Privacy Policy

1. Who we are

Controller / Business: CanIFreeze.com

Data Protection Officer: CanIFreeze.com Editorial Team

2. What we collect

We collect the following categories of information:

• Identifiers & device data: IP address, device/user‑agent, cookie IDs, advertising IDs.
• Usage data: pages viewed, clicks, scrolls, time on page, referring URLs, error logs.
• Approximate location: inferred from IP (where enabled).
• Ad interaction data: impressions, clicks, conversion events (where enabled).
• Voluntary data you provide: emails or messages via contact forms (stored only as necessary).

Collection occurs via our site, server logs, and third‑party tags configured through Google Tag Manager, including Google Analytics, Microsoft Clarity, and Google AdSense.

3. Legal bases & purposes

EU/UK/CH (GDPR)

• Consent (Art. 6(1)(a)): for non‑essential cookies/trackers (analytics, ads, Clarity session replay) and associated data processing.
• Legitimate interests (Art. 6(1)(f)): basic site operation, fraud prevention, security, and aggregated metrics without trackers (where applicable).
• Contract (Art. 6(1)(b)): if you create an account or transact.
• Compliance (Art. 6(1)(c)): record‑keeping, legal requests.

Purposes

• Measure and improve site performance and user experience.
• Debug issues and ensure security.
• Deliver and measure advertising (AdSense) and limit ad fraud.

4. Cookies, consent & preference management

For users in the EEA/UK/CH, we obtain consent through a compliant Consent Management Platform (CMP) before setting non‑essential cookies or similar technologies. Consent can be withdrawn anytime via “Cookie Settings”.

• We implement Google Consent Mode v2. When consent is not granted, tags are adjusted to limit data collection.
• IP anonymization is enabled for Google Analytics where available.
• We honor browser signals where legally required (e.g., GPC in California).

5. Sharing, vendors & international transfers

We share data with service providers strictly to operate, analyze, and advertise:

• Google Analytics (GA4) & Google Tag Manager — analytics and tag orchestration.
• Microsoft Clarity — session analytics and heatmaps.
• Google AdSense — advertising delivery and measurement.

These providers may process data in jurisdictions outside your own, including the United States. Where required, we rely on appropriate transfer mechanisms and implement supplementary safeguards such as data minimization, IP anonymization, and limited retention.

6. Data retention

We retain analytics and advertising data only as long as necessary for the purposes described above. In Google Analytics, we configure data retention to 14 months or less. Server logs are retained for operational security for a limited period.

7. Your rights (EU/UK/CH & US)

EU/UK/CH (GDPR)

You may request access, rectification, deletion, restriction, portability, and object to processing. You may withdraw consent at any time. You also have the right to lodge a complaint with your supervisory authority.

US (including California CCPA/CPRA)

Residents of certain US states, including California, have rights to know, correct, delete, and opt‑out of the sale or sharing of personal information, and to limit the use of sensitive personal information.

We Do Not Sell or Share any of your potential Personal Information (California).

8. How to exercise your rights

Submit requests to: [email protected]. We will verify your identity as required and respond within the timeframes mandated by applicable law (e.g., 30–45 days). Authorized agents may submit requests subject to verification.

9. Advertising & AdSense

We use Google AdSense to display ads. Ad personalization uses cookies and device identifiers where consent/opt‑in is provided (EEA/UK/CH) or where not prohibited. You can control ad personalization via our cookie settings and your Google Ads settings.

We do not knowingly permit interest‑based advertising to children where restricted by law.

10. Security

We use reasonable technical and organizational measures to protect your information. No method of transmission or storage is 100% secure.

11. Changes to this policy

We may update this policy from time to time to reflect legal, technical, or business changes. If changes are material, we will provide prominent notice.

12. Contact

• Email: [email protected]

Regional notes

• EEA/UK/CH: Consent required for non‑essential cookies and similar tech. We use a CMP and Consent Mode v2.
• California: Provide a Do Not Sell or Share link and honor Global Privacy Control (GPC) signals.
• Other regions: We apply the strictest controls where required by local law.