Skip to content

    Privacy Policy

    Effective Date: May 13, 2025

    Sunstone Secure, LLC ("Sunstone Secure," "we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and protect the personal information we obtain from visitors to our website and individuals who interact with us through our services.

    Located in Belmont, California, we recognize the importance of adhering to applicable privacy laws, including the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). This policy outlines your rights regarding your personal information under these laws and how you can exercise them.

    1. Information We Collect

    We collect personal information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. The types of personal information we collect depend on how you interact with us.

    We may collect the following categories of personal information:

    • Identifiers: Such as name, postal address, unique personal identifier, online identifier, Internet Protocol (IP) address, email address, account name, Social Security number (if applicable to our services), driver's license number or state identification card number (if applicable), passport number (if applicable), or other similar identifiers.
    • Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)): Including name, signature, Social Security number (if applicable), physical characteristics or description, address, telephone number, passport number (if applicable), driver's license or state identification card number (if applicable), insurance policy number (if applicable), education, employment, employment history, bank account number, credit card number, debit card number, other financial information, medical information (if applicable and with explicit consent/legal basis), or health insurance information (if applicable).
    • Protected classification characteristics under California or federal law: Such as age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition (if applicable), physical or mental disability (if applicable), sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).
    • Commercial information: Records of products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
    • Internet or other similar network activity: Browse history, search history, information on a consumer's interaction with a website, application, or advertisement.
    • Geolocation data: Precise or imprecise location information.
    • Sensory data: Audio, electronic, visual, thermal, olfactory, or similar information (e.g., recordings of customer service calls with notice).
    • Professional or employment-related information: Current or past job history or performance evaluations.
    • Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)): Education records directly related to a student maintained by an educational institution or party acting on its behalf.
    • Inferences drawn from other personal information: To create a profile about a consumer reflecting the consumer's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

    How We Collect Information

    We collect personal information from various sources:

    • Directly from you: When you fill out forms on our website, contact us, use our services, create an account, or otherwise communicate with us.
    • Indirectly from you: Through your activity on our website (e.g., website usage data collected automatically).
    • From third parties: This may include service providers, business partners, or other entities who provide services to us or collaborate with us, subject to their privacy policies and applicable law.

    2. How We Use Your Information

    We use the personal information we collect for various business and commercial purposes, including:

    • Providing, operating, maintaining, and improving our website and services.
    • Responding to your inquiries and fulfilling your requests.
    • Processing transactions and providing customer service.
    • Communicating with you about our services, updates, and promotional offers (where you have opted in or as permitted by law).
    • Personalizing your experience on our website.
    • Analyzing website usage and trends to improve our services and user experience.
    • Detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible.
    • Debugging to identify and repair errors that impair existing intended functionality.
    • Undertaking internal research for technological development and demonstration.
    • Undertaking activities to verify or maintain the quality or safety of a service or device.
    • Complying with legal obligations and exercising legal rights.

    3. How We Share Your Information

    We may share your personal information with the following categories of third parties:

    • Service Providers: We share information with third-party service providers who perform services on our behalf, such as website hosting, data analysis, payment processing, information technology and related infrastructure provision, customer service, email delivery, and auditing.
    • Business Partners: We may share information with business partners with whom we offer co-branded services or engage in joint marketing activities.
    • Third Parties as Required by Law or to Protect Rights: We may disclose your information when we believe it is necessary to comply with legal obligations, enforce our terms and conditions, protect our rights, privacy, safety, or property.
    • In the Event of a Business Transfer: We may share your information in connection with any reorganization, merger, sale, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock.

    Sale or Sharing of Personal Information

    In the preceding twelve (12) months, we HAVE NOT sold personal information for monetary or other valuable consideration.

    In the preceding twelve (12) months, we HAVE NOT shared personal information for cross-context behavioral advertising.

    4. California Privacy Rights (CCPA/CPRA)

    If you are a California resident, you have specific rights regarding your personal information under the CCPA and CPRA. These rights include:

    • Right to Know: You have the right to request that we disclose to you the categories and specific pieces of personal information we have collected about you.
    • Right to Delete: You have the right to request the deletion of your personal information that we have collected from you, subject to certain exceptions.
    • Right to Correct: You have the right to request the correction of inaccurate personal information that we maintain about you.
    • Right to Opt-Out of Sale or Sharing: If we sell or share your personal information, you have the right to direct us not to sell or share your personal information at any time.
    • Right to Limit the Use and Disclosure of Sensitive Personal Information: You have the right to direct us to limit the use and disclosure of your sensitive personal information.
    • Right to Non-Discrimination: You have the right not to receive discriminatory treatment by us for exercising your CCPA/CPRA rights.

    Sensitive Personal Information

    We DO NOT collect sensitive personal information.

    How to Exercise Your California Privacy Rights

    To exercise your rights to know, delete, or correct your personal information, please submit a verifiable consumer request through one of the following methods:

    5. Data Security

    We implement reasonable security measures designed to protect the personal information we collect from unauthorized access, disclosure, alteration, and destruction. However, no security system is completely impenetrable, and we cannot guarantee the absolute security of your information. In the event of a data-privacy incident, we will notify affected individuals and regulators as required by law.

    6. Data Retention

    We retain personal information for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The specific retention period depends on the type of information and the purpose for which it is used.

    7. Cookies and Analytics

    We use a small number of cookies and similar technologies to operate our website and understand how visitors use it.

    • Strictly necessary cookies: Used to remember your cookie preferences and keep the site functioning. These cannot be disabled.
    • Analytics cookies (Google Analytics 4): Help us measure traffic and improve content. GA4 collects information such as your IP address (truncated), device and browser type, pages viewed, and referring source. Data is processed by Google LLC; see Google's Privacy Policy and How Google uses information.

    We do not use advertising or retargeting cookies, and we do not sell personal information.

    Your choices:

    • EU, UK, Switzerland, and EEA visitors: analytics are blocked by default. The consent banner on your first visit lets you accept or decline.
    • All other visitors: analytics load by default. You can opt out at any time using the "Cookie Preferences" link in the footer, or by enabling "Do Not Track" / "Global Privacy Control" in your browser.
    • You can also block cookies entirely through your browser settings; doing so will not affect core site functionality.

    8. How to Unsubscribe from Marketing Emails

    You can unsubscribe from our newsletter and other marketing emails at any time using any of the following methods:

    • Click the "Unsubscribe" link in the footer of any newsletter email we send you.
    • Use your email client's native one-click unsubscribe button (available in Gmail, Apple Mail, Outlook, and other modern clients).
    • Visit sunstonesecure.com/unsubscribe and enter your email address; we will send you a one-click unsubscribe link.
    • Email help@sunstonesecure.com with the subject line "Unsubscribe".

    Unsubscribe requests are honored within 10 business days. Unsubscribing from marketing emails does not affect transactional messages, such as replies to contact-form submissions or other communications you have specifically requested.

    Security researchers: please see our Vulnerability Disclosure Policy for how to report security issues.

    9. Children's Privacy

    Our website is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16 without verifiable parental consent, we will take steps to delete that information. If you believe we have collected information from a child under 16, please contact us.

    10. Changes to This Privacy Policy

    We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. The "Effective Date" at the top of the policy will indicate when it was last revised. We will notify you of any material changes by posting the updated policy on our website or by other appropriate means. We encourage you to review this Privacy Policy periodically.

    11. Contact Us

    If you have any questions or concerns about this Privacy Policy or our privacy practices, please contact us at:

    Sunstone Secure, LLC
    Belmont, California
    Email: help@sunstonesecure.com