Effective Date: [DATE]
Last Updated: [DATE]

This California Privacy Rights Statement ("Statement") supplements our Privacy Policy and applies solely to California residents. It describes how Jackal Labs Inc. ("Jackal Labs," "we," "us," or "our") collects, uses, discloses, and protects the personal information of California residents in connection with our Respawn Disaster Recovery as a Service (DRaaS) platform and related services.

This Statement is provided in accordance with the California Consumer Privacy Act of 2018 ("CCPA") as amended by the California Privacy Rights Act of 2020 ("CPRA"), collectively referred to as the "California Privacy Laws."

1. SCOPE AND APPLICATION

This Statement applies to personal information we collect about California residents in their capacity as consumers, including website visitors, prospective customers, current customers, and former customers. This Statement does not apply to:

  • Personal information we process as a service provider on behalf of our business customers

  • Personal information about our employees, contractors, or job applicants

  • Personal information that is publicly available or lawfully made available from government records

  • Personal information covered by sector-specific privacy laws such as HIPAA, GLBA, or FCRA

2. CATEGORIES OF PERSONAL INFORMATION COLLECTED

In the preceding 12 months, we have collected the following categories of personal information from California residents:

2.1 Identifiers

Examples: Real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, or other similar identifiers.

Sources: Directly from you when you create an account, contact us, or use our services; automatically through your use of our website and services; from third-party business contact databases and marketing services.

Business Purposes: Account creation and management, service provision, customer support, marketing communications, fraud prevention, legal compliance.

2.2 Commercial Information

Examples: Records of products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.

Sources: Directly from you through service subscriptions and purchases; automatically through your use of our services.

Business Purposes: Service provision, billing and payment processing, customer support, service improvement, marketing and analytics.

2.3 Internet or Network Activity Information

Examples: Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.

Sources: Automatically collected through your use of our website and services, including through cookies and similar tracking technologies.

Business Purposes: Website analytics, service improvement, personalization, marketing optimization, security monitoring.

2.4 Geolocation Data

Examples: Physical location or movements derived from IP address or device location services.

Sources: Automatically collected from your device when you access our services, with your consent where required.

Business Purposes: Service provision, fraud prevention, compliance with data residency requirements, analytics.

2.5 Professional or Employment-Related Information

Examples: Current or past job history, professional references, work contact information.

Sources: Directly from you when you provide business contact information; from publicly available professional directories and social media.

Business Purposes: Business relationship management, marketing communications, service customization.

2.6 Inferences

Examples: Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

Sources: Derived from analysis of other personal information we collect.

Business Purposes: Service personalization, marketing optimization, product development, customer insights.

3. SOURCES OF PERSONAL INFORMATION

We collect personal information from the following sources:

3.1 Directly From You

  • Account registration and profile information

  • Service subscription and configuration data

  • Customer support communications

  • Survey responses and feedback

  • Event registration and participation

  • Marketing communication preferences

3.2 Automatically From Your Use of Our Services

  • Website usage data through cookies and tracking technologies

  • Service usage metrics and performance data

  • Device and browser information

  • IP addresses and geolocation data

  • Login and access logs

3.3 From Third Parties

  • Business contact information from data providers and marketing services

  • Professional information from publicly available sources

  • Social media profile information when you interact with our content

  • Referral information from existing customers or partners

4. BUSINESS PURPOSES FOR COLLECTING PERSONAL INFORMATION

We collect and use personal information for the following business purposes:

4.1 Service Provision and Management

  • Creating and managing user accounts

  • Providing access to Respawn DRaaS platform features

  • Processing service configurations and backup jobs

  • Monitoring service performance and availability

  • Providing technical support and customer service

  • Processing payments and managing billing

4.2 Communication and Marketing

  • Sending service-related communications and updates

  • Providing marketing communications about our services (with consent)

  • Conducting customer satisfaction surveys and research

  • Inviting you to events, webinars, and educational content

  • Personalizing marketing messages and website content

4.3 Business Operations and Analytics

  • Analyzing service usage patterns and customer behavior

  • Improving our services and developing new features

  • Conducting market research and competitive analysis

  • Managing business relationships and partnerships

  • Supporting sales and business development activities

4.4 Security and Legal Compliance

  • Protecting against fraud, abuse, and security threats

  • Investigating and preventing unauthorized access

  • Complying with legal obligations and regulatory requirements

  • Responding to legal requests and court orders

  • Enforcing our terms of service and other agreements

5. DISCLOSURE OF PERSONAL INFORMATION

In the preceding 12 months, we have disclosed personal information to the following categories of third parties for business purposes:

5.1 Service Providers and Vendors

We disclose personal information to service providers who perform services on our behalf, including:

  • Cloud infrastructure and hosting providers

  • Payment processing companies

  • Customer support and communication platforms

  • Marketing automation and analytics services

  • Security monitoring and threat detection services

  • Professional services providers (legal, accounting, consulting)

5.2 Business Partners

We may disclose limited personal information to business partners for:

  • Joint marketing activities and co-sponsored events

  • Integration partnerships and technical collaborations

  • Referral programs and channel partnerships

5.3 Legal and Regulatory Disclosures

We may disclose personal information when required by law or to:

  • Comply with legal obligations, court orders, or regulatory requirements

  • Protect our rights, property, or safety, or that of our customers or others

  • Investigate and prevent fraud, security threats, or illegal activities

6. SALE AND SHARING OF PERSONAL INFORMATION

6.1 Sale of Personal Information

We do not sell personal information of California residents for monetary consideration. We have not sold personal information in the preceding 12 months.

6.2 Sharing of Personal Information

We may share personal information with third parties for cross-context behavioral advertising purposes. In the preceding 12 months, we have shared the following categories of personal information:

  • Identifiers (such as email addresses and online identifiers)

  • Internet or network activity information

  • Inferences drawn from personal information

We share this information with:

  • Advertising networks and marketing platforms

  • Social media companies for targeted advertising

  • Analytics providers for marketing optimization

6.3 Opt-Out Rights

You have the right to opt out of the sharing of your personal information for cross-context behavioral advertising. To exercise this right, please visit our "Do Not Sell or Share My Personal Information" page at [URL] or contact us using the information provided below.

7. SENSITIVE PERSONAL INFORMATION

We may collect the following categories of sensitive personal information:

  • Account log-in credentials (username and password)

  • Precise geolocation data (with your consent)

We use sensitive personal information only for the following purposes:

  • Performing the services or providing the goods reasonably expected by you

  • Ensuring security and integrity of our systems and services

  • Short-term, transient use that does not involve disclosure to third parties

  • Performing services on behalf of our business customers

  • Activities to verify or maintain the quality of our services

You have the right to limit our use and disclosure of your sensitive personal information to these specified purposes.

8. RETENTION OF PERSONAL INFORMATION

We retain personal information for the following periods:

8.1 Account Information

Retained for the duration of your account relationship plus seven (7) years for business records and legal compliance purposes.

8.2 Service Usage Data

Retained for up to three (3) years for service improvement, analytics, and security monitoring purposes.

8.3 Marketing Communications Data

Retained until you withdraw consent or we determine the information is no longer needed for marketing purposes, typically up to five (5) years.

8.4 Support and Communication Records

Retained for up to five (5) years for quality assurance, training, and legal purposes.

8.5 Financial and Payment Information

Retained for seven (7) years to comply with accounting, tax, and regulatory obligations.

9. YOUR CALIFORNIA PRIVACY RIGHTS

As a California resident, you have the following rights regarding your personal information:

9.1 Right to Know

You have the right to request that we disclose:

  • The categories of personal information we have collected about you

  • The categories of sources from which we collected your personal information

  • The business or commercial purpose for collecting or selling your personal information

  • The categories of third parties with whom we share your personal information

  • The specific pieces of personal information we have collected about you

9.2 Right to Delete

You have the right to request that we delete your personal information, subject to certain exceptions such as:

  • Completing a transaction or providing a service you requested

  • Detecting security incidents and protecting against fraud

  • Complying with legal obligations

  • Exercising free speech or ensuring another's right to free speech

  • Engaging in research in the public interest

9.3 Right to Correct

You have the right to request that we correct inaccurate personal information we maintain about you.

9.4 Right to Opt-Out

You have the right to opt out of:

  • The sale of your personal information (though we do not currently sell personal information)

  • The sharing of your personal information for cross-context behavioral advertising

9.5 Right to Limit Use of Sensitive Personal Information

You have the right to limit our use and disclosure of your sensitive personal information to the purposes specified in Section 7 above.

9.6 Right to Non-Discrimination

We will not discriminate against you for exercising any of your California privacy rights, including by:

  • Denying goods or services

  • Charging different prices or rates

  • Providing different levels or quality of goods or services

  • Suggesting that you may receive different prices, rates, or quality of goods or services

10. HOW TO EXERCISE YOUR RIGHTS

10.1 Submitting Requests

You may exercise your California privacy rights by:

  • Visiting our online request form at [URL]

  • Calling our toll-free number: [PHONE NUMBER]

  • Emailing us at: privacy@jackallabs.com

  • Mailing us at: Jackal Labs Inc., [ADDRESS], Ottawa, Ontario, Canada

10.2 Verification Process

To protect your privacy and security, we will verify your identity before processing your request. We may ask you to:

  • Provide identifying information such as name, email address, and account details

  • Respond to verification questions about your account or service usage

  • Provide additional documentation if requesting sensitive information

10.3 Authorized Agents

You may designate an authorized agent to make requests on your behalf. The authorized agent must:

  • Provide written authorization signed by you

  • Verify their own identity

  • Provide proof of their authorization to act on your behalf

10.4 Response Timeframes

We will respond to your requests within the timeframes required by California law:

  • Right to Know requests: Within 45 days, with a possible 45-day extension

  • Right to Delete requests: Within 45 days, with a possible 45-day extension

  • Right to Correct requests: Within 45 days, with a possible 45-day extension

  • Opt-Out requests: Within 15 business days

11. THIRD-PARTY WEBSITES AND SERVICES

Our website and services may contain links to third-party websites, applications, or services that are not owned or controlled by us. This Statement does not apply to the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access through our platform.

12. CHANGES TO THIS STATEMENT

We may update this Statement from time to time to reflect changes in our practices, legal requirements, or service features. We will notify California residents of material changes by:

  • Posting the updated Statement on our website

  • Sending email notification to registered users

  • Providing notice through our service platform

  • Other appropriate communication methods

Changes become effective on the date specified in the updated Statement. Your continued use of our services after the effective date constitutes acceptance of the updated Statement.

13. CONTACT INFORMATION

If you have questions about this Statement or wish to exercise your California privacy rights, please contact us:

Jackal Labs Inc.
Privacy Officer
[Address]
Ottawa, Ontario, Canada
Email: privacy@jackallabs.com
Phone: [Phone Number]
California Privacy Rights Request Form: [URL]

For your protection, we may need to verify your identity before responding to your request. We will respond to your request within the timeframes required by California law.

14. ADDITIONAL RESOURCES

For more information about California privacy laws and your rights, you may contact:

This California Privacy Rights Statement is effective as of [DATE] and supplements our general Privacy Policy.