Privacy Policy

Introduction and Scope

This Privacy Policy (“Policy”) describes how rebate.blue (“Company,” “we,” “us,” or “our”) collects, uses, discloses, and protects information when you access or use the QMID Directory (“Service”), a public educational resource for IRS tax credit information.

BY ACCESSING OR USING THE SERVICE, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO THIS PRIVACY POLICY. If you do not agree to this Policy, you must not use the Service. This Policy is incorporated into and made part of our Terms of Service.

This Policy applies only to the QMID Directory service at rebate.blue. It does not apply to any other websites, services, or applications operated by Company or third parties, even if linked from this Service.

1. Service Nature - Public Access Without Authentication

The QMID Directory is a publicly accessible informational service that does not require registration, authentication, or account creation. You may access and use the Service without providing any personal identification information such as your name, email address, or contact details.

Because no accounts are created or maintained, we do not have user-specific data records that can be accessed, modified, corrected, or deleted on an individual basis. The Service is designed to be used anonymously for general informational purposes.

2. Information We Collect Automatically

When you access or use the Service, we automatically collect certain information through cookies, web beacons, log files, and similar technologies. This information may include:

Technical and Device Information:

• IP address (which may indicate approximate geographic location)
• Browser type, version, and settings
• Operating system and device type
• Screen resolution and display settings
• Device identifiers and characteristics
• Time zone and language preferences
• Hardware and software configurations

Usage and Interaction Data:

• Pages visited and content viewed
• Date, time, and duration of visits
• Search queries and navigation patterns
• Click paths and interactions with Service features
• Frequency and recency of visits
• Session identifiers and activity logs

Referral and Traffic Data:

• Referring website URLs
• Search engine queries that led to the Service
• Traffic sources and marketing attribution data
• Exit pages and destinations

Performance and Error Data:

• Page load times and performance metrics
• Error logs and diagnostic data
• Service availability and reliability metrics

3. Information We Do Not Collect

The Service is designed to operate without collecting personal identification information. We do not collect:

• Names, email addresses, phone numbers, or mailing addresses
• Authentication credentials, passwords, or account information
• Payment information, credit card numbers, or financial data
• Tax identification numbers or Social Security numbers
• Contractor IDs, business licenses, or professional credentials
• Precise geolocation data (GPS coordinates)
• Biometric data or health information
• Information from children under 13 (see Section 12)

4. How We Use Collected Information

We use automatically collected information for the following purposes:

Service Operation and Improvement:

• Operating, maintaining, and providing the Service
• Analyzing usage patterns to improve functionality and user experience
• Identifying and fixing technical issues, bugs, and errors
• Optimizing Service performance and load times
• Developing new features and content

Analytics and Research:

• Generating aggregated, anonymized statistics about Service usage
• Understanding which content is most accessed and useful
• Analyzing traffic patterns and user behavior trends
• Measuring Service effectiveness and reach

Security and Integrity:

• Detecting, preventing, and addressing fraud, abuse, or security threats
• Protecting against unauthorized access or malicious activity
• Enforcing our Terms of Service
• Monitoring for compliance with usage policies

Legal and Business Purposes:

• Complying with legal obligations and responding to lawful requests
• Protecting our rights, property, and safety
• Supporting legitimate business interests

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect usage information and support Service functionality. These technologies include:

Cookies: Small text files stored on your device that help us recognize your browser and remember preferences. We use:

• Essential Cookies: Necessary for basic Service functionality (e.g., theme preferences)
• Analytics Cookies: Help us understand how visitors interact with the Service
• Performance Cookies: Monitor Service performance and reliability

Web Beacons and Pixels: Small graphic images that help us track usage and measure effectiveness.

Log Files: Server logs that record technical information about visits.

Managing Cookies: You can control cookies through your browser settings. Most browsers allow you to block or delete cookies, manage cookie preferences, or receive notifications when cookies are set. Note that disabling cookies may affect certain Service functionality.

Do Not Track: Some browsers transmit “Do Not Track” signals. Due to the lack of common industry standards for responding to these signals, we do not currently respond to Do Not Track signals.

6. Third-Party Analytics and Services

We may use third-party analytics services to help us understand how the Service is used. These services may include:

• Google Analytics: Web analytics service provided by Google LLC
• Other Analytics Providers: Additional analytics tools as needed for Service improvement

These third-party services may use cookies and similar technologies to collect information about your use of the Service. They may also combine information collected from this Service with information from other websites and services. These third parties have their own privacy policies governing their use of information.

For more information about Google Analytics and how to opt out, visit: tools.google.com/dlpage/gaoptout

7. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

We may share or disclose information in the following circumstances:

Service Providers: We may share information with third-party vendors who provide services on our behalf, such as:

• Web hosting and infrastructure providers
• Analytics and measurement services
• Security and fraud prevention services
• Technical support and maintenance providers

These service providers are contractually obligated to use information only for the purposes of providing services to us and to maintain appropriate confidentiality and security measures.

Legal Requirements: We may disclose information when we believe in good faith that disclosure is necessary to:

• Comply with applicable law, regulation, legal process, or governmental request
• Enforce our Terms of Service or other agreements
• Protect our rights, property, or safety, or that of our users or others
• Detect, prevent, or address fraud, security, or technical issues

Business Transfers: In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, information may be transferred to the successor entity as part of that transaction.

Aggregated and Anonymized Data: We may share aggregated, de-identified, or anonymized data that cannot reasonably be used to identify you for any purpose, including research, analytics, and marketing.

8. Data Retention

We retain automatically collected information for as long as reasonably necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law.

Retention periods may vary based on:

• The type of information collected
• Our legitimate business needs
• Legal, regulatory, or contractual requirements
• Applicable statutes of limitations

Aggregated, anonymized data that cannot identify individuals may be retained indefinitely for analytical and statistical purposes.

9. Data Security

We implement reasonable technical, administrative, and physical safeguards designed to protect information from unauthorized access, disclosure, alteration, and destruction. These measures include:

• Encryption of data in transit using TLS/SSL
• Secure server infrastructure and access controls
• Regular security assessments and monitoring
• Employee training on data protection practices

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect information, we cannot guarantee or warrant the absolute security of any information transmitted to or from the Service. You use the Service and transmit information at your own risk.

We are not responsible for circumvention of any privacy settings or security measures contained on the Service or for security breaches affecting third-party services.

10. Your Rights and Choices

As a user of this public service, you have certain rights and choices regarding your information:

Access and Transparency: You have the right to understand what information we collect, as described in this Policy.

Cookie Control: You can control cookies through your browser settings, including blocking, deleting, or managing cookies.

Analytics Opt-Out: You can opt out of Google Analytics using the Google Analytics Opt-Out Browser Add-on.

Anonymous Use: You can use the Service without providing personal identification information.

No Account Data: Because this Service does not require accounts or authentication, we do not maintain user-specific data records that can be accessed, modified, or deleted on an individual basis. If you believe we have inadvertently collected personal information, please contact us.

California Residents: If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA). Because this Service does not collect personal information as defined under CCPA, most CCPA rights may not apply. If you have questions about your rights, please contact us.

European Users: If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you may have additional rights under applicable data protection laws. Because this Service does not collect personal data requiring consent under GDPR and operates on legitimate interest bases, some rights may be limited. For questions, please contact us.

11. International Data Transfers

This Service is operated from the United States. If you access the Service from outside the United States, you understand and acknowledge that:

• Information may be transferred to, stored, and processed in the United States
• U.S. data protection laws may differ from those in your country
• By using the Service, you consent to such transfers
• We implement appropriate safeguards for international data transfers where required

12. Children's Privacy

The Service is not intended for children under 13 years of age (or the applicable age in your jurisdiction). We do not knowingly collect personal information from children under 13.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.

If you are under 18, you should use this Service only with the involvement and supervision of a parent or guardian.

13. Third-Party Links and Services

The Service may contain links to third-party websites, including the IRS website and manufacturer websites. These third-party sites have their own privacy policies and practices, which we do not control. We are not responsible for the privacy practices of third-party websites. We encourage you to review the privacy policies of any third-party sites you visit.

The inclusion of any link does not imply endorsement by us of the linked site or its content.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make changes:

• We will update the “Last Updated” date at the top of this Policy
• Material changes may be highlighted on the Service
• Your continued use of the Service after changes become effective constitutes acceptance of the updated Policy

We encourage you to review this Policy periodically. It is your responsibility to check for updates.

15. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, you may contact us at [email protected].

Please include sufficient information for us to understand and respond to your inquiry.

16. Additional Disclosures

No Sale of Personal Information: We do not sell personal information to third parties as defined under the California Consumer Privacy Act or similar laws.

No Sensitive Information: We do not collect categories of sensitive personal information such as Social Security numbers, financial account information, health information, biometric data, or precise geolocation.

Automated Decision-Making: We do not use automated decision-making or profiling that produces legal or similarly significant effects on individuals.