Last revised on: April 8, 2026
Last Updated: April 8, 2026
Vintory, LLC (“Vintory”, “we”, “our”, “us”) values your privacy and is committed to protecting your personal information. This Privacy Policy (“Privacy Policy”) explains how we collect, use, store, share, and protect your personal data when you visit or use our website located at https://www.vintory.com (the “Website”).
We are committed to transparency and accountability in the collection and use of personal information. This Policy is intended for compliance with the California Privacy Rights Act (CPRA), the California Consumer Privacy Act (CCPA), the Maryland Online Data Privacy Act (MODPA), and the Virginia Consumer Data Protection Act (CDPA), among others.
By using the Website, you acknowledge that you have read and understood this Privacy Policy.
Personal Information directly from you from account creation, surveys, forms, purchases, or communications including your: name, company name and job title, and contact information (address, phone, email).
Our service providers, business partners, third-party data providers, and social media platforms may automatically log information about you, your computer, and activity occurring on or through the services. The information that may be collected automatically includes:
On Website collects this information using cookies, browser web storage (also known as locally stored objects, or “LSOs”), web beacons, and similar technologies, and our emails may also contain web beacons.
This type of information may be collected over time and across third-party websites.
We may collect personal information from publicly available sources. This includes, but is not limited to, public records such as business registrations, professional licenses, government filings, real estate records, and other legally accessible public databases. We use this information to enhance our services, verify user credentials, support analytics, and provide accurate business insights.
We may use the personal data we collect for the following purposes and as otherwise described in this Privacy Policy or at the time of collection:
Most browser settings let you delete and reject cookies placed by websites. Many browsers accept cookies by default until you change your settings. If you do not accept cookies, you may not be able to use all functions of the Website. For more information about cookies, including how to see what cookies have been set on your browser and how to manage and delete them, visit https://www.allaboutcookies.org.
Upon first visit, you will be presented with a cookie consent banner that allows you to:
Consent and Opt-Out. You may withdraw consent or opt out of marketing, data sharing, or profiling at any time via email to [email protected]
When you make a purchase through our Website, we collect payment information necessary to process your transaction. This may include your name, billing address, and credit card or other payment details.
We use third-party payment processors to securely process these transactions. Our primary payment processor is Maxio Payments. This service provider is authorized to use your payment information only as necessary to provide payment processing services to us.
We do not store full credit card numbers on our servers. All payment information is securely handled by our processor in accordance with Payment Card Industry Data Security Standards (PCI-DSS).
Please refer to the privacy policies of Maxio Payments for more information about how they handle your personal information: https://www.maxio.com/privacy-policy.
We retain personal information only for as long as there is a legitimate business or legal need to do so. This includes maintaining records for tax, accounting, regulatory, contractual, or audit purposes. When such needs no longer exist, we securely delete, anonymize, or otherwise render the personal data inaccessible in accordance with our data retention protocols and applicable law.
We may disclose, sell, or share personal information with unaffiliated third parties, partners, and vendors in the following contexts:
We may sell business contact information that you have provided to us or that we have sourced from publicly available data. Under applicable law, this may include information such as your name, professional title, business address, and email if publicly accessible. If you have not told us otherwise, Vintory may share your personal data with third-party advertising partners in ways that, under certain state privacy laws, qualify as a “sale” of personal data or as “sharing” for targeted or cross-context behavioral advertising.
If you would like to opt out of the sale or sharing of your personal information or limit the use of your sensitive personal information, you may do so by emailing our Data Protection Officer at [email protected] with your specific request.
We employ reasonable physical, electronic, and managerial procedures, including use of third-party services to protect your data. However, no system is 100% secure. You submit data at your own risk.
If you are outside the U.S., your information may be transferred to and processed in the U.S. where data protection laws may differ. We use Standard Contractual Clauses or rely on your explicit consent where required. You may request a copy of the Standard Contractual Clauses by contacting us at [email protected].
We do not knowingly collect or sell personal data from individuals under the age of 16. Parents may contact us to request deletion of minor’s data.
We implement industry best practices to safeguard your personal information against unauthorized access, disclosure, alteration, or destruction. These measures include physical security protocols, administrative controls such as employee training and internal policies, and technical protections like encryption, firewalls, and strict access controls. All third-party data processors we engage are contractually required to adhere to equivalent or stronger data protection standards to ensure the confidentiality and integrity of your information. We use physical, administrative, and technical safeguards including encryption, firewalls, access controls, and employee training. Data processors are bound by strict security obligations.
We follow cybersecurity best practices to protect personal data from unauthorized access, disclosure, alteration, and destruction.
Depending on where you live, you may be entitled to specific rights regarding your personal data. These laws are designed to give you greater control over how your information is collected, used, and shared. See the table below for a summary of these rights:
| Right to Know | Depending on where you live, you may be entitled to a detailed account of the personal data we collect, including:
|
| Right to Access & Portability | You may be entitled to request a copy of the personal data we have collected. Where applicable law requires it, we will provide a copy of your personal data in a structured, machine-readable format so that you can transfer it to another service provider if you choose. |
| Right to Correction | If the personal data we collected is inaccurate, you may ask us to correct it. We will consider your request in light of the type of data involved and the purpose for which it is used. |
| Right to Deletion | You may request that we delete personal data we have collected. Certain exceptions under applicable law may prevent us from honoring all or part of such a request. |
| Right to Opt-Out of Sales or Sharing | You may instruct us not to sell your personal data or share it with third parties for cross-context behavioral advertising or targeted advertising. See below for instructions on how to exercise this right. |
| Right to Withdraw Consent / Limit Sensitive Information Use | Where we rely on your consent to process sensitive personal information, you may withdraw that consent at any time. You may also ask us to restrict the way we use or disclose your sensitive personal information to only what is necessary to provide the services you requested. To do so, email our Data Protection Officer at [email protected]. |
| Right to a List of Third Parties | You may request a list identifying the specific third parties (as that term is defined under the privacy law of your state) to whom we have disclosed your personal data. Send requests to [email protected]. |
Residents of certain states have the right to be free from retaliation for exercising their privacy rights. Vintory will not deny services, charge you a different price, or provide a lower quality of service solely because you submitted a privacy rights request. That said, if a particular right โ such as deletion or opt-out โ limits our ability to use certain data that is integral to a product or service we offer, the resulting difference in your experience would reflect that technical impact, not any form of penalization.
Some state privacy laws permit you to designate another person or organization to submit privacy requests on your behalf. Before we act on a request from a purported agent, we will take reasonable steps to verify both the agent’s authority and your identity. As a general matter, we will require written documentation establishing the agency relationship โ either a notarized power of attorney or a signed letter from you that identifies both you and the agent, states the scope of the agent’s authority, and confirms your permission for the agent to act. We reserve the right to contact you directly to confirm these details, even after an agent has submitted documentation.
Other state or national privacy laws may also apply. These laws may grant you similar rights concerning your personal information. Where applicable, we will honor such rights upon request. To exercise any of these rights, email: [email protected]. Requests will be confirmed within the timeframes required by applicable law. You may be required to verify your identity.
If we decline your privacy rights request and you believe we did so in error, you may ask us to reconsider. Send your appeal to [email protected] with “Privacy Rights Appeal” in the subject line. Please explain why you believe the denial was incorrect, and include any supporting information. We will review the appeal and respond within the period required by the privacy law of your state. If you remain unsatisfied after our review, you may have the right to escalate the matter to your state’s Attorney General or applicable data protection authority.
This section applies only to individuals residing in California and supplements the rights and disclosures set forth elsewhere in the Privacy Policy.
The California Consumer Privacy Act requires us to describe our data collection practices using the statutory categories defined in that law. Below, we map those categories to the types of data described in the “Information We Collect” section of our Privacy Policy:
We obtain this data directly from you, automatically through your use of our Website, from third-party data partners and service providers, and from publicly accessible records. The categories of third parties to whom we disclose this data, and the business purposes for those disclosures, are described in the “Disclosure, Sale, or Sharing of Information” and “Data Sales” sections of the Privacy Policy.
California Civil Code ยง 1798.83 gives California residents a separate right to ask businesses about third-party direct marketing disclosures. Specifically, if we share personal information with third parties for their own direct marketing purposes, you may request a list of the categories of information shared and the identities of those third parties. To submit such a request, or to opt out of this type of sharing, contact us at [email protected]. We will respond within 30 days.
This policy is reviewed and updated annually. You will be notified of material changes via notice on the homepage of our Website.
We maintain internal records of data processing activities and user consents in accordance with GDPR Article 30 and SHIELD Act standards. Documentation is available upon regulatory request.
Contact our Data Protection Officer at [email protected] or by mail at:
Vintory, LLC
Attn: Data Protection Officer
1103 Somerset Place
Lutherville, MD 21093
