Privacy Policy for Point Recon (Palaview, LLC)
1. Introduction
Welcome to Point Recon Privacy Policy. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, and share your personal information when you visit our website, use our services, or interact with us in any other way. It also outlines your rights under relevant data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
​
Our goal is to be transparent about the data we collect, why we collect it, and how we use it. Whether you’re a website visitor, a client, or someone whose data we have accessed from publicly available sources, we want you to feel confident that your information is safe with us.
This Privacy Policy applies to all data collected through our website, our services, and any related interactions. By using our services, you agree to the practices described in this policy.
If you have any questions or concerns about how your data is handled, please feel free to contact us at Go@PointRecon.com.
​
2. Data Collection
We collect and process different types of information depending on how you interact with our services. This section explains the categories of data we collect, the methods we use to collect it, and the purposes for which it is collected.
​
2.1 Publicly Available Government Database Data
Types of Data Collected: We collect information from publicly available government databases, such as court filings, which may include names, addresses, and other details related to legal proceedings.
​
Data Deletion and Non-Storage of Personal Data: It is important to note that after the initial download of data from government databases, we immediately delete all personal data, including names and street addresses. We do not collect, possess, or store any personal data in our systems. Our sole interest lies in collecting and analyzing data in the aggregate to compile business information and statistics.
​
Purpose: The data we retain is reorganized and aggregated to provide insights into legal activities, such as the number of cases filed by law firms, market share, and regional trends. We focus exclusively on this aggregated data, ensuring that our operations are entirely centered on business information and statistical analysis.
2.2 Reorganized and Sold Data
Types of Data and Purpose: We reorganize and aggregate publicly available data into comprehensive business intelligence reports that provide our clients with insights into the legal market. These reports include information such as the number of cases filed by specific law firms, their market share, and regional performance trends. The information is presented in an aggregated format that focuses on law firms or businesses, not individuals.
​
Linking Lawyer Names to Law Firms: While our reports may include the names of lawyers, these names are always linked to the law firms with which they are associated. This approach ensures that the data reflects business entities, which are the true focus of our analysis. In some instances, the law firm may have the same name as the lawyer, but the context remains strictly business-oriented.
​
Legitimate Interest and Legal Standing: The processing and reorganization of this data into business intelligence reports are conducted under the lawful basis of legitimate interest. Our clients, who are themselves law firms, rely on these reports to understand the competitive landscape, making this processing necessary for our business operations and theirs. This legitimate interest is balanced against the minimal privacy impact, as the data we process is related to professional activities, is publicly available, and relates to law firms and businesses.
​
Aggregate Focus and Legal Compliance: It is important to emphasize that our operations are solely concerned with the aggregate data of law firms and businesses. We do not process or store personal data for individuals outside this business context. By maintaining this clear and business-oriented approach, we aim to ensure that our practices are legally sound.
2.3 Website Visitor Data (Wix Analytics)
Types of Data Collected: Our website is hosted on the Wix platform, which provides us with access to certain analytics data. This data includes information such as the number of visitors to our site, their geographic location, and how they interact with our website.
​
Purpose: We use this data to better understand our website traffic and improve the user experience. The information we gather helps us identify trends, optimize our content, and ensure that our site meets the needs of our visitors.
​
Cookies and Tracking: Wix may use cookies and similar tracking technologies to collect this data. These cookies are primarily used for analytics purposes and do not collect personal information. Visitors can manage their cookie preferences through their browser settings or the Wix cookie consent banner if applicable.
​
No Third-Party Analytics: We do not use Google Analytics or any other third-party analytics services beyond what is provided by Wix.
​
2.4 Credit Card Data (LawPay)
Types of Data Collected: We process payments using LawPay, a third-party payment processing service that specializes in handling transactions for legal professionals. LawPay collects and stores your credit card information, including card numbers, expiration dates, and security codes, to facilitate secure payments.
​
Security and Compliance: LawPay is responsible for the security and storage of your credit card information and is fully compliant with the Payment Card Industry Data Security Standard (PCI DSS). This ensures that your payment data is protected with industry-leading security measures.
No Direct Storage: We do not store or have access to your credit card information on our servers. All payment processing is handled directly through LawPay, and any questions or concerns regarding your payment data should be directed to LawPay’s customer support.
3. Data Use and Sharing
​
We believe in being transparent about how we use and share the data we collect. This section explains the purposes for which your data is used and the circumstances under which it may be shared with third parties.
​
3.1 Internal Use
Business Intelligence Reports: The aggregated data we collect from publicly available sources is reorganized and used to create business intelligence reports for our clients. These reports provide insights into market trends, case filings, and the competitive landscape of law firms within specific regions.
​
Service Improvement: We use data collected through our website and services to improve user experience, optimize our content, and enhance the overall quality of our services.
Analytics: We analyze visitor data provided by Wix to understand website traffic patterns, identify user preferences, and make informed decisions about website design and functionality.
​
3.2 Third-Party Sharing
Payment Processing: For payment transactions, we share necessary data with LawPay, our third-party payment processor. LawPay is responsible for securely processing and storing your credit card information in compliance with the Payment Card Industry Data Security Standard (PCI DSS).
Service Providers: We may share aggregated and anonymized data with service providers who assist us in operating our website, conducting our business, or providing services to our clients. These providers are contractually obligated to protect your data and only use it as instructed by us.
Legal Requirements: We may disclose your data if required to do so by law or in response to valid requests by public authorities, such as a court or government agency.
​
3.3 Data Protection and Security
Data Security: We take the security of your data seriously and implement industry-standard measures to protect it from unauthorized access, alteration, disclosure, or destruction. This includes the use of encryption, secure access controls, and regular security audits.
No Sale of Personal Data: We do not sell personal data to third parties. Any data shared with third parties is done so solely for the purposes outlined in this policy and in compliance with applicable laws.
4. Data Security
We are committed to protecting the security of your data. We implement a variety of security measures to ensure that your personal information is protected from unauthorized access, alteration, disclosure, or destruction. This section outlines the steps we take to safeguard your data and our ongoing commitment to maintaining a secure environment.
​
4.1 Security Measures
Encryption: We use encryption protocols to protect your data during transmission and storage. This ensures that any data you provide through our website or services is securely encrypted and cannot be accessed by unauthorized parties.
​
Access Controls: We implement strict access controls to limit access to your data to only those employees, contractors, and service providers who need it to perform their duties. Access is granted based on the principle of least privilege, ensuring that only necessary data is accessible.
Regular Security Audits: We conduct regular security audits and assessments to identify potential vulnerabilities and ensure that our security measures are up-to-date and effective. These audits help us maintain the integrity of our systems and protect your data from evolving threats.
Data Anonymization: Where applicable, we anonymize or pseudonymize data to reduce the risk of it being linked back to any individual, further enhancing your privacy and data security.
​
4.2 Third-Party Security
Service Providers: We work with trusted third-party service providers, such as Wix and LawPay, who assist us in providing our services. These providers are carefully selected based on their commitment to data security and their compliance with relevant security standards, including PCI DSS for payment processing.
​
Contractual Obligations: All third-party service providers who process data on our behalf are required to implement appropriate security measures and are contractually obligated to use your data only in accordance with our instructions.
​
4.3 Data Breach Response
Breach Notification: In the unlikely event of a data breach, we have procedures in place to respond promptly. If a breach occurs that is likely to result in a high risk to your rights and freedoms, we will notify you and any applicable regulatory authorities as required by law.
Mitigation Measures: We will take immediate steps to mitigate any damage caused by a data breach, including securing affected systems, assessing the scope of the breach, and implementing measures to prevent future incidents.
​
4.4 Your Role in Security
Personal Responsibility: While we take extensive measures to protect your data, it’s important that you also take steps to protect yourself. This includes using strong, unique passwords for your accounts, being cautious about sharing personal information online, and regularly updating your software and devices to protect against security vulnerabilities.
​
Reporting Security Issues: If you become aware of any security vulnerabilities or issues related to our services, we encourage you to report them to us immediately at [Contact Information]. We take all reports seriously and will investigate and address any potential security concerns.
​
5. General User Rights
We are committed to protecting the privacy and rights of all our users, regardless of where they are located. This section provides an overview of the general rights you have concerning your data and how you can exercise them. These rights apply broadly and are not limited to the specific protections offered under GDPR or CCPA.
​
5.1 Right to Access
You have the right to request access to the data we hold about you. This includes the right to know what data we have collected, how it is being used, and who it may have been shared with. While we do not collect personal data, you can still request access to any other data related to your interactions with our services.
​
5.2 Right to Correction
If you believe any data we hold about you is inaccurate or incomplete, you have the right to request corrections or updates. We will promptly address and rectify any inaccuracies in our records.
​
5.3 Right to Deletion
You have the right to request the deletion of your data from our systems. This right is particularly relevant if you decide to terminate your relationship with us, in which case we will delete your data within the specified retention period. As we do not store personal data, this primarily applies to any aggregated business data or other non-personal information associated with your account.
​
5.4 Right to Restrict Processing
In certain situations, you can request that we restrict the processing of your data. This might apply if you contest the accuracy of the data or if the processing is no longer necessary but you wish to keep the data for legal reasons.
​
5.5 Right to Object
You have the right to object to the processing of your data in cases where we are relying on a lawful basis such as legitimate interest. If you choose to object, we will evaluate your request and cease processing your data unless we have a compelling legitimate ground to continue.
​
5.6 How to Exercise Your Rights
If you wish to exercise any of these general rights, please contact us at [Contact Information]. We will respond to your request in accordance with applicable laws and our internal policies, ensuring that your rights are respected and upheld.
6. GDPR Data Protection Rights
If you are located in the European Union, the General Data Protection Regulation (GDPR) grants you certain rights regarding your personal data. We are committed to ensuring that your rights are fully respected and upheld.
​
6.1 Right to Access
You have the right to request access to the personal data we hold about you. This includes the right to obtain information about how your data is being processed, the purposes of processing, and the recipients of your data.
​
6.2 Right to Rectification
If you believe that any personal data we hold about you is inaccurate or incomplete, you have the right to request corrections or updates to your data.
​
6.3 Right to Erasure (Right to be Forgotten)
You have the right to request the deletion of your personal data under certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected or if you withdraw your consent.
​
6.4 Right to Restrict Processing
You can request that we restrict the processing of your personal data if you contest the accuracy of the data, the processing is unlawful, or if you need the data to be preserved for legal claims.
​
6.5 Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to have it transferred to another data controller where technically feasible.
​
6.6 Right to Object
You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes. We will cease processing your data unless we have compelling legitimate grounds to continue.
​
6.7 Right to Withdraw Consent
If you have provided consent for the processing of your data, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
​
6.8 How to Exercise Your Rights
To exercise any of these rights, please contact us at [Contact Information]. We will respond to your request in accordance with applicable laws.
​
7. CCPA Privacy Rights
If you are a resident of California, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information. This section outlines your rights under the CCPA and how you can exercise them.
​
7.1 Right to Know
You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of that information, the purposes for which it was collected, and the third parties with whom we share it.
​
7.2 Right to Delete
You have the right to request that we delete any personal information we have collected from you, subject to certain exceptions, such as when the information is needed to complete a transaction or comply with legal obligations.
​
7.3 Right to Opt-Out
You have the right to opt-out of the sale of your personal information. While we do not sell personal data, if our practices change, you will be provided with a clear option to exercise this right.
​
7.4 Right to Non-Discrimination
You have the right not to be discriminated against for exercising your CCPA rights. We will not deny you goods or services, charge you different prices, or provide a different level of service if you exercise these rights.
​
7.5 How to Exercise Your Rights
To exercise any of your CCPA rights, please contact us at [Contact Information]. We will respond to your request in accordance with applicable laws.
​
8. Children’s Privacy (COPPA Privacy Rights)
We are committed to protecting the privacy of children and complying with the Children’s Online Privacy Protection Act (COPPA). Our services are not intended for children under the age of 13, and we do not knowingly collect, store, or process any personal data from children.
​
8.1 No Services for Children
Our website and services are designed for use by businesses and legal professionals. They are not directed at children under the age of 13, and we do not offer any products or services that would be of interest to children.
​
8.2 No Collection of Children’s Personal Data
We do not knowingly collect personal data from children under the age of 13. If we become aware that we have inadvertently collected personal data from a child, we will take immediate steps to delete that information from our systems.
​
8.3 Parental Rights
If you are a parent or guardian and believe that your child under the age of 13 has provided us with personal data, please contact us at [Contact Information]. We will work with you to address the situation and ensure that the data is deleted promptly.
​
8.4 COPPA Compliance
We comply with all applicable provisions of COPPA, including requirements for data collection, parental consent, and data deletion. Our commitment to children's privacy is a core part of our data protection practices.
​
9. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and provide targeted content or advertisements. This section explains how we use cookies and how you can manage your preferences.
​
9.1 Types of Cookies
Essential Cookies: These cookies are necessary for the website to function properly and cannot be disabled.
Analytics Cookies: These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously.
Advertising Cookies: These cookies are used to deliver relevant advertisements to you and track the performance of our marketing campaigns.
​
9.2 Managing Cookies
You can manage your cookie preferences through your browser settings or the cookie consent banner on our website. Most browsers allow you to block or delete cookies, but doing so may affect your ability to use certain features of our site.
​
10. Data Retention Policy
We are committed to retaining data only for as long as it is necessary to fulfill the purposes for which it was collected, and in accordance with applicable laws. This section outlines our data retention practices to ensure that our clients understand how long their data is kept and what happens to it once they are no longer with us.
​
10.1 Retention Period
We retain the data we collect and reorganize as long as you remain our client. This data is necessary to provide ongoing services, including business intelligence reports and other analytical insights tailored to your needs.
​
In the event that you decide to terminate your relationship with us, we will securely delete all your data within 90 days of the termination date. This retention period allows us to fulfill any final obligations to you and ensures a smooth transition.
​
10.2 No Retention of Personal Data
It is important to note that we do not collect, possess, or store personal data, such as names or addresses, in our systems. Our focus is solely on aggregate data related to business entities, such as law firms, and not individuals.
​
10.3 Data Deletion Process
Upon termination of our services, all relevant data will be securely deleted from our systems within the specified 90-day period. This deletion is carried out using industry-standard methods to ensure that the data cannot be recovered or misused.
​
10.4 Client Requests
If at any time you would like us to delete your data before the end of the retention period, please contact us at [Contact Information]. We will honor such requests in accordance with our legal obligations and internal policies.
​
11. Automated Decision-Making and Profiling
We do not engage in automated decision-making or profiling that produces legal effects or significantly affects individuals. Our services are designed to aggregate and analyze business data related to law firms and other entities, and we do not use personal data for any automated processing.
​
12. Third-Party Links
Our Privacy Policy contains links to third-party websites, specifically those of our service providers, Wix and LawPay. These links are provided for your convenience and to help you understand the services we use. Please note that we are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of Wix and LawPay to understand how they handle your data.
13. Do Not Track Signals
Our website is hosted on the Wix platform. At this time, we do not have the ability to respond to Do Not Track (DNT) signals that may be sent by your browser. Wix may handle DNT signals in accordance with its own privacy practices, which are outlined in the Wix Privacy Policy. We recommend reviewing Wix's policy for more information on how they handle DNT signals.
​
14. Complaints and Dispute Resolution
We are committed to addressing any concerns you may have regarding our data practices. If you believe your data protection rights have been violated, or if you have any concerns about how we handle your data, please contact us at Go@PointRecon.com.
​
14.1 Internal Resolution
We encourage you to reach out to us directly with any complaints or disputes. We will work with you to resolve the issue in a timely and satisfactory manner.
​
14.2 Regulatory Authorities
If you are located in the European Union and believe we have not addressed your concerns adequately, you have the right to lodge a complaint with a supervisory authority in your country of residence.
​
15. Data Protection Officer (DPO) Contact Information
As part of our commitment to data protection, we have appointed a Data Protection Officer (DPO) to oversee our compliance with applicable data protection laws. If you have any questions or concerns about your data privacy or how we handle your information, you may contact our DPO at:
Email: Go@PointRecon.com
Phone: [DPO Phone Number]
Mailing Address: [DPO Mailing Address]
​
16. Data Anonymization and Pseudonymization
We are committed to protecting the privacy of individuals by minimizing the use of personal data in our operations. To this end, we take specific measures to ensure that personal data is either deleted promptly or handled in a way that minimizes the risk of re-identification.
​
16.1 Deletion of Personal Data
As part of our commitment to data privacy, we delete all personal data, such as names and addresses, immediately after it is collected from publicly available sources. This ensures that we do not store or process personal data within our systems, focusing instead on aggregated business data that cannot identify individuals.
​
16.2 Pseudonymization Practices
In cases where linking a lawyer’s name to a law firm is necessary for our business intelligence reports, we may engage in pseudonymization. This involves replacing identifying details with a pseudonym or linking the lawyer's name directly to their law firm, which allows us to provide valuable insights while minimizing the privacy risks associated with handling personal data.
​
17. Legal Bases for Processing (Beyond Legitimate Interest)
While legitimate interest is our primary legal basis for processing data, we recognize that there may be other legal bases for processing data, depending on the context.
​
17.1 Consent
In certain situations, we may request your explicit consent to process your data. This typically applies to cases where no other legal basis is available or where consent is required by law.
​
17.2 Contractual Necessity
We may process your data when it is necessary for the performance of a contract to which you are a party, such as providing services you have requested.
​
17.3 Legal Obligations
We may also process your data to comply with legal obligations, such as responding to lawful requests from public authorities or complying with applicable laws and regulations.
​
18. Language Specificity for GDPR and CCPA
Our Privacy Policy has been drafted with careful consideration of both the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Depending on your location and the nature of your interactions with our services, different parts of this policy may apply to you.
​
18.1 GDPR Applicability
If you are located in the European Union, the sections of this policy specific to GDPR will apply to your data processing activities. This includes your rights under GDPR, such as the right to access, correct, delete, or restrict your personal data.
​
18.2 CCPA Applicability
If you are a resident of California, the sections of this policy specific to CCPA will apply to your personal information. This includes your rights under CCPA, such as the right to know, delete, or opt-out of the sale of your personal information.
​
18.3 Other Jurisdictions
If you are located outside of the European Union and California, the general provisions of this Privacy Policy will apply to you, in addition to any specific rights granted by the laws of your jurisdiction.
​
19. International Data Transfers
As part of our operations, your personal data may be transferred to, and processed in, countries other than your country of residence. These countries may have data protection laws that are different from those in your country.
​
19.1 Transfer Mechanisms
When we transfer personal data internationally, we take appropriate steps to ensure that your data is protected in accordance with this Privacy Policy. This includes using Standard Contractual Clauses approved by the European Commission, where applicable.
​
19.2 Data Protection Safeguards
We have implemented data protection safeguards to ensure that your personal information remains secure during international transfers. These measures include encryption, access controls, and contractual obligations for our service providers to protect your data.
20. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our data practices or applicable laws. We encourage you to review this policy periodically to stay informed about how we are protecting your data.
​
20.1 Notification of Changes
If we make significant changes to this Privacy Policy, we will notify you by posting a prominent notice on our website or by other means as required by law.
​
20.2 Effective Date
The effective date of this Privacy Policy is [Effective Date]. Any changes to this policy will be effective immediately upon posting, unless otherwise stated.
​
21. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
Email: Go@PointRecon.com
Phone: [Phone Number]
Mailing Address: [Mailing Address]