Privacy Policy

This Privacy Policy describes how your personal and business information is collected, used, and shared when you visit or make a transaction through https://ashlarsales.com/ (the “Site”) or use any of our Services provided by Vogueboard Inc.

1. Introduction

Ashlarsales is a B2B platform serving the construction industry. We understand that privacy and data security are critical concerns for businesses. This Privacy Policy applies to information we collect when you use our website, applications, or other online services (collectively, the “Services”), or when you otherwise interact with us.

Vogueboard Inc. (“we”, “us”, or “our”) respects your privacy and is committed to protecting the personal and business information you share with us. This policy explains our practices regarding the collection, use, and disclosure of your information.

2. Information We Collect

We collect several types of information from and about users of our Services:

2.1 Business Information

Company name, address, phone number, and website
Industry category and business type (manufacturer, distributor, contractor, etc.)
Tax identification numbers, business licenses, and other corporate documentation
Company credit information (for credit applications)
Transaction history and business relationships

2.2 Personal Information

Name, email address, job title, and business contact information of company representatives
User account credentials (username and password)
User preferences and account settings
Communications and correspondence with us

2.3 Device Information

When you visit the Site, we automatically collect certain information about your device, including:

Information about your web browser, IP address, time zone, and cookies
Pages or products viewed, referring websites, search terms, and interaction information
Device type, operating system, and mobile network information

We collect Device Information using the following technologies:

Cookies: Data files placed on your device that include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit https://www.allaboutcookies.org
Log files: Track actions on the Site, collecting data including IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps
Web beacons, tags, and pixels: Electronic files recording information about how you browse the Site
Local storage: Information stored locally on your device to enhance user experience

2.4 Transaction Information

When you conduct business through our platform, we collect information related to the transaction, including:

Products or services purchased, sold, or considered
Pricing, payment terms, and delivery information
Purchase orders, quotes, and other transaction documentation
Payment information (including credit card information when applicable)

3. How We Use Your Information

We use the information we collect to:

3.1 Provide and Improve our Services

Set up and maintain your account
Process transactions between buyers and sellers
Authenticate your identity and authorize access to our Services
Customize your experience based on preferences and usage patterns
Develop new products, services, and features
Analyze and improve the performance and functionality of our Services

3.2 Communication and Support

Respond to your inquiries, provide customer support, and address issues
Send administrative messages, updates, and security alerts
Contact you about your account or transactions
With your consent, send marketing communications about features, products, services, and events

3.3 Business Operations

Conduct data analysis, audits, and research
Monitor and analyze trends, usage, and activities
Verify compliance with our policies and terms of service
Protect against, identify, and prevent fraud and other criminal activity
Screen orders for potential risk and fraud (in particular, using IP addresses and payment information)
Process your payment information, arrange for shipping (if applicable), and provide you with invoices and/or order confirmations

3.4 Legal Compliance

Comply with legal obligations
Enforce our terms and conditions
Protect our rights, privacy, safety, or property
Respond to legal process, such as subpoenas or court orders

3.5 Account-Type Specific Processing

Different account types may involve specific data processing activities:

Manufacturer/Distributor Accounts: Processing product data, inventory levels, pricing structures, and transaction histories to facilitate sales and distribution
Contractor/Buyer Accounts: Analyzing purchase history and preferences to recommend relevant products and suppliers
Designer Accounts: Processing project data and product selections to facilitate submittals and specifications
Sales Representative Accounts: Processing customer relationship data and sales metrics to support commission tracking and territory management

4. Sharing Your Information

4.1 Business Partners and Platform Users

With other users of the platform as necessary to facilitate transactions and networking (e.g., sharing business contact information between potential buyers and sellers)
With service providers, contractors, and agents who perform services on our behalf
With integration partners when you connect their services to your Ashlarsales account

4.2 Service Provider Management

We carefully select and oversee third-party service providers who may have access to your information:

All service providers must adhere to contractual obligations regarding confidentiality, security, and data use limitations
We conduct security assessments of key service providers who process sensitive information
We maintain a list of all third-party service providers with access to personal information
We restrict service provider data use to only what is necessary to provide their contracted services

Service providers we may use include:

Cloud hosting and data storage providers
Payment processors and financial institutions
Customer relationship management systems
Analytics and business intelligence platforms
Marketing and communication services
IT and system security services

4.3 Analytics and Advertising

We share your Device Information with third parties to help us analyze how customers use the Site and to optimize our marketing efforts:

We use Google Analytics to help understand how our customers use the Site. You can read more about how Google uses your Personal Information here and opt out of Google Analytics here
We may use advertising partners to deliver relevant advertisements across the web based on your interests and behavior

4.4 Behavioral Advertising

As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.

You can opt out of targeted advertising by:

- FACEBOOK® – https://www.facebook.com/settings/?tab=ads
- GOOGLE® – https://www.google.com/settings/ads/anonymous
- BING® – https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads

Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: https://optout.aboutads.info/.

4.5 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

4.6 Business Transfers

If we are involved in a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.

4.7 With Your Consent

We may share your information with third parties when you have given us your consent to do so.

5. Data Retention

We will retain your information for as long as your account is active, as necessary to provide you with the Services, or as required to fulfill our legal obligations. When you place an order through the Site, we maintain your Transaction Information for our records unless and until you ask us to delete this information.

For business accounts, we typically retain data according to the following retention schedule:

Account Information: Maintained for the duration of your active account plus 3 years after account closure
Transaction Records: Retained for 7 years to comply with business record-keeping requirements and tax regulations
Communications: Retained for 3 years after the last communication
Payment Information: Retained for the period required by applicable financial regulations, typically 7 years
Logs and Usage Data: Retained for 2 years for security and audit purposes
Marketing Preferences: Maintained for the duration of your active account plus 1 year

Different retention periods may apply in certain circumstances, such as:

Ongoing disputes, legal proceedings, or investigations
Regulatory or contractual requirements that necessitate longer retention
Backup data, which may be retained for longer periods in accordance with our IT policies

We have established procedures for secure deletion or anonymization of data once retention periods expire. You may request deletion of your data before these periods expire, subject to our legal obligations to retain certain information.

6. Data Security

We implement appropriate technical and organizational security measures to protect the security of your information, in compliance with the Maryland Personal Information Protection Act (MPIPA), Md. Code Ann., Com. Law § 14-3501 et seq. These measures include:

Encryption of sensitive personal and business data both in transit and at rest
Multi-factor authentication for system access
Regular security assessments and penetration testing
Secure development practices and code reviews
Role-based access controls and least privilege principles
Physical security measures for our facilities
Regular data security training for all staff members
Incident response planning and testing
Vendor security assessments

We regularly review and update our security practices to adapt to evolving threats and technologies. While we implement these security measures, no electronic transmission or storage system is 100% secure. Therefore, we cannot guarantee the absolute security of your information.

In the event of a security breach that we reasonably believe has resulted in or will result in the unauthorized access to or acquisition of personal information, we will notify affected Maryland residents in accordance with MPIPA requirements. This notification will be made as expeditiously as practicable, but no later than 45 days after the discovery of the breach.

We maintain a comprehensive breach response plan in accordance with Maryland law to ensure prompt investigation, mitigation, and notification of any security incidents.

7. Your Rights and Choices

Depending on your location and applicable law, you may have certain rights regarding your personal information:

7.1 Account Information

You can review and change your account information by logging into your account settings.

7.2 Marketing Communications

You can opt out of marketing communications by:

Following the unsubscribe instructions in any marketing email we send
Adjusting your communication preferences in your account settings
Contacting us using the information in the “Contact Us” section

7.3 Cookies and Tracking Technologies

Most web browsers are set to accept cookies by default. You can usually choose to set your browser to remove or reject cookies. Please note that if you choose to remove or reject cookies, this could affect the availability and functionality of our Services.

For more information about cookies and how to disable them, you can visit https://www.allaboutcookies.org.

7.4 Do Not Track

Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.

7.5 Access, Correction, and Deletion

You may have the right to request access to, correction of, or deletion of your information. To make such requests, please contact us using the information in the “Contact Us” section.

7.6 Maryland-Specific Rights

For Maryland residents, in accordance with Maryland law:

You have the right to receive notice of a data breach involving your personal information
You can request information about our data collection and sharing practices by contacting our Privacy Officer
You have the right to expect that we will maintain reasonable security procedures in accordance with MPIPA
You can file a complaint with the Maryland Attorney General’s Office if you believe your privacy rights have been violated

We will not discriminate against you for exercising any of these rights.

8. International Data Transfers

Vogueboard Inc. is based in the United States. The Services are designed for users within the United States. If you are accessing our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located.

8.1 Interstate Data Transfers

As a platform operating throughout the United States, we may transfer your information across state lines during normal business operations. We comply with applicable state privacy laws and implement appropriate safeguards when transferring data between states with varying privacy requirements.

8.2 Data Transfer Safeguards

For any data transfers outside of the United States (including to service providers with international operations), we implement appropriate safeguards such as:

Standard contractual clauses approved by relevant authorities
Vendor assessments and data processing agreements
Technical measures including encryption and access controls
Regular compliance assessments

By using our Services, you consent to the transfer of information to countries outside your country of residence, which may have different data protection rules than those of your country.

9. Children’s Privacy

The Site is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at privacy@ashlarsales.com so that we can take appropriate action to remove such information.

10. Third-Party Links And Services

Our Services may contain links to third-party websites, applications, or services. We are not responsible for the privacy practices or the content of these third-party sites. We encourage you to review the privacy policies of any third-party services before providing any information to them.

11. Changes To This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. The revised policy will be posted on this page with an updated “Last Updated” date. We encourage you to check this page periodically for the latest information on our privacy practices.

If we make material changes to how we treat our users’ information, we will notify you through a notice on the Site or by email to the primary email address specified in your account at least 30 days before implementation of the changes, in accordance with Maryland’s consumer protection standards. Your continued use of the Services after we post any modifications to the Privacy Policy will constitute your acknowledgment of the modifications and your consent to the updated Privacy Policy.

12. State Privacy Rights

12.1 California Privacy Rights

If you are a California resident, California law may provide you with additional rights regarding our use of your personal information. To learn more about your California privacy rights, visit here.

12.2 Maryland Personal Information Protection Act

We comply with the Maryland Personal Information Protection Act (MPIPA), Md. Code Ann., Com. Law § 14-3501 et seq., which requires businesses to implement and maintain reasonable security procedures and practices to protect personal information from unauthorized access, use, modification, or disclosure.

In accordance with Maryland law, we:

Implement a comprehensive written information security program
Conduct regular risk assessments to identify reasonably foreseeable vulnerabilities
Encrypt sensitive personally identifiable information that we maintain
Train our staff on proper data handling and security procedures
Require service providers by contract to implement and maintain appropriate security measures

In the event of a security breach that we reasonably believe has resulted in or will result in the unauthorized acquisition of personal information that creates a likelihood of harm to Maryland residents, we will notify affected individuals in accordance with MPIPA requirements. This notification will be made as expeditiously as practicable, but no later than 45 days after the discovery of the breach.

The notification will include:

A description of the categories of information acquired
Our contact information
The toll-free numbers and addresses for the major consumer reporting agencies
The toll-free numbers, addresses, and websites for the FTC and the Office of the Attorney General of Maryland
Advice to remain vigilant by reviewing account statements and monitoring free credit reports

13. Business Data

Ashlarsales primarily processes business data to facilitate B2B transactions. While business data is generally not considered personal information under many privacy laws, we treat all data with appropriate security measures as outlined in this policy.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact our designated data privacy coordinator:

Privacy Officer, Ashlarsales

1110 Bonifant Street

Suite 450

Silver Spring, MD, 20910, United States

Email: privacy@ashlarsales.com

Phone: (202) 839-3353

15. Industry-Specific Privacy Considerations

15.1 Construction Industry Data

As a platform serving the building materials and construction industry, we process certain industry-specific information:

Project Data: Information about construction projects, including location, specifications, timelines, and budgets
Product Specifications: Detailed technical information about building materials and products
Building Codes and Compliance: Information related to regulatory compliance and building code requirements
Bidding and Pricing Information: Sensitive competitive data related to project bids and special pricing

We recognize the competitive sensitivity of such information and implement appropriate access controls and security measures to protect it.

15.2 Trade Secrets and Proprietary Information

We understand that users of our platform may share trade secrets or proprietary information related to construction techniques, custom products, or proprietary building systems. Such information receives enhanced protection through:

Strict access controls limiting visibility to authorized users only
Contractual obligations for confidentiality
Technical measures preventing unauthorized copying or distribution

15.3 Industry Standards Compliance

Our privacy and data security practices take into account relevant industry standards and best practices for the construction sector, including:

American Institute of Architects (AIA) documentation standards
Construction Specifications Institute (CSI) classification systems
Building information modeling (BIM) data exchange standards

16. Additional Data Rights And Choices

In addition to the rights described elsewhere in this Privacy Policy, depending on applicable law, you may have the following rights:

16.1 Data Portability

You may have the right to receive your personal information in a structured, commonly used, and machine-readable format, and to transmit that information to another controller.

16.2 Restriction of Processing

In certain circumstances, you may have the right to request that we restrict the processing of your personal information.

16.3 Objection to Processing

You may have the right to object to the processing of your personal information in certain circumstances, such as when the processing is based on our legitimate interests.

16.4 Withdrawal of Consent

Where we rely on your consent as the legal basis for processing your personal information, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the information provided in the “Contact Us” section.