Privacy Policy

Last updated October 31, 2025

This privacy notice for Devote Technology Corporation ("Company," "we," "us," or "our") describes how and why we might collect, store, use, and/or share ("process") your information when you use our services ("Services"), such as when you:

  • Visit our website at usedevote.com (or any website of ours that links to this privacy notice)

  • Use our online platform and financial products (for example, our Devote Card, high-yield savings account, or donations tool)

  • Engage with us in other related ways (including sales, marketing, or events)

Questions or concerns? Reading this privacy notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at admin@usedevote.com.

SUMMARY OF KEY POINTS

This summary provides key points from our privacy notice. For more details about each topic, you can click the links or refer to the full sections below.

  • What personal information do we process? When you visit, use, or navigate our Services, we may process personal information depending on how you interact with Devote (for example, whether you are a nonprofit representative or a donor) and the Services, the choices you make, and the products and features you use. Learn more about the personal information you disclose to us.

  • Do we process any sensitive personal information? We may process sensitive personal information (such as financial or identification data) when necessary with your consent or as otherwise permitted by applicable law. Learn more about the sensitive information we process.

  • Do we receive any information from third parties? Yes. We may receive information from third-party sources, such as identity verification services, credit bureaus, or public databases, to help us provide our Services or comply with legal requirements. Learn more about information collected from other sources.

  • How do we process your information? We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, to comply with law, and to fulfill other business obligations. We may also process your information for other purposes with your consent. We process your information only when we have a valid legal reason to do so. Learn more about how we process your information.

  • In what situations and with which types of parties do we share personal information? We may share information in specific situations and with specific categories of third parties (such as our partner banks and service providers). For example, we share data with our banking partners and payment processors in order to provide you with financial services. Learn more about when and with whom we share your personal information.

  • How do we keep your information safe? We have organizational and technical processes and procedures in place to protect your personal information. However, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that unauthorized third parties will not be able to defeat our security and improperly access or misuse your information. Learn more about how we keep your information safe.

  • What are your rights? Depending on where you are located geographically, the applicable privacy law may grant you certain rights regarding your personal information. These rights may include the ability to review, change, or delete your personal information. Learn more about your privacy rights.

  • How do you exercise your rights? The easiest way to exercise your rights is by submitting a data subject access request, or by contacting us using the details below. We will consider and act upon any request in accordance with applicable data protection laws.

Want to learn more about what Devote Technology Corporation does with any information we collect? Review the privacy notice in full below.

TABLE OF CONTENTS

  1. WHAT INFORMATION DO WE COLLECT?

  2. HOW DO WE PROCESS YOUR INFORMATION?

  3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR PERSONAL INFORMATION?

  4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

  5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

  6. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

  7. HOW LONG DO WE KEEP YOUR INFORMATION?

  8. HOW DO WE KEEP YOUR INFORMATION SAFE?

  9. DO WE COLLECT INFORMATION FROM MINORS?

  10. WHAT ARE YOUR PRIVACY RIGHTS?

  11. CONTROLS FOR DO-NOT-TRACK FEATURES

  12. DO CALIFORNIA AND OTHER STATE RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

  13. DO WE MAKE UPDATES TO THIS NOTICE?

  14. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

  15. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you disclose to us

In Short: We collect personal information that you provide to us.

We collect personal information that you voluntarily provide to us when you register on the Services, express interest in obtaining information about us or our products and Services, participate in activities on the Services, or otherwise contact us.

Personal Information Provided by You. The personal information we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. For example, if you are opening an account on behalf of a nonprofit organization, we will collect information about both the nonprofit and its representative. The personal information we collect may include the following:

  • Names (such as your name and, if applicable, the name of the nonprofit or business you represent)

  • Phone numbers

  • Email addresses

  • Mailing and business addresses

  • Job titles and organizational roles

  • Contact preferences

  • Contact or authentication data (for account login and security)

  • Billing and mailing addresses

  • Date of birth

  • Social Security number (SSN)

  • Employer Identification Number (EIN) or other business identification number

  • Organization legal name or public business name of a nonprofit or company

  • Financial account or payment information (such as bank account details or payment card information, when you link an account or make transactions through our Services)

  • Donation information (if you use our donations tool to make or process a donation, we collect information such as the donor’s name, contact information, and donation details)

Sensitive Information. When necessary, with your consent or as otherwise permitted by law, we process certain categories of sensitive information. This may include:

  • Financial data (e.g. account balances or transaction history related to the services we provide)

  • Creditworthiness data (e.g. credit history or credit scores, if we need to assess financial eligibility for certain products)

  • Social Security numbers or other government identifiers (e.g. taxpayer ID, driver’s license or passport numbers for identity verification)

Social Media Login Data. We may provide you with the option to register with us using your existing social media account details (like your Facebook, Twitter, or other social media accounts). If you choose to register or log in this way, we will collect the information described in the section "HOW DO WE HANDLE YOUR SOCIAL LOGINS?" below.

All personal information that you provide to us must be true, complete, and accurate, and you should notify us of any changes to such personal information.

Information automatically collected

In Short: Some information , such as your Internet Protocol (IP) address and/or browser and device characteristics, is collected automatically when you interact with our Services.

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country or general location, information about how and when you use our Services, and other technical information. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.

Like many businesses, we also collect information through cookies and similar technologies.

The information we collect automatically includes:

  • Log and Usage Data: This is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Services. Depending on how you interact with us, this log data may include your IP address, device information, browser type and settings, and information about your activity in the Services (such as the date/time stamps of your usage, pages and files viewed, searches, features used, and other actions you take). It may also include device event information (such as system activity, error reports (sometimes called "crash dumps"), and hardware settings).

Information collected from other sources

In Short: We may obtain information about you from other sources, such as public databases, business partners, identity verification services, or credit bureaus.

In order to provide certain services and to comply with legal obligations, we may receive information about you from third-party sources. These sources can include:

  • Public databases or registries: For example, we may verify a nonprofit organization’s credentials or status via public nonprofit registries or government records.

  • Identity verification and fraud prevention partners: We may receive identity verification results or risk assessments from services that help us confirm your identity and prevent fraud (for instance, services that verify IDs or check watchlists).

  • Credit bureaus and financial institutions: If you apply for or use a financial product that requires it (such as a credit product), we may receive information about your credit history or financial profile from credit reporting agencies or banking partners.

  • Third-party services and partners: For example, if we offer features in partnership with third parties (such as fundraising or donor management platforms), those partners might send us information about you to facilitate the integrated service, subject to your agreements with them.

We use and protect any information obtained from third-party sources in accordance with the practices described in this privacy notice, plus any additional restrictions imposed by the source of the data. Note that not all of our Services utilize third-party data sources, but when they do, we ensure that such use is lawful and necessary.

2. HOW DO WE PROCESS YOUR INFORMATION?

In Short: We process your information to operate, provide, and improve our Services, including financial services, to communicate with you, to prevent fraud, to comply with law, and for other legitimate business purposes.

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

  • To facilitate account creation and authentication (and to manage user accounts): We process your information so you can create an account, log in, and maintain your account in working order.

  • To deliver and facilitate delivery of our Services: We process your information to provide you with the services and features you request. For example, we use your information to operate financial accounts (such as your spending and savings accounts) and to carry out transactions you initiate.

  • To facilitate donations and payments: If you use our donations platform or other payment features, we process information about you (and, if you are a donor, about your donation) in order to execute the transaction, provide receipts, and notify the intended nonprofit recipient of the donation.

  • To provide financial products and customer support: We process certain information to issue and manage financial products like the Devote Visa® card and high-yield savings accounts. This includes using your information to respond to inquiries, provide customer service, and ensure you can effectively use these products.

  • To verify your relationship to a nonprofit: If you register as a representative of a nonprofit organization, we will use your personal data to verify that you are authorized to act on behalf of that organization (for example, by confirming your affiliation or role with the nonprofit).

  • To protect our Services and prevent fraud: We process your information as part of our efforts to keep our Services safe and secure, including monitoring for fraudulent or unauthorized activities, enforcing our terms and policies, and detecting or investigating security incidents.

  • To comply with legal and regulatory requirements: We may process your information to fulfill obligations under applicable laws and regulations, particularly those relevant to financial services. This can include verifying identities to comply with "Know Your Customer" (KYC) rules, conducting anti-money laundering (AML) checks, maintaining records for financial audits, or reporting to regulatory authorities as required.

  • To save or protect an individual’s vital interest: In rare cases, we may process your information when necessary to protect someone's vital interests, such as to prevent harm or respond to an emergency situation.

3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR PERSONAL INFORMATION?

In Short: We only process your personal information when we believe it is necessary and we have a valid legal reason (i.e., legal basis) to do so under applicable law—such as with your consent, to comply with laws, to provide you with services or fulfill our contractual obligations, to protect your rights, or to pursue our legitimate business interests.

If you are located in the EU or UK, this section applies to you. The General Data Protection Regulation (GDPR) and UK GDPR require us to explain the valid legal bases we rely on to process your personal information. As such, we may rely on the following legal bases:

  • Consent: We may process your information if you have given us permission (i.e. consent) to use your personal information for a specific purpose. You have the right to withdraw your consent at any time. (Learn more about withdrawing your consent.)

  • Performance of a Contract: We may process your personal information when it is necessary to perform a contract with you, or to take steps at your request before entering into such a contract. For example, when you use our Services, we will process your information to carry out our obligations and provide you with the service you requested.

  • Legitimate Interests: We may process your information when we believe it is reasonably necessary to achieve our legitimate business interests—and those interests do not override your interests and fundamental rights and freedoms. For example, we may process your personal information to: improve and personalize our services; detect and prevent fraud; and enhance the security of our systems.

  • Legal Obligations: We may process your information where it is necessary for compliance with our legal obligations. For instance, we might disclose data in response to lawful requests by public authorities, comply with financial reporting laws, or use information to exercise or defend legal claims.

  • Vital Interests: We may process your information where it is necessary to protect your vital interests or the vital interests of a third party, such as in situations involving potential threats to anyone’s safety.

If you are located in Canada, this section applies to you. We may process your information in accordance with Canadian privacy laws if:

  • You have given us your express consent for a specific purpose (you may withdraw your consent at any time), or your consent can be inferred from the context;

  • The processing is clearly in the interests of an individual and consent cannot be obtained in a timely way;

  • It is necessary for fraud detection and prevention or for investigating possible unlawful activities;

  • It is needed for business transactions (provided certain conditions are met);

  • It is contained in a witness statement and the processing is necessary to assess or settle an insurance claim;

  • We need to identify or communicate with injured, ill, or deceased persons and obtaining consent is impractical;

  • We have reasonable grounds to believe an individual may be a victim of financial abuse;

  • It is reasonable to expect that seeking consent would compromise an investigation (for example, if consent would prejudice the availability or accuracy of the information needed) and the collection is reasonable for purposes related to investigating a breach of an agreement or a contravention of the laws of Canada or a province;

  • The information is needed to comply with a subpoena, warrant, court order, or rules of court concerning the production of records;

  • The information was produced by an individual in the course of their employment, business, or profession and the collection is consistent with the purposes for which the information was produced;

  • The collection is solely for journalistic, artistic, or literary purposes;

  • The information is publicly available and is specified by regulation.

4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

In Short: We may share information in specific situations described in this section and/or with the following categories of third parties.

We may share your data with third-party vendors, service providers, contractors, or agents ("third parties") who perform services for us or on our behalf and require access to personal information to do that work. This includes, for example, companies that assist us with website hosting, data analysis, customer service, marketing, identity verification, and payment processing. The categories of third parties we may share personal information with include:

  • Partner Financial Institutions: We share personal information with our banking and financial partners as needed to provide our Services. For instance, we work with a sponsor bank to hold deposits (currently Fifth Third Bank, Member FDIC) and a bank partner to issue our payment cards (Celtic Bank for the Devote Visa® Commercial Card)usedevote.com. We may also share information with other FDIC-insured partner banks that participate in our deposit network to extend FDIC insurance coverage to your fundsusedevote.com. These institutions require certain personal details to open and maintain your accounts and to comply with their own legal obligations.

  • Payment Processors and Money Transmission Services: We share information with third-party payment processors and money service businesses that help facilitate transactions on our platform. For example, we partner with Stripe, Inc. for payment processing and money transmission servicesusedevote.com. These partners receive data like your name, card or account details, and transaction information as needed to process payments, transfers, or donations.

  • Identity Verification and Compliance Services: In order to verify identities, perform background screening, and comply with anti-fraud or AML regulations, we may share information with service providers that specialize in identity verification, document authentication, sanctions screening, and similar compliance functions.

  • Cloud Computing and Data Storage Services: We utilize cloud infrastructure and storage providers to host our platform and data. Personal information is stored with these providers on our behalf, but they are not permitted to use it except as necessary to provide the hosting and storage services.

  • Data Analytics Services: We may share certain usage or device data with analytics providers that help us understand how users interact with our Services, so we can improve user experience and performance.

  • Marketing and Advertising Partners: We could work with marketing service providers or advertising networks to communicate with you (for example, to send you updates or offers, where permitted). If we do so, we may provide contact information or use cookies and tracking tools (as described below in Cookies and Tracking Technologies) to assist in these efforts. For instance, we might use an email marketing platform to send newsletters, or work with a partner to measure responses to our ads.

We also may need to share your personal information in the following situations:

  • Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.

  • Legal Obligations and Protection of Rights: We may disclose your information if we believe it is necessary to do so to comply with applicable laws or legal processes (such as court orders, subpoenas, or regulatory requests). We may also share your data to establish or exercise our legal rights, to defend against legal claims, or when we believe disclosure is necessary to investigate, prevent, or respond to suspected illegal activities, fraud, or to protect the safety, rights, or property of our users, ourselves, or others.

  • With Your Consent or at Your Direction: We may share your personal information with third parties if you direct us to do so or if you have given us explicit consent for a specific purpose. For example, if you integrate our Services with a third-party platform, we might share data at your direction to facilitate that integration.

5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

In Short: Yes, we may use cookies and other tracking technologies to collect and store your information.

We use cookies and similar tracking technologies (like web beacons and pixels) to access or store information on your device. Specific information about how we use such technologies and how you can refuse certain cookies is set out in our Cookie Notice (if available).

For example, when you visit or log in to our website, cookies and similar technologies may be used by us or by our online data partners to associate your activities on our site with other information about you that they have collected (for instance, through your email address or physical address). We (or service providers acting on our behalf) may then use this combined information to send marketing communications to you at those addresses. If you prefer not to have this type of information used for targeted marketing purposes, you can opt out by visiting https://app.retention.com/optout.

6. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

In Short: If you choose to register or log in through a social media account, we may have access to certain information about you from that account.

Our Services offer you the ability to register and log in using your third-party social media account details (for example, your Facebook or Twitter login). If you decide to register or sign in this way, we will receive certain profile information about you from your social media provider. The information we receive may vary depending on the provider, but it often includes your name, email address, friend list, profile picture, and any other information you have chosen to make public on that platform.

We will use the information we receive from your social media account only for the purposes described in this privacy notice or otherwise made clear to you on the relevant Services. Please note that we do not control and are not responsible for how your third-party social media provider collects, uses, or shares your information. We recommend that you review the privacy notice of that provider to understand how your information is handled and how you can adjust your privacy settings on their platform.

7. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this privacy notice unless otherwise required by law.

We will only retain your personal information for as long as it is needed for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (for example, for tax, accounting, or regulatory purposes). No purpose in this notice will require us keeping your personal information for longer than the period during which you have an active account with us.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it. If immediate deletion is not feasible (for instance, because the data is stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

8. HOW DO WE KEEP YOUR INFORMATION SAFE?

In Short: We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. These measures are intended to safeguard data against unauthorized access, disclosure, alteration, or destruction. However, despite our efforts, please note that no electronic transmission over the Internet or method of information storage is 100% secure. We cannot guarantee that hackers, cybercriminals, or other unauthorized third parties will never be able to defeat our security and improperly collect, access, steal, or modify your information.

Although we strive to protect your personal information, any transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment (for example, by using up-to-date antivirus software and a secure network).

9. DO WE COLLECT INFORMATION FROM MINORS?

In Short: We do not knowingly collect data from or market to children under 18 years of age.

We do not knowingly solicit data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18 (or that you are the parent or guardian of a minor who is using our Services with your consent). If we learn that personal information from users under the age of 18 has been collected without appropriate consent, we will take steps to deactivate the account and delete such information from our records. If you become aware of any data we may have collected from children under 18, please contact us at contact@usedevote.com so that we can investigate and address the issue.

10. WHAT ARE YOUR PRIVACY RIGHTS?

In Short: In some regions (like the EEA, UK, Canada, and certain U.S. states), you have rights that allow you greater access to and control over your personal information.

Depending on where you are located, you may have certain rights under applicable data protection laws. These rights may include:

  • The right to request access to the personal information we hold about you (often called the right to "request access" or "data portability" in some jurisdictions). This allows you to receive a copy of the personal data we have collected about you.

  • The right to request correction of any inaccurate personal information we have about you.

  • The right to request erasure of your personal information when it is no longer necessary for the purposes for which it was collected, or if you believe the processing is unlawful or you object to it (as applicable by law).

  • The right to restrict the processing of your personal information under certain conditions (for example, if you contest the accuracy of the data, you may request that we restrict processing until we verify its accuracy).

  • The right to object to the processing of your personal information in some circumstances, such as for direct marketing purposes or when we are processing your data based on legitimate interests.

  • If applicable, the right to data portability, which means you can request to receive your personal information in a structured, commonly used, and machine-readable format, or ask that it be transferred to another controller where technically feasible.

If you are in the European Economic Area (EEA) or United Kingdom (UK), these rights are provided under the GDPR/UK GDPR. If you are in Canada, similar rights are provided under federal and provincial privacy laws. If you are in certain U.S. states, you may also have comparable rights as described in the next section.

We will consider and act upon any request to exercise these rights in accordance with applicable data protection laws.

If you are located in the EEA or UK and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority. You can find the contact details for your Data Protection Authority here: https://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm for EEA authorities, or the UK Information Commissioner’s Office (ICO) for the United Kingdom.

If you are located in Switzerland, you may contact the Federal Data Protection and Information Commissioner.

Withdrawing your consent: If we are relying on your consent to process your personal information (a situation which may occur in certain contexts, such as for sending marketing communications or processing sensitive data), you have the right to withdraw your consent at any time. You can withdraw your consent by contacting us using the contact details provided in the "How can you contact us about this notice?" section below. Please note that withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, and it will not affect processing of your personal information conducted in reliance on lawful processing grounds other than consent.

Account Information: If you have an account with us, you can review and update certain information in your account profile at any time by logging into your account settings. If you wish to terminate your account, please contact us using the information below. Upon your request to deactivate or delete your account, we will take steps to remove your personal information from our active user databases. However, please note that we may retain certain information in our files as allowed by law, for example to prevent fraud, troubleshoot problems, assist with any investigations, enforce our legal agreements, or comply with legal requirements.

Cookies and similar technologies: Most web browsers are set to accept cookies by default. If you prefer, you can often choose to set your browser to remove or reject browser cookies. Removing or rejecting cookies could affect the availability and functionality of certain features of our Services. To learn more about how to manage cookies, see our Cookie Notice or the instructions provided by your browser. Additionally, if you wish to opt out of interest-based advertising, you can visit the Network Advertising Initiative’s Opt-Out tool or the Digital Advertising Alliance’s Opt-Out tool.

If you have questions or comments about your privacy rights, you may email us at contact@usedevote.com.

11. CONTROLS FOR DO-NOT-TRACK FEATURES

In Short: We currently do not respond to DNT browser signals and similar mechanisms.

Most web browsers and some mobile operating systems and applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. Therefore, like many businesses, we do not respond to browser DNT signals or any other mechanism that automatically communicates your choice not to be tracked online.

If a standard for online tracking is adopted in the future that we must follow, we will update this privacy notice to inform you about how we respond to such signals.

12. DO CALIFORNIA AND OTHER STATE RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: Yes. If you are a resident of California (or certain other U.S. states), you are granted specific rights regarding access to your personal information.

California Rights ("Shine the Light"): Under California Civil Code Section 1798.83 (the "Shine The Light" law), California residents who have an established business relationship with us may request information once a year, free of charge, about categories of personal information (if any) we disclosed to third parties for those third parties’ direct marketing purposes, and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please send a written request to us using the contact information provided below.

If you are under 18 years of age, reside in California, and have a registered account with our Services, you have the right to request removal of any publicly posted data that you have uploaded to the Services. To request removal of such data, please contact us using the information below and include the email address associated with your account and a statement that you are a California resident under age 18. We will make sure the data is not publicly displayed on our Services, but please be aware that the data may not be completely or comprehensively removed from all our systems (for example, from backups or archived records).

California Consumer Privacy Act (CCPA/CPRA): The California Consumer Privacy Act (as amended by the California Privacy Rights Act) provides additional rights to California residents. These rights include:

  • The right to know the categories of personal information we have collected about you, the categories of sources of that information, the business or commercial purposes for collecting (or selling/sharing, if applicable) the information, and the categories of third parties with whom we share personal information.

  • The right to access the specific pieces of personal information we have collected about you in a portable format.

  • The right to request deletion of personal information (with some exceptions, such as when the information is needed to complete a transaction or comply with a legal obligation).

  • The right to request correction of inaccurate personal information.

  • The right to opt out of the "sale" of your personal information or the sharing of your personal information for cross-context behavioral advertising purposes (if our business engages in such activities).

  • The right not to receive discriminatory treatment for exercising any of the above rights.

Other State Privacy Laws: Residents of certain other states (such as Virginia, Colorado, Connecticut, and Utah) have similar privacy rights under those states’ laws. These may include the right to confirm whether we process your personal information, to access and obtain a copy of your information, to request deletion or correction of your information, and to opt out of certain types of data processing (such as targeted advertising or sale of personal data). The definitions of "sale" or other terms may vary by state. If you are a resident of a U.S. state that provides privacy rights, you may contact us to exercise your applicable rights.

How to Exercise Your State Rights: To exercise any of the rights described in this section, please submit a verifiable request to us by contacting us using the details in the "How can you contact us about this notice?" section below. We will verify your identity and respond to your request as required by the applicable law. If your request is denied, we will explain the reasons if required by law. For opt-out requests (such as opting out of sales or targeted advertising), you may also use any automated tools we provide (for example, a "Do Not Sell or Share My Info" link on our website, if available) or contact us directly.

We do not knowingly "sell" personal information as defined by California or other state laws (meaning we do not exchange personal data for money or other valuable consideration for the third party’s independent use). We also do not use or share sensitive personal information for the purpose of targeted advertising in a manner that would be considered a "share" under California law. If this ever changes, we will update this privacy notice and provide applicable opt-out mechanisms as required.

13. DO WE MAKE UPDATES TO THIS NOTICE?

In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws and changes to our practices.

We may update this privacy notice from time to time. An updated "Revised" or "Last updated" date will indicate the effective date of the new version, and the new notice will be effective as soon as it is accessible. If we make material changes to this privacy notice, we may notify you by prominently posting a notice of those changes on our website or by directly sending you a notification (for example, via the email address associated with your account). We encourage you to review this privacy notice periodically to stay informed about how we are protecting your information.

14. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, you may contact us by email at contact@usedevote.com, or by post to:

Devote Technology Corporation
580 South 100 West Street
Provo, UT 84601
United States

15. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

You have the right to request access to the personal information we have collected from you, to request corrections to that information, or to delete it. To request to review, update, or delete your personal information, you can submit a data subject access request through our platform (if available) or contact us using the information provided above. We will respond to your request in accordance with applicable data protection laws.