Privacy Policy

Privacy Policy

Effective Date: June 18, 2025

This Privacy Policy describes how Paniolo Tinting (“we,” “us,” or “our”) collects, uses, and shares your personal information when you interact with us, particularly when you provide us with your information through lead generation efforts on platforms like Meta (Facebook, Instagram) and Google, or through our website, text messaging services, and other marketing activities.

We’re committed to protecting your privacy and handling your data transparently and securely.

1. Information We Collect

We collect various types of information, including personal information, to provide our services and manage our business operations. The specific information we collect depends on how you interact with us.

Information you provide directly to us:

  • Contact Information: Your name, email address, phone number, and physical address.
  • Demographic Information: Your age range, gender, and interests (as you provide them).
  • Inquiry Details: Any information you provide when you fill out forms, participate in surveys, or communicate with us, such as your questions, preferences, or requests for information.
  • SMS Opt-in Data: When you opt-in to receive text messages from us, we collect your phone number and records of your consent, including the date, time, and method of opt-in.

Information we collect automatically:

  • Usage Data: Information about how you use our website or interact with our ads, such as pages viewed, links clicked, and the time and date of your visit.
  • Device Information: Information about the device you use to access our services, including your IP address, browser type, operating system, and unique device identifiers.
  • Location Information: General location information derived from your IP address.
  • Cookies and Tracking Technologies: We use cookies and similar tracking technologies (like pixels and web beacons) to collect information about your Browse behavior and interactions with our website and ads. This helps us understand your preferences, personalize your experience, and deliver relevant advertising.

Information we receive from third-party sources (e.g., Meta, Google): When you interact with our lead generation ads on platforms like Meta (Facebook, Instagram) and Google, these platforms may provide us with information you have shared with them, in accordance with your privacy settings on those platforms and their respective privacy policies. This may include:

  • Your name
  • Email address
  • Phone number
  • Other information you have made public or explicitly consented to share with advertisers.

2. How We Use Your Information

We use the information we collect for various purposes, including:

  • Lead Generation and Marketing: To generate new leads, respond to your inquiries, send you marketing communications (like newsletters, promotions, and updates) that we believe may interest you, and personalize our advertising efforts on platforms like Meta and Google. This includes sending text messages you have explicitly consented to receive.
  • Service Delivery: To provide you with the products, services, and information you request.
  • Communication: To communicate with you about your inquiries, orders, or other matters related to our business. This includes transactional and informational text messages relevant to your interactions with us.
  • Improvement of Services: To understand how our website and ads are used, analyze trends, and improve our products, services, and marketing strategies, including our text messaging services.
  • Compliance and Legal Obligations: To comply with applicable laws, regulations, and legal processes (e.g., responding to subpoenas or court orders), including A2P 10DLC messaging regulations.
  • Security and Fraud Prevention: To protect our business and our users from fraud, security breaches, and other harmful activities.

3. How We Share Your Information

We may share your personal information with third parties in the following circumstances:

  • Service Providers: We may share your information with third-party service providers who perform services on our behalf, such as marketing platforms (e.g., Meta, Google), email service providers, CRM systems, data analytics providers, and website hosting services. This also includes aggregators and providers of text messaging services (e.g., Twilio, Sakari, OpenPhone, Grasshopper, etc.) who facilitate our A2P text messaging campaigns. These service providers are contractually obligated to protect your information and use it only for the purposes for which we disclose it to them.
     
    • Important Note Regarding Text Messaging Opt-in Data: No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Text messaging originator opt-in data and consent will not be shared with any third parties, except for aggregators and providers of the Text Message services.
       
  • Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency request).
  • Business Transfers: In the event of a merger, acquisition, sale of assets, or other business transaction, your information (excluding text messaging originator opt-in data and consent) may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any such change in ownership or control of your personal information.
  • With Your Consent: We may share your information with other third parties when we have your explicit consent to do so.
  • Aggregated or Anonymized Data: We may share aggregated or anonymized data that doesn’t directly identify you with third parties for various purposes, such as market research, analytics, and advertising.

4. Your Privacy Rights and Choices

Depending on your location and applicable privacy laws (such as GDPR, CCPA, PIPEDA), you may have certain rights regarding your personal information, including:

  • Right to Access: You have the right to request access to the personal information we hold about you.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.
  • Right to Erasure (“Right to be Forgotten”): You have the right to request that we delete your personal information, subject to certain legal exceptions.
  • Right to Object: You have the right to object to the processing of your personal information for certain purposes, such as direct marketing.
     
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal information in certain circumstances.
  • Right to Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format.
  • Right to Withdraw Consent: If we are relying on your consent to process your personal information, you have the right to withdraw that consent at any time.
  • Right to Opt-Out of Sale/Sharing (CCPA/CPRA specific): If the CCPA/CPRA applies to you, you have the right to opt-out of the “sale” or “sharing” of your personal information. We provide a “Do Not Sell or Share My Personal Information” link on our website, where applicable.

To exercise any of these rights, please contact us using the contact information provided below. We will respond to your request in accordance with applicable law.

Opt-Out of Marketing Communications: You can opt-out of receiving marketing emails from us by following the unsubscribe instructions included in each email. Please note that even if you opt-out of marketing communications, we may still send you non-promotional messages related to our business relationship with you (e.g., service updates, appointment reminders if you’ve opted into those specifically).

Text Message Opt-Out: If you wish to stop receiving text messages from us, you may opt-out at any time by replying STOP, END, QUIT, CANCEL, or UNSUBSCRIBE to any text message you receive from us. You will receive a final confirmation message stating that you have been unsubscribed. After this, you will no longer receive text messages from that specific messaging program.

Cookie Preferences: Most web browsers allow you to control cookies through their settings. You can typically set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of our website may become inaccessible or not function properly.

 

 

5. Data Security

We implement reasonable technical and organizational measures to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction. However, no method of transmission over the internet or electronic storage is 100% secure. Therefore, we can’t guarantee absolute security of your information.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

7. Children’s Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal information from children without parental consent. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us, and we will take steps to delete that information.

8. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website with a new “Effective Date.” We encourage you to review this Privacy Policy periodically.

9. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Paniolo Tinting 2326 Foothill Rd. Mckinney, Texas, 75052 paniolotinting@gmail.com 8089902389

CRITICAL A2P Compliance Considerations (Beyond the Privacy Policy):

While the privacy policy is vital, A2P 10DLC compliance requires much more. You MUST address these points rigorously with your legal counsel and your A2P messaging provider (e.g., Twilio, Sakari, OpenPhone, Grasshopper, etc.):

 

  1. Explicit Consent (Opt-in):

    • How you collect consent is paramount. For promotional messaging, “Express Written Consent” is generally required. This means a clear, affirmative action by the user (e.g., ticking a separate, unchecked box that explicitly states they agree to receive text messages from your business, along with disclosures about message frequency and “message and data rates may apply”).
       
    • Opt-in language must be clear and conspicuous at the point of collection (e.g., on your web form, paper form, or verbally if recorded). It should include:
       
      • Your business name (Paniolo Tinting).
      • The purpose/type of messages they will receive (e.g., “promotions and updates,” “appointment reminders”).
      • Expected message frequency (e.g., “Message frequency varies” or “You will receive up to 4 messages per month”).
      • A “Message and data rates may apply” disclosure.
      • Clear opt-out instructions (e.g., “Reply STOP to unsubscribe”).
      • A link to your Privacy Policy and Terms of Service.
    • Double Opt-in is highly recommended for promotional messaging, where after an initial opt-in, you send a confirmation text asking the user to reply with a keyword (e.g., “YES”) to confirm their subscription.
       
    • Maintain Records of Consent: You must be able to prove consent for every message sent. This includes timestamp, IP address, the method of opt-in, etc.

  2. Clear Opt-Out Mechanism:

    • As added in the policy, recognize standard keywords like STOP, END, QUIT, CANCEL, UNSUBSCRIBE, and promptly process opt-out requests.
    • You should send a final confirmation message after an opt-out.
    • Opt-out instructions should be included in your initial welcome message and periodically in subsequent messages.

  3. “HELP” Keyword Support:

    • Your messaging system must be configured to respond to the keyword “HELP” with information about your business, what the messaging program is, and how to get customer support (e.g., your email and phone number).
       

  4. Content Restrictions:

    • Avoid prohibited content categories such as SHAFT (Sex, Hate, Alcohol, Firearms, Tobacco) and certain financial products (e.g., high-risk loans). Even if your business isn’t directly in these areas, be mindful of any potentially related content.

  5. Brand and Campaign Registration:

    • Crucial Step: You MUST register your business (brand) and your specific messaging campaigns (use cases) with The Campaign Registry (TCR) through your chosen A2P messaging provider. Unregistered traffic will be blocked or heavily fined.
    • Provide accurate business information, sample messages, and detailed descriptions of your messaging purpose.

  6. Terms of Service/Service Agreement (Separate Document):

    • You should have a separate, publicly accessible Terms of Service or Service Agreement specific to your text messaging program. This document should reiterate many of the points in the Privacy Policy regarding SMS, but in a more formal agreement format. It should include:
      • Program Name and Description.
      • Opt-Out Instructions (in bold).
      • Rejoining instructions.
      • Help instructions.
      • Carrier Liability Disclaimer.
      • Message and Data Rates disclaimer.
      • Link to your Privacy Policy.
      • Frequency of messages.
Facebook Instagram