Our Responsibilities

Last updated: July 14, 2025

Here at birthday.gold, we take our responsibilities to you and our community of users seriously. Here is our commitment of the duties of controllers of data that we uphold.
Our Responsibilities to You

1. Transparency is Key: We are committed to being open with our users. We provide clear privacy notices detailing:

  • The kind of data we collect and process.
  • The purpose behind collecting such data.
  • Steps on how you can exercise your rights and how to reach us.
  • The only third parties we share your data with are the businesses that you select to enroll with and any other service that helps make our website service actually operate.

2. Clarity on Data Sale: We won't sell your personal data but may use aggregated information to provide you with sponsored promotions. If we ever provide that that service, we'll be upfront about it. Plus, you'll always have the option to opt-out.

3. Your Convenience: You won't need to create a new account just to exercise your rights with us. Moreover, we won't hike our prices or reduce our service offerings just because you exercised your rights. And yes, we enroll you into other business' loyalty and reward programs that you select, with all the information we know, providing you an enjoyable transparent experience.

4. Purpose-Driven Data Collection: We only collect data with a clear purpose in mind, and we make sure you're aware of it.

5. Minimum Data, Maximum Care: We collect only what is necessary and ensure that your data is safe with us, both during storage and use.

6. No Unintended Uses: Your data won't be used for anything outside of the specified purposes without your explicit consent.

7. Commitment to Fairness: We're against discrimination. Your data will never be used in a way that goes against state or federal anti-discrimination laws.

8. Special Care for Sensitive Data: We handle sensitive data with extra caution, always seeking consent before processing, especially when it concerns minors.

Trust is the foundation of our community. We're committed to maintaining and building on this with every step we take.

Legal Compliance and Mandatory Reporting

1. Compliance with Law Enforcement: While we prioritize your privacy, we are obligated to comply with valid legal requests:

  • We will respond to lawful subpoenas, court orders, and warrants as required by law.
  • We maintain a transparent approach and will notify you of legal requests when legally permitted to do so.
  • We carefully review each request to ensure it meets legal requirements before sharing any data.

2. Child Safety Obligations: We take the protection of minors seriously:

  • We report suspected child exploitation or abuse to the National Center for Missing & Exploited Children (NCMEC) and law enforcement as required by law.
  • We maintain systems to detect and prevent the distribution of child sexual abuse material (CSAM).
  • We cooperate fully with child safety investigations while respecting user privacy to the extent permitted by law.

3. Financial Crime Prevention: As a platform processing payments, we have obligations to:

  • Report suspicious financial activities to appropriate authorities under anti-money laundering (AML) regulations.
  • Comply with Know Your Customer (KYC) requirements for certain transaction thresholds.
  • Maintain records as required by financial regulations and make them available to authorized regulators.

4. Data Breach Notification: In the unlikely event of a data breach:

  • We will notify affected users within 72 hours of discovering the breach, as required by law.
  • We will provide clear information about what data was affected and steps you can take to protect yourself.
  • We will notify relevant regulatory authorities as required by applicable data protection laws.
  • We maintain incident response procedures to minimize impact and prevent future breaches.

5. International Data Transfer Compliance: When transferring data internationally:

  • We ensure appropriate safeguards are in place as required by GDPR and other privacy frameworks.
  • We maintain Standard Contractual Clauses (SCCs) with international partners where required.
  • We are transparent about where your data is stored and processed.

6. Regulatory Reporting: We maintain compliance with various regulatory requirements:

  • We file required reports with the Federal Trade Commission (FTC) regarding consumer complaints and data practices.
  • We comply with state-specific privacy law reporting requirements, including those under CCPA, CPA, and other state privacy acts.
  • We maintain records of our data processing activities as required by privacy regulations.

Note: While we strive to protect your privacy, these legal obligations ensure we operate responsibly and help maintain a safe platform for all users. We will always seek to balance our legal obligations with your privacy rights, notifying you whenever possible and appropriate.

For further details, please refer to C.R.S. § 6-1-1308 and applicable federal regulations.

Go Back To Home
GDPR & CCPA Compliant

Full compliance with major privacy regulations

72-Hour Breach Notice

Rapid notification in case of data incidents

Transparent Reporting

Annual transparency reports available

Child Safety First

COPPA compliant with parental controls