Privacy Policy
Privacy Policy
Last Updated: April 25, 2025At Wolf Back On Track, Inc. (“Wolf Back On Track”, “we”, “us”, or “our”), we value the privacy of our website visitors, customers, community members, and event attendees. This Privacy Policy outlines how we collect, use, protect, and disclose your personal information when you interact with our website (wolfbackontrack.com), use our services (such as creating an account or making a purchase), sign up for our communications, or attend our events (including the Vendor Village Summit). We are based in the United States but reach users globally, and we are committed to compliance with applicable privacy laws, including the California Consumer Privacy Act (CCPA) and the EU/UK General Data Protection Regulation (GDPR).By using our website or services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please discontinue use of our site and services. If you have any questions, please Contact Us using the information at the end of this policy.
1. Information We Collect and How We Use It
We collect several types of information from and about users for various purposes. This includes personal data you provide directly (for example, when signing up or transacting on our site), as well as data collected automatically through technology (such as
cookies and analytics tools). Below we explain the categories of information we collect, with examples of when and why we collect it:
● Newsletter Sign-Up Information: When you subscribe to our newsletter or mailing list, we collect your email address (and possibly your name or preferences, if provided). We use this information to send you our newsletters, updates, and promotional content about our latest news, events, or offers. You will only receive marketing emails if you have opted in,
and you can unsubscribe at any time by clicking the “unsubscribe” link in the email or contacting us directly.
● Account Registration Data: If you create a user account on our site, we collect information such as your name, email address, username, and password. We use this data to set up and maintain your account, allow you to log in, and provide you with a personalized user experience. Account holders may also provide additional profile information (like a profile photo or bio) at their discretion, which is stored and displayed as part of your account profile. We advise you not to use or share sensitive personal details in your profile. Your account information is used only to provide our services to you, and to
communicate with you about your account (for example, to send confirmations, notifications, or customer support responses).
● Purchase and E-Commerce Information: When you make a purchase or transaction through our site (for example, buying merchandise or tickets to an event), we collect personal information necessary to process the transaction. This may include your name, billing and shipping address, email address, phone number, and details of the item/event
purchased. Payment Information (such as credit card numbers or payment account details) is collected through our secure payment processor – we use reputable third-party payment gateways to handle your payment data. We do not store your full credit card information on our servers (only a payment token or partial information may be retained for record-keeping and refunds). Purchase information is used to fulfill your orders, process payments, provide customer service (e.g. order confirmations, receipts, and support), and for our internal accounting/tax records. If you create an account, we may associate purchase history with your account to help you track orders. We retain transaction records as required for business and legal purposes (see Data Retention below).
● Event Registration and Attendance Data: If you register for or attend an event organized or hosted by Wolf Back On Track (such as the Vendor Village Summit or other workshops, meet-ups, or summits), we collect information to manage your participation. This may include your name, contact information (email, phone), organization or affiliation (if relevant), and any details you provide during sign-up (e.g. your preferences, t-shirt size for event swag, etc.). We use this data to process your registration or tickets, communicate about event details (updates, reminders, post-event feedback), verify
your attendance (e.g. check-in at the event), and ensure we cater to any specific needs you’ve indicated. In some cases, we may also collect on-site information such as your check-in time or participation in specific activities for operational and
safety purposes. Usage of Event Data: We do not use event registration data for marketing unrelated events unless you have consented or an opt-in was provided. If the event is co-hosted or involves partner organizations or vendors (for example, a sponsored summit or a Vendor Village with multiple vendors), we will inform you at registration if your contact
information will be shared with those partners, and you will have the opportunity to opt-in or opt-out of such sharing as required by law. (By default, we do not share attendee lists with third-party sponsors without your consent – see Data Sharing below for more details.)
● Comments and User Contributions: When you post comments on our blog posts or other public forums on our site, we collect the information you enter into the comment form. This typically includes your name (or username), email address, and the comment text. Providing your email may be optional and is used to link to your Gravatar (profile image) if you have one, and/or to notify you of comment replies if you opt in. We also log the IP address and browser user agent string of visitors who post comments to help in automated spam detection and to assist with moderation. Any content
you post in a comment (including text or any media) is publicly visible to other visitors once it is approved. We recommend against posting personal or sensitive information in comments. If you upload images or other media in a comment or via any user submission feature on our site, you should avoid uploading images with embedded location data
(EXIF GPS) or other sensitive metadata, as visitors to the website can download and extract such information from images on the site. By submitting a comment or any user-generated content, you understand that we may display and store your submitted content, and we may further use it to improve our services (for example, by featuring common
questions in an FAQ).
● Media You Provide: If you choose to contribute or upload any media or content to our website (such as sharing a testimonial, uploading photos/videos to a gallery or community section, or contributing to a blog as a guest author), we will collect that content and any associated information (such as captions or descriptions, and your name or username). We
will use this information to display or publish your contribution as intended. Contributor Media Use: By uploading or providing media/content, you affirm that you have the right to do so and you grant us permission to use, reproduce, and display that content on our website or in related promotional materials in connection with the service you provided it for. If your content includes the personal data of others (for example, you upload a group photo), you should ensure you have permission from those individuals. If at any time you wish to remove content you have provided, please contact us and we will address it as outlined in Your Rights below.
● Communications and Contact Data: If you contact us via email, contact form, or through other means (e.g., customer support inquiries, survey responses, or social media messages), we will collect the information you voluntarily provide in that communication. This can include your name, email address, the content of your message, and any other information you choose to provide. We use this information solely to respond to your inquiries, provide support, and improve our customer service. We may keep a record of such communications (and our responses) for internal training or quality assurance.
● Sensitive Personal Data: In general, we do not actively collect any sensitive personal information about you unless it is voluntarily provided by you for a specific purpose. “Sensitive” data may include things like social security numbers, health
or medical information, precise geolocation, racial or ethnic origin, biometric identifiers, etc. Our website and services are not intended to collect such data. If you attend an event and have specific health or accessibility requirements, you may
choose to provide that information to us so we can accommodate you, but we will only use it for that purpose (and such information will be handled with extra care and deleted when no longer needed). We will obtain your explicit consent if we ever need to collect sensitive personal data for any reason. Information We Collect Automatically (Analytics & Cookies) Like many websites, we automatically collect certain information about your device and usage of our site through cookies, log files,
and other tracking technologies. This Usage Data is generally non-personal (it does not directly identify you) and is used for operational and analytical purposes. It may include:
● Technical Identifiers: Your device’s IP address, device type, browser type and version, operating system, and other technical information when you access our site. We collect this to maintain the security of the website, diagnose server problems, and ensure our site displays correctly on different devices.
● Usage Information: Details of how you interact with our site, such as the pages or products you view, the links you click, the time and date of your visits, the amount of time spent on each page, and the referring URL (the page you came from).
This information helps us understand which content is most popular or useful, so we can improve our website and services. We typically analyze this data in aggregate (e.g., overall site traffic trends) and do not use it to profile individual users for marketing.
● Cookies and Similar Technologies: We use cookies (small text files stored on your browser) and similar tracking technologies (such as web beacons or pixels) to collect and store some of the above information. For example, we may
use cookies to remember your site preferences (so you don’t have to re-enter information each time), keep you logged in to your account, or to provide a smoother browsing experience. We also use cookies and third-party scripts for analytics (described below). For detailed information on our use of cookies, see Cookies and Tracking Technologies in Section 3 below.
● Analytics Data: We use third-party analytics tools (such as Google Analytics or similar services) to collect information about site traffic and interactions. These analytics services use cookies and device identifiers to gather usage data (e.g. what pages you visit and for how long, how you found our site, and general information about your location (city/region) based on your IP). This information is provided to us in aggregate form (e.g., total number of visitors, overall demographic trends) and helps us measure performance and improve our content and layout. Google Analytics: If we use Google
Analytics, Google may process certain data as an independent controller in accordance with its privacy policy. You can opt-out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on. We do not allow Google Analytics
to use or share our analytics data for their own purposes (like ad personalization) without your consent. How we use automatically collected data: Generally, information collected automatically is used to maintain and improve the website (e.g., monitoring for outages or debugging issues), to understand user behaviorand preferences in order to enhance our content and services, and to ensure security (for example, we may use IP addresses to detect and block malicious activity like hacking attempts or excessive spam). We may also use some automatically collected data to personalize your experience (for
instance, remembering your language or region). This data is not used to identify you as an individual unless combined with personal information you provide (for example, linking analytics data to a user account for internal analysis, which we would only do
in compliance with law and if necessary).
2. Cookies and Tracking Technologies
We use cookies and similar tracking technologies on our website to provide core functionality, enhance user experience, and gather analytics information:
● What Cookies Are: Cookies are small text files placed on your device by websites you visit. They are widely used to make websites work efficiently and to provide information to site owners. We also may use related technologies like web beacons (tiny graphics embedded in pages or emails) and local storage.
● How We Use Cookies: We use cookies for several purposes:
● Necessary Cookies: These cookies are essential for the operation of our site and enable core functionality (for example, keeping you logged into your account, remembering items in your shopping cart, or enabling you to move between pages without re-entering information). The site cannot function properly without these cookies, and they do not require consent.
● Preferences Cookies: These remember your choices (such as language or region, or whether you dismissed a pop-up) to provide a more personalized experience.
● Analytics Cookies: These cookies (including third-party analytics cookies) collect information about how visitors use our site, so we can understand performance and improve features. For instance, they allow us to recognize and count the number of visitors and see how visitors move around the site.
● Marketing/Tracking Cookies: Currently, we do not use any advertising cookies or trackers for targeted advertising on our site. If this changes in the future, we will update this policy and obtain any necessary consents.
● Third-Party Cookies: Some content or features on our site may be provided by third parties, which could set their own cookies. For example, if we embed a video from YouTube or a feed from social media (see Embedded Content below),
those platforms may set cookies to track video views or interactions. Also, our analytics providers set cookies as described. We do not control third-party cookies, but you can manage them as described below.
● Cookie Consent and Control: When you first visit our site, you may see a cookie notice or banner (especially if you are in a region like the EU/EEA where showing a cookie consent banner is required). By using our site, you consent to the placement of cookies as described (except to the extent consent is explicitly required and withheld). You can manage or disable cookies at any time through your browser settings. Most web browsers allow you to refuse new cookies, delete existing cookies, or notify you when new cookies are set. However, please note that if you disable or reject cookies, some
features of our site (such as retaining your login or preferences or completing a purchase) may not function properly. For more information about cookies and how to manage them, you can visit websites like AllAboutCookies.org.
● Do Not Track: Some browsers offer a “Do Not Track” (DNT) setting that allows you to signal your privacy preferences.
Currently, there is no uniform standard for how DNT signals are interpreted, and our site does not respond to DNT browser signals in any particular way. However, we treat all users’ data in accordance with this Privacy Policy and provide you the choices described herein (such as the ability to opt out of analytics or marketing communications).
3. Embedded Content and Links to Other Websites
Our website may include embedded content (for example, videos, images, articles, social media feeds) from other websites, as well as links to third-party websites or services. Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website directly. This means that if we embed a YouTube video, an Instagram feed, or any third-party content on our site, those external websites may collect data about you through their own cookies or tracking technologies, may monitor your interaction with the embedded content, and, if you are logged into their service (such as your Google/YouTube or Instagram account), may combine that interaction with other data they hold about you.We do not control the data collection of these third-party sites. For example, if we embed a fitness video from YouTube, Google’s YouTube may collect
usage data according to their own privacy policies. Similarly, clicking a link to an external site (for instance, a sponsor’s website or an affiliated service) will take you to a site governed by that party’s privacy policy. We encourage you to review the privacy
policies of any third-party websites or services before interacting with them or providing any personal information. We are not responsible for the privacy practices or content of external sites. If you have concerns about how third-party content handles
your data, consider adjusting your browser settings to block third-party cookies or using browser extensions that enhance privacy.
4. How We Share Your Data
We do not sell your personal information to third parties. We also do not share your personal information with third parties for their own direct marketing purposes unless you have explicitly consented to such sharing. However, we do share certain data with third
parties in the following circumstances, as necessary to run our business and provide services to you, all in accordance with this
Privacy Policy:
● Service Providers and Business Partners: We employ trusted third-party companies and individuals to perform functions on our behalf. These service providers may have access to personal information as needed to perform their functions, but they are contractually obligated to handle it securely and only for the purposes we authorize. Examples
include:
● Payment Processors: to securely process credit card transactions and payments (e.g., payment gateways like Stripe, PayPal, or similar). Your payment details go directly to them and are subject to their security and privacy policies.
● Email Service Providers: to help us send out newsletters or transactional emails (for instance, an email platform that manages our mailing list and newsletter distribution).
● Analytics/Tech Partners: to provide analytics or site functionality (for example, Google Analytics as mentioned, or web hosting services that inevitably process data like IP addresses to serve the site).
● Event Management Partners: if an event is run in partnership or if we use a third-party ticketing platform to register attendees, those platforms will receive the data you submit for ticketing. We will let you know at registration if a third-party platform is being used (you may see their privacy policy linked in the registration form).
● Shipping and Fulfillment: if you order physical goods, we may share your shipping address and contact info with postal or courier services to deliver your order, or with a fulfillment partner that sends out merchandise.
● Backup and Cloud Storage Services: we may use secure cloud storage or backup services to store data, which means your information could be on their servers, but always in compliance with our security requirements.
● We limit the personal information provided to these service providers to the minimum necessary for them to perform their work, and we require them to protect it and not use it for any unrelated purpose.
● Affiliates and Related Organizations: If Wolf Back On Track, Inc. has affiliate companies, subsidiaries, or is part of a larger group, we may share information within our corporate family in accordance with this policy (for example, if we have a sister brand or project that is closely integrated, your data might be shared with them to streamline services). Any such affiliate would be under the same privacy obligations. (As of the date of this policy, Wolf Back On Track does not have any parent or subsidiary companies outside its own operations, but if that changes, we will update this section.)
● Event Sponsors or Co-Hosts: For specific events (like a summit with multiple sponsors/vendors), and only if you opt-in or as permitted by law, we may share attendee contact information with the event’s sponsors, vendors, or co-hosts. For
example, if Vendor Village Summit attendees explicitly consent to share their email with the event sponsors to receive a discount or more information, we will transfer that information accordingly. If no such consent is given, we will not share your personal details with sponsors for their own use. We may, however, share aggregated, anonymized insights (e.g., total headcount or demographic breakdown) with sponsors for event evaluation.
● Legal Compliance and Protection: We may disclose your personal information when required to do so by law or in good faith belief that such action is necessary to: (i) comply with a legal obligation, court order, or regulatory request (subpoena, etc.); (ii) enforce our Terms of Service or other agreements; (iii) respond to claims that any content violates the rights of third parties; (iv) respond to your requests for customer service; or (v) protect the rights, property, or personal safety of Wolf Back On Track, our users, our employees, or the public. This could include exchanging information with other companies and organizations for fraud protection or credit risk reduction.
● Business Transfers: If Wolf Back On Track, Inc. is involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your information may be transferred to a successor or affiliate as part of that transaction along with other assets. Should such a
transfer occur, the successor entity’s use of your personal information will still be subject to this Privacy Policy (unless you are notified otherwise). We will inform you of any such change in ownership or control of your personal information either on our website or via email. Other than the cases above, Wolf Back On Track will not share, rent, sell, or disclose your personal information to third parties without obtaining your consent.
5. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or to comply with legal, accounting, or reporting requirements. In general:
● Account Information: If you have an account with us, we retain your account data until you delete your account or request us to do so. If you choose to close your account, we will delete or anonymize your personal information associated with your account within a reasonable time after your request, except for any data we are required to retain for
legal or legitimate business purposes (for example, records of transactions linked to the account may be kept for financial reporting, auditing, or dispute resolution).
● Newsletter Data: We retain your email address and any subscription preferences for as long as you remain subscribed to our mailing list. If you unsubscribe from marketing emails, we will remove you from the list promptly, though we may keep a record of your request to ensure we honor it going forward. (Also, note that if you are a customer who made a purchase, we may still send you non-marketing communications, such as receipts or service-related notices, regardless of newsletter subscription status, as those are transactional.)
● Transaction and Purchase Records: We keep records of purchases and transactions for the period required by tax and financial laws, which is generally at least 7 years in many jurisdictions. This includes invoices, receipts, and any communications related to the sale. After this period, or once the data is no longer needed, we may either delete it or anonymize it for analytical purposes.
● Event Attendance Information: Data collected for event registration and attendance is kept for as long as needed to administer the event and any post-event activities (e.g., sending out certificates of attendance, gathering feedback, or handling disputes). We may retain a list of attendees and contact info to inform you of future related events, but you will have the opportunity to opt-out of such communications. If you request that we delete your event data after the event, we will do so, provided we do not need to retain it for legal reasons (for instance, if the event required signing a waiver, we might need to keep that record).
● Comments and User Content: Comments left on the site and associated metadata are generally retained indefinitely, as they form part of the content of our site (for example, user comments on articles remain visible unless we remove them). This allows us to display discussion history and recognize and approve any follow-up comments automatically instead of holding them in a moderation queue. If you wish to have a comment or content you posted removed, you can contact us to request deletion (we will delete it from our live site, though note that we cannot remove content that has been captured
by third-party archives or copied by other users). In some cases, if your posted content violated our terms, we may retain a record of it internally even after removal for evidentiary purposes.
● Analytics Data: Analytics and log data is typically aggregated and anonymized over time. Raw logs that contain IP addresses are usually rotated or deleted within a short period (often 30-90 days) unless needed for security analysis. Aggregated analytic reports may be stored longer (to compare traffic year-to-year, etc.), but those reports do not contain
personal data.
● Backup Copies: We maintain regular backups of our website and databases for disaster recovery purposes. These backups are securely stored and are retained for a limited time (typically overwritten periodically). If data is removed from our live systems (due to a deletion request or in the normal course of retention expiration), it may remain in encrypted backups for a short period until those backups are cycled out. We will continue to protect any such retained data in backups and will delete or overwrite it in accordance with our backup rotation schedule. Please note: if you have requested deletion of your data, we will treat it as deleted in our active systems and will not use it, but complete removal from backup systems might not be immediate; however, we have processes to ensure that deleted data is not restored from backups unintentionally and is eliminated as backups update. After the applicable retention period, we will either delete your personal information securely or anonymize it (so that it can no longer be associated with you) for statistical analysis or other legitimate business purposes.
6. Data Security and Protection Measures
We take the security of your personal information seriously and have implemented technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. These measures include:
● Encryption: Our website is secured via industry-standard encryption. Any sensitive information (such as login credentials or payment details) that is transmitted to us is protected by SSL/TLS encryption in transit. This means when you enter information on our site, it’s encrypted before being sent over the Internet. Additionally, we employ encryption or hashing for certain data at rest (for example, passwords are stored in hashed form, and any payment tokens or keys are stored securely).
● Access Controls: Personal information collected by us is stored on secure servers. We limit access to personal data to employees, contractors, and agents who need to know that information in order to operate, develop, or improve our services. These authorized personnel are bound by confidentiality obligations. Administrative access to systems holding personal data is restricted to authorized personnel and protected by strong authentication (such as multi-factor authentication) where possible.
● Firewalls and Monitoring: We use firewalls and intrusion detection/prevention systems on our network to guard against external attacks. Our hosting environment is monitored for potential vulnerabilities or breaches. We also keep our website platform, plugins, and software up to date to protect against security exploits.
● Backup and Recovery: As mentioned, we perform regular data backups and have a disaster recovery plan in place. This helps ensure that in the event of a system failure or security incident, we can recover data and resume operations. Our backup storage is encrypted and stored separately. Contingency Measures:In case of a data breach or any security incident affecting your personal information, we have an incident response plan that includes notifying affected users and regulators as required by law, and taking steps to mitigate any harm.
● Payment Security: Any payment transactions are processed through PCI-DSS compliant payment processors. We do not handle or store sensitive payment card details on our own servers. Our e-commerce platform adheres to security best practices to ensure transaction information is protected. While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security of your data. You should also take care with how you handle and disclose your personal information. Always use strong, unique passwords for site accounts and do not share your password with others. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel your account has been compromised), please Contact Us immediately so we can assist.
7. International Data Transfers
Wolf Back On Track is headquartered in the United States, and the majority of our website’s infrastructure is located in the U.S. However, we have users and event participants from around the world. When you use our site or services from outside the U.S., your personal information will likely be transferred to and processed in the United States (or other countries where our service providers are located or have servers). These countries may not have the same level of data protection laws as your home
jurisdiction.If you are located in the European Economic Area (EEA), United Kingdom, or another region with data protection laws that require legal justification for transferring personal data, we ensure that appropriate safeguards are in place to comply with such
laws. This may include:
● Relying on the European Commission’s Standard Contractual Clauses (SCCs) or other approved contract terms to ensure that your personal data receives an adequate level of protection in the destination country.
● Ensuring our service providers are certified under frameworks like the EU-U.S. Data Privacy Framework (if applicable) or have binding corporate rules in place, or
● Obtaining your explicit consent for certain cross-border transfers when required.
By using our site or submitting your information to us, you consent to the transfer, storage, and processingof your information in the United States and in any other country where we or our third-party service providers operate. We will take all steps reasonably
necessary to ensure your data is treated securely and in accordance with this Privacy Policy wherever it is processed.If you have questions about our international data practices, please contact us. European and UK users have the right to request details on the
safeguards we use for international transfers (see Your Rights below).
8. Your Privacy Rights and Choices
You have certain rights and choices regarding your personal information. These rights may vary depending on your location and the applicable privacy laws. Wolf Back On Track is committed to honoring the rights of users as required by law, including the GDPR for
EU/UK users and the CCPA for California residents, as well as other applicable regulations. Below, we outline key rights and how you can exercise them:
8.1 Rights of Individuals in the European Economic Area (EEA), United
Kingdom, and Similar Jurisdictions (GDPR) If you are in the EEA, UK, or another jurisdiction with similar data protection laws, you have the following data subject rights under
the GDPR (General Data Protection Regulation) and equivalent laws:
● Right to Be Informed: You have the right to be informed about the collection and use of your personal data. This Privacy Policy is intended to provide you with that information. We aim for transparency in how we handle your data.
● Right of Access: You have the right to request a copy of the personal data we hold about you, as well as information on how we process it. This is commonly known as a “Data Subject Access Request.” Upon verification of your identity, we will provide you with a copy of your data in a common format, free of charge (except as permitted by law for repetitive or excessive requests).
● Right to Rectification: If any personal information we have about you is inaccurate or incomplete, you have the right to request that we correct or update it. You can also correct certain information yourself by logging into your account (for example, you can update your profile info or email on your account settings page).
● Right to Erasure: Also known as the “right to be forgotten,” this right allows you to request deletion of your personal data. You may request that we erase the personal information we hold about you if it is no longer necessary for the purpose it was collected, or if you have withdrawn your consent (where applicable), or if you object to processing and we have no overriding legitimate grounds to continue, or if we unlawfully processed your data, or to comply with a legal obligation. Note that this right is not absolute – sometimes we must retain certain data to comply with laws or to establish/exercise
legal claims. But we will honor this right to the fullest extent required.
● Right to Restrict Processing: You have the right to request that we limit the processing of your personal data in certain circumstances (for example, while we are verifying the accuracy of data you contested, or if processing is unlawful and you prefer restriction over deletion). When processing is restricted, we can still store your data but not use it further until the restriction is lifted.
● Right to Data Portability: You have the right to obtain the personal data you provided to us in a structured, commonly used, and machine-readable format, and you have the right to transmit that data to another controller (for example, to another service provider), where technically feasible. This right applies when the processing is based on your consent or a contract and is carried out by automated means.
● Right to Object: You have the right to object to our processing of your personal data in certain situations. Specifically, you can object to processing based on legitimate interests (including profiling based on those interests) and to processing for direct marketing purposes. If you object to direct marketing, we will stop sending you marketing communications. If you object to processing based on our legitimate interests, we will evaluate whether our interests in continuing processing outweigh your privacy rights, and either cease or justify our processing accordingly.
● Right to Withdraw Consent: Where we rely on your consent to process personal data (for example, for sending newsletters or certain cookies), you have the right to withdraw that consent at any time. Withdrawing consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, and it will not affect processing of your personal data conducted in reliance on lawful processing grounds other than consent (e.g., fulfilling a contract or complying with a legal obligation).
● Right to Lodge a Complaint: If you believe we have infringed your data protection rights, you have the right to lodge a complaint with a supervisory authority in your country of residence, place of work, or where the alleged infringement occurred. For example, in the UK you would contact the Information Commissioner’s Office (ICO), and in EU countries
you would contact your national Data Protection Authority. We would, however, appreciate the chance to address your concerns directly before you do this, so we encourage you to contact us first. To exercise any of your GDPR rights, please reach out to us via the contact information provided in the Contact Us section. We may need to verify your identity before fulfilling certain requests (to ensure we don’t disclose data to the wrong person). We will respond to your request within the time frames required by law (generally within one month, extendable in certain cases). There is no fee for these requests in most cases; however, if a request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse to act on it as permitted by law.
8.2 Rights of California Residents (CCPA/CPRA) If you are a resident of California, you have specific privacy rights under the California Consumer Privacy Act (CCPA), as amended
by the California Privacy Rights Act (CPRA). These rights (subject to certain exceptions) include:
● Right to Know (Access): You have the right to request that we disclose the categories of personal information we have collected about you, the categories of sources of that information, the business or commercial purpose for collecting (or selling/shareing) it, the categories of third parties with whom we share personal information, and the specific pieces of personal information we have collected about you in the past 12 months.
● Right to Delete: You have the right to request that we delete any personal information about you that we have collected from you and retained, subject to certain exceptions (for example, if the information is necessary to complete a transaction you requested, to detect security incidents, to comply with a legal obligation, etc.). If you ask us to delete your data, we will also direct any service providers that received your data to delete it, where required by law.
● Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you. Upon verification of the validity of the correction request, we will use commercially reasonable efforts to correct the information as you direct.
● Right to Opt-Out of Sale or Sharing: The CCPA gives consumers the right to opt out of the “sale” of their personal information (and from the “sharing” of personal information for cross-context behavioral advertising). Sale is defined broadly in the law, and sharing refers to providing personal info to third parties for targeted advertising purposes. We do
not sell personal information, and we do not share your personal information for targeted advertising. Therefore, we do not provide a “Do Not Sell or Share My Personal Information” link at this time, because we don’t engage in those practices. In the event we ever plan to sell or share personal data in a way that triggers this requirement, we will update our practices and provide appropriate notice and opt-out mechanisms.
● Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. This means we will not deny you our services, charge you a different price, or provide a different level or quality of service just because you exercised your privacy rights. (Note: If you ask us to delete data that is necessary to provide a service, we
may not be able to continue providing that service – for example, deleting your account data may mean you cannot log in – but that’s a consequence of the deletion, not an intended discriminatory action.)
● Sensitive Personal Information: If we ever collect categories of data considered “sensitive personal information” under California law (e.g. precise geolocation, race/ethnicity, health information, etc.), California residents may have the right to
limit use or disclosure of that information to only what’s necessary to perform the services or provide the goods. We do not currently collect or process sensitive personal information for purposes beyond what is allowed, but should that change, we will honor the applicable rights. Submitting CCPA Requests: You (or an authorized agent acting on your behalf) can submit a verifiable request to exercise your California privacy rights by contacting us through the methods listed in Contact Usbelow. Please indicate that you are making a “CCPA Request” and specify which right you seek to exercise (access, deletion, correction, etc.). We will need to verify your identity (or authority of your agent) before processing the request, which may involve asking you to provide certain information to match against our records. We will respond to verifiable requests within the timeframe required by law (generally within 45 days, with the possibility of a 45-day extension when necessary). We will confirm receipt of your request within 10 business days and let you know if we need additional information to verify or process it.For requests to know or delete, we are required to verify a consumer’s identity to a “reasonable degree of certainty” (or “high degree” for sensitive requests). This may mean we’ll ask you to provide
identifying details (such as contact info or recent transaction details) that we can match with information we have on file.If you have any questions about your California privacy rights or need assistance, please contact us. For more information about CCPA, you
may also visit the California Attorney General’s website. 8.3 Other Jurisdictions
Residents of certain other states or countries may have additional rights under local laws (for example, some U.S. states have new privacy laws effective in 2023-2025, such as in Colorado, Virginia, Connecticut, Utah, etc., which provide rights similar to the
CCPA/GDPR; and countries like Canada, Australia, Brazil, etc. have their own rights). Wolf Back On Track’s policy is to respect and comply with the privacy laws applicable to us. If you are located in a jurisdiction not explicitly mentioned above but you have a legal
right to request access, correction, or deletion of your data, or to opt out of certain processing, we will accommodate your request to the extent required by applicable law. Simply reach out to us to exercise your rights. 8.4 Managing Your Information and Preferences In addition to formal privacy rights, we strive to give you practical ways to manage your information:
● If you have an account, you can log in and update your profile information or change settings.
● You may opt out of our newsletter or marketing emails at any time by using the unsubscribe link or contacting us. (Note: We may still send you transactional emails, like order confirmations or responses to inquiries.)
● You can disable cookies or use privacy-focused browser extensions if you want to limit tracking (see Cookies section above for consequences of doing so).
● If at any time you wish to deactivate or delete your account (or any specific piece of information), please contact us and we will guide you through the process, or do it for you if you’re unable to via the site.
9. Event Photography, Media Consent, and Publicity
Photographs and Videos at Events We often document our events (such as the Vendor Village Summit and other Wolf Back On Track gatherings) with photography and
videography. By attending our events, you acknowledge and agree that photographs or videos of the event may be taken, and that your likeness may appear in some of these photos or videos.We may use these event photos/videos for legitimate
purposes, including in Wolf Back On Track's promotional materials, social media accounts, website content, or future event advertising. For example, we might post a recap video of a summit that features shots of the audience, or upload an album of event
photos to our site or Facebook page.We strive to respect attendees’ privacy and comfort. If you do not wish to be photographed or filmed, please inform us or our event staff before or during the event. We will make reasonable efforts to accommodate such
requests (for instance, by seating you in an area less likely to appear on camera, or by honoring requests from our photographers/videographers to avoid capturing you). However, please understand that in large public events we cannot always
guarantee you will not be incidentally included in crowd shots.If you see your image in any photo or video on our website or materials and would prefer it be removed, you have the right to request removal. Contact us with the details (and if possible, the
specific photo/video in question), and we will promptly review and remove the content if feasible. We will honor legitimate requests to the best of our ability, while balancing other rights (for example, we cannot retroactively retract printed materials or completely
remove your presence from a group photo without cropping others out, but we can remove or edit online images under our control). Contributors and Media Uploads As mentioned in Information We Collect, if you contribute content to us (such as submitting a testimonial, providing a guest blog post, or sharing media for us to use), we will only use that content in line with the purpose for which you provided it. By contributing
content, you give us consent to use and publish it. If you include personal data in that content (for example, a photo of yourself or a caption with your name), you are consenting to our processing of that personal data by publishing the content. We may also adapt
or edit the content as needed for presentation (while trying to maintain your intended message). If at any point you wish to revoke that consent (for example, you want us to take down your testimonial), please notify us, and we will remove the contributed content
from public view, unless we have a compelling reason or legal obligation to retain it.Please note that any public content you share (whether it’s a comment, a forum post, an image in a public gallery, etc.) can be seen by others. Once publicly posted, we cannot prevent third parties from sharing or reusing that content. So, even if we remove it upon request, we cannot guarantee it has been completely erased from the internet if others have copied or shared it. Exercise discretion and caution when deciding to share personal information or media publicly.
10. Children’s Privacy
Our website and services are not intended for children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are under 13, please do not use our site or provide any information to us. In the event we learn that
we have inadvertently collected personal data from a child under 13 without parental consent, we will take steps to delete that information as soon as possible.For teens between 13 and 16 years old (or a higher age threshold if your jurisdiction requires
parental consent for processing personal data of minors), if we offer any services usable by minors, we will seek the authorization of a parent or legal guardian before collecting personal information, where required by law (such as under the GDPR or certain U.S.
state laws). Parents or guardians should contact us immediately if they discover that a minor in their care has provided us with personal information without consent, so we can delete it.Parents and guardians are encouraged to supervise their children’s online
activities and educate them about safe practices. If you have questions about our children’s data practices, please contact us.
11. Changes to This Privacy Policy
We may update or modify this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational, legal, or regulatory reasons. When we make changes, we will post the updated policy on this page and
update the “Last Updated” date at the top. If the changes are significant, we may also provide a more prominent notice (such as adding a statement on our homepage or sending you an email notification, if we have your email).We encourage you to review this
Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website or services after any modifications to this Policy constitutes acceptance of those changes. If you do not agree with any updates
to the Privacy Policy, you should stop using our services and you may request that we remove your personal data as outlined above.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal information, please do not hesitate to contact us. We are here to help and will respond as promptly as possible.Contact Information:
● Email: privacy@wolfbackontrack.com
● Mailing Address: Wolf Back On Track, Inc.
Attn: Privacy Officer 7901 4th St N, Suite 300 St. Petersburg, FL 33702 United States
● Contact Form: You may also reach us through the contact form on our website (if available) by visiting wolfbackontrack.com/contact and submitting your inquiry.
We appreciate your trust in Wolf Back On Track. Your privacy is important to us, and we are committed to safeguarding your personal information. Thank you for taking the time to read our Privacy Policy.
- Choosing a selection results in a full page refresh.