Privacy Policy

Unmelted, LLC has created this Privacy Policy in order to demonstrate our firm commitment to privacy. The following discloses our information gathering and dissemination practices for Ozzu, located at www.ozzu.com. It was last updated on October 5, 2021. We understand the power that the internet holds for changing your life and making things easier for you. We are committed to providing you with an internet experience that respects and protects your personal privacy choices and concerns.

Unmelted, LLC follows all legal requirements to protect your privacy. Our Privacy Policy is a legal statement that explains how we may collect personal information from you, what types of personal information is collected, when and why we might use or need your personal information, how we may disclose your personal information to 3rd parties, how you can limit our sharing of your personal information, and how you can access, update, rectify, or delete your personal information. Some language throughout this Privacy Policy have specific meanings as described in the Definitions section immediately below.

Definitions

  • Our, We, and/or Us: When any of these pronouns are used they are referring to Unmelted, LLC, the company that owns and operates Ozzu.
  • Personal Data: Personal Data means data about a living individual who can be identified, directly or indirectly from that data. In particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that living individual. In other words, this is data that is unique to you, and can be used directly or indirectly to identify you.
  • Data Controller: This refers to a natural or legal person who (either alone or jointly or in common with other persons) determines the purpose for which and the manner in which any Personal Data are, or are to be, processed.
  • Data Processors: This means any natural or legal person who processes Personal Data on behalf of the Data Controller. We may use the services of various Data Processors in order to process your data more effectively.
  • IP Address: An Internet Protocol Address, otherwise known as an IP Address, is a numeric label assigned to your device when connected to a computer network.
  • Public Areas: A public area on our website is an area where you can share or post data that is available for anyone to see on the Internet. This includes, but is not limited to, numerous areas of our community including our discussion area, question / answer section, market, and making comments on articles, threads, services, or products.

How We Collect Information

In the course of providing you access to areas of our website including obtaining products or services, Unmelted, LLC collects and receives your Personal Data in a few different ways. Often times the sort of data you provide us will be optional, but sometimes certain Personal Data will be required to carry out activities such as fulfilling a contract, obtaining a product or service, or creating an account so that you can be authenticated into our systems. There are numerous areas where Personal Data may be collected from you including:

  • Account Registration — This is where you initially create an account to authenticate into our systems.
  • Account Updates or Modification — This area lets you update your account which includes modifying previous data or adding new data.
  • Public Profile Information — You can add or update data on your public profile page.
  • Billing Information — When completing a financial transaction in exchange for a product or service.
  • Legal Contracts — Some products or services may require a legal contract. For example if you were to offer some of your products for sale in our market, you would be required to enter Personal Data so that the agreement can be binding.
  • Browser or Mobile Device — We receive different types of information from your browser or mobile device.
  • Information from 3rd Parties — To improve user experience, we offer the ability to create or login to your account via different providers such as Facebook, Twitter, and Google, amongst many others. When using these services we may receive Personal Data from these third parties to be able to authenticate your account.

Information Collected

We collect several different types of information for various purposes to provide and improve our service to you. The Personal Data we collect will depend on the type of service you are requesting from us. Types of data we collect:

  • Personal Data — While using any of our services, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you, to complete a financial transaction in exchange for a product or service, or as part of a legal contract in order to provide you with a product or service. Personally identifiable information may include, but is not limited to your e-mail address, phone number, domain / website, username, name, company, street address, city, state, province, region, and zip/postal code.
  • Usage Data — We may also collect information on how our website and services are accessed and used. This usage data may include information such as your computer's IP Address or proxy server IP Address, your general location, the domain name you requested, the website which referred you to our website, the name of your internet service provider, operating system and version, browser type and version, the pages of our website that you visit, the date and time of your visit, the time spent on those pages, how often you visit our website, unique device identifiers and other diagnostic data.
  • Cookies & Tracking Data — As described in our Cookie Policy, we use different types of cookies and similar technologies (e.g., web beacons, pixels, ad tags, and device identifiers) for different purposes on our website. We have categorized these cookies into 4 main types: required cookies, preference cookies, analytical cookies, and marketing cookies.

Information Use

Personal Data and other information we collect are used for a variety of purposes including:

  1. To provide customer service.
  2. To provide and maintain services on our website.
  3. To notify you about changes or updates to any services or products that you are subscribed to.
  4. To allow participation in interactive features of our website including but not limited to our discussion area, question / answers, commenting on articles, threads, services, or products.
  5. To provide you with news, special offers, or general information about products, services, and events.
  6. To provide you alerts about your account, or areas you are participating.
  7. To analyze trends and to gather general demographic information for aggregate use.
  8. To provide you more personalized content or advertising.
  9. To detect, prevent, and address technical issues.
  10. To ensure the security of our systems, detect and prevent fraud, and to detect and prevent unauthorized or unlawful system access.

Specific Personal Data we may process and the reasons or circumstances for when they are needed:

  • E-mail Address — Needed as an identifier and a way to login to our systems if you choose to create an account on our website. An account is needed to participate in areas of our website or to subscribe to services and/or purchase products. If you ever lose access to our systems we may use your e-mail address to send you a special link so that you can reset your password and re-gain access to our systems. Under certain circumstances, and when clearly stated and authorized by you, we may also use your e-mail address to send you different types of messages all of which you have a choice to receive or not. If you seek customer support from us, we may utilize your e-mail address as a means to communicate with you. You can update your communication preferences by clicking the communication preferences button below:
  • Phone Number — Your phone number is generally not required by any services or products on our website. Providing us your phone number is optional, but you may choose to provide your phone number to us if seeking customer support or if you want to provide us an alternate way to contact you besides your e-mail address.
  • Domain / Website — Your website address may be required depending on the products or services you are obtaining from us. We may need your website address so that it can be authorized or licensed to use certain products or services you have obtained from us. Your website address may also be required if using web hosting with us so that we can setup and serve your webpages.
  • Username — Needed as an identifier and a way to login to our systems if you choose to create an account on our website. An account is needed to participate in areas of our website or to subscribe to services and/or purchase products. Your username is visible publicly so care should be taken to choose one that is suitable for you. Areas your username may be visible publicly include but is not limited to our discussion area, question / answer section, customer support or contacting us, your public profile, and commenting on articles, threads, services, or products.
  • Name — Your legal full name is only required if you need to complete a financial transaction in exchange for a product or service, or as part of a legal contract in order to provide you with a product or service. Your name will not be shown publicly on any parts of our website.
  • Company — If applicable, your company name may be required if they are the entity that needs to complete a financial transaction for a product or service, or as part of a legal contract in order to provide your company with a product or service. Your company name will not be shown publicly on any parts of our website.
  • Street Address — Your street address is only required if you need to complete a financial transaction in exchange for a product or service, or as part of a legal contract in order to provide you with a product or service. Your street address will not be shown publicly on any parts of our website.
  • City — Your city is only required if you need to complete a financial transaction in exchange for a product or service, or as part of a legal contract in order to provide you with a product or service. Your city can also be optionally added to your user profile if you wish to share your city publicly which may assist in networking or creating relationships with others.
  • State / Province / Region — This is only required if you need to complete a financial transaction in exchange for a product or service, or as part of a legal contract in order to provide you with a product or service. Your state / province / region can also be optionally added to your user profile if you wish to share your general location publicly which may assist in networking or creating relationships with others.
  • Zip / Postal Code — This is only required if you need to complete a financial transaction in exchange for a product or service, or as part of a legal contract in order to provide you with a product or service. You zip / postal code will not be shown publicly on any parts of our website.
  • IP Address — All visitor's IP addresses are recorded in our logs to ensure the security of our systems, detect and prevent fraud, and to detect and prevent unauthorized or unlawful system access. We also record IP addresses in our logs to detect, prevent, and address technical issues so that we can improve the services for our users. When a new user account is created, we record the IP Address and timestamp in our database to enforce our Terms of Use, and to record acceptance of our Acceptable Use Policy, Privacy Policy and Cookie Policy. In the event that our Terms of Use, Acceptable Use Policy, Privacy Policy, or Cookie Policy are updated, we will again record the IP Address and timestamp in our database when the User accepts the changes. When completing a financial transaction in exchange for a product or service, we record the IP address and timestamp in our database to help prevent fraudulent transactions. When electronically signing a contract or agreement we record the IP address and timestamp in our database so that they can be enforced. We may block IP addresses of abusive visitors or members in violation of our terms and conditions to prevent them from accessing our servers, participating in our community, accessing any products or services, or to ensure the security of our systems.

If participating in Public Areas of our community any content you create will be publicly accessible and will be attributed to your username. Your username will also link to a public profile where by default will be limited in scope revealing no Personal Data other than your username. Your public profile will also reveal statistic information about how you contribute on our website, when you became a member, reputation, badges, and show links to some or all of the areas you have contributed to. Optionally, at your sole discretion, you have the ability to add additional content on your public profile including a profile picture and description which can contain anything you want as long as it abides by our Term of Service and Acceptable Use Policy. Careful consideration should be taken if you choose to add any Personal Data to this page.

Please take appropriate precautions when posting on Public Areas of our website as to not include data that you may regret having public in the future. If you have found that you accidentally posted Personal Data in the past and want it removed, please contact us and provide us with the URL where the Personal Data is located that should be removed. We will work with you to remove any Personal Data within a reasonable timeframe.

Please note that once information has been posted in our Public Areas we cannot control what others might do with this information, and it is entirely possible other third parties will share your information on other websites. Thus, if you remove public information from our website, this will not remove your information from any others who re-published this information outside of our control.

Do Not Track (DNT)

DNT is the concept that has been promoted by regulatory authorities, in particular the U.S. Federal Trade Commission (FTC), for the industry to develop and implement a mechanism for allowing internet users to control the tracking of their online activities across websites. The World Wide Web Consortium (W3C) has been working with industry groups, Internet browsers, technology companies, and regulators to develop a DNT technology standard. While some progress has been made on this issue, it has been slow, and to date no standard has been adopted.

The California Online Privacy Policy Act (CalOPPA) requires website operators like Unmelted, LLC to disclose how they respond to DNT signals. While Unmelted, LLC takes privacy and security seriously, at this time this website does not respond to DNT signals in browsers because no DNT standard has been adopted. We will continue to monitor W3C efforts in developing a DNT standard.

Disclosing Information to 3rd Parties

We utilize many 3rd party services for different purposes on our website of which we may share your personal information, but only to the extent necessary to perform these functions and provide such services. We require that these 3rd parties maintain the privacy and security of the personal information they process on our behalf. These 3rd party services assist us in performing different types of tasks which will be explained below.

Avatars

We may utilize third parties to obtain an avatar image you have uploaded on another website. An avatar is an image that is associated with your account that is shown publicly on Ozzu. By default we will generate an avatar image based on your registered username with us; however, we will occasionally look to third parties to find a more appropriate avatar if using our generated default avatar. We work with the following third parties:

  • Gravatar — This service by Automattic allows its users to upload images and then to associate those images to one or more e-mail addresses via the e-mail addresses' corresponding MD5 checksum. Outside parties such as Ozzu can then query Gravatar's system for images associated to an MD5 checksum. To process this request we will generate an MD5 checksum of your e-mail address associated with your account at Ozzu. This MD5 checksum is then sent to Gravatar, and if it matches a MD5 checksum stored in Gravatar's system then they will return the corresponding image. If Gravatar returns an image we may download and utilize this for your avatar on Ozzu instead of the generated default. Please see Automattic's Privacy Policy for more information.

Payments

We may require Personal Data to complete a financial transaction in exchange for a product or service on our website. To complete financial transactions, we use third party services for payment processing. We do not store or collect your payment card details. This information is provided directly to our third party payment processors who use your Personal Data and is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a join effort of brands like Visa, Mastercard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of payment information. We work with the following payment processors:

  • Stripe — When sensitive payment information is entered into forms on our website, this data is securely transmitted directly to Stripe without passing it through our servers. The card details are then converted to a representative token that is returned to us so that we can complete any transactions for products or services on our website. Please see Stripe's Privacy Policy for more information. When making any financial transactions on our website Stripe may be a Data Processor of your Personal Data.
  • Paypal — When paying via Paypal, we redirect our customers to Paypal's website to complete any transactions for products or services on our website. Paypal will send us a notification when it has received a payment, and from there we will process your request. Please see Paypal's Privacy Policy for more information. When making any financial transactions on our website, Paypal may be a Data Processor of your Personal Data.

Tag Management

We may use third party services to help manage different tags (snippets of code or tracking pixels) that load on our web pages.

  • Google Tag Manager — This is a tag manager solution offered by Google that allows us to easily manage and deploy tags without having to modify our website. Depending on what services are active and your cookie settings at Ozzu, unique identifiers such as your Ozzu user id may be passed through this service to other services.

Challenge—Response Tests

Some pages on our website may use third party services to run challenge-response tests to help determine if a user is a human or a robot. This is commonly known as a CAPTCHA, or Completely Automated Public Turing test to tell Computers and Humans Apart . We use these challenge-response tests to help ensure that real humans are interacting with different parts of our community including contact forms, registration and authentication systems, areas in which users can post content, resources, marketplace items, and other areas where user input is sent to Ozzu for processing.

  • Google reCAPTCHA — This challenge—response system which helps differentiate humans from robots works by collecting hardware and software information, such as device and application data, and sending this data to Google for analysis. This information collected helps to improve Google's reCAPTCHA service and for general security purposes. It is not used for personalized advertising by Google.

Analytics

We may use third party service providers to monitor and analyze how our website is utilized.

  • Google Analytics — This is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our website. If available, Google may use non-aggregated data, as well as aggregated data to generate different types of reports so that we can analyze our traffic. For countries affected by GDPR, we enable IP Anonymization in Google Analytics by default so that our visitor's IP Addresses are anonymized as soon as technically feasible at the earliest possible stage in the collection network. The IP anonymization feature sets the last octet of IPv4 user IP addresses and the last 80 bits of IPv6 addresses to zeros in memory. The full IP address is never written to disk in this case, and geographic dimensions are later derived from these anonymized IP addresses with less accuracy. For all other countries IP anonymization is disabled by default during the collection process and geographic locations are derived from the full IP address which provides a better and more accurate understanding of where our audience is located. Google does not make this IP Address data available to its end-users or for any of its reporting. It is also important to note that IP-based locations are approximate, even when utilizing the full IP address. If you are authenticated into Ozzu we pass a non-identifiable hash unique to your account to enable the User-ID feature available with Google. This allows us to link cross device and browser sessions together so that we can understand our visitor's browsing habits and how different devices and browsers are used together for interacting with Ozzu over an extended period of time. If Marketing Cookies is enabled in your cookie settings, then Advertising Features is enabled in Google Analytics which includes Google Signals. This allows Google to associate its signed in users who have enabled Ad Personalization with visitor information it collects from Ozzu. Google's user information may include end user location, search history, YouTube history, and data from sites that partner with Google which is used to provide aggregated and anonymized insights into Ozzu's user's cross device behaviors. Please see Google's Privacy Policy and Ad Personalization for more information. This data can be accessed and/or deleted by end user's at Google's My Activity page. For historical research and statistical purposes, the data retention period that applies to user-level and event-level data associated with cookies, user-identifiers, and advertising identifiers is not set to automatically expire.

Advertising & Marketing Partners

When viewing pages on our website, we and authorized third parties may place cookies on your browser as described in our cookie policy. Depending on your cookie settings with us, this information may be utilized to serve you personalized advertising content. This may include ads from our own systems which can include our product or services, or a 3rd parties products or services. This may also include ads from 3rd party networks we utilize, some of which you can opt out of personalized ads for all websites (including ours):

We may occasionally use remarketing or similar audience features in Google Analytics, Google Adwords, Bing Ads, Oath (including Yahoo! Gemini), or Facebook. We may use remarketing to target visitors who have visited our website in the past to show them ads that may interest them and bring them back to our website. When we use remarketing we may use third party vendors including Google Analytics, Google Adwords, Bing Ads, Yahoo Gemini!, or Facebook to show our ads across the Internet on other websites. For remarketing to work, these third party vendors may set 3rd party cookies when visiting our website so that ads can be targeted to these visitors at a later date on a different website. You may view our Cookie Policy for full details and/or you can change your cookie settings and turn off Remarketing on our website if you do not want to be re-targeted. Alternatively our remarketing may also be done by sharing hashed versions of your Ozzu account's e-mail addresses to create customized or similar audiences. Additionally some third party vendors allow you to change your ad preferences and/or opt out the use of cookies for all websites you visit (including ours):

Market Sellers

The majority of items in the Ozzu Market are created by third party sellers. Ozzu is a facilitator who works with both the buyer and seller in order to deliver a seller's item in exchange for payment from the buyer. Ozzu oversees the listing of products, handling of payments, the fulfillment of the items purchased, and dispute resolution. After purchasing an item from the Ozzu Market your relevant contact information and items purchased may be shared with the corresponding seller for invoicing and/or support related purposes. Sellers have agreed to process any personal information in a manner that is consistent with our privacy policy as well as any applicable privacy law and data protection regulations.

Website Links

This website may contain links to other websites that are not operated by us. This website and other websites operated by Unmelted, LLC are not responsible for the privacy practices or the content of other such websites. We strongly advise you to review the Privacy Policies for any website you visit from links found on our website.

Children's Privacy

We do not provide services for anyone under the age of 16 ("Children"). To create an account with us or to utilize any of our products or services you must be 16 years or older.

We do not knowingly collect Personal Data from anyone under the age of 16. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us so that we can take immediate steps to remove that information from our servers.

Security of Data

This website has security measures in place to prevent the loss, misuse, and alteration of the information under our control. All of our web pages are served via secure connections utilizing the HTTPS protocol which encrypts data that is sent between our servers and your computer. This helps to prevent eavesdropping or having data unintendedly intercepted by third parties. Any Personal Data that is stored in our databases are encrypted which requires special keys to be able to decrypt and read the data. For data such as passwords, we only store a one-way computed hash value. A hash is a one-way encrypting function that that makes it nearly impossible with today's technology to reverse engineer. That means that if you were to ever lose your password, we cannot recover it. Instead you would be required to use our password reset tool to re-gain access to your account.

Only authorized personnel have access to Personal Data stored in our databases. All reasonable precautions are taken to prevent unauthorized access to this information. This safeguard may require you to provide additional forms of identity should you wish to obtain information about your account.

Transfer of Data

Any information you provide to us, including Personal Data, may be transferred to, and maintained on servers outside of your state, province, region, country, or other government jurisdiction where data protection laws may differ than those from your jurisdiction. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.

If we are involved in a merger, acquisition, or asset sale, your Personal Data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.

Compliance With Laws and Law Enforcement

We cooperate with government and law enforcement officials to enforce and comply with the law. We will disclose any Personal Data or other information about our users upon valid request by government or law officials as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process (including without limitation subpoenas), to protect your property and rights, or the property and rights of a third party, to protect the safety of the public or any person, or stop activity we consider illegal or unethical.

Your Rights and Choices under CCPA

The CCPA, otherwise known as the California Consumer Privacy Act of 2018, provides consumers residing in California specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.

In certain circumstances, you have the following rights:

  • Right of Access — You have the right to access your personal information that we have collected within 45 days of you making a request. Upon such a request the information will be made in a portable and easily accessible format. The information we provide will include categories of personal information collected, sources of that data, business purpose, third parties with whom the personal information was shared, and specific pieces of personal information that was collected.
  • Right to Deletion — You have the right to request the deletion of your personal information, however, this right does not apply when we need to retain your personal data in order to do any of the following:
    • Provide you goods or services.
    • Detect or resolve issues with security or functionality.
    • Comply with the law.
    • Conduct research in the public interest.
    • Safeguard the right to free speech.
    • Carry out any actions for internal purposes that you might reasonably expect.
  • Right to Non-Discrimination — You have the right not to be discriminated against for having exercised your rights under the CCPA. Unless permitted by the CCPA, we will not:
    • Deny you goods or services.
    • Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
    • Provide you with a different level or quality of goods or services.
    • Threaten you with any of the above.

Personal Information Disclosed for Business Purposes

Over the last 12 months Unmelted, LLC has disclosed to third parties personal information for business purposes including auditing, security, debugging, short-term uses, performing services, internal research, and testing or improvement.

Please see Disclosing Information to 3rd Parties for full details on what information is disclosed to third parties for business purposes.

Do Not Sell My Personal Information

The CCPA requires any business that sells consumers' personal information to provide a web page where consumers can opt out of having their personal information sold. The business must link to this page on both the front page of its website and its Privacy Policy (this page).

Unmelted, LLC wants to be fully transparent with the data we collect and how it is shared which is why we include this section for clarification. However, there is nothing for us to comply with here because Unmelted, LLC does not sell your personal data to anyone!

Exercising Access or Deletion Rights under CCPA

To exercise access or deletion rights as described above for CCPA, please submit a verifiable consumer request to us by contacting us.

Only you, or a person registered with the California Secretary of State that you authorized to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child (we only allow children 16 years or older to have an account on Ozzu).

You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

  • Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative.
  • Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.

Making a verifiable consumer request does not require you to create an account or be logged in to Ozzu. However, we do consider requests made through your password protected account sufficiently verified when the request relates to personal information associated with that specific account.

We will only use personal information provided in a verifiable consumer request to verify the requester's identity or authority to make the request.

Your Data Protection Rights Under GDPR

If you are a resident of the European Economic Area (EEA) , you have certain data protection rights under General Data Protection Regulation (GDPR). Unmelted, LLC aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data whether you are inside or outside of the EEA. If you wish to be informed what Personal Data we hold about you and/or if you want it to be removed from our systems, please contact us.

In certain circumstances, you have the following data protection rights:

  • The right to be informed — You have the right to know how we are using your Personal Data.
  • The right to access, update or to delete the Personal Data we have on you.
  • The right of rectification — You have the right to have your personal data rectified if that information is inaccurate or incomplete.
  • The right to object — In certain circumstances, you have the right to object to our processing of your Personal Data. This includes using your Personal Data for the purpose of direct marketing, scientific and historical research, or for the performance of a task in the public interest.
  • The right of restriction — You have the right to block or suppress the the processing of your Personal Data.
  • The right to data portability — You have the right to be provided with a copy of your Personal Data in a structured, machine-readable and commonly used format.
  • Rights of automated decision making and profiling — The GDPR has put in place safeguards to protect individuals against the risk that a potentially damaging decision is made without human intervention. For example, individuals can choose not to be the subject of a decision where the consequence has a legal bearing on them, or is based on automated processing.

Please note that we may ask you to verify your identity before responding to such requests.

You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

Data Controller

Unmelted, LLC is a data controller of your Personal Data.

Sales of Personal Data

Unmelted, LLC has not sold any personal information in the past 12 months.

Changes to This Policy

Any changes to our Privacy Policy will be placed here and will supersede this version of our Policy. We will take reasonable steps to draw your attention to any changes in our Policy. However, to be on the safe side, we suggest that you read this document each time you use the website to ensure that it still meets with your approval.

Contact Information

If you have any questions or complaints about our Privacy Policy please contact us. Our mailing address is:

Unmelted, LLC 18429 Veterans Memorial Dr E #7522 Bonney Lake, WA 98391 United States