California Consumer Privacy Act (CCPA/CPRA) Compliance Policy
Last Updated:
Company Information
Company: LaunchDS LLC
Address: 94 County Route 18, Lake Clear, NY 12945, USA
Contact: Launch.DS.LLC@gmail.com
1. Introduction and Scope
LaunchDS LLC is committed to respecting the privacy rights of every individual, including residents of the State of California. This California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) Compliance Policy explains:
- What personal information ("PI") we collect
- How and why we use it
- How we disclose it
- What rights you have under California law
- How you can exercise those rights
This Policy applies to all LaunchDS products, services, websites, mobile interfaces, and communications that link to it. It covers both online and offline collection of personal information about California consumers, customers, business contacts, and site visitors.
2. Our Business
LaunchDS provides an AI-powered software-as-a-service (SaaS) platform that helps dropshippers and e-commerce entrepreneurs identify high-demand, high-profit products, analyze market trends, and automate key parts of their business such as marketing, shipping, and inventory management.
3. Key Definitions
| Term | Definition |
|---|---|
| Consumer | A natural person who is a California resident, acting in any capacity other than as an employee or contractor of LaunchDS. |
| Personal Information (PI) | Any information that identifies, relates to, describes, or could reasonably be linked to a particular consumer or household. |
| Sensitive Personal Information (SPI) | Data revealing government IDs, account log-ins, precise geolocation, racial or ethnic origin, religious beliefs, health, sexual orientation, genetic or biometric data, or contents of private communications. |
| Sell | Transferring or making available personal information for monetary or other valuable consideration. |
| Share | Disclosing personal information to a third party for cross-context behavioral advertising. |
4. Categories of Personal Information Collected
Within the past 12 months, LaunchDS has collected the following categories of personal information from consumers:
| Category | Examples | Purpose |
|---|---|---|
| Identifiers | Name, email, phone, username, IP address | Account registration, authentication, support |
| Commercial Information | Subscription plan, transaction history, usage statistics | Billing, customer service, fraud prevention |
| Internet Activity | Device type, browser, session logs, pages viewed | Platform performance, analytics, security |
| Geolocation | Approximate location via IP | Fraud prevention, localization |
| Payment Information | Tokenized card data, billing address | Transaction processing, accounting |
| Business Information | Company name, store URL, industry | Business account setup, analytics |
| Sensitive PI | Account credentials, authentication tokens | Secure access, account protection |
LaunchDS does not collect or intentionally process: social security numbers, government IDs, biometric templates, or medical information.
5. Sources of Personal Information
We obtain personal information from:
- Consumers directly — through account creation, subscription, form submissions, and support requests
- Automated technologies — such as cookies, pixels, and analytics scripts
- Service providers and partners — for payments, hosting, analytics, and customer support
- Publicly available data — for fraud detection and verification
6. Purposes for Collecting and Using Personal Information
We collect and use personal information only for legitimate business purposes permitted by the CCPA/CPRA, including:
- Service delivery – To create, manage, and maintain customer accounts and provide LaunchDS services
- Payment and billing – To process transactions, manage subscriptions, and provide invoices
- Security and fraud prevention – To detect, investigate, and prevent unauthorized access or misuse
- Customer support – To respond to inquiries, troubleshoot problems, and improve satisfaction
- Analytics and product improvement – To analyze usage trends, performance, and enhance our AI models
- Legal and regulatory compliance – To meet tax, accounting, and reporting obligations
- Communications – To send necessary service notices, security alerts, and marketing updates
7. Retention of Personal Information
| Data Type | Retention Period |
|---|---|
| Account & Billing Information | 7 years (for tax and audit obligations) |
| Logs & Technical Data | 12–18 months |
| Customer Support Records | 24 months after case closure |
| Marketing & Communications | Until consent is withdrawn |
| Backup Archives | Automatically rotated every ≤ 90 days |
After expiration, data is securely deleted or irreversibly anonymized.
8. Disclosure of Personal Information to Third Parties
LaunchDS does not sell or share personal information for cross-context behavioral advertising or monetary gain.
We disclose PI to trusted service providers and contractors strictly for business purposes.
Service providers include:
- Payment Processors (Stripe, PayPal) – Secure transaction processing
- Hosting & Infrastructure (AWS, Cloudflare) – Platform hosting, security, CDN
- Email & Communications (Google Workspace) – Transactional emails, support
- Analytics & Monitoring (Plausible Analytics) – Service improvement, uptime monitoring
All vendors are bound by written agreements limiting their use of PI to the specific services they provide to LaunchDS.
9. Notice at Collection
At or before the point of collection, LaunchDS provides a clear "Notice at Collection" explaining:
- The categories of PI being collected
- The purposes for which the information will be used
- Whether we sell or share the information (we do not)
- How long we retain it (or the criteria used to determine retention)
This notice is presented through our website privacy banner, sign-up forms, and checkout interfaces.
10. Consumer Rights Under the CCPA / CPRA
California residents have the following rights, subject to verification and legal exemptions:
Right to Know / Access
Request disclosure of the categories and specific pieces of PI we collected, the sources, the business purposes, and the categories of third parties to whom we disclosed it.
Right to Delete
Request deletion of personal information we collected from you, unless retention is necessary for compliance or security.
Right to Correct
Request correction of inaccurate personal information.
Right to Opt-Out of Sale or Sharing
Direct us not to sell or share your personal information. (LaunchDS does not sell PI and therefore no opt-out is required at this time.)
Right to Limit Use of Sensitive Personal Information
Direct us to use sensitive PI only as necessary to provide requested services.
Right to Non-Discrimination
We will never deny services, charge different prices, or degrade quality because you exercise your privacy rights.
11. How to Exercise Your Rights
You can exercise your CCPA rights by:
- •Emailing Launch.DS.LLC@gmail.com
- •Using your account settings to update or delete your information
Verification
To protect consumers, we verify identity using data already on file (for example, confirming your account login or requesting certain identifying details). Authorized agents may submit requests on behalf of a consumer if they provide written authorization or proof of power of attorney.
Response Timeframe
We respond within 45 days of receiving a verifiable request and may extend by 45 days once with notice. We maintain records of all requests and outcomes for 24 months as required by the CCPA.
12. Opt-Out and Global Privacy Control (GPC)
LaunchDS currently does not sell or share PI. If in the future our practices change, we will:
- Add a visible footer link titled "Do Not Sell or Share My Personal Information"
- Recognize and honor Global Privacy Control (GPC) browser signals
- Provide a "Limit the Use of My Sensitive Personal Information" link for SPI processing choices
13. Security Measures
LaunchDS maintains reasonable administrative, technical, and physical safeguards designed to protect PI against unauthorized access, destruction, loss, misuse, or alteration. Our measures include:
Encryption
AES-256 for data at rest, TLS 1.3 for data in transit
Access Controls
Multi-factor authentication, role-based permissions
Monitoring
Continuous vulnerability scanning, annual penetration tests
Backups
Encrypted backups with off-site redundancy
14. Children's Data
LaunchDS does not knowingly collect, sell, or share personal information of children under 16 years old. If we become aware that a child under 16 has provided data, we will delete it immediately and take appropriate steps to remove it from our systems.
15. Non-Discrimination Statement
LaunchDS never discriminates against consumers who exercise their privacy rights.
We will not deny goods or services, charge different prices, or provide a different level or quality of service as a result of a privacy request.
16. Contact Information
Privacy Office / Data Protection Officer
LaunchDS LLC
Email: Launch.DS.LLC@gmail.com
Summary of Compliance
LaunchDS maintains full compliance with the CCPA and CPRA through:
- Transparent data-collection and "Notice at Collection" disclosures
- Verified consumer-rights request mechanisms
- No sale or sharing of personal information
- Legally binding service-provider agreements
- Robust data-security and breach-response programs
- Annual reviews and employee training
- Equal service quality for all consumers regardless of privacy choices