Last Updated: February 2, 2021


This Privacy Policy explains how Certa ProPainters, Ltd. (“Company”, or “we,” or “us,” or “our”) collects personal information based on your interactions with us, our websites and mobile applications.  This Policy applies to Company’s collection and use of California

residents’ Personal Information, including where such use or collection may be governed by the

California Consumer Privacy Act (CCPA).


This Policy does not cover information that is exempted from the privacy policy notification requirements of the CCPA, including information about employees and independent contractors, which we cover in separate notices; information about job applicants, and information processed exclusively in the context of a business person acting in a business capacity.  Where exceptions to the CCPA apply to a request you submit, we will provide you with an explanation as to why.

I.      Personal Information Collected in the Past 12 Months

We collect, process and store various types of Personal Information.  For purposes of this Policy, “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.  It does not include de-identified or aggregate information, or public information lawfully available from governmental records.


The following chart describes the categories of Personal Information covered by this Policy that we may have collected in the past 12 months and, for each category, where and why we collected it, and the categories of entities with which we shared the Personal Information. As you will see, our services are provided through independently-owned and operated franchises and we obtain information from them.

Categories of Consumers’ Personal InformationCategories of Sources Purpose(s) for Collection of Consumers’ Personal InformationCategories of Third Parties With Which Personal Information Was Shared for a Business Purpose
Personal Identifiers – such as name, postal address, Internet Protocol address, email address, social security number, driver’s license number, passport number, or other similar identifiersFranchises
Consumers directly
Provision of services
Responding to consumer inquires
Security processes
Service providers
Commercial information – such as records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendenciesFranchises
Consumers interacting with our website
Providing products and services
Internal marketing
Internet or other electronic network activity information, including browsing and search historyConsumers interacting with our websiteSecurity processes
Audio, or similar informationConsumers who interact with our call centerProvision of services
Responding to consumer inquires
Security processes

Additional Information about How We Collect and Share your Personal Information

We may use your Personal Information to market products or services that we think may be of interests to you, including our own products and services as well as those of our affiliates.


We disclose each of the categories of Personal Information above with a variety of service providers that are not permitted to use or disclose Personal Information for any purpose other than the services they provide to us.  These include vendors that provide services to us in connection with the operation of our business, which can include vendors that process payments and customer approvals, verify customer information, manage customer information, provide customer service, facilitate scheduling, facilitate email communications, manufacture and fulfillment of orders, provide security services, cloud-based data storage, host our webpage and assist with other IT-related functions, advertising and marketing of our products and those of our affiliates, provide analytics information, legal and accounting services, among other business functions.  Additionally, we may collect and share Personal Information with third parties to comply with legal obligations; when we believe in good faith that an applicable law requires it; at the request of governmental authorities or other third parties conducting an investigation; to detect and protect against fraud, or any technical or security vulnerabilities; to respond to an emergency; or otherwise to protect the rights, property, safety, or security of our business, thirdparties, visitors to our websites and mobile apps, or the public.  We may also share Personal Information to a third party in connection with a sale, merger or consolidation of our business or other transfer of our assets, whether voluntarily or by operation of law, or who is otherwise deemed to be our successor or transferee.


In the last 12 months we have not sold any Personal Information. We do not and will not sell Personal Information.


II.      Personal Information We Will Continue to Collect About You and Why

We will continue to collect the same categories of Personal Information listed in the chart above, for the same purposes.


III.      Rights Related to Personal Information Held by Us


Your Right To Request Disclosure of Information We Collect and Share About You


We are committed to ensuring that you know what Personal Information we collect. To that end, you can ask us for the categories and specific pieces of your Personal Information that we’ve collected about you in the 12 months prior to our receipt of your request.


If you ask us for information about the categories of Personal Information we’ve collected about you, for each identified category, you may receive the following information:


The categories of sources from which your Personal Information was collected.

The business or commercial purposes for collecting your Personal Information.


We are also committed to ensuring that you know what information we share about you.  You can submit a request to us for the following further information:

The categories of Personal Information that we’ve disclosed about you for a business purpose and the categories of third parties to which we made those disclosures.

Our responses to any of these requests will cover the 12-month period preceding our receipt of your request.


Your Right To Request Deletion of Personal Information We Have Collected From You


Upon your request, we will delete the Personal Information we have collected about you, except for situations where the CCPA authorizes us to retain specific information, including when itis necessary for us to provide you with a good or service that you requested; perform a contract we entered into with you; maintain the functionality or security of our systems; or comply with or exercise rights provided by the law.  The law also permits us to retain specific information for our exclusively internal use, but only in ways that are compatible with the context in which you provided the information to us or that are reasonably aligned with your expectations based on your relationship with us.


California Shine the Light


California Civil Code Section 1798.83, also known as the “Shine the Light” law, permits California residents to annually request, free of charge, information about the Personal Information (if any) disclosed to third parties for direct marketing purposes in the preceding calendar year.  While we may use Personal Information to market third party products and services we believe may be of interest to our customers, we do not share Personal Information with third parties for their own marketing purposes.

Our Commitment to Honoring Your Rights


We are committed to providing you with control over your Personal Information.  If you exercise any of the rights explained in this Privacy Policy, we will continue to treat you fairly.  If you exercise your rights under this Privacy Policy, you will not be denied or charged different prices or rates for goods or services, or provided a different level or quality of goods or services than others.

IV.    Exercising Your Rights and How We Will Respond

To exercise any of the rights above, or to ask a question, contact us 1-844-991-0269 or click here.


For requests for access or deletion, we will first acknowledge receipt of your request within 10 days of receipt of your request.  We provide a substantive response to your request as soon as we can, generally within 45 days from when we receive your request, although we may be allowed

to take longer to process your request in certain jurisdictions or under certain circumstances.  If we expect your request is going to take us longer than normal to fulfill, we will let you know.


We usually act on requests and provide information free of charge, but we may charge a reasonable fee to cover our administrative costs of providing the information in certain situations.


In some cases, the law may allow us to refuse to act on certain requests.  When this is the case, we will endeavor to provide you with an explanation as to why.

V.    Verification of Identity – Access or Deletion Requests

We will ask you for two pieces of Personal Information and attempt to match those to information that we maintain about you.


If we are unable to verify your identity with the degree of certainty required, we will not be able to respond to the request.  We will notify you to explain the basis of the denial.


Authorized Agents


You may designate an agent to submit requests on your behalf.  The agent can be a natural person or a business entity that is registered with the California Secretary of State.


If you would like to designate an agent to act on your behalf, you and the agent will need to comply with our agent verification process.  You will be required to verify your identity by providing us with certain Personal Information as described above, depending on whether you hold an account with us or not and the nature of the information your require, which we will endeavor to match the information submitted to information we maintain about you. Additionally, we will require that you provide us with written confirmation that you have authorized the agent to act on your behalf, and the scope of that authorization.  The agent will be required to provide us with proof of the agency relationship, which may be a declaration attesting to the agent’s identity and authorization by you to act on their behalf, signed under penalty of perjury.   If the agent is a business entity, it will also need to submit evidence that it is registered and in good standing with the California Secretary of State.  Information to identify and verify your agent can be submitted through the same mechanism and at the same time that you submit information to verify your identity.


Please note that this subsection does not apply when an agent is authorized to act on your behalf pursuant to a valid power of attorney.  Any such requests will be processed in accordance with California law pertaining to powers of attorney.


Requests for Household Information


There may be some types of Personal Information that can be associated with a household (a group of people living together in a single dwelling).  Requests for access or deletion of household Personal Information must be made by each member of the household.  We will verify each member of the household using the verification criteria explained above.


If we are unable to verify the identity of each household member with the degree of certainty required, we will not be able to respond to the request.  We will notify you to explain the basis of our denial.

VI.    Do Not Track Signals

“Do Not Track” is a privacy preference that users can set in certain web browsers.  We do not respond to browser or do not track signals.




VII.     Personal Information of Minors


Our products and services are not directed to minors under the age of 18 and we do not knowingly collect or sell the Personal Information of minors.




VIII.    How We Keep Your Personal Information Secure


We implement and maintain reasonable security appropriate to the nature of the personal information that we collect, use, retain, transfer or otherwise process.  Our reasonable security program is implemented and maintained in accordance with applicable law and relevant standards.  However, there is no perfect security, and reasonable security is a process that involves risk management rather than risk elimination.  While we are committed to developing, implementing, maintaining, monitoring and updating a reasonable information security program, no such program can be perfect; in other words, all risk cannot reasonably be eliminated. Data security incidents and breaches can occur due to vulnerabilities, criminal exploits or other factors that cannot reasonably be prevented.  Accordingly, while our reasonable security program is designed to manage data security risks and thus help prevent data security incidents and breaches, it cannot be assumed that the occurrence of any given incident or breach results from our failure to implement and maintain reasonable security.


IX.    Changes to This Policy


We will review and update this Policy as required to keep current with rules and regulations, new technologies and security standards. We will post those changes on the website or update the Privacy Policy modification date below. In certain cases and if the changes are material, you will be notified via email or a notice on our website.

X.    Accessibility

We are committed to ensuring that our communications are accessible to people with disabilities. To make accessibility-related requests or report barriers, please contact us at [email protected]

XI.    Contact Us

If there are any questions regarding this Privacy Policy or to request a copy of this Privacy Policy in another format you may contact us using the information below.


[email protected]