We are HIPAA-compliant, GDPR-compliant, and CCPA-compliant. In general, the Legacy team believes deeply that privacy is a fundamental human right, and we make every attempt to anonymize and encrypt your data wherever possible. You can learn more below about your rights as a consumer under CCPA and GDPR, and we will facilitate this process to the greatest extent possible.

We clearly outline in this Privacy Policy exactly what data we may be collecting, and seek to provide as many examples as possible for you to understand how we may use your data.

What Data We Collect, Why, and How it’s Shared

Personal Data or Personal Information (PI) is information that relates to you, your household, or one of your devices.

Legacy collects personal information about you from various sources to provide our service and to manage our site. Some data is provided by you. Other data is collected automatically.

Contact Information

We collect your contact information (name, email, phone number, address) when you purchase our service or contact us by email or through our website. We use the information you provide to respond to your questions, to provide our service, and to provide customer support. We also send emails to market our own services.

We share this information for business purposes with third parties and service providers in the following categories:

  • Core providers to deliver our service (such as a identity verification and medical providers)

  • Sales and marketing tools (for sending marketing emails)

  • Internal business operations (such as email providers and data storage)

  • Customer support (such as our phone provider)

Payment Information

When you pay for our service, you directly provide payment information to a payment processor who processes the transaction on our behalf.

Commercial Information

Commercial information consists of your buying habits and purchases. When you purchase our products, we retain records of your purchasing history through our payment processor. This information is also shared with third parties and service providers in the following categories:

  • Internal business operations (such as our email provider and contract storage)

  • Sales and marketing tools (such as referral marketing tracking)

Electronic Activity, Device Information, and IP Information

We collect IP address and electronic activity (i.e. how you use our website or application), along with information about your device type and operating system when you visit our website and purchase our products. This information is collected on our behalf by third parties that provide services for:

  • Sales and marketing tools (such as our client relationship management [CRM] system and digital advertising publishers)

  • Data analytics (to understand how you use our website)

  • Core providers to deliver our service (such as identity verification)

We use this information to operate and improve our website, products, and marketing efforts.

Behavioral Profile

We use electronic activity data to determine what service you’re most interested in. This information is a feature for our CRM.

Biometric Information, Medical Data, and Protected Class

We collect biometric and medical information in order to provide services such as sperm analysis, freezing, and storage. During this process, we necessarily collect protected class information (such as biological sex).

This information is shared with core providers critical to delivering our service, such as medical clinics.

Audio Information and Visual Information We collect audio information if you leave a voicemail and visual information if have a visible profile picture uploaded through email. This information is disclosed to service providers, such as our email and phone providers.

Data Retention

We retain all customer records such as purchases and support tickets indefinitely. Requests to fulfill rights as described below will be retained for at least 24 months.

Children’s Privacy

We will never knowingly collect the personal information of children under 18. Our website is not intended or developed for children or minors.

Cookie Policy

This website uses cookies to recognize you when you visit our website.

Cookies are small text files that are stored on your computer. They are designed to hold a small amount of data specific to a website or server that can be accessed either by the website or your computer. We use cookies to capture information described in the What Data We Collect, Why, How It’s Shared section, such as IP address and electronic activity data.

We use this information to remember your site preferences. Additionally, we use this data to analyze site traffic, provide targeted advertising, and to understand the effectiveness of our marketing efforts.

GDPR Notice

This section of the Privacy Policy applies only if you use our website or Services covered by this Privacy Policy from a country that is a Member State of the European Union, and supplements the information in this Privacy Policy.

Legal Basis for Data Processing

We process Personal Data for the purposes set out in this Privacy Policy:

  • As necessary for the performance of the contract between you and Legacy (for example, to provide you with the Services you request and to identify and authenticate you so you may use the website)

  • As necessary to comply with legal requirements (for example, to comply with regional rules and best practices for the distribution of donor sperm);

  • As necessary for our legitimate interests (for example, to manage our relationship with you and to improve the website and our Services)

  • Based on consent by our customers (for example, to communicate with you about our products and services and provide you with marketing information), which may subsequently be withdrawn at any time (by emailing info@givelegacy.com) without affecting the lawfulness of processing based on consent before its withdrawal.

Your Rights

You may be entitled, in accordance with applicable law, to object to or request the restriction of processing of your Personal Data, and to request access to, rectification, erasure and portability of your own Personal Data. Requests should be submitted by contacting us by emailing privacy@givelegacy.com.

Information for California Residents

This section provides additional information for residents of California under the California Consumer Privacy Act (CCPA). The terms used in this section have the same meaning as in the CCPA. This section does not apply to information that is not considered "personal information," such as anonymous, deidentified, or aggregated information, nor does it apply to publicly available information as defined in the CCPA.

Personal Information Collected in the Last 12 Months

We collect the following categories of personal information about Clients:

  • Personal Identifiers, including name, alias, email address, postal address, and telephone number
  • Online Identifiers, including unique personal identifier, device identifier, IP address, customer number, and unique pseudonym
  • Internet Activity, including interactions with websites, apps or ads and email open and click-through rates
  • Commercial and Financial Information, including purchases, other purchasing behavior, credit card or debit card number, bank or other financial account number, and signature
  • Geolocation data
  • Physical characteristics or descriptions
  • Characteristics of Protected Classifications, including age, sex or gender, race or color, medical condition, and disability
  • Medical information
  • Non-public education records

We collect the following categories of personal information about Website Visitors:

  • Personal Identifiers, including name, email address, postal address, and telephone number
  • Online Identifiers, including unique personal identifier, device identifier, and IP address
  • Internet Activity, including interactions with websites, apps or ads

Sources of Personal Information

We collect personal information from the following sources:

  • You (the consumer)
  • Ad Networks
  • Data Analytics Providers
  • Other consumers (e.g., referrals)

Business or Commercial Purposes for Collecting Information

We collect personal information for the following business purposes:

  • Provide Products or Services
  • Advertising and Marketing
  • Error Management
  • Quality Assurance
  • Security
  • Internal Research
  • Audit Current Interactions

We also "share" and "sell" (as defined in the CCPA) personal information for commercial purposes, including to advertise and market our products.

Information Disclosed for Business or Commercial Purposes in the Last 12 Months, and Categories of Parties Disclosed To

Clients

Personal Information Disclosed Category of Party
Personal Identifiers, including name, alias, email address, postal address, and telephone numberBusiness Operations Tool, Data Analytics Providers, Payment Processors, Shipping Services, Service Providers
Online Identifiers, including unique personal identifier, device identifier, IP address, customer number, and unique pseudonymAd Networks, Business Operations Tool, Data Analytics Providers, Shipping Services, Service Providers
Internet Activity, including interactions with websites, apps or ads and email open and click-through ratesAd Networks, Data Analytics Providers, Service Providers
Commercial and Financial Information, including purchases, other purchasing behavior, credit card or debit card number, bank or other financial account number, and signatureAd Networks, Business Operations Tool, Data Analytics Providers, Payment Processors, Service Providers
Geolocation dataAd Networks, Data Analytics Providers, Service Providers
Physical characteristics or descriptionsService Providers
Characteristics of Protected Classifications, including age, sex or gender, race or color, medical condition, and disabilityBusiness Operations Tool, Shipping Services, Service Providers
Medical informationBusiness Operations Tool, Service Providers
Non-public education recordsService Providers

Website Visitors

Personal Information Disclosed Category of Party
Personal Identifiers, including name, email address, postal address, and telephone numberShipping Services, Service Providers
Online Identifiers, including unique personal identifier, device identifier, and IP addressAd Networks, Data Analytics Providers, Service Providers
Internet Activity, including interactions with websites, apps or adsAd Networks, Data Analytics Providers, Service Providers

Information We Sell and Categories of Third Parties Sold To

We do not "sell" personal information as commonly understood (exchanging information for money). However, for business and commercial purposes we share certain personal information with third party vendors, as disclosed below. This sharing of information may be considered a "sale" under the broad definition of selling in the CCPA. You may opt-out here.

Clients

Personal Information Sold Category of Party
Personal Identifiers, including name and email addressData Analytics Providers
Online Identifiers, including unique personal identifier, device identifier, and IP addressData Analytics Providers
Internet Activity, including interactions with websites, apps or adsData Analytics Providers
Commercial and Financial Information, including purchases and other purchasing behaviorData Analytics Providers
Geolocation dataData Analytics Providers

Website Visitors

Personal Information Sold Category of Party
Online Identifiers, including unique personal identifier, device identifier, and IP addressData Analytics Providers
Internet Activity, including interactions with websites, apps or adsData Analytics Providers

Information We Share and Categories of Third Parties Shared With

We “share” certain personal information with third party ad networks for purposes of behavioral advertising, as disclosed below. This allows us to show you ads that are more relevant to you. You may opt-out of sharing here.

Clients

Personal Information Shared Category of Party
Online Identifiers, including unique personal identifier, device identifier, and IP addressAd Networks
Internet Activity, including interactions with websites, apps or adsAd Networks
Commercial and Financial Information, including purchases and other purchasing behaviorAd Networks
Geolocation dataAd Networks

Website Visitors

Personal Information Shared Category of Party
Online Identifiers, including unique personal identifier, device identifier, and IP addressAd Networks
Internet Activity, including interactions with websites, apps or adsAd Networks

CCPA Rights

Your CCPA rights are described below. You can make a Request to Know or a Request to Delete under the CCPA by submitting a Privacy Request at the top of this page, or by clicking here. Alternatively, you can make a request by calling us toll-free at (855) 553-0222.

Right to Know

You have the right to request to know the following about the personal information we have collected about you in the past 12 months:

  • the categories and specific pieces of personal information we have collected about you
  • the categories of sources from which we collect personal information about you
  • the business and commercial purposes for which we collect personal information
  • the categories of third parties with whom we share the information
  • the categories of personal information about you that we disclosed for a business purpose, and the categories of third parties to whom we disclosed that information for a business purpose

If you make a Request to Know more than twice in a 12-month period, we may require you to pay a small fee for this service.

Right to Delete

You have the right to request that we delete any personal information about you that you have provided to us. We will permanently delete from our records any personal information that is not necessary for our business operations and direct our service providers to do the same.

We consider information to be necessary for our business operations if it is used to:

  • Complete an obligation to you that you have requested
  • Detect and resolve issues related to security or functionality
  • Comply with legal obligations

Right to Non-Discrimination

If you exercise your CCPA consumer rights:

  • We will not deny goods or services to you
  • We will not charge you different prices or rates for goods or services, including through the use of discounts or other benefits or penalties
  • We will not provide a different level or quality of goods or services to you

Right to Opt-Out

You have the right to opt-out of any selling and sharing of your personal information.

You may exercise your right to opt-out here.

Request Verification

Before we can respond to any CCPA requests, we will need to verify that you are the consumer who is the subject of the CCPA request. Verification is important for preventing fraudulent requests and identity theft.

The verification process depends on which type of request you make and how you make it. Typically, identity verification will require you to confirm certain information about yourself based on information we have already collected. For example, we will ask you to verify that you have access to the email address we have on file for you. If we cannot verify your identity based on our records, we cannot fulfill your CCPA request.

For a request that seeks specific personal information, we ask that you sign a declaration stating that you are the consumer whose personal information is the subject of the request, as required by the CCPA.

In some cases, we may have no reasonable method by which we can verify a consumer's identity. For example:

  • If a consumer submits a request but we have not collected any personal information about that consumer, we cannot verify the request.
  • If the only data we have collected about a consumer is gathered through website cookies (i.e., the consumer visited our website but had no other interaction with us), we are unable to reasonably associate a requester with any data collected; therefore, we cannot verify the request.

Authorized Agent

A California resident's authorized agent may submit a Request to Know or a Request to Delete under the CCPA by emailing us at privacy@givelegacy.com. Requests submitted by an authorized agent will still require verification of the person who is the subject of the request in accordance with the process described above. We will also ask for proof that the person who is the subject of the request authorized an agent to submit a privacy request on their behalf. An authorized agent that has power of attorney pursuant to California Probate Code section 4121 to 4130 must submit proof of statutory power of attorney, but consumer verification is not required.

If you have trouble accessing this notice, please contact us at privacy@givelegacy.com.

Contact Us

If you have any privacy-related questions, please send them to privacy@givelegacy.com.