Introduction

Big Moose Chemical ("we," "us," "our," or "Company") is committed to protecting your privacy and being transparent about how we collect, use, and process your personal information. This Privacy Policy explains our data practices and complies with GDPR (General Data Protection Regulation), CCPA (California Consumer Privacy Act), and other applicable privacy laws.

Information We Collect

We collect personal information in the following ways:

• Contact Forms: Name, email, phone, company name, location, product interests, and any additional details you provide
• Cookies & Tracking: We use essential cookies (required for site function) and analytics cookies. We prominently disclose all tracking and obtain consent where required
• Usage Data: IP address, device type, browser information, pages visited, time spent, and referring URL for analytics and security
• Communications: Any information in emails or correspondence with our team

Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

• Consent: When you fill out our forms or subscribe to our mailing list
• Legitimate Interests: To improve our website, security, and service delivery
• Legal Obligation: To comply with law enforcement requests and applicable regulations
• Contract Performance: To fulfill business inquiries and provide requested information

How We Use Your Information

We use collected information to:

• Send launch notifications and service updates (with your consent)
• Respond to inquiries and provide customer support
• Analyze website usage to improve our services
• Prevent fraud and enhance security
• Comply with legal obligations
• Conduct marketing activities (only with consent)

Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Marketing contact lists are retained until you unsubscribe. Website analytics data is typically retained for 26 months. You can request deletion of your data at any time through our data subject request form.

Data Security

We implement industry-standard technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction, including:

• HTTPS encryption for all data transmission
• Secure data storage with access controls
• Regular security audits and updates
• Limited access to personal data (need-to-know basis)

However, no method of transmission over the internet is completely secure. We are not liable for unauthorized access due to circumstances beyond our reasonable control.

Your Privacy Rights

GDPR Rights (EU Residents)

If you are a resident of the European Union, you have the following rights:

• Right to Access: Request a copy of personal data we hold about you
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data ("Right to be Forgotten")
• Right to Restrict Processing: Limit how we process your data
• Right to Data Portability: Receive your data in a portable format to transfer elsewhere
• Right to Object: Opt-out of certain processing activities, including marketing
• Right to Withdraw Consent: Withdraw consent at any time without affecting past processing
• Right to Lodge a Complaint: File a complaint with your local data protection authority

CCPA Rights (California Residents)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with the following rights:

• Right to Know: Request what personal information we collect, use, and share about you
• Right to Delete: Request deletion of personal information we collected from you
• Right to Opt-Out: Direct us not to "sell" or "share" your personal information (we do not currently sell consumer data)
• Right to Correct: Request correction of inaccurate personal information
• Right to Non-Discrimination: You will not face discrimination for exercising your CCPA rights
• Authorized Agent: You may designate an authorized agent to make requests on your behalf

How to Exercise Your Rights

To exercise any of these rights, please fill out our Data Subject Request Form or contact us directly:

• Email: [email protected]
• Phone: (704) 689-3916
• Mail: Elkin, North Carolina

We will respond to your request within 30 days (45 days under GDPR if permitted). We may request additional information to verify your identity before processing sensitive requests.

Cookies & Tracking Technologies

We use the following types of cookies:

• Essential Cookies: Required for site functionality (cannot be disabled and are always set)
• Analytics Cookies: Track site usage to improve performance (consent-based; you can opt-out via our cookie banner)
• Third-Party Services: Cloudflare, Turnstile, and other service providers may set cookies

Essential cookies are necessary for the website to function properly and cannot be disabled. You can control analytics cookies by clicking the "Manage Cookies" link in the footer to revisit your preferences, or through your browser settings.

Third-Party Services & Data Sharing

We use the following third-party services that may process your data:

• Cloudflare: Security and CDN services
• Email Service Providers: For sending notifications (data processing agreements in place)
• Analytics Tools: To understand website usage patterns

We have Data Processing Agreements in place with all third-party processors. We do not sell your personal information to third parties. We only share data with service providers necessary to operate our business, and only to the extent required.

International Data Transfers

If you are located outside the United States and access our services, your data may be transferred to and stored in the United States. By using our services, you consent to such transfer. We implement safeguards including Standard Contractual Clauses (SCCs) where necessary for GDPR compliance.

Children's Privacy

We do not intentionally collect personal information from individuals under 18 years of age. Our services are directed to business customers. If we become aware that we've collected data from a minor without parental consent, we will delete it promptly.

Data Protection Officer & Contact

For privacy-related questions or to exercise your rights:

• Email: [email protected]
• Phone: (704) 689-3916
• Address: Elkin, North Carolina
• Data Request Form: Submit a Data Request

California Specific Disclosures (CCPA)

Do Not Sell or Share My Personal Information: We do not currently sell or share your personal information for cross-context behavioral advertising. You have the right to opt-out if this practice changes in the future.

Sensitive Personal Information: We minimize collection of sensitive data (SSN, financial, health, biometric information). We only use your data for the purposes you authorize.

Changes to This Policy

We may update this Privacy Policy periodically to reflect legal changes, service updates, or other factors. We will notify you of material changes by posting the updated policy here and updating the "Last Updated" date. Your continued use of our services constitutes acceptance of the updated policy.

Additional Resources

• GDPR Information (European Commission)
• CCPA Information (California Attorney General)
• Submit a Data Request