Privacy Policy

Legal Name¶

UPGF LLC from hereon referred to as “We/we”, “Us/us”, Our/our, “United Planets And Galactic Fleet”, or "UPGF"

OWNERSHIP OF INFORMATION¶

All information present on our website(s) is the exclusive property of UPGF LLC, a United States Limited Liability Corporation formed in the Great State of Colorado, or the respective owners.

United Planets And Galactic Fleet official websites¶

Your Payment Charge Card¶

NO STAFF/EMPLOYEE will EVER ask you for your payment card number, physically touch your payment card, and should NEVER view any numbers on your payment card! If this happens, please contact our support department immediately to report such activity. Our website is made so that ‘YOU’, AND ONLY YOU, are the sole person that enters your payment card information on our secure (HTTPS) website(s). It is your responsibility to verify that you are on the correct website. Malicious individuals are known to try and use different versions and spellings of company websites that look like the official website to gain unauthorized information. When visiting one of our locations or events, our payment card processing devices allows you to use your payment card without the need for an employee to ever physically touch your payment card. If you are asked for your payment card number or if an employee/staff member touches/handles your physical payment card, please contact us IMMEDIATELY! It will be helpful if you obtain the individuals name and or badge id to help identify the individual. We our NOT responsible for identity theft if you provide your payment card(s) or payment card number(s) to ANYONE including our staff/employee(s).

WE DO NOT SAVE NOR DO WE HAVE ACCESS TO ANY OF PAYMENT CARD NUMBERS, including the credit/debit card CVV and the expiration date. We use a third party service, Stripe Inc, which is one of the largest online payment card processing platforms on the internet to process payments. If you choose to save your payment card for future purchases with us, your card is saved on “YOUR OWN” personal account on Stripe.com. We have absolutely NO ACCESS to your payment card numbers. This includes at the time of purchase and or in the future. If, the worst case scenario does happen, and our servers are hacked, your payment card information is completely safe.

Web Scraping and Archiving¶

Unauthorized scraping of our website(s) is strictly prohibited. This includes, but is not limited to, activities such as manual copying, automated script scraping, utilizing tools like Python packages (e.g., Beautiful Soup, Scrapy), JavaScript, AI data crawlers, or any other method. Web scraping includes, but is not limited to, copying text, code, forms, or any media assets such as images and videos.

Many of these media assets are used under specific royalty agreements licensed exclusively for our sites. Scraping these assets violates our Privacy Policy, Terms & Conditions, and copyright laws, as well as the third-party owners' intellectual property rights.

Liquidated Damages for Unauthorized Scraping By accessing our site, you acknowledge that the damages caused by unauthorized scraping—including the devaluation of our data, violation of third-party licensing, and consumption of server resources—are difficult to quantify. Therefore, you agree that engaging in unauthorized scraping or copyright archiving without explicit written authorization constitutes a binding agreement to pay $500,000.00 USD per incident as Liquidated Damages, and not as a penalty. You acknowledge this amount is a reasonable pre-estimate of the damages UPGF LLC would suffer from such a breach. We reserve the right to seek additional injunctive relief and all legal fees.

Company / Service	Country	Type of Business	Purpose For Sharing	Lawful Basis	What Is Shared	Data Safeguards
Stripe Inc.	USA	Financial Infrastructure & Tax Compliance	Payment processing, fraud detection, and automated tax reporting.	Contractual Necessity & Legal Obligation	Name, billing address, charge card details.	Encryption-at-rest; PCI-DSS Level 1
USPS	USA	Shipping Logistics	Global order fulfillment and delivery.	Contractual Necessity	Name, shipping address, required shipping info.	Limited PII (Shipping info only)
FedEx / DHL	USA & Germany	Shipping Logistics	Global order fulfillment and international delivery.	Contractual Necessity	Name, shipping address, required shipping info.	Limited PII (Shipping info only)
AWS SES	USA & Global (Region Dependent)	Cloud Email Infrastructure	Transactional email & automated notifications.	Contractual Necessity	Recipient email address, name, and email content metadata.	TLS Encryption; Data Residency Controls
Amazon.com (MCF)	USA & Global	Ecommerce & Logistics	Third-party logistics (MCF), warehousing, and global order fulfillment.	Contractual Necessity	Name, shipping address, and order details.	Data Processing Addendum (DPA) & Encryption
Google Analytics 4	USA & Global (Regional Ingestion)	Website Analytics	Anonymized usage analysis and site optimization.	Consent (via Zaraz)	IP address (anonymized), device info, and site activity.	EU-Server Ingestion; IP Anonymization
Cloudflare	USA & Global (Edge Network)	Cloud Infrastructure, Security, & Edge Computing	Hosting, Workers, Zero Trust access, and secure storage of system backups (R2).	Contractual Necessity & Legitimate Interest	IP address, browser metadata, identity logs, and encrypted data.	TLS 1.3; First-party cookie isolation

We strive for full transparency and do our best to list all services used, but this list may not be exhaustive. We only share information required to perform business operations, and we NEVER sell your personal information.

Understanding Our Lawful Basis for Processing:¶

Contractual Necessity: Data we must share to fulfill our agreement with you (e.g., shipping your book or processing your payment).
Legal Obligation: Data we are required by law to process or share (e.g., reporting sales tax to the State of Colorado or the IRS).
Legitimate Interest: Processing necessary for our business that does not override your rights, such as protecting the site from cyber attacks.
Consent: Processing that only happens if you explicitly say "Yes" (e.g., through our Zaraz cookie banner).

International Data Transfers & Global Edge Processing¶

We operate a globally distributed infrastructure to ensure site speed and security. While our business is headquartered in Colorado (USA), we utilize Edge Computing and Distributed Cloud Infrastructure to process and store information.

By using our services, you acknowledge that your data and metadata may be processed globally. We utilize industry-standard encryption and security protocols to protect your information regardless of where the physical processing occurs. We transfer data in accordance with applicable laws, utilizing adequacy decisions and standard data protection clauses where appropriate.

General¶

Our Privacy Policy describes how we use your personal identifying information. This Privacy Policy and our Terms and Conditions may be modified at any time. If you are a registered user, we will notify you of material changes by sending an email to the email address on file. It is your responsibility to keep your email address up to date within your account profile to ensure you receive these notifications. Your continued use of the Site(s) following a change constitutes your acceptance of the revised terms. We still encourage all users to review our policies during each visit to ensure they are aware of the most current practices.

Our primary goals in collecting information is to provide and improve our services, features, and content, to administer user accounts, and to enable visitors to enjoy and easily navigate our website(s).

Personal information is defined without limitation as any information entered when registering or using services obtained through our websites, products, services, communication with us on the telephone, chat, help desk, email, fax, and or any other contact method. This includes but is not limited to your full name, home and or business addresses, shipping addresses, email addresses, telephone numbers, username, profile images, uploaded media to our websites, tax registration numbers such as EIN, VAT, etc., website addresses, social medial accounts, languages, nicknames, and biographical information.

We may use third party services that may have their own privacy policy, which on some parts may supersede a portion of our privacy policy. To be transparent with our users, we list many, if not all, the “third parties” at the top of our privacy policy.

We DO NOT sell, trade, and or lease, your personal information, which includes your name, physical address (business or home), home or business telephone number, and your e-mail address, to anyone.

We use your personal information which includes but is not limited to the creation and management of your registered account, processing of transactions, providing customer service, performing research and analysis aimed at improving our products, services and technology to display content that is customized to your interests and preferences, to run contests, choose prize winners, to identify your uploaded content, and to communicate with you as necessary to operate our business.

We are not responsible for the privacy of any information that you post, publish or distribute on our website(s) or through any of our products, services, software and or apps. Our website(s), products, services, software, and or apps may allow you to post certain information that is available for the public to view and consume. We cannot promise nor do we guarantee in any way that any content that you post on our website(s) will be anonymous in nature for various reasons such as but not limited to your choice of username, the content in your post, uploaded material such as images and video, and or etc. It is at your own risk, if you decide to, without limitation, post, publish, distribute, or any other form of publication on our websites, products, services, software, and or apps. If you post personal information online that is accessible to the public, you may receive unsolicited messages. Public information that has been posted may no longer be editable, deletable, and may have been saved on other sites such as archival sites that we have no control over.

Should you use our “forward to friend” service, we may store and use this information as we do with any user's information within the scope of our privacy policy. We may contact these parties so that we can encourage them to engage with our website(s) and or product and services. We also will store information in relation to this service for future possible marketing campaigns.

We use analytics software to understand how visitors interact with our website. This includes data such as general geographic location (e.g., country, state, city), device type, operating system, possible IP address, and interactions with our site(s).

Some pages on our website may include embedded content from third-party platforms, such as YouTube, social media sites, etc. When you view or interact with these embedded videos and or other media sources, those third-party platforms may collect data in accordance with their own privacy policies. We do not control or have access to this third-party data collection.

General Account Information¶

You can access our website(s) homepage without creation of a registered user account. Some aspects of our website(s) require the creation of a user account, including making purchases. As long as your account is not disabled, you may access and change your personal information, except for your username, in the profile area of the website. If you have any difficulties with or questions about the modification of personal information, please open a ticket on our help desk.

When engaging in certain activities on our website that our public in nature, some information about your account and your account activity may be provided to other users. This may include but not limited to the date you opened your account, the date you last logged into your account, home country & city, the number of products you have sold or purchased and your account name and or username. Other users may be able to contact you by leaving a message or comment on our website(s) if we offer such service now or in the future. Any content that you submit to us for public display may be redistributed through the internet and other media channels and may be viewed by other users or the general public. You may also choose to add personal information, which may include your name, gender, profile picture or other details, that will be visible to other users on your account page.

We do not knowingly collect personal data or information from minors. You must be at least eighteen (18) years old to register and perform purchases on our website(s).

Account deactivation¶

Registered users can deactivate their account by opening a help desk ticket requesting deactivation. When an account is deactivated, transactional information such as invoices will no longer be available to the user. However, please be aware that your identification, billing, and transactional data will be retained in our archival cold storage as a business asset for the lifetime of the company or until the business is sold or acquired. This information is maintained to fulfill Legal Obligations, such as reporting sales tax to the State of Colorado or the IRS, and to ensure business continuity. When an account is deactivated, the account CAN NOT be reactivated.

Your Data Rights Regardless of where you live, we recognize the following rights regarding your personal information:¶

Right to Access: You may request a copy of the data we hold about you.
Right to Correction: You may request that we correct inaccurate or incomplete data.
Right to Deletion (Right to be Forgotten): You may request that we delete your personal data, subject to legal retention requirements (e.g., tax laws). Your Right to Deletion is subject to these legal retention requirements. Because our system backups and archival records are stored in secure, compressed cold storage (such as Cloudflare R2), it is not technically feasible to delete individual records from these historical archives without compromising the entire dataset. Data in these archives is considered 'beyond use' and is not processed for any purpose other than legal compliance or emergency system restoration.
Right to Portability: You may request your data in a structured, commonly used format.
Right to Withdraw Consent: If you previously agreed to optional cookies (ex., Analytics), you can change your mind at any time by clicking the "Cookie Preferences" link in the footer/corner of our website and toggling your preferred preference.
Right to Lodge a Complaint: While these Terms are governed by the laws of the State of Colorado, USA, we recognize that international users may have mandatory local privacy rights under their respective jurisdictions (such as the GDPR, LGPD, or the Australian Privacy Act). We respect these legal protections and will comply with applicable local data protection statutes regarding your personal information, including your right to lodge a complaint with your local data protection authority.

To exercise these rights, please open a ticket on our help desk. We will verify your identity before processing any request.

"We provide this data free of charge. However, for requests that are manifestly unfounded, repetitive, or excessive, we reserve the right to charge a reasonable administrative fee or refuse the request."

Cookies¶

Please note that we may employ the use of cookies with our website(s). Cookies could be created when users create user accounts (if our site allows for such activity), for analytical purposes, and without limitation, we may further employ cookies to assist the functionality of other tools, services, and functions in the future. Cookies are small programs and or text that enhance your use of our website(s). We may use cookies, web beacons, and log file information to store information to help enhance your experience with our website(s).

Cookies may provide, without limitation, recording session information, show us visitor preferences regarding return visits to our website(s), operating system, screen resolution, device type, etc. Cookies help us to understand our visitors to our websites. Without limitation, we use this information to improve our website(s), products, and services.

Many browsers allow you to turn off your cookies by adjusting the appropriate setting on your browser. Please consult your browser to learn how to disable cookies. Disabling browser cookies may hinder your enjoyment of websites by hindering their functionality. Disabling your cookies may interfere with our website(s) functionality, including where they may appear not to be functioning properly.

Cookie Category / Name	Description	Expiration
First-Party Session Cookies	Essential for user account login, maintaining your session while you are accessed to your profile, & site security.	Normally, expires after the session.
Google Analytics	Used for anonymized usage analysis to understand the "customer journey" and improve site performance	Normally, 6 months
Stripe Cookies	Essential for processing payments, fraud detection, and automated tax reporting	Expire after the session or up to 1 year.
CloudFlare (cfz_zaraz-analytics)	Essential for site security, bot prevention, and ensuring site speed via edge computing	Normally, 6 months
Cloudflare Zaraz (zaraz-consent)	Used for consent for features such as marketing, analytics, and functionality.	Normally, expires after the session. Or 30 minutes w/no activity.

We strive for full transparency and do our best to list all cookies used, but this list may not be exhaustive.

Emails¶

We have two classification of emails, transactional and marketing. Marketing emails include our newsletters, surveys, product promotions,product sales, etc., that are emails that you are free to opt out of at any time. All marketing emails will contain a simple, unsubscribe link to help you unsubscribe from one or all marketing emails. Transactional emails are emails such as sales invoices, password resets, legal notifications such as when and if our privacy policy has changed, etc., will not contain an unsubscribe link. Most, if not all, of our transactional emails are legally required to be sent to you. The only way to stop transactional emails is to permanently disable your account. This will prevent you from logging into said account, downloading any purchased goods, immediate cancellation of all subscriptions, and access to registered user areas of our site. However, even then, there are times that certain legal emails may be required to be sent to the email address of the disabled account.

Forums and other public areas¶

Our website(s) may include discussion forums or other social areas. Without limitation, blogs, chat rooms, bulletin boards, message boards, online hosting or storage services, or other areas or services in which you or third parties create, post or publish content, messages, comments, materials or other items on these (“Social Areas”). If you use these social areas of our website(s), you should be aware that these areas are open to the public and any personal information you post in any form, including but not limited to uploading or providing at registration may be viewable by others. We are not responsible for personal information you submit/publish in connection with these social areas, nor are we responsible for how others might use that information, including to send you unsolicited messages. Social area publishing may be retained indefinitely. Including, if you disable your account.

License Activation, Updates, and Server Communication¶

To ensure proper functionality, support, and delivery of the correct version of our software and applications, Our software and applications periodically communicate with our servers.

What We Collect During These Checks¶

Device Information: Operating system, app version, and basic device identifiers.
IP Address: Collected automatically as part of standard server communication.
License Data: Used to activate and periodic verification of license.
Periodic Document Updates: Our software and applications will periodically check with our servers for changes to our documents which include but not limited to privacy policy, terms of service, refund policy, etc.

These periodic checks allow us to¶

Activate your license
Validate your license.
Provide the appropriate version of our software for your operating system.
Deliver critical document updates.
Enable support compatibility.
Help diagnosis support requests.

What We Do Not Collect¶

We do not track your usage within the app.
We do not collect personal data beyond what is necessary for activation and updates.

Regional Access Limitations¶

For compliance, security, and ethical considerations—including documented human rights violations we blocks access from certain countries. See the full list of blocked countries at https://upgf.world/x-countries/. If your IP address originates from a restricted region, communication with our servers may be blocked, which can result in limited functionality or complete loss of access to our software and services.

Contests and Sweepstakes¶

Each contest and or sweepstakes that is publish on any of our websites and or events will have their own privacy policy attached. It is your responsibility to review each contests / sweepstakes privacy policy and terms & conditions prior to participation in said contest and or sweepstakes.

Email Referrals¶

If you choose to use our email referral services to tell a friend about our products or services, we will ask you for your friend’s name and email address. We will use that information to send your friend an email(s) inviting them to visit our website(s) and review the product or services. We may use a third-party provider to administer this function but, any such third-party provider may only use the information submitted to facilitate this type of communication.

Security¶

The security of your personal information is highly important to us. Your account information is protected by a password for your privacy and security. It is your responsibility to protect against unauthorized access to your password and to your computer and or devices. This includes immediately logging off of our website(s) when you leave and or close the device that is accessing our website(s).

When you enter sensitive information such as payment card numbers, password for registration and logging-in, we encrypt that information using secure socket layer technology (SSL). No method of transmission over the internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

Third Parties & Service Providers¶

We may engage third-party companies and service providers to help facilitate our business operations. This includes, but is not limited to, services such as website hosting, database management, analytics, payment card processing, content delivery networks (CDNs), and shipping.

When you provide us with personal information to complete a transaction or use our services, you grant us the right to share that information with these third parties solely for the purpose of fulfilling those services.

We do not control the privacy or security practices of any third party, including those we link to or integrate with.

Third-Party Links & Embedded Content¶

Our website(s) may include links to third-party websites and embedded content such as videos (e.g., YouTube), social media posts, maps, or other media hosted on external platforms. Interacting with or even simply viewing this embedded content may allow those third parties to collect data about you, including through cookies or tracking technologies.

These third-party sites and services are governed by their own privacy policies, terms of service, and data practices. We do not control and are not responsible for how these external parties collect, use, or share your information. We strongly encourage you to review the privacy policies and terms of any third-party services before interacting with their content on or through our website(s).

Website Analytics¶

We use Google Analytics 4 (GA4) to help us understand how visitors interact with our website. This allows us to improve our content, track interest in our books, and ensure a smooth purchasing process.

Data Collected¶

Google Analytics collects data such as your anonymized IP address, device type, browser information, and site activity (e.g., pages visited, session duration, and links clicked). We use "Enhanced Measurement" to track interactions like scrolls and outbound clicks automatically.

Purpose of Collection¶

We use this information to:

Analyze which pages are most popular.
Understand the "customer journey" for book purchases.
Improve site performance and user experience.

We do not send personally identifiable information (PII) to Google Analytics.

Your Rights and Opt-Out¶

You can prevent your data from being used by Google Analytics by:

Installing the Google Analytics Opt-out Browser Add-on.
Adjusting your browser settings to decline cookies.

We strive for full transparency regarding your data. We NEVER sell your personal information to third parties. Furthermore, we do not share your personal information with third parties for the purposes of cross-context behavioral advertising or any form of data brokering.

Security Breach¶

We have implemented security policies, rules and technical measure to protect the personal data that we have under our control. These policies, rules and technical measures help to protect your data from unauthorized access, improper use or disclosure, unauthorized modification, and unlawful destruction or accidental loss. However, no policy, rule or technical measure can offer 100% protection against unauthorized access, improper use or disclosure, unauthorized modification, unlawful destruction or accidents. In the event of a security breach that poses a high risk to your rights and freedoms, we will notify you and the appropriate regulatory authorities within 72 hours of becoming aware of the incident.

Our database may contain confidential information regarding you or your personal communications to third parties, including other registered users. While we endeavor to maintain reasonable security measures regarding such information/content, no security system can be 100% foolproof. In the event that the security to such information/content is breached, YOU AGREE TO HOLD US HARMLESS and to INDEMNIFY us against any loss, damages, injuries, costs, fees and claims of any and all nature regarding such security breaches. It is at your own risk if you decide to create an account on our websites, purchase our products and services, and provide us with any personal information that may be stored on our servers.

Terms & Conditions¶

Our Terms of Service are hereby incorporated by reference into this Privacy Policy as if fully set forth herein. It is your responsibility to read our terms & condition and any other site policies on each of your website(s).

Acquisition of our Company¶

Information about our customers, including personal information may be disclosed as part of any merger, acquisition, or sale of the business and/or its assets, as well as in the unlikely event of insolvency, bankruptcy, or receivership, in which personal information would be transferred as one of the business assets of the business. In some cases, we may choose to buy or sell assets. In these types of transactions, customer information is typically one of the business assets that is transferred. We may transfer information about you if we are acquired by or merged with another business/company.

Phishing¶

Identity theft and the practice currently known as “phishing” are of great concern to us. Safeguarding information to help protect you from identity theft is a top priority. We do not and will not, at any time, request your payment card information and or login password. No employee/staff member should ever ask you for your payment card details including payment card number and or your log-in password. NEVER PROVIDE OR SHARE YOUR PASSWORD WITH ANYONE. For more information about phishing, visit the United States Federal Trade Commission’s website.

Foreign Data Storage of Private Information¶

Your information may be transferred to and maintained on computers located outside your state, province, country or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction. If you are located outside of the United States of America and choose to provide information to us, we transfer that personal information to the United States and processes that data in the United States, Canada, and or wherever our servers are located throughout the world. Your submission of any material to us is your consent to transfer and process said information.

Exceptions to our Privacy Policy¶

Possible exceptions to our policy include the following circumstances, as indicated herein: If a governmental agency subpoenas your private information, or makes a formal request for discovery pursuant to any legal action, or pending legal action, should we possess that information, then we would generally provide said information within the scope of the legal request. In our sole discretion, we may choose to fight such request. Generally, we will ONLY accept subpoenas that our court ordered.

Compliance with Law Enforcement¶

As indicated above, we will cooperate with governmental law enforcement to comply with the law. We may disclose any information about you as required by law.

Contacting Us¶

You may contact us to ask questions about our privacy policy by submitting a ticket using our help desk on our websites.

If you have questions about this policy or wish to exercise your rights, please contact our Privacy Officer by submitting a ticket via our Help Desk at https://upgf.world/contact/. We are also available via post at our registered office: UPGF LLC, 1500 N Grant St 5088 Denver CO 80203.