Adafruit Privacy Policy

This privacy policy governs how Adafruit Industries, LLC collects, stores, uses, and discloses information about users of adafruit.com. This policy applies to the site, along with related products and services offered by Adafruit Industries, LLC that link to this policy. This policy does not apply to websites, applications, or services that display or link to different privacy statements.

Information You Provide to Us

The personal information we collect depends on how you interact with us, the products you use, and the choices you make. We collect and process personal information about you with your consent and/or as necessary to provide the products you use, operate our business, meet our contractual and legal obligations, protect the security of our systems and our customers, or fulfil other legitimate interests.

When a user engages in certain actions on the site, they may provide us with certain kinds of information. This includes information including but not limited to:

    • Contact Information: Name, username, password, email address, postal address, phone numbers and other contract information

  • Account Activity: Placed order details, gift certificates, wishlists, vouchers, subscriptions, and other account settings
  • Payment Information: Payment information necessary to facilitate transactions on the site, including credit card details and billing address

  • Content and Files: If you post comments or send us email messages, feedback, or other communications, we will collect and retain those communications

When you are asked to provide personal information, you may decline. But if you choose not to provide information that is necessary for certain products or features, those products or features may not be available or function correctly.

We may also combine information users provide with data we collect automatically (as further described below).

Information We Collect Automatically

When you use our products, we collect some information automatically. For example:

 Identifiers and device information. When you visit our website, our web servers automatically log your Internet Protocol (IP) address, and information about your device, including device identifiers (such as MAC address); device type; and your device’s operating system, browser, and other software including type, version, language, settings, and configuration. As further described in the Cookies and Similar Technologies section below, our websites and online services store and retrieve cookie identifiers, mobile IDs, and other data.

Usage data. We automatically log your activity on our websites, apps, and connected products, including the URL of the website from which you came to our sites.

Other sensor data/Adafruit.io. If you elect to integrate a device with Adafruit.io, we may collect certain sensor information from your device as a part of your elections and certain usage and diagnostic information about the device, including device type, board type, connection type, and corresponding Adafruit.io API log

Inferences. We infer new information from other data we collect, including using automated means to generate information about your likely preferences or other characteristic. For example, we infer your city , state, and country location based on your IP address.

Cookies and Similar Tracking Technologies (California Do Not Sell My Info)

We use cookies, web beacons, mobile analytics and advertising IDs, and similar technologies to operate our websites and online services and to help collect data, including other identifiers and device information and usage data. 

California Do Not Sell My Info

The California Consumer Protection Act (“CCPA”) requires us to disclose categories of personal information sold to third parties and how to opt-out of sale. The CCPA defines personal information to include online identifiers, including IP address, cookies IDs, and mobile IDs. The law also defines a “sale” to include simply making data available to third parties.  Because we let advertising and analytics providers collect IP addresses, cookie IDs, mobile IDs through our sites and apps when you use our online services, but do not “sell” any other types of personal information, we provide our “Do Not Sell My Info” disclosures in this section. Other information related to your rights under the CCPA is contained in the California Rights section of this statement.

Site Data
We may collect information automatically about users when they visit our site. This may include details about the user’s browser type and installed extensions, operating system, access times, language, IP address, and referring URLs, along with other similar data.

Web Browser Cookies and Related Technologies
Our site uses cookies, web beacons, and similar technologies to provide features such as account logins and shopping carts, to remember user preferences, to engage in advertising and retargeting, as well as to analyze user behavior. Cookies are small text files placed on your device to store data that can be recalled by a web server in the same domain that placed the cookie. The text in a cookie often consists of a string of numbers and letters that uniquely identifies your device, but it can contain other information as well. We use web beacons (also called single-pixel gifs), for example, to deliver cookies, count visits, understand usage of our site and tell if an email has been opened and acted upon.

Third Party Sites and Services

Our site employs a variety of third-party services. These include payment gateways, shipping providers, content-distribution networks, advertisers, analytics, and monitoring tools. Some of these services store information about users, and may track individuals across sites, applications, and services. These services may collect information in a similar manner as described above, including, for example, IP address, access times, browser type, language, device type, and device identifiers. They can also create inferences about you from this information. By interacting with our services, certain information about user devices may be exposed to third party advertising and analytics using cookies and other tracking mechanism, these third parties include the entities in the charts below.

 

The analytics and advertising service providers we use that may track you across sites and services are:

Service Name

Purpose(s)

Privacy policy

Manage Settings (opt-out)

Google Analytics

web analytics service

privacy policy

https://tools.google.com/dlpage/gaoptout

Google Adwords

online advertising service, analytics

privacy policy

See association links below.

Facebook

online advertising service

privacy policy

https://www.facebook.com/settings?tab=ads

See association links below.

 

You may find more information on each company's practices, including the choices it offers, by clicking on the above. Many of these companies are also members of associations, which provide a simple way to opt out of analytics and ad targeting, which you can access at:

 United States: NAI (http://www.networkadvertising.org/managing/opt_out.aspx) and DAA (http://www.aboutads.info/choices/)

Canada: Digital Advertising Alliance of Canada (https://youradchoices.ca/)

Europe: European Digital Advertising Alliance (http://www.youronlinechoices.com/

Other third party service providers we use:

Service Name

Function on adafruit.com

Privacy policy

Cloudflare

Content Delivery Network

privacy policy

Amazon S3

Static File Hosting

privacy policy

Automattic

site statistics and anti-spam services

privacy policy

Contextly

web analytics and content recommender service

privacy policy

Algolia

Search provider

privacy policy

Youtube

Online video service

privacy policy

Paypal

Online payments

privacy policy

Amazon Payments

Online payments

privacy policy

BitPay

Online payments

privacy policy

Mailchimp

Email marketing platform

privacy policy

 

Cookie Controls. Many web browsers accept cookies by default. Users can usually change their browser's settings to reject and/or to remove many cookies. Please note also that choosing to reject or remove cookies may prevent certain features or services of our site from working properly. Since cookie opt-out preferences are also stored in a cookie in a browser, please also note that deleting cookies, using a different browser, or buying a new computer, may require renewal of opt-out choices.

Do Not Track. Do Not Track (DNT) is a technology which allows users to tell sites they visit that they don’t want to be tracked. It does this by including a special header with each request the browser sends. Where possible without breaking the functionality of our site, we try to honor Do Not Track headers by attempting to serve only third-party services which themselves promise to honor Do Not Track. However, because not all our necessary third-party service providers honor Do Not Track and because implementations may change from time to time, we cannot guarantee that we will always be successful in all cases.

While we and others give users the choices described in this policy, there are many ways through which web browser signals and other similar mechanisms can indicate user choice to disable tracking, and we may not be aware of nor honor every such mechanism.

Mobile advertising ID controls. iOS and Android operating systems provide options to limit tracking and/or reset the advertising IDs.

Email web beacons. Most email clients have settings which allow you prevent the automatic downloading of images, which will disable web beacons in the email messages you read.

How We Use Collected Information

We use the personal data we collect for purposes described in this privacy statement or as otherwise disclosed to you, including for the following purposes:

  • To improve customer service and respond to your questions and queries
    • Information users provide helps us respond to their customer service requests and support needs.
    • Applicable categories of user information: Contact information, account activity, payment information, content and files, usage data, inferences
  • To improve our site and services
    • We may use feedback users provide to improve our products and services.
    • We may use information in the aggregate to understand how our users as a group use the services and resources provided on our site.
    • Applicable categories of user information: Contact information, account activity, payment information, content and files, usage data, inferences
  • To provide and deliver our products, including securing, troubleshooting, improving, and personalizing those products
    • To offer our users relevant content and recommendations
    • To display marketing and advertising tailored to our users on our site and on other sites
    • Applicable categories of user information: Contact information, account activity, payment information, content and files, identifiers and device information, usage data, sensor data, inferences
  • For business operations, including to process payments and fulfill orders and for other accounting and internal operations
    • We use the information users provide about themselves when placing an order only as described in this policy and to process and fulfill that order. We do not share this information with outside parties except to the extent appropriate to provide the service.
    • Applicable categories of user information: Contact information, account activity, payment information, content and files, identifiers and device information, usage data, inferences
  • To prevent fraud and abuse
    • We may use the information contained in orders to prevent fraudulent financial transactions and other illicit activity or violations of our terms of service.
    • We may use network addresses and similar data to block or report abusive and harassing users. In cases involving potential harm to individuals, we may submit personally identifiable information to law enforcement or other third parties.
    • Applicable categories of user information: Contact information, account activity, payment information, content and files, usage data, inferences
  • To send periodic emails and otherwise communicate with you through confirmations, invoices, notices, alerts, and administrative messages
    • We may use the email address to send users information pertaining to their orders and accounts. It may also be used to respond to their inquiries, questions, and other requests.
    • Applicable categories of user information: Contact information, account activity, payment information, content and files, identifiers and device information, usage data, inferences
  • Marketing and Advertising
    • If our users so choose, we may send them emails about products, events, promotions, and offers.
    • We use third party advertising providers as described in the Cookies and Similar Tracking Technologies section.
    • Applicable categories of user information: Contact information, account activity, identifiers and device information, usage data, inferences

In carrying out these purposes, we combine data we collect from different sources to give you a more seamless, consistent, and personalized experience.

How Collected Information is Shared

Our users may share certain of their information, for example, when users post comments or make forum posts. If a user posts comments or forum posts, they should remember that this information, together with certain user profile information, may be available to the public. We cannot control the privacy or security of information that users choose to make public.

We share personal data with your consent or as necessary to complete your transactions or provide the products you have requested or authorized. Although some of your data may be processed by third parties through the use of behavioral and analytics data described above, we do not otherwise sell, trade, or rent users’ personally identifiable information to others. However, we may share aggregate demographic information, that does not identify any individual user, with our business partners or service providers.

We may share all the categories of information described  in this privacy statement in the following ways:

  • For the purposes of a merger, financing, acquisition, or bankruptcy transaction or proceeding involving the sale or transfer of all or substantially all of our business or assets.
  • For legal, protection, security, and safety purposes. Including to comply with law or regulatory requirements, to respond to lawful requests and legal process, to protect our rights and to protect our network, or in an emergency.

Please note that some of our products include references or links to products provided by third parties whose privacy practices differ from ours. If you provide personal data to any of those third parties, or consent to our sharing personal data with them, that data is governed by their privacy statements.

How We Protect Your Information

We adopt appropriate practices and security measures designed to protect against unauthorized access, alteration, disclosure, or destruction of personal information.

Data exchange between the site and its users happens over a HTTPS secured connection and is encrypted and authorized by digital signatures.

Retention of Personal Information

We retain personal information for as long as necessary to provide the products and fulfill the transactions you have requested, or for other essential purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. Because these needs can vary for different data types in the context of different products, actual retention periods can vary significantly based on criteria such as user expectations or consent, the sensitivity of the data, the availability of automated controls that enable users to delete data, and our legal or contractual obligations. For example, we keep access and error logs on active servers for a maximum of 60 days, for the purposes of improving our user experience.

Location of Personal Information

The personal information we collect may be stored and processed in your country or region, or in any other country where we or our affiliates, subsidiaries, or service providers maintain facilities. Currently, we primarily use data centers in the United States. The storage location(s) are chosen in order to operate efficiently, to improve performance, and to create redundancies in order to protect the data in the event of an outage or other problem. We take steps designed to ensure that the data we collect under this statement is processed according to the provisions of this statement and applicable law wherever the data is located.

We transfer personal information from the European Economic Area and Switzerland to other countries, some of which have not been determined by the European Commission to have an adequate level of data protection. When we do so, we use a variety of legal mechanisms, including contracts, to help ensure your rights and protections. To learn more about the European Commission’s decisions on the adequacy of personal information protections, please visit: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_en

 

Information Choices and Changes

Users may send requests about their personal information to us through our contact information below. They can request to change contact choices or marketing choices and to update, access, delete or make other changes regarding their personal information or content that they post on our site. We may not honor all such requests unless required by law.

Regarding tracking technologies, please review the Cookies and Tracking Technologies section above. 

Our marketing emails tell recipients how to unsubscribe from further marketing emails. After opting out, we may still send non-marketing emails. Non-marketing emails include emails about accounts and orders.

Deleting an Account

When an account is deleted by a user of Adafruit's online services, certain information associated with the account will be deleted and no will no longer be accessible. 

We delete online behavioral data stored on our servers, and will send a deletion request to relevant third party services that collect online behavioral data on our behalf.

Certain information pertaining to monetary transactions, including but not limited to order information and shipping addresses, as well as data that was flagged as suspicious or fraudulent at the time of creation will be retained for as long as appropriate to comply with our legal obligations or resolve legal disputes.

In order to maintain the user experience of the rest of our customers, publicly posted information including forum posts and blog comments may be retained for the purpose of providing continued support to future customers.

We may also retain account information temporarily in backups and short-term logs.

If you choose to delete your account, other data associated with your account will be deleted and inaccessible to you, this includes but is not limited to shopping history, wishlist and shopping cart contents, and personal website preferences. Individual user records may also be deleted on request by emailing [email protected].

European Data Protection Rights

If the processing of personal information about you is subject to European Union data protection law, you have certain rights with respect to that data:

  • You can request access to, and rectification or erasure of,  personal information;
  • If any automated processing of personal information is based on your consent or a contract with you, you have a right to transfer or receive a copy of your personal information in a usable and portable format;
  • If the processing of personal information is based on your consent, you can withdraw consent at any time for future processing; and
  • You can to object to, or obtain a restriction of, the processing of personal information under certain circumstances.

To make such requests, contact us at [email protected]  You also have the right to lodge a complaint with a supervisory authority, but we encourage you to first contact us with any questions or concerns.

California Privacy Rights

If you are a California resident and the processing of personal information about you is subject to the California Consumer Privacy Act (“CCPA”), beginning January 2020 you have certain rights with respect to that information.  

Right to Know. You have the right to request that companies provide you with the following information:

(1) The categories and specific pieces of personal information we have collected about you.

(2) The categories of sources from which we collect personal information.

(3) The purposes for collecting, using, or selling personal information.

(4) The categories of third parties with which we share personal information.

(5) For companies that disclose personal information for a business purpose, the categories of personal information disclosed about you for a business purpose. Note that the CCPA defines “business purpose” broadly; and because we use service providers for a number of business purposes that require access to our systems that hold personal information (such as supplying cloud data storage, maintaining the security of our systems, and providing customer support), in the past 12 months we have disclosed for a business purpose data from all of the categories of personal information that we maintain.

(6) The categories of personal information we have sold about you (if any) for each category of third parties to which the personal information was sold. Note that the CCPA defines “sell” and “personal information” very broadly, and some of our use of third party service providers described may be considered a “sale” under that definition. In particular, we let advertising and analytics providers collect IP addresses, and cookie IDs through our sites and apps when you use our online services, but do not “sell” any other types of personal information. For more information, review the Third Party Sites and Services section of this privacy statement above. 

To make such requests, contact us at the contact information set forth below. Note that we have provided the information described in (2)-(6) in this privacy statement. 

Right to Delete. You also have a right to request that we delete personal information under certain circumstances, subject to a number of exceptions. 

Right to Opt-Out. You have a right to opt-out from future “sales” of personal information. To do so, you can opt-out of our use of certain third-party sites and services as described in the Third Party Sites and Services section of this privacy statement.

You may designate, in writing or through a power of attorney, an authorized agent to make requests on your behalf to exercise your rights under the CCPA. Before accepting such a request from an agent, we will require the agent to provide proof you have authorized it to act on your behalf, and we may need you to verify your identity directly with us. You have a right to not be discriminated against for exercising rights set out in the CCPA

Notification of law enforcement or governmental requests

Adafruit may choose to notify users of requests for their information prior to disclosure where Adafruit is prohibited from doing so by statute or court order (e.g., an order under 18 U.S.C. 2705(b)).

For more on our law enforcement request policies, please read our Law Enforcement Request FAQs.

General Inquiries

Other general inquiries may be sent via e-mail to: [email protected]

Special Thanks

Adafruit appreciates the work done by Twitter (and SparkFun) for their legal request guidelines.

Changes to This Privacy Policy

We update this policy in our discretion at any time by posting the amended version here or by providing such notice about or obtaining consent to changes as may be required by applicable law. When we do, we will revise the updated date at the bottom of this page. We encourage users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect.

Contacting Us

If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us at: Adafruit Industries, LLC
150 Varick Street
New York, New York 10013
[email protected]

This document was last updated on December 5, 2019.