Privacy Policy

Last Updated: April 8, 2026

1. INTRODUCTION

Fanrock, Inc. (“Fanrock,” “Company,” “we,” “us,” “our”) respects your privacy and is committed to protecting it through our compliance with this Privacy Policy (“Policy”). This Policy describes the types of information we may collect from you or that you may provide when you visit the website fanrock.com (the “Site”) and our practices for collecting, using, maintaining, protecting, and disclosing that information.

This Policy applies to information we collect on the Site. It does not apply to information collected by: (a) us offline or through any other means, including on any other website operated by Fanrock or its subsidiaries; (b) any third party, including through any application or content that may link to or be accessible from the Site; or (c) any subsidiary brand website operated by Fanrock, each of which maintains its own separate privacy policy.

Please read this Policy carefully to understand our policies and practices regarding your information. If you do not agree with our policies and practices, your choice is to not use the Site. By accessing or using the Site, you agree to this Privacy Policy.

2. INFORMATION WE COLLECT

2.1 Information Collected Automatically

When you access the Site, we may automatically collect certain information about your device and your visit, including:

Device and Browser Information:

Usage Information:

2.2 Information You Provide Voluntarily

If you contact us via email or any contact mechanism on the Site, you may voluntarily provide us with:

2.3 Information We Do NOT Collect

The Site does not:

3. COOKIES AND TRACKING TECHNOLOGIES

3.1 Types of Technologies Used

We use the following categories of cookies and tracking technologies on the Site:

Strictly Necessary Cookies: Essential for the Site to function properly. These cannot be disabled.

Analytics Cookies: We use Google Analytics (or similar analytics services) to collect anonymized, aggregate information about how visitors use the Site. This helps us improve the Site’s performance and user experience. Analytics data may include pages visited, session duration, bounce rate, and general geographic region.

3.2 Google Analytics

We use Google Analytics, a web analytics service provided by Google LLC (“Google”). Google Analytics uses cookies to help us analyze how visitors use the Site. The information generated by the cookie about your use of the Site is generally transmitted to and stored on Google’s servers in the United States.

Google may use this information to evaluate your use of the Site, compile reports on website activity, and provide other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law or where such third parties process the information on Google’s behalf.

Google Analytics Opt-Out: You may prevent the collection and use of data generated by Google Analytics cookies by downloading and installing the Google Analytics Opt-out Browser Add-on, available at: https://tools.google.com/dlpage/gaoptout

For more information about Google’s privacy practices, visit: https://policies.google.com/privacy

3.3 Managing Cookies

Most web browsers allow you to control cookies through their settings. You may set your browser to refuse all or some browser cookies or to alert you when cookies are being sent. If you disable or refuse cookies, some parts of the Site may become inaccessible or not function properly.

3.4 Do Not Track and Global Privacy Control Signals

Some browsers include a “Do Not Track” (“DNT”) feature that signals to websites that you do not want your online activity tracked. Because there is no uniform standard for interpreting DNT signals, the Site does not currently respond to DNT browser signals or headers.

Global Privacy Control (GPC): We recognize and honor Global Privacy Control (GPC) signals as a valid opt-out request under the California Consumer Privacy Act (CCPA), the Colorado Privacy Act (CPA), the Connecticut Data Privacy Act (CTDPA), and other applicable state privacy laws. When we detect a GPC signal from your browser, we will treat it as a request to opt out of the “sharing” of your personal information for cross-context behavioral advertising. You can learn more about GPC at https://globalprivacycontrol.org.

3.5 Technologies We Do NOT Use

For the avoidance of doubt, the Site does not employ: session replay or screen recording software; identity resolution services (such as Retention.com, FullStory, or similar tools); browser fingerprinting or device fingerprinting techniques; cross-device tracking; pixel tracking or advertising pixels (such as Meta Pixel, Google Ads, or similar); or any tracking technology beyond the analytics cookies expressly described in this Section 3.

4. HOW WE USE YOUR INFORMATION

We use the information we collect for the following purposes:

(a) Site Operation and Improvement: To present the Site and its contents to you, maintain and improve the Site’s functionality, and ensure the Site operates securely and reliably;

(b) Analytics and Performance: To understand how visitors interact with the Site, identify usage trends, and improve the user experience;

(c) Communication: To respond to inquiries or requests you send us;

(d) Security: To detect, investigate, and prevent fraudulent transactions, unauthorized access, and other illegal activities, and to protect the rights and property of Fanrock and others;

(e) Legal Compliance: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests;

(f) Legal Protection: To enforce our Terms of Service, protect our operations, and protect the rights, privacy, safety, or property of Fanrock, our affiliates, you, or others; and

(g) Business Operations: For any other purpose with your consent or as otherwise described to you at the time of collection.

5. HOW WE SHARE YOUR INFORMATION

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We may share information we collect in the following limited circumstances:

5.1 Service Providers

We may share information with third-party service providers who perform services on our behalf, such as web hosting, analytics, email delivery, and IT support. These service providers are contractually obligated to use your information only as necessary to provide services to us and are required to maintain the confidentiality and security of your information.

We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to: (a) comply with a legal obligation, court order, subpoena, or legal process; (b) protect and defend the rights or property of Fanrock; (c) prevent or investigate possible wrongdoing in connection with the Site; (d) protect the personal safety of users of the Site or the public; or (e) protect against legal liability.

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, dissolution, sale of all or a portion of our assets, or similar corporate transaction, your information may be transferred as part of that transaction. We will notify you via a prominent notice on our Site of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.

5.4 Aggregate and De-Identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for any purpose. Such information is not personal information.

We may share your personal information for any other purpose disclosed by us when you provide the information or with your consent.

6. DATA RETENTION

We retain the information we collect for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Analytics data is retained in accordance with our analytics provider’s standard retention periods. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the information, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process the information, whether we can achieve those purposes through other means, and applicable legal requirements.

7. DATA SECURITY

We implement commercially reasonable administrative, technical, and physical security measures designed to protect the information we collect against unauthorized access, alteration, disclosure, or destruction. These measures include encryption of data in transit (TLS/SSL), access controls, and regular security assessments.

However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially reasonable means to protect your information, we cannot guarantee its absolute security. You acknowledge and accept that any transmission of information to us is at your own risk.

8. YOUR RIGHTS AND CHOICES

8.1 Access and Correction

You may request access to the personal information we hold about you or request that we correct any inaccurate information by contacting us at [email protected].

8.2 Deletion

You may request that we delete your personal information by contacting us at [email protected]. We will comply with such requests unless we are required to retain the information by law or have a legitimate business need to do so.

You can control cookies through your browser settings as described in Section 3.3.

8.4 Marketing Communications

If you have provided your email address and receive marketing communications from us, you may opt out by following the unsubscribe instructions included in each marketing email or by contacting us at [email protected].

9. STATE-SPECIFIC PRIVACY RIGHTS

9.1 California Residents — CCPA/CPRA

If you are a California resident, the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (collectively, “CCPA”), grants you additional rights regarding your personal information.

Categories of Personal Information Collected: In the preceding twelve (12) months, we may have collected the following categories of personal information as defined by the CCPA: Identifiers (e.g., IP address, email address if you contact us); Internet or other electronic network activity information (e.g., browsing history on the Site, interactions with the Site); and Geolocation data (approximate location derived from IP address).

Sale and Sharing of Personal Information: We do not “sell” personal information as that term is defined under the CCPA. The use of analytics cookies on the Site may constitute “sharing” of personal information for cross-context behavioral advertising under the CCPA. You may opt out of this sharing by managing your cookie preferences or by using the Google Analytics opt-out tools described in Section 3.2.

Your CCPA Rights:

Exercising Your Rights: To exercise your CCPA rights, you may submit a verifiable consumer request by emailing [email protected]. We will verify your identity before processing your request and will respond within forty-five (45) days. You may also designate an authorized agent to make a request on your behalf.

Sensitive Personal Information: We do not collect sensitive personal information as defined under the CCPA. You have the right to limit the use and disclosure of sensitive personal information; however, as we do not collect such information, this right is not applicable to our processing activities.

California “Shine the Light” (Civil Code §1798.83): California residents may request information regarding the disclosure of personal information to third parties for their direct marketing purposes. As stated in Section 5, we do not share personal information with third parties for their direct marketing purposes. If you have questions regarding this policy, please contact [email protected].

9.2 Virginia Residents — VCDPA

If you are a Virginia resident, the Virginia Consumer Data Protection Act (“VCDPA”) provides you with the rights to: access your personal data; correct inaccuracies; delete your personal data; obtain a copy of your personal data in a portable format; and opt out of the processing of your personal data for purposes of targeted advertising, sale, or profiling. To exercise these rights, contact [email protected]. If we decline your request, you may appeal by contacting us at the same address.

9.3 Colorado Residents — CPA

Colorado residents have similar rights under the Colorado Privacy Act (“CPA”), including the rights to access, correct, delete, and obtain a portable copy of personal data, as well as the right to opt out of targeted advertising, sales, and profiling. To exercise these rights, contact [email protected]. If we decline your request, you may appeal by contacting us at [email protected] with the subject line “Privacy Rights Appeal — Colorado.”

9.4 Connecticut Residents — CTDPA

Connecticut residents have rights under the Connecticut Data Privacy Act (“CTDPA”) to access, correct, delete, and obtain a portable copy of personal data, and to opt out of targeted advertising, sales, and profiling. To exercise these rights, contact [email protected]. If we decline your request, you may appeal by contacting us at [email protected] with the subject line “Privacy Rights Appeal — Connecticut.”

9.5 Additional State Laws

Residents of other states with comprehensive privacy laws (including but not limited to Utah, Texas, Oregon, Montana, Iowa, Indiana, Tennessee, Florida, and other states that enact such laws after the date of this Policy) may have similar rights. We are committed to complying with applicable state privacy laws. If you are a resident of a state with a comprehensive privacy law, you may exercise your rights by contacting [email protected].

10. INTERNATIONAL USERS

The Site is operated in the United States. If you are located outside the United States and choose to provide information to us, please be aware that we transfer the data to the United States and process it there. Such transfers are carried out using appropriate safeguards, including Standard Contractual Clauses approved by the European Commission (where applicable) and reliance on our analytics service providers’ own data transfer mechanisms. For Google Analytics specifically, Google LLC has implemented Standard Contractual Clauses for data transfers from the EEA/UK to the United States. By using the Site, you acknowledge this transfer and the safeguards described herein.

10.1 European Economic Area (EEA), United Kingdom, and Switzerland

If you are located in the EEA, UK, or Switzerland, we process your personal data on the following legal bases under the General Data Protection Regulation (“GDPR”) or equivalent legislation:

Your GDPR Rights: Subject to applicable law, you have the right to: access your personal data; rectify inaccurate data; erase your data (“right to be forgotten”); restrict processing; data portability; object to processing; and withdraw consent. To exercise these rights, contact [email protected]. You also have the right to lodge a complaint with your local data protection authority.

11. CHILDREN’S PRIVACY

The Site is not intended for children under the age of thirteen (13) (or sixteen (16) where applicable under local law). We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13 without verification of parental consent, we will delete that information promptly. If you believe we might have any information from or about a child under 13, please contact us at [email protected].

The Site may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We strongly advise you to review the privacy policy of every site you visit.

13. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will post the updated Policy on this page with a revised “Last Updated” date. If we make material changes to how we treat your personal information, we will notify you through a notice on the Site’s home page. The date the Privacy Policy was last revised is identified at the top of the page. You are responsible for periodically visiting the Site and this Privacy Policy to check for any changes. Your continued use of the Site after the posting of changes constitutes your acceptance of such changes.

14. DATA PROCESSING FOR SUBSIDIARY OPERATIONS

Fanrock, Inc. is a parent company that owns and operates subsidiary consumer brands. This Privacy Policy governs only the information collected through fanrock.com. Each subsidiary brand maintains its own privacy policy governing its respective website and services. To the extent Fanrock processes personal data on behalf of its subsidiaries, such processing is governed by the applicable subsidiary’s privacy policy and any relevant data processing agreements.

15. CONTACT INFORMATION

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Fanrock, Inc.

Email: [email protected]

Website: fanrock.com

For California-specific privacy inquiries: [email protected]

For accessibility-related requests: [email protected]

By using the Site, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.