Urth Caffé PRIVACY STATEMENT

Last Revised: May 15, 2021

Urth Caffé Corporation ("Urth Caffé") is committed to protecting the privacy of personal information under its control. In this statement, the term "Urth Caffé," refers to Urth Caffé Corporation and its respective subsidiaries and affiliated companies (collectively, known as "Services"). This policy covers how Urth Caffé treats personal information that Urth Caffé collects and receives from customers through its web site a www.urthcaffe.com and in apps and services under Urth Caffé's control. 
Personal information is information about you that is personally identifiable like your name, address, email address, and/or phone number, or that is otherwise protected by privacy laws. Personal Information does not include aggregated or de-identified information that does not specifically identify an individual.
This Policy does not apply to the practices of companies, web sites, or apps that Urth Caffé does not own or control.
By using our Services, you consent to the collection and use of personal information as described in this Privacy Policy.

Information Collected
Urth Caffé collects personal information as follows:
• From visitors and users of our Services who provide their information to join our loyalty rewards program, purchase our products, or request further information from Urth Caffé through its web site.
• When you enter any of our promotions, raffles, and/or drive campaigns.
• When you contact us for customer service or for information about our products or stores. We use this information to respond to your request.
We may operate a version of our website specifically designed to work with mobile devices. The mobile website and our application may include a feature that uses geographic location information provided by your mobile device to identify stores in your vicinity.
Information collected by us includes your name, email address, passwords and credential information, address, birth date, and city/zip code. Our www.urthcaffe.com website allows you to contact us by providing your name and email address. 
Our Loyalty rewards program will track information about your purchases that you link to the program. 

Cookies and Information Automatically Collected
We automatically collect certain information when you visit, use, or navigate our web sites. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services and other technical information (such as pages visited on our website). This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.
Like many businesses, we also collect information through cookies and similar technologies.

Use and Disclosure of Information
We do not sell, rent, use or share your personal information with others except as set forth in this Privacy Policy. 
Urth Caffé automatically receives and records information on our server logs from your browser, including your IP address, user device information, Urth Caffé cookie information, and the page you request. 
Urth Caffé uses your information for the following general purposes, based on legitimate business interests, the fulfillment of our contract with you, compliance with our legal obligations, and/or your consent: 
• fulfill your requests for Services.
• customize the content you see.
• improve our Services.
• contact you regarding upgrade opportunities, promotions, and special offers.
• administer our Loyalty rewards program and other promotions that you sign up for.
• link your activity on our website/apps to your social networks with your permission.
• contact you regarding support and maintenance matters; and
• conduct research.
We may also disclose and use personal information:
• when we have your permission to do so.
• to other companies and individuals who work for us to provide one or more parts of our Services or that provide related administrative functions (such as support services and web analytics). These third parties may have access to your personal information; if they do, this access is only so that they may perform these tasks on our behalf, and they are obligated not to disclose or use it for any other purpose; and
• when we believe in good faith that disclosure is reasonably necessary to (1) comply with a legal process or law, or to respond to a subpoena, court order, or government request for information, (2) enforce an agreement with you, or (3) protect the rights, property, or personal safety of Urth Caffé, its users, or the public.
• For data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Services, products, marketing, and your experience. We may use and store this information in aggregated and anonymized form so that it is not associated with individual end users and does not include personal information.
Your Information
You can review and edit your Urth Caffé Loyalty rewards account information at any time. You can delete your account with us by contacting Urth Caffé at http://www.urthcaffé.com/customer-service.
You may opt out of receiving marketing emails and texts from us. We reserve the right to send you certain communications relating to the Urth Caffé service, such as service announcements and administrative messages that are considered part of your Urth Caffé account, without offering you the opportunity to opt-out of receiving them. 

Confidentiality and Security
Urth Caffé has implemented reasonable security measures to help protect against the loss, misuse, and alteration of the personal information under our control. We will promptly make any legally required disclosures of any breach of the security, confidentiality, or integrity of your unencrypted electronically stored personal data.
When you transmit highly sensitive information (such as a credit card number) through our website or in one of our mobile applications, we encrypt the transmission of that information using the Secure Sockets Layer (SSL) protocol. 
You acknowledge that no method of transmission over the Internet, or method of electronic storage, is 100% secure, and that we cannot guarantee absolute security. If you have any questions about the security of our Service, you may contact us.

Children's Privacy
Our technology-based Services are not directed to children under the age of thirteen and we do not knowingly collect personal information from children under the age of thirteen. If we become aware that we have inadvertently received personal information from children under the age of thirteen through our Services, we will delete the information from our records. If you become aware that we have inadvertently received personal information from a user of our Services under the age of thirteen, please contact Urth Caffé at https://www.urthcaffé.com/customer-service. 

***

Privacy Shield

Urth Caffé Corporation participates in and has certified its compliance with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks. Urth Caffé is committed to subjecting all personal data received from the European Union (EU) member countries, and Switzerland, in reliance on the Privacy Shield Frameworks, to the applicable Principles. To learn more about Privacy Shield, visit the U.S. Department of Commerce's Privacy Shield List here: https://www.privacyshield.gov/list.

Urth Caffé is responsible for the processing of personal data it receives and subsequently transfers to a third party acting as an agent on its behalf, under the Privacy Shield Framework. Urth Caffé complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.

With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Urth Caffé is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Urth Caffé may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third-party dispute resolution provider (free of charge) at https://feedback- form.truste.com/watchdog/request.

Under certain conditions, more fully described on the Privacy Shield website here: https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.


Contact Us

We welcome your questions, comments, and concerns about privacy. You can contact Urth Caffé Customer Service online at https://www.urthcaffé.com/customer-service, by phone at 213‐797‐4527, or by postal mail at: Urth Caffé, 451 S. Hewitt St., Los Angeles, Ca 90013.

Supplemental Privacy Notice for California Residents
CALIFORNIA CONSUMER PRIVACY STATEMENT
This California Consumer Privacy Statement ("Statement") supplements the Urth Caffé Privacy Policy and is not intended to contradict or limit the applicability of the information provided in the Privacy Policy. It applies solely to California consumers and addresses personal information we collect online and offline. This Statement does not apply to Urth Caffé personnel, franchisee and other affiliated personnel, or job applicants. 
This California Consumer Privacy Statement uses certain terms that have the meaning given to them in the California Consumer Privacy Act of 2018 and its implementing regulations (the "CCPA").
NOTICE OF COLLECTION AND USE OF PERSONAL INFORMATION

We may collect the following categories of personal information about you:
• IDENTIFIERS:
identifiers such as a real name, alias, postal address, unique personal identifier (such as a device identifier; cookies, beacons, pixel tags, mobile ad identifiers and similar technology; customer number, unique pseudonym, or user alias; telephone number and other forms of persistent or probabilistic identifiers), online identifier, IP address, email address, account name, Social Security number, driver's license number, passport number, and other similar identifiers
• ADDITIONAL DATA SUBJECT TO CAL. CIV. CODE § 1798.80:
signature, physical characteristics or description, state identification card number, insurance policy number, education, bank account number, credit card number, debit card number, and other financial information, medical information, and health insurance information
• PROTECTED CLASSIFICATIONS:
characteristics of protected classifications under California or federal law, such as race, color, national origin, religion, age, sex, gender, marital status, medical condition, disability, citizenship status, and military and veteran status
• COMMERCIAL INFORMATION:
commercial information, including records of personal property, products or services purchased, obtained, or considered, and other purchasing or consuming histories or tendencies
• ONLINE ACTIVITY:
Internet and other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding your interaction with websites, applications, or advertisements
• GEOLOCATION DATA:
physical, device, GPS and stores nearby information
• SENSORY INFORMATION:
audio, electronic, visual, olfactory, and similar information
• EMPLOYMENT INFORMATION:
professional or employment-related information
• INFERENCES:
inferences drawn from any of the information identified above to create a profile about you reflecting your preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

We may use the categories of personal information listed above for the purposes described in our Privacy Policy and for certain business purposes specified in the CCPA, as described below
• PERFORMING SERVICES:
We may use the following categories of personal information for the purpose of performing services, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing advertising or marketing services, providing analytics services, or providing similar services: Identifiers; Additional Data Subject to Cal. Civ. Code § 1798.80; Protected Classifications; Commercial Information; Online Activity; Geolocation Data; Sensory Information; Employment Information; and Inferences.
• AUDITING:
We may use the following categories of personal information for the purpose of auditing related to a current interaction with you and concurrent transactions, including, but not limited to, counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance: Identifiers; Additional Data Subject to Cal. Civ. Code § 1798.80; Protected Classifications; Commercial Information; Online Activity; Geolocation Data; Sensory Information; Employment Information; and Inferences.
• SHORT TERM USE:
We may use the following categories of personal information for the purpose of short-term, transient use, including, but not limited to, the contextual customization of ads shown as part of the same interaction: Identifiers; Additional Data Subject to Cal. Civ. Code § 1798.80; Protected Classifications; Commercial Information; Online Activity; Geolocation Data; Sensory Information; Employment Information; and Inferences.
• SECURITY:
We may use the following categories of personal information for the purpose of detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity: Identifiers; Additional Data Subject to Cal. Civ. Code § 1798.80; Protected Classifications; Commercial Information; Online Activity; Geolocation Data; Sensory Information; Employment Information; and Inferences.
• DEBUGGING:
We may use the following categories of personal information for the purpose of debugging to identify and repair errors that impair existing intended functionality: Identifiers; Additional Data Subject to Cal. Civ. Code § 1798.80; Protected Classifications; Commercial Information; Online Activity; Geolocation Data; Sensory Information; Employment Information; and Inferences.
• INTERNAL R&D:
We may use the following categories of personal information for the purpose of undertaking internal research for technological development and demonstration: Identifiers; Additional Data Subject to Cal. Civ. Code § 1798.80; Protected Classifications; Commercial Information; Online Activity; Geolocation Data; Sensory Information; Employment Information; and Inferences.
• SAFETY:
We may use the following categories of personal information for the purpose of undertaking activities to verify or maintain the quality or safety of a service or device that is owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the service or device that is owned, manufactured, manufactured for, or controlled by us: Identifiers; Additional Data Subject to Cal. Civ. Code § 1798.80; Protected Classifications; Commercial Information; Online Activity; Geolocation Data; Sensory Information; Employment Information; and Inferences.

We also may collect additional information or use the information listed above in other ways for which we provide specific notice at the time of collection.