ArrangeMe Privacy Policy
Effective Date Last Reviewed: June 4, 2021
Last Revised: June 4, 2021
Hal Leonard LLC ("Hal Leonard," "we," "us" or "our," as the context may require) provides https://www.arrangeme.com (the "Site"), including all content, functionality, applications and services offered on or through the Site (together with the Site, the "Services").
We respect the privacy of individuals who visit or use the Services ("you" or "your," as the context may require) and are committed to protecting your privacy through compliance with this Privacy Policy. This Privacy Policy describes:
- The types of information we may collect via the Services or that you may provide when you visit, access, use or otherwise interact with the Services, or communicate with us regarding the Services.
- Our practices for collecting, using, maintaining, protecting, disclosing and processing that information.
Please read this Privacy Policy carefully to understand our policies and practices regarding your Personal Data (as defined below) and how we will treat it. By accessing or using the Services, or by communicating with us regarding the Services, you agree to this Privacy Policy, the ArrangeMe Cookie Policy, and the ArrangeMe Terms and Conditions, (collectively the "User Terms"). If you do not agree with the policies, practices, terms or conditions contained in the User Terms, you may not use or access the Services.
This Privacy Policy may change from time to time (see Section 12). Your continued use of the Services after we revise this Privacy Policy or the User Terms means you accept this Privacy Policy and the User Terms as amended, so please check this Privacy Policy and the User Terms periodically for updates.
-
What this Privacy Policy Covers; Definitions
This Privacy Policy governs our collection, use, maintenance, protection, disclosure and processing of Personal Data (as defined below), including Personal Data we collect on or through the Services, and in email, text, and other communications relating to the Services.
Except as otherwise provided in this Privacy Policy, "Personal Data" means any information relating to an identified or identifiable natural person (a data subject), and includes "personal information" and "personally identifiable information" as those terms are used in the United States of America (USA). An "identifiable natural person" is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. "Personal Data" does not include information which is generally not considered "personal information" or "personal data" under applicable law, such as information which is publicly available or which is subject to special data privacy laws and/or regulations (e.g. HIPAA).
Except as expressly provided in this Privacy Policy, this Privacy Policy does not apply to information that: (i) except as required by applicable law, we collect offline; (ii) is collected through any applications or websites other than those included in the Services, including websites you may access through or may be linked to by the Services, including for the avoidance of doubt other websites or applications owned by Hal Leonard or its Corporate Affiliates (For purposes of this Privacy Policy, "Corporate Affiliate" means any person or entity which directly or indirectly controls, is controlled by or is under common control with Hal Leonard LLC, whether by ownership or otherwise; and control means possessing, directly or indirectly, the power to direct or cause the direction of the management, policies or operations of an entity, whether through ownership of fifty percent (50%) or more of the voting securities, by contract or otherwise.)
Or (iii) which you provide to or which is collected by any third party. Other websites, applications, and other third parties generally have their own privacy policies, which we encourage you to read before providing information on, to, or through them.
-
Children's Privacy
The Services are not directed to nor intended for use by anyone under below the age of majority in the jurisdiction in which they are located ("Prohibited Users"). We do not knowingly collect Personal Data from Prohibited Users. No Prohibited Users may use the Services. If you are a Prohibited User, do not use or provide any Personal Data to, on, or through the Services.
If we learn we have collected or received Personal Data from a Prohibited User, we will delete that information. If you believe we might have any information from or about a Prohibited User, please contact us as provided in Section 13.
-
Types of Information We Collect
We collect several types of information from and about you as a result of your use of or registration with the Services, and as a result of your communication with us. This information may include:
- Personal Data, including:
- Name;
- Postal address;
- Email address;
- Telephone number;
- Billing information such as credit card information, billing address or shipping address (however, see our note below about payment information);
- the specific categories of Personal Data listed in Section 10.B; and
- Any other categories of Personal Data which you otherwise provide to us on or through the Services or in communications with us regarding the Services;
- Information which is about you but does not identify you, such as traffic data, location data, logs of the date and time of your Site visits, click-stream data, and other information which has been de-identified or aggregated in a manner where it can no longer be used to identify you ("Non-Personal Data");
- Information about your internet connection, the equipment you use to access the Services, and usage details ("Usage Data"); and/or
- Any other form or category of information, including Personal Data, which you publicly disclose or share on or through the Services, or disclose to or share with us in any manner.
- Personal Data, including:
-
How We Collect Information
We collect information, including Personal Data, from and about you:
- Directly from you when you provide it to us.
- Automatically when you use or access the Services and navigate the Site. Information collected automatically may include usage details, IP addresses, and information collected through cookies, web beacons, and other tracking technologies, as described below.
- From third parties and other sources.
A. Information You Provide to Us
You may provide us with certain information, including Personal Data when you register with, or use or access the Services. This information may include:
- Information that you provide by filling in forms or fields on the Services or in connection with the Services. This includes information provided at the time of registering an account to sell your music, or view the Services and request further services. We may also ask you for certain Personal Data when you report a problem with the Services or otherwise communicate with us via or regarding the Services.
- Information you provide when you participate in online seminars or trainings.
- Records and copies of your correspondence (including email addresses, home or business address and phone numbers), if you contact us.
- Details of transactions you carry out through the Services and of the fulfillment of your orders. You may be required to provide certain billing information or payment information before placing an order through the Services.
- Your search queries on the Services.
We may link some of the information we receive directly from you with information we obtain through other methods and vice versa. This allows us to better understand your interests, needs, and objectives such that we may better serve you and offer you better services. Any such information so linked or combined which meets the definition of Personal Data will be treated as such under this Policy.
B. Information We Collect Automatically
When you navigate, access, or use Services, we may use automatic data collection technologies to collect certain information, including:
- Usage Details - When you access and use the Services, we may automatically collect certain details of your access to and use of the Services, including traffic data, location data, logs, and other communication data and the resources that you access and use on or through the Services. We may also collect the webpage from which you came immediately before reaching the Services and the webpage to which you went immediately after leaving the Services. We may use this information for system administration and to report aggregate information to our advertisers and business partners.
- Device Information - We may collect information about your device and internet connection, including the device's unique device identifier, IP address, operating system, browser type, network information, and, if applicable, the device's telephone number.
- Location Information - The Services may collect information about the location of your device. Any such identification is used only in connection with the functionality of the Services and will not be otherwise used, except in the aggregate with the location information from other users.
The information we collect automatically may include Personal Data or we may maintain it or associate it with Personal Data we collect in other ways or receive from third parties.
As further described in our Cookie Policy, we use "cookies," pixels, web beacons, and other technologies to receive and store certain information when you interact with the Services. We also allow third parties to use cookies on the Services as described in our Cookie Policy. You may refuse the use of cookies by selecting the appropriate settings on your browser; however please note that if you do this you may not be able to use the full functionality of the Services. To learn more about how we use cookies, please visit our Cookie Policy. The technologies we use for automatic information collection may include:
- Cookies (or mobile cookies) - A cookie is a small file placed on your smartphone, tablet, computer, or other device. It may be possible to refuse to accept cookies by activating the appropriate setting on your smartphone, tablet, computer, or other device. However, if you select these settings you may be unable to access certain parts of the Services.
- Web Beacons - Portions of the Services and/or our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count users who have visited those pages or opened an email and for other related statistics (for example, recording the popularity of certain content and verifying system and server integrity). Web beacons can recognize certain types of information, such as cookies, time and date of a page view, and a description of the page where the Web beacon is placed. We may use Web beacons to compile information regarding use of the Services.
- Analytics - We may utilize third party companies and analytics to help us market, sell, and provide information about our products and services; and we provide your Personal Data to these third party companies to assist us in conducting business with you. We may use web analytics tools provided by service providers, including, but not limited to, Google Analytics, which is a third party service that transmits website traffic data to Google servers in the United States. Google Analytics does not identify individual users or associate your IP address with any other data held by Google. We may use reports provided by Google Analytics or other similar service providers, to help us understand traffic on the Services, and web page usage. For more information concerning Google Analytics and how it collects and processes data, please see "How Google Uses Data When You Use Our Partners Web Sites or Apps" located at www.google.com/policies/privacy/partners. We may use the information provided by these tools to improve our services and our online advertisements. These tools place session and persistent cookies in your browser to identify you as a unique user the next time you visit, access, or use the Services. Each cookie cannot be used by anyone other than the service provider (e.g., Google Analytics).
At this time, the Services do not recognize automated browser signals regarding tracking mechanisms, such as "do-not-track" instructions. All traffic is treated as equal and processed the same in that we will track users' use of the Services as well as the webpage that the user came from before reaching the Services and the webpage to which he or she went after leaving the Services. However, if you wish to stop such tracking, please contact us with your request, using our contact details provided below. See Section 8 for information on other mechanisms that enable you to exercise choice about behavioral tracking and other privacy matters.
C. Information from Third Parties and Other Sources
To the extent permitted by applicable law, we may also receive information (including Personal Data) or draw inferences about you from other sources. This includes information we receive about you if you use any of our other websites we operate or other services we provide. We work closely with third parties (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, and analytics providers) who may provide information about you to us. We will notify you when we receive information about you from them and the purposes for which we intend to use that information.
-
How We Use Information
We may use or disclose the Personal Data we collect for one or more of the following purposes:
- to process an inquiry received from you, or to respond to an expression of interest from you in one or more of our products and services;
- to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;
- to make suggestions and recommendations to you and other users of the Site and/or the Services about products or services that may interest you or them;
- to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request or purchase from us;
- to collect payments for any products or services you purchase from us;
- to moderate and publish reviews that you post on the Site and/or the Services;
- to provide you with newsletters;
- to provide you with information about other products and services we offer that are similar to those that you have already purchased or inquired about;
- to provide you with information about other products and services we or our Corporate Affiliates offer that are complementary to or related to those that you have already purchased or inquired about. This may include products and services that we or our Corporate Affiliates make available through one or more of our other websites or the websites of such Corporate Affiliates;
- to provide your information to our marketing department who may contact you to request feedback and comments on our products or services or to provide information to you which may be of interest to you;
- to provide you with information about our Corporate Affiliates' goods or services we feel may interest you. If you do not want us to use your data in this way, you may withdraw your consent by opting out of marketing emails and/or contacting support@arrangeme.com;
- to notify you about changes to our products or services; and
- to try to ensure that content from the Site and/or the Services is presented in the most effective manner for you and for your computer or other device.
We may use Non-Personal Data and Usage Data for one or more of the following purposes:
- to administer the Site and/or the Services and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- to improve the Site and/or the Services to try to ensure that content is presented in the most effective manner for you and for your computer or other device;
- to allow you to participate in interactive features of our service, when you choose to do so; and
- as part of our efforts to keep the Site and/or the Services safe and secure.
We may use information we receive from third parties to combine with information you give to us and information we collect about you. We may use the combined information (which may constitute Personal Data) for the purposes set out above (depending on the types of resultant information).
-
How We May Disclose Information
A. Personal Data
Except as otherwise provided in this Privacy Policy, we may disclose Personal Data that we collect or you provide.
You agree that we have the right to share your Personal Data with selected third parties including:
- entities that provide customer service applications to us to better enable us to respond to your requests for information or assistance;
- business partners, suppliers and sub-contractors for the performance of any contract we enter into with you or them;
- credit card processors and other payment services providers, for the purposes of effecting payments by or to you;
- entities who provide services to us in relation to marketing, in order to assist us in marketing to you as described above;
- advertisers and advertising networks that require the data to select and serve relevant advertisements to you and others;
- cloud service providers, including the entity that hosts the Services, for the purposes of storage and such hosting;
- analytics and search engine providers that assist us in the improvement and optimization of the Services; and
- to our Corporate Affiliates.
We may also disclose your Personal Data to third parties:
- if Hal Leonard or all or substantially all its assets or the relevant part of its assets are acquired by a third party, in which case Personal Data held by it about its customers (or the relevant customers) will be one of the transferred assets; or
- if we are under a duty to disclose or share your Personal Data in order to: comply with any legal obligation; enforce or apply our standard terms and conditions of business and other agreements; or to protect the rights, property, or safety of Hal Leonard LLC, our clients, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction: or
- if we discontinue our business or file a petition or have filed against us a petition in bankruptcy, reorganization or similar proceeding.
As an integral part of the Services, you are required to provide some information (including, in some cases, Personal Data) to be published or displayed (hereinafter, "posted") on public areas of the Services, or transmitted to other users of the Services or third parties (including without limitation Retailers and/or Buyers, as such terms are defined in the ArrangeMe Terms and Conditions) (collectively, "User Contributions"). By using the Services, you acknowledge and agree that you are directing us to disclose your User Contributions to other users of the Services or third parties as described above. Your User Contributions are posted on the Services and transmitted to others at your own risk. Although you may set certain privacy settings for such information by logging into your account, please be aware that no security measures are perfect or impenetrable. Additionally, we cannot control the actions of other users of the Services and other third parties who receive or view your User Contributions. Therefore, we cannot and do not guarantee that your User Contributions will not be viewed by unauthorized persons. By using the Services you consent to the foregoing terms and the use and disclosure of your User Contributions as described above. You may not use the Services if you do not consent to the foregoing terms and the use and disclosure of your User Contributions as described above.
B. Other Information
We may disclose information other than Personal Data, including information derived from Personal Data which has been sufficiently aggregated or de-identified such that it is no longer capable of identifying individuals, without restriction.
C. Google Analytics
Please note in particular that the Site and/or the Services uses Google Analytics, including its data reporting features. Information collected by Google Analytics includes but is not limited to web metrics. For information on how Google Analytics collects and processes data, please see the site "How Google uses data when you use our partners' sites or apps", currently located at www.google.com/policies/privacy/partners/. For information on opting out of Google Analytics, we encourage you to visit Google's website, including its list of currently available opt-out options presently located at https://tools.google.com/dlpage/gaoptout.
-
Privacy Choices
We strive to provide you with and inform you of choices regarding your information, including Personal Data. This Section 7 describes mechanisms for you to control certain uses and disclosures of your information.
- Tracking Technologies - You can set your browser to refuse all or some browser cookies, or to alert you when cookies are being sent. If you disable or refuse cookies or block the use of other tracking technologies, some parts of the Services may then be inaccessible or not function properly.
- Location Information - You can choose whether or not to allow the Services to collect and use real-time information about your device's location through the device's privacy settings. If you block the use of location information, some parts of the Services may become inaccessible or not function properly.
- Promotion by Hal Leonard - If you do not want us to use your email address to promote our or our Corporate Affiliates' products or services, you can opt-out by unsubscribing from our marketing emails (typically by selecting "unsubscribe" or a similar option presented in marketing emails from us or our Corporate Affiliates). You can also always opt-out by sending us an email stating your request to support@arrangeme.com. For information on accessing or correcting your Personal Data, please see Section 8.
If you are a resident of the State of California, you may have additional rights and choices regarding your Personal Data. Please see Section 10 for more information.
Nevada residents who wish to exercise their sale opt-out rights under Nevada Revised Statutes Chapter 603A may submit a request to us by any of the methods listed in Section 13. However, please know we do not currently sell data triggering that statute's opt-out requirements.
-
Accessing and Correcting Your Personal Data
You can review and change your Personal Data by logging into the Services and visiting your account profile page.
You may also contact us as provided in Section 13 to request access to, correct or delete any Personal Data that you have provided to us. We cannot delete your Personal Data except by also deleting your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.
If you are an individual who is located in the European Economic Area (EEA), please see Section 9 for more information about your rights and choices regarding your Personal Data.
If you are a resident of the State of California, you may have additional rights and choices regarding your Personal Data. Please see Section 10 for more information.
-
Notices for Individuals Located in the EEA
A. Scope
This Section 9 applies exclusively to visitors and users of the Services who are located in the EEA ("Data Subjects").
B. Rights of Data Subjects
If you are a Data Subject, you have the following rights:
- Request access to your Personal Data. This enables you to receive a copy of the Personal Data we hold about you and to check that we are lawfully processing it.
- Request correction of the Personal Data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
- Request erasure of your Personal Data. This enables you to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your Personal Data in certain other circumstances, namely where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your Personal Data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
- Object to processing of your Personal Data. This enables you to object to the processing of your Personal Data where we are relying on our legitimate interests (or those of a third party) and there is something about your particular situation which you believe adversely impacts your fundamental rights and freedoms. You also have the right to object where we are processing your Personal Data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which overrides your objection.
- Request the restriction of processing of your Personal Data. This enables you to ask us to suspend the processing of Personal Data about you; for example, if you want us to establish its accuracy or the reason for processing it.
- Request the transfer of your Personal Data to you or to another person or entity. In that case we will provide to you, or to the person or entity to whom you wish us to transfer your Personal Data, your Personal Data in a structured, commonly used, machine-readable format.
- Withdraw consent at any time where we are relying on consent to process your Personal Data. However this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
- Lodge a complaint with the applicable regulator or supervisory authority. If you have any complaints about the way in which we process your Personal Data please do contact us, as set out below, as we would appreciate the opportunity to resolve your complaint.
If you want to review, verify, correct or request erasure of your Personal Data, object to the processing of your Personal Data, or request that we transfer a copy of your Personal Data to another party, please contact us using the contact details provided below.
C. Legal Grounds for Processing
If our use of your data is governed by the European Union’s General Data Protection Regulation ("GDPR"), you should know that we rely on the following legal grounds to process your Personal Data:
- Performance of a contract - where processing is necessary to perform a contract we have entered into or are about to enter into with you.
- Compliance with law - where processing is necessary to comply with applicable law.
- Legitimate interests - where it is necessary for the purposes of our legitimate interests (or those of a third party) and your interests or fundamental rights and freedoms do not override those interests. Our legitimate interest means our interest in conducting and managing our business, including enabling us to provide you and our other customers with the best products and services we can and the best and most secure experience when dealing with us. In assessing our legitimate interests, we make sure we consider and balance any potential impact (both positive and negative) on you and others and your rights.
- Consent - where you have given us your consent for processing. To withdraw your consent to such use, you can contact us as provided in Section 13.
D. Transfer of Personal Data
The Services are operated and managed on servers located and operated within the United States. Any information collected through the Services as described in this Policy may be stored in the United States or any other country in which Hal Leonard or its service providers maintain facilities. The United States is not recognized as having adequate safeguards under European law. If you are located outside of the United States, please note that we may transfer information, including Personal Data, to a country and jurisdiction that does not have the same data protection laws as your jurisdiction, and you consent to the transfer of your Personal Data to the United States.
Whenever we transfer your Personal Data out of the EEA, we ensure a similar degree of protection is afforded to it. To this, when we use certain service providers, we use specific contracts approved by the European Commission (also known as Standard Contractual Clauses or SCCs) which give Personal Data the same protection it has in Europe. For further details, see European Commission: Standard Contractual Clauses (SCC).
-
Privacy Notice for California Residents
-
Scope; Definitions
This Section 10 applies exclusively to visitors and users of the Services who are residents of the State of California (as defined in California Consumer Privacy Act, Cal. Civil Code §§ 1798.100 to 1798.199, as amended, and including all regulations promulgated thereunder (the "CCPA")) (such residents of California "Consumers" and each a "Consumer"). As used in this Section 10, the term "you" and "your" shall only refer to a Consumer.
For purposes of this Section 10, "Consumer Information" has the same meaning as "personal information" under the CCPA. Additionally, as used in Section 10, "sell" (including any grammatically inflected forms thereof) has the meaning assigned to that term under the CCPA. Other terms used in this Section 10 without definition will have the definitions assigned to those terms under the CCPA.
This Section 10 supplements the information contained elsewhere in this Policy with respect to (but only with respect to) Consumers, and notifies Consumers of certain rights they have under the CCPA.
This Privacy Policy does not apply to workforce-related Consumer Information collected from California-based employees, job applicants, contractors, or similar individuals.
-
Consumer Information We Collect:
We may collect, and in the last twelve (12) months have collected, the following categories of Consumer Information from Consumers:
Category of Consumer Information Examples A. Identifiers. Name; e-mail address; telephone number; and address (including city, state/province, ZIP code and country code). B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). Name; e-mail address; telephone number; address (including city, state/province, ZIP code and country code); and billing/payment information (including cardholder name, billing address, card type, last 4-digits of the credit card number, and/or PayPal transaction ID. C. Commercial information Records of personal property, products or services purchased, obtained, or considered; and/or other purchasing or consuming histories or tendencies, and use of promotion codes, in connection with our products and services. D. Internet or other similar network activity. Technical information, including the IP address used to connect your computer or other device to the Internet; your login information; information about your computer or other device being used to connect to the Site and/or the Services, including browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; information about your visit, including the full URL, clickstream to, through and from the Site and/or the Services (including date and time), products or services you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page. E. Professional or employment-related information. Job title; company/employer name; work contact details, including phone number and address; and, if you are a music teacher or other music professional, details of the type of music you teach or your professional role, and your membership of any teaching association or other organization for music professionals. F. Inferences drawn from other personal information. Inferences reflecting personal preferences and predispositions. -
Sources of Consumer Information
We may collect your Consumer Information from the categories of sources of Consumer Information identified in Section 4. We may also receive information about you if you use any of our other websites we operate or other services we provide. We work closely with third parties (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers, and credit reference agencies) who may provide information about you to us.
-
Use of Consumer Information; Categories of Sources
We may use Consumer Information for the business or commercial purposes described in the table above and in the manner described in Sections 3, 4 and 5.
-
Disclosures of Consumer Information for a Business or Commercial Purpose:
We may share your Consumer Information by disclosing it to a third party for a business purpose. We only make these business purpose disclosures under written contracts that describe the purposes, require the recipient to keep the Consumer Information confidential, and prohibit using the disclosed information for any purpose except performing the contract. In the preceding twelve (12) months, Hal Leonard has not disclosed any Consumer Information for a business or commercial purpose as the Services were not operational. However, Hal Leonard may disclose the categories of Consumer Information described in the table below. We do not sell Consumer Information.
Category of Consumer Information Categories of third parties A. Identifiers Each of the categories of third parties listed in Section 4.A. B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) Credit card processors and other payment services providers, for the purposes of effecting payments by or to you. C. Commercial information Each of the categories of third parties listed in Section 4.A. D. Internet or other similar network activity Each of the categories of third parties listed in Section 4.A. E. Professional or employment-related information. Each of the categories of third parties listed in Section 4.A. F. Inferences drawn from other personal information. Each of the categories of third parties listed in Section 4.A. -
California Residents' Rights and Choices:
The CCPA provides Consumers with certain rights regarding their Consumer Information. This Section 10.F describes these rights and explains how Consumers may exercise them.
-
Right to Opt-out of the Sale of Consumer Information
You have the right to direct us to not sell your Consumer Information at any time (the "Right to Opt-Out"). We do not sell Consumer Information. We do not collect, and therefore do not sell, the Consumer Information of Consumers we actually know are less than eighteen (18) years of age.
-
Right to Know; Data Access and Portability Requests
You have the right to request that we disclose certain information (the "Right to Know") to you about our collection, use, or disclosure of your Consumer Information over the past twelve (12) months (a "Request to Know").
Once we receive and verify your Request to Know (see Section 10.G), we will disclose to you each of the following items which you include in your Request to Know:
- The categories of Consumer Information we have collected about you;
- The categories of sources for the Consumer Information we have collected about you;
- Our business or commercial purpose for collecting or selling that Consumer Information;
- The categories of third parties with whom we have shared that Consumer Information;
- The specific pieces of Consumer Information we have collected about you; (if delivered to you electronically in a portable format, a "Data Portability Request," if delivered to you by other means, a "Data Access Request");
- If we have sold or disclosed your Consumer Information for a business purpose, two separate lists disclosing:
- sales, identifying the Consumer Information categories that each category of recipient purchased; and
- disclosures for a business purpose, identifying the person Consumer Information categories that each category of recipient obtained.
For information on how to submit a Request to Know, Data Access Request, or Data Portability Request, see Section 10.G.
The CCPA temporarily exempts Consumer Information reflecting a written or verbal business-to-business communication ("B2B Information") from some of its requirements. To the extent permitted by the CCPA, we may deny a Request to Know, Data Access Request, or Data Portability Request relating to B2B Information.
-
Right to Request Deletion
You have the right to request that we delete any of your Consumer Information that we have collected from you or have maintained or retained, subject to certain exceptions (a "Request to Delete"). Once we receive your request and confirm your identity (see Section 10.G), we will review your request to see if an exception allowing us to retain the information applies. We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:
- Complete the transaction for which we collected the Consumer Information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, or otherwise perform our contract with you.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
- Debug products to identify and repair errors that impair existing intended functionality.
- Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
- Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if you previously provided informed consent.
- Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
- Comply with a legal obligation.
- Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
To the extent permitted by the CCPA, we may deny a Request to Delete relating to B2B Information.
-
Right to Non-Discrimination
You have the right to not receive discriminatory treatment for your exercise of privacy rights under the CCPA, by, for example, being denied goods or services or being charged different prices for goods or services because of your exercise of CCPA rights.
Unless permitted by the CCPA, we will not do any of the following based upon your exercise of privacy rights under the CCPA: (a) deny you goods or services; (b) charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties; (c) provide you a different level or quality of goods or services; or (d) suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
-
Authorized Agents
You may authorize another person (an "Authorized Agent") to exercise any of your rights under the CCPA. To designate an Authorized Agent to make a request with us, (i) provide the authorized agent signed permission to submit a request under this Section 10 with us, and (ii) confirm with us that you provided the Authorized Agent permission to submit the request by submitting such signed permission to us by email as provided in Section 13. Please note that you may be required to verify your identity before your confirmation of permission for the Authorized Agent is effective under this Section 10.
-
Right to Opt-out of the Sale of Consumer Information
-
Exercising Access, Data Portability, and Deletion Rights:
To exercise the access, data portability, and deletion rights described in Section 10.F, please submit a verifiable consumer request to us by either: (1) calling us at 1-800-524-4425; or (2) contacting us in accordance with Section 13.
Only you or your Authorized Agent may make a verifiable consumer request related to your Consumer Information. You may only make a Request to Know, Data Access Request, or Data Portability Request twice within a twelve (12) month period. Your Request to Know, Data Access Request, or Data Portability Request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected Consumer Information or an authorized representative of such person, which may include:
- Information which we already maintain; or
- If we cannot verify your identity based on information already maintained by us, such information that we or our representatives request from you.
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We will confirm receipt of your request within ten (10) business days. If you do not receive confirmation within this timeframe, please contact us as provided in Section 13. We cannot respond to your request or provide you with Consumer Information if we cannot verify your identity or authority to make the request and confirm the Consumer Information relates to you. If we cannot verify your request within forty-five (45) days from the date that we receive your request, we may deny your request.
Making a verifiable consumer request does not require you to create an account with us. However, we do consider requests made through your password protected account sufficiently verified when the request relates to Consumer Information associated with that specific account.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected Consumer Information or an authorized representative of such person, which may include:
-
Other California Privacy Rights:
California's "Shine the Light" law (Cal. Civil Code § 1798.83) permits Consumers to request certain information regarding our disclosure of Consumer Information to third parties for their direct marketing purposes. We do not currently disclose Consumer Information to third parties for their direct marketing purposes.
-
Scope; Definitions
-
Data Retention and Data Security
We will only retain your Personal Data for as long as necessary to fulfill the purposes for which we collected your Personal Data.
To determine the appropriate retention period for Personal Data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of that Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements. If by law we are required to retain any information about our customers or their interactions with us, we will retain your Personal Data insofar as required to comply with such law.
We may anonymize your Personal Data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.
All information you provide to us is stored on secure servers. These may be located anywhere in the world, including the United States.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your Personal Data, we cannot guarantee the security of your data transmitted to the Site and/or the Services; any transmission is at your own risk. We are not responsible for circumvention of any privacy settings or security measures we provide. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access. This includes encryption of some information.
We will also require third parties to whom we disclose your Personal Data to take appropriate measures to ensure the security of your Personal Data and not to use it except for the purposes for which we disclose it to them.
-
Changes to this Privacy Policy
Any changes we make to this Privacy Policy in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to this Privacy Policy.
-
How to Contact Us
Questions, comments and requests regarding this Privacy Policy are welcomed and should be addressed to support@arrangeme.com.
ArrangeMe COOKIE POLICY
Effective Date: April 17, 2021
Last Revised: April 17, 2021
The purpose of this Cookie Policy is to describe how Hal Leonard, LLC, a a Delaware limited liability company, and its affiliates, subsidiaries, divisions and brands (collectively, "Hal Leonard," "we," "us," or "our," as the context may require) collect, use and share cookies at and through https://www.arrangeme.com (the "Site"), including all content, functionality, applications and services offered on or through the Site (together with the Site, the "Services"). Please read this notice carefully to understand what we do. If you do not understand any aspect of this Cookie Policy, please feel free to contact us as described at the end of this policy.
What are Cookies?
To allow the Services to work properly and to provide you with a personalized experience, we sometimes place cookies on your device. A cookie is a small file containing a string of characters that is sent to your computer when you visit a website. When you visit the website again, the cookie allows that site to recognize your browser. Cookies may store unique identifiers, user preferences, and other information, such as what pages you visit, your IP address, or how you arrived on the Services.
What Types of Cookies Do We Use?
Hal Leonard uses both persistent and session cookies. Session cookies are only stored in the cookie file while you are actually using the Services. Persistent cookies are stored for a specific time, but each cookie may have a different lifespan.
The Services use both first party cookies (set by Hal Leonard) and third party cookies (set by third parties). Third party cookies are cookies provided by our service providers for analytics and advertising. The information that they collect may be associated with your personal information or they may collect information, including personal information, about your online activities over time and across different websites and other online services. We do not control these third parties’ use of cookies or how they may be used.
How Do We Use Cookies?
We and our service providers use cookies, web beacons, and other technologies to receive and store certain types of information whenever you interact with the Services through your computer or mobile device. Cookie information allows us to analyze use of the Services and our online advertisements, improves your experience on the Services, and allows you to use certain features on the Services. We also use cookies to help ensure the marketing you see on the Services is relevant to you and your interests.
Below is a detailed description of the purposes for which we use cookies on the Services:
Essential Cookies:
These cookies are essential for you to browse the Services and use its features. Without these cookies, the Services would not perform properly and you may not be able to use certain services or features of the Services.
Cookie Name | Purpose of Cookie |
---|---|
policy_banner_seen | This cookie is essential for our site to recognize you when you return to our site. |
JSESSIONID | This is a general-purpose platform session cookie, used by sites written in JSP. Usually used to maintain an anonymous user session by the server. |
Preference Cookies:
These cookies allow the Services to remember choices you have made in the past, like what language you prefer or what your user name and password are so you can automatically log in.
Cookie Name | Purpose of Cookie |
---|---|
None | N/A |
Performance Cookies:
These cookies collect information about how you use the Services, like which pages you visited and which links you clicked on, help us record and debug any issues you may have with the Services, and show us how effective our advertising is. This information cannot be used to identify you because it is all aggregated and, therefore, anonymized. The purpose of performance cookies is to improve how the Services function and to help us understand the traffic on the Services.
Cookie Name | Purpose of Cookie |
---|---|
_ga | Used by Google Analytics to estimate our audience size and usage pattern. |
_gid | Used by Google Analytics to estimate our audience size and usage pattern. |
_dc_gtm_UA-* | Used by Google Tag Manager to throttle request rate. |
_gat_UA-* | Used by Google Analytics to throttle request rate. |
_gcl_au | Used by Google AdSense for experimenting with advertisement efficiency across websites using their services. |
Marketing Cookies:
These cookies track your online activity to help our advertisers deliver more relevant advertising. These cookies are almost always third party cookies.
Cookie Name | Purpose of Cookie |
---|---|
_fbp | Used by Facebook to deliver a series of advertisement products such as real time bidding from third-party advertisers. |
How Can You Control Cookies
You can control and/or delete cookies as you wish. You can delete all cookies that are already on your computer, and you can reset your browser to refuse all cookies or to indicate when a cookie is being sent. You may refuse the use of cookies or modify or withdraw your consent to the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this you may not be able to use the full functionality of the Services.
Questions and How to Contact Us
Questions, comments and requests regarding this Cookie Policy are welcomed and should be addressed to privacy@halleonard.com.