Privacy Policy

SGI-USA Las Vegas (“we,” “our,” or “us”) operates the website located at sgi-vegas.org. This Privacy Policy explains what information we collect when you visit our site, how we use it, and the rights you have under applicable law — including the General Data Protection Regulation (GDPR) for visitors in the European Economic Area, the California Consumer Privacy Act (CCPA/CPRA) for California residents, and general US privacy standards for all other visitors.

We do not sell, rent, or share your personal information with third parties for advertising or commercial purposes.

Information you provide directly

• Contact form: When you submit our contact form we collect your name, email address, subject, and message. This data is transmitted to our organization email. We retain contact submissions for up to 24 months.

Information collected automatically

• Server logs: Our web infrastructure may automatically collect standard server log data including your IP address, browser type, referring URL, and pages visited. This is used for security, abuse prevention, and service reliability. Logs are retained for up to 30 days.
• Local storage: We store your cookie consent choice and display-theme preference (light/dark) in your browser’s localStorage. This data never leaves your device.

We do not collect

• Analytics tracking (no Google Analytics, no Meta Pixel)
• Advertising identifiers
• Location data beyond what you voluntarily submit
• Payment information

Our site itself does not set any tracking or advertising cookies. However, certain embedded third-party services may set cookies in your browser when you interact with them:

Cookie consent

When you first visit our site, a banner asks for your cookie preference. You may choose:

• Accept all: Allows third-party embeds (YouTube, Google Maps) to function with their standard cookie behavior.
• Essential only: Limits cookies to those strictly necessary for the site to function. Third-party embeds are still loaded (they are content, not tracking), but you have indicated your preference to minimise data collection.

You can withdraw or change your consent at any time by clearing your browser’s local storage or by using your browser’s built-in cookie controls.

• Contact form submissions: To respond to your inquiry and connect you with our community.
• Server logs: To maintain website security and diagnose technical problems.
• Theme & consent preferences: Stored locally in your browser to remember your settings across visits.

We do not use your personal information for automated decision-making or profiling.

For visitors in the European Economic Area (EEA), our legal bases for processing personal data are:

• Consent (Art. 6(1)(a) GDPR): Where you submit the contact form or accept cookies.
• Legitimate interests (Art. 6(1)(f) GDPR): For server security logs, where our interest in preventing abuse outweighs the minimal privacy impact.

• Contact form submissions: Retained for up to 24 months, then deleted.
• Server logs: Retained for up to 30 days.
• Browser storage: Persists until you clear your browser data.

GDPR rights (EEA residents)

Under the GDPR you have the right to:

• Access the personal data we hold about you.
• Rectification of inaccurate data.
• Erasure (“right to be forgotten”).
• Restriction of processing in certain circumstances.
• Data portability in a structured, machine-readable format.
• Object to processing based on legitimate interests.
• Withdraw consent at any time without affecting the lawfulness of prior processing.
• Lodge a complaint with your local supervisory authority (e.g., your national Data Protection Authority).

CCPA / CPRA rights (California residents)

California residents have the right to:

• Know what personal information we collect, use, disclose, or sell.
• Delete personal information we have collected, subject to certain exceptions.
• Opt out of sale or sharing of personal information — we do not sell or share your data.
• Non-discrimination — you will not receive different or inferior service for exercising your privacy rights.
• Correct inaccurate personal information.
• Limit use of sensitive personal information (we do not collect sensitive personal information as defined by CPRA).

To exercise any of these rights, please contact us using the details below. We will respond within 45 days as required by California law (extendable by an additional 45 days with notice).

General US rights

Even if you are not a California resident or EEA citizen, you may contact us at any time to request access to, correction of, or deletion of any personal information you have submitted to us through our contact form.

This website is not directed to children under 13 (or under 16 for EEA residents). We do not knowingly collect personal information from minors. If you believe a child has submitted personal information to us, please contact us and we will promptly delete it.

Our website is hosted in the United States. If you are located outside the United States, any personal information you submit through our contact form will be transferred to and processed in the United States. By submitting information to us, you acknowledge this transfer. Our hosting infrastructure maintains appropriate security safeguards for data in transit and at rest.

We use industry-standard security measures including HTTPS encryption for all data in transit, secure hosting infrastructure, and regular security reviews. No transmission over the internet is 100% secure; we cannot guarantee absolute security of information you send us.

We may update this Privacy Policy from time to time. Material changes will be reflected in the “Last updated” date at the top of this page. Continued use of the site after changes constitutes acceptance of the updated policy.

For any privacy-related requests or questions — including to exercise your GDPR or CCPA rights — please contact us: