The purpose of this Privacy Policy is to explain how Symmetric Technologies, Inc. doing business as Main Street Sites (“MSS”, “we”, “us”, or “our”), collects and uses information pertaining to each of our unregistered visitors and registered users (each, a “Visitor” or “Subscriber” (respectively and as further defined below), or “you”), in connection with their access to and use of MSS’s websites (including www.mainstreetsites.com and any of its subdomains, the “Website”), Website Hosting and Back Office services (“Software Services”), payment processing and gateway services (“Payment Services”) and related services (collectively, the “Service” or “Services”).
Before using our Website or Software Services, read this Privacy Policy thoroughly. Make sure you understand our practices and policies with respect to your personal information. If you disagree with our practices and policies, you must immediately discontinue use of our Services and leave this Website.
If you have any questions or concerns regarding this Privacy Policy or our practices, please see the “Contact Us” section below.
Personal Data means data about a living individual who can be identified from those data (or from those and other
information either in our possession or likely to come into our possession), such as name, postal address, telephone number, email address, credit card number, and social media account ID. It does not include strings of code such as browser cookie IDs.
Non-Personal Data means un-identified and non-identifiable information pertaining to an individual, which may be made
available to us, or collected automatically via his/her use of the Services. Such Non-Personal Data does not enable us to identify the individual from whom it was collected. The Non-Personal Data collected by us mainly consists of
technical and aggregated usage information, such an individual’s browsing and ‘click-stream’ activity on the Services
as well as non-identifying information regarding the individual’s device, operating system, internet browser, screen
resolution, language and keyboard settings, internet service provider, referring/exit pages, date/time stamps, etc.
Subscriber means a natural or legal person who has registered for an account with us in order to use our Software
Services or Payment Services. With respect to Software Services, Subscribers include those who have a paid account or
a free trial account.
Visitor means a natural or legal person who visits the Website.
End User means a visitor, user, prospect or customer who interacts with a Subscriber via one of our Software
Services.
Data Controller means the natural or legal person who determines the purposes for which and the manner in which any
personal information is processed.
Data Processor means any natural or legal person who processes personal data on behalf of the Data Controller.
Main Street Sites acts in different data processing roles depending on the specific activity:
We collect or obtain Non-Personal Data and Personal Data. Personal Data we collect or obtain includes:
We may also collect similar information pertaining to End Users, solely for and on our Subscriber’s behalf as
described in the “End User Information” section below.
We may access Subscriber Accounts and Content only as reasonably necessary for customer support, system maintenance,
security monitoring, legal compliance, or enforcement of our Terms of Service.
This may include limited access to message content when necessary to deliver the Service (for example, to troubleshoot technical issues, respond to support requests, detect spam or abuse, or comply with legal obligations). We do not otherwise routinely review message content.
We will only use your Personal Data for the purposes set out above where we are satisfied that:
Main Street Sites processes End User personal data solely as a Data Processor on behalf of our Subscribers. Our
Subscribers act as the Data Controller for all End User relationships and data processing decisions.
| Data Type | Our Role | Controller | Purpose |
|---|---|---|---|
| End User content and communications | Processor | Subscriber | Service delivery per Subscriber instructions |
| End User contact/profile data | Processor | Subscriber | Platform functionality per Subscriber configuration |
| End User system/access logs | Processor | Subscriber | Technical service delivery |
| Security threat data | Controller | Main Street Sites | Platform security (limited to threat mitigation) |
If you are an End User of one of our Subscribers, you must direct all privacy rights requests to the Subscriber (your
Data Controller). We cannot respond to direct End User requests without Subscriber authorization. We will assist
Subscribers in fulfilling valid End User requests within our technical capabilities.
We act as Data Controller for End User data only when necessary for:
If requested to remove any End Users’ Personal Data, we will comply with such requests as required by applicable law.
Unless otherwise instructed by our Subscriber, we will retain End User Personal Data for the period set forth in the
“Data Retention” section below.
Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of
your state, province, country or other governmental jurisdiction where the data protection laws may differ from those
from your jurisdiction.
If you are located outside United States and choose to provide information to us, please note that we transfer the
data, including Personal Data, to the United States and process it there.
Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.
If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, your personal data may be
transferred to and processed in the United States or other countries where the data protection laws may differ from
those of your home jurisdiction. In such cases, we take steps reasonably necessary to ensure that your data receives
an appropriate level of protection consistent with applicable legal requirements.
MSS will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this
Privacy Policy and that no transfer of your Personal Data will take place to an organization or a country unless
there are adequate controls in place including the security of your data and other personal information.
We may disclose your Personal Data:
Please note that we may use and disclose Non-Personal Data for any purpose, except where not allowed under applicable
law. If we are required to treat Non-Personal Data as Personal Data under applicable law, then we may use it for all
the purposes for which we use and disclose Personal Data. In some instances, we may combine Non-Personal Data with
Personal Data. If we combine any Non-Personal Data with Personal Data, we will treat the combined information as
Personal Data.
MSS, together with its marketing, analytics and technology partners, uses certain monitoring and tracking technologies
(such as cookies, beacons, pixels, tags and scripts).
Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your
browser from a website and stored on your device. You can instruct your browser to refuse all cookies or to indicate
when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our
Service.
Examples of Cookies we use:
Cookies and other tracking technologies are used in order to maintain, provide and improve our Services on an ongoing
basis, and in order to provide a better experience to Visitors, Subscribers and End Users.
Please note that Third Party Services placing cookies or utilizing other tracking technologies through our Services
may have their own policies regarding how they collect and store information. Such practices are not covered by our
Privacy Policy and we do not have any control over them.
We take reasonable steps to put in place appropriate physical, electronic, and procedural safeguards to protect the
integrity and security of Visitor, Subscriber and End User Personal Data and to prevent unauthorized or unlawful
processing of, or the accidental loss, destruction, or damage to such data. However, data transmissions over the
Internet and methods of electronic storage are not 100% secure. Consequently, we cannot guarantee or warrant the
security of any Personal Data transmitted to us. Visitors and Subscribers who transmit Personal Data to us do so at
their own risk.
We will retain Personal Data of Visitors, Subscribers and End Users for as long as permitted in light of the
purpose(s) for which it was obtained and consistent with applicable law, or as otherwise needed to provide Services
to our Subscribers.
We may continue to retain such Personal Data even after a Subscriber ceases to use any particular Services, as
reasonably necessary to comply with our legal obligations, to resolve disputes regarding our Subscribers and/or their
End Users, to prevent fraud and abuse, to enforce our agreements and/or to protect our legitimate interests, or to
facilitate account reactivation.
Upon request, we will provide you with information about whether we hold or process your Personal Data. Subscribers
can access and edit their account information with MSS at any time by logging into their Software Services account.
You can also contact us at [email protected], and we will respond within the timeframes required by applicable law.
MSS acknowledges that End Users have the right to access and change the Personal Data we collect and process as a
Data Processor. An End User who seeks to access or to correct, amend, or delete Personal Data should direct their
request to the MSS Subscriber who is the Data Controller, and not to MSS directly. If the Data Controller requests
MSS remove Personal Data we will respond within a reasonable timeframe.
If you are an End User seeking to exercise privacy rights regarding data processed through our platform:
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. MSS aims to take
reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems,
please contact us.
In certain circumstances, you have the following data protection rights:
Please note that we may ask you to verify your identity before responding to such requests.
You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For
more information, please contact your local data protection authority in the European Economic Area (EEA).
We usually act on requests and provide information free of charge, but may charge a reasonable fee to cover our
administrative costs of providing the information for baseless or excessive/repeated requests, or further copies of
the same information. Alternatively, we may be entitled to refuse to act on the request.
Please consider your request responsibly before submitting it. We will respond as soon as we can. Generally, this
will be within one month from when we receive your request but, if the request is going to take longer to deal with,
we’ll come back to you and let you know.
Our Service is not intended for or directed to anyone under the age of 18. We do not knowingly collect Personal Data
from anyone under the age of 18. If you learn that your child has provided us with Personal Data without your
consent, you may alert us at [email protected]. If we
learn that we have collected any Personal Data from children under 18 without verification of parental consent, we
will take steps to delete such information.
We may update this Privacy Policy from time to time. We will post any adjustments to the Privacy Policy on this web
page, and the revised version will be effective when it is posted. Your continued use of the Services after any changes means you accept the revised Privacy Policy. If you do not agree to any changes, you must stop using the Services.
It is your obligation to ensure that you read, understand and agree to the latest version of the Privacy Policy. The “Effective
Date” date at the bottom of the Privacy Policy indicates the effective date of the current policy.
If you have any questions about this Privacy Policy, please contact us by email:
[email protected]
Effective Date: September 3, 2025
