This website provides general fitness and lifestyle information only. We are not a medical provider. Content is not medical advice, diagnosis, or treatment. Individual experiences vary.

Privacy Policy

U.S. Privacy Compliance. This Policy complies with CCPA/CPRA, VCDPA, CPA, CTDPA, UCPA, TDPSA, Nevada NPICICA, New York SHIELD Act, COPPA, and FTC privacy principles. Last reviewed June 16, 2026.

Effective date: June 16, 2026
Last updated: June 16, 2026

This Privacy Policy describes how Recoverexpel.ddd ("we," "us," or "our") collects, uses, stores, and protects personal information when you visit our website at recoverexpel.world or contact us. We are based in Rochester, New York, United States, and this Policy is designed to comply with applicable U.S. federal and state privacy laws, including:

  • California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA);
  • Virginia Consumer Data Protection Act (VCDPA);
  • Colorado Privacy Act (CPA);
  • Connecticut Data Privacy Act (CTDPA);
  • Utah Consumer Privacy Act (UCPA);
  • Texas Data Privacy and Security Act (TDPSA);
  • Oregon Consumer Privacy Act (OCPA);
  • Montana Consumer Data Privacy Act;
  • Delaware Personal Data Privacy Act;
  • Nevada Revised Statutes Chapter 603A (NPICICA);
  • New York Stop Hacks and Improve Electronic Data Security (SHIELD) Act;
  • Children's Online Privacy Protection Act (COPPA); and
  • Federal Trade Commission (FTC) guidance on fair information practices.

Where the General Data Protection Regulation (GDPR) applies to individuals in the European Economic Area (EEA), United Kingdom, or Switzerland, we also honor the rights described in Section 12 below.

1. Business / Data Controller

Recoverexpel.ddd
1035 Dewey Ave, Rochester, NY 14613, United States
Email: askuse@recoverexpel.world
Phone: +1 (585) 484-0234

2. Information We Collect

We collect information that identifies, relates to, describes, or could reasonably be linked with you ("personal information" or "personal data"). The categories below follow the classification used in U.S. state privacy laws.

A. Information you provide directly

  • Identifiers: name, email address (via contact form or event registration email).
  • Customer records: message content and inquiry details you submit.
  • Consent records: confirmation that you agreed to data processing (contact form checkbox).

B. Information collected automatically

  • Internet or network activity: IP address, browser type, device type, operating system, referring URL, pages viewed, session timestamps, and approximate location derived from IP.
  • Cookie and tracking data: preferences stored in local storage, analytics identifiers if you consent — see our Cookie Policy.

C. Information we do not collect

We do not intentionally collect sensitive personal information as defined under CPRA and similar state laws, including Social Security numbers, driver's license numbers, financial account details, precise geolocation, racial or ethnic origin, religious beliefs, health diagnosis data, sex life information, genetic data, biometric identifiers, or contents of mail, email, or text messages. We do not collect personal information from children under 13.

3. Sources of Personal Information

  • Directly from you when you submit the contact form, register for events, or email us.
  • Automatically from your browser or device when you visit our website.
  • From service providers that host or support our website (e.g., server logs).

4. How We Use Personal Information (Business Purposes)

  • Respond to inquiries, event registrations, and customer support requests.
  • Operate, maintain, and secure the website (fraud prevention, abuse detection, uptime monitoring).
  • Analyze site usage and improve content, layout, and functionality (with consent for non-essential analytics).
  • Measure marketing campaign performance (with consent for marketing cookies).
  • Comply with legal obligations, enforce our Terms of Use, and protect our rights.
  • Maintain records of consent and privacy requests to demonstrate regulatory compliance.

We do not use personal information for automated decision-making that produces legal or similarly significant effects. We do not use sensitive personal information to infer characteristics about you.

5. Legal Bases (GDPR — where applicable)

  • Respond to inquiries — Legitimate interest / contract performance (contact form).
  • Website operation and security — Legitimate interest (strictly necessary cookies, server logs).
  • Analytics — Consent (non-essential cookies, where enabled).
  • Marketing measurement — Consent (non-essential cookies, where enabled).
  • Legal compliance — Legal obligation (responding to lawful requests, record retention).

6. Disclosure of Personal Information

We may disclose personal information to the following categories of recipients for the business purposes listed in Section 4:

  • Service providers / processors: website hosting, email delivery, analytics (with consent), security monitoring, and IT support. These parties are contractually required to use data only on our instructions and protect it appropriately.
  • Legal and safety: courts, regulators, law enforcement, or other parties when required by law, subpoena, or to protect rights, safety, and property.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, subject to continued protection of your information.

Sale and Sharing — We Do Not Sell Personal Information

We do not sell personal information for monetary consideration. We do not share personal information for cross-context behavioral advertising (targeted advertising) without your consent. Because we do not sell or share personal information as defined under CCPA/CPRA, a "Do Not Sell or Share My Personal Information" opt-out link is not required for our current practices; however, California and other state residents may still contact us to confirm or exercise related rights.

Nevada residents may submit an opt-out request regarding the sale of covered information under NRS 603A.340 by emailing askuse@recoverexpel.world with subject "Nevada Opt-Out." We do not currently sell covered information as defined under Nevada law.

7. Data Retention

  • Contact form submissions: up to 24 months from last interaction, unless you request earlier deletion.
  • Server logs: up to 12 months.
  • Cookie data: as specified in the Cookie Policy (typically 1–13 months depending on cookie type).
  • Consent records: up to 36 months to demonstrate compliance.

When retention periods expire, we delete or anonymize personal information unless longer retention is required by law (e.g., pending litigation or regulatory investigation).

8. Security Measures (Including New York SHIELD Act)

We maintain reasonable administrative, technical, and physical safeguards designed to protect personal information, consistent with the New York SHIELD Act and industry standards. Measures include:

  • HTTPS/TLS encryption for data in transit;
  • Access controls limiting employee and contractor access to personal information on a need-to-know basis;
  • Secure hosting infrastructure with regular updates;
  • Staff awareness of privacy and security responsibilities.

No method of transmission or storage is completely secure. We cannot guarantee absolute security. In the event of a data breach affecting personal information, we will notify affected individuals and regulators as required by applicable U.S. state breach notification laws (including New York General Business Law § 899-aa).

9. Your Privacy Rights (United States)

Depending on your state of residence, you may have the following rights regarding your personal information:

  • Right to know / access: confirm whether we process your personal information and receive a copy of specific pieces collected.
  • Right to delete: request deletion of personal information we collected from you, subject to legal exceptions.
  • Right to correct: request correction of inaccurate personal information we maintain about you.
  • Right to opt out: opt out of the sale of personal information, sharing for targeted advertising, and profiling in furtherance of decisions with legal or similar significant effects — we do not engage in these activities without consent.
  • Right to limit use of sensitive personal information: we do not collect sensitive personal information for purposes requiring a "Limit" right under CPRA.
  • Right to data portability: receive personal information in a portable, readily usable format where technically feasible (available in California, Virginia, Colorado, and other states).
  • Right to non-discrimination: we will not deny goods or services, charge different prices, or provide a different level of service because you exercised privacy rights.
  • Right to appeal: if we deny your request, residents of Virginia, Colorado, Connecticut, Texas, Oregon, Montana, Delaware, and other applicable states may appeal by replying to our decision email with subject "Privacy Appeal."

California Residents (CCPA / CPRA)

California residents have the rights listed above. In the preceding 12 months, we collected the categories of personal information described in Section 2 for the business purposes in Section 4. We disclosed identifiers and internet activity to service providers only. We did not sell or share personal information for cross-context behavioral advertising.

Shine the Light (Cal. Civ. Code § 1798.83): California residents may request information about disclosure of personal information to third parties for their direct marketing purposes. We do not disclose personal information to third parties for their direct marketing purposes.

Authorized agents: You may designate an authorized agent to submit a request on your behalf. We may require written proof of authorization and verify your identity directly.

Other U.S. State Residents

Residents of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Delaware, and other states with comprehensive privacy laws may exercise applicable rights using the same contact methods below. We respond within the timeframe required by your state's law (typically 45 days, with one extension where permitted).

How to Submit a Privacy Request

Email askuse@recoverexpel.world with subject line "Privacy Request" and include:

  • Your full name and email address used on our site;
  • Your state of residence;
  • The specific right you wish to exercise (access, delete, correct, opt-out, appeal);
  • Sufficient detail for us to locate your records.

We verify identity before fulfilling requests to prevent unauthorized access. We may request additional information to confirm your identity. We do not charge a fee unless a request is manifestly unfounded, excessive, or repetitive as permitted by law.

We honor Global Privacy Control (GPC) and similar opt-out preference signals as valid requests to opt out of sale/sharing where applicable. Our cookie banner and JavaScript implementation treat GPC as a signal to reject non-essential cookies.

10. International Transfers

Our website is operated from the United States. Personal information is processed and stored in the United States unless otherwise stated. If you access our site from outside the U.S., you consent to transfer and processing in the U.S., which may have different data protection laws than your country. For EEA/UK/Switzerland residents, we rely on appropriate safeguards such as Standard Contractual Clauses where required.

11. Marketing Communications (CAN-SPAM)

If we send promotional emails, they will comply with the CAN-SPAM Act: accurate header information, clear identification as an advertisement where required, our valid physical postal address (1035 Dewey Ave, Rochester, NY 14613), and an unsubscribe mechanism honored within 10 business days. Contact form replies are transactional or service-related unless you separately opt in to marketing.

12. GDPR Rights (EEA / UK / Switzerland)

  • Access, rectification, erasure, restriction, portability, and objection to processing.
  • Withdraw consent at any time without affecting prior lawful processing.
  • Lodge a complaint with your local supervisory authority.

Contact us using the details in Section 15. We respond within one month, extendable where permitted by law.

13. Children's Privacy (COPPA)

Our website is not directed to children under 13 years of age, and we do not knowingly collect personal information from children under 13 in compliance with the Children's Online Privacy Protection Act (COPPA). If you are a parent or guardian and believe your child under 13 provided personal information to us, contact us immediately at askuse@recoverexpel.world and we will delete such information promptly.

14. Changes to This Policy

We may update this Privacy Policy to reflect changes in law, technology, or our practices. Material changes will be posted on this page with an updated "Last updated" date. Where required by law, we will provide additional notice (e.g., a banner on the website). Continued use after changes constitutes acceptance of the updated Policy.

15. Contact Us

Questions about this Privacy Policy or to exercise your privacy rights:
Recoverexpel.ddd
1035 Dewey Ave, Rochester, NY 14613, United States
Email: askuse@recoverexpel.world
Phone: +1 (585) 484-0234