0%

Privacy Policy

Welcome to the Heather Heller website located at www.heatherheller.com (“Website”). The Website is operated by Heather Heller (“we,” “us”, or “our”). We believe that the privacy and security of your information and data is very important. This Privacy Policy (“Policy”) explains the type of personal information (“Personal Information”) we collect from users of the Website (“You”), how that Personal Information is used, how the Information may be shared with other parties, and what controls You have regarding Your Personal Information. We collect, use and make available this Personal Information in accordance with the principles set out in this Policy and applicable law.

Residents of the European Economic Area (“EEA”), which includes the member states of the European Union (“EU”), residents of the United Kingdom (“UK”) and residents of Switzerland, should consult the sections below of this policy relating to “International Data Transfers” and the “Rights of EEA, UK and Swiss Residents” for provisions that may apply to them.

Users in California and states with comparable privacy laws should consult the section below regarding their rights and choices in regard to Personal Information.

We encourage you to read this Policy carefully. We reserve the right to change this Policy at any time. Any updates or modifications to this Policy will be posted to our website on this page. By using or accessing the Website, you signify that you have read, understand and agree to be bound by this Policy. This Policy is effective as of October 1st, 2024. ​

1.When this Policy applies

This Policy applies when you use the Website or otherwise gather Personal Information about you. Please note that this Policy does not apply to our current or former employees or contractors. If you are a current or former employee or contractor, you may contact us about your privacy practices and rights at dataprivacy@heatherheller.com. ​

2. Personal Information we collect and how your Personal Information is collected

You may enter the Website and browse its contents without submitting any Personal Information. However, if you communicate with us we may at that time require that you provide Personal Information. Although our Website does not collect Personal Information about individuals, we may collect aggregated information regarding users of the Website that does not identify individual users. We may also collect technical information which includes information about your computer (for example your internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access the Website). We may also collect usage data which includes information about your use of the Website, products and services. We also collect aggregated data such as statistical or demographic data for legitimate business purposes not prohibited herein or by applicable data protection law. Aggregated data may be derived from an individual’s personal information but is not considered personal data under applicable data protection law as this data will not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature.

​ 3. Uses and sharing of Personal Information

We use your Personal Information where: It is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. We need to comply with a legal or regulatory obligation. We have your consent. If we contact you or provide any materials or information to you, you always will be given the opportunity to unsubscribe from further emails in any promotional messages we send you.

We will not disclose, rent, sell or share any Personal Information to unaffiliated third parties for marketing purposes.

We contract with companies or individuals to provide certain services including email and hosting services, software development, career or personnel services, etc. We call them our “Service Providers.”

We may share both your Personal Information with Service Providers solely as appropriate for them to perform their functions.

We may share your Personal Information with analytics providers, such as Google Analytics and Tag Manager servicers, to tell us how the Website is doing, such as to which part interest visitors and how long they visit before leaving. Among other data, they may receive a User’s IP address.

Usage Data may be used in aggregate (anonymized) form for internal business purposes, such as generating statistics and developing marketing plans. We may share or transfer such aggregate, non-personally identifiable Usage Data with third parties for administrative, analytical, research, optimization, security and other purposes, but no such information will be linked with your Personal Information or be used to identify or contact you.

Finally, we may share your Information: (i) In response to subpoenas, court orders, or other legal process; to establish or exercise our legal rights; to defend against legal claims; or as otherwise required by law. In such cases we reserve the right to raise or waive any legal objection or right available to us; (ii) When we believe it is appropriate to investigate, prevent, or take action regarding illegal or suspected illegal activities; to protect and defend the rights, property, or safety of our company, our users, or others; and in connection with our Terms of Use and other agreements; or (iii) In connection with a corporate transaction, such as a divestiture, merger, consolidation, or asset sale, or in the unlikely event of bankruptcy. Please contact us if you need details about the specific legal ground we are relying on to process your personal data.

​ 4. Data Retention – How long will we use your Personal Information?

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for as specified in this Policy, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.

​ To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

For example, we delete some activity as soon as you exit the Website, whereas we may retain traffic data for analytics purposes.

​ 5. International Data Transfers

Personal Information that is transferred to us may be stored or processed in the United States, which does not have data protection laws equivalent to those in the UK or the EEA and other jurisdictions.

If you do not wish your Personal Information to be stored or processed in the United States, please do not provide such information to us.

​ 6. Privacy and security

It is entirely your choice whether or not you provide Personal Information to us. We take commercially reasonable and appropriate technical and organizational precautions to protect our customers’ Personal Information against loss, misuse, unauthorized disclosure, alteration, and destruction. However, please remember that no transmission of data over the Internet or any wireless network can be guaranteed to be 100% secure. As a result, while we strive to protect your Personal Information, we cannot ensure or warrant the security of any information that you transmit to us or from us, and you do so at your own risk. If you believe your Personal Information is being improperly used by us or any third party, please immediately notify us via email at dataprivacy@heatherheller.com.

​ 7. Cookies

In order to improve your user experience, we may use cookies, web beacons or similar tracking technologies. These “Cookies” are small pieces of information that are stored by your browser on your computer’s hard drive. Generally, Cookies work by assigning to your computer a unique number that has no meaning outside of the Website. Our Cookies do not generally contain any personally identifying information. Most web browsers automatically accept Cookies, but you can usually configure your browser to prevent this. However, not accepting Cookies may make certain features of the Website unavailable to you. Consenting to our use of cookies in accordance with the terms of this policy when you first visit our website permits us to use cookies every time you visit our website.

​ 8. Children under 16

This website is targeted to adults. We do not knowingly collect or solicit personal information directly from anyone under the age of 16. If you are under 16, please leave the Website and please do not send any information about yourself to us, including your name, address, telephone number, or email address. In the event that we learn that we have collected personal information from anyone under 16 we will delete that information as quickly as possible. If you are a parent or guardian of a child under 16 years of age and you believe your child has provided us with Personal Information, please contact us at dataprivacy@heatherheller.com.

​ 9. Links to third-party websites

Our Website or emails may contain links to third party websites to which we have no affiliation. Except as set forth in this Policy, we do not share your Personal Information with those websites and are not responsible for the privacy policies of any other website or their management of your Personal Information. Because they may treat your Information differently than we do, we suggest you read the privacy policies on those third party websites prior to submitting any Personal Information.

​ 10. Your rights and obligations

We ask that you keep the Personal Information that you provide to us current and that you correct any information you have provided us by contacting us at dataprivacy@heatherheller.com. You represent and warrant that all Personal Information you provide us is true and correct and relates to you and not to any other person. If you wish to review, delete and/or revise the Personal Information we have stored about you, please contact us with your specific request at dataprivacy@heatherheller.com.

​ 11. Your California and other state privacy rights

This section applies to you only if you reside in California or another U.S. state where applicable law provides for some or all of these rights or substantially similar rights. Rights of California residents are specifically referred to as “rights under the CCPA” or “CCPA rights.”

Rights under the CCPA

The California Consumer Privacy Act (“CCPA”) provides California consumers rights regarding their Personal Information (as defined in the CCPA). ”). If you reside in a United States jurisdiction that has enacted a data privacy law, we extend the same rights CCPA grants to California consumers, except where we specify otherwise.

The categories of Personal Information we collect are generally described in the section above titled: Personal Information we collect and how your Personal Information is collected. These categories depend on how you use the Website.

Under the CCPA, qualifying California consumers may have the following rights:

Right to Know, Access, Correct and Delete

A California consumer has the CCPA rights to request that we disclose what Personal Information we collect, use, disclose, share or disclosed for a business purpose.

We may deny deletion requests, in whole or in part, with respect to information we reasonably need to:

Comply with a legal obligation Allow you, other consumer, or us to exercise free-speech rights or other legal rights Perform a contract with you or If we use the information for solely internal purposes reasonably aligned with consumer expectations Rights to Opt-Out of Sharing/Sale and Limit Use of Sensitive Information

You also have the CCPA rights to direct us (1) not to share or sell your Personal Information and (2) to limit our disclosure and your use of “sensitive personal information” necessary to provide the website to you.

Although California consumers have the right to opt-out of sharing or selling of Personal Information we do not share Personal Information with any third party.

We do not collect “sensitive personal information” as it is defined in the CCPA and we therefore do not provide a mechanism to opt out of the use of such information.

As of the date of this Privacy Policy, we have no knowledge of any use of Personal Information that we collect from persons under the age of 16 for “sale” or “sharing” purposes.

No Retaliation

The CCPA prohibits us from discriminating against you if you exercise rights under the CCPA. You do not need to exercise this CCPA right. We never retaliate against anyone exercising their rights under the CCPA.

Preference Signals

Because we do not collect Sensitive Personal Information or sell or share any Personal Information, the Site is not presently configured to honor any global opt-out preference signal sent from California IP addresses to the Site through browser or device-level settings, provided the signal complies with CCPA’s requirements.

Submitting Requests

To submit a request to exercise a CCPA right, please submit a request via email to dataprivacy@heatherheller.com (with “Personal Information Request” in the subject line of your e-mail) or by writing to:

Heather Heller

7080 Hollywood Boulevard, 7th Floor

Los Angeles, California 90028

Verifying Requests

If we receive any request, a California consumer must provide sufficient information to identify the consumer, such as name, email address, home or work address, or other such information that is on record with us so that we can match such information to the Personal Information that we maintain. Do not provide social security numbers, driver’s license numbers, account numbers, credit or debit card numbers, medical information or health information with requests. If requests are unclear or submitted through means other than as outlined above, we will provide the California consumer with specific directions on how to submit the request or remedy any deficiencies. If the requests are unclear we may respond with direction on how to remedy the deficiencies.

If we cannot verify the identity of the consumer making the request, we may deny the request in full or in part.

Responding to Requests

We will respond to your request as quickly as we can, taking into account the nature of your request and the volume of pending requests. For California consumers, we will confirm receipt of your CCPA request within 10 days and will substantively respond within 45 days, unless we provide an explanation why an additional 45 days is necessary. California residents may submit rights requests through an authorized agent. We may request proof that the person who is the subject of the request authorized an agent to submit a privacy request on their behalf.

The content of our response will vary with the nature of your request, but we will always respond in accordance with any deadlines or requirements specified by the laws that apply to you.

Under certain circumstances, we may be unable to provide responsive Personal Information, such as when disclosure would create a substantial, articulable and unreasonable risk to the security of the information, users’ accounts with us, or the security or our systems and networks. We do not disclose account passwords or other non-personal information that enables users to access accounts. We also will not disclose California consumers’ social security numbers, driver’s license numbers or other government-issued identification numbers, financial account numbers, any health insurance or medication identification numbers.

We also will not disclose California consumers’ social security numbers, driver’s license numbers or other government-issued identification numbers, financial account numbers, any health insurance or medication identification numbers, or account passwords and security questions and answers.

We reserve the right to retain an archive of any information about you to the extent permitted by law. We also retain de-identified or aggregate data derived from information about you.

California Do Not Track Disclosures

Although some browsers currently offer a “do not track (‘DNT’) option,” no common industry standard for DNT exists. We therefore do not currently commit to responding to browsers’ DNT signals.

Civil Code 1798.83

Under certain circumstances, California Civil C ode Section 1798.83 states that, upon receipt of a request by a California consumer, a business may be required to provide detailed information regarding how that business has shared that customer’s Personal Information with third parties for direct marketing purposes. However, the foregoing does not apply to businesses like ours that do not disclose Personal Information to third parties for direct marketing purposes without prior approval or give customers a free mechanism to opt out of having their Personal Information disclosed to third parties for their direct marketing purposes.

12. Rights of EEA, UK and Swiss Residents

This section of this Privacy Policy is applicable to residents of the European Economic Area (“EEA”). The EEA consists of the member states of the European Union, i.e., Austria, Belgium, Bulgaria, Croatia, Republic of Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden and Iceland, Liechtenstein, and Norway. This section also applies to residents of the United Kingdom (“UK”) and Switzerland.

We do not purposefully collect the information of individuals who are resident in the EEA, UK and Switzerland. Our Website, which is primarily informational, is available worldwide. However, if we do obtain the personal data of individuals who are resident in the EEA, UK and Switzerland it is subject to the protections outlined above and is processed in accordance with the privacy laws of those countries.

Please note that if You are a resident of the EEA, UK or Switzerland that You have certain rights under applicable privacy laws in regard to Your Personal Information. These rights may include the Right of Access, Right to Rectification, Right to Erasure, Right to Restrict, Right to Object, Right to Data Portability, and Right to not be Subject to Automated Decision Making.

If You are a resident of the EEA, UK or Switzerland and believe that We have Personal Information about You, and You wish to access, correct, object to processing, request restriction of processing, withdraw consent, or request the transfer to a third party of the Personal Information that We have about You or exercise any other rights that You may have or have any questions relating to the processing of Your Personal Information, please contact Us at dataprivacy@heatherheller.com.

13. Changes to this privacy policy

We reserve the right to change this Policy at any time. In the event we make material changes to this Policy, such policy will be re-posted in the “Privacy” section of our Website with the date such modifications were made indicated on the top of the page. Therefore, please review this Policy from time to time so that you are aware when any changes are made to this Policy.