Privacy Policy

What does this Privacy Policy cover?

Fox Pools & Spas (“us”, “we”, or “our”) operates the FoxPoolsAndSpas.com website (the “Service”). We want you to understand about the collection of your information. Capitalized terms that are not defined in this Privacy Policy have the meaning given to them in our Terms of Use. If you do not agree with this Privacy Policy in general or any part of it, you should not use our online or mobile services.

In summary: This policy explains how Fox Pools & Spas collects and uses the information we collect when you use our Services. This policy also advises you of the choices that you can make about the way we use your information.

Information Collection and Use

Contact Forms
We may ask for certain personally identifiable information that can be used to contact or identify you (“Personal Data“). Personally identifiable information may include:

• Email Address
• First & Last Name
• Phone Number
• Address, City, State, ZIP/Postal Code
• Cookies and Usage Data

The Personal Data we collect from you is required to enter a contract with Fox Pools & Spas or for us to provide you with the information that you are requesting. If you refuse to provide such Personal Data or withdraw your consent to our processing of Personal Data, then in some cases we may not be able to enter into a contract or provide you with the information you request.

Comments
When visitors leave comments on the site, we collect the data shown in the comments form, and the visitor’s IP address and browser user agent string to help us with spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Usage Data
We may also collect information on how the Service is accessed and used (“Usage Data”). This Usage Data may include, but is not limited to:

• Your computer’s Internet Protocol address (i.e. IP address)
• Browser type
• Browser version
• Pages of our Site you visit
• Time and date of your visit
• Time you spent on those pages
• Unique device identifiers
• Other diagnostic data

Tracking & Cookies Data
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. (Cookies are small text files that contain a string of alphanumeric characters.) These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. A cookie may also convey information to us about how you use this Service (for example – the pages you view, the links you click and other actions you take on the Service).

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

We will directly collect analytics data or use third-party analytics tools to help us measure traffic and usage trends for the Service. These tools collect information sent by your browser or mobile device, including the pages you visit and other information (see log file information below) that assist us in improving the service. For more information on the analytics cookies we use and how to opt out of third parties collecting this information, please read our Cookies Policy.

You can control or reset your cookies and similar technologies through your web browser, which will allow you to customize your cookie preferences and to refuse all cookies or to indicate when a cookie is being sent. However, some features of the Service may not function properly if the ability to accept cookies is disabled. For more information on how we use cookies and other technologies and how you can control them, please read our Cookies Policy.

Examples of Cookies we use:

• Session Cookies – We use Session Cookies to offer our Service.
• Preference Cookies – We use Preference Cookies to remember your preferences and various settings.
• Security Cookies – We use Security Cookies for security purposes.

Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Details about our use of automatic data collection technologies (including cookies) and the specific cookies that we use can be found in our Cookie Policy located here: https://foxpoolsandspas.com/cookie-policy.

Data Usage

Fox Pools & Spas used the collected data for various purposes:

• To provide and maintain the Service
• To notify you about changes to our Service
• To allow you to participate in interactive features of our Service
• To provide customer care and support
• To provide analysis or valuable information so that we can improve the Service
• To detect, prevent and address technical issues
• To detect any security issues and monitor any activity that is suspicious or potentially fraudulent and to identify violations of this Privacy Policy or our Terms of Use.
• To comply with the law and reasonable requests of law enforcement
• To exercise or protect the rights, property or personal safety of Fox Pools & Spas, our Users or others

GDPR: Lawful Basis for Processing Information

If you are in the European Economic Area (EEA), Fox Pools & Spas processes your information in accordance with European laws and regulations such as the General Data Protection Regulation (GDPR). The GDPR governs how we may process your information and the rights that EEA users have in relation to it. We have a lawful basis for each of our processing activities (except when an exception applies as described below):

• Consent. By using the Service, you consent to our collection, use and sharing of your Personal Data as described in this Privacy Policy. If you do not consent to this policy in part or in entirety, please do not use the Service.
• Legitimate Interests. We will process your Personal Data as necessary for our legitimate interests. Our legitimate interests are to: facilitate communication between Fox Pools & Spas and you; detect and correct bugs and to improve our Service; safeguard our IT infrastructure and intellectual property; detect and prevent fraud and other financial crimes; promote and market our business; and check your credit and perform risk assessments.
• To Fulfill Our Obligations to You Under our Contract. We process your Personal Data in order to fulfill our obligations to you pursuant to a contract with you to deliver our goods and services to you.
• As Required by Law. We may also process your Personal Data when we are required or permitted to by law; to comply with government inspections, audits and other valid requests from government or other public authorities; to respond to legal process such as subpoenas; or as necessary for us to protect our interests or otherwise pursue our legal rights and remedies (i.e. when necessary to prevent or detect fraud, attacks against our network, or other criminal and tortious activities), defend litigation, and manage complaints or claims.

Fox Pools & Spas does not ask you to provide and we do not knowingly collect any special categories of Personal Data from you, including Personal Data that reveals:

• Race or Ethnicity
• Political opinions
• Religious or philosophical beliefs
• Trade union memberships
• Information regarding your health
• Data concerning your sex life or sexual orientation
• History of criminal convictions

If you have consented to our use of your information you may withdraw said consent at any time. You may withdraw your consent in three ways:

• Via writing, by mail deliverable to: Fox Pools & Spas – ATTN: IT Department, 780 W. Main Street, Hendersonville, TN 37075
• Via email: webit@foxpoolsandspas.com
• Via your account settings page

Data Controller, Data Protection Officer and Representative
Fox Pools & Spas is the data controller of your Personal Data. Fox Pools & Spas is not required to appoint a Data Protection Officer in the EU. Fox Pools & Spas will appoint a representative in the European Union if needed to be in compliance with the General Data Protection Regulation. When this occurs, we will update this Privacy Policy to reflect this appointment.

Transfer of Data

We will not rent or sell your information to third parties outside Fox Pools & Spas and its group companies (including any parent, subsidiaries and affiliates) without your consent except as noted in this section.

Who we share your information with:
We share your information with third-party service providers for the purpose of providing the Service to you and to facilitate Fox Pools & Spas‘ legitimate interests in providing our services. Those service providers will only be provided with access to your information as it is reasonably necessary for the purpose that Fox Pools & Spas has engaged the service provider for. We will require that such third parties comply with this Privacy Policy, appropriate data processing terms and any applicable laws.

Some of the third parties that Fox Pools & Spas may share your Personal Data with include providers who assist Fox Pools & Spas with functions such as, but not limited to:

• Billing and/or cart checkout
• Customer support and management
• Email services
• Hosting and storage
• Analytics
• Delivery of physical products

Sharing with other third-parties:
If you are a resident of the European Economic Area (“EEA”), in order to provide our Services, products and services to you, we may send and store your Personal Data outside of the EEA, including to the United States. Accordingly, your Personal Data may be transferred outside of the country where you are located, including to countries that may not or do not provide an equivalent level of protection for your Personal Data.

Your Personal Data is transferred by Fox Pools & Spas to another country only if it is required or permitted under applicable data protection law and if there are appropriate safeguards in place to protect your Personal Data. By using our Service, you represent that you have read and understand the above and hereby consent to the storage and processing of Personal Data that you provide directly to us on our Service. To ensure that your Personal Data is treated in accordance with this Privacy Policy, Fox Pools & Spas uses Data Protection Agreements between us and all other recipients of your Personal Data that includes, where applicable, the Standard Contractual Clauses adopted by the European Commission (the “Standard Contractual Clauses”). The European Commission has determined that the transfer of Personal Data pursuant to the Standard Contractual Clauses, you have the same rights as if your data was not transferred to such third party. You may request a copy of the Data Protection Agreement by contacting us via webit@foxpoolsandspas.com.

Disclosure of Data

Legal Requirements

Fox Pools & Spas may disclose your Personal Data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of Fox Pools & Spas, including to enforce or applying our Terms of Use
• Prevent or investigate possible wrongdoing in connections with our Service
• Protect the personal safety of users of the Service or the public
• Protect against legal liability
  

Buyer or Successor in Interest

Fox Pools & Spas may disclose your Personal Data to a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Fox Pools & Spas‘ assets, whether as an ongoing concern or as part of bankruptcy, liquidation or similar proceeding in which Personal Data of our Users, held by Fox Pools & Spas, is among the assets transferred.

Your Rights: Accessing & Correcting Your Information

Applicable data protection laws may provide you with certain rights regarding the processing of your Personal Data.

• Access & Update. You may review and change your Personal Data by notifying us through the contact information below of any changes or errors in any Personal Data we have for you to ensure that it is complete, accurate and as current as possible. We may also not be able to accommodate your request if we believe it would violate any law or legal requirement, or cause information to be incorrect.
• Restrictions. You have the right to restrict our processing of your Personal Data under certain circumstances. You can request we restrict our use of it if you contest its accuracy, if the processing of your Personal Data is determined to be unlawful or if we need your Personal Data for processing, but we have retained it as permitted by law.
• Portability. To the extent the Personal Data you provide Fox Pools & Spas is processed based on your consent, you have the right to request that we provide you a copy of or access to all or part of such Personal Data in a structured, commonly used and machine-readable format. You also have the right to request that we transmit this Personal Data to another controller when technically feasible.
• Withdrawal of Consent. To the extent that our processing of your Personal Data is based on your consent, you may withdraw your consent at any time by closing your account. Withdrawing your consent will not affect the lawfulness of the processing based on your consent before its withdrawal and will not affect the lawfulness of our continued processing that is based on any other lawful basis for processing your Personal Data.
• Right to be Forgotten. You have the right to request that we delete all Personal Data. We will only delete your Personal Data when we no longer have a lawful basis for processing your Personal Data or after a final determination that your Personal Data was unlawfully processed. We may not accommodate a request to erase information if we believe the deletion would violate any law or legal requirement or cause the information to be incorrect. In all other cases, we will retain your Personal Data as set forth in this policy. In addition, we cannot completely delete your Personal Data as some data may rest in previous backups of our site. These will be retained for the periods set forth in our disaster recovery policies.
• Complaints. You have the right to lodge a complaint with the applicable supervisory authority in the country in which you live, the country in which you work or the country you believe your rights under applicable data protection laws were violated. However, before doing so, we request that you contact us directly in order to give us an opportunity to work directly with you to resolve any concerns you have about your privacy.
  

How to Exercise Your Rights
You may exercise any of the above rights by contacting us through any of the methods listed below. If you contact us to exercise any of the foregoing rights, we may ask you for additional information to verify your identity. We reserve the right to limit or deny your request if you have failed to provide adequate information to verify your identity or to satisfy our legal and business requirements. Please note that if you make unfounded, repetitive or excessive requests (as determined in our reasonable discretion) to access your Personal Data, you may be charged a fee subject to a maximum set by applicable law.

Security of Data

The security of your data is important to us, but please remember that no method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

Service Providers

We may utilize third party companies and individuals to support our business (“Service Providers”), including to respond directly to you if you ask for information about our products, to provide the Service on our behalf, to perform Service related services or to assist us in analyzing how our Service is used.

We may disclose your Personal Data to these Service Providers for these purposes. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Links to Other Sites

Our Service may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third-party’s website. We urge you to review the Privacy Policy of every website you visit.

Fox Pools & Spas has no control over and assumes no responsibility for the content, privacy policies or practices of any third party website or service. It is our intention that these links we provide be helpful and of use to you.

Children’s Privacy

Our Service is not intended for anyone under the age of 18 (“Children”).

We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children have provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from Children without verification of parental consent, we will take steps immediately to remove that information from our servers.

Data Retention Periods

Fox Pools & Spas will retain your Personal Data for as long as necessary to comply with your request, to comply with any legal requirement and to protect our legal interests or otherwise pursue our legal rights and remedies. We may also keep your Personal Data on our archive systems in accordance with our backup and disaster recovery policies and procedures. Fox Pools & Spas may retain data that has been aggregated or otherwise rendered anonymous in such a manner that you are no longer identifiable indefinitely.

California Users’ Privacy Rights

California users of Fox Pools & Spas have additional rights afforded to them under the California Consumer Privacy Act (CCPA).

Categories of Personal Information Collected by Fox Pools & Spas
For more details about the personal information Fox Pools & Spas has collected in the past year, please see Information Collection and Use – 3rd Section near the top of the page. For details on how we use that information see Data Usage – 4th section. For details on who we share your information with, see Transfer of Data – 6th Section.

Fox Pools & Spas does not “sell” (as defined in the CCPA) the personal information of our users.

Making a Request in Relation to Your Personal Information
The CCPA gives California consumers various rights with respect to the personal information we collect, including the right to (subject to certain limitations):

• Request to access the personal information Fox Pools & Spas has about you
• Request that Fox Pools & Spas delete all personal information.

California users may make a request by contacting us at webit@foxpoolsandspas.com. We will authenticate your request using the email address associated with your account and if necessary, proof of residency.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

We will let you know via email and/or a prominent notice on our Service prior to the change becoming effective. We will update the “effective date” at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Checkout Process

We collect information about you during the checkout process when you shop Fox Pools & Spas.

What We Collect and Store
While you visit our site, we’ll track:

• Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
• Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
• Payment Gateways – we accept payments through PayPal and some of your Personal Data will be passed to this third-party which includes information required to process or support the payment, such as the purchase total and your billing information
• Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of cart contents while you’re browsing our site.

When you purchase from Fox Pools & Spas, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:

• Send you information about your account and order
• Respond to your requests, including refunds and complaints
• Process payments and prevent fraud
• Set up your account for our store
• Comply with any legal obligations we have, such as calculating taxes
• Improve our store offerings
• Send you marketing messages, if you choose to receive them

If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.

We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 10 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.

We will also store comments or reviews, if you choose to leave them.

Who on Our Team Has Access?
Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:

• Order information like what was purchased, when it was purchased and where it should be sent, and
• Customer information like your name, email address, and billing and shipping information.

Our team members have access to this information to help fulfill orders, process refunds and support you.

What We Share with Others
We share information with third-parties who help us provide our orders and store services to you; for example:

• Payment processors – Fox Pools & Spas uses PayPal. You may view their policy here: https://www.paypal.com/us/webapps/mpp/ua/privacy-full
• Shipping extensions – Fox Pools & Spas use a shipping extension for the USPS in order to take advantage of the real-time shipping rates, fulfill orders and track shipments. You may view their policy here: https://about.usps.com/who/legal/privacy-policy/full-privacy-policy.htm

Third-Party Extensions

Our website uses third-party extensions (or plugins) to improve site quality and your user experience. Listed are the apps and the information they may collect from us along with links to their privacy policies.

Askimet
Askimet collects information about visitors who comment on our website. It is an anti-spam service. The information they collect typically includes the commenter’s IP address user agent, referrer and the Site URL (along with other information directly provided by the commenter such as their name, username, email address and the comment itself).

View Askimet’s Privacy Policy here: https://automattic.com/privacy/

Constant Contact
Constant Contact is an email marketing platform that we utilize to send out newsletters and to obtain email sign-ups. The data they collect may include user information (name, email, physical address, company name, phone number, geographic location, payment information, etc.), digital information (IP address, browser information and history, device information, meta data, certain provided social media identifiers, etc.), and information from other sources (publicly available information, information you provide at seminars, information you consent to be provided to us by third parties, etc.).

View Constant Contact’s Privacy Policy here: https://endurance.clarip.com/privacycenter/?brand=ctct

Jetpack
Jetpack is an app that provides security and analytic tracking for Fox Pools and Spas. The following is a list of the support services they provide us and what data may be collected.

Activity
This feature only records the activities of a site’s registered users, and the retention duration of activity data will depend on the site’s plan and activity type.

Data Used: To deliver this functionality and record activities around site management, the following information is captured: user email address, user role, user login, user display name, WordPress.com and local user IDs, the activity to be recorded, the WordPress.com-connected site ID of the site on which the activity takes place, the site’s Jetpack version, and the timestamp of the activity. Some activities may also include the actor’s IP address (login attempts, for example) and user agent.

Activity Tracked: Login attempts/actions, post and page update and publish actions, comment/pingback submission and management actions, plugin and theme management actions, widget updates, user management actions, and the modification of other various site settings and options. Retention duration of activity data depends on the site’s plan and activity type. See the complete list of currently recorded activities (along with retention information).

Data Synced (?): Successful and failed login attempts, which will include the actor’s IP address and user agent.

Carousel
Image views are only recorded if the site owner, has explicitly enabled image view stats tracking for this feature via the jetpack_enable_carousel_stats filter.

Data Used: If image view tracking is enabled, the following information is used: IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code.

Activity Tracked: Image views.

Comment Likes
This feature is only accessible to users logged in to WordPress.com.

Data Used: In order to process a comment like, the following information is used: WordPress.com user ID/username (you must be logged in to use this feature), the local site-specific user ID (if the user is signed in to the site on which the like occurred), and a true/false data point that tells us if the user liked a specific comment. If you perform a like action from one of our mobile apps, some additional information is used to track the activity: IP address, user agent, timestamp of event, blog ID, browser language, country code, and device info.

Activity Tracked: Comment likes.

Google Analytics
This feature is only available to sites on the Premium and Professional plans.

Data Used: Please refer to the appropriate Google Analytics documentation for the specific type of data it collects. For sites running WooCommerce (also owned by Automattic) and this feature simultaneously and having all purchase tracking explicitly enabled, purchase events will send Google Analytics the following information: order number, product id and name, product category, total cost, and quantity of items purchased. Google Analytics does offer IP anonymization, which can be enabled by the site owner.

Activity Tracked: This feature sends page view events (and potentially video play events) over to Google Analytics for consumption. For sites running WooCommerce-powered stores, some additional events are also sent to Google Analytics: shopping cart additions and removals, product listing views and clicks, product detail views, and purchases. Tracking for each specific WooCommerce event needs to be enabled by the site owner.

Gravatar Hovercards
Data Used: This feature will send a hash of the user’s email address (if logged in to the site or WordPress.com — or if they submitted a comment on the site using their email address that is attached to an active Gravatar profile) to the Gravatar service (also owned by Automattic) in order to retrieve their profile image.

Infinite Scroll
Data Used: In order to record page views via WordPress.com Stats (which must be enabled for page view tracking here to work) with additional loads, the following information is used: IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code.

Activity Tracked: Page views will be tracked with each additional load (i.e. when you scroll down to the bottom of the page and a new set of posts loads automatically). If the site owner has enabled Google Analytics to work with this feature, a page view event will also be sent to the appropriate Google Analytics account with each additional load.

Jetpack Comments
Data Used: Commenter’s name, email address, and site URL (if provided via the comment form), timestamp, and IP address. Additionally, a jetpack.wordpress.com IFrame receives the following data: WordPress.com blog ID attached to the site, ID of the post on which the comment is being submitted, commenter’s local user ID (if available), commenter’s local username (if available), commenter’s site URL (if available), MD5 hash of the commenter’s email address (if available), and the comment content. If Akismet (also owned by Automattic) is enabled on the site, the following information is sent to the service for the sole purpose of spam checking: commenter’s name, email address, site URL, IP address, and user agent.

Activity Tracked: The comment author’s name, email address, and site URL (if provided during the comment submission) are stored in cookies. Learn more about these cookies.

Data Synced (?): All data and metadata (see above) associated with comments. This includes the status of the comment and, if Akismet is enabled on the site, whether or not it was classified as spam by Akismet.

Likes
This feature is only accessible to users logged in to WordPress.com.

Data Used: In order to process a post like action, the following information is used: IP address, WordPress.com user ID, WordPress.com username, WordPress.com-connected site ID (on which the post was liked), post ID (of the post that was liked), user agent, timestamp of event, browser language, country code.

Activity Tracked: Post likes.

Map Block
Activity Tracked: We don’t track anything. Refer to the Mapbox privacy policy for details of any activity they track.

Notifications
This feature is only accessible to registered users of the site who are logged in to WordPress.com.

Data Used: IP address, WordPress.com user ID, WordPress.com username, WordPress.com-connected site ID and URL, Jetpack version, user agent, visiting URL, referring URL, timestamp of event, browser language, country code. Some visitor-related information or activity may be sent to the site owner via this feature. This may include: email address, WordPress.com username, site URL, email address, comment content, follow actions, etc.

Activity Tracked: Sending notifications (i.e. when we send a notification to a particular user), opening notifications (i.e. when a user opens a notification that they receive), performing an action from within the notification panel (e.g. liking a comment or marking a comment as spam), and clicking on any link from within the notification panel/interface.

Protect
Data Used: In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.

Activity Tracked: Failed login attempts (these include IP address and user agent). We also set a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human. Learn more about this cookie.

Data Synced (?): Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information.

Recurring Payments Block
This feature is only available to sites on a paid Jetpack plan.

Data Used: To facilitate new signup and renewals, the following is sent to Stripe (governed by Stripe TOS): Name, Credit Card number, CVV, Expiry date. Note – the credit card details are not stored by us – this data is collected and stored by Stripe. WordPress.com systems are fully PCI compliant.

Activity Tracked: We plan to store anonymized analytics about which step in the purchase process was reached for the purpose of improving the user experience. Cookies may be stored to implement content blocking in the future.

Data Synced (?): We create a new WordPress.com account for the user, or use the account associated with the email customer gives us. An explanation of WordPress.com data used can be found here. History of signups and billing facilitated via this feature is stored on WordPress.com servers for accounting and subsequent renewal purposes. For the purpose of renewing subscription, on our servers we store: Safely encrypted Stripe ID of the credit card connected to subscription, User id that initiated the purchase, Details about the product, Payment history for the subscription, Last 4 digits of the credit card and the brand – what is known in the industry as “safe details”. Also, we connect the ID of the credit card to the WordPress.com user id, which allows for one-click payments on other subscription products sold on WordPress.com network.

Search
This feature is only available to sites on the Professional plan.

Data Used: Any of the visitor-chosen search filters and query data in order to process a search request on the WordPress.com servers.

Sharing
Data Used: When official sharing buttons are active on the site, each button loads content directly from its service in order to display the button as well as information and tools for the sharing party. As a result, each service can in turn collect information about the sharing party. When a non-official Facebook or a Pinterest sharing button is active on the site, information such as the sharing party’s IP address as well as the page URL will be available for each service, so sharing counts can be displayed next to the button. When sharing content via email (this option is only available if Akismet is active on the site), the following information is used: sharing party’s name and email address (if the user is logged in, this information will be pulled directly from their account), IP address (for spam checking), user agent (for spam checking), and email body/content. This content will be sent to Akismet (also owned by Automattic) so that a spam check can be performed. Additionally, if reCAPTCHA (by Google) is enabled by the site owner, the sharing party’s IP address will be shared with that service. You can find Google’s privacy policy here.

Subscriptions
Data Used: To initiate and process subscriptions, the following information is used: subscriber’s email address and the ID of the post or comment (depending on the specific subscription being processed). In the event of a new subscription being initiated, we also collect some basic server data, including all of the subscribing user’s HTTP request headers, the IP address from which the subscribing user is viewing the page, and the URI which was given in order to access the page (REQUEST_URI and DOCUMENT_URI). This server data used for the exclusive purpose of monitoring and preventing abuse and spam.

Activity Tracked: Functionality cookies are set for a duration of 347 days to remember a visitor’s blog and post subscription choices if, in fact, they have an active subscription.

Video Hosting
This feature is only available to sites on the Premium and Professional plans.

Data Used: For video play tracking via WordPress.com Stats, the following information is used: viewer’s IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code. If Google Analytics is enabled, video play events will be sent there, as well.

Activity Tracked: Video plays.

WooCommerce Services
Data Used: For payments with PayPal or Stripe: purchase total, currency, billing information. For taxes: the value of goods in the cart, value of shipping, destination address. For checkout rates: destination address, purchased product IDs, dimensions, weight, and quantities. For shipping labels: customer’s name, address as well as the dimensions, weight, and quantities of purchased products.

Data Synced (?): For payments, we send the purchase total, currency and customer’s billing information to the respective payment processor. Please see the respective third party’s privacy policy (Stripe’s Privacy Policy and PayPal’s Privacy Policy) for more details. For automated taxes we send the value of goods in the cart, the value of shipping, and the destination address to TaxJar. Please see TaxJar’s Privacy Policy for details about how they handle this information. For checkout rates we send the destination ZIP/postal code and purchased product dimensions, weight and quantities to USPS or Canada Post, depending on the service used. For shipping labels, we send the customer’s name, address as well as the dimensions, weight, and quantities of purchased products to EasyPost. We also store the purchased shipping labels on our server to make it easy to reprint them and handle support requests.

View Jetpack’s Privacy Policy here: https://automattic.com/privacy/

Google Web Fonts
For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose, your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

If your browser does not support web fonts, a standard font is used by your computer.

Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google’s Privacy Policy at https://www.google.com/policies/privacy/.

YouTube
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.

If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.

Vimeo
Our website uses features provided by the Vimeo video portal. This service is provided by Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

If you visit one of our pages featuring a Vimeo plugin, a connection to the Vimeo servers is established. Here the Vimeo server is informed about which of our pages you have visited. In addition, Vimeo will receive your IP address. This also applies if you are not logged in to Vimeo when you visit our plugin or do not have a Vimeo account. The information is transmitted to a Vimeo server in the US, where it is stored.

If you are logged in to your Vimeo account, Vimeo allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.

For more information on how to handle user data, please refer to the Vimeo Privacy Policy at https://vimeo.com/privacy.

How to Contact Us

If you have any questions about our Privacy Policy or the Service or wish to make a complaint, please contact us:

• Via email: webit@foxpoolsandspas.com
• Via mail: Fox Pools & Spas, ATTN: IT Department, 780 W. Main Street, Hendersonville, TN 37075

Your privacy is important to us and we’re happy to answer any questions you may have.