Privacy Policy

---

1. Information We Collect

We collect only the information necessary to deliver our service, improve your experience, and fulfill our legal obligations. We operate on a data minimization principle — we never collect more than we need, and we never sell your data to third parties.

1.1 Information You Provide Directly

We may collect personal information when you interact with us in the following ways:

• Contact & Inquiries — When you email us, we collect your name, email address, and the content of your message.
• Newsletter Subscription — When you subscribe to our newsletter, we collect your email address and, optionally, your name.
• Comments & Contributions — If you submit comments or content contributions, we collect the information you provide in that submission.

1.2 Information Collected Automatically

When you visit ReviewsAZ, our systems automatically collect certain technical data to ensure the Site functions correctly and to help us improve it:

1.3 Information from Third Parties

We may receive limited data about you from third-party services we use to operate the Site, including analytics providers, advertising networks, and affiliate tracking platforms. Each third party operates under its own privacy policy and data practices.

---

2. How We Use Your Information

We use the information we collect only for legitimate, transparent purposes directly related to operating and improving ReviewsAZ. We do not sell, rent, or trade your personal information to any third party for their own commercial purposes — ever.

• 📝 Content Delivery & Improvement — Understanding reader behavior helps us produce better, more relevant content and improve Site navigation and performance.
• 💬 Responding to Inquiries — When you contact us, we use your information solely to respond to your specific message or request.
• 📬 Newsletter Communications — We send newsletters and content updates only when you have explicitly opted in. Every email includes a one-click unsubscribe option.
• 📊 Analytics & Site Performance — We analyze aggregated, anonymized data to understand how the Site performs, which content resonates, and where improvements are needed.
• 💰 Affiliate & Revenue Tracking — We use affiliate cookies and tracking pixels to attribute referrals and calculate commissions from partner programs — at no cost to you.
• 📢 Advertising Personalization — With your consent, we may use browsing data to deliver more relevant advertisements via third-party ad networks.
• ⚖️ Legal Compliance — We process and retain data as required by applicable laws, regulations, or court orders.
• 🛡️ Fraud Detection & Security — We monitor for and act against abuse, spam, malicious activity, and unauthorized access to protect our platform and our readers.

---

3. Data Sharing & Disclosure

We do not sell your personal data. However, we do share limited data with trusted third parties in specific circumstances, as described below. Every party we share data with is bound by contractual obligations to handle it responsibly.

3.1 Service Providers We Use

We share data with third-party service providers who help us operate the Site. These providers act as data processors and are only permitted to use your data for the specific purpose for which it was shared:

Service Provider Type	Purpose	Data Shared
Analytics (e.g. Google Analytics)	Site performance & user behavior analysis	Anonymized IP, pages visited, device type
Email Marketing Platform	Newsletter delivery & subscriber management	Email address, name (if provided)
Affiliate Networks	Referral tracking & commission attribution	Click data, anonymized conversion events
Ad Networks (e.g. Google AdSense)	Displaying relevant advertisements	Cookies, browsing behavior (with consent)
Hosting & Infrastructure	Website hosting, security, and uptime	Server logs, IP addresses
Content Delivery Network (CDN)	Fast, global content delivery	IP address, cached page requests

3.2 Business Transfers

In the event of a merger, acquisition, sale of assets, or restructuring of ReviewsAZ, your personal data may be transferred as part of that transaction. We will notify you via a prominent notice on the Site before your data becomes subject to a materially different privacy policy.

3.3 Legal Disclosures

We may disclose your personal information if we believe in good faith that such disclosure is necessary to comply with a legal obligation, protect the rights or safety of ReviewsAZ, our users, or the public, or respond to a lawful request from a government authority. See Section 11 for our full policy on legal requests.

3.4 What We Never Do

• We never sell your personal data to data brokers or marketing companies.
• We never share your email address with advertisers for their own marketing use.
• We never disclose your personal information to any third party without a legitimate legal or contractual basis.

---

4. Cookies & Tracking Technologies

Cookies are small text files placed on your device when you visit a website. They help websites function correctly, remember your preferences, and provide analytical data to site owners. ReviewsAZ uses several types of cookies, each serving a distinct purpose.

4.1 Types of Cookies We Use

• Essential Cookies — Strictly necessary for the Site to function. These enable core features such as page navigation, security, and access to protected areas. They cannot be disabled without breaking the Site.
• Analytics & Performance Cookies — Help us understand how visitors interact with the Site by collecting anonymized data on page views, session duration, traffic sources, and user flows. We use Google Analytics for this purpose.
• Functionality Cookies — Remember your preferences and settings (such as language or display choices) to provide a more personalized experience on return visits.
• Advertising & Targeting Cookies — Used by our advertising partners to deliver relevant ads based on your browsing history and interests. These may track your activity across multiple websites.
• Affiliate Tracking Cookies — Record when you click on an affiliate link so that we receive a commission if you make a qualifying purchase — at no additional cost to you.

4.2 Third-Party Cookies

Some cookies on our Site are set by third-party services. These include Google Analytics, Google AdSense, and affiliate network platforms. Each third party operates its own cookie policy, which we encourage you to review independently.

4.3 Managing Your Cookie Preferences

You have the right to accept, decline, or manage cookies at any time. You can control cookies through your browser settings or via dedicated opt-out tools:

---

5. International Data Transfers

ReviewsAZ operates globally, and your personal data may be transferred to, stored in, or processed in countries outside your country of residence — including countries outside the European Economic Area (EEA) that may not offer the same level of data protection as your home jurisdiction.

5.1 Safeguards for EEA Users

When we transfer personal data from the EEA to third countries, we ensure appropriate safeguards are in place in accordance with GDPR Chapter V. These safeguards include:

• Standard Contractual Clauses (SCCs) — We use EU-approved Standard Contractual Clauses with our data processors located outside the EEA to ensure your data receives equivalent protection.
• Adequacy Decisions — Where the European Commission has issued an adequacy decision for a recipient country, we rely on that decision as the legal basis for the transfer.
• Processor Agreements — All third-party service providers who process data on our behalf are required to sign Data Processing Agreements (DPAs) that mandate GDPR-compliant handling.

5.2 Your Rights Regarding Transfers

You have the right to obtain information about the safeguards we use for international data transfers. To request this information, contact us at [email protected].

---

6. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we are required under GDPR Article 6 to identify a valid legal basis for each category of personal data processing we perform. The table below provides full transparency on our legal basis for each purpose:

Processing Purpose	Legal Basis	Details
Responding to inquiries	Legitimate Interest (Art. 6(1)(f))	Necessary to respond to your request
Newsletter delivery	Consent (Art. 6(1)(a))	Explicit opt-in; withdrawable at any time
Site analytics	Legitimate Interest (Art. 6(1)(f))	Aggregated & anonymized data only
Advertising personalization	Consent (Art. 6(1)(a))	Only with explicit cookie consent
Affiliate tracking	Legitimate Interest (Art. 6(1)(f))	Revenue generation to fund free content
Legal compliance	Legal Obligation (Art. 6(1)(c))	Required by applicable law or regulation
International data transfers	Standard Contractual Clauses	GDPR Chapter V compliant mechanisms
Fraud detection & security	Legitimate Interest (Art. 6(1)(f))	Protecting users and platform integrity

---

7. Your Rights

You have meaningful, enforceable rights regarding your personal data. We are committed to honoring every valid request promptly, transparently, and without unnecessary barriers.

7.1 Rights for All Users (Universal)

• Right of Access — Request a copy of all personal data we hold about you, including what it is, how it is used, and who it has been shared with.
• Right to Rectification — Request correction of any inaccurate or incomplete personal data we hold about you.
• Right to Erasure — Request the deletion of your personal data (“Right to be Forgotten”), subject to applicable legal retention requirements.
• Right to Restrict Processing — Request that we limit how we use your data while a dispute or objection is being resolved.
• Right to Data Portability — Request a machine-readable copy of your data that you can transfer to another service provider.
• Right to Object — Object to processing based on legitimate interests, including direct marketing and profiling.
• Right to Withdraw Consent — Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.

7.2 Additional Rights for California Residents (CCPA / CPRA)

• Right to Know — Know what categories and specific pieces of personal information we have collected about you, the sources, the business purpose, and any third parties with whom it has been shared.
• Right to Delete — Request deletion of personal information we have collected, subject to certain exceptions.
• Right to Correct — Request correction of inaccurate personal information we maintain about you.
• Right to Opt Out of Sale / Sharing — We do not sell or share personal information for cross-context behavioral advertising. You may submit a request to confirm this at any time.
• Right to Limit Sensitive Data Use — Limit our use or disclosure of sensitive personal information to what is necessary for providing our services.
• Right to Non-Discrimination — We will never deny services, charge different prices, or provide a lower quality of service because you exercised any CCPA right.

7.3 How to Submit a Request

📬 To exercise any of the rights listed above, contact our privacy team at [email protected] with the subject line “Privacy Rights Request”. We will acknowledge your request within 5 business days and fulfill it within 30 days. For complex requests, we may extend this period by an additional 30 days with prior notice.

---

8. Your Choices & Opt-Out Options

Beyond your formal legal rights, we provide practical, immediate tools to control how your data is used. You do not need to submit a formal request to use these options.

---

9. Do Not Track (DNT) Signals

Some browsers include a Do Not Track (DNT) feature that sends a signal to websites requesting that your browsing activity not be tracked across sites.

At this time, there is no universally accepted standard for how websites should respond to DNT signals. As a result, ReviewsAZ does not currently alter its data collection practices in response to DNT signals. However, we do provide the opt-out mechanisms described in Section 8 above, which you can use to limit tracking regardless of your DNT setting.

We will revisit this position if and when a uniform DNT standard is established and adopted by the industry. California residents should note that this disclosure is made in compliance with the California Online Privacy Protection Act (CalOPPA).

---

10. Automated Decision-Making & Profiling

Under GDPR Article 22, you have the right not to be subject to decisions based solely on automated processing — including profiling — that produce legal or similarly significant effects on you.

ReviewsAZ does not engage in automated decision-making that produces legal or significant effects on individuals. Specifically:

• We do not use automated systems to approve or deny access to services.
• We do not create individual behavioral profiles for the purpose of making decisions about you personally.
• We do not use AI or machine learning systems to evaluate, score, or categorize individual users in ways that affect their rights or access.

We do use aggregated, anonymized analytics to understand general audience behavior and improve our content — but this analysis is performed at a population level and does not affect any individual user’s experience or access to our services.

---

11. How We Respond to Legal Requests

From time to time, we may receive requests from government authorities, law enforcement agencies, or courts to disclose personal information about our users. We take such requests extremely seriously and apply the following principles in every case:

• Verification First — We carefully review every legal request to verify that it is legally valid, properly issued, and within the scope of the requesting authority’s jurisdiction before taking any action.
• Minimum Disclosure — We disclose only the specific information required by the request — never more. We do not provide bulk access to user data under any circumstances.
• User Notification — Where legally permitted to do so, we will notify affected users of a legal request before complying, giving them the opportunity to seek legal protection if appropriate.
• Legal Challenge — We reserve the right to challenge requests that we believe are overbroad, improperly issued, or inconsistent with applicable law, and will do so when it is appropriate and lawful.
• Transparency — We will report, in aggregate and anonymized form, the number and type of legal requests we receive when and where the law permits us to do so.

⚖️ Important Note: ReviewsAZ will never voluntarily disclose user data to any government, law enforcement, or third-party authority without a legally valid and binding request — or without your explicit consent.

---

12. Data Retention

We retain personal data only for as long as necessary to fulfill the purpose for which it was collected, or as required by applicable law or legitimate business need. The following table outlines our general retention periods by data category:

Data Category	Retention Period	Reason
Contact / inquiry emails	2 years	To reference prior correspondence and maintain continuity
Newsletter subscriber data	Until unsubscription + 30 days	To honor opt-out requests and prevent re-subscription errors
Analytics data	14 months (Google Analytics default)	Aggregated performance analysis; automatically anonymized
Server & access logs	90 days	Security monitoring and fraud detection
Affiliate tracking data	90 days	Commission attribution window required by affiliate programs
Legal compliance records	As required by law	Varies by jurisdiction; typically 5–7 years for financial records

When data reaches the end of its retention period, it is securely and permanently deleted or irreversibly anonymized. We conduct periodic data audits to ensure compliance with these retention schedules.

---

13. Data Security

We implement a comprehensive set of technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, loss, or destruction. Our security practices include:

---

14. Third-Party Links & Embedded Content

Our Site contains links to third-party websites — including affiliate partner sites, external resources, and occasionally embedded content such as videos or social media widgets. These are provided as a convenience and do not constitute an endorsement of the linked site’s content, products, services, or privacy practices.

When you click a link to a third-party site or interact with embedded content, you leave our environment and become subject to that party’s privacy policy and data practices. We have no control over, and assume no responsibility for, the content or privacy practices of any third-party site.

We encourage you to review the privacy policy of every external site you visit, especially before submitting any personal information.

---

15. Children’s Privacy

ReviewsAZ is not directed at, and does not knowingly collect personal information from, children under the age of 13 in the United States, or 16 in the European Economic Area, or the applicable age of digital consent in any other jurisdiction.

If you are a parent or guardian and believe that a child under the applicable age has provided us with personal information without your consent, please contact us immediately at [email protected] with the subject line “Child Privacy Concern”. We will take prompt steps to verify the report and permanently delete the relevant information from our systems.

If we discover that we have inadvertently collected personal information from a child below the applicable age threshold, we will delete it immediately and without delay.

---

16. Data Protection Contact

While ReviewsAZ may not be legally required to appoint a formal Data Protection Officer under all applicable regulations, we have designated a Privacy & Data Protection Contact responsible for overseeing our privacy program, ensuring compliance with applicable data protection laws, and serving as the primary point of contact for data subjects and regulatory authorities.

Responsibilities of Our Privacy Contact

• Monitoring ReviewsAZ’s compliance with GDPR, CCPA, and other applicable privacy regulations.
• Providing guidance on data protection impact assessments (DPIAs) for new processing activities.
• Acting as the contact point for supervisory authorities such as the relevant Data Protection Authority (DPA) in your jurisdiction.
• Handling all individual rights requests submitted by data subjects.
• Overseeing our data breach detection, reporting, and response procedures.

📮 Privacy & Data Protection Contact:
To reach our designated privacy contact for any data protection matter, compliance question, or regulatory inquiry, email us at [email protected] with the subject line “Data Protection Inquiry”.

EEA users also have the right to lodge a complaint with their local Data Protection Authority (DPA) if they believe their rights under GDPR have not been adequately addressed. A full list of EU DPAs is available at edpb.europa.eu.

---

17. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices, technology stack, legal obligations, or regulatory environment. All changes will be posted on this page with a revised “Last Updated” date.

For material changes — those that significantly affect your rights or how we use your data — we will provide more prominent notice, which may include:

• A banner notification on the Site homepage.
• An email notification to newsletter subscribers.
• A summary of key changes at the top of the updated policy.

Your continued use of the Site after any changes constitutes your acceptance of the revised Privacy Policy. If you do not agree with a material change, you may discontinue use of the Site and request deletion of your data by contacting us at [email protected].

---