Privacy policy

BUZZING – PRIVACY POLICY
Operated by Stardustic LTD

Last updated: 24 April 2026

This Privacy Policy sets out how Stardustic LTD collects, uses, and discloses information when you access or use the Buzzing service, and it explains the privacy rights available to you as well as the legal protections that apply.

We rely on your Personal Data in order to deliver and continuously improve Buzzing. By using the Service, you consent to the collection and use of information as described in this Privacy Policy.

1. Interpretation and Definitions

1.1 Interpretation

Terms with an initial capital letter carry the meanings set out below. These meanings apply equally whether the term is used in the singular or the plural.

1.2 Definitions

For the purposes of this Privacy Policy:

  • “Account” — a unique account created for you to access the Service or any part of it, available through buzzing.io/login.
  • “Affiliate” — any entity that controls, is controlled by, or is under common control with a party, where “control” means ownership of 50% or more of the shares, equity interest, or other voting securities entitled to elect directors or equivalent managing bodies.
  • “Business” — for purposes of the CCPA/CPRA, the Company, as the legal entity that collects Consumers’ personal information and determines, alone or jointly with others, the purposes and means of processing that information, and that does business in the State of California.
  • “CCPA” and/or “CPRA” — the California Consumer Privacy Act (the “CCPA”), as amended by the California Privacy Rights Act of 2020 (the “CPRA”).
  • “Company” (also “we,” “us,” or “our”) — Stardustic LTD, Aristofanous 6, 3031 Limassol, Cyprus. For purposes of the GDPR, the Company acts as the Data Controller.
  • “Consumer” — for purposes of the CCPA/CPRA, a natural person who is a California resident. A resident, as defined under that law, includes (1) any individual present in the United States other than for a temporary or transitory purpose, and (2) any individual domiciled in the United States who is outside the country for a temporary or transitory purpose.
  • “Cookies” — small files placed on your computer, mobile device, or other device by a website. Among other things, Cookies record details of your browsing activity on that website.
  • “Country” — refers to Cyprus.
  • “Data Controller” — for purposes of the GDPR, the Company, as the legal person that alone, or jointly with others, determines the purposes and means of the processing of Personal Data.
  • “Device” — any device capable of accessing the Service, including a computer, mobile phone, or tablet.
  • “Do Not Track (DNT)” — a concept promoted by US regulatory authorities, notably the US Federal Trade Commission (FTC), calling on the internet industry to provide users with a mechanism to control the tracking of their online activity across websites.
  • “GDPR” — the EU General Data Protection Regulation.
  • “Personal Data” — any information relating to an identified or identifiable individual. For GDPR purposes, Personal Data means any information relating to you, such as a name, an identification number, location data, an online identifier, or one or more factors specific to your physical, physiological, genetic, mental, economic, cultural, or social identity. For CCPA/CPRA purposes, Personal Data means any information that identifies, relates to, describes, or could reasonably be linked, directly or indirectly, with you.
  • “Service” — refers to the Website.
  • “Service Provider” — any natural or legal person who processes data on behalf of the Company. This includes third-party companies or individuals engaged by the Company to facilitate the Service, to provide the Service on the Company’s behalf, to perform services related to the Service, or to help the Company analyze how the Service is used. For purposes of the GDPR, Service Providers are considered Data Processors.
  • “Third-party Social Media Service” — any website or social network that allows a user to log in or create an account to use the Service.
  • “Usage Data” — data collected automatically, whether generated by the use of the Service or by the Service infrastructure itself (for example, the length of a page visit).
  • “Website” — Buzzing, accessible at https://buzzing.io.
  • “You” — the individual accessing or using the Service, or the company or other legal entity on whose behalf such individual is accessing or using the Service. Under GDPR, “you” may also be referred to as the Data Subject or the User.

2. Collecting and Using Your Personal Data

2.1 Personal Data

In the course of using the Service, we may request that you provide certain personally identifiable information that can be used to contact or identify you. Such information may include, without limitation:

  • email address;
  • Usage Data.

2.2 Usage Data

Usage Data is collected automatically whenever you use the Service.

Usage Data may include your Device’s Internet Protocol (IP) address, browser type, browser version, the pages of the Service you visit, the time and date of each visit, the time spent on each page, unique device identifiers, and other diagnostic information.

Where you access the Service through a mobile device, we may automatically collect additional information, including, without limitation, the type of mobile device used, your mobile device’s unique ID, its IP address, your mobile operating system, the mobile browser you use, unique device identifiers, and other diagnostic data.

We may also record information that your browser transmits whenever you visit the Service or access it through a mobile device.

2.3 Information from Third-Party Social Media Services

Stardustic LTD allows you to create an Account and sign into the Service through the following Third-Party Social Media Services:

  • Telegram.

If you choose to register, or otherwise grant us access, through a Third-Party Social Media Service, we may collect Personal Data that is already linked to that account — such as your name, email address, activities, or contact list associated with it.

You may also choose to share additional information with Stardustic LTD via your Third-Party Social Media Service account. By providing such information and Personal Data, whether during registration or later, you authorize Stardustic LTD to use, share, and store it in line with this Privacy Policy.

2.4 Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to monitor activity on the Service and to store certain information. The tracking technologies employed include beacons, tags, and scripts, used both to collect and track information and to improve and analyze the Service. These technologies may include:

  • Cookies or Browser Cookies. A cookie is a small file placed on your Device. You may configure your browser to reject all Cookies or to notify you when a Cookie is being sent. However, refusing Cookies may prevent you from using certain parts of the Service. Unless you have configured your browser to refuse Cookies, our Service may use Cookies.
  • Web Beacons. Some sections of the Service and some of our emails may contain small electronic files known as web beacons (also called clear GIFs, pixel tags, or single-pixel GIFs), which allow Stardustic LTD, for example, to count users who have visited particular pages or opened a given email, and to compile related website statistics (such as measuring the popularity of a section or verifying system and server integrity).

Cookies may be “Persistent” or “Session.” Persistent Cookies remain on your personal computer or mobile device even after you go offline, whereas Session Cookies are deleted as soon as you close your browser.

We use both Session and Persistent Cookies for the purposes described below:

Necessary / Essential Cookies

Type: Session Cookies. Administered by: Stardustic LTD. Purpose: These Cookies are essential in order to provide you with the services available through the Website and to enable you to use certain features. They also help authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services you have requested cannot be delivered, and we use these Cookies only to make those services available to you.

Cookies Policy / Notice Acceptance Cookies

Type: Persistent Cookies. Administered by: Stardustic LTD. Purpose: These Cookies record whether users have accepted the use of cookies on the Website.

Functionality Cookies

Type: Persistent Cookies. Administered by: Stardustic LTD. Purpose: These Cookies let us remember the choices you make when you use the Website — such as your login details or preferred language. Their purpose is to provide you with a more personalized experience and to save you the trouble of re-entering your preferences every time you return to the Website.

Tracking and Performance Cookies

Type: Persistent Cookies. Administered by: Third parties. Purpose: These Cookies are used to track information about traffic to the Website and about how users interact with it. The information collected via these Cookies may, whether directly or indirectly, identify you as an individual visitor, since the data is typically linked to a pseudonymous identifier associated with the Device you use to access the Website. We may also use these Cookies to test new pages, features, or functionality of the Website in order to gauge how users respond.

For further information about the Cookies used on the Service and the choices available to you regarding Cookies, please refer to our Cookies Policy or to the Cookies section of this Privacy Policy.

3. Use of Your Personal Data

Stardustic LTD may use Personal Data for the following purposes:

  • To provide and maintain the Service, including to monitor how the Service is used.
  • To manage your Account: to handle your registration as a user of the Service. The Personal Data you provide may unlock functionalities of the Service available to registered users.
  • For the performance of a contract: the development of, compliance with, and performance of the purchase contract for the products, items, or services you have acquired, or any other contract entered into with us through the Service.
  • To contact you: by email, telephone call, SMS, or other equivalent forms of electronic communication, including push notifications from a mobile application, regarding updates or informational messages about features, products, or contracted services, including security updates, where necessary or reasonable for their implementation.
  • To provide you with news, special offers, and general information about other goods, services, and events we offer that are similar to those you have already purchased or enquired about, unless you have opted out of receiving such communications.
  • To manage your requests: to attend to and handle any requests that you direct to us.
  • For business transfers: we may use your information to evaluate or carry out a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or in the context of bankruptcy, liquidation, or similar proceedings, where Personal Data held about our users is among the assets transferred.
  • For other purposes: such as data analysis, identifying usage trends, measuring the effectiveness of our promotional campaigns, and evaluating and improving the Service, our products and services, our marketing, and your overall experience.

We may share your personal information in the following circumstances:

  • With Service Providers: to monitor and analyze the use of the Service, to process payments, and to contact you.
  • For business transfers: in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or part of our business by another entity.
  • With Affiliates: in which case we will require those Affiliates to comply with this Privacy Policy. Affiliates include our parent company and any subsidiaries, joint-venture partners, or other entities that we control or that are under common control with us.
  • With business partners: to offer you certain products, services, or promotions.
  • With other users: where you share personal information or otherwise interact in the public areas of the Service, such information may be viewed by all users and may be distributed publicly outside the Service. Where you interact with other users, or register through a Third-Party Social Media Service, your contacts on that Third-Party Social Media Service may see your name, profile, pictures, and a description of your activity. Similarly, other users will be able to view descriptions of your activity, communicate with you, and view your profile.
  • With your consent: we may disclose your personal information for any other purpose with your consent.

4. Retention of Your Personal Data

Stardustic LTD retains your Personal Data only for as long as necessary for the purposes described in this Privacy Policy. We will keep and use your Personal Data to the extent required to comply with our legal obligations (for example, where we are required to retain your data in order to satisfy applicable laws), to resolve disputes, and to enforce our legal agreements and policies.

Stardustic LTD also retains Usage Data for internal analysis. Usage Data is generally kept for a shorter period, except where the data is used to strengthen security or enhance the functionality of the Service, or where we are legally required to retain it for longer.

5. Transfer of Your Personal Data

Your information, including Personal Data, is processed at Stardustic LTD’s operating offices and in any other locations where the parties involved in the processing are situated. This means that the information may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction, where data-protection laws may differ from those in your own jurisdiction.

By consenting to this Privacy Policy and submitting such information, you agree to that transfer.

Stardustic LTD will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy, and will not transfer your Personal Data to any organization or country unless appropriate safeguards are in place, including measures to protect the security of your data and other personal information.

6. Deletion of Your Personal Data

You are entitled to delete, or to request that we assist in deleting, the Personal Data we have collected about you.

The Service may provide you with the ability to delete certain information about yourself directly within the platform.

You may update, amend, or delete your information at any time by signing in to your Account (if you have one) and visiting the account-settings area, which allows you to manage your personal information. You may also contact us to request access to, correction of, or deletion of any personal information you have provided.

Please note, however, that we may be required to retain certain information where we have a legal obligation or a lawful basis to do so.

7. Disclosure of Your Personal Data

7.1 Business Transactions

If Stardustic LTD is involved in a merger, acquisition, or asset sale, your Personal Data may be transferred as part of that transaction. We will provide notice before your Personal Data is transferred and becomes subject to a different privacy policy.

7.2 Law Enforcement

In certain circumstances, Stardustic LTD may be required to disclose your Personal Data where legally obligated to do so or in response to valid requests by public authorities (for example, a court or a government agency).

7.3 Other Legal Requirements

Stardustic LTD may disclose your Personal Data where we believe in good faith that such action is necessary in order to:

  • comply with a legal obligation;
  • prevent or investigate possible wrongdoing in connection with the Service;
  • protect the personal safety of users of the Service or of the public;
  • protect against legal liability.

8. Security of Your Personal Data

The security of your Personal Data matters to us, but please be aware that no method of transmission over the internet, or of electronic storage, is completely secure. While we strive to use commercially reasonable means to protect your Personal Data, we cannot guarantee its absolute security.

9. Detailed Information on the Processing of Your Personal Data

The Service Providers we engage may have access to your Personal Data. These third-party vendors collect, store, use, process, and transfer information about your activity on the Service in accordance with their own privacy policies.

9.1 Analytics

We may rely on third-party Service Providers to monitor and analyze how the Service is used.

Google Analytics

Google Analytics is a web-analytics service provided by Google that tracks and reports on website traffic. Google uses the data it collects to monitor and analyze the use of the Service. This data may be shared with other Google services. Google may also use the data collected to contextualize and personalize advertising served through its own advertising network.

You can opt out of having your Service activity made available to Google Analytics by installing the Google Analytics Opt-out Browser Add-on, which prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing activity information with Google Analytics.

For more information on Google’s privacy practices, please see: https://policies.google.com/privacy.

9.2 Email Marketing

We may use your Personal Data to send you newsletters, marketing or promotional materials, and other information likely to be of interest to you. You may opt out of receiving any or all of these communications by following the unsubscribe link or instructions included in each email we send, or by contacting us directly.

We may engage email-marketing Service Providers to manage and dispatch emails on our behalf. We currently use Twilio SendGrid for this purpose. Twilio SendGrid’s privacy policy can be reviewed at https://www.twilio.com/en-us/legal/privacy.

9.3 Payments

The Service may offer paid products and/or services. In that case, we rely on third-party services for payment processing (for example, payment processors).

We do not store or collect your payment-card details. That information is transmitted directly to our third-party payment processors, whose use of your personal information is governed by their own privacy policies. These payment processors comply with the PCI-DSS standards administered by the PCI Security Standards Council, an initiative of brands including Visa, Mastercard, American Express, and Discover. The PCI-DSS requirements help ensure the secure handling of payment information.

Buzzing’s payment processor is Stripe. You can review Stripe’s privacy policy at https://stripe.com/privacy.

9.4 Behavioral Remarketing

Stardustic LTD does not engage in behavioral remarketing and does not use third-party advertising or retargeting services (such as Google Ads or X Ads) to serve you personalized advertisements after you have accessed or visited the Service.

9.5 Usage, Performance, and Miscellaneous

We may use third-party Service Providers to maintain and enhance the Service.

Invisible reCAPTCHA

We use an invisible captcha service called reCAPTCHA, operated by Google. The reCAPTCHA service may collect information from you and your Device for security purposes. Data gathered through reCAPTCHA is handled in accordance with Google’s Privacy Policy: https://www.google.com/intl/en/policies/privacy/.

10. GDPR Privacy

10.1 Legal Basis for Processing under the GDPR

Stardustic LTD may process Personal Data on the following legal grounds:

  • Consent: you have given your consent to the processing of your Personal Data for one or more specific purposes.
  • Performance of a contract: processing is necessary to perform an agreement with you, or to take steps at your request prior to entering into such an agreement.
  • Legal obligations: processing is necessary for us to comply with a legal obligation to which we are subject.
  • Vital interests: processing is necessary to protect your vital interests or those of another natural person.
  • Public interests: processing is carried out in the public interest or in the exercise of official authority vested in Stardustic LTD.
  • Legitimate interests: processing is necessary for the purposes of the legitimate interests pursued by Stardustic LTD.

In any case, Stardustic LTD is happy to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.

10.2 Your Rights under the GDPR

Stardustic LTD is committed to protecting the confidentiality of your Personal Data and to ensuring that you can exercise your rights. Under this Privacy Policy, and under the law if you are within the EU, you have the right to:

  • Request access to your Personal Data. You are entitled to access, update, or delete the information we hold about you. Where possible, you can access, update, or request deletion of your Personal Data directly in your account settings. If you cannot carry out these actions yourself, please contact us. This right also allows you to obtain a copy of the Personal Data we hold about you.
  • Request correction of your Personal Data. You have the right to have any incomplete or inaccurate information we hold about you corrected.
  • Object to processing of your Personal Data. This right applies where we rely on a legitimate interest as the legal basis for the processing and there is something about your particular situation that leads you to object to our processing on that ground. You also have the right to object where we process your Personal Data for direct-marketing purposes.
  • Request erasure of your Personal Data. You may ask us to delete or remove your Personal Data where there is no valid reason for us to continue processing it.
  • Request the transfer of your Personal Data. We will provide you, or a third party you designate, with your Personal Data in a structured, commonly used, machine-readable format. This right applies only to automated information you initially consented to our using, or where we used the information to perform a contract with you.
  • Withdraw your consent. You may withdraw your consent to our use of your Personal Data at any time. Please note that this may limit our ability to provide you with access to certain features of the Service.

10.3 Exercising Your GDPR Rights

You may exercise your rights of access, rectification, cancellation, and objection by contacting us. Please note that we may ask you to verify your identity before responding to such a request. Where you submit a request, we will do our best to respond as quickly as reasonably possible.

You also have the right to lodge a complaint with a Data Protection Authority in relation to our collection and use of your Personal Data. If you are located in the European Economic Area (EEA), please contact your local data-protection authority for further information.

11. CCPA/CPRA Privacy Notice

This section of the Privacy Policy, applicable to California residents, supplements the rest of this Privacy Policy and applies solely to visitors, users, and others who reside in the State of California.

11.1 Categories of Personal Information Collected

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular Consumer or Device. The list below sets out the categories of personal information that we may collect, or that may have been collected from California residents within the last twelve (12) months.

The categories and examples below are those defined in the CCPA/CPRA. Their inclusion does not mean that every example was in fact collected by us; rather, it reflects our good-faith belief, to the best of our knowledge, that some information in the relevant category may have been collected. Some categories would only be collected if you provided the relevant information directly to us.

  • Category A: Identifiers. Examples include a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, driver’s license number, passport number, or similar identifiers. Collected: Yes.
  • Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). Examples include a name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification-card number, insurance-policy number, education, employment, employment history, bank-account number, credit-card number, debit-card number, or any other financial information, medical information, or health-insurance information. Some items in this category may overlap with other categories. Collected: Yes.
  • Category C: Protected classification characteristics under California or federal law. Examples include age (40 or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy, childbirth, and related medical conditions), sexual orientation, veteran or military status, and genetic information (including familial genetic information). Collected: No.
  • Category D: Commercial information. Examples include records and history of products or services purchased or considered. Collected: Yes.
  • Category E: Biometric information. Examples include genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or identifying information, such as fingerprints, faceprints, voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. Collected: No.
  • Category F: Internet or other similar network activity. Examples include interaction with the Service or an advertisement. Collected: Yes.
  • Category G: Geolocation data. Examples include approximate physical location. Collected: No.
  • Category H: Sensory data. Examples include audio, electronic, visual, thermal, olfactory, or similar information. Collected: No.
  • Category I: Professional or employment-related information. Examples include current or past job history or performance evaluations. Collected: No.
  • Category J: Non-public education information (as defined by the Family Educational Rights and Privacy Act, 20 U.S.C. Section 1232g, 34 C.F.R. Part 99). Examples include education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. Collected: No.
  • Category K: Inferences drawn from other personal information. Examples include profiles reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. Collected: No.
  • Category L: Sensitive personal information. Examples include account login and password information and geolocation data. Collected: Yes.

Under the CCPA/CPRA, personal information does not include:

  • publicly available information from government records;
  • de-identified or aggregated consumer information;
  • information excluded from the CCPA/CPRA’s scope, such as: health or medical information covered by HIPAA and the California Confidentiality of Medical Information Act (CMIA), or clinical-trial data; personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or the California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994.

11.2 Sources of Personal Information

We obtain the categories of personal information listed above from the following categories of sources:

  • Directly from you. For example, from forms you complete on the Service, preferences you express via the Service, or purchases you make on the Service.
  • Indirectly from you. For example, by observing your activity on the Service.
  • Automatically from you. For example, through cookies we or our Service Providers place on your Device as you use the Service.
  • From Service Providers. For example, third-party vendors that help us monitor and analyze use of the Service, deliver targeted advertising, process payments, or otherwise assist us in providing the Service.

11.3 Use of Personal Information

We may use or disclose the personal information we collect for “business purposes” or “commercial purposes” (as those terms are defined under the CCPA/CPRA), which may include, for example:

  • operating the Service and providing it to you;
  • providing you with support and responding to your enquiries, including investigating and addressing your concerns and monitoring and improving the Service;
  • fulfilling the reason for which you provided the information (for example, responding to your enquiry if you share your contact details with a question, or processing your payment and facilitating delivery if you purchase a product or service);
  • responding to law-enforcement requests and as otherwise required by applicable law, court order, or governmental regulations;
  • as described when collecting your personal information, or as otherwise set out in the CCPA/CPRA;
  • for internal administrative and auditing purposes;
  • detecting security incidents and protecting against malicious, deceptive, fraudulent, or illegal activity, including, where necessary, prosecuting those responsible;
  • other one-time uses.

The examples above are illustrative and not exhaustive. For further details on how we use this information, see Section 3 (“Use of Your Personal Data”).

If we decide to collect additional categories of personal information, or to use the personal information we have collected for materially different, unrelated, or incompatible purposes, we will update this Privacy Policy.

11.4 Disclosure of Personal Information

We may have disclosed, and may continue to disclose, the following categories of personal information for business or commercial purposes in the last twelve (12) months:

  • Category A: Identifiers;
  • Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e));
  • Category D: Commercial information;
  • Category F: Internet or other similar network activity.

As with collection, the list above reflects categories defined under the CCPA/CPRA; not every example within a given category will necessarily have been disclosed.

Whenever we disclose personal information for a business or commercial purpose, we enter into a contract that describes the purpose and requires the recipient to keep the information confidential and to use it only to perform the contract.

11.5 Share of Personal Information

We may share, and have shared in the last twelve (12) months, the personal information identified in the categories above with the following categories of third parties:

  • Service Providers;
  • payment processors;
  • our Affiliates;
  • our business partners;
  • third-party vendors to whom you or your authorized agents have permitted disclosure in connection with products or services we provide to you.

11.6 Sale of Personal Information

Under the CCPA/CPRA, “sell” and “sale” mean selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating — whether orally, in writing, or by electronic or other means — a Consumer’s personal information by the Business to a third party for valuable consideration. This means that a transfer may qualify as a “sale” even where no money changes hands.

Stardustic LTD does not sell personal information, including under the broader definition of “sale” set out in the CCPA/CPRA. We do not engage in behavioral remarketing, interest-based advertising, or the exchange of personal information with advertising networks. The Service Providers we use (such as Twilio SendGrid, Stripe, and Google Analytics) process personal information strictly on our behalf for the business purposes described in this Privacy Policy, under contractual terms that prohibit them from using that information for any other purpose.

11.7 Sale of Personal Information of Minors under 16

We do not knowingly collect personal information from minors under the age of 16 through the Service, although certain third-party websites to which we link may do so. Those websites have their own terms and privacy policies, and we encourage parents and legal guardians to monitor their children’s internet use and to instruct them not to provide information to websites without permission.

We do not sell the personal information of Consumers whom we actually know to be under 16 unless we have received affirmative authorization (the “right to opt in”) from the Consumer (if aged 13 to 16) or from the parent or guardian (if the Consumer is under 13). Consumers who opt in to the sale of personal information may opt out of future sales at any time. To exercise the right to opt out, you (or your authorized representative) may submit a request by contacting us.

If you believe that a child under 13 (or 16) has provided us with personal information, please contact us with sufficient detail to enable us to delete it.

11.8 Your Rights under the CCPA/CPRA

The CCPA/CPRA grants California residents specific rights over their personal information. If you are a California resident, you have the following rights:

  • The right to notice. You are entitled to be informed of the categories of Personal Data that are collected and the purposes for which they are used.
  • The right to know/access. Under the CCPA/CPRA, you may request disclosure of information about our collection, use, sale, disclosure for business purposes, and sharing of personal information. Once we receive and confirm your request, we will disclose to you:
    • the categories of personal information we collected about you;
    • the categories of sources for that information;
    • our business or commercial purposes for collecting or selling that information;
    • the categories of third parties with whom we shared that information;
    • the specific pieces of personal information we collected about you;
    • if we sold or disclosed your personal information for a business purpose: the categories of personal information sold and the categories disclosed.
  • The right to say no to the sale or sharing of Personal Data (opt out). You may instruct us not to sell your personal information. To submit an opt-out request, see the section below entitled “Do Not Sell My Personal Information” or contact us.
  • The right to correct Personal Data. You may ask us to correct or rectify any inaccurate personal information we have about you. Once we receive and confirm your request, we will use commercially reasonable efforts to correct (and to instruct our Service Providers to correct) that information, unless an exception applies.
  • The right to limit use and disclosure of sensitive Personal Data. You may request that we limit the use or disclosure of certain sensitive personal information, unless an exception applies. To submit such a request, see the section below entitled “Limit the Use or Disclosure of My Sensitive Personal Information” or contact us.
  • The right to delete Personal Data. You may request deletion of your Personal Data in certain circumstances, subject to certain exceptions. Once we receive and confirm your request, we will delete (and instruct our Service Providers to delete) your personal information from our records, unless an exception applies. We may deny your deletion request where retaining the information is necessary for us or our Service Providers to:
    • complete the transaction for which the personal information was collected, provide a good or service you requested, take actions reasonably anticipated in the context of our ongoing business relationship with you, or otherwise perform our contract with you;
    • detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible;
    • debug products to identify and repair errors impairing existing intended functionality;
    • exercise free-speech rights, ensure the right of another consumer to exercise free-speech rights, or exercise another right provided for by law;
    • comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et seq.);
    • engage in public or peer-reviewed scientific, historical, or statistical research in the public interest in accordance with applicable ethics and privacy laws, where deletion would likely render the research impossible or seriously impair it, provided you previously gave informed consent;
    • enable solely internal uses reasonably aligned with consumer expectations based on your relationship with us;
    • comply with a legal obligation;
    • make other internal and lawful uses of the information that are compatible with the context in which you provided it.
  • The right not to be discriminated against. You have the right not to be discriminated against for exercising any of your consumer rights, including by:
    • denying you goods or services;
    • charging different prices or rates for goods or services, including through the use of discounts, other benefits, or penalties;
    • providing a different level or quality of goods or services;
    • suggesting that you will receive a different price or rate, or a different level or quality of goods or services.

11.9 Exercising Your CCPA/CPRA Rights

Please see the sections below titled “Do Not Sell My Personal Information” and “Limit the Use or Disclosure of My Sensitive Personal Information” for information on how to opt out and how to limit the use of sensitive information collected about you.

In addition, if you are a California resident, you may exercise any of your rights under the CCPA/CPRA by contacting us:

Only you, or a person registered with the California Secretary of State and authorized to act on your behalf, may submit a verifiable request concerning your personal information.

Your request must:

  • provide sufficient information for us to reasonably verify that you are the person about whom we collected personal information, or an authorized representative;
  • describe the request with sufficient detail to allow us to understand, evaluate, and respond to it.

We are unable to respond to your request, or to provide you with the requested information, if we cannot:

  • verify your identity or your authority to make the request;
  • confirm that the personal information relates to you.

We will disclose and deliver the required information free of charge within 45 days of receiving your verifiable request. This period may be extended once by an additional 45 days where reasonably necessary and with prior notice to you.

Any disclosures we provide will cover only the 12-month period preceding receipt of your verifiable request.

For data-portability requests, we will choose a format that is readily usable and that allows you to transmit the information from one entity to another without hindrance.

11.10 Do Not Sell My Personal Information

As explained in Section 11.6, Stardustic LTD does not sell personal information, including under the broader definition of “sale” set out in the CCPA/CPRA. We do not share personal information with advertising networks or use interest-based advertising or behavioral remarketing.

If you nonetheless wish to submit a “Do Not Sell” request, you can contact us at hello@buzzing.io and we will confirm that no sale of your personal information has occurred or will occur.

11.11 Limit the Use or Disclosure of My Sensitive Personal Information

If you are a California resident, you have the right to limit the use and disclosure of your sensitive personal information to the uses that are necessary to provide the goods or services reasonably expected by an average Consumer requesting them.

We collect, use, and disclose sensitive personal information only to the extent necessary to provide the Service. For further details on how we use your personal information, please see Section 3 or contact us.

12. “Do Not Track” Policy under the California Online Privacy Protection Act (CalOPPA)

The Service does not respond to Do Not Track signals.

However, some third-party websites do track your browsing activity. If you visit such websites, you can configure your browser to indicate that you do not wish to be tracked. Do Not Track can generally be enabled or disabled through the preferences or settings page of your web browser.

13. California’s “Shine the Light” Law

Under California Civil Code Section 1798 (California’s “Shine the Light” law), California residents with an established business relationship with us may request, once per year, information about the sharing of their Personal Data with third parties for those third parties’ direct-marketing purposes.

If you would like to submit such a request, and you are a California resident, please contact us using the contact details below.

14. California Privacy Rights for Minor Users (Cal. Business and Professions Code Section 22581)

Under California Business and Professions Code Section 22581, California residents under the age of 18 who are registered users of online sites, services, or applications may request and obtain removal of content or information they have publicly posted.

To request removal of such content, California residents may contact us using the contact details below, including the email address associated with their Account.

Please note that such a request does not guarantee complete or comprehensive removal of the content or information posted online, and that the law may not permit or require removal in certain circumstances.

15. Children’s Privacy

The Service is not directed to individuals under the age of 13. We do not knowingly collect personally identifiable information from anyone under 13. If you are a parent or guardian and become aware that your child has provided Personal Data to us, please contact us. If we become aware that we have collected Personal Data from anyone under the age of 13 without verification of parental consent, we will take steps to remove that information from our servers.

Where we need to rely on consent as the legal basis for processing your information, and your jurisdiction requires parental consent, we may require your parent’s consent before we collect and use that information.

16. Links to Other Websites

The Service may contain links to websites that are not operated by Stardustic LTD. If you click on a third-party link, you will be directed to that third party’s site. We strongly encourage you to review the privacy policy of every site you visit.

We have no control over, and accept no responsibility for, the content, privacy policies, or practices of any third-party websites or services.

17. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be communicated by posting the updated Privacy Policy on this page.

We will notify you by email and/or through a prominent notice on the Service before the change takes effect, and we will update the “Last updated” date at the top of this Privacy Policy.

We encourage you to review this Privacy Policy periodically. Changes take effect when posted on this page.

18. Contact Us

If you have any questions about this Privacy Policy, you can reach us: