Legal Policies for the Draco Digital Affiliations
Draco Digital, Draco Domains, Draco D-Commerce, Back Alley Software, State Payments, Med-Assistant, Legal-Assistant, and all other sites and affiliations.
PRIVACY POLICY
The security practices below are effective for all users on December 10, 2002.
The Privacy Policy below governs your account or use with any of the Draco Digital services or subsidiaries and any information you provide on a Draco Digital site.
Introduction
In order to operate a Draco Digital service and to reduce the risk of fraud, Draco Digital, LLC ("Draco Digital" or "we") must ask you to provide us information about your business, yourself and/or your credit card and/or bank account. This Privacy Policy describes the information we collect and how we use that information. Draco Digital takes the privacy of your personal and/or business information very seriously and will use your information only in accordance with the terms of this Privacy Policy. We will not sell or rent your identifiable information or a list of our customers to third parties. However, as described in more detail in "Our Use and Disclosure of Information" below, there are limited circumstances in which some of your information will be shared with third parties, under strict restrictions, so it is important for you to review this Privacy Policy. This Privacy Policy applies to all services that are hosted on the Draco Digital servers, whether the services are offered by Draco Digital or by its subsidiaries. This includes, but is not limited to Draco Digital Hosting, Draco Domains, Draco D-Commerce, Back Alley Software, Luv2GoShop, State Payments, Med-Assistant and Legal-Assistant.

If you have questions or concerns regarding this Privacy Policy, you should first contact Draco Digital at info@dracodigital.com. If you do not receive acknowledgment of your inquiry or your inquiry has not been satisfactorily addressed, you should then contact Draco Digital at 620.230.0400 to resolve your concerns.

Notification of Changes
This policy may be revised over time as new features are added to the Draco Digital services or as we incorporate suggestions from our customers. If we are going to use or disclose your personally identifiable information in a manner materially different from that stated at the time we collected the information, you will have a choice as to whether or not we use or disclose your information in this new manner. Any material changes will be effective immediately upon date stated on the updated policy. We may contact you when these changes do occur (if you have closed your Draco Digital account, you will not be contacted to notify you of the amended Policy and your personal information will not be used or disclosed in this new manner).

We will post the amended Privacy Policy prominently on our Web sites so that you can always review what information we gather, how we might use that information, and whether we will disclose it to anyone. Please check the Draco Digital Web site at DracoDigital.com or any other Draco Digital affiliated website at any time for the most current version of our Privacy Policy.

Draco Digital services and other businesses related with Draco Digital include links to third party Web sites. These sites are governed by their own privacy statements, and Draco Digital is not responsible for their operations, including but not limited to their information practices. Users submitting information to or through these third party Web sites should review the privacy statement of these sites before providing them with personally identifiable information.
Information We Collect
Required Information
To use a Draco Digital affiliated service (i.e. Draco D-Commerce Credit Card Gateway) account, you must provide your name, address, phone number, and e-mail address, and in with some services, an EIN (Employer Identification Number). In order to transact payments through a Draco Digital service, you, or your customers must provide the service a credit card, debit card or bank account information. This required information is necessary for us to process transactions, issue a new password if you forget or lose your password, protect you against credit card fraud and to contact you should the need arise in administering your account.

If you choose to register or apply for certain optional features or products offered through Draco Digital shopping Web sites, such as listing your business in Luv2GoShop, you will be required to provide additional information to establish that you qualify for such features or products.

Information About You From Third Parties
In order to protect all our customers against potential fraud, we verify with third parties the information you provide. In the course of such verification, we receive personally identifiable information about you from such services. In particular, if you transact a credit card or debit card with a Draco Digital service, we will use card authorization and fraud screening services to verify that your card information and address matches the information that you supplied to Draco Digital, and that the card has not been reported as lost or stolen.

Additional Verification
If we cannot verify the information that you provide, or if you request a withdrawal by check to an address other than your verified billing address, we ask you to send us additional information by fax (such as your driversÕ license, credit card statement, and/or a recent utility bill or other information linking you to the applicable address), or to answer additional questions online to help verify your information.

Web Site Traffic Information
Because of the way that World Wide Web communication standards work, when you arrive at or leave a Draco Digital Web site, we automatically receive the Web address of the site that you came from or are going to. We also collect information on which pages of our Web site you visit while you are on the Draco Digital site, the type of browser you use and the times you access our Web site. We use this information only to try to understand our customersÕ preferences better and to manage the load on our servers, so as to improve our service and your experience with Draco Digital. We do not track the Web sites that you visit before or after you leave the Draco Digital site.

Our Use of "Cookies"
"Cookies" are small files of data that we send to your computer to allow us to recognize you as a Draco Digital customer if you return to the Draco Digital site using the same computer and browser. We send a "session cookie" to your computer if and when you log in to your Draco Digital account by entering your e-mail address and password. These cookies allow us to recognize you if you visit multiple pages in our site during the same session, so that you donÕt need to re-enter your password multiple times. Once you log out or close your browser, these session cookies expire and no longer have any effect.

We may also use longer-lasting cookies to display your e-mail address on our sign-in form, so that you don't have to retype the e-mail address each time when you log in to your Draco Digital account. Our cookie files are encoded so that your e-mail address and other information can only be interpreted by Draco Digital. We may, however, share cookie information regarding whether or not a certain user is already registered with Draco Digital with certain affiliates with whom we have an official co-marketing relationship.

Customer Service Correspondence
If you send us correspondence, including e-mails and faxes, we retain such information in the records of your account. We will also retain customer service correspondence and other correspondence from Draco Digital to you. We retain these records in order to measure and improve our customer service, and to investigate potential fraud and violations of our User Agreement. We may, over time, delete these records if permitted by law.

Non-member Recipients and Requests
When a member either sends a payment to, or transacts a payment from, an individual who is not a registered member of a Draco Digital service, we will retain the information that the member submits to us, including, for example, the other party's email address and/or name, for the benefit of the member who is attempting to contact the non-member, so that the member can see a complete record of his or her transactions, including uncompleted transactions. Although this information is stored indefinitely, we will not market to the non-member in any way at any time. Additionally, these non-members have the same rights to access and correct information about themselves (assuming that their email addresses were correct enough to reach them) as anyone else who uses Draco Digital.
Our Use and Disclosure of Information
Internal Uses
We use the information we collect about you in order 1) to provide our services and process your transactions, 2) to provide customer service, 3) to determine your eligibility to receive offers for special features or products, and 4) to improve our products and services. At your option (as indicated in your Profile settings), we use the information you provide to access specific third party services on your behalf and perform the actions that you request us to perform, such as using a virtual terminal to process payments.

We give access to individually identifiable information about our users only to those employees who require it to fulfill customer service requests.

Disclosure to Other Draco Digital Customers
If you are a registered Draco Digital service user, your name, e-mail address, date of sign-up, and whether you have verified control of a bank account are displayed to other Draco Digital customers whom you have paid or who are attempting to pay you through a Draco Digital service. If you are a credit card processing service account holder, we will also display to other Draco Digital customers the Web site address (URL) and customer service contact information that you provide us. However, your credit card number, bank account and other financial information will NEVER be revealed to anyone whom you have paid or who has paid you through Draco Digital, except if we are required to do so pursuant to a subpoena or other legal process.

If you are paying through a Draco Digital service, the seller of the goods or services may request that you provide a mailing address that Draco Digital has confirmed as matching the billing address in the credit card system. You do not have to provide this information. If you do not provide the information, however, the seller may choose not to accept your Draco Digital payment and not to complete the transaction.

Disclosure to Third Parties Other Than Draco Digital Customers
Draco Digital will not sell or rent any of your personally identifiable information to third parties. Draco Digital will not share any of your personally identifiable information with third parties except in the limited circumstances described below, or with your express permission. These third parties are limited by law or by contract from using the information for secondary purposes beyond the purposes for which the information is shared.
  1. We share information with companies that help us process the transactions you request and protect our customersÕ transactions from fraud, such as sharing your credit card number with a service that screens for lost and stolen card numbers. See "Information About You From Third Parties" in "Information We Collect" above. Additionally, if you go into a negative balance and owe us money, we may share information with processing companies including collection agencies.
  2. We disclose the information we collect, as described in "Information We Collect" above, to companies that perform marketing services on our behalf or to other financial institutions with whom we have joint marketing agreements (for example, we disclose information to First Horizon Merchant Services, which is the issuer of Draco Digital merchant accounts, so that FHMS can determine customersÕ eligibility for the Draco Digital services and FHMS can better match the products we offer to our customersÕ needs). These companies are subject to confidentiality agreements with us and other legal restrictions that prohibit using the information except to market the specified Draco Digital-related products or services, unless you have affirmatively agreed or given your prior permission for other uses.
  3. We disclose information that we in good faith believe is appropriate to cooperate in investigations of fraud or other illegal activity, or to conduct investigations of violations of our User Agreement. Specifically, this means that if we conduct a fraud investigation and conclude that one side has engaged in deceptive practices, we can give that person or entity's contact information (but not bank account or credit card information) to victims who request it.
  4. We disclose information in response to a subpoena, warrant, court order, levy, attachment, order of a court-appointed receiver or other comparable legal process, including subpoenas from private parties in a civil action.
  5. We disclose information to your agent or legal representative (such as the holder of a power of attorney that you grant, or a guardian appointed for you).
  6. We share aggregated statistical data with our business partners or for public relations. For example, we may disclose that a specific percentage of our users live in California. However, this aggregated information is not tied to personally identifiable information.
  7. As with any other business, it is possible that Draco Digital in the future could merge with or be acquired by another company. If such an acquisition occurs, the successor company would have access to the information maintained by Draco Digital, including customer account information, but would continue to be bound by this Privacy Policy unless and until it is amended as described in "Introduction" above.
Our Contacts with Draco Digital Customers
We communicate with users on a regular basis via e-mail to provide requested services, and we also communicate by phone to resolve customer complaints or investigate suspicious transactions. We use your e-mail address to confirm your opening of a Draco Digital account, to send you notice of payments that you send or receive through Draco Digital (including referral payments described below), to send information about important changes to our products and services, and to send notices and other disclosures required by law. Generally, users cannot opt out of these communications, but they will be primarily informational in nature rather than promotional.

In connection with independent audits of our financial statements and operations, the auditors may seek to contact a sample of our customers to confirm that our records are accurate. However, these auditors cannot use personally identifiable information for any secondary purposes.

Internet Address Information We use IP addresses, browser types and access times to analyze trends, administer the site, improve site performance and gather broad demographic information for aggregate use.
Information Security
Draco Digital is committed to handling your customer information with high standards of information security. Your credit card and bank account information are stored only in encrypted form on computers that are not connected to the Internet. We restrict access to your personally identifiable information to employees who need to know that information in order to provide products or services to you. We maintain physical, electronic and procedural safeguards that comply with federal regulations to guard your nonpublic personal information. We test our security systems regularly and also contract with outside companies to audit our security systems and processes. For more information on Draco DigitalÕs security practices, please visit the Draco Digital Security Policy.

The security of your Draco Digital account also relies on your protection of your Draco Digital related password. We strongly urge that you never share your Draco Digital password with anyone. Draco Digital representatives will never ask you for your password, so any e-mail or other communication requesting your password should be treated as unauthorized and suspicious. If you do share your Draco Digital password with a third party for any reason, including because the third party has promised to provide you additional services such as account aggregation, the third party will have access to your account and your personal information, and you may be responsible for actions taken using your password. If you believe someone else has obtained access to your password, please change it immediately by logging in to your account at your Draco Digital service web site address and changing your settings, and also contact us right away as described in "Contacting Us" below.
Accessing and Changing Your Information
You can review the information you provided us and make any desired changes to such information, or to the settings for your Draco Digital affiliated account, at any time by logging in to your account on the Draco Digital related Web site and changing your preferences in the login section.

You can also close your account through a Draco Digital Web site. If you close your Draco Digital service account, we will mark your account in our database as "Closed," but will keep your account information in our database. This is necessary in order to deter fraud, by ensuring that persons who try to commit fraud will not be able to avoid detection simply by closing their account and opening a new account. However, if you close your account, your personally identifiable information will not be used by us for any further purposes, nor sold or shared with third parties, except as necessary to prevent fraud and assist law enforcement, or as required by law.
Contacting Us
If you have any questions about this privacy statement, Draco DigitalÕs information practices, or your dealings with any of Draco Digital's services, you can contact us by emailing info@dracodigital.com, call 620.230.0400 Monday through Friday between the hours of 9am and 5pm CST, or write us at Draco Digital, P.O. Box 4012, Pittsburg, KS 66762.