Our Privacy Policy
FORESTER INFORMATION TECHNOLOGY CORP. (hereinafter referred to as "we", "our" or "the Company") recognizes that your privacy is of utmost importance to you. This Privacy Policy is designed to clearly explain how we collect, use, store, share and protect your personal information when you access and use our official website (hereinafter referred to as the "Website") and related services, while informing you of your privacy rights and how to exercise them.
Please carefully read and understand this Privacy Policy before using our Website and services. By continuing to access or use our services, you fully understand and agree to our processing of your personal information in accordance with this Policy. If you have any questions, comments or suggestions regarding this Policy, you may contact us through the contact information provided at the end of this Policy.
1. Scope of Application
This Privacy Policy applies to all users (including individual users and corporate users) who access, browse and use our Website and related services. Regardless of whether you are located within or outside the United States, this Policy shall be binding on you as long as you use our services.
For residents of the European Economic Area (EEA) and the State of California, this Policy specifically incorporates content compliant with the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) and subsequent amendments (such as the CPRA), to protect your legally entitled special privacy rights and interests.
Please note that this Policy only applies to information collected and processed by us, and does not apply to any third-party websites, services or applications. Our Website may contain links to third-party platforms. We shall not be liable for any information processing activities of third parties, and it is recommended that you carefully read the third party's privacy policy before providing personal information.
2. Collection and Acquisition of Information
We only collect and acquire your information to the extent necessary to achieve the purposes stated in this Policy, mainly including three categories: information you actively provide, information we automatically collect, and information legally obtained from third parties.
2.1 Information You Actively Provide
When you interact with us, you may need to actively provide personal information to enable us to provide corresponding services to you:
1. Account Registration and Management Information: If you choose to register a member account with us, we will collect your username, email address, password, contact phone number and other information for account creation, identity verification and account security management. If you log in using a third-party account (such as Google or Microsoft account), we will obtain basic information authorized by you to share from the third party (such as name and avatar), which is only used for account binding and login verification.
2. Business Consultation and Service Request Information: When you consult about business, apply for services or seek technical support through website forms, emails, online customer service, etc., you may provide your name, contact information, company name, business needs, problem descriptions and related screenshots, documents and other information to enable us to accurately understand and respond to your needs.
3. Feedback and Interaction Information: If you participate in our questionnaires, feedback, online activities, etc., we will collect the feedback content, questionnaire answers, activity participation information you provide to improve the quality of our products and services.
2.2 Information We Automatically Collect
When you access our Website, our servers will automatically record certain information through technical means. Such information usually does not directly identify individuals, but can be used to optimize user experience and ensure service security:
1. Device and Technical Information: Including the device model you use, operating system version, browser type and version, browser language, device identifiers (such as MAC address, collected only where legally permitted), IP address, internet service provider, network connection type (Wi-Fi, mobile data, etc.).
2. Access Behavior Information: Including the date and time of your access to the Website, the page content you browse, the links you click, the duration of your stay, access path, referring page and exit page, and other clickstream data. This information helps us analyze user behavior habits and optimize Website structure and content layout.
3. Information Collected Through Cookies and Similar Technologies: We use Cookies, Web Beacons, pixel tags and other technologies to collect information. Cookies are small text files stored on your device that help us identify your device, remember your preferences (such as language selection), track Website usage, and thus provide personalized services. You can disable or delete Cookies through browser settings, but this may cause some functions of the Website to not work properly and affect your access experience.
4. Server Log Information: We store your access records in server logs, including IP address, request time, requested resources (such as webpage URL, file name), server response status, etc., for Website operation and maintenance, security monitoring and fault diagnosis.
2.3 Information Obtained from Third Parties
To the extent permitted by law and with your authorization (if required), we may obtain relevant information about you from cooperating third parties, which is only used for purposes related to our services:
1. Information Shared by Partners: Obtain information from third parties such as advertising partners, data analysis service providers, and payment service providers, for example, advertising click behavior data provided by advertising partners (used to evaluate advertising effectiveness) and transaction verification information provided by payment service providers (used to confirm payment status).
2. Publicly Available Information: Collect information related to you from publicly available channels such as government public data, news reports, and public social media content within the scope permitted by law, for market analysis, brand protection and business compliance review.
3. Purposes of Information Use
We strictly use the collected information in accordance with the provisions of this Policy and relevant laws and regulations, mainly for the following purposes:
1. Provision and Maintenance of Services: To create and manage your account, respond to your consultations and service requests, provide technical support, deliver the products or services you apply for, and ensure the normal operation of the Website and services.
2. Optimization and Improvement of Services: By analyzing user behavior data and feedback information, understand your usage habits and needs, optimize Website design, improve service performance, develop new product functions, and provide you with a more tailored experience.
3. Security Assurance: To monitor and prevent security risks such as fraud, malicious attacks, and account theft, detect Website vulnerabilities, maintain the network security and data security of services, and protect the security of your account and personal information.
4. Marketing and Promotion: With your consent, send you marketing information related to our products and services, including product update notifications, promotional activity information, industry news, etc. You can unsubscribe from such information at any time in the manner we provide. At the same time, we may cooperate with third parties to carry out personalized advertising based on your interests and preferences, in compliance with the requirements of relevant laws and regulations on user privacy protection.
5. Legal Compliance and Rights Protection: Use your information when necessary to comply with applicable laws and regulations, respond to legal procedures such as court subpoenas and government investigations, enforce service terms, investigate potential violations, and protect the legitimate rights and interests, property or personal safety of us, you and the public.
6. Internal Management Purposes: For internal auditing, data analysis, market research, etc., to help us optimize business processes and improve operational efficiency. Such use will anonymize or de-identify the information to avoid identifying individuals.
4. Sharing and Disclosure of Information
We attach great importance to the security of your information and strictly control the scope of information sharing. Except for the following special circumstances, we will not disclose, sell, rent or transfer your personal information to any third party:
1. With Your Explicit Consent: Share information with designated third parties with your active authorization or consent, and the scope of sharing is limited to what is necessary to achieve the authorized purpose.
2. Sharing with Service Providers: To achieve the purposes stated in this Policy, we may share information with third-party partners that provide services such as website hosting, data storage, data analysis, email delivery, and payment processing. We will sign strict data processing agreements with partners, clarify the rights and obligations of both parties, require them to take adequate security measures to protect your information, and only use the information within the authorized scope for no other purposes.
3. Legal Requirements and Rights Protection: Disclose your information in accordance with the law when we believe it is necessary to comply with applicable laws and regulations, respond to legal procedures, enforce service terms, investigate violations, prevent security risks, or protect the legitimate rights and interests, property or personal safety of us, you and the public.
4. Business Transfer Scenarios: In the event of business transactions such as merger, acquisition, asset sale, restructuring, or liquidation of the Company, your personal information may be transferred to the transferee as part of the transaction assets. We will require the transferee to comply with this Privacy Policy or provide equally strict privacy protection measures, and promptly notify you before the transaction is completed (if it involves changes in the purpose or subject of information processing).
5. Sharing of Anonymized Information: We may share information that has been anonymized and de-identified (unable to identify individuals) with third parties for purposes such as market analysis and industry research. Such information sharing is not subject to the restrictions of this Policy.
5. Storage and Security of Information
5.1 Information Storage
1. Storage Location: We store your personal information on servers located within the United States. Some data may be stored on cloud servers of cooperating third parties in accordance with service needs (all located within the United States). If it involves transferring personal data of EEA residents to areas outside the European Union/European Economic Area, we will adopt cross-border data transfer safeguards compliant with GDPR requirements such as Standard Contractual Clauses (SCCs) to ensure compliant data processing.
2. Storage Period: We only retain your personal information for the shortest time necessary to achieve the purposes stated in this Policy, while complying with the mandatory requirements of applicable laws and regulations on data retention periods (such as tax, accounting, and auditing related legal provisions). When the information is no longer needed for the collection purpose and exceeds the statutory retention period, we will delete or anonymize your information through secure means (such as encrypted deletion, physical destruction) to ensure it cannot be recovered.
5.2 Security Protection Measures
We adopt a series of reasonable technical and organizational measures to protect your personal information from unauthorized access, use, disclosure, tampering, damage or loss:
1. Data Encryption: Adopt industry-standard encryption technologies (such as TLS/SSL encryption protocol) for sensitive information (such as passwords, payment information) during transmission and storage to ensure the security of data transmission and storage.
2. Access Control: Implement strict access control mechanisms, only authorize employees who need it for job responsibilities to access your personal information, assign different access permissions according to job requirements, and employees need to pass identity verification to access information.
3. Security Management: Regularly conduct security vulnerability scanning, detection and repair on the system, timely update security patches and anti-virus software to prevent malicious attacks and data leakage risks; formulate data breach emergency response plans. In the event of a data security incident, we will promptly take remedial measures and notify affected users and relevant regulatory authorities in accordance with legal requirements.
4. Employee Management: Conduct regular information security and privacy protection training for employees to strengthen their compliance awareness; sign confidentiality agreements with employees who have access to personal information, and take disciplinary actions against violations of the agreement, and pursue legal liabilities for serious cases.
Please note that no data transmission or storage method can guarantee 100% security. We make every effort to protect the security of your information, but we are not liable for information leakage risks caused by factors beyond our control such as force majeure, third-party attacks, and your own operational errors.
6. User's Privacy Rights
We protect your legally entitled rights to personal information, and you may exercise the following rights in the manner stated in this Policy:
1. Right of Access: You have the right to access the personal information we hold about you, including the purpose of collection, storage period, sharing objects, etc. You can view part of the information through the settings module after logging into your account. If you need to obtain complete information or a copy of the information, you may contact us to make a request.
2. Right of Correction: If you find that the personal information we hold about you is inaccurate or incomplete, you have the right to request us to correct or supplement it. You can modify part of the information by yourself through account settings. For information that cannot be modified by yourself, you may contact us to submit a correction request, and we will verify and process it in a timely manner.
3. Right to Erasure: Under circumstances specified by law (such as the information is no longer necessary for the collection purpose, you withdraw your consent and there is no other legal basis for processing), you have the right to request us to delete your personal information. We will process it as soon as possible after confirming that the deletion conditions are met, except for information that is required to be retained by laws and regulations.
4. Right to Restriction of Processing: In specific scenarios (such as you dispute the accuracy of the information and it is being verified, the processing behavior is illegal but you do not want to delete the information), you have the right to request us to restrict the processing of your personal information, and we will evaluate and implement it according to the specific situation.
5. Right to Data Portability (Applicable to EEA Residents): You have the right to obtain the personal information you provided to us in a structured, commonly used and machine-readable format, and to transmit it to another data controller if technically feasible, and we will provide assistance.
6. Right to Object: You have the right to object to our processing of your personal information based on legitimate interests (such as marketing, data analysis). If you raise an objection, we will stop the relevant processing unless we can prove that there are legitimate reasons that override your interests.
7. Right to Unsubscribe: You can unsubscribe from the marketing information we send at any time through the unsubscribe link in the marketing email, contacting us, etc. After unsubscribing, we will no longer send you such information.
When you exercise the above rights, we may require you to provide identity verification information to ensure the legality and security of the request. We will respond to your request within the time limit specified by law (usually no more than 30 working days). Complex requests may be appropriately extended, but we will promptly inform you of the progress.
7. Protection of Special Groups
We strictly comply with the Children's Online Privacy Protection Act (COPPA) and related regulations, and do not intentionally collect personal information from children under the age of 13 unless we obtain verifiable consent from their parents or guardians. If we discover that we have collected personal information from a child under the age of 13 without the consent of their parent/guardian, we will immediately take measures to delete the relevant information and notify the parent or guardian.
If you are a minor (under the age of 18), please obtain the consent of your parents or guardians before using our services and use them under their guidance. Parents or guardians may contact us through the contact information at the end of this Policy to inquire about, correct or delete the minor's personal information.
8. Special Rights for California Residents (CCPA/CPRA Related)
For residents of the State of California, in addition to the rights stated in Section 6 above, you also enjoy the following special rights:
1. Right to Know: You have the right to request us to disclose the categories, sources, purposes of use, sharing objects and purposes of sharing of your personal information collected in the past 12 months.
2. Right to Opt-Out of Sale: We do not currently sell your personal information (as defined by the CCPA). If future business model changes involve the sale of personal information, we will notify you in advance and provide a convenient opt-out mechanism, and you may refuse the sale of your information at any time.
3. Right to Non-Discrimination: You have the right not to be discriminated against for exercising the rights stipulated by the CCPA/CPRA, including unfair treatment in terms of price, service quality, product functions, etc. We will treat all users equally.
4. Right to Authorize an Agent: You may authorize an agent to exercise the rights stipulated by the CCPA/CPRA on your behalf. The agent must provide your authorization certificate and identity verification information when making a request, and we will verify and process it.
9. Special Rights for EEA Residents (GDPR Related)
For residents of the EEA, in addition to the rights stated in Section 6 above, you also enjoy the following special rights:
1. Right to Withdraw Consent: You may withdraw your consent to the processing of personal information at any time. The withdrawal of consent shall not affect the legality of processing carried out based on consent before the withdrawal.
2. Right to Lodge a Complaint: If you believe that our processing of your personal information violates the GDPR, you have the right to lodge a complaint with us or directly with the data protection authority of the member state where you reside.
3. Protection of Sensitive Personal Information: For sensitive personal information such as race, political opinions, religious beliefs, and health information, we only process it with your explicit consent or as permitted by law.
10. Changes to the Policy and Notification
We may revise or update this Privacy Policy based on factors such as business development, updates to laws and regulations, and technological progress. When significant changes are made to the Policy (such as substantive changes in the purpose of information collection, scope of use, and sharing rules), we will notify you through prominent methods such as announcements on the homepage of the Website and emails (sent to the email address you used for registration). The changes will take effect after the effective date specified in the notification.
By continuing to use our services after the changes to the Policy take effect, you agree to be bound by the revised Privacy Policy. We encourage you to visit this page regularly to review the latest content of the Privacy Policy.
Last Revised Date of This Policy: January 20, 2026
11. Contact Us
If you have any questions, comments, suggestions regarding this Privacy Policy, or wish to exercise your privacy rights or submit a complaint, you may contact us through the following methods:
Company Name: FORESTER INFORMATION TECHNOLOGY CORP.
Contact Email: [email protected]
Phone:(870) 781-7264
Mailing Address: 7344 Austin St APT 5V, Forest Hills, NY 11375 US