USA Privacy Notes

Table of Contents

• 1. Overview of Privacy in the U.S.
• 2. Federal Privacy Laws
  • 2.1 Children’s Online Privacy Protection Act (COPPA)
  • 2.2 Health Insurance Portability and Accountability Act (HIPAA)
  • 2.3 Gramm-Leach-Bliley Act (GLBA)
• 3. State Privacy Laws
  • 3.1 California Consumer Privacy Act (CCPA)
  • 3.2 Other State Privacy Laws
• 4. Data Collection and Usage
• 5. Your Rights and Choices
• 6. Contact Information

1. Overview of Privacy in the U.S.

Privacy in the United States is governed by a combination of federal and state laws. Unlike the EU’s GDPR, there is no single comprehensive federal privacy law. Instead, regulations focus on specific sectors or types of personal information.

Key points:

• Privacy laws vary by state and industry.
• Companies must comply with applicable federal and state laws based on the data collected and user location.
• Users have varying rights depending on the applicable law, such as access, deletion, or opt-out.

2. Federal Privacy Laws

2.1 Children’s Online Privacy Protection Act (COPPA)

• Protects the privacy of children under 13.
• Requires parental consent before collecting personal information from children.
• Companies must maintain safeguards and provide notice of data collection practices.

2.2 Health Insurance Portability and Accountability Act (HIPAA)

• Protects sensitive health information.
• Applies to healthcare providers, insurers, and their business associates.
• Grants patients rights to access, correct, and request restrictions on their health data.

2.3 Gramm-Leach-Bliley Act (GLBA)

• Applies to financial institutions.
• Requires disclosure of privacy policies to customers.
• Protects nonpublic personal information and mandates safeguards.

3. State Privacy Laws

3.1 California Consumer Privacy Act (CCPA)

• Grants California residents rights over their personal data, including the right to know, delete, and opt-out of sale.
• Businesses must provide clear notices and mechanisms to exercise these rights.
• See our CCPA Privacy Rights section for detailed instructions.

3.2 Other State Privacy Laws

• Virginia Consumer Data Protection Act (VCDPA) – Similar rights to CCPA for Virginia residents.
• Colorado Privacy Act (CPA) – Provides data access, deletion, and opt-out rights for Colorado residents.
• Several other states have pending or enacted privacy laws; applicability depends on residency and business location.

4. Data Collection and Usage

coSociale collects and uses personal information in accordance with applicable U.S. privacy laws:

• Types of Information Collected: Name, email, account activity, preferences, device data, and other necessary information.
• Purposes: Service provision, personalization, analytics, marketing (with consent), and legal compliance.
• Third-Party Sharing: Data may be shared with service providers, partners, or affiliates as disclosed in our Privacy Policy.

5. Your Rights and Choices

Depending on your location and applicable laws, you may have the following rights:

• Access: Request information about the data collected about you.
• Correction: Request correction of inaccurate personal data.
• Deletion: Request deletion of your personal information where applicable.
• Opt-Out: Opt-out of marketing communications or the sale of personal information.
• Non-Discrimination: Rights exercised will not result in denial of services or other penalties.

6. Contact Information

For questions or concerns regarding U.S. privacy compliance:

• Data Protection Officer (DPO): dpo@cosociale.com

• Support Email: support@cosociale.com

We are committed to complying with applicable U.S. privacy laws and protecting your personal information.