Privacy Policy

1. Introduction and Scope

1.1 About This Policy

AutoPrintFarm, Inc. ("AutoPrintFarm," "Company," "we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes our practices concerning the collection, use, disclosure, retention, and protection of personal information obtained through our 3D print farm management software platform, website, mobile applications, and related services (collectively, the "Service" or "Platform").

1.2 Acceptance and Consent

By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy and our Terms of Service. If you do not agree with any provision of this Privacy Policy, you must immediately discontinue use of the Service and may not access or use any part of the Platform.

Your continued use of the Service following any changes to this Privacy Policy constitutes your acceptance of such changes. We reserve the right to update, modify, or replace any part of this Privacy Policy at our sole discretion.

1.3 Applicability

This Privacy Policy applies to all users of the Service, including but not limited to: individual users, business customers, administrators, end users within customer organizations, website visitors, and any other persons who interact with our Platform. This Policy applies regardless of how you access the Service, including through web browsers, mobile applications, APIs, or third-party integrations.

1.4 Legal Basis and Compliance

We process personal information in compliance with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), Brazilian General Data Protection Law (LGPD), Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), and other applicable privacy legislation worldwide.

The legal bases for our processing activities include: (a) performance of a contract with you or your organization; (b) compliance with legal obligations; (c) legitimate interests pursued by us or a third party (except where such interests are overridden by your data protection interests or fundamental rights and freedoms); (d) consent (where required or provided); and (e) protection of vital interests.

2. Definitions

For purposes of this Privacy Policy:

• "Personal Information" means any information relating to an identified or identifiable natural person, including but not limited to names, email addresses, IP addresses, device identifiers, and usage data.
• "Sensitive Personal Information" means personal information that reveals racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning a person's sex life or sexual orientation.
• "Processing" means any operation performed on Personal Information, whether automated or not, including collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure, dissemination, restriction, erasure, or destruction.
• "Data Controller" means AutoPrintFarm, which determines the purposes and means of Processing Personal Information.
• "Data Processor" means any entity that Processes Personal Information on behalf of AutoPrintFarm.
• "Customer Data" means any data, including Personal Information, that you or your authorized users submit to the Service.

3. Information We Collect

3.1 Information You Provide Directly

We collect the following categories of Personal Information that you provide directly to us:

• Account Registration Information: Full name, email address, company name, job title, phone number, billing address, password, and other authentication credentials.
• Profile and Preference Information: Profile photographs, communication preferences, notification settings, dashboard customizations, language preferences, and timezone settings.
• Payment and Billing Information: Credit card numbers, billing addresses, bank account information, tax identification numbers, and transaction history. Note: We use third-party payment processors (Stripe, PayPal) and do not directly store complete credit card numbers on our servers.
• Communications and Correspondence: Content of messages, support tickets, chat transcripts, email correspondence, survey responses, feedback submissions, and any other information you provide when communicating with us.
• User-Generated Content: 3D model files, STL files, G-code files, slicer settings, print profiles, material specifications, custom configurations, notes, comments, and any other content you upload or create within the Service.
• Business Information: Company registration details, tax information, business licenses, resale certificates, and organizational structure information (for business accounts).

3.2 Information Collected Automatically

We automatically collect the following information when you access or use the Service:

• Device Information: IP address, MAC address, device identifiers (UDID, IMEI), device type and model, operating system and version, browser type and version, screen resolution, device manufacturer, mobile network information, and unique application identifiers.
• Usage Data: Pages visited, features accessed, click-through rates, time spent on pages, navigation paths, search queries, access times and dates, referring and exit pages, feature adoption rates, error logs, crash reports, and performance data.
• Location Information: Approximate geographic location derived from IP address, precise location data (if you grant permission through your device settings), and timezone information.
• Log and Analytics Data: Server logs, application logs, API calls, request and response data, performance metrics, bandwidth usage, database queries, system errors, debugging information, and security logs.
• Cookies and Tracking Technologies: Cookie identifiers, session tokens, local storage data, cache data, advertising identifiers, analytics identifiers, and data collected through pixels, web beacons, and similar technologies. See our Cookie Policy for detailed information.

3.3 Operational and Production Data

The Service collects the following operational data from connected 3D printers and production equipment:

• Printer Hardware Data: Printer make and model, firmware versions, serial numbers, hardware capabilities, installed components, modification history, and equipment configurations.
• Operational Metrics: Real-time printer status, bed temperatures, nozzle temperatures, chamber temperatures, print speeds, movement patterns, motor current, fan speeds, power consumption, and operational uptime.
• Print Job Information: Job names, file metadata, estimated print times, actual print duration, layer heights, infill percentages, support structures, material usage, print success/failure status, pause/resume events, and job queue data.
• Material Tracking Data: Filament types, colors, manufacturers, spool identifiers, material costs, consumption rates, inventory levels, material properties, and storage conditions.
• Visual Monitoring Data: Camera feeds, time-lapse recordings, failure detection images, progress snapshots, image metadata, and AI-analyzed visual data (if camera monitoring is enabled).
• Quality and Performance Data: Print failure rates, first-layer adhesion metrics, warping incidents, layer inconsistencies, dimensional accuracy measurements, surface quality assessments, and historical performance trends.
• Maintenance Records: Maintenance schedules, service logs, component replacement records, calibration data, cleaning schedules, and preventive maintenance history.

3.4 Information from Third-Party Sources

We may receive information about you from third-party sources, including:

• Business Partners and Resellers: Information provided by authorized resellers, distributors, or implementation partners who facilitate your access to the Service.
• Integration Partners: Data from integrated platforms such as Shopify, WooCommerce, e-commerce platforms, inventory management systems, shipping providers, and other third-party services you connect to the Platform.
• Public Sources: Publicly available information from company registries, business directories, professional networks, and other public databases.
• Marketing and Analytics Providers: Demographic data, interest categories, engagement metrics, and behavioral data from third-party marketing and analytics services.
• Authentication Services: Information from single sign-on (SSO) providers, identity verification services, and OAuth authentication platforms (Google, Microsoft, etc.).

3.5 Information We Do Not Collect

We do not intentionally collect Sensitive Personal Information as defined under GDPR, CCPA, or other applicable laws, including information about racial or ethnic origin, political opinions, religious beliefs, health information, sexual orientation, genetic data, or biometric data for identification purposes. If you voluntarily provide such information to us, you consent to our processing of that information in accordance with this Privacy Policy.

4. How We Use Your Information

4.1 Service Provision and Performance

We use Personal Information to provide, operate, maintain, and improve the Service, including to:

• Create, manage, and authenticate user accounts
• Process and fulfill service requests and transactions
• Enable core functionality of the Platform, including printer monitoring, job queue management, and automated workflows
• Facilitate communication between users within your organization
• Provide customer support and respond to inquiries
• Process payments, generate invoices, and manage billing
• Deliver software updates, patches, and new features
• Enable integrations with third-party platforms and services

4.2 Analytics and Improvement

We use Personal Information to analyze, evaluate, and improve our Service, including to:

• Monitor and analyze usage patterns, trends, and user behavior
• Conduct research and development for new features and products
• Perform statistical analysis and data modeling
• Test and evaluate new functionality and user interfaces
• Optimize performance, reliability, and scalability
• Conduct A/B testing and user experience research
• Generate aggregated and anonymized insights and reports

4.3 Security and Fraud Prevention

We use Personal Information to protect the security and integrity of our Service, including to:

• Detect, prevent, and investigate fraud, abuse, and illegal activities
• Verify user identity and prevent unauthorized access
• Monitor for security threats, vulnerabilities, and suspicious activity
• Enforce our Terms of Service and other policies
• Protect against spam, phishing, and malicious attacks
• Conduct security audits and penetration testing
• Investigate and respond to security incidents

4.4 Communications

We use Personal Information to communicate with you, including to:

• Send transactional emails related to your account and service usage
• Deliver technical notices, updates, and security alerts
• Provide customer support and respond to your requests
• Send administrative communications about service changes, policy updates, and important notices
• Deliver marketing communications, promotional offers, and product announcements (with your consent where required)
• Conduct surveys and request feedback to improve our Service
• Send invoices, payment confirmations, and billing statements

4.5 Legal Compliance and Protection

We use Personal Information as necessary to:

• Comply with applicable laws, regulations, and legal processes
• Respond to lawful requests from government authorities, law enforcement, and regulatory bodies
• Enforce our legal rights and defend against legal claims
• Protect the rights, property, safety, and security of AutoPrintFarm, our users, and the public
• Fulfill tax, accounting, and financial reporting obligations
• Maintain records as required by law or regulation
• Conduct internal audits and compliance reviews

4.6 Business Operations

We use Personal Information for legitimate business purposes, including to:

• Facilitate mergers, acquisitions, divestitures, or asset sales
• Conduct due diligence in connection with business transactions
• Manage vendor and supplier relationships
• Administer corporate governance and compliance programs
• Maintain business records and archives
• Exercise or defend legal rights

5. Information Sharing and Disclosure

5.1 No Sale of Personal Information

We do not sell your Personal Information. We have not sold Personal Information in the preceding 12 months and do not have actual knowledge of selling Personal Information of consumers under 16 years of age.

5.2 Sharing with Your Consent

We may share your Personal Information with third parties when you provide explicit, informed consent for such sharing. You may revoke your consent at any time by contacting us at privacy@autoprintfarm.com.

5.3 Service Providers and Processors

We engage carefully selected third-party service providers to perform functions on our behalf under strict contractual obligations. These service providers are authorized to use Personal Information only as necessary to provide services to us and are contractually prohibited from using it for any other purpose. Categories of service providers include:

• Infrastructure and Hosting: Cloud computing providers (Amazon Web Services, Google Cloud Platform, Microsoft Azure) for data storage, processing, and hosting services.
• Payment Processing: Payment gateways and processors (Stripe, PayPal) for processing transactions, managing subscriptions, and handling refunds.
• Analytics and Monitoring: Analytics platforms (Google Analytics, Mixpanel) and performance monitoring tools for usage analysis and service optimization.
• Customer Support: Help desk and customer relationship management platforms (Zendesk, Intercom) for managing support tickets and customer communications.
• Email and Communications: Email service providers (SendGrid, Mailgun) and communications platforms for delivering transactional and marketing emails.
• Security Services: Security monitoring, threat detection, and cybersecurity service providers.
• Professional Services: Legal counsel, accountants, auditors, and consultants who require access to Personal Information to provide professional services.

We conduct due diligence on all service providers and require them to implement appropriate technical and organizational measures to protect Personal Information in accordance with applicable data protection laws.

5.4 Business Transfers

If AutoPrintFarm is involved in a merger, acquisition, asset sale, bankruptcy, dissolution, reorganization, or similar transaction or proceeding, Personal Information may be transferred, sold, or assigned as part of that transaction. We will provide notice before your Personal Information is transferred and becomes subject to a different privacy policy. In such event, we will require the acquiring entity to honor the commitments made in this Privacy Policy.

5.5 Legal Requirements and Protection

We may disclose Personal Information if required or permitted to do so by law, or in good faith belief that such disclosure is reasonably necessary to:

• Comply with legal obligations, court orders, subpoenas, warrants, or other legal processes
• Respond to lawful requests from government authorities, law enforcement agencies, or regulatory bodies
• Enforce our Terms of Service, policies, or other agreements
• Protect the rights, property, safety, or security of AutoPrintFarm, our users, or the public
• Detect, prevent, or investigate fraud, security breaches, or illegal activities
• Defend against legal claims or litigation
• Comply with tax, accounting, or financial reporting requirements

Where permitted by law, we will make reasonable efforts to notify you of such legal demands unless prohibited by law or court order, or if we believe notification could create a risk of harm or obstruct a legal investigation.

5.6 Within Your Organization

For business and enterprise accounts, Personal Information may be shared with administrators, team members, and authorized users within your organization as necessary to provide the Service and in accordance with your organization's access controls and permissions.

5.7 Aggregate and De-Identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you. Such information is not considered Personal Information under applicable data protection laws. We may use and disclose such information for any purpose, including for research, analytics, benchmarking, marketing, and business development purposes.

6. Data Security

6.1 Security Measures

We implement and maintain comprehensive technical, physical, and administrative security measures designed to protect Personal Information from unauthorized access, disclosure, alteration, and destruction. Our security program includes:

• Encryption: Industry-standard encryption for data in transit (TLS 1.2 or higher) and data at rest (AES-256 or equivalent).
• Access Controls: Role-based access controls (RBAC), principle of least privilege, multi-factor authentication (MFA), and strong password requirements.
• Network Security: Firewalls, intrusion detection and prevention systems (IDS/IPS), network segmentation, and DDoS protection.
• Application Security: Secure coding practices, regular security code reviews, penetration testing, and vulnerability assessments.
• Monitoring and Logging: Continuous security monitoring, audit logging, anomaly detection, and real-time alerting.
• Incident Response: Documented incident response procedures, security incident and event management (SIEM), and breach notification protocols.
• Employee Training: Regular security awareness training for all employees and contractors with access to Personal Information.
• Vendor Management: Security assessments of third-party vendors and contractual security requirements.
• Physical Security: Secure data center facilities with restricted access, surveillance systems, and environmental controls.
• Business Continuity: Regular backups, disaster recovery plans, and business continuity procedures.

6.2 Security Limitations

While we employ industry-standard security measures, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security of Personal Information. You acknowledge and accept the inherent security risks of providing information online and using Internet-based services, and agree that we have no liability for unauthorized access or disclosure of Personal Information except to the extent caused by our gross negligence or willful misconduct.

6.3 Your Security Responsibilities

You are responsible for maintaining the confidentiality of your account credentials and for all activities that occur under your account. You must:

• Use strong, unique passwords and change them regularly
• Enable multi-factor authentication when available
• Not share your account credentials with others
• Immediately notify us of any unauthorized access or security breach
• Log out of your account when using shared or public devices
• Keep your devices and software updated with security patches

6.4 Data Breach Notification

In the event of a data breach that compromises your Personal Information, we will notify affected individuals and relevant authorities in accordance with applicable data breach notification laws. Notification will include the nature of the breach, types of information affected, steps we are taking to address the breach, and recommended actions you should take to protect yourself.

7. Data Retention and Deletion

7.1 Retention Periods

We retain Personal Information for as long as necessary to fulfill the purposes for which it was collected, provide the Service, comply with legal obligations, resolve disputes, enforce agreements, and as otherwise permitted or required by law. Specific retention periods include:

• Active Account Data: Retained for the duration of your active account plus 90 days following account closure or termination.
• Transaction Records: Retained for 7 years from the date of transaction to comply with tax, accounting, and financial reporting requirements.
• Communications: Support tickets and customer communications retained for 3 years for quality assurance and dispute resolution purposes.
• Usage and Analytics Data: Aggregated usage data retained for 2 years; individual usage logs retained for 90 days.
• Security Logs: Retained for 1 year for security monitoring and incident response purposes.
• Backups: Backup data retained for 30 days and automatically deleted thereafter, unless subject to legal hold or preservation obligations.
• Marketing Data: Retained until you withdraw consent or opt out of marketing communications, plus 30 days for administrative processing.

7.2 Deletion Process

Upon expiration of applicable retention periods, we securely delete or anonymize Personal Information using industry-standard data sanitization methods. Deletion includes removal from active databases and backup systems, subject to technical limitations and legal requirements.

7.3 Legal Holds and Exceptions

We may retain Personal Information beyond standard retention periods if required by law, regulation, legal process, litigation hold, or to protect our legitimate interests. Such retention will be limited to the minimum period necessary for the applicable purpose.

7.4 Account Deletion

When you delete your account, we will delete your Personal Information within 90 days, except for:

• Information we are required to retain by law or regulation
• Information necessary to complete transactions initiated before account deletion
• Information needed to resolve disputes or enforce agreements
• Information retained in backup systems for up to 30 days
• Aggregated or de-identified information that no longer identifies you

8. Your Rights and Choices

8.1 General Rights

Subject to applicable law, you have the following rights regarding your Personal Information:

• Right to Access: Request confirmation of whether we Process your Personal Information and obtain a copy of such information.
• Right to Rectification: Request correction of inaccurate, incomplete, or outdated Personal Information.
• Right to Erasure (Right to be Forgotten): Request deletion of your Personal Information, subject to legal exceptions and retention obligations.
• Right to Restriction of Processing: Request that we restrict or limit Processing of your Personal Information in certain circumstances.
• Right to Data Portability: Receive your Personal Information in a structured, commonly used, machine-readable format and transmit it to another controller.
• Right to Object: Object to Processing based on legitimate interests or for direct marketing purposes.
• Right to Withdraw Consent: Withdraw previously provided consent at any time, without affecting the lawfulness of Processing based on consent before withdrawal.
• Right to Lodge a Complaint: File a complaint with a supervisory authority if you believe your data protection rights have been violated.

8.2 GDPR Rights (European Economic Area Residents)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the GDPR, including:

• Right to obtain information about the legal basis for Processing
• Right to information about data transfers to third countries
• Right to object to automated decision-making and profiling
• Right to lodge a complaint with your local supervisory authority

Our designated EU representative can be contacted at eu-privacy@autoprintfarm.com.

8.3 CCPA/CPRA Rights (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

• Right to Know: Request disclosure of the categories and specific pieces of Personal Information we have collected, the categories of sources, business purposes, and categories of third parties with whom we share information.
• Right to Delete: Request deletion of Personal Information we have collected from you, subject to certain exceptions.
• Right to Correct: Request correction of inaccurate Personal Information.
• Right to Opt-Out of Sale/Sharing: We do not sell or share Personal Information as defined under CCPA/CPRA.
• Right to Limit Use of Sensitive Personal Information: We do not use or disclose Sensitive Personal Information for purposes other than permitted under CCPA/CPRA.
• Right to Non-Discrimination: Exercise your privacy rights without receiving discriminatory treatment.

To exercise these rights, contact us at privacy@autoprintfarm.com or call toll-free at 1-800-XXX-XXXX. We will verify your identity before processing your request.

8.4 Other Jurisdictions

Residents of other jurisdictions may have additional privacy rights under applicable local laws. Please contact us at privacy@autoprintfarm.com to exercise rights available under your local laws.

8.5 Exercising Your Rights

To exercise any of your privacy rights, please submit a request through one of the following methods:

• Email: privacy@autoprintfarm.com
• Privacy Request Form: Available in your account settings
• Mail: AutoPrintFarm, Inc., Attn: Privacy Officer, [Address]

We will respond to verified requests within the timeframes required by applicable law (generally 30-45 days). We may request additional information to verify your identity before processing your request. You may designate an authorized agent to make requests on your behalf; however, we may require proof of authorization and direct verification of your identity.

8.6 Marketing Communications

You may opt out of receiving marketing communications from us by:

• Clicking the "unsubscribe" link in marketing emails
• Adjusting email preferences in your account settings
• Contacting us at privacy@autoprintfarm.com

Please note that opting out of marketing communications does not affect transactional or administrative communications necessary for providing the Service.

9. Cookies and Tracking Technologies

We use cookies, web beacons, pixels, local storage, and similar tracking technologies to collect information about your browsing activities and to provide, analyze, and improve our Service. For detailed information about our use of cookies and your choices regarding cookies, please review our Cookie Policy.

You can control cookies through your browser settings and opt out of certain analytics and advertising services. However, disabling cookies may limit your ability to use certain features of the Service.

10. International Data Transfers

10.1 Cross-Border Transfers

AutoPrintFarm operates globally, and Personal Information may be transferred to, stored in, and processed in countries other than your country of residence, including the United States and other jurisdictions where data protection laws may differ from those in your country.

10.2 Safeguards for International Transfers

When we transfer Personal Information from the EEA, UK, or Switzerland to countries that do not provide an adequate level of data protection as determined by the European Commission, we implement appropriate safeguards, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Binding Corporate Rules (where applicable)
• Adequacy decisions recognizing certain countries as providing adequate protection
• Your explicit consent for specific transfers
• Derogations for specific situations as permitted under Article 49 GDPR

10.3 Privacy Shield

While we previously relied on the EU-U.S. and Swiss-U.S. Privacy Shield frameworks, these frameworks have been invalidated. We now rely on Standard Contractual Clauses and other appropriate safeguards for transfers to the United States and other third countries.

10.4 Data Localization

For customers subject to data localization requirements, we offer regional data hosting options. Please contact privacy@autoprintfarm.com to discuss data residency requirements.

11. Children's Privacy

The Service is not intended for, directed to, or designed to attract children under the age of 16 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect Personal Information from children under 16. If we become aware that we have collected Personal Information from a child under 16 without parental consent, we will take steps to delete such information as soon as possible.

If you are a parent or guardian and believe your child has provided Personal Information to us, please contact us immediately at privacy@autoprintfarm.com. Upon verification, we will delete such information within 30 days.

12. Third-Party Links and Services

The Service may contain links to third-party websites, applications, or services that are not owned or controlled by AutoPrintFarm. This Privacy Policy does not apply to third-party websites or services. We are not responsible for the privacy practices, content, or security of third-party sites.

When you integrate third-party services with the Platform (such as Shopify, WooCommerce, or other e-commerce platforms), those services may collect information independently. We encourage you to review the privacy policies of all third-party services before providing any Personal Information or connecting such services to your account.

We provide integration capabilities but do not control or endorse third-party services. Your use of third-party services is at your own risk and subject to the terms and privacy policies of those third parties.

13. Automated Decision-Making and Profiling

We may use automated decision-making and profiling technologies to analyze usage patterns, optimize service delivery, and provide personalized recommendations. Such processing includes:

• AI-powered print failure detection and quality monitoring
• Automated job queue optimization and printer assignment
• Predictive maintenance scheduling based on usage patterns
• Material consumption forecasting and inventory recommendations
• Personalized dashboard and feature recommendations

You have the right to object to automated decision-making that produces legal or similarly significant effects. To exercise this right or request human review of automated decisions, contact privacy@autoprintfarm.com.

14. Do Not Track Signals

Some web browsers incorporate a "Do Not Track" (DNT) feature that signals to websites you visit that you do not want to have your online activity tracked. Currently, there is no uniform technology standard for recognizing and implementing DNT signals. As such, we do not currently respond to DNT browser signals or other mechanisms that automatically communicate your choice not to be tracked online.

If a DNT standard is established that we determine is reasonable to follow, we will inform you of our practices in an updated version of this Privacy Policy.

15. Changes to This Privacy Policy

15.1 Modification Rights

We reserve the right to modify, amend, or update this Privacy Policy at any time in our sole discretion. Changes may be necessary due to changes in law, regulation, industry practices, technology, our business operations, or for other legitimate purposes.

15.2 Notice of Changes

When we make material changes to this Privacy Policy, we will notify you by:

• Posting the updated Privacy Policy on this page with a new "Last Updated" date
• Sending an email notification to the email address associated with your account (for material changes)
• Displaying an in-app notification when you next access the Service (for material changes)
• For material changes that expand our rights to use Personal Information, obtaining your explicit consent where required by law

15.3 Review Responsibility

You are responsible for periodically reviewing this Privacy Policy to stay informed of updates. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Privacy Policy. If you do not agree with the changes, you must discontinue use of the Service and may request deletion of your account and Personal Information.

15.4 Previous Versions

Upon request, we will provide you with previous versions of this Privacy Policy. Contact privacy@autoprintfarm.com to request archived versions.

16. Contact Information and Data Protection Officer

16.1 Privacy Inquiries

If you have questions, concerns, or complaints regarding this Privacy Policy, our data practices, or wish to exercise your privacy rights, please contact us at:

• Email: privacy@autoprintfarm.com
• Privacy Request Form: Available at autoprintfarm.com/contact-us
• Mail: AutoPrintFarm, Inc.
  Attn: Privacy Officer
  [Complete Mailing Address]
• Phone: 1-800-XXX-XXXX (toll-free)

16.2 Data Protection Officer

Our Data Protection Officer can be contacted at:

• Email: dpo@autoprintfarm.com
• Mail: Data Protection Officer, AutoPrintFarm, Inc., [Address]

16.3 EU Representative

For residents of the European Economic Area, our EU representative can be contacted at:

• Email: eu-privacy@autoprintfarm.com

16.4 Response Time

We will respond to privacy inquiries within 30 days (or as otherwise required by applicable law). For complex requests, we may extend our response time by an additional 30 days with notice to you.

16.5 Supervisory Authorities

If you are located in the EEA, UK, or Switzerland, you have the right to lodge a complaint with a supervisory authority if you believe our processing of your Personal Information violates applicable data protection laws. A list of supervisory authorities is available at https://edpb.europa.eu/about-edpb/board/members_en.

17. California Shine the Light Law

California Civil Code Section 1798.83 permits California residents to request certain information regarding our disclosure of Personal Information to third parties for direct marketing purposes. We do not share Personal Information with third parties for their direct marketing purposes without your explicit consent.

18. Nevada Privacy Rights

Nevada residents have the right to opt out of the sale of certain covered information collected by website operators. We do not sell covered information as defined under Nevada law. If you are a Nevada resident and have questions, contact us at privacy@autoprintfarm.com.

19. Disclaimer and Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, AUTOPRINTFARM SHALL NOT BE LIABLE FOR ANY DAMAGES ARISING FROM OR RELATED TO UNAUTHORIZED ACCESS, USE, OR DISCLOSURE OF PERSONAL INFORMATION, EXCEPT TO THE EXTENT SUCH UNAUTHORIZED ACCESS, USE, OR DISCLOSURE IS CAUSED BY OUR GROSS NEGLIGENCE OR WILLFUL MISCONDUCT.

YOU ACKNOWLEDGE THAT INTERNET TRANSMISSIONS ARE NEVER COMPLETELY PRIVATE OR SECURE AND THAT ANY MESSAGE OR INFORMATION YOU SEND TO THE SERVICE MAY BE READ OR INTERCEPTED BY OTHERS, EVEN IF THERE IS A SPECIAL NOTICE THAT A PARTICULAR TRANSMISSION IS ENCRYPTED.

20. Entire Agreement and Severability

This Privacy Policy, together with our Terms of Service and Cookie Policy, constitutes the entire agreement between you and AutoPrintFarm regarding the processing of your Personal Information and supersedes all prior or contemporaneous understandings or agreements, written or oral, regarding such subject matter.

If any provision of this Privacy Policy is found by a court of competent jurisdiction to be invalid, illegal, or unenforceable, such provision shall be modified to the minimum extent necessary to make it valid, legal, and enforceable. If such modification is not possible, the provision shall be severed from this Privacy Policy, and the remaining provisions shall continue in full force and effect.