HomePrivacy Policy

Privacy Policy

Effective Date: 01/01/2025

Version: PP v1.0

Controller: R2LB (Rules to Live By)

Address: 2250 Perrysburg Holland Road, Suite G6, Maumee, Ohio 43537, USA

Contact: [Insert support email] | Contact form: Here

Scope. This Privacy Policy explains how R2LB collects, uses, discloses, and protects information when you access our website, mobile app(s), social channels, or purchase our products globally. By using our services, you acknowledge this Policy and consent to processing as described, subject to your rights under applicable law.

Version: v1.0 — Effective September 3, 2025″

What We Collect

We collect information in three ways: you provide it, we collect it automatically, and third parties provide it.

A. Information you provide

  • Identifiers: name, email, phone, billing/shipping address.

  • Order info: items purchased, size, preferences, returns.

  • Communications: messages to support, survey responses, reviews.

  • Payment details are handled by our payment processors (e.g., card token) — we do not store full card numbers.

B. Automatic collection (cookies, pixels, SDKs)

  • Device/usage data: IP address, device IDs, browser type, pages viewed, time on site, referral URLs.

  • Location: non-precise geolocation inferred from IP.

  • Analytics & advertising data: event logs, conversion data, cookie IDs.

C. Third-party sources

  • Payment processors, fraud-prevention partners.

  • Shipping carriers.

  • Advertising/analytics partners (e.g., ad networks).

  • Social sign-in (if enabled).

Sensitive data. We do not intentionally collect sensitive personal information (e.g., government IDs, precise geolocation, health data), except as strictly necessary to prevent fraud or comply with law.

How We Use Information (Purposes)

We share information with:

  • Service providers/processors: payment gateways, anti-fraud tools, hosting, email/SMS, analytics, shipping, customer support.

  • Advertising/analytics partners: to measure performance and, where permitted, show relevant ads.

  • Business transfers: merger, acquisition, financing, or asset sale.

  • Legal compliance: to comply with law, respond to lawful requests, or protect rights, safety, and property.

We do not sell personal information for money. Some jurisdictions define “sale” or “sharing” to include certain cookie-based advertising. Where that applies, you can opt out of “sale/sharing” via our “Do Not Sell or Share My Personal Information” link and/or cookie settings, and we honor Global Privacy Control (GPC) signals where required.

Cookies & Online Tracking

We use cookies, pixels, and SDKs for core functionality, analytics, and (where lawful) advertising. You can manage preferences through our Cookie Settings link and your browser settings. Blocking cookies may impact site functionality.

  • Essential (required for checkout/security)

  • Performance/analytics

  • Personalization

  • Advertising (opt-out where required)

Children & Minors

Our services are not directed to children, and we do not knowingly collect personal information from children under 13 (U.S. COPPA) or under the age threshold defined by local law. If you believe a child provided data, parents/guardians must notify us in writing (see Section 12) so we can take appropriate action.

Parents/guardians are solely responsible for supervising minors’ use of shared devices (phones, tablets, iPads) and for any information minors submit. If a minor misstates their age or inputs information, that responsibility rests with the minor and their parent/guardian, not R2LB.

Data Retention

We retain data only as long as necessary for the purposes described, including:

  • Orders, tax, and accounting records: typically 7 years.

  • Customer support communications: typically 3 years after last interaction.

  • Marketing preferences: until you opt out.

  • Web logs/analytics: typically 12–24 months (aggregated thereafter).

We may retain data longer if required by law, to resolve disputes, or to enforce agreements.

Security

We implement industry-standard administrative, technical, and physical safeguards (encryption in transit, access controls, firewalls, monitoring). No system is 100% secure, and we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

Your Privacy Rights

Depending on your location, you may have rights to:

  • Access/Know: request the categories/specific pieces of personal information we have collected.

  • Correction: request that we correct inaccurate personal information.

  • Deletion: request that we delete personal information, subject to lawful exceptions (e.g., tax/audit).

  • Portability: receive a copy in a portable format.

  • Opt-out of sale/sharing and targeted advertising.

  • Limit use of sensitive personal information (where applicable).

  • Appeal a rights decision (CO/CT/VA and similar).

How to exercise: Use our rights request form (if provided), email us at [insert support email], or submit a written request by mail (Section 12). We will verify your identity before acting on a request. Authorized agents may submit on your behalf with valid authorization.

Global Privacy Control (GPC): Where required, we honor GPC signals as an opt-out of sale/sharing for the browser session.

California (CPRA): See Section 10 for additional disclosures.

Nevada: We do not sell “covered information” as defined by Nevada law; you may still request opt-out via the methods above.

EU/UK: You may also have the right to object to processing based on legitimate interests and to lodge a complaint with your local supervisory authority.

International Data Transfers

We are U.S.-based and process data in the United States. If you are outside the U.S., your data may be transferred to countries with different data protection standards. Where required (e.g., EEA/UK), we use appropriate safeguards such as Standard Contractual Clauses and implement supplementary measures.

U.S. State-Specific Disclosures (CPRA and others)

We do not sell your personal information for money. We may “share” personal information for cross-context behavioral advertising where permitted. You can opt out at any time.

Categories collected (past 12 months):

  • Identifiers (name, email, phone, IP address)

  • Customer records (billing/shipping info)

  • Commercial information (purchases, returns)

  • Internet/Network activity (usage data, device info)

  • Geolocation (non-precise)

  • Inferences (preferences)

  • Sensitive data: generally no, except minimal fraud-prevention signals

Sources: You, your devices, our processors, ad/analytics partners.

Business/Commercial purposes: See Section 2.

Disclosure to third parties: Service providers (payment, shipping, hosting, support, analytics); advertising/analytics partners (opt-out available).

Retention: See Section 6.

Right to limit use of sensitive PI: Not applicable, as we do not use sensitive PI for inferring characteristics.

No financial incentives tied to your data.

Minors: We do not sell/share PI of consumers under 16.

Marketing Communications

You can opt out of marketing emails at any time via the unsubscribe link. We may still send transactional or service messages (order updates, policy changes).

Data Removal & Rights Requests (Mail-In Required for Deletion)

To request permanent deletion of your personal information, we require written confirmation by mail (for verification and security):

R2LB – Data Requests

2250 Perrysburg Holland Road, Suite G6 Maumee, Ohio 43537, USA

Include: full name, email used with R2LB, order number(s) (if any), the specific request, and a statement certifying your identity (or authority, for agents).

You may also email us at [insert support email] to initiate a request, but final deletion will be processed after we receive and verify your mailed, signed request.

Where applicable law requires additional request methods, we will accommodate those methods.

Third-Party Sites & Services

Our site may link to third-party websites or integrate third-party tools. We are not responsible for the privacy practices of those third parties. Review their policies before interacting.

Automated Decision-Making

We do not use automated decision-making that produces legal or similarly significant effects without human involvement.

Changes to this Policy

We may update this Policy from time to time. Material changes will be noted by updating the “Effective Date” and “Version” above. Continued use of our services after changes means you accept the updated Policy.

Disputes; Governing Law; Venue

Privacy-related disputes are governed by our Terms & Conditions. Ohio law applies, and venue lies exclusively in Ohio state or federal courts, to the fullest extent permitted by law.

Key Assurances & Disclaimers (Plain Language)

WE DO NOT SELL YOUR PERSONAL INFORMATION FOR MONEY.

WE DO NOT KNOWINGLY COLLECT DATA FROM CHILDREN. PARENTS ARE RESPONSIBLE FOR SUPERVISING MINORS’ USE OF DEVICES AND OUR SITE.

IF YOU WANT DATA DELETED, YOU MUST SEND A WRITTEN, SIGNED REQUEST BY MAIL TO OUR OHIO ADDRESS (SECTION 12).

NO SECURITY IS PERFECT; USE OF THE INTERNET CARRIES RISK. We take reasonable steps, but you accept those inherent risks when using online services.

IF YOU DISAGREE WITH THIS POLICY, DO NOT USE OUR SITE OR SERVICES.

Optional Links to Add on Your Site (for compliance & clarity)

Terms & Conditions (must match jurisdiction, minors, hold-harmless)

Return & Exchange Policy (standalone mirror)

Cookie Settings / Preferences

Do Not Sell or Share My Personal Information (CPRA opt-out page)

Add to cart