Last Updated: May 22, 2025

1. Introduction

Plus Ultra Solutions LLC (the “Company”, “we”, “us”) is a Sheridan, Wyoming, USA-based business that offers web and software services worldwide. We respect your privacy and are committed to protecting your personal information under applicable laws, including the EU General Data Protection Regulation (GDPR), California’s CCPA/CPRA, and other U.S. federal and state privacy laws. This Privacy Policy explains what information we collect, how we use and share it, and the rights and choices you have regarding your information. It applies to all users of our website and services.

2. Information We Collect

We collect information you provide or that is generated automatically during your use of our services:

  • Personal and Account Information: We collect personal identifiers you provide when creating an account or contacting us, such as your name, email address, billing address, and telephone number.
  • User Content: If you post comments, reviews or other content on our site, we collect that user-generated content and associated metadata (e.g., timestamps, profile ID).
  • Payment Information: For transactions, we collect payment data (e.g., credit card information) which is processed securely by our payment processor (Stripe). We do not store full credit card numbers on our servers.
  • Technical and Usage Data: We automatically collect data about how you use our services, such as IP address, device information (browser type, operating system), pages visited, links clicked, and time spent. These are considered usage data and may be treated as personal data if they identify you.
  • Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies to enable core site functions (e.g., login sessions) and to analyze and improve our services. Under the GDPR, information like cookie identifiers and IP addresses can qualify as personal data. (See Section 5 for details.)

3. How We Use Information

We use the collected information for legitimate business purposes, including:

  • Providing Services: To register and manage your account, process transactions, and deliver the products or services you request (e.g., setting up your account, confirming orders).
  • Communication: To send you important updates, security alerts, and administrative messages (e.g., service announcements, policy changes). With your consent, we may also send marketing emails about new products or promotions; you may opt out of these at any time.
  • Customer Support: To respond to inquiries and provide technical support and troubleshooting.
  • Analytics and Improvement: To analyze usage patterns and improve our website, products, and services. For example, we use tools like Google Analytics to understand how our site is used.
  • Security and Compliance: To detect, prevent, and mitigate fraud or illegal activities, enforce our terms of service, and comply with legal obligations (such as tax and accounting regulations).

4. Legal Bases for Processing (GDPR)

For users in the European Economic Area (EEA) and the UK, we must have a lawful basis under the GDPR to process personal data. We rely on the following legal bases:

  • Contractual Necessity: Processing that is necessary to perform our contract with you. For example, handling your payment and delivering the services you purchased.
  • Consent: Where required (e.g. non-essential cookies, marketing emails), we will obtain your consent before processing. You may withdraw consent at any time, and future processing will then be based on another lawful basis.
  • Legal Obligations: Processing required to comply with applicable laws. For instance, we retain financial records as required by tax law, and may process personal data in response to lawful government requests.
  • Legitimate Interests: We process data for our (or third parties’) legitimate interests, provided your rights do not override those interests. This includes improving our services, personalizing user experience, preventing fraud, and pursuing claims (e.g., enforcing contracts or intellectual property rights).

(We do not generally rely on “public task” or “vital interests” bases, as we are not a public authority or dealing with emergency situations.) These lawful bases correspond to Article 6 of the GDPR.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance and personalize your experience. Cookies are small files stored on your device that can be used to recognize your browser or device. Under data protection laws, cookies that can identify you are considered personal data. We use the following types of cookies:

  • Strictly Necessary Cookies: Essential for core functionality (e.g., maintaining your login session, shopping cart, or account security). These cookies do not require consent, but we explain their purpose.
  • Performance/Analytics Cookies: These collect information about how visitors use our site (e.g., pages visited, links clicked). Google Analytics is an example: it uses cookies to aggregate anonymized usage data (for example, the number of users on a page, click paths). This data helps us improve our site but cannot be used to identify you personally.
  • Functional/Preference Cookies: These remember choices you make (like display language or region) to improve your experience.
  • Marketing/Advertising Cookies: (If applicable) These track your activity across sites to deliver relevant ads or limit ad frequency. We may use third-party advertising networks; these networks collect data on users’ browsing.

You can manage cookie preferences through your browser settings (for example, blocking or deleting cookies). Please note that disabling certain cookies may affect website functionality.

6. Third-Party Services and Integrations

We partner with certain third-party services that may collect or process personal data on our behalf or jointly:

  • Stripe (Payment Processor): We use Stripe to handle payments. Stripe collects and processes payment information (like credit card data) and complies with strong data protection standards. For example, Stripe adheres to the EU-U.S. Data Privacy Framework and other international privacy frameworks. Any data you provide to Stripe is governed by Stripe’s privacy policy, and we do not store your full card details on our servers.
  • Google Analytics: As noted above, we use Google Analytics to track website usage. Google sets cookies on your device to collect anonymized data about your visit. Google’s privacy policies and data protection terms apply to this processing.
  • Other Services: We may also use third-party platforms (e.g., email marketing providers, cloud hosting, CRM tools) to support our business. These providers have access to certain user data only to perform services on our behalf and are obligated to keep it confidential. Each third-party has its own privacy policy, which we encourage you to review.

7. International Data Transfers

Because we operate globally and use service providers worldwide, your personal data may be transferred to, stored in, and processed in countries other than your own. For transfers of data from the European Economic Area or UK, we comply with GDPR requirements by using approved safeguards. EU law explicitly provides that transfers of personal data outside the EU/EEA are permitted only if adequate protections are in place, such as approved Standard Contractual Clauses (SCCs) or an adequacy decision. We utilize these mechanisms to ensure your data remains protected. For transfers to the United States, we rely on the EU-U.S. Data Privacy Framework (formerly Privacy Shield) and/or SCCs, as applicable. In all cases, we will implement reasonable technical and organizational measures to safeguard data in transit and at rest.

8. User Rights

You have various rights regarding your personal data, depending on the laws of your region:

  • GDPR Data Subject Rights: If you are in the EU/EEA or UK, you have rights under the GDPR, including: the right to be informed about processing, the right of access to your data, the right to rectification of inaccurate data, the right to erasure (“right to be forgotten”), the right to restriction of processing, the right to data portability, the right to object to certain processing (e.g. marketing), and the right not to be subject to fully automated decision-making. You can exercise these rights by contacting us (see Section 14) and we will respond as required by law (generally within one month).
  • California Privacy Rights (CCPA/CPRA): If you are a California resident, California law may grant you the right to: know what personal information we collect, use, share or sell about you; request deletion of your personal information (with some exceptions); correct inaccurate personal information; limit the use or disclosure of your “sensitive personal information”; and opt out of the sale or sharing of your personal information. The law also prohibits businesses from discriminating against you for exercising these rights. (We do not sell your personal information, but if we did, California residents would have a clear opt-out right.)
  • Other Jurisdictions: Residents of other U.S. states (such as Virginia, Colorado, etc.) may have similar rights to access, correct, delete or opt out of certain uses of their data under applicable state privacy laws. If you are in such a jurisdiction, please review the relevant state law or contact us for guidance.
  • Enforcement: If you believe your rights have been violated, you may file a complaint with your local data protection authority (for GDPR) or with the California Attorney General (for CCPA/CPRA), as applicable. We will assist in fulfilling our obligations to respect these rights.

To exercise your rights (such as accessing or deleting your data), please see Section 14 below for how to contact us. We may need to verify your identity before responding to certain requests.

9. Data Security

We implement reasonable and appropriate technical and organizational measures to protect personal data from unauthorized access, disclosure, alteration, and destruction. For example, data is stored on secure servers and transmitted over encrypted connections (TLS). Access to data is limited to authorized personnel and service providers with a need to know. While we strive to keep your information secure, no data transmission over the internet or method of storage is 100% secure. We cannot guarantee absolute security, but we regularly review our practices and monitor for vulnerabilities.

10. Retention of Data

We retain personal information only as long as necessary to fulfill the purposes for which it was collected, including to provide services, comply with legal obligations, resolve disputes, and enforce our agreements. For example, we may keep billing and transaction records for several years as required by tax or financial regulations. Once data is no longer needed, we securely delete or anonymize it. The retention period may vary depending on the type of data and legal requirements.

11. Children’s Privacy Disclaimer

Our services are not intended for children under the age of 13. As the U.S. Federal Trade Commission explains, the Children’s Online Privacy Protection Act (COPPA) applies only to websites and online services directed to children under 13. We do not knowingly collect or solicit personal information from anyone under 13. If we become aware that a child under 13 has provided us with personal data, we will promptly delete such information.

12. Your Choices and Controls

You have control over your personal data and how we communicate with you:

  • Account Information: You can review and update your account information at any time by logging into your account. You may also delete your account (see Contact Info below).
  • Email Communications: You can opt out of promotional emails by clicking the “unsubscribe” link in any such email or by contacting us. Please note that transactional or service-related messages (e.g. account notices, updates) are not subject to opt-out.
  • Cookies and Tracking: You can set your browser to refuse or delete cookies (e.g., via browser settings). A cookie consent banner (if enabled) may allow you to manage certain cookie categories. Disabling analytical or advertising cookies may affect some features of the site.
  • Do Not Sell / Share My Information: California residents may exercise their right to opt out of any sale or sharing of personal data. We do not currently sell personal data, but if we do in the future, we will provide a clear “Do Not Sell My Personal Information” link. You may also use the Global Privacy Control (GPC) or other opt-out tools recognized under California law to signal your preference, and we will honor it.
  • Withdrawal of Consent: Where processing is based on consent (such as for non-essential cookies or marketing), you may withdraw consent at any time. You can typically do this by adjusting your preferences (e.g., clicking “cookie settings” on our site) or unsubscribing from marketing.
  • Do Not Track: Our website does not currently honor browser “Do Not Track” signals, as there is no universally accepted standard for these requests.

13. Updates to This Policy

We may update this Privacy Policy from time to time (for example, to comply with new laws or policies). We will post the updated policy on our website with a new “Last Updated” date. If changes are material, we may notify you by email or a notice on our site before they take effect. We encourage you to review this Privacy Policy periodically for any updates.

14. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, you can contact our Privacy Officer:

Plus Ultra Solutions LLC
Attention: Privacy Officer
Sheridan, Wyoming, USA
Email: support@plusultras.org

When contacting us, please include sufficient information to enable us to identify you and your request. We will respond to your inquiries and requests as required by law.

15. Governing Law and Jurisdiction

This Privacy Policy is governed by and construed in accordance with the laws of the State of Wyoming, USA, without regard to its conflict of law provisions. You agree that any dispute arising under or in connection with this Privacy Policy will be resolved in the state or federal courts located in Wyoming, unless mandatory law in your jurisdiction requires otherwise. Nothing in this policy is intended to limit any individual’s rights under applicable local laws.