GRF may collect PII through any of the following:

• • GRF's website located at www.rossmoor.com
  • The use of online trackers (cookies) from GRF's website or other third-party websites
  • Personal Information you provide online to GRF or other third parties operating in support or partnership with GRF
  • Personal Information you provide in person at GRF's physical offices located in Rossmoor, Walnut Creek
  • Personal Information you provide through physical or electronic correspondence such as mail or email
  • Personal Information you provide through our social media platforms, including content of interactions (posts, comments, tags) when interacting with our social media profiles, use our branded hashtags or message us directly

GRF will not knowingly collect/use Personal Information relating to any child under age 13. Do not provide PII regarding a child under age 13 to GRF except for incidental photographs from community events where GRF has obtained verifiable parental consent via a photo release that expressly authorizes online publication and social media use. Upon learning that Personal Information belonging to a child under 13 has been collected, GRF will purge that Personal Information from its records and close/disallow any accounts to be established or accessed using such person's identity. If you become aware that Personal Information regarding a child under 13 has been submitted through our website, please notify GRF using the contact information below so that we may remove such Personal Information from our systems. GRF websites may link to third-party sites that contain incidental images from community events; GRF does not collect, host, or control such content.

1. Information GRF Collects

GRF may collect any of the following information about you:

• • Name
  • Address
  • Phone Numbers
  • Email address
  • Employment
  • Education
  • Date of birth/age
  • Gender
  • Height
  • Weight
  • Physical description
  • Personal Information pertaining to your credit or financial condition, including payments made/owed to GRF and payment accounts
  • Websites and social media addresses
  • Vehicle information including drivers' license and vehicle registration numbers
  • Various social, club, religious, and political affiliations
  • Family relationships
  • Marital status
  • Property ownership
  • Gate access information
  • Exercise habits

2. When GRF Collects Your Personal Information

• • When you become a Member of GRF
  • When you apply for and/or obtain a product or service from GRF
  • When you participate in an activity provided by GRF
  • When you purchase, lease or otherwise occupy property within Rossmoor and register with GRF
  • When you enter GRF through its security gates
  • When you operate a motor vehicle inside Rossmoor – Walnut Creek
  • When you access a GRF website
  • When you access certain third-party websites, which deploy tracking cookies
  • When you respond to a GRF solicitation or submit an inquiry
  • When you make a payment to GRF or finance an amount owed to GRF

3. Cookies

GRF uses cookies on its website to obtain Personal Information about visitors to its website and their interests and Internet use. Cookies are a common feature of websites which store a small data file on your computer with Personal Information about your visit to GRF's and other websites. Cookies are used to help GRF learn about the interests of visitors to its website, in order to improve GRF's website experience. Common types of cookies that may be employed by GRF include any of the following:

• • Analytics Cookies — Permit GRF to evaluate and improve its website performance, based on how it is used.
  • Browser/Device Information Cookies — Provide GRF with Personal Information about how you access GRF's site, including your browser, media apps, computer type, operating system, software versions, device type and manufacturer, language, internet address, internet service provider, and other Personal Information relating to how you interface with GRF's website. This Personal Information is collected automatically through most web browsers.
  • Enhanced Experience Cookies — Enhance your experience on GRF's website by enabling such functions as audio/video playback, third party services, and social media access.
  • Google Analytics Cookies — Collect anonymous statistics in order to improve the website. You can learn more about these cookies by going to https://support.google.com/analytics where you may also opt-out of this service by downloading a browser add-on.
  • Marketing Cookies — Track visitors to GRF's website across other websites and provide GRF with Personal Information regarding the interests of visitors to GRF's website so that GRF can custom tailor the user's experience.
  • Required Cookies — Make it possible for you to navigate GRF's website and use its features. Without these cookies, GRF's website may not function properly.
  • Statistics Cookies — Help us understand how you interact with websites by collecting and reporting anonymous statistical data.

Personal Information collected by cookies may be accessible to other third party companies not affiliated with GRF.

You can manage cookies and similar technologies by refusing to accept cookies when notified of their presence either by your browser or the website. You can also set up cookie preferences in your browser to automatically reject cookies. Please note, rejecting cookies may alter your website experience for various pages.

GRF's website does not respond to Do Not Track (DNT) signals. However, some third-party sites may keep track of your browsing history when they provide content on behalf of GRF, which enables them to custom tailor their content. If you visit such sites, they may not respond to the DNT signal on your browser so that third parties, including advertisers, know that you do not want to be tracked. GRF has no control over third party practices. You should refer to the specific disclosures provided by such third parties.

To learn more about cookies, including how to locate, manage, and remove them, visit: www.allaboutcookies.org/manage-cookies/index.html

If you would like to remove all cookies previously installed on your computer, you can do so through many common anti-virus programs, or obtain software commonly available online that will remove tracking cookies from your computer.

4. How GRF Uses Your Personal Information

• • GRF may use aggregate de-identified data derived from the Personal Information you provide for marketing and other commercial purposes, without disclosing any Personal Information which could be used to link the Personal Information to any particular person, address, phone number or other individual/personal identifier.
  • GRF may use Personal Information, including submitted testimonials, photos or social media handles, to post content on our social media pages (e.g. Facebook, Instagram, LinkedIn, X/Twitter, TikTok) for marketing or promotional purposes. Users can request that their data not be shared or be removed from our social media pages by emailing web@rossmoor.com.
  • If you have requested information or periodic updates (either via email or regular mail), your email and/or mailing address will appear on correspondence, which may be exposed to third parties gaining access to your accounts or physical address.
  • GRF may use any Personal Information you provide in order to send you targeted information concerning products or services provided by GRF which it believes you may be interested in.
  • GRF may use Member's Personal Information to provide functionality for other systems such as access control systems, Member services systems, record keeping systems, accounting systems and others.

5. Information Sharing Practices

• • GRF does not disclose PII it collects regarding its Members, customers, visitors to its website or others, except as minimally required by applicable law or, as necessary to defend itself against any regulatory or judicial process, except as expressly described elsewhere in this Policy.
  • PII submitted on inquiry forms requesting more information from a third party real estate agent, broker or company or to schedule a tour may be shared directly with the partnering third party real estate agent, broker or company, who agrees not to use the PII except to provide the requested information or to schedule the tour.
  • GRF may share PII with trusted third-party service providers (such as enterprise resource planning, access control, recreation management and newspaper accounting software; analytics services; and social media platforms). These third parties are contractually bound to adhere to data protection obligations, ensuring they handle Personal Information securely and only for the purposes for which GRF has engaged them.
  • GRF limits access to PII within the company on a need-to-know basis.
  • GRF is subject to certain legal disclosure requirements, including those applicable to California Corporations, and provisions of the Davis Stirling Act applicable to a Community Service Organization (CSO). These requirements include the maintenance of a list of all Members' names and addresses and the requirement that such Personal Information be made available to Members for inspection and copying [Ca. Civ. Code §5200 et. seq.].
  • Any person who misuses Personal Information obtained from a membership list may be liable for damages to the persons on such list [Ca. Corp. Code §8338(b)].

6. Information Security

All PII that is transmitted online to GRF or its partners is encrypted, and GRF seeks to use industry standard physical, technical and administrative safeguards in order to protect your PII. However, no system is 100% secure. If you have reason to believe that your Personal Information has been compromised, you should immediately notify GRF and provide as much detail about your concerns as possible. In the event of a security breach involving unauthorized access to your Personal Information, we will notify you in compliance with California Civil Code § 1798.82.

7. Changes to GRF Policies

GRF reserves the right to update this policy at any time, with or without notice. If GRF makes changes to its privacy/data security policies, such changes will be posted on GRF's website and elsewhere as deemed appropriate. Therefore, you should visit this site regularly for updates on GRF's privacy/data security policies.

8. Jurisdiction

GRF is a corporation domiciled exclusively in Walnut Creek, CA, US. GRF does not engage in consumer transactions outside of Walnut Creek, CA, US, and therefore makes no attempt to comply with any laws outside of this jurisdiction and disclaims any obligation to do so. GRF will not share your Personal Information with anyone outside of the United States.