Effective Date: 16 June 2025
Data Minds Marketing, LLC ("NovaLab+", "we", "us", or "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit https://www.novalabplus.com or purchase NovaLab+ Eye Health & Vision Support and any other products or services we offer worldwide (collectively, the "Services").
This Policy is intended to be consistent with U.S. federal and state privacy laws—including the California Consumer Privacy Act (CCPA/CPRA), Virginia Consumer Data Protection Act (VCDPA), Colorado Privacy Act (CPA), Utah Consumer Privacy Act (UCPA), Texas Data Privacy and Security Act (TDPSA) and other emerging U.S. state laws—as well as the EU/EEA GDPR, UK GDPR, Canada’s PIPEDA, and other applicable international data-protection regulations. If any portion of this Policy conflicts with local law, local law prevails.
This Policy applies to personal data we collect online and offline, including through our website, emails, social media pages, promotional campaigns, and any direct interactions with you.
| Category | Examples | Source |
|---|---|---|
| Identifiers | Name, email, postal address, phone, IP address, device ID | Provided by you; automatically collected |
| Commercial Information | Products purchased, marketing preferences, transaction history | Generated during transactions |
| Payment Information | Cardholder name, billing address, last four digits of payment card (we use PCI-compliant processors; we do not store full card numbers) | Payment processor |
| Internet / Network Activity | Device/browser type, pages viewed, time spent, cookies, pixels, log data | Automatically when you use the Services |
| Geolocation Data | General location (city/region) inferred from IP | Automatically |
| User-Generated Content | Reviews, photos, testimonials | Provided by you |
| Sensitive Data | Only if voluntarily provided—for example, dietary restrictions or health goals | Provided by you |
We do not knowingly collect information from children under 13. See Section 11.
We use first- and third-party cookies, pixels, tags, and analytics tools (e.g., Google Analytics, Meta Pixel) to understand usage patterns, improve the Site, and serve targeted ads. You can manage cookies via your browser settings and (where required) our Consent Manager.
We process personal data to:
Fulfil orders and provide customer service.
Operate, maintain, and improve the Services.
Send transactional emails (e.g., order confirmations, shipping updates).
Provide marketing communications, promotions, and personalized content (with consent where required).
Conduct analytics, research, and product development.
Detect, prevent, and respond to fraud, security incidents, and misuse.
Comply with legal obligations and protect our rights or those of others.
For individuals in the European Economic Area or United Kingdom, we rely on one or more of the following lawful bases under GDPR/UK GDPR:
Contract performance (processing orders, customer support)
Legitimate interests (marketing, analytics, fraud prevention)—unless those interests are overridden by your rights
Consent (for email marketing and certain cookies)
Legal obligation (tax and accounting requirements)
We may share information with:
Service providers (payment processors, fulfillment centers, email delivery, analytics, advertising, customer-support partners) under written contracts.
Advertising partners to measure and personalize ads. We provide opt-out options (see Section 6).
Affiliates & business transfers in the event of a merger, acquisition, or asset sale.
Authorities to comply with subpoenas, court orders, or other legal requirements.
We do not sell your personal information for money, but certain disclosures (e.g., to ad networks) may constitute "sharing" or "targeted advertising" under U.S. state laws. You can opt out—see Section 6.
Residents of California, Virginia, Colorado, Utah, Texas, and other states with privacy laws have rights to:
Access and obtain a copy of personal data collected about them.
Delete personal data (subject to exceptions).
Correct inaccuracies.
Opt out of sale, sharing, or targeted advertising.
Limit use/disclosure of sensitive personal data (where applicable).
To exercise rights, contact us (Section 13) or submit a request via our Do Not Sell or Share My Information link. We will verify your identity and respond within statutory timeframes.
You have the right to access, rectify, erase, restrict processing, object, and—where processing is based on consent—withdraw consent at any time. You may lodge a complaint with your local Data Protection Authority.
Where applicable, you may access, update, or delete your personal information, subject to legal limitations.
Cookie Consent Manager (EU/UK): We display a banner the first time you visit to obtain consent for non-essential cookies.
Global Privacy Controls (U.S.): We honor GPC signals where legally required.
Opt-Out Mechanisms:
Google Ads: adssettings.google.com
Meta Ads: facebook.com/adpreferences
Industry tools: optout.aboutads.info, optout.networkadvertising.org
We are headquartered in the United States. When we transfer personal data outside the EEA/UK, we rely on Standard Contractual Clauses or other approved safeguards.
We retain personal data for as long as necessary to fulfil the purposes outlined in this Policy, comply with legal obligations, resolve disputes, and enforce agreements. Typical retention periods:
Orders & invoices: 7 years (tax law)
Marketing lists: until you unsubscribe or after 24 months of inactivity
We employ administrative, technical, and physical safeguards—such as HTTPS encryption, access controls, and PCI-compliant payment processing—to protect personal data. No method of transmission over the Internet or storage is 100% secure; we cannot guarantee absolute security.
The Services are not directed to children under 13, and we do not knowingly collect their personal data. If we learn we have collected such information, we will delete it promptly.
Our Site may contain links to third-party websites or plug-ins. We do not control and are not responsible for the privacy practices of those third parties.
We may update this Policy periodically. If we make material changes, we will notify you via email or a prominent notice on the Site. The "Effective Date" at the top indicates when this Policy was last revised.
If you have questions or wish to exercise your privacy rights, contact us at:
Data Minds Marketing, LLC
Attn: Privacy Officer
131 Continental Dr, Suite 305, Newark, DE 19713, USA
Email: support@novalabplus.com
Phone (U.S. Toll-Free): +1 (302) 394-3501
You may also reach out to our EU representative (Art. 27 GDPR):
Privacy-Rep.eu
Dr.-Klein-Str. 29, 88069 Tettnang, Germany
Email: gdpr@privacy-rep.eu
California and other state residents can exercise their right to opt out of the "sale" or "sharing" of personal information by clicking "Do Not Sell/Share" at the bottom of any page or contacting us as described above.
This Privacy Policy is provided for general informational purposes and does not constitute legal advice. You should consult qualified counsel to ensure your compliance obligations are met.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Maecenas imperdiet nisi eget gravida vestibulum. Ut rutrum facilisis leo, ac vulputate elit consectetur ut. Morbi rhoncus mauris ligula, et pulvinar nulla rhoncus sit amet. Pellentesque a quam id odio malesuada auctor.
