Privacy Policy

At Flag Desk, your privacy and the protection of your personal information is important to us. The following Privacy Policy has been provided to inform you of the way we collect and use information when you visit, navigate, transact, and communicate with us via the site.

What information do we collect?

We collect information from you when you fill out a form or place an order.

When filling out a form or ordering, as appropriate, you may be asked to enter the following: name, email address, mailing address, phone number or credit card information. You may, however, visit our site anonymously.

What do we use your information for?

Any of the information we collect from you may be used in one of the following ways:

• To personalize your experience (your information helps us to better respond to your individual needs).
• To improve our website (we continually strive to improve our website offerings based on the information and feedback we receive from you).
• To improve customer service (your information helps us to more effectively respond to your customer service requests and support needs).
• To process transactions.
• To send periodic emails. The email address you provide may be used to send you information such as Order Shipment/Tracking information, respond to inquiries, and/or other requests or questions.
• Any promotional email sent by Flag Desk will contain an opt-out option. You may opt-out from receiving electronic marketing communications by following the “unsubscribe” instructions in any such communication you receive.

How do we protect your information?

We implement a variety of security measures and follow industry best practices to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information. Our approach to security includes:

• Secure Data Transmission: Our entire website is secured behind an **SSL (Secure Socket Layer) certificate (HTTPS)**, which encrypts all data transmitted between your browser and our servers.
• Payment Security and Compliance: We adhere to the **latest PCI DSS (Payment Card Industry Data Security Standard) requirements**, including the recently implemented **PCI 4.0 compliance** standards, ensuring the secure handling and processing of payment data.
• Payment Data Tokenization: All supplied sensitive and credit card information is **tokenized** by our payment processor. This means your private credit card information is never stored on our servers after a transaction.
• Application Security Best Practices: We follow general software security best practices, including protecting sensitive data submitted through forms, using measures like Cross-Site Request Forgery (**CSRF**) protection, and implementing **reCAPTCHA** to prevent automated misuse and maintain website integrity.
• Secure Infrastructure: We utilize secure server infrastructure to host and protect your data.

Do we use cookies?

Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the sites or service providers systems to recognize your browser and capture and remember certain information.

We may use cookies to understand and save your preferences for future visits and compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future. We may contract with third-party service providers to assist us in better understanding our site visitors. These service providers are not permitted to use the information collected on our behalf except to help us conduct and improve our business.

Disclosure of Information

We do not sell, trade, or otherwise transfer your Personally Identifiable Information (PII) to outside parties for monetary compensation.

Disclosure to Service Providers

We share necessary information with trusted third parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential and use it only for the purposes outlined by Flag Desk. These categories of service providers include:

• **Payment Processors:** To securely handle payment transactions (e.g., credit card tokenization).
• **Shipping & Fulfillment Partners:** To deliver your purchased products and services.
• **Website Analytics Providers:** To help us understand site traffic and improve our offerings.

Legal and Safety Disclosures

We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others' rights, property, or safety.

Non-Personally Identifiable Information

Non-personally identifiable visitor information (such as aggregated data about site usage) may be provided to other parties for marketing, advertising, or other uses.

Mobile Messaging Information

No Mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties. You can opt out at any time by replying [STOP]. Message and data rates may apply.

Your Data Protection Rights

Depending on your location and the nature of your interaction with us, you may have the following rights regarding your personal information:

• **The Right to Access:** You have the right to request copies of your personal data we hold.
• **The Right to Rectification:** You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• **The Right to Erasure (Deletion):** You have the right to request that we erase your personal data, under certain conditions.
• **The Right to Opt-Out of Sale/Sharing:** You have the right to opt-out of the "sale" or "sharing" of your personal information (as defined by applicable laws). As noted above, we do not sell your PII.

To exercise any of these rights, please contact us at the email or phone number listed in the "Contacting Us" section of this policy.

Your Consent

By using our site, you consent to our privacy policy.

Data Retention

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

For data related to transactions, we generally retain this information for 7 years for accounting and tax purposes.

Changes to our privacy policy

If we decide to change our privacy policy, we will post those changes on this page. This policy was last modified on 12/11/2025.

If there are any questions regarding this privacy policy you may contact us using the information below:

Flag Desk, Inc.
512 Central Ave.
Wilmette, IL 60091

• Email: support@flagdesk.com
• Phone: (800) 526-8183 (Mon - Fri: 8AM – 5PM CST)