Rob Rise LLC Privacy Policy

Notice at Collection (for California residents): We collect the categories of personal information listed below for the purposes described. We retain this information only as long as necessary for those purposes (or as required by law). We do not sell personal information for money. We may share certain identifiers with advertising and analytics partners for targeted advertising. You can opt out of such sharing at any time (see Your Privacy Choices below).

Categories of Information Collected:

• Identifiers: For example, name, email address, phone number, mailing address, IP address, and cookies or device identifiers.
• Customer Records: For example, project details and specifications, photos or videos you upload (e.g. of your site or project), communications with us, and invoice and transaction details.
• Commercial Information: For example, quotes you request, purchases and payments, and your service history with us.
• Internet/Network Activity: For example, pages you view on our site, the time you spend on our site, the links or referring URLs that brought you to our site, and your interactions with our website features.
• Approximate Geolocation: General location derived from your IP address (we do not intentionally collect precise GPS location).
• Audio/Visual Information: Any photos, videos, or audio recordings you provide to us for a project or service.
• Inferences: Preferences and insights we deduce about you (for example, style or finish preferences for a custom project) to better serve your needs.
• Sensitive Personal Information: We do not seek sensitive personal data. For example, payment card numbers are handled securely by our payment processors – we do not store your full card number. Please avoid sending us sensitive data (like government ID numbers, precise geolocation, health or biometric data) unless we explicitly request it for a necessary purpose.

Purposes of Use: We use personal information to provide quotes, schedule and manage projects, fabricate and install products, and deliver customer support. We also use it to send transactional communications (such as appointment reminders, project updates, and warranty or service notices). If you opt in, we may send marketing communications (promotions, newsletters, or updates), which you can unsubscribe from at any time. Additionally, we use data to improve site performance and our services, for analytics and advertising relevance, to detect and prevent fraud or abuse, and to comply with legal obligations (such as tax or record-keeping requirements).

Retention: We keep personal information only as long as needed for the purposes above (for example, for the duration of an active project and any applicable warranty period, plus any time required for legal, tax, or record-keeping obligations). After that, we delete or de-identify the information in accordance with our data retention policies and applicable law.

Sale/Sharing of Data: We do not sell your personal information. In some cases, we may share limited identifiers (such as cookies or device IDs) with advertising and analytics partners to improve our advertising (this may be considered “sharing” under California law). You can opt out of this at any time by contacting us or by using a Global Privacy Control signal (see Your Privacy Choices below). We do not knowingly sell or share the personal information of minors where prohibited by law.

1. Who We Are & Scope

Rob Rise LLC (referred to as “we,” “us,” or “our”) operates the Custom Metal AZ website and provides custom metal fabrication services. This Privacy Policy explains how we collect, use, share, and protect personal information across all the channels through which we operate – including our websites, online forms, email, text/SMS or MMS messages, phone calls, and in-person interactions. This Policy applies to both website visitors and customers of our projects/services, and it covers all brands and websites operated by Rob Rise LLC (including Custom Metal AZ).

Acceptance: By using our website or engaging with our services, you agree to the data practices described in this Privacy Policy. If you do not agree, please do not use our site or services.

2. Information We Collect

We collect several types of information depending on how you interact with us:

• Information You Provide to Us: This includes contact details (such as your name, email address, phone number, and mailing address) that you might provide when requesting a quote or consultation. It also includes project-specific information (for example, details about your project needs, measurements, or design preferences), any photos or videos of your space or project you upload, and your communication preferences (such as whether you wish to receive marketing updates). We may also collect signatures or approvals for work, and payment information necessary to process transactions (note: payments are handled through our third-party payment processors, so we do not store your full credit card numbers or sensitive financial account details).
• Information Collected Automatically: When you visit our website or use our online services, we automatically collect certain technical data. This includes details like your device type, browser type, operating system, and IP address. We also collect information about your usage of our site, such as the pages or products you view, the dates/times of your visits, the page that referred you to our site, and your interactions with our site (e.g., button clicks). We use cookies and similar tracking technologies to help gather this information (see Cookies & Tracking Technologies below for more details). This automatically collected data helps us understand how people use our site and enables us to improve the user experience.
• Information from Third Parties: In some cases, we may receive information about you from third-party sources. For example, if you found us through an advertising or lead generation platform, that platform might provide us with your contact information and the basics of your request. If you schedule appointments through a third-party scheduling tool or communicate with us via a messaging platform, those tools may send us your contact details and the content of those communications. We also receive transaction confirmations from our payment processors after you make a payment (for instance, confirmation of payment but not your full card details). If we collaborate with subcontractors or installation partners to complete your project, they might share relevant information with us (such as scheduling or project status updates) to ensure your project is completed seamlessly. Additionally, if you interact with us on social media or other platforms, we may receive information from those interactions as permitted by your settings on those platforms.

Note: We ask that you do not send us highly sensitive personal information unless it’s necessary. For example, please avoid sending government identification numbers, precise GPS location data, health or biometric information, or similar sensitive details, unless we have specifically requested it for a particular service (and even then, only provide it through secure and approved channels). We do not intentionally collect any sensitive personal information as part of our standard services.

3. Why We Use Your Information (Purposes)

We use the personal information we collect for several essential purposes related to our business and the services we provide to you:

• Providing Services and Quotes: We use your information to respond to inquiries and quote requests, to schedule on-site visits or consultations, and to design, fabricate, and install custom metal products as requested. For example, we might use your contact information to get in touch about your project and use the details you provided to craft an accurate quote or plan.
• Transactional Communications: We use contact information (like email or phone number) to send you important updates and alerts related to the services you’ve requested. This includes appointment reminders, progress updates on your project, delivery or installation schedules, invoices and receipts, and notifications about maintenance or warranty services. These communications are necessary to perform our services and are not promotional in nature.
• Marketing Communications (Opt-In Only): With your permission, we may use your contact details to send occasional marketing materials, such as newsletters, promotions, special offers, or updates about new services or products. We will only send you marketing communications if you have opted in (for example, by subscribing on our website or explicitly requesting to receive such updates). You always have the choice to opt out of marketing emails or texts (see Your Privacy Choices below – you can unsubscribe at any time).
• Improving Our Website and Services: We analyze how users interact with our website and services to improve their performance and to enhance our offerings. For instance, understanding which pages are most visited or which types of projects are most requested helps us tailor our content and services. We may also use feedback or information about any issues you encounter to fix problems, improve the user interface, and develop new features or services. Additionally, we might use data for analytics and advertising purposes, such as to measure how effective our advertisements are or to reach others who might be interested in our services (in doing so, we may work with analytics and advertising partners, but as noted in Cookies & Tracking and How We Share Information, this usage is subject to opt-out choices and we do not sell personal data).
• Security and Legal Compliance: We may use information to detect and prevent fraud, abuse, or other harmful activities. For example, we might monitor for suspicious behavior on our website to protect against security threats. We also use data as necessary to comply with legal requirements and to enforce our agreements (such as our Terms of Service). This can include using personal information to meet obligations under financial/tax laws, to respond to lawful requests by authorities, or to establish or defend legal claims.

Legal Bases for Processing (EEA/UK visitors): If you are located in the European Economic Area or the United Kingdom, our use of your information must be justified under certain legal grounds. We typically rely on the following legal bases: (1) Contract – we need to process your data to provide the services you’ve requested or to take steps at your request before providing services; (2) Consent – for example, when you sign up for marketing emails or certain cookies, we process your data based on your consent (you can withdraw consent at any time); (3) Legitimate Interests – we have a legitimate interest in using your data for improving our services, securing our platform, preventing fraud, and performing basic analytics, and we do so in a way that does not override your privacy rights; and (4) Legal Obligation – in cases where we need to process data to comply with a law or regulation (such as retaining transaction records for tax purposes).

4. How We Share Your Information

We do not sell your personal information. However, in order to run our business and provide services to you, we sometimes need to share your information with trusted third parties. We share personal information only as necessary and with appropriate safeguards in place. The main instances in which we share data are:

• Service Providers (Processors): We employ or partner with other companies to help us operate our website and business. This includes web hosting providers and cloud storage services (who host our website or store data on our behalf), email and SMS messaging platforms (to send out communications to you), scheduling and project management tools, payment processors (to securely handle credit card transactions or other payments), analytics services (to help us understand how our site is used), and customer support software. It also includes subcontractors or installation partners who assist in fulfilling your project (for example, independent installers or specialists who work under contract with us to complete certain aspects of a project). We only share the information necessary for these service providers or partners to perform their functions. For instance, an installer would receive the information needed to contact you and complete the installation, but not unrelated data.
• Advertising and Measurement Partners (if applicable): We may share limited information (such as cookies or device identifiers, and general demographic or preference data) with advertising and marketing partners. This is done to measure the performance of our advertisements, to reach people who are likely to be interested in our services, or to avoid showing you irrelevant ads. For example, we might use Google or Facebook (Meta) analytics and advertising tools that set their own cookies on our site – those tools may receive information about your interaction with our site for the purpose of helping us with targeted advertising or campaign measurement. Important: Any such sharing is done in a privacy-conscious way and, where required by law (such as in California), is treated as a “sharing” of personal information for which you have the right to opt out (see Your Privacy Choices below for how to opt out of targeted advertising).
• For Legal or Safety Reasons: We may disclose personal information when necessary to comply with a law, regulation, valid legal process (such as a subpoena or court order), or governmental request. We will also share information if we believe it’s necessary to investigate or enforce compliance with our own Terms of Service or other agreements, or to protect the rights, property, or safety of Rob Rise LLC, our customers, our employees, or others. This could include sharing information with law enforcement agencies or regulators, or with authorized third parties in the context of investigating fraud, security issues, or possible violations of law.
• Business Transfers: If Rob Rise LLC or the Custom Metal AZ brand is involved in a merger, acquisition, sale of assets, financing, or if we are considering such transactions, personal information may be disclosed to the parties involved or their advisors as part of due diligence or transferred to a successor or affiliate as part of the transaction. In any such event, we will ensure that appropriate protections are in place and that the receiving party agrees to handle personal information in a manner consistent with this Privacy Policy (unless you consent otherwise or further data handling is authorized by law).

Our requirements for third parties: Any service providers or third parties that handle personal data on our behalf are required to use it only for the purposes we specify and to protect it in accordance with applicable privacy laws and regulations. We have contracts in place with our service providers (where required) that restrict how they can access, use, and disclose personal information.

No Selling of Personal Data: Once again, we do not sell your personal information to third parties for monetary compensation. Also, we do not share personal information about consumers under the age of 16 for targeted advertising or any other purpose that is considered a “sale” or “share” under applicable laws without proper authorization, as required by law.

Use of Subcontractors and Partners: Rob Rise LLC may utilize subcontractors or third-party companies to help fulfill our services (for example, specialized craftsmen or installation professionals). In such cases, we will share your information with these parties strictly as needed for them to perform the required services (e.g., giving an installer your name, address, and contact info to perform an on-site installation). All such parties are expected to uphold similar standards of privacy and security and to use your information only for the purposes of completing their work with us.

5. Text Messages (SMS/MMS)

We offer the option for customers to receive updates and communications via text message. By providing your mobile number and opting in to receive text (SMS or MMS) communications, you agree to the following terms:

• Transactional and Marketing Texts: If you opt in, we may send you text messages to confirm appointments, provide project updates, or deliver other service-related information. We may also occasionally send promotional or marketing text messages (such as special offers or reminders of new services), but only if you have consented to receive such marketing texts.
• Message Frequency and Charges: The number of text messages we send will vary based on your interactions with us (for instance, during an active project you may receive more frequent updates). Standard message and data rates may apply to any texts we send, according to your mobile phone plan. (You may want to check with your mobile provider if you are unsure about charges for SMS/MMS messages.)
• Opting Out: You can opt out of text messages at any time. To stop receiving texts, simply reply with the word “STOP” to any message we send. After you send “STOP,” we may send one final confirmation text to acknowledge that you have been unsubscribed. If you need assistance or more information about our text program, you can reply “HELP” to any of our messages or contact us directly (see Contact Information below).
• Delivery and Privacy: We may use automated technology or third-party text message services to send these messages. However, any phone numbers and personal information we collect for texting are used only for the purpose of sending you communications as described in this Policy. We handle this information in accordance with this Privacy Policy. Your consent to receive text messages is voluntary, and not a condition of purchasing our services. Whether or not you choose to receive texts will not affect the availability or quality of services we provide to you.
• Contact for Text Issues: If you have any questions, concerns, or wish to update your text message preferences, you can contact us at admin@custommetalaz.com and we will be happy to assist you.

6. Cookies & Tracking Technologies

Like most websites, we use cookies and similar tracking technologies to provide and improve our services. This section explains how we use these technologies and what choices you have.

What Are Cookies: Cookies are small data files stored on your browser or device. They often include an anonymous unique identifier and can store certain information (such as site preferences or session tokens). We also may use related technologies like pixel tags (small images or scripts that detect whether you’ve opened an email or visited a particular URL) and local storage (which can store data in your browser similar to cookies).

How We Use These Technologies: We use cookies and similar tools for a few key purposes:

• Essential Operations: Some cookies are necessary for our website to function properly. For example, they may be used for security purposes (to help us protect the site from fraud or abuse), for network management (to distribute traffic across servers), or to enable basic features like remembering your preferences or keeping you logged in (if our site has login functionality).
• Analytics: We use cookies and third-party analytics services (like Google Analytics, as an example) to collect information about how visitors use our site. These analytics cookies help us understand things like which pages are most frequently visited, how users navigate through the site, and if any errors occur. The information collected is typically aggregated and used to improve the website’s functionality and content. For instance, we might learn that a certain page is confusing to users, and then we can update it for a better experience.
• Advertising and Measurement: If we participate in any online advertising (such as Google Ads or social media advertising), we may use cookies or pixels to measure the effectiveness of those ads and (in some cases) to deliver more relevant ads to you. For example, a cookie might let us know that you visited our site and looked at a certain service, which could allow us to show you an ad about that service later on another platform. Alternatively, cookies might help prevent the same ad from being shown to you over and over. Note: We currently use these tracking technologies in compliance with applicable privacy laws, and any data sharing for advertising is covered in How We Share Information above. You have the ability to opt out of targeted advertising cookies (see Your Privacy Choices below).

Your Choices and Controls for Cookies: You have several options to control or limit how cookies and similar technologies are used:

• Browser Settings: Most web browsers allow you to refuse new cookies, disable existing cookies, or alert you when new cookies are being sent to your device. Please note that if you disable cookies, some features of our site might not function properly (for example, some parts of the site might not remember your preferences).
• Third-Party Opt-Outs: For cookies that are used for advertising purposes, you can opt out through industry organizations. For instance, you can visit the NAI’s opt-out page or the DAA’s opt-out page to opt out of many advertising cookies set by participating companies. These tools allow you to opt out of targeted ads from participating networks.
• Platform Settings: If you have accounts on platforms like Google or Facebook, those platforms provide settings to control the ads you see. For example, Google’s Ad Settings and Facebook’s Ad Preferences allow you to influence what type of ads are shown to you within those networks.
• Global Privacy Control (GPC): We honor Global Privacy Control (GPC) signals as required by law. GPC is a browser setting or extension that allows you to send a do-not-sell/share request to websites you visit. If our website detects a valid GPC signal from your browser, we will treat it as a request to opt out of the “sale” of personal information or sharing for targeted advertising purposes for that browser or device, as applicable under relevant laws (such as the California Consumer Privacy Act, as amended by CPRA).
• Do Not Track (DNT): “Do Not Track” is an older browser setting that signals a preference not to be tracked across websites. Currently, there is no industry consensus on how to interpret DNT signals, so our site does not respond to DNT signals. However, as mentioned, we do respond to the newer Global Privacy Control signals in jurisdictions where it is required.

By using our site without disabling cookies via your browser or opting out, you consent to our use of cookies and similar technologies as described here. Remember, you can adjust your cookie settings at any time.

7. Your Privacy Choices

We believe in giving you control over your personal information. This section outlines the choices you can make about your data and how to exercise them:

• Opt-Out of Text Messages: If you previously gave us consent to send SMS/MMS messages, you can opt out at any time by texting “STOP” in reply to any of our messages. (For help or more information, text “HELP” or contact us at our email below.) Once you opt out, we will not send you further promotional or project-related texts, except for a final message confirming you have been unsubscribed.
• Opt-Out of Marketing Emails: Every marketing or promotional email we send includes an “unsubscribe” link at the bottom. Click that link, and follow any prompts, to remove yourself from our marketing mailing list. You can also contact us at admin@custommetalaz.com and request to be removed. Note that even if you opt out of marketing emails, we may still send you transactional emails about your projects or services (those are not marketing, but rather essential for providing our services).
• Opt-Out of Targeted Advertising (“Do Not Sell/Share”): If you prefer that we do not use or share certain data for targeted advertising purposes, you have a right to opt out. You may exercise this by contacting us via email at admin@custommetalaz.com. Please include your name and the email address (or other identifier) you’ve used with us, and state that you want to opt out of targeted advertising. This will help us identify your records and honor your request across our advertising and analytics systems. Additionally, as noted in the Cookies & Tracking section, you can use a Global Privacy Control (GPC) signal if your browser supports it – we will treat a valid GPC signal as an opt-out of any sale or sharing of your data for advertising for that browser. Lastly, you can use the browser and industry opt-out methods mentioned above (in the Cookies section) to reduce tracking for ads.
• Cookie Controls: As described in Cookies & Tracking Technologies, you can manage cookies through your browser settings or via industry opt-out sites. Doing so is a way to exercise choice over how much data is collected about your browsing. Keep in mind that completely disabling cookies may affect your user experience or some functionality on our site.
• No Discrimination: We will not discriminate against you for exercising any of these privacy choices. That means if you opt out of certain data uses or exercise your legal rights (described below), we will not deny you services, charge you different prices, or provide you with a different level of service just because of that choice. (In some cases, if certain data is necessary for a service – for example, if you refuse to provide contact information, we might not be able to deliver a quote – but we will explain if any such situation arises.)

If you have any questions about how to exercise these choices, or if you need assistance (for example, if an unsubscribe link is not working), please contact us at admin@custommetalaz.com and we will help address your concerns promptly.

8. Your Rights

In addition to the general choices outlined above, you may have specific legal rights over your personal information, depending on your jurisdiction (for example, residents of certain U.S. states and countries like those in the EU have particular rights under privacy laws). We strive to honor all applicable privacy rights. These rights may include:

• Right to Access: You can request confirmation of whether we are processing your personal information, and if so, you have the right to request a copy of the personal data we hold about you. This allows you to know what information we have collected about you.
• Right to Correction (Rectification): If you believe that any personal information we have about you is incorrect or incomplete, you have the right to request that we correct (rectify) the information. For example, if we have an outdated email or incorrect spelling of your name, you can ask us to update it.
• Right to Deletion: You can request that we delete your personal information. This is sometimes called the “right to be forgotten.” We will honor deletion requests unless the information is necessary for us to complete a transaction with you, provide you with a service you’ve requested, or for other legitimate reasons why we need to keep it (for example, certain information might need to be retained for legal compliance, tax/accounting purposes, or to honor a warranty or handle a dispute). We will inform you if any data cannot be deleted due to such exceptions.
• Right to Data Portability: You have the right to request a copy of the personal data you provided to us in a portable format (for example, a common digital file format). This helps you in transferring your data to another service or for your own records.
• Right to Opt-Out of Targeted Advertising, Sharing, or Profiling: You have the right to opt out of the processing of your personal information for purposes of targeted advertising (as described earlier), the “sale” or sharing of your personal information (if applicable in your jurisdiction’s laws), or profiling in furtherance of decisions that produce legal or similarly significant effects about you. We do not engage in profiling that produces such effects, but we mention this right for completeness.
• Right to Opt-Out of Sale of Personal Information: If applicable, you can direct us not to sell your personal data to third parties. As noted, we do not sell personal information for monetary compensation. If in the future our practices change, we will update this Policy and honor any opt-out requests. In any event, you have the right to instruct us not to sell your information.
• Right to Limit Use of Sensitive Personal Information: In certain jurisdictions (like California), you have the right to limit how we use or disclose sensitive personal information about you, if we collect any. As stated earlier, we do not collect sensitive personal information like Social Security numbers or precise geolocation without necessity. The only potentially sensitive data (payment card info) is not stored by us. If for some reason we do handle any sensitive data, you would have the right to restrict its use to only what is necessary to perform the services.
• Right to Appeal: If you exercise any of the above rights and you are dissatisfied with our response (for example, if we decline your request to delete data due to an exemption), you may have the right to appeal our decision. This is especially applicable in certain U.S. states such as Virginia, Colorado, and Connecticut. If we inform you that we cannot comply with a request, we will also tell you how you can appeal that decision. Typically, you can initiate an appeal by simply replying to our decision email and explaining that you are appealing, or by sending a new email to us at our contact address with the subject line “Privacy Appeal.” We will then have a set time frame (as defined by law) to review and respond to your appeal. If after the appeal you are still not satisfied, we will inform you if you have further recourse, such as contacting your state’s Attorney General or data protection authority.

How to Exercise Your Rights: To exercise any of the rights above, please contact us at admin@custommetalaz.com. Please clearly describe your request – for example, “I am requesting a copy of my personal data” or “Please correct my phone number” or “I would like to delete my account data.” For your security, we will need to verify your identity before fulfilling requests (see Verification & Authorized Agents below). This might involve confirming some information we have on file (like sending a confirmation to your email or phone number) or asking for additional identification if needed. We will respond to your request within the time frame required by law (which can vary by jurisdiction, but we will inform you of the timeline when you make the request, typically within 30 to 45 days). There is no charge for making a request, though if you make repeated or excessive requests, some laws allow a business to charge a reasonable fee or decline the request in certain circumstances.

State-Specific Privacy Rights: Privacy laws differ by state and country, so we want to highlight some specifics:

• California (CPRA): If you are a California resident, you have the rights listed above (access, delete, correct, portability, opt-out of sale or sharing of personal information, opt-out of targeted advertising, and to limit use of sensitive personal information). California law also ensures you are not discriminated against for exercising these rights. We honor Global Privacy Control (GPC) signals from California residents as a valid opt-out of any sale or sharing of personal info, as mentioned earlier. California residents can also request information about our data practices in the preceding 12 months, such as the categories of personal information collected, the categories of sources, the business or commercial purposes, the categories of third parties with whom personal information is shared, and the specific pieces of information we have about you.
• Virginia, Colorado, Connecticut, Utah (US State Laws): Residents of these states have very similar rights to those described above, though the exact scope can vary slightly by state. Generally, these states allow you to access, correct, and delete your data, to obtain a portable copy of data, and to opt out of targeted advertising, sales of personal data, or certain types of profiling. If you’re a resident of one of these states, we will process your requests in accordance with the state law requirements. For instance, Virginia and Colorado specifically provide the right to appeal a decision we make on a privacy request, as noted above.
• Nevada: Nevada residents have the right to submit a request directing us to not sell certain personal information we collect about you to third parties (even if that information is not currently being sold). Note: We do not sell personal information for monetary value, so while this right exists, it is not applicable to our current practices. If you still want to make a formal request under Nevada law, you can contact us, and we will record your preference.

We aim to treat all our customers’ data with equal respect and protection, regardless of where they live, but we also abide by specific legal requirements that apply in different regions. If you have any questions about your rights or which rights apply to you, please contact us and we will help clarify.

9. Verification & Authorized Agents

When you make a privacy-related request (such as accessing or deleting your data), we need to verify your identity to protect against fraud. We will use information you have previously provided us to verify your identity. For example, if you contact us from the email address on file, we may verify by sending a confirmation to that email or by asking for information about your recent interactions with us (such as the date of your last project or the amount of your last invoice). If you contact us by phone, we might verify using a piece of information we have on record (like a mailing address or last four digits of a phone number).

If you want someone else (an authorized agent) to make a request on your behalf (for instance, a lawyer or a family member), we have a process for that as well. We may require:

• Proof that you gave permission to that agent (for example, a signed letter by you or a form designating the agent to act on your behalf).
• And we may still contact you directly to confirm the request (for instance, we might ask you to verify your identity or confirm that you indeed authorized the agent).

These steps are to ensure that someone else cannot impersonate you and steal or delete your data without permission. We appreciate your understanding that these verification steps are for your protection.

We will inform you if we need any additional information to verify your identity or the authority of an agent. Any information you provide for verification will only be used for that purpose and for record-keeping of compliance with your request.

10. Data Retention

We retain personal information for only as long as it is necessary to fulfill the purposes described in this Privacy Policy or as required by law, whichever is longer. How long we keep specific information can vary based on the context of the services we provide and our legal obligations. In general:

• If you are a customer with an ongoing project, we will keep your information throughout the duration of the project. After completion, we will retain relevant information for a period that covers any follow-up services, warranty obligations, or support you might need. For example, if we provide a warranty on our workmanship, we will retain your contact and project information until that warranty period ends, so we can reach you if needed or honor our commitments.
• For business records and legal compliance, we retain transaction records, invoices, and basic customer information to satisfy requirements under laws (like tax regulations or accounting rules) and to have accurate records for our business operations. These records may be kept for a number of years as required (for example, tax regulations often require keeping records for a certain minimum number of years).
• We also retain information as needed for security, fraud prevention, and dispute resolution. For instance, if we had a serious incident of fraud or a legal dispute with someone, we would retain the relevant information as necessary to resolve and document the issue.

When personal information is no longer needed for any business or legal purpose, we will either securely delete it or anonymize it (so that it no longer can be associated with you). We follow an internal schedule and guidelines for data retention and deletion, and we strive to ensure data is not kept longer than necessary. If you request deletion of your data, we will also inform you if certain pieces of information need to be retained (and why), or otherwise confirm deletion as appropriate.

11. Security

We take the security of your personal information seriously. Rob Rise LLC implements a combination of administrative, technical, and physical security measures designed to protect your data from unauthorized access or disclosure. Some of the measures we use include:

• Encryption: Whenever you provide personal information through our website (such as filling out a form or making a payment), we use encryption in transit (for example, HTTPS/TLS) to protect that data as it travels over the internet. This means that the information is scrambled and made unreadable to anyone who might intercept it.
• Access Controls: Internally, we limit access to personal information to only those employees, contractors, or service providers who have a legitimate need to access it in order to perform their duties. We use techniques like role-based access control and the principle of least privilege (meaning people only get the minimal access necessary for their role). For example, our fabrication team might have details about your project specifications but not have access to your payment information, which is handled by our billing department or payment processor.
• Secure Infrastructure: We use reputable hosting providers and cloud services that employ robust security measures at the infrastructure level, including firewalls, intrusion detection systems, and regular security audits. We also keep our systems and software up-to-date with the latest security patches to reduce vulnerabilities.
• Training and Policies: We train our staff on best practices for privacy and security, including how to recognize phishing attempts or social engineering. We have internal policies that outline how to handle personal data safely and what to do in the event of a potential security incident.

Despite all these measures, it’s important to understand that no method of transmitting or storing data is 100% secure. While we do our best to protect your personal information, we cannot guarantee absolute security. You also play a role in protecting your information. We encourage you to use strong, unique passwords for any accounts related to our services (if applicable) and to exercise caution when sharing information online. If you believe your interaction with us is no longer secure (for example, if you feel that the security of an account has been compromised), please notify us immediately using the contact information below.

12. Children’s Privacy

Our services and website are intended for adults and individuals at least 13 years of age or older. We do not knowingly collect personal information from children under the age of 13. If you are under 13, please do not submit any personal information to us. If we discover that we have inadvertently collected personal information from a child under 13, we will take immediate steps to delete that information.

For teens over 13 but under the age of majority (which is 18 in most places), we recommend parental guidance when using our services, especially if providing personal information. Some states or countries have higher age thresholds (for example, under 16 in certain jurisdictions for consent) – we intend to comply with those requirements as well.

If you are a parent or guardian and believe that a child under your care has provided us with personal information without your consent, please contact us at admin@custommetalaz.com. We will investigate and, if appropriate, work to delete the information from our records. We are committed to complying with all applicable laws such as the U.S. Children’s Online Privacy Protection Act (COPPA).

13. International Visitors

Rob Rise LLC is based in the United States, and our website and services are operated from the U.S. If you are visiting the Custom Metal AZ website or using our services from outside the United States, please be aware that your personal information may be transferred to, stored in, and processed in the United States or other countries where our service providers or we have facilities. Data protection and privacy laws in these countries may not be as comprehensive or protective as those in your country of residence.

However, no matter where your data is processed, we handle it as described in this Privacy Policy. Where we transfer personal data from regions with strong data protection laws (like the European Economic Area (EEA), United Kingdom, or other regions with similar laws), we take steps to ensure that appropriate safeguards are in place. This might include using standard contractual data protection clauses approved by relevant authorities, or ensuring the recipient of the data is certified under frameworks like the EU-U.S. Data Privacy Framework (if applicable), or is otherwise legally permitted to receive your data.

EEA/UK Individuals: If you are in the EEA or UK, you have certain rights under the General Data Protection Regulation (GDPR) (as mentioned earlier in Your Rights section). These rights include the right to access your data, correct it, delete it, restrict its processing, and object to processing (including the right to object to your data being used for direct marketing). You also have the right to data portability (to receive a copy of your data to transfer to another service). Additionally, when we rely on your consent to process data (for example, for sending marketing emails or for certain types of cookies), you have the right to withdraw consent at any time. Withdrawing consent will not affect the lawfulness of any processing we did based on your consent before you withdrew it. To exercise any of these rights, please contact us at admin@custommetalaz.com. We may ask you to verify your identity, and we will respond within the timelines required by GDPR.

By using our site or services, international users understand that their information will be transferred to and processed in the United States as described in this Policy.

14. Changes to This Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other reasons. If we make changes, we will update the Effective Date at the end of this Policy to let you know when those changes went into effect.

If any changes are material (meaning they significantly affect how your personal information may be used or shared), we will take additional steps to notify you. This could include, for example, posting a prominent notice on our website, or in some cases, contacting you directly via email or other contact information you have provided. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

Your continued use of our website or services after any update to this Privacy Policy will indicate your acceptance of the changes, to the extent permitted by law.

15. Contact Information & Effective Date

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please do not hesitate to reach out to us. We are here to help and will respond as promptly as we can.

• Email: admin@custommetalaz.com
• Mailing Address: Rob Rise LLC – Privacy Team, 1600 Van Lennen Ave., Suite 101, Cheyenne, WY 82001, USA

Effective Date: October 5, 2025.

By continuing to use the Custom Metal AZ website or our services, you acknowledge that you have read and agree to this Privacy Policy.