Personal Information to fulfill our obligations to you, failure to provide that Personal Information will mean that we cannot perform our obligations. If we collect your Personal Information for one purpose and need to process it for second purpose, we will provide you with additional information regarding this secondary purpose to ensure fair and transparent processing before we engage in further processing. Collecting and processing your Personal Information to create both general and targeted advertising is a primary purpose for collecting your Personal Information.
4. General Disclosures
4.1 Protecting Children: Our Services are for adults and are not directed to children. Should an individual whom we know to be a child, under the age of 18, send Personal Information to us, we will delete or destroy such information as soon as reasonably possible. If you believe a child has provided us with Personal Information, please contact us through the means indicated at the end of this Policy to request deletion. 4.2 Retention: When you access our Services, we will retain your Personal Information as long as it is necessary for the processing purpose in question or in accordance with our data retention policy. We determine the appropriate retention period based on the nature and sensitivity of the Personal Information being processed, the risk of harm due to unauthorized access versus the benefit of retention, and whether we can achieve the purposes of processing through other means. We may retain your Personal Information for longer periods if required by law, if you give us your permission, or in case of a legal dispute in which your Personal Information may be used as evidence. 4.3 Automatic Decision-Making: We do not profile or use automated decision making. 4.4 Telephone Monitoring: As part of our customer service assurance practice, telephone conversations over phones may be monitored or recorded as a part of normal business operations. Monitored or recorded calls will be used for quality assurance and training purposes. 4.5 Cybersecurity: We use robust security measures to protect your information from unauthorized access, maintain data accuracy, and help ensure the appropriate use of information. To protect your Personal Information, we use physical safeguards including secured access to our facilities. We also limit access to your Personal Information to only those employees and service contractors that have a need to access it. When handling your personal information, we use administrative, technical, and physical safeguards designed to protect your personal information from unauthorized access, disclosure, alteration, or loss.
4.6 Changes to this Privacy Policy: We may update this Privacy Policy from time to time. The current version of this Privacy Policy can be accessed here. 4.7 Contact Information: For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us at: Nivel Customer Service inquiries@nivel.com
3510-1 Port Jacksonville Parkway Jacksonville, Florida, USA 32226
Phone: 800-959-0852