Privacy Policy

Last Updated: March 10, 2026

This Privacy Policy sets out how Coral Blue ISA ("we," "us," or "our") uses and protects any information that you, the user, provide when you visit the website, www.coralblueisa.com ("Website"). Except as otherwise provided herein, this Privacy Policy applies to all services offered by us on this Website. Except as otherwise provided herein, this Privacy Policy applies only to information collected through our Website and not to information collected offline.

This Privacy Policy does not cover the information practices of third parties, including other companies that may advertise on this Website. In addition, the Website may contain links to third party websites. Please note that once you click on such a link, you will have left our Website and should be aware that we do not have any control over third party websites. Use of third party websites, and collection of information by those parties, are governed by their privacy policies. We encourage you to exercise caution and review their privacy policies before using their websites. Nonetheless, we seek to protect the integrity of our Website and welcome any feedback about these third party websites.

Please read this Privacy Policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, do not use our Website. By accessing or using this Website, you agree to this Privacy Policy. We may revise and update our Privacy Policy from time to time, and all updates will be posted on this page. Unless otherwise required by law, your continued use of this Website after we make changes is deemed to be acceptance of those changes, so please check the Privacy Policy periodically for updates.

Please also visit our Terms and Conditions establishing the use, disclaimers and limitations of liability governing the use of our Website here.



Information We Collect

We collect the following categories of personal information: Identifiers such as a real name, alias, signature, address, telephone number, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver's license or state identification card number, passport number, insurance policy number, medical information or health insurance information; physical characteristics or description, and other similar identifiers ("Identifiers"); payment information; characteristics of protected classifications under California or federal law; commercial information including records of products or services purchased, obtained, or considered; biometric information; Internet or other electronic network activity information including browsing history, search history, and information regarding your interaction with our Website; geolocation data; audio, electronic, visual, thermal, olfactory, or similar information; professional or employment-related information; education information; and inferences drawn from any of the above-identified information to create a profile about a consumer reflecting the consumer's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities and aptitudes.

We may also use automated technologies, including artificial intelligence and machine learning, to analyze the information we collect to improve our services, personalize your experience, and detect fraudulent activity.

 

How We Use the Information We Collect

Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company without your consent, other than as specified in this Privacy Policy.

We will use your Personal Information for our legitimate interests, meaning our interests in conducting our business, fulfilling orders and processing transactions, and managing and providing services to you, which include the following:

    • Providing, maintaining and improving our business and Website functionality
    • Fulfilling orders and processing transactions securely
    • Managing and providing services to you, including customer support
    • Responding to your questions, concerns, and other requests for assistance
    • Customizing your browsing and shopping experience on the Website using AI-powered recommendations and personalization technologies
    • Keeping you informed of administrative changes to our Website, including changes to our terms and conditions and other policies
    • Analyzing Website statistics, usage patterns, and user experiences to optimize performance and resolve technical issues
    • Conducting market research and analytics to inform our marketing strategy and business decisions
    • Using AI and machine learning to analyze customer behavior, predict preferences, and improve product recommendations
    • Maintaining basic records to respond to and honor your requests regarding data management
    • Preventing fraud, criminal activity, and misuses of our Website through advanced security monitoring and threat detection
    • Blocking prohibited resellers and safeguarding the security of our Website and infrastructure
    • Complying with legal obligations and process, and safeguarding rights, privacy, safety, and property
    • Administering special offers, including contests, promotions, surveys, and other interactive experiences
    • Enabling publication of your reviews, photos, videos and other user-generated content
    • Processing employment applications and employment-related purposes
    • Communicating with you via email, SMS, or other channels about orders, updates, and promotional offers
    • Notifying you about special offers and products or services that may be of interest to you based on your preferences and browsing history

     

    How Long We Keep Your Personal Information

    We will keep your Personal Information for as long as reasonably necessary for the purposes described in this Privacy Policy, while we have a legitimate business need to do so, or as required by law (e.g. for tax, legal, accounting or other purposes), whichever is longer.

    To determine the appropriate retention period for your Personal Information, we will consider the amount, nature, and sensitivity of the Personal Information, the potential risk of harm from unauthorized use or disclosure of your Personal Information, the purposes for which we use your Personal Information and whether we can achieve those purposes through other means, and the applicable legal requirements. When we no longer need to retain your Personal Information, it will be securely deleted or anonymized so that you can no longer be identified from it.


    How We Protect And Store Your Information

    We are committed to protecting your privacy and securing your information when you use our Website. We implement industry-standard security measures including encryption, firewalls, secure servers, and regular security audits to maintain the safety of all Personal Information you provide.

    Personal Information you provide to us is stored on secure servers with restricted access. We also ensure that third parties we use to process your Personal Information implement appropriate security measures to protect your data and comply with applicable data protection laws.

    When we collect sensitive information such as credit card information, social security numbers, or financial data, that information is encrypted using industry-standard SSL/TLS encryption technology and securely transmitted. All sensitive information is transmitted via Secure Socket Layer (SSL) technology and encrypted within our payment gateway providers' databases, accessible only by authorized personnel with special access rights who are required to keep the information confidential. You can verify that sensitive information is being transmitted securely by looking for "https" at the beginning of the webpage address and a padlock icon in your browser.

    After a transaction is completed, your sensitive information (credit cards, social security numbers, financials, etc.) will not be stored on our servers unless required for legitimate business purposes and in compliance with applicable payment card industry standards.

    The safety and security of your information also depends on you. We urge you to use strong passwords, enable two-factor authentication where available, and be careful about entering information on public computers or public networks.

    Unfortunately, the transmission of information via the internet is not completely secure. Although we implement robust security measures to protect your Personal Information, we cannot guarantee absolute security of information transmitted to or stored on our Website. We regularly update our security practices to address emerging threats and vulnerabilities.

     

    Do Not Track (DNT) and Global Privacy Control (GPC) Signals

    We respect your privacy preferences. Our Website responds to Global Privacy Control (GPC) signals and similar privacy preference signals as required by applicable law. When we detect a valid privacy signal from your browser, we will process it according to applicable legal requirements.

    We do not track users over time and across third party websites for advertising purposes. However, third-party services integrated into our Website may have their own tracking practices.

     

    Cookies and Similar Technologies

    Cookies are small files that a site or its service provider transfers to your computer's hard drive through your web browser. Cookies enable websites or service providers' systems to recognize your browser and capture and remember certain information. You may read more about cookies at https://www.allaboutcookies.org/.

    We use cookies and similar technologies (including pixels, web beacons, and local storage) for different purposes:

    Strictly Necessary Cookies: Essential for the Website to function properly. These cookies enable core functionality such as security, network management, and accessibility. You cannot opt out of these cookies.

    Analytics Cookies: Help us understand how visitors interact with our Website by collecting and reporting information anonymously. This helps us improve Website performance and user experience.

    Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences, language settings, and login information.

    Marketing Cookies: Used to track visitors across websites to display relevant advertisements and measure campaign effectiveness. These cookies may be set by us or third-party advertising partners.

    You can choose to accept, decline, or withdraw consent to non-essential cookies through our cookie consent manager or your browser settings. Be aware that disabling certain cookies may prevent you from using specific features or services on our Website.

    Browser Opt-Out: Most browsers allow you to control cookies through their settings. Here's how to manage cookies in popular browsers:

    Additionally, you can opt out of targeted advertising through the Network Advertising Initiative at http://www.networkadvertising.org or the Digital Advertising Alliance at http://www.aboutads.info/choices/http://www.aboutads.info/choices/.

    Mobile devices: Cookie management on mobile devices varies by browser:

    Disclosure to Third Parties

    Other than as described herein, we do not sell, trade, or otherwise transfer to third parties your personally identifiable information. We may share your Personal Information with our parent entity, American International Industries, and businesses controlling, controlled by, or under common control with Coral Blue ISA, as well as with trusted third parties who assist us in operating our Website, conducting our business and servicing you, including:

    • Hosting, cloud services and information technology service providers
    • Payment processors and financial institutions
    • Order fulfillment, shipping, and logistics providers
    • E-commerce platform providers (including Shopify)
    • Customer service and support platforms
    • Email, SMS, and communication service providers
    • Marketing, advertising, and analytics services
    • Rating and review platforms
    • Security and fraud prevention services
    • AI and machine learning service providers for personalization and analytics

    These third parties are contractually obligated to keep your information confidential, use appropriate security measures to protect your data, and use your information only for the purposes for which it was disclosed.

    We may also disclose your information as required under applicable law, to enforce our Website policies, or to protect our or others' rights, property, or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

    In the event of a merger, acquisition, reorganization, bankruptcy, receivership, or sale or transfer of all or a portion of our assets, your Personal Information may be transferred to a successor or affiliate or other entity surviving out of the event. We will notify you of any such change in ownership or control of your Personal Information.

     

    California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA)

    This section applies to personal information collected online and offline from California residents. Under the CCPA and CPRA, if you are a California resident, you have the following rights:

    1. Right to Know: You have the right to request that we disclose, up to twice in a 12-month period, the personal information we have collected, used, disclosed, and sold about you during the 12 months preceding your request, including:

      • Categories of personal information collected
      • Categories of sources from which personal information is collected
      • Business or commercial purpose for collecting, selling, or sharing personal information
      • Categories of third parties with whom we share personal information
      • Specific pieces of personal information collected about you
      • Categories of personal information disclosed for a business purpose
      • Categories of personal information sold or shared and the categories of third parties to whom it was sold or shared

    2. Right to Delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.

    3. Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.

    4. Right to Opt-Out: You have the right to opt-out of the sale or sharing of your personal information. We do not sell your personal information in the traditional sense, but some data sharing for targeted advertising may be considered a "sale" or "share" under CCPA. You can opt-out by clicking "Do Not Sell or Share My Personal Information" or by enabling Global Privacy Control (GPC) in your browser.

    5. Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of sensitive personal information to purposes permitted by law.

    6. Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

    Information About Our Data Practices (preceding 12 months):

    • We collect the categories of personal information described in the "Information We Collect" section
    • We disclose the following categories for business purposes: Identifiers; payment information; commercial information; professional or employment-related information; Internet or electronic network activity information; geolocation data; audio, electronic, visual or similar information
    • We do not sell personal information in exchange for monetary compensation
    • We may share certain information for cross-context behavioral advertising, which may be considered a "share" under CCPA

    We use personal information for the legitimate business purposes described in "How We Use the Information We Collect."

    Exercising Your Rights: To submit a request under CCPA/CPRA, please contact us at coralblueisa@gmail.com. We will verify your identity before processing your request. You may also authorize an agent to submit requests on your behalf by providing written authorization. 

     

    Rights Under the EU General Data Protection Regulation (GDPR) and UK GDPR

    If you are located in the European Economic Area or United Kingdom, your Personal Information may be transferred and stored outside of the EEA/UK to the United States for purposes described in this Privacy Policy. We implement appropriate safeguards for international data transfers, including Standard Contractual Clauses approved by the European Commission.

    There are possible risks involving such data transfers arising from differences in data protection laws. We take the security of your information seriously, and all Personal Information is securely stored on our servers with appropriate technical and organizational measures.

    Under GDPR, you have the following rights:

    • Right to access: Request copies of your Personal Information
    • Right to rectification: Request correction of inaccurate or incomplete information
    • Right to erasure: Request deletion of your Personal Information under certain conditions
    • Right to restrict processing: Request limitation of processing under certain conditions
    • Right to object to processing: Object to processing of your Personal Information under certain conditions
    • Right to data portability: Request transfer of your data to another organization or directly to you
    • Right to withdraw consent: Withdraw consent at any time where we rely on consent to process your data
    • Right to lodge a complaint: File a complaint with your local data protection authority

    To exercise your rights or for privacy-related inquiries, please contact us at coralblueisa@gmail.com.

     

    Canada's Personal Information Protection and Electronic Documents Act (PIPEDA)

    If you are a Canadian resident, you have the following rights:

    1. Right to Access: Request disclosure of personal information we have collected about you, including categories, sources, purposes, and third parties with whom it's shared

    2. Right to Correction: Challenge the accuracy and completeness of your personal information and request corrections

    3. Right to Withdraw Consent: Withdraw consent to our collection, use, and disclosure of your personal information

    The Website is governed by and operated in accordance with the laws of the United States and Canada. By using the Website or providing Personal Information, you consent to the collection, processing, maintenance and transfer of information to the United States and other territories where privacy laws may differ from Canadian laws.

    If you provide consent, your Personal Information may be transferred and stored outside of Canada to the United States. We will implement appropriate safeguards in accordance with applicable law.

    You have the right to access your Personal Information. Upon written request and authentication of identity, we will provide access within timelines established by PIPEDA. We may charge a reasonable fee for access requests. In some instances, we may not be able to provide access (e.g., if disclosure would reveal information about another individual or is protected by legal privilege). If we refuse access, we will notify you in writing with documented reasons.

    We will make reasonable efforts to ensure Personal Information is accurate and complete. If you demonstrate that information is inaccurate or incomplete, we will amend it as required and, if appropriate, send amended information to third parties to whom it was disclosed.

    We will use or disclose personal information only for purposes set out in this policy and as authorized by law. We will destroy, erase, or anonymize records containing Personal Information when no longer needed for the original purpose or legal/business requirements, taking due care to prevent unauthorized access.

    To exercise your PIPEDA rights, please contact us at coralblueisa@gmail.com.

     

    Other U.S. State Privacy Laws

    Nevada: If you are a Nevada resident, you have the right to opt-out of the sale of personally identifiable information. We do not sell your personal information. To request confirmation, email us with "Nevada Privacy Information" in the subject line.

    Virginia, Colorado, Connecticut, Utah, and Other States: If you are a resident of Virginia, Colorado, Connecticut, Utah, or other states with comprehensive privacy laws, you may have additional rights including rights to access, correct, delete, and obtain a copy of your personal information, as well as opt-out of targeted advertising and certain automated decision-making. To exercise these rights, please contact us at coralblueisa@gmail.com.

     

    Protecting Children’s Privacy

    We are a general audience site. Our Website, products, and services are directed to people who are at least 16 years of age or older. We do not knowingly collect, use or disclose information from anyone under 16 years of age. We are committed to respecting children's privacy online. If we discover that we have inadvertently collected information from anyone under 16 years of age, that information will be promptly deleted. If you believe we might have information from or about anyone under 16, please contact us immediately.

     

    California Minors Who Are Registered Users

    If you are under 18, reside in California and are a registered user of the Website, you have the right to request removal of content or information you posted. Please email us at coralblueisa@gmail.com with "California Minors Content Removal" in the subject line. Please note that removal may not ensure complete or comprehensive deletion of the content.

     

    Artificial Intelligence and Automated Decision-Making

    We may use artificial intelligence, machine learning, and automated technologies to:

    • Personalize your shopping experience and product recommendations
    • Analyze customer behavior and preferences
    • Detect and prevent fraud and security threats
    • Improve Website functionality and user experience
    • Optimize marketing and advertising campaigns

    When we use automated decision-making that produces legal or similarly significant effects, we will provide you with information about the logic involved and the significance and consequences of such processing. You may have the right to object to automated decision-making under applicable law.

     

    International Data Transfers

    Your Personal Information may be transferred to, stored, and processed in countries other than your country of residence, including the United States, where data protection laws may differ. We implement appropriate safeguards to protect your information during international transfers, including Standard Contractual Clauses, adequacy decisions, and other legally recognized transfer mechanisms.


    Changes to Our Privacy Policy

    Unless otherwise required by law, we will post any changes to our Privacy Policy on this page with a notice on our Website home page. If we make material changes to how we treat user information, we will provide prominent notice through our Website or by email. The date of the last revision is identified at the top of this page. You are responsible for periodically reviewing this Privacy Policy to stay informed of updates.

     

    Contact Us

    If you have any questions or concerns regarding this Privacy Policy or data processing, if you would like to change or access the Personal Information we have collected from you, or if you would like to make a complaint, please contact us at coralblueisa@gmail.com.

    You may also refer a complaint to your local data protection regulator if you are not satisfied with how we handled your complaint.