Privacy Policy
Learn how we collect, use, and protect your information
Last Updated: May 1, 2025
Table of Contents
- 1. Introduction
- 2. Information We Collect
- 3. How We Use Your Information
- 4. How We Share Your Information
- 5. Cookies and Similar Technologies
- 6. Data Retention
- 7. Data Security
- 8. International Data Transfers
- 9. Your Rights and Choices
- 10. Children's Privacy
- 11. California Privacy Rights
- 12. Changes to This Privacy Policy
- 13. Contact Us
1. Introduction
Welcome to Color Red ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience on our website. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website colorred.com, including any other media form, media channel, mobile website, or mobile application related or connected thereto (collectively, the "Site").
Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Site. By accessing or using our Site, you consent to the collection, use, and disclosure of information in accordance with this Privacy Policy.
2. Information We Collect
Information You Provide to Us
We may collect information that you provide when you:
- Create an account or register on our Site
- Fill out forms on our Site, such as when you submit feedback or contact us
- Correspond with us by email or through our contact forms
- Upload images for color extraction or other tool usage
- Save or share color palettes, gradients, or other tool outputs
- Subscribe to our newsletter or other communications
- Participate in surveys, contests, or promotions
- Post comments or content on our Site
The types of information we may collect include:
- Personal Identifiers: Name, email address, and username
- Account Information: Password (stored in encrypted form) and account preferences
- User Content: Images you upload, color palettes you create, and other content you generate using our tools
- Communications: Information you provide in messages when contacting us
Information We Collect Automatically
When you visit our Site, we may automatically collect certain information about your device and usage of our Site, including:
- Device Information: IP address, browser type and version, operating system, device type, screen resolution, and other technical information about the device you use to access our Site
- Usage Data: Pages visited, time spent on those pages, the referring website, links clicked, features used, and other information about how you interact with our Site
- Performance Data: Site errors, load times, and other diagnostic information that helps us improve our Site
- Location Information: General location information inferred from your IP address
Information from Third Parties
We may receive information about you from third parties, including:
- Analytics providers such as Google Analytics
- Social media platforms if you interact with our Site through them
- Partners with whom we offer co-branded services or engage in joint marketing activities
3. How We Use Your Information
We may use the information we collect for various purposes, including to:
- Provide Our Services: Set up and maintain your account, provide customer service, process transactions, and send related information including confirmations, technical notices, updates, security alerts, and support messages
- Improve Our Services: Maintain and improve our Site and services, develop new features, and research and analyze user behavior to enhance user experience
- Personalize Your Experience: Remember your preferences and settings, and customize content based on your usage patterns
- Communicate With You: Respond to your comments, questions, and requests, and provide customer service
- Marketing and Promotion: Send promotional communications about new features, offers, and events (with your consent where required by law)
- Security and Protection: Detect, investigate, and prevent fraudulent transactions, unauthorized access to our services, and other illegal activities
- Technical Maintenance: Carry out technical operations such as troubleshooting, debugging, and ensuring the functionality and security of our Site
- Analytics and Research: Generate and analyze statistics about how users interact with our Site to improve our services
- Legal Compliance: Comply with legal obligations and enforce our terms and policies
Legal Bases for Processing (for EEA Users)
If you are in the European Economic Area (EEA), we process your personal information based on one or more of the following legal bases:
- Performance of a Contract: To provide you with the services you have requested
- Legitimate Interests: For our legitimate business interests, such as improving our services and providing a better user experience
- Consent: When you have given us specific consent to process your data for a specific purpose
- Legal Obligation: To comply with legal requirements
6. Data Retention
We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies.
If you request deletion of your account, we will delete your personal information within 30 days, except for information that we are required to retain for legal or legitimate business purposes.
7. Data Security
We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, please also remember that we cannot guarantee that the internet itself is 100% secure. Although we will do our best to protect your information, transmission of personal information to and from our Site is at your own risk.
Our security measures include:
- Encryption of sensitive data in transit and at rest
- Regular security assessments and vulnerability testing
- Access controls and authentication requirements for our systems
- Regular backups of data
- Employee training on data security practices
We promptly address any security incidents and will notify you and any applicable regulator of a breach where we are legally required to do so.
8. International Data Transfers
Your information may be transferred to, and maintained on, computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction.
If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including personal information, to the United States and process it there.
When we transfer personal information from the European Economic Area (EEA), United Kingdom, or Switzerland to the United States or other countries which have not been deemed to provide an adequate level of protection under their domestic laws, we rely on appropriate safeguards such as:
- Standard Contractual Clauses approved by the European Commission
- Binding Corporate Rules for transfers among our corporate affiliates
- Consent of the individual (in limited circumstances)
9. Your Rights and Choices
Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information, including:
- Right to Access: You have the right to request copies of your personal information that we hold.
- Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
- Right to Erasure: You have the right to request that we erase your personal information, under certain conditions.
- Right to Restrict Processing: You have the right to request that we restrict the processing of your personal information, under certain conditions.
- Right to Object to Processing: You have the right to object to our processing of your personal information, under certain conditions.
- Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
How to Exercise Your Rights
To exercise any of these rights, please contact us using the information provided in the "Contact Us" section below. We may need to verify your identity before responding to your request.
Response Timing
We will respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Marketing Communications
You can opt out of receiving marketing communications from us by clicking on the "unsubscribe" link in the emails we send, or by contacting us using the information provided below.
10. Children's Privacy
Our Site is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we can take necessary actions.
If we become aware that we have collected personal information from children without verification of parental consent, we take steps to remove that information from our servers.
11. California Privacy Rights
If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).
Your Rights Under CCPA/CPRA
- Right to Know: You have the right to request information about the personal information we have collected about you, including the categories of information, sources, purposes of collection, and categories of third parties with whom we share the information.
- Right to Delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.
- Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information.
- Right to Non-Discrimination: You have the right not to be discriminated against for exercising your CCPA rights.
- Right to Limit Use of Sensitive Personal Information: You have the right to limit the use and disclosure of sensitive personal information.
- Right to Correct: You have the right to request correction of inaccurate personal information.
To exercise these rights, please contact us using the information in the "Contact Us" section.
12. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this Privacy Policy.
For significant changes, we will make reasonable efforts to provide notification through our Site or by email if we have your contact information. You are advised to review this Privacy Policy periodically for any changes.
Your continued use of our Site after any changes to this Privacy Policy constitutes your acceptance of the changes.
13. Contact Us
If you have any questions about this Privacy Policy, please contact us:
- By email: privacy@colorred.com
- By visiting our contact page
- By mail: Color Red, 123 Design Avenue, Creative District, San Francisco, CA 94103, United States
For data protection inquiries specifically, you can contact our Data Protection Officer at dpo@colorred.com.