California Notice at Collection and California Consumer Privacy Act (CCPA) Policy

Last Updated : October 2023

This California Notice at Collection and California Consumer Privacy Act (“CCPA”) Policy (this “CCPA Policy”) supplements our Privacy Policy and applies to solely to residents of the State of California (“Consumers” or “You”) and to information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular Consumer or household (“Personal Information”). We provide this CCPA Policy to the extent we act as, and to comply with our obligations as, a “Business” under CCPA.

As used in this CCPA Policy, the term “Personal Information” does not include categories of information excluded from the CCPA, such as deidentified or aggregate consumer information.

Additionally, this CCPA Policy does not apply to information we collect, maintain, or disclose in our capacity as a “Service Provider” under CCPA on behalf of our clients and their authorized partners. If your information has been submitted to us as part of our performance of those services and you would like to learn more about the handling of that information or exercise any rights you may have under the CCPA, please inquire with the client or authorized partner directly.

Any capitalized terms or other terms not defined herein shall have the meaning ascribed to them in the Privacy Policy or, if not defined herein or in the Privacy Policy, the CCPA. To the extent of any conflict between this CCPA Policy and our Privacy Policy, this CCPA Policy shall control with respect to Consumers and their Personal Information.

Personal Information We Collect

We may collect, and in the twelve (12) months prior to the “Last Updated” date of this CCPA Policy have collected, the following categories of Personal Information:

Identifiers such as a real name, alias, postal address, unique personal identifier (such as a device identifier; cookies, beacons, pixel tags, mobile ad identifiers and similar technology; customer number, unique pseudonym, or user alias; telephone number and other forms of persistent or probabilistic identifiers), online identifier, internet protocol address, email address, and other similar identifiers.
Additional data subject to Cal. Civ. Code § 1798.80, including financial information such as credit card numbers.
Commercial information such as products or services purchased, obtained, or considered, and other purchasing or consuming histories or tendencies.
Internet and other electronic network activity information, including information regarding interaction with our websites, applications or advertisements.
Professional or employment-related information, such as employer or title.
Inferences drawn from any of the information identified above to create a profile about you reflecting your preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

Sources of Personal Information

We collect these categories of Personal Information from the following categories of sources:

Directly from you, including when you provide information to us
Indirectly from you, such as when we automatically collect technical and usage information through our Websites
Third-party websites, including social networks such as LinkedIn, Facebook, and Twitter
Government entities
Consumer data resellers

Purposes for Which We Collect and Use Personal Information

We may use the categories of Personal Information listed above for the purposes described in our Privacy Policy and for the following related purposes:

Performing services, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing advertising or marketing services, providing analytics services, or providing similar services
Auditing related to a current interaction with you and concurrent transactions, including, but not limited to, counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance
Short-term, transient use, including, but not limited to, the contextual customization of ads shown as part of the same interaction
Detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity
Debugging to identify and repair errors that impair existing intended functionality
Undertaking internal research for technological development and demonstration
Undertaking activities to verify or maintain the quality or safety of a service or device that is owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the service or device that is owned, manufactured, manufactured for, or controlled by us
To develop, improve, and deliver marketing and advertising.
For internal operational uses such as research, analytics, development, audits, and security.
For legal and operational compliance purposes, such as monitoring whether our operations are effectively implementing this policy.
To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding.
To engage in or enable internal uses consistent with our relationship with you, or compatible with the context in which you provided the information, such as internal research and development.
For any other purpose described to you when collecting your Personal Information at or before the time of collection.

Disclosure of Personal Information for a Business Purpose

As described in our Privacy Policy, we may disclose your Personal Information to the following categories of third parties for a business purpose:

Our affiliated companies
Our service providers
Advertisers and other marketing partners
Our business partners
Other third parties to protect our legal rights or comply with legal requirements.
Other third parties as required by law, such as to comply with a subpoena or other legal process, when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
Other third parties involved in a merger, sale, joint venture or other transaction involving a transfer of our business or assets.
Other third parties with your prior consent.

In the twelve (12) months prior to the “Last Updated” date of this CCPA Policy, we may have disclosed to third parties the following categories of your Personal Information, which are described in more detail above, for a business purpose:

Identifiers
Additional data subject to Cal. Civ. Code § 1798.80
Commercial information
Internet and other electronic network activity information
Professional or employment-related information
Inferences

Sales of Personal Information and Sharing of Personal Information for Cross-context Behavioral Advertising Purposes

We do not sell Personal Information in exchange for monetary consideration. However, the CCPA defines “sale” very broadly in a manner that includes disclosing Personal Information in exchange for any other valuable consideration, and also regulates the “sharing” of Personal Information with third parties for cross-context behavioral advertising purposes, which means displaying advertising to you based on Personal Information obtained or inferred from your activities over time across different websites, applications, and other online services we do not operate. Under the CCPA, we may “sell” or “share,” and we may in the preceding 12 months have “sold” or “shared,” the following categories of Personal Information:

Identifiers, including online identifiers.
Internet and other electronic activity information.
Inferences drawn from your activity.

We may have sold or shared each of these categories of Personal Information with third parties such as advertising networks that enable or participate in targeted and cross-context behavioral advertising, and analytics providers that provide online tracking technologies that we use to analyze use of the Websites.

We do not have actual knowledge that we sell Personal Information of consumers under 16 years of age or share the Personal Information of consumers under the age of 16 for cross-context behavioral advertising purposes.

California Consumer Privacy Rights

You may have certain choices regarding our use and disclosure of your Personal Information, as described below.

Access and Data Portability Rights

You may have the right to request that we disclose certain information to you about our collection and use of your Personal Information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:

The categories of Personal Information we collected about you.
The categories of sources for the Personal Information we collected about you.
Our business or commercial purpose for collecting or selling that Personal Information.
The categories of third parties with whom we share that Personal Information.
The specific pieces of Personal Information we collected about you (also called a data portability request).
If we disclosed your Personal Information for a business purpose, a list of the categories of third parties who received a disclosure for a business purpose that identifyies the Personal Information categories that each category of recipient obtained.

Deletion Request Rights

You may have the right to request that we delete your Personal Information, subject to certain exceptions. Once we receive and confirm your verifiable consumer request pursuant to the Exercising Access, Data Portability, and Deletion Rights section below, we will delete (and direct our service providers to delete) your Personal Information from our records, unless an exception applies.

Exercising Your Right Under CCPA

To exercise the access, data portability, correction, and deletion rights described above, please submit a verifiable consumer request to us by either:

Emailing us at privacy@ziftsolutions.com or
Filling out our Privacy Inquiry Form.

Only you, or an agent that you provide written permission to act on your behalf, may make a verifiable consumer request related to your Personal Information. If an authorized agent makes a request on our behalf, prior to responding we may require the authorized agent to present written and signed proof of authorization to act on your behalf and verify your identity or confirm the authorized agent’s permission to act on your behalf directly.

We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm the Personal Information relates to you.

Making a verifiable consumer request does not require you to create an account with us. However, if you have a password-protected account with us we may consider requests made through that account sufficiently verified when the request relates to Personal Information associated with that specific account.

If we cannot fulfill, or are permitted to decline, your request then we will alert you or your authorized agent.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision, and we reserve the right to either refuse to act on your request or charge you a reasonable fee to complete your request if it is excessive, repetitive, or manifestly unfounded.

Shine the Light

California’s “Shine the Light” law (California Civil Code Section § 1798.83) permits Consumers with whom we have an established business relationship to request certain information regarding our disclosures of certain types of their personal information (as defined by that law) during the preceding year, if any, to third parties for those parties’ own direct marketing purposes. To make such a request, please email us at privacy@ziftsolutions.com.

Changes to this CCPA Policy

We may revise this CCPA Policy from time to time to accommodate new technologies, industry practices, regulatory requirements, or for other purposes. When we make changes, we will post the updated policy to our Websites and update the “Last Updated” date.

Links to other sites

Please note that our Websites and Applications may contain links to other Internet sites. For example, if you apply for a job using the careers feature linked to our site, please be advised that feature is a separate website not subject to this Privacy Policy. Any information that you post to or otherwise provide to any such Internet site are not subject to this Privacy Policy. Zift Solutions does not control any Internet site other than our Websites and Applications and thus is not responsible for the privacy practices, privacy statements, or content of these other Internet sites.

Contacting Us

To ask questions about this CCPA Policy and our privacy practices, please contact us at privacy@ziftsolutions.com.

Cookie	Duration	Description
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
BIGipServerab14web-nginx-app_https	session	No description
bscookie	2 years	LinkedIn sets this cookie to store performed actions on the website.
events_distinct_id	session	No description
external_referrer_url	1 day	No description available.
internal_navigation_count	1 day	No description available.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
loglevel	never	No description available.
ppwp_wp_session	30 minutes	No description
SF_PHPSESSID	session	No description
site_identity	1 year	No description available.
sliguid	1 year	No description available.
slireg	7 days	No description available.
slirequested	1 year	No description available.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.
visitorId	1 year	No description
_lfa_test_cookie_stored	past	No description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.

Cookie	Duration	Description
AnalyticsSyncHistory	1 month	No description
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
drift_campaign_refresh	30 minutes	No description available.
undefined	never	Wistia sets this cookie to collect data on visitor interaction with the website's video-content, to make the website's video-content more relevant for the visitor.
_g2_session_id	session	No description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_UA-19464319-1	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_session_id	14 days	Cookie set by G2 to store the visitor’s navigation by recording the landing pages. This allows the website to present products and indicate the efficiency of the website.

Cookie	Duration	Description
muc_ads	2 years	No description
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
_mkto_trk	2 years	This cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.