Alle inhoud

  1. Home
    2. /
  2. Alle inhoud

  • Disclaimer & privacy

    Privacyverklaring & Gebruiksvoorwaarden 9292| REISinformatiegroep

    Algemeen

    9292 | REISinformatiegroep B.V. (hierna: “9292”) streeft ernaar diensten van een hoge kwaliteit te leveren, waarbij betrouwbaarheid en actualiteit belangrijke factoren zijn. 9292 stelt via haar websites, waaronder www.9292.nl (‘Website’), informatie beschikbaar over de diensten die 9292 aanbiedt, waaronder een OV-reisplanner. Voor het gebruik van deze Website en mobiele applicaties gelden een aantal gebruiksvoorwaarden die hieronder zullen worden toegelicht. Daarnaast wil 9292 volstrekt transparant zijn in de wijze waarop zij, als Verwerkingsverantwoordelijke omgaat met de verwerking van aan haar ter beschikking gestelde persoonsgegevens. Ook dit zal hier nader worden toegelicht, waarbij voorop staat dat 9292 de toepasselijke regels op het gebied van privacy zal naleven, zoals de Algemene Verordening Gegevensbescherming (AVG) en de Telecommunicatiewet (Tw). Naast onderhavige voorwaarden kunnen specifieke voorwaarden van toepassing zijn, waaronder begrepen de voorwaarden van derden die betrekking hebben op (andere) diensten die (al dan niet via de Website) geleverd worden.

    Hieronder is een overzicht van alle onderwerpen die in dit privacy statement staan. Door daar op te klikken, wordt u direct naar het desbetreffende onderwerp geleid.

    Naam en contactgegevens verantwoordelijke

    9292 | REISinformatiegroep B.V.
    Postbus 19319
    3501 DH Utrecht
    privacyofficer@9292.nl
    KvK 30104171

    9292

    9292 exploiteert een platform dat aan bezoekers (online) reisinformatie en reisadviezen aanbiedt en/of ter beschikking stelt omtrent het openbaar vervoer, via diverse kanalen, waaronder maar niet beperkt tot Websites, het informatienummer (0900-9292) en mobiele applicaties. Rechtspersonen hebben de mogelijkheid om middels een abonnement vanaf één en hetzelfde IP-adres reisinformatie op te vragen. Rechtspersonen kunnen hiervoor contact opnemen met 9292.

    Verzameling en verwerking

    9292 verwerkt in het kader van haar dienstverlening gegevens, en in bepaalde gevallen ook persoonsgegevens, waaronder de IP-adressen van bezoekers van de Websites en locatie- en apparaat gegevens van gebruikers van haar mobiele applicaties.

    Het geven van reisinformatie vindt, bij de huidige stand van de techniek, voornamelijk plaats via de Website en mobiele applicaties, met gebruikmaking van locatiegegevens. De mobiele applicaties maken enkel gebruik van de locatie voor het bepalen van vertrekhaltes in de buurt en voor het plannen van de reis vanaf de huidige locatie. De locatie wordt niet opgeslagen. Het gebruik van locatiedata kan te allen tijde worden uitgeschakeld in het instellingen menu. Ten behoeve van een Mijn 9292 account worden locatiegegevens opgeslagen in de vorm van Mijn Reizen en Mijn Locaties, om hiermee het opvragen van reisinformatie voor de individuele gebruiker te vergemakkelijken. Deze locatiegegevens worden niet langer bewaard dan gedurende het bestaan van het betreffende account.

    E-mailadressen die worden verkregen doordat een bezoeker een vraag stelt via de contactmogelijkheid onder Veelgestelde vragen worden, nadat de vraag is beantwoord, gedurende een maand bewaard zodat bij vragen over hetzelfde onderwerp persoonlijk kan worden gereageerd. Na die maand wordt de klacht geanonimiseerd bewaard in het kader van verbetering van de dienstverlening. E-mailadressen die zijn verkregen voor het aanmaken van een Mijn 9292 account, voor een account voor het NDOV Loket, voor Mobiliteitsadvies en voor het Berichtensysteem worden bewaard gedurende het bestaan van de account.

    9292 zal niet meer persoonsgegevens verwerken dan noodzakelijk is in het kader van haar dienstverlening en/of voor de hieronder beschreven doeleinden, tenzij daarvoor voorafgaande toestemming is verkregen van de betrokkene wiens persoonsgegevens het betreffen. Bovendien zullen de persoonsgegevens niet langer worden bewaard in een vorm die het mogelijk maakt de betrokkene te identificeren, dan noodzakelijk is voor de doeleinden waarvoor deze gegevens worden verwerkt.

    Doel

    9292 verwerkt persoonsgegevens voor de volgende doeleinden:

    • het beschikbaar stellen van reisinformatie;
    • het voorkomen van (commercieel) misbruik van reisinformatie;
    • voor de optimalisatie van de Websites en diensten van 9292;
    • om een account aan te maken voor gebruikers van de website en/of applicatie van 9292;
    • voor persoonlijk contact met de betrokkene, bijvoorbeeld voor vragen en klachten; en
    • voor het tonen van gepersonaliseerde reclames.

    Grondslag

    De verwerking van persoonsgegevens door 9292 is noodzakelijk voor de behartiging van de gerechtvaardigde belangen van 9292. De verwerking van locatiegegevens en doorgifte daarvan aan adverteerders is een essentieel onderdeel voor het bedrijfsmodel van 9292. De verwerking van e-mailadressen voor het aanmaken van accounts voor verschillende diensten stelt 9292 in staat om haar dienstverlening toe te snijden op de individuele bezoeker of gebruiker, om het publieke gebruik van openbaar-vervoerdata zeker te stellen en de commerciële inzet van gegeven reisinformatie, essentieel voor het bedrijfsmodel van 9292, mogelijk te maken.

    Cookies

    9292 beschikt over een Cookie Statement. Meer informatie vind je hier.

    Beveiliging Website en mobiele applicaties

    9292 stelt de Website en mobiele applicaties met de grootst mogelijke zorg beschikbaar ten behoeve van bezoekers en neemt passende technische en organisatorische maatregelen voor de beveiliging van persoonsgegevens.

    Derden

    9292 maakt, voor het gebruik van haar Website en mobiele applicaties, gebruik van diensten van derden, te weten; Google Inc. (o.a. Google Maps, Google Analytics), Ubifish, Widespace en Semilo. 9292 verstrekt in dat verband IP-adressen van betrokkene(n) aan Google.

    Voor de overdracht van persoonsgegevens buiten de Europees Economische Ruimte (“EER”), bijvoorbeeld aan een internationale organisatie, treft 9292 passende waarborgen. Google heeft de Amerikaanse Privacy Shield principes geadopteerd met betrekking tot de verwerking van persoonsgegevens en zij is als zodanig geregistreerd bij het Privacy Shield-programma van het Amerikaanse ministerie van Handel. Voor nadere informatie omtrent het privacy beleid van Google, wordt verwezen naar de volgende URL: http://www.google.nl/intl/nl/privacy/.

    De Website(s) van 9292 bevat tevens links naar andere websites van derden. 9292 is niet aansprakelijk voor hyperlinks of andere verwijzingen vanaf de Website naar websites van derden, noch voor de wijze waarop door die derden wordt omgegaan met persoonsgegevens. Wij adviseren u het privacy beleid van de desbetreffende website te raadplegen voor meer informatie. Een hyperlink of andere verwijzing impliceert niet dat het 9292 gelieerd is aan de desbetreffende organisatie, noch dat 9292 de inhoud van de desbetreffende website onderschrijft.

    Rechten van betrokkenen

    Indien u inzage, rectificatie of aanvulling, beperking van de verwerking, verwijdering, of overdracht wenst van uw persoonsgegevens, of bezwaar wilt maken tegen de gegevensverwerking kunt u contact opnemen via:

    9292 | REISinformatiegroep B.V.
    Postbus 19319
    3501 DH Utrecht
    privacyofficer@9292.nl

    9292 zal binnen vier weken na ontvangst reageren. 9292 rekent hiervoor in principe géén kosten. In geval van een bewezen ongegrond of buitensporig verzoek, of indien er door een betrokkene heel veel verzoeken worden ingediend, vraagt 9292 een redelijke administratieve vergoeding. Ook kan in die gevallen worden gekozen het verzoek te weigeren. Als u van mening bent dat 9292 niet handelt in overeenstemming met de geldende privacywetgeving kunt u, vanaf 25 mei 2018, hierover een klacht indienen bij de Autoriteit Persoonsgegevens

    Disclaimer gebruik Website en mobiele applicatie

    9292 garandeert niet dat de Website en mobiele applicaties vrij zullen zijn van virussen, noch dat deze Website en mobiele applicaties te allen tijde beschikbaar zijn en foutloos zullen werken. De werkzaamheid van de mobiele applicatie en kwaliteit van de reisadviezen zijn bovendien tevens afhankelijk van de door uw mobiele telefoon gebruikte software en de aanwezigheid van (voldoende) GPS satellieten. Bezoekers kunnen geen rechten ontlenen aan de op de Website en mobiele applicaties vermelde reisadviezen en tarieven. Het is de bezoeker niet toegestaan de Website en mobiele applicaties te wijzigen, kopiëren, beschadigen, overbelasten, hinderen, uit te schakelen of het gebruik en functioneren van de Website en mobiele applicaties te belemmeren. Commercieel gebruik van (reis)gegevens, afkomstig van en/of vertoond op de Website en mobiele applicaties, is niet toegestaan, tenzij hiervoor voorafgaande toestemming is verkregen van 9292.

    Intellectuele Eigendomsrechten

    Alle intellectuele eigendomsrechten, waaronder maar niet beperkt tot merkrechten, handelsnaamrechten, databankrechten en/of auteursrechten, ten aanzien van de Website en mobiele applicaties en de hierop geplaatste content, zoals teksten, artikelen, afbeeldingen, foto’s, namen, logo’s en iconen, komen exclusief toe aan 9292 en/of haar licentiegevers. Indien u verdergaand gebruik wenst te maken van deze intellectuele eigendomsrechten, dan kunt u voor een licentie contact opnemen met 9292. 9292 en/of haar licentiegevers behouden zich uitdrukkelijk alle rechten voor.

    Wijzigingen

    9292 behoudt zich het recht voor om, waar nodig, dit Privacy beleid en de gebruiksvoorwaarden te wijzigen om de conformiteit met de geldende en toepasselijke wetgeving te waarborgen. U wordt hiervan op de hoogte gesteld via de Website. Indien u het niet eens bent met de wijzigingen, zou u geen gebruik meer moeten maken van de Website en/of mobiele applicaties.

    Utrecht, mei 2018

  • Privacybeleid van Adobe

    Laatst bijgewerkt: 3 mei 2018
    In het privacybeleid van Adobe worden de privacypraktijken van apps en websites van Adobe beschreven. Als u in Noord-Amerika woont, hebt u een relatie met Adobe Systems Incorporated (Adobe VS) en is de wetgeving van Californië en de Verenigde Staten van toepassing.
    Als u buiten Noord-Amerika woont, hebt u een relatie met Adobe Systems Software Ireland Limited (Adobe Ierland), dat verantwoordelijk is voor de verwerking van uw persoonlijke gegevens die door Adobe worden verzameld, en is de wetgeving van Ierland van toepassing.
    Als u onze apps en websites wilt gebruiken, autoriseert u Adobe om uw persoonlijke gegevens over te brengen naar het buitenland en naar andere landen waar Adobe en partners actief zijn, waaronder de Verenigde Staten. De privacybescherming en bevoegdheden voor toegang tot uw gegevens in deze landen verschilt mogelijk van uw land. We brengen uw persoonsgegevens over naar deze landen waar dit wettelijk is toegestaan en we treffen maatregelen teneinde te waarborgen dat uw persoonlijke gegevens op de juiste manier worden beschermd. Voor meer informatie raadpleegt u het gedeelte “ Brengt Adobe mijn persoonlijke gegevens over naar het buitenland?
    Als de content of informatie die u opslaat op Adobe-apps of websites persoonlijke informatie van andere personen bevat, moet u wettelijk toestemming hebben om de persoonlijke informatie met Adobe te delen.
    Samenvatting van belangrijke punten
    • Indien uw toestemming vereist is, zullen wij uw toestemming vragen voordat wij (i) u nieuws en promotiemateriaal over Adobe sturen; (ii) informatie benaderen die op uw apparaat is opgeslagen met betrekking tot uw gebruik van en betrokkenheid bij websites en apps (bijv. Adobe Connect-vergaderingen) en crashmeldingen; en (iii) geautomatiseerde systemen gebruiken om uw content te analyseren. U kunt uw toestemming met betrekking tot dergelijke activiteiten op elk moment intrekken. Meer informatie.

    • Dit beleid legt uit wanneer we persoonlijke informatie verwerken voor onze legitieme belangen. U kunt ons vragen te stoppen met het verwerken van deze informatie. Lees meer over uw rechten en hoe u deze kunt uitoefenen.

    • We gebruiken uw persoonlijke informatie om u in staat te stellen zich te registreren bij Adobe en om u onze websites en apps en andere producten of services te bieden die u aanvraagt. Meer informatie.

    • We bieden interactieve functies voor sociale-mediasites, zoals Facebook. Als u deze functies gebruikt, sturen deze sites ons persoonlijke informatie over u. Meer informatie.

    • We gebruiken cookies en andere technologieën om het gebruik van onze websites en apps bij te houden. Voor meer informatie over de mogelijkheden om ervoor te kiezen geen cookies toe te staan, klikt u hier. Als u onze site in een browser gebruikt, is deze informatie ook beschikbaar in ons cookiebeleid.

    • Er zijn verschillende plaatsen binnen de websites en apps van Adobe waar u opmerkingen kunt plaatsen, afbeeldingen kunt uploaden of content kunt indienen die openbaar beschikbaar wordt wanneer u ervoor kiest aan deze activiteiten deel te nemen. We maken ook persoonlijke informatie bekend aan andere bedrijven in de Adobe-familie en bij reclame- en verkooppartners die op uw keuzes aansluiten. We delen ook informatie met derden die we inschakelen om namens ons informatie te verwerken of wanneer dergelijk delen wettelijk vereist is, of in bepaalde andere situaties. Meer informatie.

    • We geven uw persoonlijke gegevens door aan de VS en andere landen, die zich mogelijk buiten het land bevinden waar u woont. We gebruiken door de Europese Commissie goedgekeurde contractclausules en een privacyschild om uw persoonlijke gegevens te beschermen. Meer informatie.
    Waarop heeft dit privacybeleid betrekking?
    Welke gegevens verzamelt Adobe over mij?
    Hoe gebruikt Adobe de informatie die het over mij verzamelt en wat zijn de wettelijke grondslagen voor dit gebruik?
    Deelt Adobe mijn persoonlijke gegevens?
    Worden mijn persoonlijke gegevens ergens in apps of op websites van Adobe weergegeven?
    Zijn mijn persoonlijke gegevens veilig?
    Waar slaat Adobe mijn persoonlijke gegevens op?
    Brengt Adobe mijn persoonlijke gegevens over naar het buitenland?
    Welke rechten heb ik met betrekking tot mijn persoonlijke informatie en hoe kan ik deze uitoefenen?
    Goedkeuring intrekken of anderszins bezwaar maken tegen direct marketing
    Welke gegevens worden door bedrijven verzameld met Adobe Experience Cloud-oplossingen?
    Hoe lang bewaart Adobe mijn informatie?
    Verandert dit privacybeleid?
    Met wie kan ik contact opnemen met vragen of zorgen?
    Waarop heeft dit privacybeleid betrekking?
    Dit privacybeleid beschrijft hoe Adobe (ook bekend als “wij”, “ons” of “onze”) uw gegevens zal gebruiken in de context van:
    • Adobe-websites: webservices zoals Behance en webgebaseerde aspecten van Creative Cloud, Document Cloud en Experience Cloud (samen “websites” genoemd);
    • Desktop-apps en mobiele apps (beide “apps” genoemd) die een verwijzing naar dit beleid bevatten; en
    • Marketing-, sales- en advertentiepraktijken van Adobe.
    Houd er rekening mee dat websites en apps van sommige bedrijven die door Adobe zijn aangeschaft, volgens hun eigen privacybeleid kunnen werken totdat hun privacypraktijken zijn geïntegreerd in de privacyprocedures van Adobe. Voor een actuele lijst van deze bedrijven klikt u hier.
    Aanvullende informatie over privacy wordt verstrekt voor bepaalde apps en websites van Adobe.
    Raadpleeg ook de gebruiksvoorwaarden van Adobe en aanvullende gebruiksvoorwaarden of productlicentieovereenkomsten die mogelijk van toepassing zijn op de gebruikte app of website.
    Welke gegevens verzamelt Adobe over mij?
    Adobe-ID, inschrijving en klantenservice
    Wanneer u zich inschrijft om een app of website van Adobe te gebruiken, een Adobe-ID te maken of contact met ons op te nemen voor ondersteuning of andere aanbiedingen, verzamelt Adobe gegevens waarmee u wordt geïdentificeerd. Deze informatie omvat:
    • Naam;
    • Geboortedatum;
    • Bedrijfsnaam;
    • E-mailadres;
    • Telefoonnummer;
    • Adres;
    • Land;
    • IP-adres;
    • Betalings-/ factuurinformatie (waar is ’betaald’ voor een app of website;
    • Informatie over geschiktheid (bijv. voor edities of apps voor studenten en docenten);
    • Typen apps en websites waarvoor interesse is getoond; en
    • De inhoud van communicatie voor klantenondersteuning.
    Teneinde onze databases bijgewerkt te houden en u de meest relevante content en ervaringen te bieden, kunnen we uw gegevens samenvoegen met gegevens van externe bronnen overeenkomstig toepasselijke wetgeving. De grootte, branche en andere informatie over het bedrijf waarvoor u werkt (indien u de bedrijfsnaam hebt opgegeven) zal bijvoorbeeld worden verkregen via bronnen waaronder sites voor professioneel netwerken en aanbieders van informatiediensten.
    Apps en websites van Adobe
    We verzamelen gegevens over de manier waarop u onze apps en websites gebruikt, bijvoorbeeld wanneer u een functie van een desktopproduct gebruikt waarmee u online gaat (zoals een synchronisatiefunctie voor foto’s). Afhankelijk van de app of website kunnen deze gegevens anoniem worden verzonden of aan u worden gerelateerd. Dit omvat:
    • IP-adres.
    • Type browser en apparaat.
    • Webpagina die u naar een Adobe-website heeft geleid.
    • Zoektermen die zijn ingevoerd in een zoekmachine die u naar een Adobe-website hebben geleid.
    • Gebruik en navigatie van websites en apps (verzameld via cookies en vergelijkbare technologieën, of door Adobe-servers wanneer u bij de app of website bent aangemeld).
    • Analyse van uw content (bijvoorbeeld activiteitenlogboeken en directe feedback van u) die wordt verzonden of ontvangen met behulp van een online functie van een app of website van Adobe, of die is opgeslagen op Adobe-servers.
    De volgende links bieden meer informatie over:
    Activering van apps van Adobe en automatische updates
    Wanneer u uw Adobe-app activeert of wanneer u updates voor de app installeert, verzamelen wij informatie over:
    • uw apparaat (fabrikant, model, IP-adres);
    • de Adobe-app (versie, activeringsdatum, geslaagde en niet-geslaagde updates);
    • het serienummer van uw product (waar deze vereist is voordat u uw product kunt gaan gebruiken).

    Meer informatie over het activeren van apps vindt u hier.

    E-mails van Adobe
    E-mails die we naar u sturen, kunnen een technologie (een webbaken genoemd) bevatten waarmee Adobe kan bepalen of u de e-mail hebt ontvangen of geopend en of u op een koppeling in de e-mail hebt geklikt. Als u niet wilt dat wij deze informatie verzamelen, kunt u aangeven dat u geen marketing-e-mails van Adobe meer wilt ontvangen.

    Online advertenties van Adobe
    Adobe adverteert online op verschillende manieren, waaronder het weergeven van Adobe-advertenties aan u op websites en in apps van andere bedrijven en op sociale-mediaplatforms, zoals Facebook en LinkedIn. Adobe-websites gebruiken cookies en soortgelijke technologieën die worden aangeboden door ons eigen bedrijf ( Adobe Experience Cloud) en andere bedrijven waarmee we aanvullende informatie kunnen verzamelen om de effectiviteit van onze advertenties te meten en verbeteren. Informatie die we verzamelen zoals:
    • Welke advertenties worden getoond;
    • Op welke advertenties wordt geklikt; en
    • Waar de advertentie werd weergegeven.
    Meer informatie over advertentiepraktijken van Adobe.
    Knoppen, tools en content van andere bedrijven
    Apps en websites van Adobe kunnen knoppen, tools of content bevatten die is gekoppeld aan services van andere bedrijven (bijvoorbeeld de Facebook-knop ’Vind ik leuk’). We kunnen informatie verzamelen over uw gebruik van deze functie, zoals content die u ’leuk vindt’ en adresgegevens in Google Maps. Wanneer u bovendien deze knoppen, tools of inhoud ziet of gebruikt of wanneer u een webpagina of app van Adobe met deze knoppen, tools of inhoud ziet, worden mogelijk bepaalde gegevens automatisch vanuit de browser verzonden naar het andere bedrijf. Lees het privacybeleid van dat bedrijf voor meer informatie.

    Pagina’s van Adobe en aanmeldingsservices voor sociale netwerken
    U kunt zich bij sommige Adobe-apps of -websites aanmelden met een account voor sociale netwerken, zoals een Facebook-account. Als u de juiste machtigingen geeft, ontvangen wij informatie over u via uw sociale-netwerkaccount, zoals naam, locatie en demografische basisinformatie.
    Adobe heeft eigen pagina’s op veel websites voor sociale netwerken (bijvoorbeeld de Facebook-pagina van het Adobe® Photoshop®-team). We verzamelen informatie die u openbaar beschikbaar hebt gemaakt op uw sociale-netwerkaccount, zoals de naam van en interesses in onze producten en services, wanneer u onze pagina’s voor sociale netwerken gebruikt.
    Meer informatie over praktijken van Adobe.
    Hoe gebruikt Adobe de informatie die het over mij verzamelt en wat zijn de wettelijke grondslagen voor dit gebruik?
    Adobe gebruikt de informatie die we over u verzamelen voor de volgende doeleinden:
    • Het uitvoeren van een contract of het ondernemen van stappen die aan een contract verbonden zijn: dit is relevant wanneer u zich registreert voor het gebruik van een app of website van Adobe (ongeacht of het hier gaat om een betaalde versie of een gratis proefversie). Dit omvat:
      • Het bieden van websites en apps van Adobe waarvoor u zich hebt ingeschreven, alsmede andere services of producten waarom u hebt verzocht;
      • Verificatie van uw identiteit;
      • Het ontvangen van betalingen;
      • Het aan u verzenden van noodzakelijke berichten (bijvoorbeeld met betrekking tot betalingen of het verlopen van uw abonnement); en
      • Het verlenen van klantenservice of ondersteuning.
    • Zoals vereist door Adobe voor onze bedrijfsvoering en om onze legitieme belangen na te streven, in het bijzonder:
      • Het bieden van websites en apps van Adobe waarvoor u zich hebt ingeschreven alsmede andere producten en services waarom u hebt verzocht;
      • Analyse van uw gebruik en het meten van de effectiviteit van onze websites en apps om beter te begrijpen hoe deze worden gebruikt, zodat we ze kunnen verbeteren en gebruikers kunnen betrekken en behouden;
      • Het aan u verzenden van informatie over Adobe-producten en -services, speciale aanbiedingen en soortgelijke informatie, en het delen van uw informatie met derden voor hun eigen marketingdoeleinden (waar uw toestemming niet is vereist);
      • Analyse van uw gebruik van onze websites en apps, en interactie met onze communicatie, om de website of app en marketingcommunicatie aan te passen en te personaliseren ( meer informatie);
      • Het gebruik van geautomatiseerde systemen om uw content te analyseren met behulp van technieken zoals machine learning om onze diensten en de gebruikerservaring te verbeteren (waar uw toestemming niet vereist is);
      • Het analyseren van problemen in onze apps en op onze websites;
      • Het uitvoeren van enquêtes en marktonderzoek naar onze klanten, hun interesses, de effectiviteit van onze marketingcampagnes en klanttevredenheid (tenzij we toestemming nodig hebben om dergelijke enquêtes uit te voeren, in welk geval we dit alleen doen met uw toestemming);
      • Het onderzoeken van en reageren op eventuele opmerkingen of klachten die u ons toestuurt;
      • Controle van de geldigheid van de door u ingevoerde gegevens (sorteercode, rekeningnummer en kaartnummer) als u een creditcard of betaalpas gebruikt voor betaling, om fraude te voorkomen (hiervoor gebruiken we derden – zie “Deelt Adobe mijn persoonlijke gegevens?” hieronder); en
      • Waar nodig in verband met juridische claims, naleving, regelgevende en onderzoeksdoeleinden (dit omvat openbaarmaking van informatie in verband met juridische procedures of procesvoering).
    • Waar u Adobe uw toestemming geeft of anderszins consistent bent met uw keuzes:
      • Het aan u verzenden van informatie over Adobe-producten en -services, speciale aanbiedingen en soortgelijke informatie, en het delen van uw informatie met derden voor hun eigen marketingdoeleinden (waar uw toestemming is vereist);
      • Het plaatsen van cookies en het gebruik van vergelijkbare technologieën op onze websites, in onze apps en in e-mailcommunicatie, in overeenstemming met ons cookiebeleid en de informatie die aan u wordt verstrekt wanneer die technologieën worden gebruikt;
      • Het verkrijgen van toegang tot informatie die op uw apparaat is opgeslagen met betrekking tot uw gebruik van en betrokkenheid bij websites en apps (bijv. Adobe Connect-vergaderingen) en crashmeldingen;
      • Het gebruik van geautomatiseerde systemen om uw content te analyseren met behulp van technieken zoals machine learning om onze diensten en de gebruikerservaring te verbeteren (waar uw toestemming vereist is);
    Bij andere gelegenheden waar we u om toestemming vragen, zullen we de informatie gebruiken voor de doeleinden die we op dat moment toelichten.
    • Om juridische redenen:
      • In reactie op verzoeken van overheden of wetshandhavingsinstanties die een onderzoek uitvoeren.
      • Om fraude, beveiligingskwesties of technische problemen en softwarepiraterij op te sporen, te voorkomen of anderszins aan te pakken (bijv. om te bevestigen dat software legitiem is en de juiste licentie heeft), ter bescherming van zowel u als Adobe.

    Momenteel geldt uitsluitend in de Verenigde Staten en Canada dat Adobe uw gegevens ook gebruikt voor onze deelname aan de Adobe Experience Cloud Device Co-op, waarmee we een beter inzicht krijgen in uw gebruik van de apps en websites van Adobe op verschillende apparaten die u gebruikt, en waarmee we advertenties kunnen afstemmen op uw waarschijnlijke interesses ( meer informatie of afmelden).
    Deelt Adobe mijn persoonlijke gegevens?
    Delen met andere gegevensbeheerders
    We zullen uw persoonlijke gegevens binnen de Adobe-familie van bedrijven delen voor de hierboven genoemde doeleinden (zie een lijst met entiteiten van Adobe en onze overgenomen bedrijven). De soorten derde partijen waarmee uw informatie kan worden gedeeld zijn onder andere onze wederverkopers en andere verkoop- en advertentiepartners, detailhandelaren, onderzoeksorganisaties, adverteerders, reclamebureaus, advertentienetwerken en -platforms, aanbieders van informatiediensten, uitgevers en non-profitorganisaties (met uw toestemming, indien vereist).
    We delen persoonlijke informatie met bedrijven, organisaties of individuen buiten Adobe als we in goed vertrouwen van mening zijn dat toegang, gebruik, behoud of openbaarmaking van de informatie redelijkerwijs noodzakelijk is om fraude, beveiligingskwesties of technische problemen op te sporen, te voorkomen of anderszins aan te pakken, en om te beschermen tegen schade aan de rechten, eigendommen of veiligheid van Adobe, onze gebruikers of het publiek zoals vereist of toegestaan ​​door de wet.
    Delen met gegevensverwerkers
    We zullen uw persoonlijke gegevens ook delen met bedrijven die ons helpen onze bedrijfsvoering uit te voeren door persoonlijke gegevens namens Adobe te verwerken voor de bovengenoemde doeleinden. Dergelijke bedrijven zijn onder meer aanbieders van klantondersteunende diensten, betalingsverwerkingsservices, monitoring en preventie van fraude, e-mail, sociale media en andere marketingplatforms en serviceproviders, en hostingservices.

    Overige vormen van informatiedeling
    Adobe kan uw persoonlijke gegevens ook delen:
    • Wanneer u hiermee instemt;
    • Wanneer we worden verplicht om gegevens te verstrekken als reactie op een dagvaarding, gerechtelijke uitspraak of andere toepasselijke wet of juridische procedure ( meer informatie);
    • Wanneer we in goed vertrouwen van mening zijn dat de gegevens openbaar moeten worden gemaakt om fraude te voorkomen of hierop te reageren, onze apps of websites te beschermen tegen aanvallen, of de eigendommen en veiligheid van Adobe, onze klanten en gebruikers of het publiek te beschermen;
    • Als we een fusie aangaan met of worden overgenomen door een ander bedrijf, een Adobe-website, -app of -bedrijfsonderdeel verkopen, of als alle of een substantieel deel van onze middelen worden overgenomen door een ander bedrijf, wordt uw informatie waarschijnlijk bekendgemaakt aan onze adviseurs en eventuele adviseurs van een potentiële koper en wordt deze een van de middelen die aan de nieuwe eigenaar wordt overgedragen.
    We kunnen samengevoegde gegevens delen of publiceren waarmee u niet specifiek wordt geïdentificeerd, zoals statistische gegevens over bezoekers van onze websites of statistische gegevens over hoe onze gebruikers de Adobe Experience Cloud gebruiken.
    Worden mijn persoonlijke gegevens ergens op websites of in toepassingen van Adobe weergegeven?
    Op verschillende plaatsen op websites en in apps van Adobe kunt u opmerkingen publiceren, afbeeldingen uploaden of inhoud indienen zodat anderen deze kunnen bekijken. Soms kunt u beperken wie door u gedeelde gegevens kan bekijken, maar op sommige plaatsen kunnen deze worden bekeken door het algemene publiek of door andere gebruikers van de app of website. Wees voorzichtig wanneer u uw persoonlijke gegevens verstrekt. Verstrek geen gegevens die u liever voor uzelf houdt, tenzij u zeker weet dat u de gegevens publiceert in een app of op een website waar u kunt regelen wie uw publicatie bekijkt. Wanneer u berichten publiceert op bepaalde gebruikersforums op onze websites en in onze apps, kan uw e-mailadres of uw naam en/of uw profielfoto worden opgenomen in en weergegeven bij uw bericht.
    Als u inhoud wilt verwijderen die u hebt gedeeld op onze websites en in onze apps, dient u dezelfde functie op de website of in de app te gebruiken waarmee u de inhoud hebt gedeeld. Als een andere gebruiker u uitnodigt om deel te nemen aan een sessie waarin u gezamenlijk inhoud bekijkt, bewerkt of becommentarieert, kunt u uw bijdragen verwijderen. Meestal ligt de volledige controle echter bij de gebruiker door wie u bent uitgenodigd. Als u vragen of opmerkingen hierover hebt, kunt u contact met ons opnemen.
    Zijn mijn persoonlijke gegevens veilig?
    We begrijpen dat de beveiliging van uw persoonlijke gegevens belangrijk is. We bieden uw redelijke controlesystemen voor administratieve, technische en fysieke beveiliging om uw persoonlijke gegevens te beschermen. Ondanks onze inspanningen zijn beveiligingssystemen echter nooit 100% effectief, waardoor Adobe niet kan garanderen of waarborgen dat uw persoonlijke gegevens veilig zijn.
    Waar slaat Adobe mijn persoonlijke gegevens op?
    Uw persoonlijke gegevens en bestanden worden opgeslagen op servers van Adobe en van bedrijven die we inschakelen om services namens ons te verlenen.
    Brengt Adobe mijn persoonlijke gegevens over naar het buitenland?
    We kunnen uw persoonlijke gegevens overbrengen naar het buitenland in overeenstemming met toepasselijke wetgeving.
    Als u buiten Noord-Amerika woont, hebt u een relatie met Adobe Ierland. Adobe Ierland draagt uw persoonlijke gegevens over aan een aantal organisaties buiten de Europese Economische Ruimte (EOO) en Zwitserland, namelijk de VS en India en andere locaties waar Adobe in de toekomst mogelijk actief zal zijn.
    Wanneer Adobe Ierland uw persoonlijke informatie overdraagt ​​naar een land dat niet onder EOO valt en niet onderworpen is aan een adequaatheidsbesluit van de Europese Commissie, baseren wij ons op een of meer van de volgende juridische mechanismen: het EU-VS-privacyschild, het Zwitserland-VS-privacyschild, door de Europese Commissie goedgekeurde standaardcontractbepalingen en uw toestemming in bepaalde omstandigheden. Op verzoek kan een kopie van het relevante mechanisme voor uw beoordeling worden verstrekt, met behulp van de contactgegevens die aan het einde van dit privacybeleid worden verstrekt. Voor meer informatie over de certificering van Adobe VS voor het Privacyschild tussen de EU en de VS, met inbegrip van de reikwijdte van onze certificering, raadpleegt u Privacyschild/overdracht van Europese gegevens.
    De bovenstaande informatie is van toepassing op Adobe-gebruikers die consumenten zijn. Meer informatie is beschikbaar voor onze zakelijke klanten die meer willen weten over overdracht van Europese gegevens.
    Welke rechten heb ik met betrekking tot mijn persoonlijke informatie en hoe kan ik deze rechten uitoefenen?
    Onder de wetgeving van sommige landen hebt u mogelijk het recht om ons te vragen om een ​​kopie van uw persoonlijke gegevens; om de verwerking van uw persoonlijke informatie te corrigeren, te verwijderen of (eventuele actieve verwerking) te beperken (te stoppen); en om de persoonlijke informatie die u ons verstrekt voor een contract of met uw toestemming te verkrijgen in een gestructureerd, machinaal leesbaar formaat en om ons te vragen deze informatie te delen met (porteren naar) een andere beheerder.
    Bovendien kunt u bezwaar maken tegen de verwerking van uw persoonlijke informatie in bepaalde omstandigheden (met name wanneer we de informatie niet hoeven te verwerken om te voldoen aan een contractuele of andere wettelijke vereiste, of wanneer we de informatie gebruiken voor direct marketing).
    Deze rechten kunnen beperkt zijn, bijvoorbeeld als het voldoen aan uw verzoek persoonlijke informatie over een andere persoon zou onthullen, of als u ons vraagt ​​ informatie te verwijderen die wij volgens de wet moeten behouden of op dwingende legitieme gronden moeten behouden (bijv. ter voorkoming van fraude).
    Om een ​​van deze rechten uit te oefenen (inclusief het deactiveren van uw Adobe ID-account), kunt u contact opnemen met ons – of onze functionaris voor gegevensbescherming – met behulp van de onderstaande details. Op veel van onze websites en in veel van onze apps kunt u uw persoonlijke gegevens bovendien bewerken via ’mijn account’, ’mijn profiel’ of een soortgelijke functie van de door u gebruikte app of website. Evenzo kunt u bestanden of foto’s verwijderen die u via onze websites en apps hebt opgeslagen, door u aan te melden en de beschikbaar gestelde functies voor verwijdering te gebruiken.
    Als u niet-opgeloste bedenkingen heeft, hebt u het recht deze te melden aan een EU- of andere gegevensbeschermingsautoriteit waar u woont, werkt of waarvan u denkt dat er mogelijk een overtreding heeft plaatsgevonden.
    Om u te registreren bij Adobe, een Adobe ID te maken en sommige Adobe-websites, -apps, -producten of -services te gebruiken, is het verstrekken van bepaalde informatie verplicht: als er geen relevante informatie wordt verstrekt, kunnen we geen Adobe-account voor u beheren of u de gevraagde websites, apps, producten of diensten bieden. Alle andere verstrekking van uw informatie is optioneel. Als u optionele informatie verstrekt, kunnen we u een betere ervaring bieden, zoals meer persoonlijke of aangepaste content of aanbiedingen.
    Goedkeuring intrekken of anderszins bezwaar maken tegen direct marketing
    De bedrijvengroep van Adobe (zie de lijst met entiteiten van Adobe en onze overgenomen bedrijven) en bedrijven die we inschakelen voor de marketing van onze websites en apps namens ons, kunnen uw gegevens gebruiken om u informatie en aanbiedingen in verband met Adobe te verstrekken.
    Waar we ook op uw toestemming vertrouwen, u kunt die toestemming altijd intrekken, hoewel we mogelijk andere juridische redenen hebben om uw gegevens te verwerken voor andere doeleinden, zoals bijvoorbeeld doeleinden zoals die hierboven zijn beschreven. In sommige gevallen kunnen we u direct marketing sturen zonder uw toestemming, waarbij we vertrouwen op onze legitieme belangen. U hebt het absolute recht om u op elk moment af te melden voor direct marketing, of profilering die wij voor direct marketing uitvoeren, door:
    • uw voorkeuren bij te werken in uw Adobe ID-profiel;
    • uw voorkeuren bij te werken in uw specifieke website- of app-accounts;
    • te klikken op de link ’Abonnement opzeggen’ onder in onze marketing-e-mails; of
    • contact met ons op te nemen met de gegevens die aan het einde van dit privacybeleid worden verstrekt.
    Klik hier voor meer informatie over uw keuzes met betrekking tot onze marketingpraktijken.
    Welke gegevens worden door bedrijven verzameld met Adobe Experience Cloud-oplossingen?
    Met Adobe Experience Cloud-oplossingen kunnen onze zakelijke klanten hun websites, apps en marketingberichten personaliseren en de prestaties ervan verbeteren. Deze klanten kunnen Adobe Experience Cloud-oplossingen bijvoorbeeld gebruiken om gegevens over uw gebruik van hun website te verzamelen en analyseren ( meer informatie). De verzamelde informatie wordt op onze computers opgeslagen voor gebruik door deze zakelijke klanten.
    Hoe lang bewaart Adobe mijn informatie?
    Wanneer u zich registreert voor een Adobe ID-account, verwerken en bewaren we de meeste persoonlijke informatie die we over u hebben zolang u een actieve gebruiker van onze producten, services of apps bent. Wanneer u uw account afsluit, beginnen we na 60 dagen bepaalde persoonlijke gegevens te verwijderen waarvan we niet langer een zakelijke reden hebben om deze te bewaren, zoals uw gehashte wachtwoord en gegevens over uw betaalrekening. Persoonlijke gegevens met betrekking tot ons contract en zakelijke transacties met u bewaren we evenwel doorgaans gedurende zeven jaar na uw laatste interactie met ons.
    Wanneer we persoonlijke informatie verwerken voor marketingdoeleinden of met uw toestemming, verwerken we de informatie totdat u ons vraagt ​​te stoppen en gedurende een korte periode daarna (om ons de mogelijkheid te bieden ​​uw verzoeken te implementeren). We houden ook een permanent verslag bij van het feit dat u ons hebt gevraagd u geen direct marketing te sturen of uw gegevens te verwerken, zodat we uw verzoek in de toekomst kunnen respecteren.
    Verandert dit privacybeleid?
    Soms kunnen we dit privacybeleid (of andere documenten in het Adobe Privacy Center) wijzigen zodat Adobe uw persoonlijke gegevens op een andere manier kan gebruiken of delen. Als we dat doen, geeft de koppeling naar het beleid op onze websites (die zich meestal in de voettekst van de website bevindt) aan dat het beleid is gewijzigd. Voor nieuwe gebruikers wordt de wijziging na publicatie van kracht. Voor bestaande gebruikers wordt de wijziging of update 30 dagen na publicatie van kracht in het geval van een grote wijziging. We raden u aan het Adobe Privacy Center af en toe te bezoeken voor de meest recente informatie over onze privacypraktijken.
    Met wie kan ik contact opnemen met vragen of zorgen?
    Als u een vraag, bedenking of opmerking in verband met privacy hebt, kunt u gebruikmaken van een aanvraagformulier met betrekking tot privacy. U kunt ook contact opnemen met de functionaris voor gegevensbescherming via DPO@adobe.com.

  • PRIVACY & COOKIE VERKLARING

    In deze privacyverklaring wordt namens Ageras N.V. toegelicht hoe wij (“wij” of “Ageras”) met de persoonsgegevens die u geeft als u onze website (de “Website”) gebruikt omgaan en hoe wij met het gebruik van cookies omgaan.

    Ageras verzamelt persoonsgegevens wanneer u als Cliënt of als Aanbieder of overige relatie van Ageras van onze dienstverlening gebruik wenst te maken. Persoonsgegevens zijn alle gegevens die een natuurlijk persoon kunnen identificeren. Daarvan is sprake als zijn of haar identiteit redelijkerwijs, zonder al te grote inspanning, vastgesteld kan worden. Denk aan bijvoorbeeld naam, adres en geboortedatum. Gegevens die van de naam zijn ontdaan kunnen soms in combinatie met andere gegevens toch (indirect) identificeerbaar zijn.

    Ageras is de verantwoordelijke voor de verwerking van alle persoonsgegevens van u die wij via de Website verzamelen bij het bemiddelen tussen een Cliënt en een Aanbieder. Tevens zijn wij verantwoordelijk voor de persoonsgegevens die wij van de contactpersonen bij onze leveranciers verzamelen. Voor alle persoonsgegevens die via de Website worden verwerkt nadat een Cliënt en een Aanbieder een overeenkomst zijn aangegaan om bepaalde diensten te verrichten, is dat niet het geval. Vanaf dat moment gebeurt de verwerking van persoonsgegevens via (delen van) de Website namelijk als onderdeel van uitvoering van die overeenkomst tussen een Cliënt en een Aanbieder. De verwerking van de persoonsgegevens via de Website gebeurt dan door Ageras als verwerker of sub verwerker (als bedoeld in de Algemene Verordening Gegevensbescherming) van de Aanbieder. De Aanbieder is de verantwoordelijke voor de gegevens.

    De persoonsgegevens worden door ons met grote zorgvuldigheid behandeld en wij zullen deze steeds in overeenstemming met de eisen die de wet daaraan stelt behandelen en beveiligen. Met dit privacy beleid willen wij u graag helder informeren over hoe wij met uw persoonsgegevens omgaan.

    Deze privacyverklaring ziet op de verwerking van persoonsgegevens waarvoor Ageras als verantwoordelijke geldt en niet specifiek op de situatie waarin zij (sub)verwerker is.

    Voor welke doelen verwerken wij uw gegevens?

    We onderscheiden vier groepen personen waarvan wij persoonsgegevens verwerken: Cliënten, contactpersonen van Aanbieders, overige relaties (zoals contactpersonen van leveranciers) en overige bezoekers van de Website. Per afzonderlijke groep zal hieronder worden aangegeven voor welk doel wij persoonsgegevens verzamelen.

    1. Cliënten

    De persoonsgegevens van Cliënten kunnen voor de volgende doeleinden worden verzameld: i) voor het beoordelen van de soort dienst waarnaar de Cliënt op zoek is en van welke Aanbieder mogelijk geschikt is om die dienst te leveren; ii) om informatie aan Aanbieders te geven die offertes voor een project willen uitbrengen; iii) voor het aangaan van een overeenkomst tussen u en Ageras voor onze dienstverlening aan u en deze ook uit te kunnen voeren; iv) voor het in contact brengen van u met een of meer Aanbieders; v) om afspraken met de opdrachtgevers en klanten van Ageras te kunnen maken; vi) voor het verrichten van onze bemiddelingsdiensten; vii) voor het aanmaken van een account voor de afgeschermde omgeving op de Website; viii) interne archivering; ix) voor verbetering van onze producten en diensten; x) om zo nu en dan promotie e-mails te kunnen sturen over nieuwe producten, speciale aanbiedingen of andere informatie die u naar ons idee interessant zou kunnen vinden, via het e-mailadres dat u heeft verstrekt; xi) om contact met u op te nemen voor marktonderzoek. We kunnen contact met u opnemen per e-mail, via uw mobiele apparaat (zoals SMS) of post.

    2. Contactpersonen van Aanbieders

    De persoonsgegevens van contactpersonen van Aanbieders kunnen voor de volgende doeleinden worden verzameld: i) om met u in het kader van het aangaan van de overeenkomst tussen de Aanbieder en Ageras te kunnen communiceren; ii) voor het aangaan van een overeenkomst tussen Ageras en een Aanbieder en voor het uitvoeren daarvan; iii) voor het aanmaken van een account voor de afgeschermde omgeving op de Website; iv) om informatie te verstrekken aan de Aanbieder waar u aan verbonden bent over onze diensten en om commerciële aanbiedingen over onze diensten te kunnen doen.

    3. Overige relaties

    De persoonsgegevens van de contactpersonen van overige relaties kunnen voor de volgende doeleinden worden verzameld: i) voor het aangaan van een overeenkomst met u of uw werkgever/organisatie voor onze of uw dienstverlening en om deze te kunnen uitvoeren en onderhouden; ii) m met u of uw werkgever/organisatie anderszins een overeenkomst aan te gaan, uit te voeren en te onderhouden; iii) informatie te verstrekken over onze diensten en commerciële aanbiedingen over onze diensten te kunnen doen.

    4. Overige bezoekers van de website

    Ageras maakt gebruik van cookies om de Website en de diensten te kunnen verbeteren. In het algemeen worden uw gegevens in anonieme, niet tot de persoon herleidbare, vorm verzameld. Als met behulp van cookies wel persoonsgegevens worden verzameld, dan worden deze in lijn met de bepalingen van dit Privacy & Cookie statement verwerkt. Voor een uitvoerige toelichting op het gebruik van cookies door Ageras verwijzen u naar het hoofdstuk ‘Cookies en webstatistieken.’

    # Welke persoonsgegevens worden verwerkt Ageras verwerkt als verantwoordelijke onder meer de volgende persoonsgegevens;

    Cliënten

    NAW-gegevens, geboortedatum, geslacht, contactgegevens, inloggegevens afgeschermde inlogomgeving en daarnaast eventuele gegevens die een Cliënt verstrekt in het kader van de omschrijving van de dienst waarnaar hij of zij op zoek is. Het is mogelijk dat als onderdeel daarvan aanvullende persoonsgegevens worden verstrekt en daarmee door Ageras worden verwerkt. Welke soort persoonsgegevens dat zijn is afhankelijk van onder meer de omschrijving van dienst waarnaar gezocht wordt.

    Aanbieders en overige relaties

    De persoonsgegevens die in dit kader worden verwerkt zijn voornamelijk gegevens van de contactpersonen van deze Aanbieders en relaties. De persoonsgegevens die van contactpersonen worden verwerkt zijn beperkt tot: NAW-gegevens, contactgegevens, functiegegevens en inloggegevens afgeschermde inlogomgeving.

    Bijzondere persoonsgegevens

    Met zowel Cliënten en als met Aanbieders wordt in de gebruikersovereenkomsten overeengekomen dat zij geen bijzondere persoonsgegevens via de Website of de daartoe behorende communicatiekanalen zullen delen of op andere manieren naar de Website zullen uploaden. Bijzondere persoonsgegevens zijn gevoelige gegevens die door de wetgever extra worden beschermd. Bijzondere persoonsgegevens zijn gegevens over godsdienst of levensovertuiging, ras, politieke voorkeur, gezondheid, seksuele leven, lidmaatschap van een vakbond, strafrechtelijk verleden.

    Beveiliging Persoonsgegevens

    Wij hechten zeer aan het beschermen van uw privacy. Al onze systemen en applicaties zijn dan ook conform de eisen van de huidige wet- en regelgeving beveiligd om verlies van gegevens of onrechtmatige verwerking tegen te gaan. Met onze medewerkers die toegang hebben tot uw persoonsgegevens wordt door ons een geheimhoudingsplicht overeengekomen en daarnaast hebben enkel daartoe geautoriseerde medewerkers toegang tot de persoonsgegevens.

    Derden

    Het is mogelijk dat Ageras uw persoonsgegevens doorgeeft aan derden. Dit zal enkel gebeuren indien dat op grond van de wet is toegestaan of noodzakelijk is. Derden zijn bijvoorbeeld vennootschappen die aan Ageras verbonden zijn, partijen die door Ageras worden ingeschakeld voor uitvoeren van de diensten van Ageras, of een andere persoon of partij als Ageras daartoe op grond van de wet of een gerechtelijk bevel verplicht is. Wij kunnen persoonsgegevens voor de uitvoering van onze diensten buiten Nederland (laten) opslaan en gebruiken. Dat kan binnen de EER (Europese Economische Ruimte) zijn, maar ook daarbuiten. Ageras zal in die gevallen te allen tijde de nodige maatregelen treffen om te verzekeren dat alle doorgegeven persoonsgegevens adequaat beschermd worden.

    Inzage, wijziging, beperking en dataportabiliteit

    U kunt nadere informatie over uw persoonsgegevens waarover wij beschikken opvragen. Als u een kopie wilt van de persoonsgegevens die wij over u hebben of als u deze door ons aan een andere partij wilt laten overdragen (dataportabiliteit), kunt u per brief of per e-mail schrijven naar nl@ageras.com of naar: Ageras NV Vesterbrogade 1e 1620 København Denemarken

    Als u denkt dat informatie die wij over u hebben onjuist of onvolledig is, stuur ons dan zo snel mogelijk een bericht, per brief of e-mail, naar nl@ageras.com. Wij zorgen er dan voor dat de onjuiste informatie zo snel mogelijk gecorrigeerd wordt. U kunt kosteloos verzet aantekenen tegen het gebruik van Persoonsgegevens door een e-mail te sturen naar voornoemd e-mailadres. Wij zullen binnen vier weken na ontvangst van het verzet beoordelen of het verzet terecht is. In dat geval zal de verwerking worden beëindigd of worden gecorrigeerd. Correctie zal plaatsvinden indien de persoonsgegevens feitelijk onjuist, onvolledig of niet ter zake dienend zijn voor de doeleinden waarvoor ze worden verwerkt of indien deze in strijd met geldende wet- en regelgeving zijn verwerkt.

    U kunt er op de volgende manieren voor kiezen om het verzamelen of gebruiken van uw persoonsgegevens te beperken:

    Als u verzocht wordt een formulier op de Website in te vullen, kan er een vakje staan waarop u kunt klikken om aan te geven of de informatie door iedereen gebruikt kan worden voor direct marketing doeleinden. Indien u er eerder mee akkoord bent dat wij uw persoonsgegevens gebruiken voor direct marketing, kunt u altijd van gedachten veranderen door ons een brief of e-mail te sturen naar onderstaand adres.

    Natuurlijk helpen wij u graag verder als u klachten heeft over de verwerking van uw persoonsgegevens. Mochten wij de toch niet samen met ons uitkomen, dan heeft u op grond van de privacywetgeving ook het recht om een klacht in te dienen bij de privacytoezichthouder, de Autoriteit Persoonsgegevens (https://autoriteitpersoonsgegevens.nl/nl/contact-met-de-autoriteit-persoonsgegevens/tip-ons).

    Uw persoonsgegevens worden door ons niet verkocht, verstrekt of verhuurd aan derden tenzij wij uw toestemming daarvoor hebben of indien wij daartoe wettelijk verplicht zijn.

    Bewaartermijnen

    De wet kent verschillende soorten bewaartermijnen voor de verschillende soorten persoonsgegevens die wij verzamelen. Wij hanteren steeds die termijnen die de wet hiervoor stelt. Indien de bewaartermijn is verstreken worden de desbetreffende persoonsgegevens verwijderd en vernietigd.

    Links naar andere websites

    De Website kan links bevatten naar andere interessante websites. Zodra u de Website verlaat door op een van deze links te klikken, is het goed om te weten dat wij geen controle hebben over andere websites. We zijn daarom niet aansprakelijk voor de beveiliging en de privacy van informatie die u verstrekt als u die andere websites bezoekt en deze privacyverklaring is niet van toepassing op die websites. Let altijd goed op en lees de privacyverklaring die van toepassing is op de desbetreffende website.

    # COOKIES & WEBSTATISTIEKEN

    Hoe gebruiken wij cookies

    Op de Website maken wij gebruik van cookies. Een cookie is een klein bestandje, dat wordt opgeslagen op uw browser (van uw computer of een mobiel apparaat) als u een website bezoekt. De informatie die door middel van cookies door ons (of derden) wordt verzameld gebruiken wij voor de volgende toepassingen:

    1. Functionele cookies

    Ageras maakt gebruik van functionele cookies. Dit zijn cookies die ons helpen de prestaties en gebruikerservaringen te verbeteren of laten u weten wanneer u een bepaalde website bezoekt. Dankzij deze cookies kan een website op u als individu reageren. De website kan de manier waarop zij werkt aanpassen aan uw behoeften en voorkeuren door informatie over uw voorkeuren te verzamelen en te onthouden.

    Onze webservers verzamelen anonieme informatie, zoals de gebruikte browsersoftware, het besturingssysteem, toegangstijden en bezochte pagina’s. Deze informatie wordt gebruikt om toezicht te houden op gebruik en om de werking van de Website te beoordelen.

    In sommige delen van de Website kunnen anonieme gegevens zoals soort browser of IP-adres gebruikt worden om de inhoud van de webpagina te personaliseren. Deze informatie wordt gebruikt in een anonieme vorm, om te zorgen voor juiste en doeltreffende levering van informatie.

    In het algemeen helpen deze cookies ons om u een betere website te bieden, doordat ze het mogelijk maken te zien welke pagina’s u nuttig vindt en welke niet. Een cookie geeft ons op geen enkele manier toegang tot uw computer of informatie over u, anders dan de gegevens die u met ons wilt delen.

    U kunt ervoor kiezen om cookies te accepteren of niet. De meeste webbrowsers accepteren cookies automatisch, maar meestal kunt u uw browserinstellingen zo instellen dat cookies niet worden geaccepteerd, als u dat liever heeft. Dit kan wel betekenen dat u niet optimaal gebruik kunt maken van de Website. Als u niet zeker bent hoe u dit moet doen, gebruik dan uw favoriete zoekmachine om dit op te zoeken met het zoekwoord ‘cookies weigeren met de naam van uw browser.

    2. Analytische cookies

    Ageras gebruikt verder voor haar website cookies voor webstatistieken, zoals Google Analytics. Google Analytics gebruikt zgn. traffic log cookies om informatie te verzamelen over het gebruik van pagina’s op onze website. We gebruiken de informatie van cookies om rapporten te genereren over het gebruik van onze website, die gebruikt worden voor evaluatie en analyse. Het doel is om de Website te verbeteren door hem aan te passen aan de behoeften van gebruikers. Er worden geen gegevens bewaard die specifiek zijn voor een identificeerbare gebruiker.

    Als gebruiker kunt u voor opt-out kiezen van dit proces van verzamelen van traffic-gegevens. Bezoek daarvoor de volgende website, waar u een add-on voor uw browser kunt vinden waarmee u als gebruiker kunt kiezen voor opt-out – http://tools.google.com/dlpage/gaoptout.

    3. Overzicht cookies

    Hier vindt u een lijst van cookies die op de Website wordt gebruikt. Tevens zijn daar een aantal links opgenomen met meer informatie over de cookies.

    Verwijdering van cookies Op deze pagina vindt u meer informatie over het in- en uitschakelen en het verwijderen van cookies. Ook kunt u meer informatie vinden in de Help-functie van uw browser.

    [pagina](http://www.consumentenbond.nl/internet-privacy/extra/cookies-ver)

    Deze pagina is voor het laatst gewijzigd op 24-05-2018. We kunnen deze verklaring soms wijzigen door deze pagina te updaten. Controleer deze pagina af en toe om zeker te zijn dat u het eens bent met eventuele veranderingen.

    Cookie overzicht

    Google Analytics
    Website analytics software
    https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage
    • _ga • _gat • _gid

    Microsoft (bing)
    https://privacy.microsoft.com/en-gb/privacystatement
    • MUID • MUIDB • NAP • ANON • _uetsid • _guid

    LinkedIn
    https://www.linkedin.com/legal/cookie-table • BizoID • BizoUserMatchHistory • UserMatchHistory • bcookie • lang • lidc • sdsc • _lipt

    Ageras
    • XSRF-TOKEN • holidays-disclaimer-seen • laravel_session

    SUMO
    https://help.sumo.com/hc/en-us/articles/115004671147-How-Sumo-Cookies-Work
    • _smToken • _smVID • _smListBuilderShown • _zlcmid

    Wingify • _vwo_uuid_v2

    YouTube • GPS • IDE • PREF • VISITOR_INFO1_LIVE • YSC

    Facebook
    • fr act c_user datr pl presence sb wd xs

    Trustpilot (widget)

    Google / DoubleClick
    https://support.google.com/dfp_premium/answer/2839090?hl=en • APISID • SSID • SID • NID • SAPISID • HSID • IDE • OGPC • 1P_JAR • DV

    Visual Website Optimizer

    Cookies Stored by VWO


    • _vis_opt_exp_171_combi • _vis_opt_s • _vwo_uuid • _vwo_uuid_v2

  • Privacy Policy

    At Aggregage (“Aggregage” or “We” or “Us”), we are committed to protecting your privacy. We firmly believe that electronic security and privacy are necessary for the continued success of the Internet. In support of this, we only use the personally identifiable information (“personal information” or “personal data”) that you provide in accordance with the terms outlined below.

    This Privacy Policy covers any personal information we obtain when you visit us, use our services, or access the features on the websites that Aggregage owns or controls (today or in the future), including https://www.aggregage.com/ (the “Sites”). You can access the Sites in many ways, including from a computer or mobile phone, and this Privacy Policy will apply regardless of the means of access. This Privacy Policy also governs the use of personal information we obtain from you from any third party site or application where we post content or invite your feedback or participation, including, but not limited to, Twitter, Facebook, Instagram, YouTube, Pinterest, and Google+ (“Third Party Sites”). Aggregage cannot control the privacy policies or practices of Third Party Sites or of companies Aggregage does not own or control, and cannot control the actions of people Aggregage does not employ or manage. You should always check the privacy policies of Third Party Sites and your privacy settings.

    1. Notice to EU Residents

    This Policy is intended to provide adequate and consistent safeguards for the handling of personal information in accordance with Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (“the Directive”) and all the relevant transposing legislation of the Directive in the European Union/European Economic Area, the Swiss Federal Data Protection Act, as such laws may from time to time be amended and valid during the application of this Policy, the Privacy Shield, and any other privacy laws, regulations and principles concerning the collection, storage, use, transfer and other processing of personal data transferred from the European Economic Area or Switzerland to the United States including but not limited to the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“the General Data Protection Regulation”) as of its entry into force on 25 May 2018.

    1. Principles for Processing Personal Information

    We respect your privacy and are committed to protecting your personal information in compliance with the applicable legislation. This compliance is consistent with our desire to keep you informed and to recognize and respect your privacy rights. We agree to observe the following principles when processing personal information:

    • Data will be processed fairly and in accordance with applicable law.
    • Data will be collected for specified, legitimate purposes and not processed further in ways incompatible with those purposes.
    • Data will be relevant to and not excessive for the purposes for which they are collected and used. For example data may be rendered anonymous if deemed reasonable, feasible and appropriate, depending on the nature of the data and the risks associated with the intended uses.
    • Data subjects in the EU will be asked to provide their clear and unequivocal consent for the collection, processing and transfer of their personal data.
    • Data will be accurate and, where necessary kept up up-to-date. Reasonable steps will be taken to rectify or delete personal information that is inaccurate or incomplete.
    • Data will be kept only as it is necessary for the purposes for which it was collected and processed. Those purposes shall be described in this Policy.
    • Data will be deleted or amended following a relevant request by the concerned data subject, should such notice comply with the applicable legislation each time.
    • Data will be processed in accordance with the individual’s legal rights (as described in this Policy or as provided by law).
    • Appropriate technical, physical and organizational measures will be taken to prevent unauthorized access, unlawful processing and unauthorized or accidental loss, destruction or damage to data. In case of any such violation with respect to personal data, we will take appropriate steps to end the violation and determine liabilities in accordance with applicable law and will cooperate with the competent authorities.
    1. Information We Collect

    Personal Information

    Users may be asked for, as appropriate:

    • first name, last name;
    • password;
    • email address;
    • work address;
    • phone number;
    • job title
    • job level
    • job role
    • department
    • company name
    • company size
    • company industry,
    • professional interests,
    • and other related business/professional information.

    Users may, however, visit our Sites anonymously. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personally identification information, except that it may prevent them from engaging in certain Sites related activities.

    Non-personal Information

    We may collect non-personal identification information about Users whenever they interact with our Sites. Non-personal identification information may include the browser name, the type of computer and technical information about Users means of connection to our Sites, such as the operating system and the Internet service providers utilized and other similar information.

    Web Browser Cookies

    We collect information about how you use our Sites by setting and accessing cookies on your computer. A cookie is a small piece of information sent by our Sites that is saved on your hard drive by your computer’s browser. The cookie holds information our Sites may need to personalize or enhance your experience and to gather statistical data, such as which pages are visited, the internet provider’s domain name and the addresses of the sites visited immediately before coming to and immediately after leaving the Sites. The information in the cookie lets Aggregage trace “clickstream” activity (i.e., the paths taken by visitors to our Sites as they move from page to page) to enable us to better serve our customers by revealing which portions of our Sites are the most popular. We may link the anonymous visitor ID from your cookie to a user ID in our database to help us analyze web traffic and statistics. From time to time, other companies may help us with data research and analysis, but they will be prohibited from using that data for any other purpose. You may disable cookies on your browser. Please review your browser’s instructions for doing so. Note that certain features of the Sites may not be available if you delete or reject cookies.

    1. How We Collect Information

    We may collect personal information from Users in a variety of ways, including when Users: visit our site:

    • register on the site;
    • subscribe to the newsletter;
    • respond to a survey;
    • fill out a form; and
    • in connection with other activities, services, features or resources we make available on our Sites.
    1. How We Use Collected Information

    Aggregage collects and uses Users personal information for the following purposes:

    • To personalize user experience;
    • We may use information in the aggregate to understand how our Users as a group use the services and resources provided on our Sites;
    • To improve our Sites;
    • We continually strive to improve our website offerings based on the information and feedback we receive from you;
    • To improve customer service;
    • Your information helps us to more effectively respond to your customer service requests and support needs;
    • To share your information with third parties;
    • We may share or sell information with third parties for marketing or other purposes;
    • To administer a content, promotion, survey or other Sites feature;
    • To send Users information they agreed to receive about topics we think will be of interest to them;
    • To send periodic emails; and
    • If User decides to opt-in to our mailing list, they will receive emails that may include company news, updates, related product or service information, etc. If at any time the User would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email or User may contact us via our Sites.
    1. How We Protect Your Information

    We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information, username, password, transaction information and data stored on our Sites.

    Sensitive and private data exchange between the Sites and its Users happens over a SSL secured communication channel and is encrypted and protected with digital signatures.

    1. Sharing your personal information

    As noted above, we may share your personal data with our advertisers, vendors, and customers, including data profiling companies, business-to-business lead buyers, and data aggregation companies that track user behavior. We also may share your personal data with third party service providers to help us with our business activities such as email marketing, offering customer service, or operating a community forum.  We require assurances from these companies to ensure that they: (i) use your personal data only as permitted by applicable law; and (ii) treat your data consistent with our Privacy Policy.

    1. Third party websites

    Users may find advertising or other content on our Sites that link to the sites and services of our partners, suppliers, advertisers, sponsors, licensors and other third parties. We do not control the content or links that appear on these sites and are not responsible for the practices employed by websites linked to or from our Sites. In addition, these sites or services, including their content and links, may be constantly changing. These sites and services may have their own privacy policies and customer service policies. Browsing and interaction on any other website, including websites which have a link to our Sites, is subject to that website’s own terms and policies.

    1. Advertising

    Ads appearing on our site may be delivered to Users by advertising partners, who may set cookies. These cookies allow the ad server to recognize your computer each time they send you an online advertisement to compile non personal identification information about you or others who use your computer. This information allows ad networks to, among other things, deliver targeted advertisements that they believe will be of most interest to you. This privacy policy does not cover the use of cookies by any advertisers.

    1. Google Adsense

    Some of the ads may be served by Google. Google’s use of the DART cookie enables it to serve ads to Users based on their visit to our Sites and other sites on the Internet. DART uses “non personally identifiable information” and does NOT track personal information about you, such as your name, email address, physical address, etc. You may opt out of the use of the DART cookie by visiting the Google ad and content network privacy policy at http://www.google.com/privacy_ads.html 

    1. EU-US Privacy Shield

    If you are providing your information from the European Union, we comply with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data transferred from the EU to the United States. We have certified to the Department of Commerce that we adhere to the Privacy Shield Principles. If there is any conflict between the terms in this Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, the Privacy Shield Principles and to view our certification, please visit www.privacyshield.gov. Our participation in the Privacy Shield applies to all Personal Information that is received from the European Union and European Economic Area.

    We remain responsible and liable under the Privacy Shield Principles if third-party agents that we engage to process Personal Information on our behalf do so in a manner inconsistent with the Principles, unless we can prove that we are not responsible for the event giving rise to the damage.

    In compliance with the Privacy Shield Principles, Company commits to resolve complaints about our collection or use of your personal information.  EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact us at: privacy@aggregage.com.

    We have further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact the JAMS or visit https://www.jamsadr.com/file-an-eu-us-privacy-shield-or-safe-harbor-claim for more information or to file a complaint.  The services of the JAMS are provided at no cost to you.

    1. Your Rights

    You have the right to be provided with information as to the nature of the personal information stored or processed about you by Aggregage and may request deletion or amendments.

    You may email privacy@aggregage.com to review, update, and revise your personal information.

    If access is denied, you have the right to be informed about the reasons for denial. You may resort to the dispute resolution described in this policy as well as in any competent regulatory body or authority. Aggregage shall handle in a transparent and timely manner any type of internal dispute resolution procedure about personal information.

    If any information is inaccurate or incomplete, you may request that the data be amended. It is your responsibility to provide use with accurate personal information about yourself and to inform us of any changes. (e.g. new home address or change of name).

    If you demonstrate that the purpose for which the data is being processed in no longer legal or appropriate, the data will be deleted, unless the applicable law requires otherwise. You also have the right to request the deletion of your personal data for any reason by emailing privacy@aggregage.com.

    1. Additional Enforcement Rights and Mechanisms

    If at any time, you believe that your personal information has been processed in violation of this Policy, you may report the concern to the competent Aggregage official. In particular, if you have any inquires or complaints about the use or limitation of use of your personal information, you may contact our corporate headquarters:

    Aggregage, Inc., 525 South Douglas Street, Suite 260, El Segundo, CA 90245

    or email us at privacy@aggregage.com.

    1. California Privacy Rights

    If you are a California resident, you have the right to request information from us regarding the manner in which Aggregage shares certain categories of personal information with third parties for their direct marketing purposes, in addition to the rights set forth above. Under California law, you have the right to send us a request at the designated address listed below to receive the following information:

    1. The categories of information we disclosed to third parties for their direct marketing purposes during the preceding calendar year;
    2. the names and addresses of the third parties that received the information; and
    3. if the nature of the third party’s business cannot be determined from their name, examples of the products or services marketed.

    This information may be provided in a standardized format that is not specific to you. The designated email address for these requests is: privacy@aggregage.com.

    Also, please note that we have not yet developed a response to browser “Do Not Track” signals, and do not change any of our data collection practices when we receive such signals. We will continue to evaluate potential responses to “Do Not Track” signals in light of industry developments or legal changes.

    1. Obligations to Data Protection Authorities

    We will respond diligently and appropriately to requests from DPAs about this Policy or compliance with applicable data protection privacy laws and regulations. We will, upon request, provide DPAs with names and contact details of the individuals designated to handle this process. With regard to transfers of personal information, we will (i) cooperate with inquiries from the DPA responsible for the entity exporting the data and (ii) respect its decisions, consistent with applicable law and due process rights. With regard to transfers of data to third parties, we will comply with DPAs’ decisions relating to it and cooperate with all DPAs in accordance with applicable legislation.

    1. Your Consent and Updates to this Policy

    You acknowledge that this Privacy Policy is part of the Terms & Conditions for your use of the Sites, and you agree that using the Sites signifies your assent to Aggregage’s Privacy Policy. Aggregage reserves the right to change this Privacy Policy at any time. If we decide to change our Privacy Policy, we will post those changes on this page so that you are always aware of what information we collect, how we use it and under what circumstances we disclose it. As we may make changes from time to time without notifying you, we suggest that you periodically consult this Policy. Your continued use of the Sites after the effective date of any modification to the Policy will be deemed to be your agreement to the changed terms.

    If you have any questions about your privacy or security on our Sites, please contact us using the following information:

    Aggregage, Inc., 525 South Douglas Street, Suite 260, El Segundo, CA 90245

    privacy@aggregage.com

    This document was last updated on May 21, 2018

  • Privacy policy

    Aidsfonds (“wij”) hecht veel belang aan de bescherming van jouw persoonsgegevens. Wij verwerken je gegevens met de grootst mogelijke zorg en uitsluitend conform de privacywetgeving. In deze privacy policy kun je lezen hoe wij jouw persoonsgegevens verwerken. Wij hebben de verwerking van persoonsgegevens gemeld in het openbaar register van de Autoriteit Persoonsgegevens onder meldingsnummer 1457464.

    Ook houden wij ons aan alle gedragscodes van de branchevereniging Goede Doelen Nederland, het reglement van het Centraal Bureau Fondsenwerving (CBF) en de (privacy)codes van de branchevereniging voor Dialoog Marketing (DDMA). Sinds 2012 is aan ons het Privacy Waarborg toegekend (zie voor meer informatie www.privacywaarborg.nl).

    Persoonsgegevens

    Wij kunnen de volgende persoonsgegevens verwerken:

    • Jouw naam, adres en woonplaats;
    • Jouw telefoonnummer en e-mail adres;
    • Jouw geboortedatum;
    • Jouw deelname aan onze activiteiten, informatieverzoeken en klachten aan ons;
    • Jouw voorkeur en afkeur als donateur met betrekking tot onze communicatiekanalen en frequentie;
    • Jouw financiële gegevens, rekeningnummer, betaalwijze en verrichte betalingen.

    Doeleinden

    De bovenstaande persoonsgegevens kunnen wij gebruiken voor de volgende doeleinden:

    • Het verwerken van jouw donatie;
    • Het bedanken voor jouw donatie en je informeren over ons werk en soms ook vragen we je om ons (opnieuw) te steunen;
    • Het vastleggen en analyseren van jouw giften en voorkeuren ten behoeve van onze management-informatie, onze product- en dienstontwikkeling en het bepalen van onze algemene strategie;
    • De uitvoering of toepassing van wetten en zelfregulering;
    • Het behandelen van geschillen en het (doen) uitoefenen van controle.

    Wil je weten waarom jij een bepaalde advertentie van Aidsfonds getoond krijgt op Facebook? Klik dan door op de advertentie. Facebook maakt inzichtelijk waarom jij de advertentie te zien krijgt. Ook kan je via de instellingen van Facebook je advertentievoorkeuren uitgebreid beheren.

    Grondslag

    Wij verwerken jouw persoonsgegevens altijd op grond van een wettelijke grondslag. De wettelijke grondslagen die wij gebruiken zijn:

    • De verwerking is noodzakelijk voor de behartiging van onze gerechtvaardigde belangen. Onze gerechtvaardigde belangen omvatten het kunnen uitvoeren van de bovenstaande doeleinden;
    • De verwerking is noodzakelijk voor het uitvoeren van een overeenkomst waarbij jij partij bent.

    Ontvangers

    Wij kunnen jouw persoonsgegevens delen met de volgende partijen:

    • Intern: medewerkers voor zover ze je gegevens nodig hebben bij de uitoefening van hun functie;
    • Derden: bewerkers, zoals direct marketing bureaus en bureaus voor data-analyse.
    • Aidsfonds kan in sommige gevallen gebruik maken van diensten van derden om gegevens te verrijken als deze incompleet zijn of te valideren.

     

    Wij geven jouw persoonsgegevens  niet door voor commerciële doeleinden en wij geven jouw persoonsgegevens niet door naar landen buiten de Europese Economische Ruimte. Derde partijen die namens ons jouw persoonsgegevens verwerken doen dat volgens onze opdracht. Zij zijn verplicht je persoonsgegevens geheim te houden en na gebruik te vernietigen.

    E-mail

    Wanneer je als abonnee van één van onze nieuwsbrieven, donateur of informatieaanvrager jouw e-mailadres aan Aidsfonds hebt verstrekt, word je per e-mail geïnformeerd over ons werk, om je steun te vragen voor acties, om je op de hoogte te brengen van behaalde resultaten en voor incidentele verzoeken om een bijdrage. Aidsfonds maakt bij het verzenden van e-mailings gebruik van een systeem waarbij inzicht wordt verkregen over de wijze waarop deze e-mails worden geopend. Ook kan bekeken worden of je de links in onze e-mail aanklikt. Op deze wijze kan Aidsfonds haar informatie aan jou verder optimaliseren en beter afstemmen op jouw interesses. Wil je minder of geen e-mail ontvangen, dan kun je je op elk moment afmelden via de afmeldmogelijkheid onderaan elk bericht dat je ontvangt, of door contact op te nemen met ons via onderstaande contactgegevens.

    Beveiliging

    Wij treffen passende technische en organisatorische maatregelen om jouw persoonsgegevens te beveiligen. Met dienstverleners die persoonsgegevens namens ons verwerken sluiten we overeenkomsten waarin wij hen verplichten om deze maatregelen ook te treffen.

    Bewaartermijn

    Wij bewaren jouw persoonsgegevens niet langer dan noodzakelijk is voor het doeleinde van de verwerking.

    Recht op inzage, correctie en verzet                                            

    Je kunt altijd inzage vragen in jouw gegevens of deze laten corrigeren. Heb je bezwaar tegen verwerking van je persoonsgegevens of wil je niet langer informatie van Aidsfonds ontvangen, neem dan contact met ons op via onderstaande contactgegevens

    Indien je niet tevreden bent over de manier waarop wij jouw persoonsgegevens verwerken dan kun je een klacht indienen bij onze klachtencoördinator (zie onderaan) en/of bij de Autoriteit Persoonsgegevens.

    Cookies

    Onze websites gebruiken cookies om informatie te verzamelen over jouw websitebezoek. Een cookie is een klein tekstbestand dat op je computer wordt opgeslagen wanneer je deze website bezoekt.

    Je kunt meer lezen over de cookies die wij gebruiken en hoe je zelf cookies kunt uitschakelen in onze cookie policy.

    Wijzigingen

    Wij kunnen deze privacy policy aanpassen en raden je aan om deze pagina zo nu en dan te raadplegen om op de hoogte te blijven van de manier waarop wij jouw persoonsgegevens verwerken. Deze privacy policy is voor het laatst bijgewerkt op: 12 maart 2018.

    Vragen, feedback en klachten

    Jouw vragen en opmerkingen met betrekking tot onze privacy policy zijn welkom. Hiervoor kun je bellen naar 020 – 344 63 81. We zijn bereikbaar op werkdagen van 7:00 tot 21:00 uur en op zaterdag van 9:00 tot 17:00 uur. Of je kunt een e-mail sturen naar donateurs@aidsfonds.nl. Ook voor vragen over je donateurschap kun je ons hier altijd bereiken.

    Wij beschikken ook over een klachtenprocedure. Een klacht kun je indienen bij onze klachtencoördinator:

    drs. Martin van Oostrom
    klachten@aidsfonds.nl
    020 – 8511758

    Aidsfonds is een Nederlandse stichting gevestigd op de Keizersgracht 392, 1016GB, in Amsterdam en geregistreerd bij de Kamer van Koophandel onder nummer 41207989.

  • Privacy policy

    Effective date: May 25th, 2018

    This Privacy Statement (the “Privacy Statement”) is provided by:

    Video Communication Services AS (“appear.in”/”we”)

    Gate 1 no. 101, 6700 Måløy, Norway

    Business organization number NO 918470573

    Introduction

    This policy describes what information we collect when you use appear.in’s sites, services, mobile applications, products, and content (“Services”). It also provides information about how we store, transfer, use, and delete that information, and what choices you have with respect to the information.

    This policy applies to appear.in’s online video meeting tool, including the website and mobile applications, and other appear.in websites (collectively “the Websites”), as well as other interaction (e.g. customer support conversations, user surveys and interviews etc.) you may have with appear.in.

    This policy applies where we are acting as a Data Controller with respect to the personal data of users of our Services; in other words, where we determine the purposes and means of the processing of that personal data. For content and data that you upload to or make available through the Service (“User Content”), you are responsible for ensuring this content is in accordance with our Terms of Service, and that the content is not violating other users’ privacy.

    How we collect, process and store information

    We in appear.in are committed to safeguarding the privacy of our users. Our business model is to provide a paid service to users who need additional features on top of the FREE version, and does not rely on widespread collection of general user data. We will only collect information that we need to deliver the service to you, and continue to maintain and develop the service.

    appear.in may collect, store and process various kinds of data, with different legal grounds, as listed below. For the categories of data that require your consent, we will actively ask you for consent before collecting any data. You can give and revoke your consents at any time in your Settings page in https://appear.in.

    The following is a list of data we collect, process or store, with the purpose and legal ground listed for each item or group of items having the same purpose and legal ground:

    • User account information. Users that choose to register in appear.in, will have to provide a valid email address or phone number. The user can also choose to enter a display name and/or add a profile picture that will be used to represent them in conversations.
    • Room information. To create a room in appear.in, you as a user will have to select a room name. This name will be publicly visible, and will be used by other users accessing meetings in that room. You as a user is responsible for the content you enter into a room name, and the content has to be compliant with our guidelines for Prohibited Content in Terms of Services.

    The information may be used for the purposes of operating our website, providing our services, ensuring the security of our website and services, maintaining back-ups of our databases and communicating with you. This is required to deliver the Service to you as user, by taking steps, at your request, to enter into such a contract (Terms of Service) cf. GDPR art. 6 (1) b.

    • Transaction information. Customers that choose to purchase a paid version of the Services provide appear.in (and our payment processors) with billing details such as credit card information, billing email, banking information, location at the time of transaction and/or a billing address.

    The transaction data may be processed for the purpose of supplying the purchased services and keeping proper records of those transactions. This data may be used for the purpose of delivering the Services to you. Collecting this information is required for performing the contract we entered into with you, at your request (our Terms of Service) cf. GDPR art. 6 (1) b.Additionally, this information needs to be retained in order to comply with accounting and tax regulation cf. GDPR art. 6 (1) c.

    • Usage information. When you as a user interact with the Services, we collect metadata to provide additional context about the way the Service is being used. The usage data may include your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths, as well as information about the timing, frequency and pattern of your service use. The source of the usage data is our server software and our analytics tracking system.
      • Product Analytics data. appear.in logs clicks when you as a user interact with our websites or apps, when you visit a page, room or have a conversation. We will never collect or record the content in conversations.
      • Technical log data. Like most digital services, our servers automatically collect information when you access or use our Websites or Services and record it in log files. This log data may include the Internet Protocol (IP) address, the address of the web page visited within the Services, browser type and settings, the date and time the Services were used, information about browser configuration and plugins, language preferences and cookie data.
      • Device information. appear.in may collect information about devices used to access the Services, including type of device, what operating system is used, device settings, application IDs, unique device identifiers and crash data. Whether we collect some or all of this information depends on the type of device used and its settings.
      • Location information. We receive information from you and other third-parties that helps us approximate your location. We may, for example, use a business address submitted by your employer, or an IP address received from your browser or device to determine approximate location. appear.in may also collect location information from devices in accordance with the consent process provided by your device.

    The legal basis for this processing is our legitimate interests cf. GDPR art. 6 (1) f, namely using this data for the purpose of ensuring the proper administration of our website and business, analyzing the use of the website and services, monitoring and improving our website and services, improving the user experience, preventing abuse, and assisting users with support inquiries. For information about cookies and how to opt out of cookies, see our Cookie Policy.

    • Customer Support Information. We may process information that you send to us, should you chose to submit a ticket to our support email. If you contact us, we may use your Account, Room, Transaction or Usage Information to respond.

    Collecting this information it is required for performing the contract we entered into with you, at your request (our Terms of Service), as well as our legitimate interest of handling your requests cf. GDPR art. 6 (1) f.

    • Product & Marketing communication. We may process information that you provide to us for the purpose of subscribing to our email newsletters. You can opt in to emails such as digests, newsletters, and activity notifications through your account’s “Settings > Consents” page.

    The notification data may be processed for the purposes of sending you relevant product information or newsletters. The legal basis for this processing is your consent cf. GDPR art. 6 (1) a.

    • Service and transactional notifications. Sometimes we’ll send you emails about your account, service changes or new policies. You can’t opt out of this type of “service or transactional” emails (unless you delete your account).

    The legal grounds for collecting this information is that it is required for performing our commitment about communicating changes in plans and pricing to you in the contract we entered into with you, at your request (our Terms of Service) cf. GDPR art. 6 (1) b, and our legitimate interest of communicating important information about your account to you, cf. GDPR art. 6 (1) f.

    • Correspondence information. We may process information that you choose to share with us if you participate in a focus group, contest, activity or event, apply for a job, interact with our social media accounts or otherwise communicate with appear.in

    The correspondence data may be processed for the purposes of communicating with you and record-keeping. The legal basis for this processing is our legitimate interests cf. GDPR art. 6 (1) f, namely the proper administration of our website and business and communications with users.

    How we process media (audio/video)

    We will never store any media sent between participants in a room. Customers who have access to the “Recording” feature will be able to record meetings, and they are then responsible for collecting consents from all participants in the meeting prior to starting the recording. They are also responsible for storing and processing the recording in compliance with regulations after downloading it from appear.in.

    Security

    In the FREE version of the Service, users can use “Small meeting” mode (up to 4 participants). In “Small meeting” mode, communication between participants are primarily sent through peer-to-peer connections, where audio and video streams are sent directly between participants and do not pass through any of our servers. Video and audio transmitted in the Service is then sent directly between the participants in a room and is encrypted (DTLS-SRTP) with client-generated encryption keys. In cases where a user is behind a strict firewall or NAT, video and audio need to be relayed via a TURN server, but end-to-end encryption is still maintained.

    If you have upgraded a room to PRO, you can choose to use “Large meeting” mode (up to 12 participants). Calls using “Large meeting” mode will use a dedicated server infrastructure to allow more people in conversation, and better stability. Your stream will be sent through video router servers which transmits it to the other participants in the call, and also transmits their streams to you. Streams will always be encrypted (DTLS-SRTP) in transit, but will be decrypted and re-encrypted when passing through the video routers. We operate an infrastructure of video routers distributed across the world, and you will be automatically routed to the closest one. The video router servers and all of our infrastructure adhere to strict security measures, preventing any eavesdropping or interruption of the video/audio streams.

    Providing your personal data to others

    We may share information about with third parties in some circumstances, including: (1) with your consent; (2) to a service provider or partner who meets our data protection standards; (3) with academic or non-profit researchers, with aggregation, anonymization, or pseudonomization; (4) when we have a good faith belief it is required by law, such as pursuant to a subpoena or other legal process; (5) to protect the vital interest of others, when we have reason to believe that doing so will prevent harm to someone or illegal activities.

    Our categories of service providers and partners are:

    • Hosting/infrastructure/storage providers
    • Payment processors
    • Analysis tools providers
    • Customer Support tools providers
    • Marketing and email providers
    • Recruiting tools providers
    • Internal communication tools providers

    Business Transfers

    We may disclose your personal data to any member of our group of companies (this means our subsidiaries, our ultimate holding company and all its subsidiaries) insofar as reasonably necessary for the purposes, and on the legal bases, set out in this policy.

    In the case where we are involved in a merger, acquisition, bankruptcy, reorganization or sale of assets such that your information would be transferred or become subject to a different privacy policy, we will notify you.

    International transfers of your personal data

    In some circumstances your personal data may be transferred to countries outside the European Economic Area (EEA). You acknowledge that personal data that you submit for publication through our website or services may be available, via the internet, around the world. We cannot prevent the use (or misuse) of such personal data by others. For information about what types of content you as a user is responsible, see this FAQ article.

    We and our other group companies have offices and facilities in Norway, Sweden, United States. The hosting facilities for Account information stored by appear.in are situated in Ireland. The hosting facilities for Usage information are situated in Ireland and the United States. Transfers to the United States will be protected by appropriate safeguards, namely the use of standard data protection clauses adopted or approved by the European Commission, a copy of which can be obtained from https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en.

    Retaining and deleting personal data

    Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.

    We will retain your personal data as follows:

    • Transaction information will be retained for a minimum period of 5 years following date of the transaction, and for a maximum period of 10 years following the date of the transaction.

    In some cases it is not possible for us to specify in advance the periods for which your personal data will be retained. In such cases, we will determine the period of retention based on the following criteria:

    1. Account information, Room information will be retained until you decide to delete your account or delete a room in appear.in
    2. Information about you used for Product & Marketing communication will be retained as long as you have given us consent to use this information
    3. The period of retention of usage information will be determined based on the need for historical data to determine statistical validity and relevance for product decisions and technical monitoring.

    Regardless of the provisions above, we may retain your personal data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.

    Changes to this policy

    We can change these Terms at any time. We keep a historical record of all changes to our Terms on GitHub. If a change is material, we’ll let you know before it takes effect. By using appear.in on or after that effective date, you agree to the new Terms. If you don’t agree to them, you should delete your account before they take effect, otherwise your use of the Service and Content will be subject to the new Terms.

    Managing and deleting your personal information

    If you have an appear.in account, you can access, modify or export your personal information, or delete your account in Settings. If you delete your account, your information and content will be unrecoverable after that time. You may instruct us at any time not to process your personal information for marketing purposes, by adjusting your Privacy settings). We may withhold personal information that you request to the extent permitted by law.

    Your rights

    As an individual you are granted rights according to the applicable data protection law:

    • The right to access to your personal data
    • The right to rectification of your personal data
    • The right to object to and restriction of our processing of your personal data
    • The also right to be forgotten; erasure of your data.
    • The right to data portability.

    If you have provided your consent to your processing of personal data, you may also withdraw your consent at any time, on our Settings > Consent page.

    The rights are not absolute, and you may read more about your rights in the EU general data protection regulation Chapter III, or at https://ec.europa.eu/info/law/law-topic/data-protection/reform/rights-citizens_en

    To exercise your rights or if you otherwise have any questions regarding our processing of your personal data, we encourage you to contact us as described below. However, we also notify you that you may raise complaint to a data protection authority, e.g the supervisory authority where you live or the Norwegian Data Protection Authority. You may find further information on their website: https://www.datatilsynet.no/

    Data protection officer

    Our data protection officer’s contact details are: Arne Gleditsch, privacy@appear.in

    To learn more, visit the Privacy section in our FAQ.

    For any questions about this privacy policy, please contact legal@appear.in.

  • Artbees Privacy Policy

    Hi there! we’re Artbees Yazilim of Fulya Mahallesi, Mevlüt Pehlivan Sok. Erdoğanlar İş Merkezi No: 14 Kat5, 34394, Şişli, İstanbul, Republic of Turkeyand welcome to our privacy policy. This policy sets out how we handle your personal information if you’re an Artbees Themes user or visitor to our Sites. This Privacy Policy applies to websites, apps, events and other services operated by Artbees. It applies across artbees-themes.com, our demos websites, Artbees Support and Artbees Care. The third parties we work with (mentioned later in this document) may have their own unique privacy policy. If a particular service has its own privacy policy, then that policy — not this Privacy Policy — applies.

    By signing up and using this website, you consent to the use of your personal information by Artbees as set out below. The privacy and security of our customers are very important to us. We ask that you read this Artbees Themes privacy policy carefully as it contains important information about what to expect when we collect personal information about you, how we will use your personal data, how you can instruct us if you prefer to limit the use of that information, and the procedures that we have in place to safeguard your privacy. The ‘Data Controller’ for this website is Artbees Yazilim.

    How we will use the information about you

    We gather this information to allow us to verify your purchase, provide you with new templates and customer support. The relevant information is then used by us, to communicate with you on any matter relating to the provision of our service in general. We may also use aggregate information and statistics for the purposes of monitoring website usage in order to help us to develop our website and our services. We may contact you by email to ask you for your feedback and comments on our goods and/or our service to you.

    What personal data we collect and how we use it

    • Name
      In order to use customer support, a user must have an account with a registered name and email in Artbees Themes portal.
    • Email
      We may contact you by email to ask you for your feedback and comments on our goods and/or our service to you.
    • IP
      We collect the IP addresses of visitors and users this website. We will use this information to improve our themes by adding language-specific features to them, providing location-specific social media posts, tutorials, promotions, as well as improving security.
    • Username and Password for accessing your site when you use our Support Desk
      Artbees support agents may ask for login credentials in order to solve a technical problem. You may decline to provide this information. This information is used only for technical support purposes and not stored anywhere.
    • Your ThemeForest ID and Purchase Code
      In order to verify your purchase and prevent illegal usages of our WordPress themes, we ask our users to provide their Themeforest purchase keys when they sign up to Artbees Themes portal. Providing the purchase key is mandatory to get customer support.
    • Registered domain
      In order to fight piracy, we also collect the domain name on which our WordPress theme is installed.
    • Your activity on Artbees Themes portal via Google Analytics
      This helps us analyse data about webpage traffic, and improve our website by tailoring it to customer needs. We only use this information for statistical analysis purposes. For this purpose, we use Google Analytics. Google Analytics generates statistical and other information about website use, by means of cookies, which are stored on users’ computers. The information generated, relating to our website, is used to create reports about the use of the website. Google will store and use this information. View Google’s privacy policy. If you would like to opt out of being tracked by Google Analytics across all websites please visit Google’s opt out page.
    • Your template download activity
      We track your template download activity. This helps us understand which templates are more popular and plan accordingly.
    • Newsletter and email activity
      Through Mailchimp and Mandrill, we monitor your email activity; which of our newsletters/emails campaign, you open and which of them you click. This reflects our users’ account about our newsletter and helps us to include more useful and relevant content in our emails.
    • Artbees Survey activity
      Through SurveyGizmo, We survey our customers or visitors from time to time and we keep participants responses. We hold surveys to understand how satisfied our customers/visitors are about our products and services.
    • Google Adwords
      We use Google Adwords Conversion tracker, which uses cookies to help us determine how many people who clicked on our Google Ads, end up contacting us through the website. This tracking cookie is set on your browser, only when you click on a Google Ad. These cookies help us increase the website’s effectiveness for our visitors. These cookies expire within 30 days, and do not contain information that can identify you personally. Please refer to the Google Advertising Privacy Notice for more information about Google Conversion Tracking and the ability to opt out.
    • Google Adwords Remarketing
      We use Google AdWords Remarketing, which uses cookies to help us deliver targeted online adverts, based on past visits to our website. Google uses this information to carefully display CloudApps adverts on various third party websites across the internet. These cookies are set to expire, and do not contain information that can identify you personally. Please refer to the Google Advertising Privacy Notice for more information about the ability to opt out.
    • Facebook Pixel
      We may also use a cookie to learn whether visits to our website, were as a result of someone seeing our advert on Facebook. This information is anonymous and does not specify individuals.

    The third-party services we use that are collecting personal information

    The following is the third party services we use that collect personal information. Next to each item the type of information collected, the means of data collecting is listed. The data they collect is subject to each service’s privacy policy which is provided for each item.

    Support

    • Intercom (personal data, email, usage data, other various data types according to their privacy policy, cookies)
    • Freshdesk (personal data, email, usage data, other various data types according to their privacy policy, cookies)

    Marketing

    • Google Analytics (personal data, usage data, cookies)
    • Google Adwords (personal data, usage data, cookies)
    • Facebook Pixel (personal data, usage data, cookies)

    Communication

    • Mailchimp (personal data, email address)
    • Mandrill (personal data, email address, usage data)
    • Disqus (personal data, email)
    • SurveyGizmo (personal data, various other data types according to their privacy policy)

    Registration & Authentication

    • Facebook OAuth (personal data, data, other various data types according to their privacy policy)
    • Twitter OAuth (personal data, data, other various data types according to their privacy policy)

    Payments

    • Stripe (personal data, data, other various data types according to their privacy policy)

    How we protect your information

    Protecting our customers data and information is an integral part of Artbees Themes privacy policy. We have put in place the following security procedures and technical and organisational measures to safeguard your personal information: We use firewalls and browser certification technology. We will use all reasonable efforts to safeguard your personal information. However, you should be aware that the use of the Internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal information which is transferred from you or to you via the Internet.

    Where we store your personal information

    We store personal information on secure servers that are managed by us and our service providers in USA and Netherlands. Personal information that we store or transmit is protected by security and access controls, including username and password authentication.

    How long we keep your personal information

    We retain your personal information for as long as is necessary to provide the services to you and others, and to comply with our legal obligations.

    How you can access your personal information

    You can access some of the personal information that we collect about you by logging in to your account. You also have the right to make a request to access other personal information we hold about you and to request corrections of any errors in that data. You can also close the account you have with us for any of our Sites at any time. To make an access or correction request, contact.

    How to delete your personal information

    If you no longer want us to use your personal information or to provide you with the Artbees services, you can hard-delete your account from your dashboard > account setting.

    IMPORTANT: With hard-deleting your account, the entire information we have from you will be deleted including Themeforest verification data so you will lose access to Artbees support and templates repository. You will still be able to use artbees knowledge base.

    Marketing choices regarding your personal information

    Where we have your consent to do so (e.g. if you have subscribed to one of our e-mail lists: Newsletter, Product & Promotion News, Artbees Themes Blog and Beta Testers) we send you marketing communications by email. You can ‘opt-out’ of such communications if you would prefer not to receive them in the future by using the “unsubscribe” facility provided in the communication itself or via user dashboard > account setting.

    Cookies and web analytics

    We use cookies to recognize you and/or your device(s), authenticate you, remembering your preferences and settings, analyzing site traffic and trends, delivering and measuring the effectiveness of advertising campaigns. You also have choices about cookies. By modifying your browser preferences, you have the choice to accept all cookies, to be notified when a cookie is set, or to reject all cookies. If you choose to reject cookies some parts of our Sites may not work properly in your case.

    How we share your information

    • For corporate transactions
      We may transfer your information if we are involved, whether in whole or in part, in a merger, sale, acquisition, divestiture, restructuring, reorganization, dissolution, bankruptcy or other change of ownership or control.
    • When required by law
      We may disclose your information if reasonably necessary: (i) to comply with a legal process, such as a court order, subpoena or search warrant, government / law enforcement investigation or other legal requirements; (ii) to assist in the prevention or detection of crime (subject in each case to applicable law); or (iii) to protect the safety of any person.
    • With our service providers and partners
      We use third parties to help us operate and improve our services. These third parties assist us with various tasks, including data hosting and maintenance, analytics, customer care, marketing, advertising, payment processing and security operations.

    How to contact us

    You can contact us via info@artbees.net.
    Our postal address is:
    Fulya Mahallesi, Mevlüt Pehlivan Sok. Erdoğanlar İş Merkezi No: 14 Kat5, 34394, Şişli, İstanbul, Republic of Turkey

     

  • Articulate Privacy Policy

    This Privacy Policy was last updated effective May 25, 2018.

    We are Articulate Global, Inc. (“Articulate”) of 244 5th Avenue, Suite 2960, New York, NY 10001, USA. All references to “we”, “us”, or “our” shall be construed to mean Articulate.

    When We Act as Controller and Processor

    Articulate will be acting as the “Controller” of the personal data you provide directly to us via a “Contact Us” form, when creating an account, or via other contact methods. You are not required to provide your personal information for purposes of navigating through the public areas of our website.

    If you are an employee or an authorized user of one of our customers which have entered into an agreement with us for the provision of our products or services, we will be acting as the “Processor” of your personal data transmitted by our customer. Our customer will be acting as Controller of your information. As processor, we do not own, control, or direct the use of any data provided to us by our customers which act as Controllers.

    Personally Identifiable Information

    “Personally Identifiable Information” (or “PII”) refers to contact information that directly or indirectly tells specifically who you are, such as your name, phone number, company name, job, email, postal address, or any other information that could be linked to you with reasonable effort. We do not collect sensitive information such as location information (GPS), racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person’s sex life or sexual orientation.

    Passively or Automatically Collected Data

    Passively or automatically collected data (referred to as “Usage Data”) is collected as you use this website. We, our affiliated entities, and our marketing partners may use automated means to collect various types of information about you, your computer or other device used to access this site, its services, related Web applications, and downloadable software. This information is based on your usage of this site and may be based on your visitation to other websites. Usage Data is essentially anonymous when collected, but could be used indirectly to identify a person.

    Why We Need Your Data

    We need to know the PII you provide to us directly in our capacity as controller for purposes of responding to your inquiry on our Contact Us web page and other contact methods. In addition, we need to know your PII to send you emails for other specific purposes and for sharing your PII for purposes as described in the Information Sharing and Disclosure section below. We also need to know the PII of authorized users of our customers when we act in our capacity as processor for purposes of managing the authorized use of our services.

    How We Collect and Use Your Data

    Articulate collects PII directly from you when you make an inquiry for an email reply on our “Contact Us” web page and other contact methods, and when you request that we send you emails. Before collecting your PII, you will have the option to give or withhold your consent for our sending you emails including our use of your PII for marketing emails to promote our products or products similar to our products or services. You may withdraw your consent at any time by unsubscribing to our emails by using an opt-out link contained in every non-transactional email or by updating your marketing preferences on your account page.

    Articulate uses third-party applications to add firmographic information to the data we collect from you. This data enhancement allows us to provide more helpful, personalized communication.

    We collect Usage Data as described above and with “cookies”. For additional information and how to set your browser to refuse to accept “cookies”, see the “COOKIES” section below.

    We may make full, unrestricted use of Usage Data for any purpose in our sole discretion, including without limitation, to customize re-marketing ads, offers and content made available to you based on your visits to and/or usage of this site or its services, and to analyze the performance of those ads, offers and content, as well as your interaction with them.

    Subject to your right to opt-out, we may combine Usage Data with PII that we collect, and use the combined data to create profiles about you only for purposes of improving our products and services and your user experience with our products and services.

    How Long We Keep Your Data

    We will not retain your PII for longer than required. This means that we will keep your PII for any or a combination of time periods described as follows: (i) for as long as required by law, (ii) until we no longer have a valid reason for keeping it, (iii) until you request us to stop using it, or (iv) for so long as our customer for which you are an authorized user remains a customer. In addition, we retain your Personally Identifiable Information to preserve history in the E-Learning Heroes community and to provide the ongoing ability to participate. When we delete your PII from our databases, it will remain in our backup system until it cycles out.

    Information Sharing and Disclosure

    General Disclosure Policy. We may share and disclose your PII as described below. We may share and disclose Usage Data without restriction, including without limitation, as described below. Please contact us at privacy@articulate.com to opt out of all information sharing with a third party.

    Affiliated Entities. We may provide your PII and Usage Data to any affiliated entities we may have, including our subsidiaries. Affiliated entities are entities that we legally control (by voting rights) or that control us.

    Sub-Processors. We may provide access to your PII and Usage Data to our trusted sub-processors that assist us with the operation and maintenance of this site. For example, we may contract with third parties to process payments, host our servers, provide security, and provide production, fulfillment, optimization, analytics, reporting, and software maintenance and development services. In addition, our sub-processors will be given access to your information only as is reasonably necessary to provide the services for which they are contracted.

    Successors. If we sell or otherwise transfer part or all of our business or assets to another organization, such as in the course of an acquisition, merger, bankruptcy or liquidation, we may transfer your PII and Usage Data. In such an event, we will require the buyer or transferee to agree to our commitments provided in this Privacy Policy.

    Compelling Obligations. Except for sharing your information as described in this Information Sharing and Disclosure Section, Articulate will not disclose information about you or the contents of your communications unless compelled to do so in the good-faith belief that such action is reasonably necessary (a) to comply with the law; (b) to comply with legal process; (c) to enforce these terms and conditions; (d) to respond to claims that any content violates the rights of third parties; (e) to facilitate the terms of an acquisition of Articulate by, or merger with, another company, or (f) to protect Articulate’s interests regarding its property, including without limitation its intellectual property.

    Authorized Resellers. We may share your PII and Usage Data with our authorized resellers and partners so that they can provide customers with timely, helpful information about our products and services. Our resellers are contractually obligated to abide by the Articulate privacy policy, preventing them from sharing your information with any other third parties. Several of our resellers are located in the EU; however, we have determined that our authorized resellers all have suitable safeguards to protect your information. For more information regarding our authorized resellers and their safeguards, request descriptions via our CONTACT US section below.

    Marketing Partners for Purposes of Re-Marketing. We may share your information with 3rd party vendors for purposes of re-marketing. For a description of re-marketing and your opt-out rights, see the RE-MARKETING section below.

    Your California Privacy Rights. Under California Law SB 27, California residents have the right to receive, once a year, information about third parties with whom we have shared information about you or your family for their marketing purposes during the previous calendar year, and a description of the categories of personal information shared. To make such a request, please send an email to the email address provided in our contact information below and include the phrase “California Privacy Request” in the subject line, the domain name of the Web site you are inquiring about, along with your name, address and email address. We will respond to you within thirty days of receiving such a request.

    Cookies and Opt-Out Procedures

    Articulate may automatically collect Usage Data through the use of “cookies.” Cookies are small text files a website uses to recognize repeat users, facilitate the user’s ongoing access to the site, and facilitate the use of the site. “Cookies” also allow a site to track usage behavior and compile site-usage information that will allow for the improvement of content.

    Domain
    Cookie Name
    Purpose
    Persistence Duration
    .360.articulate.com _dc_gtm_UA-68728-1 Google Tag Manager – logs detailed application usage data in Google Analytics. 5 hours
    .360.articulate.com _ga Google Analytics – logs application usage data in Google Analytics. 2 years
    .account.articulate.com __stripe_mid Stripe – used to aid in fraud detection for purchases. 1 year
    .account.articulate.com __stripe_sid Stripe – used to aid in fraud detection for purchases. 30 minutes
    .account.articulate.com _dc_gtm_UA-68728-1 Google Tag Manager – logs detailed application usage data in Google Analytics. 5 hours
    .account.articulate.com _ga Google Analytics – logs application usage data in Google Analytics. 2 years
    .account.articulate.com _gid Google Analytics – used to distinguish users. 24 hours
    .articulate-online.com .ASPXAUTH Encrypted ID for authentication to the server after signing in. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com ASP.NET_SessionId Holds SessionID value and tracks current user’s session state. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com AWSALB Amazon Web Services Application Load Balancing – used to map the session to the instance. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com AWSELB Amazon Web Services Elastic Load Balancing – used to map the session to the instance. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com CookieCheck Session-level cookie to check for cookie support in browser. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com DefaultSort Admin portal setting for default sorting of documents in document list page. 3 years
    .articulate-online.com DefaultSortDesc Admin portal setting for sort preference name for documents in document list page. 4 years
    .articulate-online.com Enabled Persistent cookie to check for cookie support in browser. No expiration
    .articulate-online.com LocalTime Value of local time from client machine. 24 hours
    .articulate-online.com ReportEmailed Session-level cookie to check if a report was emailed. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com ResetEmail Session-level cookie set if customer resets password. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com UserKeyACCT_ID Anonymous user tracking of public documents. No expiration
    .articulate-online.com VPDefaultSort User portal setting for default sorting of documents in document list page. 1 year
    .articulate-online.com VPDefaultSortDesc User portal setting for sort preference name for documents in document list page. 2 years
    .articulate-online.com WarnExpired Session-level cookie set if account has expired. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com WarnOnHold Session-level cookie set if account is on hold. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com __RequestValidation:DOCUMENT_ID Session-level cookie set if document is cached. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate-online.com _ga Google Analytics – logs application usage data in Google Analytics. 2 years
    .articulate-online.com _gat_UA-68728-1 Google Analytics – used to throttle request rate. 1 minute
    .articulate-online.com _gid Google Analytics – used to distinguish users. 24 hours
    .articulate-online.com acceptedEUConsent Used to track if a user in the EU has consented to cookies. No expiration
    .articulate.com __ar_v4 Google DoubleClick – used to track conversion rates for ads. 5 years
    .articulate.com __stripe_mid Stripe – used to aid in fraud detection for purchases. 1 year
    .articulate.com __stripe_sid Stripe – used to aid in fraud detection for purchases. 30 minutes
    .articulate.com _articulate_session_id Enables single sign on across all Articulate applications. 6 months
    .articulate.com _articulate_user_email Used for commenting in Articulate Review Cookie is removed when user logs out, browser is closed, or idle session times out.
    .articulate.com _dc_gtm_UA-68728-1 Google Tag Manager – logs detailed application usage data in Google Analytics. 5 hours
    .articulate.com _ga Google Analytics – logs application usage data in Google Analytics. 2 years
    .articulate.com _gat_UA-68728-1 Google Analytics – used to throttle request rate. 1 minute
    .articulate.com _gid Google Analytics – used to distinguish users. 24 hours
    .articulate.com _mkto_trk Marketo – allows a website to link visitor behavior to the recipient of an email marketing campaign, to measure campaign effectiveness. 2 years
    .articulate.com _uetsid Bing Ads – universal event tracking ID used to advertise via Bing. 30 minutes
    .articulate.com _vis_opt_exp_EXPERIMENT_ID_combi VWO – used for A/B testing and generated when user reaches a particular combination to ensure user continues to see same variation on future visits. 100 days
    .articulate.com _vis_opt_exp_EXPERIMENT_ID_exclude VWO – used for A/B testing and generated when a user has been excluded from a campaign. 100 days
    .articulate.com _vis_opt_exp_EXPERIMENT_ID_goal_GOAL_ID VWO – used for A/B testing and generated when a goal is reached. 100 days
    .articulate.com _vis_opt_exp_EXPERIMENT_ID_split VWO – used for A/B testing and generated during a split URL test. 100 days
    .articulate.com _vis_opt_s VWO – used for A/B testing and detects if the user is new or returning to a particular campaign. 100 days
    .articulate.com _vis_opt_test_cookie VWO – used for A/B testing and generated to detect if the user has cookies enabled in the browser. Cookie is removed when browser is closed, or idle session times out
    .articulate.com _vwo_uuid VWO – used for A/B testing and generates a unique ID for every visitor to be used in the report segmentation feature. 100 days
    .articulate.com _vwo_uuid_v2 VWO – used for A/B testing to analyze unique website visits via dynamic sampling. 1 year
    .articulate.com cookiesEnabled Stores whether the browser has cookies enabled. Cookie is removed when user logs out, browser is closed, or idle session times out
    .articulate.com locale Identifies the region of the visitor. Cookie is removed when user logs out, browser is closed, or idle session times out.
    .blogs.articulate.com _dc_gtm_UA-68728-1 Google Tag Manager – logs detailed application usage data in Google Analytics. 5 hours
    .blogs.articulate.com _ga Google Analytics – logs application usage data in Google Analytics. 2 years
    .blogs.articulate.com _gid Google Analytics – used to distinguish users. 24 hours
    .community.articulate.com __ar_v4 Google DoubleClick – used to track conversion rates for ads. 5 years
    .community.articulate.com _dc_gtm_UA-68728-1 Google Tag Manager – logs detailed application usage data in Google Analytics. 5 hours
    .community.articulate.com _ga Google Analytics – logs application usage data in Google Analytics. 2 years
    .community.articulate.com _gat_UA-68728-1 Google Analytics – used to throttle request rate. 1 minute
    .community.articulate.com _gid Google Analytics – used to distinguish users. 24 hours
    360.articulate.com AWSELB Amazon Web Services Elastic Load Balancing – used to map the session to the instance. Cookie is removed when user logs out, browser is closed, or idle session times out.
    360.articulate.com __ar_v4 Google DoubleClick – used to track conversion rates for ads. 5 years
    360.articulate.com __distillery Wistia – used for stats tracking on Wistia video views across multiple sessions and/or page loads. 1 year
    360.articulate.com _gid Google Analytics – used to distinguish users. 24 hours
    360.articulate.com muxData Wistia – used for tracking player health across all Wistia video embeds. 20 years
    account.articulate.com AWSELB Amazon Web Services Elastic Load Balancing – used to map the session to the instance. Cookie is removed when user logs out, browser is closed, or idle session times out.
    account.articulate.com _account-management_session Used to store the current user’s membership (if applicable). Cookie is removed when user logs out, browser is closed, or idle session times out.
    account.articulate.com locale Identifies the region of the visitor. Cookie is removed when user logs out, browser is closed, or idle session times out.
    account.articulate.com selected_subscription_id Session cookie that holds the subscription ID for the user. Primarily used for pointing the links in navigation to the correct team management and billing pages. Cookie is removed when user logs out, browser is closed, or idle session times out.
    articulate.com AWSELB Amazon Web Services Elastic Load Balancing – used to map the session to the instance. Cookie is removed when user logs out, browser is closed, or idle session times out.
    articulate.com __atuvc AddThis – stores an updated page share count. 2 years
    articulate.com __distillery Wistia – used for stats tracking on Wistia video views across multiple sessions and/or page loads. 1 year
    articulate.com _www-360_session Articulate.com session cookie – used for persisting state during the visit. Cookie is removed when user logs out, browser is closed, or idle session times out.
    articulate.com country_code Stores the 3-character country code for the website visitor. Cookie is removed when user logs out, browser is closed, or idle session times out.
    articulate.com country_dropdown Stores which country value to present to the user in website forms Cookie is removed when user logs out, browser is closed, or idle session times out.
    articulate.com liveagent_chatted Salesforce – required for live sales and support chat functionality. Cookie is removed when user logs out, browser is closed, or idle session times out.
    articulate.com liveagent_oref Salesforce – required for live sales and support chat functionality. 10 years
    articulate.com liveagent_ptid Salesforce – required for live sales and support chat functionality. 10 years
    articulate.com liveagent_sid Salesforce – required for live sales and support chat functionality. Cookie is removed when user logs out, browser is closed, or idle session times out.
    articulate.com liveagent_vc Salesforce – required for live sales and support chat functionality. 10 years
    articulate.com muxData Wistia – used for tracking player health across all Wistia video embeds. 20 years
    articulate.com rtp_segment Enables real-time personalization of page content based on user profile. 1 week
    blogs.articulate.com __atuvc AddThis – stores an updated page share count. 2 years
    blogs.articulate.com __atuvs AddThis – enables visitors to share content with a range of networking and sharing platforms. 30 minutes
    blogs.articulate.com _ga Google Analytics – logs application usage data in Google Analytics. 2 years
    blogs.articulate.com _gid Google Analytics – used to distinguish users. 24 hours
    blogs.articulate.com loved-ARTICLE_ID Used to detect if user has clicked the “love” button on a specific blog post. 1 day
    blogs.articulate.com pixel_ratio Used to detect retina or high DPI screens to show user higher resolution graphics. No expiration
    community.articulate.com AWSELB Amazon Web Services Elastic Load Balancing – used to map the session to the instance. Cookie is removed when user logs out, browser is closed, or idle session times out.
    community.articulate.com _community_session E-Learning Heroes session cookie – used for persisting state during the visit. Cookie is removed when user logs out, browser is closed, or idle session times out.
    community.articulate.com timezone Lists the time zone. Example: “America/New_York”. 1 month
    community.articulate.com timezone_offset Returns the difference in client time zone and GMT in minutes. 5 hours
    rise.articulate.com AWSALB Amazon Web Services Application Load Balancing – used to map the session to the instance. Cookie is removed when user logs out, browser is closed, or idle session times out.
    rise.articulate.com __distillery Wistia – used for stats tracking on Wistia video views across multiple sessions and/or page loads. 1 year
    rise.articulate.com muxData Wistia – used for tracking player health across all Wistia video embeds. 20 years
    shush.articulate.com _rack_session Used for session management. 30 days

    You may refuse to accept cookies by activating the setting on your browser which allows you to refuse the setting of cookies. However, if you select this setting you may be unable to access certain parts of our site. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you log on to our site.

    Remarketing

    Articulate uses 3rd party vendor remarketing tracking cookies and pixels, including the Google Adwords tracking cookie and the Adroll tracking pixel. This means we will continue to show ads to you across the internet, specifically on the Google Content Network (GCN) and through Adroll’s network for remarketing. The third-party vendors, including Google, will place cookies on web browsers in order to serve ads based on past visits to our website. This allows us to make special offers and continue to market our products to those who have shown interest in them. We do not remarket to users in the European Union.

    You may opt-out of Google’s use of cookies by visiting the Ads Preferences Manager. You can opt-out of Adroll’s remarketing by visiting the Your Ad Choices website. Also, you can opt out of other third-party use of cookies by visiting the Network Advertising Initiative opt-out page.

    Analytics

    We may participate with third party analytics partners to monitor and analyze Web traffic and to keep track of user behavior on this site.

    Google Analytics (Google) – Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the data collected to track and examine the use of this site, to prepare reports on its activities, and to share them with other Google services.

    Information collected: cookie and Usage Data. Visit Privacy Policy at https://www.google.com/intl/en/policies. You may opt-out of the Google Analytics service with the Google’s Browser Add-on that’s available at https://tools.google.com/dlpage/gaoptout.

    Your Rights

    Use the CONTACT US section below for purposes of inquiring about your rights.

    You may contact us to find out if we are processing your PII. If we are, you can ask us what Personally Identifiable Information of yours we hold and what we do with your data. If you would like, we can also provide you (or, where technically feasible, your chosen third party) with a copy of any PII that we hold about you, subject to a fee specified by law (not to exceed the reproduction cost of such document).

    We may decline a request for access to or correction of PII in circumstances prescribed by the Privacy Act 1988 (Cth) (Australia), and if we do, we will provide you with a written notice that sets out the reasons for the refusal (unless it would be unreasonable to provide those reasons) and the mechanisms available to you to make a complaint.

    In addition, you may: (i) request access to and rectification or erasure of your PII, (ii) request restriction of processing your PII, and (iii) withdraw your consent at any time. If you provide a notice to us regarding your exercise any of the above rights, we will forward your notice to other authorized parties which are holding and processing your PII, where appropriate.

    Privacy Shield Notice for Users in the European Union

    Articulate Global, Inc. complies with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States. Articulate Global, Inc. has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. In cases of onward transfer to third parties of data of EU individuals received pursuant to the EU-US Privacy Shield, Articulate Global, Inc. is potentially liable. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit www.privacyshield.gov.

    In compliance with the EU-US Privacy Shield Principles, Articulate Global, Inc. commits to resolve complaints about our collection or use of your personal information. EU and Swiss Individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Articulate Global, Inc. at privacy@articulate.com.

    Articulate Global, Inc. has further committed to refer unresolved Privacy Shield complaints to the EU Data Protection Authorities. Contact details for the EU data protection authorities can be found at http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. Articulate Global, Inc. will cooperate with the appropriate EU Data Protection Authorities during investigation and resolution of complaints brought under Privacy Shield. These recourse mechanisms are available at no cost to you.

    The Federal Trade Commission has jurisdiction over Articulate Global, Inc.’s compliance with this Policy and the EU-US Privacy Shield Framework. As a last resort, privacy complaints that remain unresolved after pursuing these and other channels may be subject to binding arbitration before the Privacy Shield Panel to be created jointly by the US Department of Commerce and the European Commission.

    International Transfers

    If you are from outside the U.S., understand that you are sending PII and Usage Data to the United States where our servers are located. That information may be then transferred within the U.S. or back out of the U.S. to other countries outside of your country of residence. Except for the U.S. and our certification for the Privacy Shield, these countries many not necessarily have data protection laws as comprehensive or protective as those in your country of residence; however, our collection, storage, and use of your PII and Usage Data will at all times be governed by this Privacy Policy.

    Links to Other Websites

    This site may contain links to other websites operated by our joint venture marketing partners. If you do click on any of the links to their websites or accept any of their promotional offers, your click-through information and any information that you provide in the process of registration or purchase will be transferred to these sites. We have no responsibility or liability for the policies and practices of these sites. You should be careful to review any privacy policies posted on any of these sites before providing information to them.

    Children’s Online Policy

    We are committed to preserving online privacy for all of its website visitors, including children. This site is a general audience site. Consistent with the Children’s Online Privacy Protection Act (COPPA), we will not knowingly collect any information from, or sell to, children under the age of 13. If you are a parent or guardian who has discovered that your child under the age of 13 has submitted his or her personally identifiable information without your permission or consent, we will remove the information from our active list, at your request. To request the removal of your child’s information, please contact our site as provided below under “CONTACT US”, and be sure to include in your message the same login information that your child submitted.

    Do Not Track Requests

    Some Web browsers incorporate a “Do Not Track” feature that signals to websites that you visit that you do not want to have your online activity tracked. Each browser communicates “Do Not Track” signals to websites differently, making it unworkable to honor each and every request correctly. In order to alleviate any communication error between browsers and website, we do not respond to “Do Not Track” signals at this time. As the technology and communication between browser and website improves, we will reevaluate the ability to honor “Do Not Track” signals and may make changes to our policy.

    Inquiries and Complaints

    If you have any inquiries or complaints about our use of your PII, please let us know. You can contact us at any time via the CONTACT US section below, and we will take reasonable steps to investigate the complaint and respond to you.

    You can also contact your national data protection supervisory authority in order to lodge a complaint against us.

    Contact Us

    Contact us, as follows.

    Articulate Global, Inc.
    244 5th Avenue, Suite 2960
    New York, NY 10001
    800-861-4880
    privacy@articulate.com

    Material Modifications Since November 9, 2016: updates effective May 25, 2018 for purposes of compliance with the EU General Data Protection Regulation.

  • Privacy Policy

    Effective starting: May 25, 2018 (view archived versions)

    Key Changes

    What this policy covers

    Your privacy is important to us, and so is being transparent about how we collect, use, and share information about you. This policy is intended to help you understand:

    This Privacy Policy covers the information we collect about you when you use our products or services, or otherwise interact with us (for example, by attending our events), unless a different policy is displayed.  Atlassian, we and us refers to Atlassian Pty Ltd, Atlassian, Inc. and any of our corporate affiliates.  We offer a wide range of products, including our cloud, server and data center products.  We refer to all of these products, together with our other services and websites as “Services” in this policy.

    This policy also explains your choices about how we use information about you.  Your choices include how you can object to certain uses of information about you and how you can access and update certain information about you.  If you do not agree with this policy, do not access or use our Services or interact with any other aspect of our business.

    Where we provide the Services under contract with an organization (for example your employer) that organization controls the information processed by the Services. For more information, please see Notice to End Users below.

    What information we collect about you

    We collect information about you when you provide it to us, when you use our Services, and when other sources provide it to us, as further described below.

    Information you provide to us

    We collect information about you when you input it into the Services or otherwise provide it directly to us.

    Account and Profile Information: We collect information about you when you register for an account, create or modify your profile, set preferences, sign-up for or make purchases through the Services. For example, you provide your contact information and, in some cases, billing information when you register for the Services. You also have the option of adding a display name, profile photo, job title, and other details to your profile information to be displayed in our Services.  We keep track of your preferences when you select settings within the Services.

    Content you provide through our products: The Services include the Atlassian products you use, where we collect and store content that you post, send, receive and share. This content includes any information about you that you may choose to include. Examples of content we collect and store include: the summary and description added to a JIRA issue, the pages you create in Confluence, the messages you exchange in Stride, your repositories and pull requests in Bitbucket, comments you enter in connection with an incident in Statuspage, and any feedback you provide to us.  Content also includes the files and links you upload to the Services.  If you use a server or data center version of the Services, we do not host, store, transmit, receive or collect information about you (including your content), except in limited cases, where permitted by your administrator: we collect feedback you provide directly to us through the product and; we collect content using analytics techniques that hash, filter or otherwise scrub the information to exclude information that might identify you or your organization; and we collect clickstream data about how you interact with and use features in the Services. Server and data center administrators can disable our collection of this information from the Services via the administrator settings or prevent this information from being shared with us by blocking transmission at the local network level.

    Content you provide through our websites: The Services also include our websites owned or operated by us. We collect other content that you submit to these websites, which include social media or social networking websites operated by us. For example, you provide content to us when you provide feedback or when you participate in any interactive features, surveys, contests, promotions, sweepstakes, activities or events.

    Information you provide through our support channels: The Services also include our customer support, where you may choose to submit information regarding a problem you are experiencing with a Service.  Whether you designate yourself as a technical contact, open a support ticket, speak to one of our representatives directly or otherwise engage with our support team, you will be asked to provide contact information, a summary of the problem you are experiencing, and any other documentation, screenshots or information that would be helpful in resolving the issue.

    Payment Information:  We collect certain payment and billing information when you register for certain paid Services.  For example, we ask you to designate a billing representative, including name and contact information, upon registration.  You might also provide payment information, such as payment card details, which we collect via secure payment processing services.

    Information we collect automatically when you use the Services

    We collect information about you when you use our Services, including browsing our websites and taking certain actions within the Services.

    Your use of the Services: We keep track of certain information about you when you visit and interact with any of our Services. This information includes the features you use; the links you click on; the type, size and filenames of attachments you upload to the Services; frequently used search terms; and how you interact with others on the Services.  We also collect information about the teams and people you work with and how you work with them, like who you collaborate with and communicate with most frequently.  If you use a server or data center version of the Services, the information we collect about your use of the Services is limited to clickstream data about how you interact with and use features in the Services, in addition to content-related information described in “Content you provide thorugh our products,” above.  Server and data center administrators can disable our collection of this information from the Services via the administrator settings or prevent this information from being shared with us by blocking transmission at the local network level.

    Device and Connection Information: We collect information about your computer, phone, tablet, or other devices you use to access the Services. This device information includes your connection type and settings when you install, access, update, or use our Services. We also collect information through your device about your operating system, browser type, IP address, URLs of referring/exit pages, device identifiers, and crash data. We use your IP address and/or country preference in order to approximate your location to provide you with a better Service experience.  How much of this information we collect depends on the type and settings of the device you use to access the Services.  Server and data center Service administrators can disable collection of this information via the administrator settings or prevent this information from being shared with us by blocking transmission at the local network level.

    Cookies and Other Tracking Technologies: Atlassian and our third-party partners, such as our advertising and analytics partners, use cookies and other tracking technologies (e.g., web beacons, device identifiers and pixels) to provide functionality and to recognize you across different Services and devices. For more information, please see our Cookies and Tracking Notice, which includes information on how to control or opt out of these cookies and tracking technologies.

    Information we receive from other sources

    We receive information about you from other Service users, from third-party services, from our related companies, and from our business and channel partners.

    Other users of the Services: Other users of our Services may provide information about you when they submit content through the Services.  For example, you may be mentioned in a JIRA issue opened by someone else.  We also receive your email address from other Service users when they provide it in order to invite you to the Services.  Similarly, an administrator may provide your contact information when they designate you as the billing or technical contact on your company’s account.

    Other services you link to your account: We receive information about you when you or your administrator integrate or link a third-party service with our Services.  For example, if you create an account or log into the Services using your Google credentials, we receive your name and email address as permitted by your Google profile settings in order to authenticate you. You or your administrator may also integrate our Services with other services you use, such as to allow you to access, store, share and edit certain content from a third-party through our Services.  For example, you may authorize our Services to access, display and store files from a third-party document-sharing service within the Services interface.  Or you may authorize our Services to connect with a third-party calendaring service so that your meetings and connections are available to you through the Services. You may authorize our Services to sync a contact list or address book so that you can easily connect with those contacts within the Services or invite them to collaborate with you on our Services.  The information we receive when you link or integrate our Services with a third-party service depends on the settings, permissions and privacy policy controlled by that third-party service. You should always check the privacy settings and notices in these third-party services to understand what data may be disclosed to us or shared with our Services.

    Atlassian Companies:  We receive information about you from companies that are owned or operated by Atlassian, in accordance with their terms and policies.

    Atlassian Partners:  We work with a global network of partners who provide consulting, implementation, training and other services around our products.  Some of these partners also help us to market and promote our products, generate leads for us, and resell our products.  We receive information from these partners, such as billing information, billing and technical contact information, company name, what Atlassian products you have purchased or may be interested in, evaluation information you have provided, what events you have attended, and what country you are in.

    Other Partners: We receive information about you and your activities on and off the Services from third-party partners, such as advertising and market research partners who provide us with information about your interest in and engagement with, our Services and online advertisements.

    How we use information we collect

    How we use the information we collect depends in part on which Services you use, how you use them, and any preferences you have communicated to us.  Below are the specific purposes for which we use the information we collect about you.

    To provide the Services and personalize your experience: We use information about you to provide the Services to you, including to process transactions with you, authenticate you when you log in, provide customer support, and operate and maintain the Services.  For example, we use the name and picture you provide in your account to identify you to other Service users. Our Services also include tailored features that personalize your experience, enhance your productivity, and improve your ability to collaborate effectively with others by automatically analyzing the activities of your team to provide search results, activity feeds, notifications, connections and recommendations that are most relevant for you and your team.  For example, we may use your stated job title and activity to return search results we think are relevant to your job function.  We also use information about you to connect you with other team members seeking your subject matter expertise. We may use your email domain to infer your affiliation with a particular organization or industry to personalize the content and experience you receive on our websites. Where you use multiple Services, we combine information about you and your activities to provide an integrated experience, such as to allow you to find information from one Service while searching from another or to present relevant product information as you travel across our websites.

    For research and development:  We are always looking for ways to make our Services smarter, faster, secure, integrated, and useful to you.  We use collective learnings about how people use our Services and feedback provided directly to us to troubleshoot and to identify trends, usage, activity patterns and areas for integration and improvement of the Services.  For example, to improve the @mention feature, we automatically analyze recent interactions among users and how often they @mention one another to surface the most relevant connections for users. We automatically analyze and aggregate frequently used search terms to improve the accuracy and relevance of suggested topics that auto-populate when you use the search feature.  In some cases, we apply these learnings across our Services to improve and develop similar features or to better integrate the services you use. We also test and analyze certain new features with some users before rolling the feature out to all users.

    To communicate with you about the Services: We use your contact information to send transactional communications via email and within the Services, including confirming your purchases, reminding you of subscription expirations, responding to your comments, questions and requests, providing customer support, and sending you technical notices, updates, security alerts, and administrative messages.  We send you email notifications when you or others interact with you on the Services, for example, when you are @mentioned on a page or ticket or when a task if assigned to you. We also provide tailored communications based on your activity and interactions with us.  For example, certain actions you take in the Services may automatically trigger a feature or third-party app suggestion within the Services that would make that task easier.  We also send you communications as you onboard to a particular Service to help you become more proficient in using that Service.  These communications are part of the Services and in most cases you cannot opt out of them.  If an opt out is available, you will find that option within the communication itself or in your account settings.

    To market, promote and drive engagement with the Services: We use your contact information and information about how you use the Services to send promotional communications that may be of specific interest to you, including by email and by displaying Atlassian ads on other companies’ websites and applications, as well as on platforms like Facebook and Google.  These communications are aimed at driving engagement and maximizing what you get out of the Services, including information about new features, survey requests, newsletters, and events we think may be of interest to you.  We also communicate with you about new product offers, promotions and contests.  You can control whether you receive these communications as described below under “Opt-out of communications.”

    Customer support: We use your information to resolve technical issues you encounter, to respond to your requests for assistance, to analyze crash information, and to repair and improve the Services.

    For safety and security: We use information about you and your Service use to verify accounts and activity, to monitor suspicious or fraudulent activity and to identify violations of Service policies.

    To protect our legitimate business interests and legal rights: Where required by law or where we believe it is necessary to protect our legal rights, interests and the interests of others, we use information about you in connection with legal claims, compliance, regulatory, and audit functions, and disclosures in connection with the acquisition, merger or sale of a business.

    With your consent: We use information about you where you have given us consent to do so for a specific purpose not listed above.  For example, we may publish testimonials or featured customer stories to promote the Services, with your permission.

    Legal bases for processing (for EEA users):

    If you are an individual in the European Economic Area (EEA), we collect and process information about you only where we have legal bases for doing so under applicable EU laws.  The legal bases depend on the Services you use and how you use them. This means we collect and use your information only where:

    • We need it to provide you the Services, including to operate the Services, provide customer support and personalized features and to protect the safety and security of the Services;
    • It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the Services and to protect our legal rights and interests;
    • You give us consent to do so for a specific purpose; or
    • We need to process your data to comply with a legal obligation.

    If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place.  Where we are using your information because we or a third party (e.g. your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.

    How we share information we collect

    We make collaboration tools, and we want them to work well for you.  This means sharing information through the Services and with certain third parties.  We share information we collect about you in the ways discussed below, including in connection with possible business transfers, but we are not in the business of selling information about you to advertisers or other third parties.

    Sharing with other Service users 

    When you use the Services, we share certain information about you with other Service users.

    For collaboration: You can create content, which may contain information about you, and grant permission to others to see, share, edit, copy and download that content based on settings you or your administrator (if applicable) select.  Some of the collaboration features of the Services display some or all of your profile information to other Service users when you share or interact with specific content.  For example, when you comment on a Confluence page or Jira issue, we display your profile picture and name next to your comments so that other users with access to the page or issue understand who made the comment.  When you send a Stride message to another user, the recipient can view any information in your profile card. Similarly, when you publish a Confluence page, your name is displayed as the author of that page, and Service users with permission to view the page can view your profile information as well.  Please be aware that some aspects of the Services like Confluence pages or Bitbucket repositories can be made publicly available, meaning any content posted, including information about you, can be publicly viewed and indexed by and returned in search results of search engines.  You can confirm whether certain Service properties are publicly visible from within the Services or by contacting the relevant administrator.

    Managed accounts and administrators: If you register or access the Services using an email address with a domain that is owned by your employer or organization, and such organization wishes to establish an account or site, certain information about you including your name, profile picture, contact info, content and past use of your account may become accessible to that organization’s administrator and other Service users sharing the same domain.  If you are an administrator for a particular site or group of users within the Services, we may share your contact information with current or past Service users, for the purpose of facilitating Service-related requests.

    Community Forums:  Our websites offer publicly accessible blogs, forums, issue trackers, and wikis like Atlassian Community and Atlassian Developer Community. You should be aware that any information you provide on these websites – including profile information associated with the account you use to post the information – may be read, collected, and used by any member of the public who accesses these websites.  Your posts and certain profile information may remain even after you terminate your account. We urge you to consider the sensitivity of any information you input into these Services. To request removal of your information from publicly accessible websites operated by us, please contact us as provided below. In some cases, we may not be able to remove your information, in which case we will let you know if we are unable to and why.

    Sharing with third parties

    We share information with third parties that help us operate, provide, improve, integrate, customize, support and market our Services.

    Service Providers: We work with third-party service providers to provide website and application development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, analysis and other services for us, which may require them to access or use information about you.  If a service provider needs to access information about you to perform services on our behalf, they do so under close instruction from us, including policies and procedures designed to protect your information.

    Atlassian Partners: We work with third parties who provide consulting, sales, and technical services to deliver and implement customer solutions around the Services. We may share your information with these third parties in connection with their services, such as to assist with billing and collections, to provide localized support, and to provide customizations.  We may also share information with these third parties where you have agreed to that sharing.

    Third Party Apps: You, your administrator or other Service users may choose to add new functionality or change the behavior of the Services by installing third party apps within the Services.  Doing so may give third-party apps access to your account and information about you like your name and email address, and any content you choose to use in connection with those apps.  If you are a technical or billing contact listed on an account, we share your details with the third-party app provider upon installation. Third-party app policies and procedures are not controlled by us, and this privacy policy does not cover how third-party apps use your information. We encourage you to review the privacy policies of third parties before connecting to or using their applications or services to learn more about their privacy and information handling practices. If you object to information about you being shared with these third parties, please uninstall the app.

    Links to Third Party Sites: The Services may include links that direct you to other websites or services whose privacy practices may differ from ours. If you submit information to any of those third party sites, your information is governed by their privacy policies, not this one. We encourage you to carefully read the privacy policy of any website you visit.

    Social Media Widgets: The Services may include links that direct you to other websites or services whose privacy practices may differ from ours. Your use of and any information you submit to any of those third-party sites is governed by their privacy policies, not this one.

    Third-Party Widgets: Some of our Services contain widgets and social media features, such as the Twitter “tweet” button. These widgets and features collect your IP address, which page you are visiting on the Services, and may set a cookie to enable the feature to function properly. Widgets and social media features are either hosted by a third party or hosted directly on our Services. Your interactions with these features are governed by the privacy policy of the company providing it.

    With your consent: We share information about you with third parties when you give us consent to do so.  For example, we often display personal testimonials of satisfied customers on our public websites. With your consent, we may post your name alongside the testimonial.

    Compliance with Enforcement Requests and Applicable Laws; Enforcement of Our Rights: In exceptional circumstances, we may share information about you with a third party if we believe that sharing is reasonably necessary to (a) comply with any applicable law, regulation, legal process or governmental request, including to meet national security requirements, (b) enforce our agreements, policies and terms of service, (c) protect the security or integrity of our products and services, (d) protect Atlassian, our customers or the public from harm or illegal activities, or (e) respond to an emergency which we believe in good faith requires us to disclose information to assist in preventing the death or serious bodily injury of any person. For more information on how we respond to government requests, see our Guidelines for Law Enforcement and our Transparency Report.

    Sharing with affiliated companies

    We share information we collect with affiliated companies and, in some cases, with prospective affiliates.  Affiliated companies are companies owned or operated by us.  The protections of this privacy policy apply to the information we share in these circumstances.

    Atlassian companies: We share information we have about you with other Atlassian corporate affiliates in order to operate and improve products and services and to offer other Atlassian affiliated services to you. This includes companies that own or operate the services listed here.

    Business Transfers: We may share or transfer information we collect under this privacy policy in connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company. You will be notified via email and/or a prominent notice on the Services if a transaction takes place, as well as any choices you may have regarding your information.

    How we store and secure information we collect

    Information storage and security

    We use data hosting service providers in the United States and Ireland to host the information we collect, and we use technical measures to secure your data.  For more information on where we store your information, please see our Cloud hosting infrastructure page.

    While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.

    If you use our server or data center Services, responsibility for securing storage and access to the information you put into the Services rests with you and not Atlassian. We strongly recommend that server or data center users configure SSL to prevent interception of data transmitted over networks and to restrict access to the databases and other storage points used.

    How long we keep information

    How long we keep information we collect about you depends on the type of information, as described in further detail below.  After such time, we will either delete or anonymize your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion is possible.

    Account information: We retain your account information for as long as your account is active and a reasonable period thereafter in case you decide to re-activate the Services.  We also retain some of your information as necessary to comply with our legal obligations, to resolve disputes, to enforce our agreements, to support business operations, and to continue to develop and improve our Services. Where we retain information for Service improvement and development, we take steps to eliminate information that directly identifies you, and we only use the information to uncover collective insights about the use of our Services, not to specifically analyze personal characteristics about you.

    Information you share on the Services: If your account is deactivated or disabled, some of your information and the content you have provided will remain in order to allow your team members or other users to make full use of the Services.  For example, we continue to display messages you sent to the users that received them and continue to display content you provided.

    Managed accounts: If the Services are made available to you through an organization (e.g., your employer), we retain your information as long as required by the administrator of your account.  For more information, see “Managed accounts and administrators” above.

    Marketing information: If you have elected to receive marketing emails from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our Services, such as when you last opened an email from us or ceased using your Atlassian account.  We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.

    How to access and control your information

    You have certain choices available to you when it comes to your information. Below is a summary of those choices, how to exercise them and any limitations.

    Your Choices:

    You have the right to request a copy of your information, to object to our use of your information (including for marketing purposes), to request the deletion or restriction of your information, or to request your information in a structured, electronic format.  Below, we describe the tools and processes for making these requests.  You can exercise some of the choices by logging into the Services and using settings available within the Services or your account. Where the Services are administered for you by an administrator (see “Notice to End Users” below), you may need to contact your administrator to assist with your requests first.  For all other requests, you may contact us as provided in the Contact Us section below to request assistance.

    Your request and choices may be limited in certain cases: for example, if fulfilling your request would reveal information about another person, or if you ask to delete information which we or your administrator are permitted by law or have compelling legitimate interests to keep.  Where you have asked us to share data with third parties, for example, by installing third-party apps, you will need to contact those third-party service providers directly to have your information deleted or otherwise restricted.  If you have unresolved concerns, you may have the right to complain to a data protection authority in the country where you live, where you work or where you feel your rights were infringed.

    Access and update your information: Our Services and related documentation give you the ability to access and update certain information about you from within the Service. For example, you can access your profile information from your account and search for content containing information about you using key word searches in the Service.  You can update your profile information within your profile settings and modify content that contains information about you using the editing tools associated with that content.

    Deactivate your account:  If you no longer wish to use our Services, you or your administrator may be able to deactivate your Services account. If you can deactivate your own account, that setting is available to you in your account settings. Otherwise, please contact your administrator. If you are an administrator and are unable to deactivate an account through your administrator settings, please contact Atlassian support.  Please be aware that deactivating your account does not delete your information; your information remains visible to other Service users based on your past participation within the Services.  For more information on how to delete your information, see below.

    Delete your information: Our Services and related documentation give you the ability to delete certain information about you from within the Service. For example, you can remove content that contains information about you using the key word search and editing tools associated with that content, and you can remove certain profile information within your profile settings. Please note, however, that we may need to retain certain information for record keeping purposes, to complete transactions or to comply with our legal obligations.

    Request that we stop using your information:  In some cases, you may ask us to stop accessing, storing, using and otherwise processing your information where you believe we don’t have the appropriate rights to do so.  For example, if you believe a Services account was created for you without your permission or you are no longer an active user, you can request that we delete your account as provided in this policy.  Where you gave us consent to use your information for a limited purpose, you can contact us to withdraw that consent, but this will not affect any processing that has already taken place at the time. You can also opt-out of our use of your information for marketing purposes by contacting us, as provided below.  When you make such requests, we may need time to investigate and facilitate your request.  If there is delay or dispute as to whether we have the right to continue using your information, we will restrict any further use of your information until the request is honored or the dispute is resolved, provided your administrator does not object (where applicable).  If you object to information about you being shared with a third-party app, please disable the app or contact your administrator to do so.

    Opt out of communications: You may opt out of receiving promotional communications from us by using the unsubscribe link within each email, updating your email preferences within your Service account settings menu, or by contacting us as provided below to have your contact information removed from our promotional email list or registration database.  Even after you opt out from receiving promotional messages from us, you will continue to receive transactional messages from us regarding our Services. You can opt out of some notification messages in your account settings.

    You may be able to opt out of receiving personalized advertisements from other companies who are members of the Network Advertising Initiative or who subscribe to the Digital Advertising Alliance’s Self-Regulatory Principles for Online Behavioral Advertising. For more information about this practice and to understand your options, please visit: http://www.aboutads.infohttp://optout.networkadvertising.org/ and http://www.youronlinechoices.eu.

    Turn off Cookie Controls: Relevant browser-based cookie controls are described in our Cookies & Tracking Notice.

    Send “Do Not Track” Signals: Some browsers have incorporated “Do Not Track” (DNT) features that can send a signal to the websites you visit indicating you do not wish to be tracked. Because there is not yet a common understanding of how to interpret the DNT signal, our Services do not currently respond to browser DNT signals. You can use the range of other tools we provide to control data collection and use, including the ability to opt out of receiving marketing from us as described above.

    Data portability: Data portability is the ability to obtain some of your information in a format you can move from one service provider to another (for instance, when you transfer your mobile phone number to another carrier).  Depending on the context, this applies to some of your information, but not to all of your information.  Should you request it, we will provide you with an electronic file of your basic account information and the information you create on the spaces you under your sole control, like your personal Bitbucket repository.

    How we transfer information we collect internationally

    International transfers of information we collect

    We collect information globally and primarily store that information in the United States and Ireland. We transfer, process and store your information outside of your country of residence, to wherever we or our third-party service providers operate for the purpose of providing you the Services.  Whenever we transfer your information, we take steps to protect it.

    International transfers within the Atlassian Companies: To facilitate our global operations, we transfer information to either Ireland or the United States and allow access to that information from countries in which the Atlassian owned or operated companies have operations for the purposes described in this policy. These countries may not have equivalent privacy and data protection laws to the laws of many of the countries where our customers and users are based. When we share information about you within and among Atlassian corporate affiliates, we make use of standard contractual data protection clauses, which have been approved by the European Commission, and we rely on the EU-U.S. and Swiss-U.S. Privacy Shield Framework to safeguard the transfer of information we collect from the European Economic Area and Switzerland. Please see our Privacy Shield notice below for more information or contact us as provided below.

    International transfers to third parties: Some of the third parties described in this privacy policy, which provide services to us under contract, are based in other countries that may not have equivalent privacy and data protection laws to the country in which you reside. When we share information of customers in the European Economic Area or Switzerland, we make use of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks, European Commission-approved standard contractual data protection clauses, binding corporate rules for transfers to data processors, or other appropriate legal mechanisms to safeguard the transfer. Please see our Privacy Shield Notice below.

    Privacy Shield Notice

    Atlassian, Inc. and its U.S. subsidiaries (Atlassian Network Service, Inc., Dogwood Labs, Inc., and Trello, Inc.) participate in and comply with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks and the Privacy Shield Principles regarding the collection, use, and retention of information about you that is transferred from the European Union or Switzerland (as applicable) to the U.S.  We ensure that the Privacy Shield Principles apply to all information about you that is subject to this privacy policy and is received from the European Union, the European Economic Area, and Switzerland.

    Under the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks, we are responsible for the processing of information about you we receive from the EU and Switzerland and onward transfers to a third party acting as an agent on our behalf. We comply with the Privacy Shield Principles for such onward transfers and remain liable in accordance with the Privacy Shield Principles if third-party agents that we engage to process such information about you on our behalf do so in a manner inconsistent with the Privacy Shield Principles, unless we prove that we are not responsible for the event giving rise to the damage.

    To learn more about the Privacy Shield Program, and to view Atlassian’s certification, please see here www.privacyshield.gov.

    We encourage you to contact us as provided below should you have a Privacy Shield-related (or general privacy-related) complaint.  If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third-party dispute resolution provider (free of charge).  Through this third-party dispute resolution provider, we have also committed to cooperating and complying with the information and advice provided by an informal panel of data protection authorities in the European Economic Area and/or the Swiss Federal Data Protection and Information Commissioner (as applicable) in relation to unresolved complaints (as further described in the Privacy Shield Principles). You may also contact your local data protection authority within the European Economic Area or Switzerland (as applicable) for unresolved complaints.

    Under certain conditions, more fully described on the Privacy Shield website, including when other dispute resolution procedures have been exhausted, you may invoke binding arbitration.

    We are subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).

    Other important privacy information

    Notice to End Users

    Many of our products are intended for use by organizations. Where the Services are made available to you through an organization (e.g. your employer), that organization is the administrator of the Services and is responsible for the accounts and/or Service sites over which it has control. If this is the case, please direct your data privacy questions to your administrator, as your use of the Services is subject to that organization’s policies. We are not responsible for the privacy or security practices of an administrator’s organization, which may be different than this policy.

    Administrators are able to:

    • require you to reset your account password;
    • restrict, suspend or terminate your access to the Services;
    • access information in and about your account;
    • access or retain information stored as part of your account;
    • install or uninstall third-party apps or other integrations

    In some cases, administrators can also:

    • restrict, suspend or terminate your account access;
    • change the email address associated with your account;
    • change your information, including profile information;
    • restrict your ability to edit, restrict, modify or delete information

    Even if the Services are not currently administered to you by an organization, if you use an email address provided by an organization (such as your work email address) to access the Services, then the owner of the domain associated with your email address (e.g. your employer) may assert administrative control over your account and use of the Services at a later date.  You will be notified if this happens.

    If you do not want an administrator to be able to assert control over your account or use of the Services, use your personal email address to register for or access the Services.  If an administrator has not already asserted control over your account or access to the Services, you can update the email address associated with your account through your account settings in your profile.  Once an administrator asserts control over your account or use of the Services, you will no longer be able to change the email address associated with your account without administrator approval.

    Please contact your organization or refer to your administrator’s organizational policies for more information.

    Our policy towards children

    The Services are not directed to individuals under 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information. If you become aware that a child has provided us with personal information, please contact our support services.

    Changes to our Privacy Policy

    We may change this privacy policy from time to time. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice by adding a notice on the Services homepages, login screens, or by sending you an email notification. We will also keep prior versions of this Privacy Policy in an archive for your review.  We encourage you to review our privacy policy whenever you use the Services to stay informed about our information practices and the ways you can help protect your privacy.

    If you disagree with any changes to this privacy policy, you will need to stop using the Services and deactivate your account(s), as outlined above.

    Contact Us

    Your information is controlled by Atlassian Pty Ltd and Atlassian, Inc.  If you have questions or concerns about how your information is handled, please direct your inquiry to Atlassian Pty Ltd, which we have appointed to be responsible for facilitating such inquiries or, if you are a resident of the European Economic Area, please contact our EU Representative.

    Atlassian Pty Ltd
    c/o Atlassian, Inc.
    1098 Harrison Street
    San Francisco, CA 94103
    E-Mail: privacy@atlassian.com

    EU Representative:

    Atlassian B.V.
    c/o Atlassian, Inc.
    1098 Harrison Street
    San Francisco, CA 94103
    E-Mail: eudatarep@atlassian.com

    TRUSTe

    Key Changes

    • Better navigation and user-friendly language. To make the policy easier to understand, we use clear, plain language and examples that illustrate our activities. We reformatted our privacy policy page with active links, so you can quickly find the information that matters most to you.
    • How we integrate our products. We’re always improving our products to give you a frictionless and customized experience. The updates to our policy describe the tools we’ve built to make our products smarter and allow you to move seamlessly from one Atlassian product to another.
    • More control over your information. We make it easy for you to control the information you provide to us. Our policy explains how you can make choices about your information, and the measures we’ve put in place to keep your information secure.
    • Using our products for work. Many users have access to our services through their organizations (e.g., their employers), who control their accounts or use of our services. The updated policy clarifies our relationship to these users and explains the tools available to administrators of these users.
  • Last Updated May 7, 2018

    Authy App Privacy Notice

    Effective Date May 25, 2018 (To view the prior version of our privacy statement, go here.)

    SUMMARY

    Welcome to Authy! As a courtesy, below is a quick summary of our privacy practices when you use the Authy desktop or mobile app. The full version can be found by scrolling down. The full version is the one that is legally controlling.

    When you use our app we collect:

    • Your phone number, device information, and email address.
    • If you use an application that integrates our 2-factor authentication API, they will send us your phone number and email address so we can validate who you are on their behalf.
    • We keep a record of your log-ins to accounts for which you use Authy for 2-factor authentication.
    • We use the information we gather from you to monitor for unusual or suspicious activity in your account, to communicate with you about your account, and as additional information that can be used to validate who you are if you need to recover your account or your account has been or may be compromised.
    • Websites and programs that integrate our 2-factor authentication API will be able to see information they sent us about you, your login activity to their website and program, your primary device type, and other device related information relevant to identifying unusual or suspicious activity, but they will not see any other websites or programs for which you use Authy.
    • We also share your information with our third party service providers as necessary for them to provide their services to us. We may also have to share your information with third parties if required to do so by law.
    • Your information will be transferred to the U.S.
    • If you have questions about our data practices or information we store about you, you can email us at privacy@twilio.com.

    FULL VERSION

    Introduction

    Authy, a Twilio service, offers a desktop and mobile app for two-step verification. The Authy apps generate one time passwords and push notifications on your desktop computer or mobile device that can be used as a part of a 2-step verification process with your Authy-compatible accounts to add another layer of security. Authy can be used as an alternative to programs such as Google Authenticator or as a provider of 2-factor authentication for applications or programs that directly integrate with Authy’s 2-factor authentication API.

    Below is a summary of our practices when it comes to your personal information collected when you download and use the Authy desktop or mobile app.

    If you are interested in our practices relating to personal information collected when you build an application that integrates with Authy’s API to add two-factor authentication to your application, click here.

    For purposes of this notice, the words “our,” “us,” “we,” “Authy,” and “Twilio” refer to Twilio Inc. and our affiliates (which includes any person or entity that controls us, is controlled by us, or is under common control with us, such as our subsidiary, parent company, or our employees). If you are a user outside of the United States, this service is provided to you by Twilio Ireland Limited, located at 25-28 North Wall Quay, Dublin 1, Ireland. Twilio Ireland Limited is the controller of personal information processed in connection with your use of the Authy apps.

    Before you submit any information on or through Authy, please carefully review this notice.

    What personal information we collect, how we collect it and why

    Device Information. When you download and open the Authy desktop or mobile app, we automatically collect information about the type of device you have downloaded the app on and your device identifier. We collect this to ensure we deliver the right version of the app for your device and so that we can provide appropriate follow up support as necessary.

    Phone Number and Email Address. Once you open the Authy app, we ask you to provide us with a phone number to create your Authy account. We send a verification code to that phone number to be sure that the person creating the Authy account also has control over the phone number entered. After the phone number is verified, the phone number you use will be the identifier for your Authy account that allows you to add and associate additional devices to your same Authy account. The device on which you first created your Authy account is considered your “primary device.” You may also enter your email address.

    If you are a user of an application or program that directly integrates with Authy’s 2-Factor Authentication API, those applications or programs collect your phone number and email address and share that information with us so we can use it to associate your account on that application or program with your Authy account that you created when you downloaded the Authy app.

    If you have not downloaded the Authy app, but use an application or program that directly integrates with Authy’s 2-Factor Authentication API, when that application or program shares your phone number and email address with us, we will create an Authy account for you. We will use your phone number to communicate to you verification codes so you can log into your account on that application or program.

    We collect your email address as another piece of information to validate who you are if you need to recover your account or your account has been compromised, and also to communicate notices about your account to you like suspicious logins or other activity that could be related to a compromise of your Authy account or one of your accounts in other applications or programs that integrate with the Authy 2-Factor Authentication API.

    Login History and Authy Account History. When you use an Authy token to log into an account, whether the token was generated on the app or one sent to you via your phone number, we collect and keep information associated with your login activity including information like your IP address, what application or program you logged in to, that you logged in, and when. If you change your phone number or email associated with your Authy account, we will also keep a log of that. We collect this information to monitor for suspicious activity and also as another piece of information that could be used to verify your identity if your account is compromised or may be compromised.

    Identity Confirmation Information. If you need to change your phone number associated with your account but are not able to access your Authy app to change your number under Settings, you can submit a request to change your phone number here. If we cannot easily confirm that you are the rightful account holder of the Authy account associated with your old number, we will ask you for your phone account information and a copy of physical identification such as a drivers’ license, national ID, or passport, which we then use to confirm your claim to the account. From time to time, if there are other situations where we need to verify that you are the rightful account holder of your Authy account, our support team may require you to provide identity information like a drivers’ license, national ID or passport.

    What we use your personal information for

    We use your phone number as an identifier for your Authy account. This allows you to download the Authy app onto various devices and associate those devices with your same Authy account. We may also use your phone number to send you verification codes as a second factor for authenticating a login for an application that integrates with the Authy 2-Factor Authentication API. We also use logs of any changes to your phone number to monitor for suspicious or unusual activity and as another piece of information that could be used, if necessary, to verify your identity if your account is or may be compromised.

    We use your email address, and any history of email addresses associated with your Authy account, as another piece of information that could be used, if necessary, to verify your identity if your account is or may be compromised. We also use your email address to communicate notices to you about your account, such as suspicious logins or other activity that could indicate a compromise of your account. In addition, we may use your email address to send you information about other Authy and Twilio products, services, or events that you might be interested in. You can choose not to receive marketing emails from us. If you wish to stop receiving our marketing emails you may click on the unsubscribe link that will appear at the bottom of any of our marketing emails or you can contact customer support.

    We use information associated with your login activity, device information, and changes to your account to monitor for unusual or suspicious activity on your account and as any other piece of information that could be used to help us verify your identity if your account is compromised or may be compromised.

    In addition to using device information as described above, we also use your device information ensure proper delivery of our service and to provide and deliver support and maintenance of the Authy app.

    Who we may share your personal information with

    An application or program that integrates with the Authy 2-Factor API is able to access a record of the email address and phone number that it sent to Authy. It will also be able to access your primary device type and information associated with your login activity to that application or program. It may also retain this information on its own servers. We may also share other information related to your account with that application or program to help them and us detect suspicious or fraudulent activity on your account. Those applications or programs will not be able to see other accounts for which you use Authy to provide 2-factor authentication, however.

    In addition, we may share your information with third parties as follows:

    • Third-party service providers or consultants. We may share your personal information with third-party service providers or consultants who need access to the personal information to perform their work on our behalf, like sharing personal information with our storage provider for the purposes of storing your personal information on our behalf. These third-party service providers are limited to only accessing or using this personal information to provide services to us and must provide reasonable assurances that they will appropriately safeguard the personal information.
    • Compliance with Laws. We may disclose your personal information to a third party if (i) we reasonably believe that disclosure is compelled by applicable law, regulation, legal process or a government request (including to meet national security or law enforcement requirements), (ii) to enforce our agreements and policies, (iii) to protect the security or integrity of our services and products, (iv) to protect ourselves, our other customers, or the public from harm or illegal activities, or (v) to respond to an emergency which we believe in good faith requires us to disclose personal information to assist in preventing a death or serious bodily injury. If we are required by law to disclose your personal information, we will notify you of that disclosure requirement, unless prohibited by law. Further, we object to requests that we do not believe were issued properly.
    • Affiliates. We may share your personal information with our affiliates. We all will only use the personal information as described in this notice.
    • Business transfers. If we go through a corporate sale, merger, reorganization, dissolution or similar event, personal information we gather from you may be part of the assets transferred or shared in connection with the due diligence for any such transaction. Any acquirer or successor may continue to use the personal information as described in this notice.
    • Aggregated or de-identified information. We might also share information with third parties if that information has been de-identified or aggregated in a way that does not identify you.

    If you use the Authy app when logging into a website or application that has not integrated the Authy 2-Factor API (i.e., you are using the Authy app as an alternative to Google Authenticator), the soft token you will see will be a 6 digit code. Authy does not share your information with these websites or applications.

    International operations and transfers out of the EEA and Switzerland

    Your personal information may be transferred to the United States, and possibly other countries where we or our service providers operate. Twilio employs appropriate safeguards for cross-border transfers of personal information, as required by applicable local law. Twilio complies with the EU-U.S. Privacy Shield Framework and the Swiss – U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States, respectively. Twilio has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/. You can access our Privacy Shield Statement here.

    Information from children

    We do not knowingly permit children (under the age of 13 in the US or 16, if you live in the EEA) to sign up for an Authy account. If we discover that someone who is underage has signed up for an Authy account, we will take reasonable steps to promptly remove that person’s personal information from our records. If you believe that a person who is underage has signed up for an Authy account, please contact us at privacy@twilio.com.

    How we secure your personal information

    We use appropriate measures to protect the security of your personal information both online and offline. These measures vary based on the sensitivity of the information that we collect, process and store and the current state of technology. Please note though that no service is completely secure. So, while we strive to protect your personal information, we cannot guarantee that unauthorized access, hacking, data loss or a data breach will never occur.

    There are also things you can do to add extra protection to your Authy account. First, you should password protect or activate biometrics (like Touch ID) for all devices on which you have downloaded the Authy app. This will prevent unauthorized users from accessing your Authy app. Further, you have the option of setting a protection pin for your Authy app. You can do this by going into your app and clicking on settings. In settings, you should click on “Protection Pin.” You can choose to include a Protection Pin which will require you to enter a pin number of your choosing before accessing settings and your Account Info. Depending on your device’s capabilities, you may also be able to add biometric protection. You can also choose to protect the entire app which will require you to enter your chosen Pin and/or use biometric to open the Authy app on your device. We recommend that if you have downloaded Authy onto a shared device, that you use this last option of protecting the entire app.

    If you have multiple devices associated with your account and one of your devices is lost or stolen, you can remove that device from your circle of trusted devices by going into one of the other devices associated with your account, and over which you still control, and remove the lost or stolen device under Settings > Devices. If you only have a single device that is associated with your Authy account and that device is lost or stolen, you can alert us through customer service.

    How we tell you about changes to our privacy practices

    We may change our Privacy Notice from time to time. If we make changes, we’ll revise the “Last Updated” date at the top of this notice, and we may provide additional notice such as on the Twilio website homepage, in the app, or via the email address we have on file for you. We will comply with applicable law with respect to any changes we make to this notice, and seek your consent to any material changes if this is required by applicable law.

    How to make choices about your personal information

    You can make updates to your information associated with your account by going into the settings in the Authy apps. You can also make a request to change your phone number associated with your account by clicking here.

    In some jurisdictions, such as the EEA, you may certain rights to make choices regarding your personal information, including accessing it, deleting it, correcting it, restricting its use, porting it, or withdrawing consent. To make a request for deletion of your Authy account, to make a request to access additional information associated with your account, or to express any other choice regarding your personal information, contact privacy@twilio.com.

    If you want to remove a program or application from your Authy account that uses the Authy 2-Factor API, but you do not want to delete your entire Authy account, you should contact the provider of the program or application that you want to remove.

    Promotional communications. In addition, you can choose not to receive promotional emails from us by following the unsubscribe/opt-out instructions in those emails. You can also opt-out by contacting customer support. Please note that even if you opt out of promotional communications, we may still send you non-promotional messages relating to things like updates to our terms of service or privacy notices, security alerts, and other notices relating to your access to or use of our products and services.

    How to resolve disputes relating to our privacy practices

    Except for residents of the European Union, if you have a dispute with us relating to our privacy practices, please contact our customer support or email us at privacy@twilio.com or contact our Customer Support. Most disputes can be resolved that way. If we can’t resolve our dispute that way, and you live in the U.S. or Canada, please see Section 17 (Agreement to Arbitrate) of our Terms of Service , which describes how disputes will be resolved between us. As described in that section, the American Arbitration Association (http://www.adr.org) will conduct the dispute resolution proceedings. Please be sure to review our Terms of Service, including Section 17, before you use any of our products and services. European residents with disputes regarding our privacy practices should refer to our Privacy Shield Statement for information on resolving such disputes.

    How you contact us

    You may contact via email at privacy@twilio.com. Or, you may write to us at the address listed below.

    Twilio Inc.
    375 Beale Street, Suite 300
    San Francisco, CA 94105

    Twilio Ireland Limited,
    25-28 North Wall Quay,
    Dublin 1, Ireland

    If you are from the EEA, our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.

    However, we normally collect personal information from you only where we need the personal information to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms, or where we have your consent to do so. In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person such as in the case where we request personal information from you in response to a request from law enforcement.

    If you have questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us by using the contact details provide in the “How you contact us” section above.

  • Privacyverklaring

    Museum Boijmans Van Beuningen (“wij”, “ons” of “het museum”) is een zelfstandige stichting zonder winstoogmerk, die de kunstcollectie namens de gemeente Rotterdam, vele schenkers en bruikleengevers beheert, behoudt en toont. We willen dat iedereen die ons bezoekt, onze diensten of producten afneemt en onze website bekijkt de beste ervaring bieden. Om dat te kunnen doen verwerken wij persoonsgegevens. Welke gegevens we bewaren en waarom staat in deze privacyverklaring.

    We gaan net zo zorgvuldig om met jouw persoonsgegevens als met onze kunstcollectie. Het gaat daarbij om alle persoonsgegevens die wij verwerken als je voor ons werkt, met ons communiceert, onze website gebruikt, tickets bestelt, een bezoek brengt, aankopen doet, deelneemt aan activiteiten, een donatie doet, Vriend wordt, het museum sponsort of gebruik maakt van een van onze andere diensten.

    In de privacyverklaring geven we je meer uitleg over het soort persoonsgegevens dat we verzamelen en waarom we dat doen, hoe we deze beveiligen en hoelang we deze verzamelen. Ook kun je meer lezen over jouw rechten en hoe je contact kunt opnemen. Dat willen we zo helder en eenvoudig mogelijk uitleggen.

    Samenvatting

    Persoonsgegevens zijn gegevens waardoor wij jou als individu kunnen identificeren. In sommige gevallen werken wij daarbij samen met andere organisaties of bedrijven. Deze gegevens worden door ons dan ook zorgvuldig verwerkt en beveiligd. Daarbij houden wij ons aan de eisen uit de privacywetgeving, de zogenaamde Algemene Verordening Gegevensbescherming. Dat betekent dat wij:

    • Duidelijk vermelden voor welke doeleinden wij persoonsgegevens verwerken. Dat doen wij in onze privacyverklaring;
    • Het verzamelen van persoonsgegevens beperken tot alleen de persoonsgegevens die nodig zijn voor de doeleinden waarvoor ze worden verwerkt;
    • Je eerst vragen om uitdrukkelijke toestemming om jouw persoonsgegevens te verwerken in gevallen waarin jouw toestemming is vereist;
    • Jouw gegevens niet doorgeven aan derde partijen, tenzij dat nodig is om de gevraagde dienst te kunnen leveren of wanneer wij daar wettelijk toe verplicht zijn;
    • Wanneer wij jouw gegevens delen, afspraken maken met derde partijen om er o.a. voor te zorgen deze niet voor andere doeleinden worden gebruikt;
    • Passende beveiligingsmaatregelen nemen om jouw persoonsgegevens te beschermen en dat ook eisen van partijen die in opdracht van ons persoonsgegevens verwerken;
    • Jouw rechten respecteren om jouw persoonsgegevens op jouw aanvraag ter inzage te bieden, te corrigeren of te verwijderen.

    Als je naar aanleiding van deze privacyverklaring vragen of opmerkingen hebt, dan kan je contact met ons opnemen via onderstaande gegevens:

    Stichting tot Beheer Museum Boijmans Van Beuningen
    Museumpark 18-20
    3015 CX Rotterdam
    Bel: 010 44.19.400
    E-mail: info@boijmans.nl

     

    • Bekijk de volledige privacyverklaring

     Privacyverklaring

    Samenvatting

    Museum Boijmans Van Beuningen (“wij”, “ons” of “het museum”) is een zelfstandige stichting zonder winstoogmerk, die de kunstcollectie namens de gemeente Rotterdam, vele schenkers en bruikleengevers beheert, behoudt en toont. We willen dat iedereen die ons bezoekt, onze diensten of producten afneemt en onze website bekijkt de beste ervaring bieden. Om dat te kunnen doen verwerken wij persoonsgegevens. Welke gegevens we bewaren en waarom staat in deze privacyverklaring.

    We gaan net zo zorgvuldig om met uw persoonsgegevens als met onze kunstcollectie. Het gaat daarbij om alle persoonsgegevens die wij verwerken als u voor ons werkt, met ons communiceert, onze website gebruikt, tickets bestelt, een bezoek brengt, aankopen doet, deelneemt aan activiteiten, een donatie doet, Vriend wordt, het museum sponsort of gebruik maakt van een van onze andere diensten.

    Persoonsgegevens zijn gegevens waardoor wij u als individu kunnen identificeren. In sommige gevallen werken wij daarbij samen met andere organisaties of bedrijven.

    Deze gegevens worden door ons dan ook zorgvuldig verwerkt en beveiligd. Daarbij houden wij ons aan de eisen uit de privacywetgeving, de zogenaamde Algemene Verordening Gegevensbescherming. Dat betekent dat wij:

    • Duidelijk vermelden voor welke doeleinden wij persoonsgegevens verwerken. Dat doen wij via deze privacyverklaring;
    • Het verzamelen van persoonsgegevens beperken tot alleen de persoonsgegevens die nodig zijn voor de doeleinden waarvoor ze worden verwerkt;
    • U eerst vragen om uitdrukkelijke toestemming om uw persoonsgegevens te verwerken in gevallen waarin uw toestemming is vereist;
    • Uw gegevens niet doorgeven aan derde partijen, tenzij dat nodig is om de gevraagde dienst te kunnen leveren of wanneer wij daar wettelijk toe verplicht zijn;
    • Wanneer wij uw gegevens delen, afspraken maken met derde partijen om er

      o.a. voor te zorgen deze niet voor andere doeleinden worden gebruikt;

    • Passende beveiligingsmaatregelen nemen om uw persoonsgegevens te beschermen en dat ook eisen van partijen die in opdracht van ons persoonsgegevens verwerken;
    • Uw rechten respecteren om uw persoonsgegevens op uw aanvraag ter inzage te bieden, te corrigeren of te verwijderen.

      In deze privacyverklaring geven we u meer uitleg over het soort persoonsgegevens dat we verzamelen en waarom we dat doen, hoe we deze beveiligen en hoelang we deze verzamelen. Ook kunt u meer lezen over uw rechten en hoe u contact kunt opnemen. Dat willen we zo helder en eenvoudig mogelijk uitleggen.

      Als u naar aanleiding van deze privacyverklaring vragen of opmerkingen heeft, dan kunt u contact met ons opnemen via onderstaande gegevens:

      Telefonisch: 010 44.19.400 E-mail: info@boijmans.nl Post:

      Stichting tot Beheer Museum Boijmans Van Beuningen Museumpark 18-20

      3015 CX Rotterdam

      Museumpark 18-20 PO Box 2277 t +31 (0)10 44.19.400 www.boijmans.nl NL-3015 CX Rotterdam NL-3000 CG Rotterdam f +31 (0)10 43.60.500 info@boijmans.nl

      1

      Toelichting privacyverklaring

      Soort gegevens

      Bij het aanschaffen van producten, afnemen van diensten of doen van donaties (zoals een Vriendenlidmaatschap) laat u bepaalde gegevens bij ons achter. Wij verwerken niet altijd alle onderstaande gegevens, dat is namelijk afhankelijk van het doel waarvoor we de gegevens nodig hebben. Zo bewaren wij uw bankrekening alleen als u een doorlopende donatie doet, maar niet als u een e-ticket koopt.

      Persoonsgegevens

      Afhankelijk van uw relatie met Museum Boijmans Van Beuningen, kunnen wij de volgende gegevens van u verwerken:

    • NAW gegevens
    • NAW gegevens van uw partner
    • E-mailadres
    • Telefoonnummer
    • Bedrijfsgegevens
    • Functie
    • Geboortedatum
    • Geslacht
    • IBAN
    • Interesses en hobby’s
    • Lidnummer
    • Curriculum Vitae
    • Motivatiebrief
    • Opleidingsniveau
    • Samenstelling huishouden
    • Foto’s
    • De inhoud van uw communicatie met ons, bijvoorbeeld wanneer u met ons e-mailt, telefonisch of anderszins contact heeft onder andere in de vorm van aantekeningen
    • Gegevens over uw gebruik van diensten en producten die u afneemt
    • Gegevens nodig voor contracten
    • Gegevens over gedane donaties en geschonken kunstwerken, waaronder de financiële waarde van de schenking
    • Gegevens over uw relatie met het museum, bijvoorbeeld welke nieuwsbrieven u ontvangt, hoe vaak u een e-ticket heeft gekocht en of u in het verleden iets heeft geschonken
    • Gegevens over uw relatie met andere contacten van het museum
    • Gegevens over deelname aan evenementen
    • Gegevens van openbaar toegankelijke websites over uw loopbaan
    • Gegevens over uw betrokkenheid bij social media kanalen van het museum
    • Technische meetgegevens van de apparatuur zoals IP-adres en uw surfgedrag op onze websites zoals de inhoud van uw winkelmand

      Doel van verwerking

      Wij verwerken alleen gegevens voor de doeleinden zoals hieronder uiteengezet, gebaseerd op een wettelijke grondslag. Voor zover wij reeds persoonsgegevens in ons bezit hebben, dan worden deze voor dezelfde doeleinden gebruikt.

      Grondslag: Noodzakelijk voor de uitvoering van een overeenkomst

    • Om u de mogelijkheid te bieden artikelen te bestellen via onze websites en gebruik te maken van alle functionaliteiten en diensten op de websites;
    • Om uw bestelling te verwerken en u te informeren over het verloop daarvan;
    • Om uw inschrijving als Vriend, donateur, sponsor of begunstiging op andere wijze te verwerken en het daarbij behorende relatiebeheer uit te voeren.

      Grondslag: noodzakelijke voor de behartiging van het gerechtvaardigde belang van Museum Boijmans Van Beuningen om de relatie met u te onderhouden, onze diensten, producten, communicatie en fondsenwerving te verbeteren.

    • Om met u te communiceren door middel van het verzenden van elektronische nieuwsbrieven en/of post over zaken waarvoor vooraf geen aparte toestemming vereist is – bijvoorbeeld als u vriend bent informeren over vriendenactiviteiten. Ook voor deze communicatie kunt u zich altijd afmelden;
    • Om uw vragen te beantwoorden of uw klachten te behandelen via social media, e-mail, per post of telefonisch;
    • Om uw sollicitatie te verwerken;
    • Om te analyseren wie onze bezoekers zijn en wat ze doen, wat er bij hen speelt en wat zij belangrijk vinden waarmee we onze producten, diensten en communicatie kunnen verbeteren en succesvol kunnen blijven ondernemen;
    • Om relaties en het netwerk van het museum in kaart te brengen ter verbetering van de fondsenwerving, belangrijk voor het voortbestaan van het museum (tentoonstellingen, restauraties, educatieve projecten en meer zijn dankzij financiële steun van derden mogelijk);
    • Om onze websites te verbeteren.

      Grondslag: Op basis van toestemming

      Voor zover nodig zullen wij uw toestemming vragen, bijvoorbeeld voor het versturen van onze maandelijkse nieuwsbrief of om u marketingmateriaal te kunnen sturen via e-mail. U kunt uw toestemming daarvoor op elk gewenst moment intrekken via de gestuurde berichten.

      Grondslag: Noodzakelijk om te voldoen aan een wettelijke verplichting

      We kunnen uw persoonsgegevens verwerken om toepasselijke wetgeving na te leven, om te voldoen aan verzoeken van openbare instanties en overheidsinstanties of om mee te werken aan wetshandhaving.

      Verstrekking aan derden en doorgifte

      Wij geven de door u verstrekte gegevens door aan derde partijen, als dat noodzakelijk is voor de levering van de door u bestelde producten, of aangevraagde diensten. Zo maken wij gebruik van een derde partij voor de afhandeling van iDeal betalingen in onze webshop en geven we uw gegevens door aan de postbezorger om de bestelling bij u te bezorgen. Als u ingelogd bent op een Facebook of Instagram account terwijl u onze website bezoekt, dan zullen deze social media kanalen u ook informatie over het museum tonen. Wij delen en ontvangen echter geen gegevens van u via deze social media kanalen anders dan dat u op onze site bent geweest.

      Wanneer wij uw gegevens aan een derde verstrekken, zorgen wij er met een overeenkomst onder andere voor dat uw gegevens niet voor andere doeleinden worden gebruikt. Ook komen wij hierin overeen dat uw gegevens worden verwijderd zodra ze niet meer nodig zijn.

      Verder zullen wij de door u verstrekte gegevens niet aan andere partijen verstrekken, tenzij dit wettelijk verplicht of toegestaan is. Zo is het bijvoorbeeld mogelijk dat de

      politie in het kader van fraudeonderzoek gegevens bij ons opvraagt. In dat geval zijn wij wettelijk verplicht deze gegevens af te geven.

      Tenzij anderszins vermeld, verwerken en bewaren we uw persoonsgegevens in de Europese Unie. Het kan zijn dat onze dienstverleners uw persoonsgegevens buiten de Europese Economische Ruimte (‘EER’) overdragen aan een land dat onder de Europese wetgeving niet hetzelfde niveau van bescherming biedt als het land waar u normaal uw producten en/of diensten gebruikt. We zullen alsdan de noodzakelijke stappen ondernemen om te garanderen dat uw persoonsgegevens voldoende worden beschermd, zoals het opstellen van EU- standaardcontracten met partijen die zich buiten de EER bevinden.

      Profilering en cookies

      Wij combineren uw persoonsgegevens uit verschillende bronnen (zoals de gegevens uit uw account en uw aankopen in onze webshop) met elkaar, om u de beste ervaring te kunnen bieden.

      Door uw gegevens te combineren kunnen wij gepersonaliseerde aanbiedingen en gepersonaliseerde content, die aansluiten bij uw interesses en aankoopgeschiedenis. Ook onze nieuwsbrief kunnen wij op deze manier voor u personaliseren. Op deze wijze kunnen wij betere en gerichtere aanbiedingen doen. Zo wordt voorkomen dat u content of aanbiedingen op de verschillende websites te zien krijgt, die voor u minder interessant zijn. Ook kunnen wij door het combineren van gegevens voorkomen dat u dubbel wordt benaderd door ons en beter inzicht krijgen in wie onze bezoekers zijn.

      Bij het verzamelen en combineren van uw gegevens maken we geen gebruik van cookies.

      Beveiligen en bewaren

      Wij nemen passende beveiligingsmaatregelen om misbruik van en ongeautoriseerde toegang tot uw persoonsgegevens te voorkomen. Zo zorgen wij dat alleen de noodzakelijke personen toegang hebben tot de gegevens, dat de toegang tot de gegevens afgeschermd is en dat onze veiligheidsmaatregelen regelmatig gecontroleerd worden.

      Wij bewaren de gegevens niet langer dan noodzakelijk is. Dat wil zeggen dat wij de gegevens bewaren zolang dat nodig is voor de doelen omschreven in deze privacyverklaring. Uitgezonderd hiervan zijn de gegevens die wij langer moeten bewaren omdat de wet ons dit verplicht. Als we de informatie niet langer hoeven te bewaren verwijderen we de gegevens of anonimiseren wij die zodat wij u niet meer kunnen identificeren. Dat doen we bijvoorbeeld voor een doorlopende analyse van onze bezoekers op jaarbasis.

      Uw rechten

      Op grond van de toepasselijke wet- en regelgeving heeft u verschillende rechten ten aanzien van uw persoonsgegevens, waaronder:

    • Recht op inzage. Op uw verzoek zullen wij u kosteloos informatie verstrekken betreffende de persoonsgegevens die wij over u verwerken.

    • Recht op rectificatie. Op uw verzoek zullen wij uw persoonsgegevens corrigeren, aanvullen, blokkeren of verwijderen in het geval dat deze feitelijk onjuist, onvolledig of irrelevant zijn voor het doel of doelen van de verwerking, of wanneer deze verwerkt worden op enige andere wijze die inbreuk maakt op een wettelijke bepaling.

    • Intrekken van uw toestemming. U kunt uw toestemming te allen tijde intrekken voor toekomstige verwerking door ons van uw persoonsgegevens, bijvoorbeeld onderaan elke nieuwsbrief.

    • Recht van verzet. U heeft het recht u te verzetten tegen de verwerking van uw betreffende persoonsgegevens voor marketingdoeleinden.

    • Recht op beperking. Indien van toepassing heeft u het recht van ons de beperking van de verwerking van uw persoonsgegevens te verkrijgen. Dit houdt in dat uw persoonsgegevens (tijdelijk) niet verwerkt en niet gewijzigd mogen worden.

    • Recht op gegevenswissing. Indien van toepassing zullen wij uw persoonsgegevens zonder onredelijke vertraging wissen (recht op vergetelheid).

    • Recht van bezwaar. Indien van toepassing, heeft u het recht om bezwaar te maken tegen de verwerking van uw betreffende persoonsgegevens op basis van onder andere de grondslag ‘gerechtvaardigd belang’ van Museum Boijmans Van Beuningen.

    • Recht op overdraagbaarheid van gegevens. Indien van toepassing zullen wij u een overzicht verstrekken van de persoonsgegevens die u aan ons heeft verstrekt zodat deze gegevens overgedragen kunnen worden aan een andere verwerkingsverantwoordelijke, een en ander voor zover dit technisch mogelijk is (dataportabiliteit).

    • Recht tot indienen klacht. Tot slot heeft u het recht om een klacht in te dienen bij de toezichthoudende autoriteit indien u van mening bent dat uw persoonsgegevens in strijd met deze privacyverklaring worden verwerkt.

      Inzage en wijzigen van uw gegevens

      Als u naar aanleiding van deze privacyverklaring contact met ons wilt opnemen of een van uw rechten wilt uitoefenen, dan kan dat via onderstaande gegevens:

      Telefonisch: 010 44.19.400 E-mail: info@boijmans.nl Post:

      Stichting tot Beheer Museum Boijmans Van Beuningen Museumpark 18-20

      3015 CX Rotterdam

      Om misbruik te voorkomen vragen wij u, bij een schriftelijk verzoek tot inzage, u adequaat te identificeren, door een kopie van een geldig legitimatiebewijs mee te sturen. Vergeet niet om uw BSN én uw pasfoto op de kopie af te schermen. U kunt hier bijvoorbeeld de ‘KopieID’ app voor gebruiken.

      Wijzigingen in deze privacyverklaring

      Wij kunnen deze privacyverklaring van tijd tot tijd wijzigen. Wijzigingen zullen op onze website worden gepubliceerd. Uw gegevens gebruik wij nooit zonder toestemming voor andere doeleinden.

      Het is daarom aan te raden om deze privacyverklaring geregeld te raadplegen, zodat u van deze wijzigingen op de hoogte bent.

      Autoriteit Persoonsgegevens

      Natuurlijk helpen wij u graag verder als u klachten heeft over de verwerking van uw persoonsgegevens. Mocht u er desondanks toch niet samen met ons uitkomen, dan heeft u op grond van de privacywetgeving ook het recht om een klacht in te dienen bij de privacy toezichthouder. U kunt hiervoor contact opnemen met de Autoriteit Persoonsgegevens.

      Inwerkingtreding

      Deze privacyverklaring is in werking getreden op 23 mei 2018.

      Lees meer:

    • Bezoekersvoorwaarden

  • Our Privacy Policy

    Last Updated: May 18, 2018

    Buffer provides this Privacy Policy to inform you of our policies and procedures regarding the collection, use, protection, and disclosure of Personal Information received from your use of this website, located at https://buffer.com (“Site”), as well as all related websites including our subdomains at https://reply.buffer.com and https://analyze.buffer.com, applications, browser extensions, and other services provided by us (collectively, together with the Site, our “Service”), and in connection with our customer, vendor, and partner relationships. This Privacy Policy also tells you about your rights and choices with respect to your Personal Information, and how you can reach us to update your contact information or get answers to questions you may have about our privacy practices.

    Registration with, use of, and access to the Service is subject to this Privacy Policy and our Terms of Use located at https://buffer.com/terms. All terms not defined in this Privacy Policy will have the meanings set forth in the Buffer Terms of Use.

    Click on one of the links below to obtain more information in the listed section:

    1. Personal Information We May Collect
    2. Personal Information Provided by You
      1. Personal Information Collected from Connected Social Media Accounts
      2. Personal Information Automatically Obtained from Your Interactions with the Service
    3. How We May Use Your Personal Information
    4. How We Share Your Personal Information
    5. How We Protect Your Personal Information
    6. Your Rights and Choices
    7. Data Transfers
    8. Children’s Privacy
    9. Updates to this Privacy Policy
    10. Your California Privacy Rights
    11. How to Contact Us

    1. PERSONAL INFORMATION WE MAY COLLECT

    For the purpose of this Privacy Policy, “Personal Information” means any information relating to an identified or identifiable individual. We obtain Personal Information relating to you from various sources described below.

    Where applicable, we indicate whether and why you must provide us with your Personal Information, as well as the consequences of failing to do so. If you do not provide Personal Information when requested, you may not be able to benefit from our Service if that information is necessary to provide you with the service or if we are legally required to collect it.

    2. PERSONAL INFORMATION PROVIDED BY YOU

    Registration. If you desire to have access to certain restricted sections of the Site or request to receive marketing materials, you may be required to become a registered user, and to submit the following types of Personal Information to Buffer: your name, email address, phone number, full user name, password, city, and time zone.

    Customer Support. We may collect information through your communications with our customer support team or other communications that you may send us and their contents.

    Making a Purchase. When you make payments through the Service, you will need to provide Personal Information such as your credit card number and billing address.

    Social Media. In order to allow you to post to your social media platforms, we may ask you to provide your username, account ids, social handle, timezones, and email address.

    Other. We may also collect your contact details when you provide them in the context of our customer, vendor, and partner relationships.

    2a. Personal Information Collected from Connected Social Media Accounts

    If you connect your third party social media account to your Buffer account, we may collect certain information stored in your social media account such as:

    Facebook Buffer may allow you to connect a Facebook page or profile to your Buffer account, in which case we will access certain information from Facebook regarding your account. In particular, we may collect profile image, display name, username / page ID or profile ID, access tokens, sent posts. This includes the content of your post and engagement data (such as click rates, likes, re-shares, impressions, as well as general engagement counts), to the extent permitted by applicable law. This data will only be used by Buffer to provide you with the Service you expect and will not be shared with any third parties.

    Twitter Buffer may allow you to connect a Twitter profile to your Buffer account, in which case we will access certain information from Twitter regarding your account. In particular, we may collect profile image, display name, username / profile ID, access tokens, and sent posts. This includes the content of your post and engagement data (such as click rates, likes, retweets, re-shares, impressions, as well as general engagement counts), to the extent permitted by applicable law. This data will only be used by Buffer to provide you with the Service you expect and will not be shared with any third parties.

    Instagram Buffer may allow you to connect an Instagram profile to your Buffer account, in which case we will access certain information from Instagram regarding your account. In particular, we may collect profile image, display name, username / profile ID, access tokens, and sent posts. This includes the content of your post and engagement data (such as click rates, likes, re-shares, impressions, as well as general engagement counts), to the extent permitted by applicable law. This data will only be used by Buffer to provide you with the Service you expect and will not be shared with any third parties.

    Pinterest Buffer may allow you to connect a Pinterest page or profile to your Buffer account, in which case we will access certain information from Pinterest regarding your account. In particular, we may collect profile image, display name, username / profile ID, access tokens, sent posts, and profile boards. This includes the content of your post and engagement data (such as click rates, likes, re-shares, re-pins, impressions, as well as general engagement counts), to the extent permitted by applicable law. This data will only be used by Buffer to provide you with the Service you expect and will not be shared with any third parties.

    LinkedIn Buffer may allow you to connect a LinkedIn profile to your Buffer account, in which case we will access certain information from LinkedIn regarding your account. In particular,
    we may collect profile image, display name, username / profile ID, access tokens, and sent posts. This includes the content of your post and engagement data (such as click rates, likes, re-shares, impressions, as well as general engagement counts), to the extent permitted by applicable law. This data will only be used by Buffer to provide you with the Service you expect and will not be shared with any third parties.

    Google+. Buffer may allow you to connect a Google+ page or profile to your Buffer account, in which case we will access certain information from Google regarding your account. In particular, we may collect profile image, display name, username / profile ID, access tokens, and sent posts. This includes the content of your post and engagement data (such as click rates, likes, re-shares, impressions, as well as general engagement counts), to the extent permitted by applicable law. This data will only be used by Buffer to provide you with the Service you expect and will not be shared with any third parties.

    Additionally, if you connect TwitterFacebook, or Instagram when utilizing Buffer Reply we may collect: profile image, display name, username / page ID, access tokens, sent or received comment text and sent or received private message text.

    Additionally, if you connect TwitterFacebook, or Instagram when utilizing Buffer Analyze we may collect: profile image, display name, username / handle, access tokens, social accounts insights data and social accounts demographic data, sent tweets, social account’s followers count, social account’s insights data and social account’s audience data.

    2b. Personal Information Automatically Obtained from Your Interactions with the Service

    Log Data. When you use our Service, our servers automatically record information that your browser sends whenever you visit a website (“Log Data”). This Log Data may include information such as your IP address, browser type or the domain from which you are visiting, the web-pages you visit, the search terms you use, and any advertisements on which you click.

    Cookies and Similar Technologies. Like many websites, we also use “cookie” technology to collect additional website usage data and to improve the Site and our Service. A cookie is a small data file that we transfer to your computer’s hard disk. A session cookie enables certain features of the Site and our service and is deleted from your computer when you disconnect from or leave the Site. A persistent cookie remains after you close your browser and may be used by your browser on subsequent visits to the Site. Persistent cookies can be removed by following your web browser help file directions. Most Internet browsers automatically accept cookies. Buffer may use both session cookies and persistent cookies to better understand how you interact with the Site and our Service, to monitor aggregate usage by our users and web traffic routing on the Site, and to improve the Site and our Service.

    We may also automatically record certain information from your device by using various types of technology, including “clear gifs” or “web beacons.” This automatically collected information may include your IP address or other device address or ID, web browser and/or device type, the web pages or sites that you visit just before or just after you use the Service, the pages or other content you view or otherwise interact with on the Service, and the dates and times that you visit, access, or use the Service. We also may use these technologies to collect information regarding your interaction with email messages, such as whether you opened, clicked on, or forwarded a message, to the extent permitted under applicable law.

    You can instruct your browser, by editing its options, to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit. Please note that if you delete, or choose not to accept, cookies from the Service, you may not be able to utilize the features of the Service to their fullest potential.

    Do Not Track
    Buffer does not process or respond to web browsers’ “do not track” signals or other similar transmissions that indicate a request to disable online tracking of users who use our Service.

    Third Party Web Beacons and Third Party Buttons
    We may display third-party content on the Service, including third-party advertising. Third-party content may use cookies, web beacons, or other mechanisms for obtaining data in connection with your viewing of the third party content on the Service. Additionally, we may implement third party buttons, such as Facebook “share” buttons, that may function as web beacons even when you do not interact with the button. Information collected through third-party web beacons and buttons is collected directly by these third parties, not by Buffer. Please consult such third party’s data collection, use, and disclosure policies for more information.

    Links to Other Websites
    Our Site contains links to other websites. The fact that we link to a website is not an endorsement, authorization or representation of our affiliation with that third party. We do not exercise control over third party websites. These other websites may place their own cookies or other files on your computer, collect data or solicit Personal Information from you. Other sites follow different rules regarding the use or disclosure of the Personal Information you submit to them. We are not responsible for the content, privacy and security practices, and policies of third-party sites or services to which links or access are provided through the Service. We encourage you to read the privacy policies or statements of the other websites you visit.

    3. HOW WE MAY USE YOUR PERSONAL INFORMATION

    We may use the Personal Information we obtain about you to:

    • create and manage your account, provide our Service, process payments, and respond to your inquiries;
    • manage account authentication such as two-factor authentication
    • communicate with you to verify your account and for informational and operational purposes, such as account management, customer service, or system maintenance, including by periodically emailing you service-related announcements;
    • tailor our Service (e.g., we may use cookies and similar technologies to remember your preferences);
    • publish your content, comments or messages on social media platforms;
    • provide tailored advertising, for Buffer services, via Google AdWords;
    • aggregate your Personal Information for analytical purposes;
    • provide customer support;
    • operate, evaluate and improve our business (including by developing new products and services; managing our communications; determining the effectiveness of our advertising; analyzing how the Service is being accessed and used; tracking performance of the Service; debugging the Service; facilitating the use of our Service);
    • send you marketing communications about products, services, offers, programs and promotions of Buffer, and affiliated companies;
    • ensure the security of our Service;
    • manage our customer, service provider and partner relationships;
    • enforce our agreements related to our Service and our other legal rights; and
    • comply with applicable legal requirements, industry standards and our policies.

    If you are located in the European Economic Area, we may process your Personal Information for the above purposes when:

    • you have consented to the use of your Personal Information, For example, we may seek to obtain your consent for our uses of cookies or similar technologies, or to send you marketing communications.
    • we need your Personal Information to provide you with services and products requested by you, or to respond to your inquiries,
    • we have a legal obligation to use your Personal Information, or
    • we have a legitimate interest in using your Personal Information. In particular, we have a legitimate interest in using your Personal Information to ensure and improve the safety, security, and performance of our Service, to anonymize Personal Information and carry out data analyses.

    4. HOW WE SHARE YOUR PERSONAL INFORMATION

    We may disclose the Personal Information we collect about you as described below or otherwise disclosed to you at the time the data is collected, including with:

    Social Media Platforms
    Our primary purpose for using information is to publish your content on social platforms, allow you to track metrics for analytical purposes, and engage with customers through public replies and conversations (direct messages or “DMs”). We may allow you to link your account on Buffer with an account on a third party social network platform, such as Twitter or Facebook, and to transfer your information to and from the applicable third party platform. Once you share your content to a social media platform, its use will be governed by that platform’s privacy policy.

    Service Providers
    We engage certain trusted third parties to perform functions and provide services to us, including hosting and maintenance, error monitoring, debugging, performance monitoring, billing, customer relationship, database storage and management, and direct marketing campaigns. We may share your Personal Information with these third parties, but only to the extent necessary to perform these functions and provide such services. We also require these third parties to maintain the privacy and security of the Personal Information they process on our behalf.

    Compliance with Laws and Law Enforcement
    Buffer cooperates with government and law enforcement officials or private parties to enforce and comply with the law. To the extent permitted under applicable law, we may disclose any information about you to government or law enforcement officials or private parties as we believe is necessary or appropriate to investigate, respond to, and defend against claims, for legal process (including subpoenas), to protect the property and rights of Buffer or a third party, to protect Buffer against liability, for the safety of the public or any person, to prevent or stop any illegal, unethical, fraudulent, abusive, or legally actionable activity, to protect the security or integrity of the Service and any equipment used to make the Service available, or to comply with the law.

    Business Transfers
    Buffer may sell, transfer or otherwise share some or all of its assets, including Personal Information, in connection with a merger, acquisition, reorganization, sale of assets, or similar transaction, or in the event of insolvency or bankruptcy. You will have the opportunity to opt out of any such transfer if the new entity’s planned processing of your information differs materially from that set forth in this Privacy Policy.

    Other Third Parties
    We may share Personal Information with our headquarters and affiliates, and business partners to whom it is reasonably necessary or desirable for us to disclose your data for the purposes described in this Privacy Policy. We may also make certain non-Personal Information available to third parties for various purposes, including for business or marketing purposes or to assist third parties in understanding our users’ interest, habits, and usage patterns for certain programs, content, services, advertisements, promotions, and functionality available through the Service.

    5. HOW WE PROTECT YOUR PERSONAL INFORMATION

    Buffer is very concerned about safeguarding the confidentiality of your Personal Information. We employ administrative and electronic measures designed to appropriately protect your Personal Information against accidental or unlawful destruction, accidental loss, unauthorized alteration, unauthorized disclosure or access, misuse, and any other unlawful form of processing of the Personal Information in our possession. Please be aware that no security measures are perfect or impenetrable. We cannot guarantee that information about you will not be accessed, viewed, disclosed, altered, or destroyed by breach of any of our administrative, physical, and electronic safeguards, subject to requirements under applicable law to ensure or warrant information security.

    We will make any legally-required disclosures of any breach of the security, confidentiality, or integrity of your unencrypted electronically stored Personal Information to you via email or conspicuous posting on our Site in the most expedient time possible and without unreasonable delay, consistent with (i) the legitimate needs of law enforcement or (ii) any measures necessary to determine the scope of the breach and restore the reasonable integrity of the data system , and any other disclosures that may be required under applicable law.

    We also take measures to delete your Personal Information or keep it in a form that does not permit identifying you when this information is no longer necessary for the purposes for which we process it, unless we are required by law to keep this information for a longer period. When determining the retention period, we take into account various criteria, such as the type of products and services requested by or provided to you, the nature and length of our relationship with you, possible re-enrollment with our products or services, the impact on the services we provide to you if we delete some information from or about you, mandatory retention periods provided by law and the statute of limitations.

    6. YOUR RIGHTS AND CHOICES

    If you decide at any time that you no longer wish to receive such marketing communications from us, please follow the unsubscribe instructions provided in any of the communications. You may also opt out from receiving commercial email from us by sending your request to us by email at hello@buffer.com. Please be aware that, even after you opt out from receiving commercial messages from us, you will continue to receive administrative messages from us regarding the Service.

    In certain jurisdictions you have the right to request access and receive information about the Personal Information we maintain about you, to update and correct inaccuracies in your Personal Information, to restrict or object to the processing of your Personal Information, to have the information blocked, anonymized or deleted, as appropriate, or to exercise your right to data portability to transfer your Personal Information to another company. Those rights may be limited in some circumstances by local law requirements. In addition to the above-mentioned rights, you also have the right to lodge a complaint with a competent supervisory authority subject to applicable law.

    Where required by law, we obtain your consent for the processing of certain Personal Information collected by cookies or similar technologies, or used to send you direct marketing communications, or when we carry out other processing activities for which consent may be required. If we rely on consent for the processing of your Personal Information, you have the right to withdraw it at any time and free of charge. When you do so, this will not affect the lawfulness of the processing before your consent withdrawal.

    To update your preferences, ask us to remove your information from our mailing lists, delete your account or submit a request to exercise your rights under applicable law, please contact us as specified in the “How to Contact Us” section below.

    7. DATA TRANSFERS

    Buffer is based in the United States. Personal Information that we collect may be transferred to, and stored at, any of our affiliates, partners or service providers which may be inside or outside the European Economic Area (“EEA”) and Switzerland, including the United States. By submitting your personal data, you agree to such transfers. Your Personal Information may be transferred to countries that do not have the same data protection laws as the country in which you initially provided the information. When we transfer or disclose your Personal Information to other countries, we will protect that information as described in this Privacy Policy.

    8. CHILDREN’S PRIVACY

    The Site is not directed to persons under 16. If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us at hello@buffer.com. We do not knowingly collect Personal Information from children under 16. If we become aware that a child under 16 has provided us with Personal Information, we will delete such information from our files.

    9. UPDATES TO THIS PRIVACY POLICY

    This Privacy Policy may be updated from time to time for any reason; each version will apply to information collected while it was in place. We will notify you of any modifications to our Privacy Policy by posting the new Privacy Policy on our Site and indicating the date of the latest revision. You are advised to consult this Privacy Policy regularly for any changes.

    In the event that the modifications materially alter your rights or obligations hereunder, we will make reasonable efforts to notify you of the change. For example, we may send a message to your email address or generate a pop-up or similar notification when you access the Service for the first time after such material changes are made. Your continued use of the Service after the revised Privacy Policy has become effective indicates that you have read, understood and agreed to the current version of this Privacy Policy.

    10. YOUR CALIFORNIA PRIVACY RIGHTS

    Residents of California have the right to request a disclosure describing what types of personal information we have shared with third parties for their direct marketing purposes, and with whom we have shared it, during the preceding year. You may request a copy of that disclosure by contacting us at hello@buffer.com.

    11. HOW TO CONTACT US

    Buffer Inc. is the entity responsible for the processing of your Personal Information. If you have any questions or comments regarding this Privacy Policy, or if you would like to exercise your rights to your Personal Information, you may contact us by emailing us at hello@buffer.com or by writing to us at:

    Buffer Inc
    2443 Fillmore St #380-7163
    San Francisco, CA 94115

    This Privacy Policy is effective as of May 18, 2018.
    If you have any thoughts or questions about this Privacy Policy please let us know.

  • CATAWIKI PRIVACYVERKLARING

    117123150.249275284

    Catawiki verwerkt persoonsgegevens van Gebruikers die ons Online Platform bezoeken en gebruik maken van onze Dienst. In deze Privacy Policy informeren wij u graag over welke gegevens wij verwerken en waarom. Catawiki B.V. is de verantwoordelijke met betrekking tot de verwerking van uw persoonsgegevens. Lees deze informatie aandachtig door zodat u begrijpt hoe wij gegevens verwerken en wat uw rechten daarbij zijn.

    U kunt aanvullende informatie vinden over het gebruik van Cookies in onze Cookieverklaring. Woorden die met een hoofdletter beginnen, zijn gedefinieerd in de Gebruiksvoorwaarden. Daar vindt u ook een uitgebreide omschrijving van de Dienst.

    1. Wat voor soort informatie gebruikt Catawiki?

      Er zijn twee algemene categorieën van informatie die we verzamelen en / of naar vragen.

      Informatie die u ons geeft

      We verwerken gegevens die we van u ontvangen. Bijvoorbeeld wanneer u zich registreert als Gebruiker of wanneer u contact opneemt met onze klantenservice.

      Account informatie. Als u wilt kopen of verkopen op ons Online Platform, dient u een Account aan te maken. Dit doet u door een wachtwoord te kiezen en uw e-mailadres in te voeren. U kunt ook een Catawiki-account aanmaken via een sociale media-account, zoals Facebook. We zullen dan basisinformatie verkrijgen die is ontvangen en bijgehouden door dat social media-account, zoals uw e-mailadres. We ontvangen mogelijk ook informatie over uw statusupdates en de content die u heeft bekeken of op heeft geklikt met dat social media-account. U kunt deze gegevens beheren via de privacy-instellingen van de relevante social media-website.

      Profiel informatie. Om het mogelijk te maken voor ons om onze diensten aan te bieden en voor u om gebruik te maken van onze diensten, zullen wij u vragen om bepaalde informatie te verstrekken, zoals uw volledige naam, e-mailadres, telefoonnummer, adres, geboortedatum, bankrekeningnummer en, indien van toepassing, het btw-nummer en Kamer van Koophandel nummer van uw bedrijf. Deze informatie hebben wij nodig om contact met u op te nemen maar ook om ervoor te zorgen dat kavels kunnen worden verzonden of opgehaald en dat u betalingen of terugbetalingen kunt ontvangen.

      Communicatie informatie. Wanneer u contact opneemt met onze Klantenservice of wanneer zij met u contact opnemen, verzamelen wij informatie over de reden van dit contact en alle informatie die u aan ons verstrekt via de telefoon of e-mail. Dit omvat ook alle meldingen die we van anderen ontvangen over u of de door u aangeboden of gekochte kavels. Via ons Online Platform kunt u ook communiceren met andere Gebruikers. We kunnen dergelijke communicatie beoordelen, scannen of analyseren voor fraudepreventie, risicobeoordeling, onderzoek en klantenservice doeleinden.

      Verificatie informatie. Als u kavels wilt verkopen, wordt u mogelijk gevraagd om een scan of foto van een geldig legitimatiebewijs (door de overheid uitgegeven identiteitsbewijs met pasfoto). De informatie over uw bewijs van identificatie, die duidelijk ten minste uw volledige naam, geboortedatum en ID (document) nummer laat zien, is vereist door de externe betalingsverwerker, genaamd Stripe. Stipe verwerkt betalingen die via ons Online Platform gaan. Stripe is volgens financiële regelgeving verplicht om uw identiteit te verifiëren. Stripe fungeert bij het uitvoeren van de diensten als een ‘verwerker’ voor Catawiki. Als betalingsservice heeft Stripe echter ook eigen verplichtingen met betrekking tot uw persoonsgegevens. Stripe kan daarom ook worden

      beschouwd als een ‘verantwoordelijke’ met betrekking tot uw gegevens. Voor elke gegevensverwerking waarbij Stripe als verantwoordelijke wordt gezien, is het Privacybeleid van Stripe van toepassing.

      Andere informatie. We kunnen u vragen om ons feedback te geven over onze Dienst via een e-mail of online enquête. We stellen feedback zeer op prijs en verwerken alleen persoonsgegevens (zoals uw e-mailadres of User ID), die mogelijk door ons of onze serviceprovider worden verzameld voor interne analytische doeleinden om onze Diensten te verbeteren.

      Informatie die we automatisch verzamelen

      Wanneer u van ons Online Platform gebruikmaakt, verzamelen we informatie over uw activiteiten, zoals uw klikgedrag, geplaatste biedingen en informatie over uw apparaat om u de best mogelijke service te bieden.

      Gebruiksinformatie. We houden interesseprofielen, kwalificaties en kenmerken van Gebruikers bij, zodat we weten wat voor soort Gebruiker u bent, uw locatie en welke kavels u leuk vindt.

      Dergelijke informatie stelt ons in staat om te ontdekken wat u interesseert en om onze Dienst voor u te personaliseren. Op basis van uw browsegedrag kunnen we u bijvoorbeeld gerichte

      marketing-e-mails aanbieden. Als u dergelijke e-mails niet wenst te ontvangen, kunt u zich afmelden via de link in uw e-mail of door uw accountinstellingen aan te passen.

      Loggegevens. We verzamelen automatisch bepaalde informatie die door uw internetbrowser wordt verzonden wanneer u van ons Online Platform gebruikmaakt, zelfs als u geen Account heeft aangemaakt of bent ingelogd. Deze informatie omvat onder andere: details over de manier waarop u van ons Platform gebruik maakt (inclusief links voor toepassingen van derden), IP-adres, bezoektijden, hardware- en software-informatie en informatie over het apparaat dat u heeft gebruikt.

      Transactie informatie. We houden transactie- en betalingsgegevens bij met betrekking tot Koopovereenkomsten. Dit kan uitgebreider zijn dan het beknopte overzicht dat u in uw account kunt zien.

      Cookies. We gebruiken ook cookies (kleine tekstbestanden die door uw computer worden verzonden telkens wanneer u ons Online Platform bezoekt) of technieken die vergelijkbaar zijn met cookies zoals mobiele advertentie-ID-nummers op onze (mobiele) website en app. Deze technieken stellen ons onder andere in staat u te herkennen, uw taalvoorkeuren en instellingen op te slaan en uw toegang tot het Online Platform op onze website en onze app te versnellen. Meer informatie over hoe en waarom we cookies gebruiken vindt u in onze Cookieverklaring.

    2. Voor welke doeleinden gebruikt Catawiki de informatie?

      Hieronder kunt u lezen voor welke doeleinden Catawiki deze informatie gebruikt.

      De levering van onze Diensten

      Wij gebruiken uw gegevens ten eerste om aan onze contractuele verplichtingen jegens u te voldoen en om ervoor te zorgen dat onze Dienst op de best mogelijke manier aan u wordt geboden. In dit verband gebruiken we uw gegevens om:

      • u in staat te stellen om van ons Online Platform gebruik te maken, inclusief de betaalfuncties
      • het Online Platform in een formaat te tonen dat overeenkomt met uw internetbrowser en het apparaat dat u gebruikt
      • klantenservice te bieden via verschillende kanalen, zoals e-mail en telefoon
      • u statusupdates, facturen en / of betalingsherinneringen te sturen per e-mail, sms, WhatsApp, of andere directe berichten of pushmeldingen
      • onze interne administratie op orde te houden

        Het bieden, personaliseren, meten en verbeteren van onze advertenties en marketing

        We willen ons Online Platform aantrekkelijk maken voor al onze Gebruikers. Daarom is het in ons (gerechtvaardigd) belang om te achterhalen waar u op klikt en wat u van onze Dienst vindt. Met deze reden verwerken we uw gegevens om:

      • suggesties (zoals interessante Kavels) en gerichte advertenties (op andere websites) op basis van uw activiteiten op ons Online Platform te tonen
      • u over over extra diensten, evenementen, aanbiedingen, promoties en voordelen te informeren
      • contact te houden via e-mail, telefoon of sms (of een andere directe berichtenservice) of voor het beantwoorden van uw vragen
      • u uit te nodigen feedback te geven over onze Dienst
      • geanonimiseerde statistische informatie op te stellen die we gebruiken voor doelgroep- en marktanalyses en voor het verbeteren van de navigatie op ons Online Platform

        Om onze Dienst- en marketingactiviteiten te optimaliseren maken we gebruik van cross-device tracking via een User-ID-nummer (User-ID) dat tijdens de registratie aan u wordt toegewezen. Deze User-ID is een unieke en aanhoudende reeks nummers die u als gebruiker van het Online Platform representeert. Cross-device tracking stelt ons in staat uw surfgedrag op meerdere apparaten die met elkaar zijn gekoppeld te volgen en deze gegevens te combineren om u gepersonaliseerde content aan te bieden op deze apparaten. Bijvoorbeeld, we kunnen u gepersonaliseerde content tonen op ons Online Platform op uw computer op basis van uw gedrag op onze mobiele applicatie. De manier waarop uw apparaten deze gegevens delen, kunt u aanpassen via de privacy- en beveiligingsinstellingen van elk afzonderlijk apparaat.

        Een vertrouwd en veilig Online Platform bieden en onderhouden

        Uiteraard is het ook in ons gerechtvaardigd belang om een vertrouwd en veilig Online Platform te bieden en te onderhouden. We kunnen uw gegevens ook verwerken en opslaan om te voldoen aan wettelijke verplichtingen. Om deze redenen verwerken wij persoonsgegevens voor het:

      • voorkomen, opsporen en tegengaan van fraude of anderszins onrechtmatig gebruik van ons Online Platform of Dienst
      • registreren, bemiddelen en oplossen van mogelijke geschillen of onregelmatigheden
      • voldoen aan onze wettelijke verplichtingen, zoals het bijhouden van gegevens en het naleven van regels in het kader van strafrechtelijke of andere onderzoeken door bevoegde autoriteiten
      • handhaven van onze Algemene Voorwaarden en ander beleidslijnen
      • gebruiken van voorspellingsmodellen, op basis waarvan we kunnen besluiten om een vorm van betalingszekerheid te vragen of om uw bod of betaling tegen te houden. We gebruiken bijvoorbeeld uw bied-, koop- of verkoopgeschiedenis en locatie om de kans te voorspellen dat een koopovereenkomst wordt geannuleerd. Op basis van de uitkomst van het model kunnen we u vragen om, als veiligheidsmaatregel, uw creditcard te verifiëren voordat u een bod uitbrengt.

    3. Wanneer wordt informatie aan derden verstrekt?

      Als u kavels koopt of verkoopt

      Wanneer u Kavels koopt of verkoopt op het Online Platform, kunnen andere Gebruikers toegang krijgen tot gegevens zoals uw naam, adres en telefoonnummer, omdat dit nodig kan zijn voor het

      uitvoeren of afronden van de transactie (inclusief levering). Als u bijvoorbeeld een Koopovereenkomst sluit met een andere Gebruiker, wordt uw adres verstrekt voor het regelen van het ophalen of verzenden van Kavels. We kunnen dergelijke of andere gegevens, zoals uw e-mailadres, ook aan een Gebruiker verstrekken in geval van problemen tussen u en deze Gebruiker.

      Met uw toestemming

      We kunnen uw gegevens ook aan anderen verstrekken als u daarmee heeft ingestemd. Bijvoorbeeld wanneer een andere Gebruiker u direct terug wilt betalen. In die situaties vragen we om uw toestemming om uw financiële gegevens met die Gebruiker te delen.

      Wanneer bepaalde diensten worden aangeboden door externe serviceproviders

      We kunnen ook verwerkers inschakelen. Dit zijn derden die diensten voor ons uitvoeren en in dat kader ook persoonsgegevens verwerken. Verwerkers kunnen ons bijvoorbeeld betalings-, advertentie-, klant- of verkoop ondersteunende diensten bieden, ons ondersteunen bij het verzenden van e-mails of het analyseren van feedback en ons helpen bij het beveiligen van het Online Platform tegen fraude.

      Verwerkers hebben de plicht tot geheimhouding en mogen de specifieke gegevens alleen gebruiken voor het leveren van diensten aan ons op onze instructies.

      Voor een veilige betaling gebruiken we Stripe als externe betalingsdienst. We gebruiken Stripe om de meeste betalingen aan ons en aan andere gebruikers te verwerken. In dat geval worden uw betalingsgegevens, zoals uw naam, bankrekeningnummer, geboortedatum en, indien van toepassing, Kamer van Koophandel en btw-identificatienummer via een versleutelde verbinding naar Stripe verzonden. Stripe gebruikt en verwerkt dergelijke informatie in overeenstemming met het Privacybeleid van Stripe.

      Derden aan wie wij uw gegevens verstrekken kunnen zich buiten de Europese Economische Ruimte bevinden of zij kunnen servers gebruiken die zich buiten de Europese Economische Ruimte bevinden. Het beschermingsniveau kan in die landen lager zijn dan in de Europese Economische Ruimte. In dergelijke gevallen en waar nodig zullen wij ervoor zorgen dat er een wettelijke basis is voor een dergelijke overdracht en dat een adequate bescherming van uw gegevens wordt geboden, zoals vereist door de toepasselijke wetgeving, bijvoorbeeld door standaardovereenkomsten te gebruiken die zijn goedgekeurd door relevante autoriteiten en door het gebruik te vereisen van andere geschikte technische en organisatorische informatiebeveiligingsmaatregelen.

      We gebruiken ook derden om u banners van Catawiki op andere websites te laten zien. Deze partijen gebruiken cookies om u inhoud te tonen die u interesseert. Zie onze Cookieverklaring. Verder kunt u op ons Online Platform knoppen vinden van Pinterest, Instagram of andere sociale platforms. Wanneer u hierop klikt, kan het relevante platform deze activiteit registreren om uw ervaring op het sociale platform te verbeteren.

      Wanneer we (wettelijk) verplicht zijn of voor de handhaving van onze Algemene Voorwaarden We kunnen uw gegevens ook bekendmaken aan derden:

      • als wij ons daartoe verplicht voelen, bijvoorbeeld in geval van geschillen of als uw Gebruikersmateriaal kennelijk onrechtmatig is
      • om te voldoen aan wettelijke verplichtingen, zoals gerechtelijke bevelen
      • om samen te werken met autoriteiten zoals de politie of belastingautoriteiten
      • om de Algemene Voorwaarden van Catawiki te handhaven

    4. Hoe beveiligen we uw informatie en hoe lang bewaren we de informatie?

      We nemen beveiliging van uw gegevens serieus en hebben beveiligingsprocedures en technische beperkingen om uw gegevens te beschermen tegen ongeoorloofde toegang, vernietiging of wijziging. Naast de beveiligingsmaatregelen aan onze kant, zoals de versleuteling van uw gegevens, raden we u aan om zorgvuldig een wachtwoord te selecteren en ervoor te zorgen dat uw inloggegevens geheim blijven.

      We bewaren uw persoonsgegevens voor zo lang deze nodig zijn voor het doel waarvoor ze zijn verzameld of gebruikt worden, tenzij een langere bewaartermijn vereist of toegestaan is volgens de wet. Na de betreffende periode, zullen wij uw informatie verwijderen of anonimiseren.

    5. Hoe kunt u uw informatie beheren?

      U kunt de informatie die aan uw Account is gekoppeld, aanpassen door naar uw accountinstellingen te gaan.

      Indien u wilt weten welke gegevens wij van u hebben, kunt u ons vragen u een overzicht te verstrekken. Ook kunt u ons vragen uw persoonsgegevens te verwijderen. U kunt dit doen door een e-mail te sturen naar privacy@catawiki.com. Geef in het onderwerp aan of het om een toegang- of

      verwijderingsverzoek gaat. Hierdoor kunnen we u sneller helpen. Houd er rekening mee dat Catawiki u om aanvullende informatie kan vragen om uw identiteit te bepalen, zoals een kopie van uw identiteitsbewijs. Bovendien willen we u laten weten dat we bepaalde informatie mogelijk moeten bewaren om te voldoen aan de nationale wet- of regelgeving (bijvoorbeeld om te voldoen aan toepasselijke belastingwetgeving), om fraude te voorkomen en te bestrijden, om eventuele geschillen op te lossen en om onze Algemene Voorwaarden te handhaven. Bovendien kunt u in bepaalde gevallen bezwaar maken tegen bepaalde verwerkingen of ons vragen om bepaalde verwerkingen tijdelijk stop te zetten.

      Wanneer u ons toestemming heeft gegeven voor bepaald gebruik van uw gegevens door ons, bijvoorbeeld voor het verzenden van marketing e-mails, kunt u eenvoudig uw toestemming intrekken. U kunt dit doen via uw Account of door op ‘afmelden’ in een e-mail te klikken.

    6. Wat moet u doen in het geval van privacyschending?

      Als u denkt dat we uw rechten hebben geschonden, verzoeken wij u vriendelijk om ons hiervan op de hoogte te stellen door een e-mail te sturen naar privacy@catawiki.nl. Dit stelt ons in staat om de situatie zo snel mogelijk te onderzoeken. U kunt ook een klacht indienen bij de relevante nationale toezichthoudende autoriteit.

    7. Kan dit privacybeleid worden gewijzigd?

      Catawiki is te allen tijde gerechtigd dit Privacybeleid te wijzigen of aan te vullen door een gewijzigde Privacybeleid op het Online Platform te publiceren. Het meest actuele Privacybeleid is te vinden op het Online Platform. Indien een wijziging of aanvulling uw rechten of verplichtingen op significante wijze beïnvloedt, zullen wij uw hiervan door middel van een e-mail op de hoogte brengen. De Engelse versie van ons Privacybeleid is de originele versie, alle andere andere talen zijn slechts vertalingen. In geval van tegenstrijdigheden, zal de Engelse versie voorrang hebben.

    8. Contact

    Als u vragen heeft over dit Privacybeleid, kunt u op elk moment contact met ons opnemen via de volgende contactgegevens:

    Catawiki B.V. Overcingellaan 5

    9401 LA Assen Nederland

    E – privacy@catawiki.com T – +31 85 2080 260

  • PRIVACYVERKLARING VAN CHEAPTICKETS.NL

    Dit is de privacyverklaring van Cheaptickets.nl. In deze privacyverklaring leggen wij uit hoe wij jouw persoonsgegevens verzamelen en gebruiken.

    Voor het laatst bijgewerkt: mei 2018

    1. Wanneer is deze privacyverklaring van toepassing?

    2. Wie is verantwoordelijk voor je gegevens?

    3. Welke gegevens verzamelen wij en hoe?

    4. Hoe gebruiken wij je gegevens?

    5. Welke derden hebben toegang tot je gegevens?

    6. Hoe beveiligen wij je gegevens en hoe lang bewaren wij deze?

    7. Hoe kan je je wettelijke rechten uitoefenen?

    1. Wanneer is deze privacyverklaring van toepassing?

      Deze privacyverklaring is van toepassing op alle persoonsgegevens die wij verzamelen, gebruiken, delen en opslaan over jou wanneer je een vliegticket bij ons boekt, onze website bezoekt of wanneer je contact met ons hebt.

      Onze website bevat links naar websites van derden. Deze privacyverklaring is niet van toepassing op het verzamelen van gegevens via de genoemde websites en wij zijn daar ook niet verantwoordelijk voor. Zie het privacybeleid van de desbetreffende website (indien aanwezig) voor meer informatie.

      Deze privacyverklaring is voor het laatst gewijzigd in mei 2018 en vervangt alle eerdere versies. Wij kunnen deze privacyverklaring van tijd tot tijd wijzigen en je over eventuele wijzigingen informeren door de gewijzigde verklaring op deze website te publiceren en je te informeren per e-mail voordat deze wijzigingen van kracht worden.

    2. Wie is verantwoordelijk voor je gegevens?

      CheapTickets.nl zoekt al vele jaren de meest voordelige vliegtickets voor jou. We vergelijken vliegtickets van meer dan 800 luchtvaartmaatschappijen van meer dan 9000 bestemmingen wereldwijd. Zoek op een gemakkelijke manier je tickets, vergelijk de prijzen en boek jouw vlucht. Een hotel of huurauto bij je vliegticket? Ga voor meer informatie naar onze website

      CheapTickets.nl is een merknaam van Travix. Travix is het grootste, Nederlandse online reisbureau met vijf onafhankelijke websites: CheapTickets.nl, Vliegwinkel, BudgetAir, Flugladen en Vayama. Ga voor meer informatie naar de website van Travix.

      Travix Nederland B.V., gevestigd aan de Piet Heinkade 55 in Amsterdam, is verantwoordelijk voor het verzamelen en gebruiken van jouw persoonsgegevens zoals nader beschreven in deze privacyverklaring. Als je vragen, opmerkingen of klachten hebt over het gebruik van je persoonsgegevens door Travix, neem dan contact op met onze klantenservice.

    3. Welke gegevens verzamelen wij en hoe?

      We verzamelen vijf categorieën persoonsgegevens van en over jou: (1) naam en contactgegevens, (2) boekingsgegevens, (3) gegevens die we vastleggen als je contact hebt met onze klantenservice, (4) gegevens die we vastleggen wanneer je onze website bezoekt of nieuwsbrief leest en (5) social- mediagegevens.

      1. Naam en contactgegevens

        Dit zijn de gegevens die zelf invoert als je een vliegticket boekt, zoals je voor- en achternaam, geboortedatum, adres en woonplaats en je telefoonnummer en e-mailadres.

        Wanneer je een Mijn Reis-account aanmaakt, dan registreren we je inloggegevens en andere informatie die je invoert of wijzigt in je account.

        Als je zakelijk reist, dan kun je tijdens het boeken je bedrijfsnaam invoeren.

        Als je met iemand anders reist, verzamelen we ook een deel van de in deze paragraaf beschreven gegevens van je medereizigers.

      2. Boekingsgegevens

        Boekingsgegevens zijn de gegevens over het vliegticket dat je bij ons hebt gekocht., bijvoorbeeld vluchtinformatie (vluchtdatum, bestemming, prijs, etc.), gegevens over het hotel dat je hebt geboekt (aantal nachten, type kamer, prijs etc.) of de auto die je hebt gehuurd (type auto, prijs etc.). We leggen ook vast welke eventuele extra diensten je hebt gekocht, zoals een vliegticketgarantie, reisverzekering, servicepakket, extra bagage of een parkeerplek op Schiphol.

        Om een vliegticket te kunnen boeken hebben we voor bepaalde bestemmingen je paspoortnummer nodig. Je kunt ook klantnummers van derden invoeren (zoals je frequent flyer nummer) als je in aanmerking wilt komen voor de hieraan verbonden privileges of andere voordelen. Met jouw toestemming slaan we deze nummers en je reisvoorkeuren (bijvoorbeeld of je privé of zakelijk reist en wat je favoriete luchthaven is) op in je Mijn Reis-account.

        Wanneer je een vliegticket hebt besteld, word je doorgeleid naar de betaalomgeving om je bestelling af te ronden. Om de betaling te voltooien moet je jouw betaalgegevens in te vullen, bijvoorbeeld een bankrekening- of creditcardnummer.

        Via onze website kun je aangeven of je speciale bagage mee wilt nemen op je vlucht, bijvoorbeeld medische bagage of een rolstoel. Deze gegevens worden op grond van privacywetgeving beschouwd als gevoelig, omdat ze betrekking hebben op je gezondheid. Door het invoeren van deze types gegevens ga je ermee akkoord, dat wij deze gegevens verzamelen, gebruiken en met derden voor de in paragraaf 4 beschreven doelen.

      3. Gegevens die we verzamelen als je contact hebt met onze klantenservice

        Wanneer je via e-mail, WhatsApp, social media of telefonisch contact hebt met onze klantenservice, dan leggen we deze contactmomenten vast in onze systemen. Wij kunnen telefoongesprekken opnemen met het oog op trainingsdoeleinden of om fraude te voorkomen of te bestrijden.

      4. Gegevens die we verzamelen wanneer je onze website gebruikt of onze nieuwsbrief leest

        Wanneer je onze website bezoekt, registreren we onder meer je IP-adres, browsertype en surfgedrag. We registreren bijvoorbeeld of je zoekt naar Europese bestemmingen of juist daarbuiten. We verzamelen deze informatie ook via cookies, scripts, pixel tags en vergelijkbare technologieën. Zie ons cookiestatement voor meer informatie. Als je een nieuwsbrief van ons ontvangt, leggen wij vast wanneer je deze nieuwsbrief opent of wanneer je op een link klikt.

      5. Social-mediagegevens

        Afhankelijk van de instellingen van jouw social network kunnen wij informatie ontvangen van de aanbieder van de genoemde dienst. Als je bijvoorbeeld een Mijn Reis-account aanmaakt via je Facebook- of Google- account, dan kunnen we een deel van jouw publieke social-mediaprofiel ontvangen, inclusief je gebruikersnaam, profielfoto, “likes” en vrienden. Ook wanneer je met ons communiceert via onze social- mediapagina’s (bijvoorbeeld als je een opmerking plaatst, een foto uploadt of op de “like” knop klikt) kunnen wij deze gegevens ontvangen. Zie het privacybeleid van je social-media-aanbieder voor meer informatie over de persoonsgegevens die wij ontvangen en hoe je jouw instellingen kunt wijzigen.

        We verzamelen bovenstaande gegevens op drie manieren: (1) we leggen de gegevens vast die je zelf invoert als je een vliegticket boekt, een Mijn Reis account aanmaakt of contact hebt met onze klantenservice, (2) we leggen automatisch gegevens vast wanneer je op onze website surft, een nieuwsbrief opent of als je via social media met ons communiceert en (3) we ontvangen gegevens over jou van Travix groepsmaatschappijen, social-medianetwerken en onze partners, bijvoorbeeld Booking.com.

    4. Hoe gebruiken wij je gegevens?

      CheapTickets.nl gebruikt jouw gegevens voor vier doeleinden: (1) voor het leveren van onze diensten en om contact met je te onderhouden, (2) voor onderzoek om onze diensten te verbeteren, (3) voor direct marketing gebaseerd op jouw voorkeuren en gedrag en (4) voor onze administratie en het voldoen aan wet- en regelgeving.

      1. Voor het leveren van onze diensten en om contact met je te onderhouden

        Als je een vliegticket boekt, gebruiken we daarvoor de in paragraaf 3 beschreven gegevens. Jouw naam, paspoortnummer en andere persoonsgegevens gebruiken we bijvoorbeeld om het e-ticket af te geven en je hotel of auto te reserveren. Je frequent-flyernummer geven we door aan je luchtvaartmaatschappij, zodat zij gespaarde punten kunnen boeken op je account.

        Jouw medische gegevens (zoals een aangevraagde rolstoel) verstrekken we alleen aan de luchtvaartmaatschappij, zodat zij jou de gevraagde zorg kunnen geven. We gebruiken deze gegevens niet voor andere doeleinden.

        Wij gebruiken jouw contactgegevens om met je te kunnen communiceren. Denk hierbij bijvoorbeeld aan het versturen van je e-ticket of om je per mail te waarschuwen dat je kunt inchecken bij je luchtvaartmaatschappij. We gebruiken jouw contactgegevens ook om je vragen te beantwoorden als je contact hebt met onze klantenservice.

        Wij gebruiken jouw betaalgegevens voor het afhandelen van je betaling. Onze fraudeafdeling controleert samen met onze betaalprovider of er sprake is van een frauduleuze boeking waarbij bijvoorbeeld gebruik wordt gemaakt van een gestolen of geblokkeerde creditcard.

      2. Voor onderzoek om onze diensten te verbeteren

        Wij doen onderzoek naar trends met betrekking tot de manier waarop bezoekers en klanten gebruik maken van onze diensten, website, klantenservice en social media. We doen dit om inzicht te krijgen in het gedrag en de voorkeuren van onze bezoekers en klanten, zodat we daarmee onze diensten, de content op onze website en onze klantenservice kunnen verbeteren. We gebruiken deze inzichten ook om nieuwe diensten te ontwikkelen.

        Voor dit onderzoek gebruiken we automatische tools waarmee we de in paragraaf 3 beschreven gegevens analyseren, met inbegrip van je boekingsgegevens, extra diensten die je hebt gekocht en informatie over jou (zoals geslacht en je woonplaats). Namen, e-mailadressen of andere informatie die herleid kunnen worden tot specifieke personen worden niet geanalyseerd, aangezien wij alleen geïnteresseerd zijn in algemene trends. Ook maken we geen gebruik van bijzondere gegevens. Wij kunnen de geanalyseerde gegevens ook combineren met gegevens die wij verzamelen met cookies en vergelijkbare technologieën wanneer u onze website bezoekt of informatie die wij van groepsmaatschappijen of uit andere bronnen ontvangen.

      3. Voor direct marketing gebaseerd op jouw voorkeuren en gedrag

        We gebruiken jouw gegevens om je nieuwsbrieven, aanbiedingen of andere promotionele berichten te sturen. Wij doen dit via e-mail en andere digitale kanalen, zoals apps en social media.

        Om deze berichten te kunnen aanpassen aan jouw voorkeuren en gedrag analyseren en combineren wij je gegevens. We gebruiken hiervoor automatische tools die jouw gegevens die opgeslagen zijn in ons datamanagementplatform analyseren. Hiervoor gebruiken wij je boekingsgegevens, informatie over extra diensten die je hebt gekocht en informatie over jou (zoals geslacht, woonplaats en jouw vluchtvoorkeuren). We analyseren en combineren niet alleen naar de gegevens die je zelf hebt ingevoerd, maar ook gegevens die we verzamelen via cookies, scripts, pixel tags en soortgelijke technologieën (zie ons cookiestatement voor meer informatie), social media en als je contact hebt met onze klantenservice.

        In onze e-mails kunnen wij gepersonaliseerde aanbiedingen van Travix en onze partners met betrekking tot onze diensten en producten opnemen. Zo kunnen wij aanbiedingen opnemen voor onze eigen extra diensten (extra bagage of een verzekering) of voor autohuurdiensten en hotels die door derden worden aangeboden. Wij stemmen deze aanbiedingen af op jouw interesses.

        We gebruiken Custom Audiences van Facebook, DoubleClick en andere netwerken om je advertenties van CheapTickets.nl te laten zien wanneer het genoemde netwerk of een aangesloten website wordt bezocht. Daartoe kunnen we je e-mailadres of een andere identificerend gegeven aan (bijvoorbeeld) Facebook sturen, zodat deze kan controleren of je een Facebookaccount hebt. Om onze doelgroep te bepalen kunnen wij je boekingsgegevens gebruiken. Als je niet wilt dat we jouw e-mailadres gebruiken voor Custom Audiences, neem dan contact op met onze klantenservice. Zie de website van jouw social network voor meer informatie over Custom Audiences. Mogelijk heb je ook toestemming gegeven voor het ontvangen van gepersonaliseerde advertenties op je Facebooktijdlijn of andere social media via ons

        cookiebeleid. Zie ons cookiebeleid hoe je je toestemming kunt intrekken.

        Wij verwerken je persoonsgegevens zoals beschreven in deze paragraaf voor ons gerechtvaardigd belang en de belangen van derden om je relevante updates en aanbiedingen te kunnen sturen. Je kunt je te allen tijde afmelden voor het ontvangen van nieuwsbrieven, aanbiedingen of andere promotionele berichten door te klikken op de afmeldlink in de e-mail of door je voorkeuren voor nieuwsbrieven aan te passen in je Mijn Reis-account of door contact op te nemen met onze klantenservice.

        Als je je afmeldt, ontvang je nog steeds onze servicemails (zoals je boekingsbevestiging en e-ticket). Je kunt te allen tijde bezwaar maken tegen het gebruik van je persoonsgegevens voor direct- marketingdoeleinden (zie paragraaf 7).

      4. Voor onze administratie en voor het voldoen aan wet- en regelgeving

        Wij gebruiken je persoonsgegevens voor interne, administratieve doeleinden, zoals onze administratie en om te voldoen aan onze wettelijke en fiscale verplichtingen.

        We verzamelen en gebruiken jouw persoonsgegevens om onze diensten aan je te kunnen leveren, om onze wettelijke verplichtingen na te komen, voor de behartiging van ons gerechtvaardigd belang of de belangen van een derde of met jouw toestemming, bijvoorbeeld in situaties waarin wij je medische gegevens gebruiken.

        Als je je toestemming intrekt of als je niet die gegevens verstrekt die we nodig hebben om de overeenkomst met jou uit te voeren of om te kunnen voldoen aan onze wettelijke verplichtingen, dan kun je mogelijk geen of alleen beperkt gebruik maken van onze diensten.

        Wanneer we je gegevens verwerken voor ons gerechtvaardigd belang of de belangen van een derde, dan hebben wij deze belangen afgewogen tegen jouw privacybelangen. Indien van toepassing zullen wij maatregelen treffen om je privacybelangen te beschermen en onterechte schade te voorkomen. Onder ons gerechtvaardigd belang vallen bijvoorbeeld beveiligings- en veiligheidsdoeleinden of het leveren van betere diensten en aanbiedingen. Zie hierboven de doeleinden waarvoor wij je persoonsgegevens verwerken voor meer informatie over deze belangen. Meer informatie over deze afweging is op verzoek beschikbaar.

        Wanneer wij je persoonsgegevens verwerken voor ons gerechtvaardigd belang of de belangen van een derde heb je te allen tijde het recht bezwaar te maken om redenen die verband houden met jouw specifieke situatie (zie paragraaf 7).

      5. Welke derden hebben toegang tot je gegevens?

        Wij kunnen jouw gegevens uitwisselen met of beschikbaar stellen aan derden in het kader van de volgende drie doeleinden: (1) met partners voor het uitvoeren van jouw boekingen, (2) met onze groepsmaatschappijen en merken voor ondersteunende diensten, statistisch onderzoek en direct marketing en (3) met onze leveranciers die ondersteunende diensten verlenen. Uitsluitend wanneer Travix hiertoe wettelijk verplicht is, verstrekken we je gegevens aan toezichthouders, fiscale autoriteiten en opsporingsinstanties.

        1. Uitvoeren boekingen

          We verstrekken jouw gegevens aan partners die direct betrokken zijn bij jouw boeking. We verstrekken jouw gegevens bijvoorbeeld aan luchtvaartmaatschappijen en andere dienstverleners die betrokken zijn bij de uitvoering van jouw vlucht. Als je hebt gekozen voor een reis- of annuleringsverzekering, verstrekken we jouw gegevens aan de verzekeraar. Als je een parkeerplaats reserveert, hotel boekt of auto huurt, verstrekken we je gegevens aan de desbetreffende aanbieders.

        2. Ondersteunende diensten binnen de groep, onderzoek en direct marketing

          Voor het leveren van onze diensten maken wij gebruik van ondersteunende diensten die worden geleverd door maatschappijen binnen de Travixgroep. Zo hebben wij call centers in India en op Curaçao, zodat wij je op elk moment klantenservice kunnen bieden. Deze groepsmaatschappijen hebben toegang tot jouw gegevens als dat nodig is voor hun bedrijfsuitoefening. Jouw gegevens zijn beschikbaar voor Travix Nederland B.V. en worden gebruikt in het kader van CheapTickets.nl en andere merken van Travix zoals Vliegwinkel en BudgetAir. Jouw gegevens worden binnen deze merken gebruikt voor onderzoek en direct marketing (zie paragraaf 4). Als je bijvoorbeeld een vliegticket boekt bij CheapTickets.nl dan zorgen we ervoor, dat je geen direct marketing ontvangt van Vliegwinkel.

        3. Inschakeling ondersteunende diensten

          Voor het leveren van onze diensten maken we gebruik van derden, zoals IT-leveranciers, marketingbureaus, online advertentiebedrijven, creditcardmaatschappijen, betaalproviders, dienstverleners op het gebied van de fraudebestrijding en online boekingen. Met deze derden sluiten we overeenkomsten waarin onder meer wordt bepaald dat zij vertrouwelijk met jouw gegevens zullen omgaan en deze gegevens adequaat zullen beveiligen.

          Onze groepsmaatschappijen, partners en dienstverleners zijn gevestigd in de Europese Unie, maar ook daarbuiten. Als zon partij toegang heeft tot jouw gegevens dan creëert dit een internationale doorgifte van persoonsgegevens. Denk bijvoorbeeld aan een Aziatische luchtvaartmaatschappij die jouw gegevens van ons ontvangt in het kader van een geboekte vlucht. Travix verstrekt onder meer gegevens aan groepsmaatschappijen, partners en dienstverleners in India, Singapore, de Verenigde Staten en Rusland. De regelgeving in deze landen voorziet niet altijd in hetzelfde niveau van bescherming van persoonsgegevens als de regelgeving in Nederland. Waar nodig heeft CheapTickets.nl passende maatregelen getroffen om te voldoen aan de eisen die de geldende privacyregelgeving stelt aan de internationale doorgifte van persoonsgegevens.

          Zo sluiten we bijvoorbeeld zogeheten Europese Modelovereenkomsten voor de doorgifte van persoonsgegevens met onze groepsmaatschappijen en dienstverleners (zie artikel 46 GDPR/AVG). We kunnen ook persoonsgegevens verstrekken aan ontvangers die in de VS zijn gevestigd als zij een geldige EU-US Privacy Shield certificering hebben (artikel 45 GDPR/AVG). In sommige gevallen kunnen wij je uitdrukkelijke toestemming vragen voor de doorgifte van persoonsgegevens buiten de Europese Unie (artikel 49 GDPR/AVG). Als je een kopie wilt ontvangen van deze (contractuele) waarborgen, neem dan contact op met onze klantenservice.

      6. Hoe beveiligen wij je gegevens en hoe lang bewaren wij deze?

        CheapTickets.nl heeft technische en organisatorische beveiligingsmaatregelen getroffen om jouw gegevens te beschermen tegen verlies of onrechtmatig gebruik, zoals onbevoegde inzage van gegevens. We houden in dit opzicht rekening met de stand van de techniek en de kosten van de implementatie, zodat we een passend beveiligingsniveau kunnen garanderen met het oog op de risicos die de verwerking en de aard van de te beschermen gegevens met zich meebrengen.

        We bewaren jouw gegevens zolang dat nodig is om de doeleinden te realiseren zoals die in deze privacyverklaring zijn beschreven, maar in het algemeen niet langer dan 2 jaar na je laatste interactie met ons, tenzij voor zover dat noodzakelijk is om aan onze wettelijke verplichtingen te voldoen of ten behoeve van potentiële geschillen. Wanneer we gegevens niet langer nodig hebben, vernietigen we

        deze gegevens of we anonimiseren ze, zodat ze niet meer naar jou terug geleid kunnen worden.

      7. Hoe kan ik mijn wettelijke rechten uitoefenen?

        Je kunt contact opnemen met onze klantenservice om de rechten uit te oefenen die je zijn toegekend op grond van toepasselijke wetgeving inzake gegevensbescherming, waaronder (1) het recht van toegang tot je gegevens, (2) deze te corrigeren, (3) deze te verwijderen, (4) de verwerking van je gegevens te beperken, (5) het recht van dataportabiliteit en (6) het recht bezwaar te maken tegen verwerking. Houd er rekening mee, dat we soms meer informatie nodig hebben om jouw identiteit te kunnen verifiëren. Meer informatie

        1. Recht van toegang

          Je kunt ons vragen of wij al dan niet je persoonsgegevens verwerken en als dat zo is, je toegang te geven tot die gegevens in de vorm van een kopie. Wanneer wij voldoen aan een toegangsverzoek zullen wij je ook aanvullende informatie verstrekken, zoals de doeleinden van de verwerking, de categorieën betrokken persoonsgegevens en eventuele andere informatie die je nodig hebt om de essentie van dit recht te kunnen uitoefenen.

        2. Recht van rectificatie

          Je hebt het recht je gegevens te laten corrigeren ingeval deze onnauwkeurig of onvolledig zijn. Op verzoek corrigeren wij onjuiste persoonsgegevens over jou en, rekening houdend met de doeleinden van de verwerking, vullen wij onvolledige persoonsgegevens aan, wat kan bestaan uit het verstrekken van een aanvullende verklaring. Ook via jouw Mijn Reis-account kun je inzage krijgen in je gegevens en je kunt die gegevens altijd zelf inzien of corrigeren.

        3. Recht van verwijdering

          Je hebt ook het recht je persoonsgegevens te laten verwijderen, wat betekent dat wij je gegevens wissen en waar mogelijk worden gewist door een eventuele andere beheerder aan wie je gegevens eerder door ons bekend zijn gemaakt. Verwijdering van je persoonsgegevens vindt uitsluitend plaats in bepaalde gevallen die zijn beschreven in de wet en die worden opgesomd in artikel 17 van de GDPR/AVG. Dit omvat situaties waarin je persoonsgegevens niet langer noodzakelijk zijn in verband met de aanvankelijke doeleinden waarvoor zij werden verwerkt alsmede in situaties waarin zij onrechtmatig werden verwerkt. Vanwege de wijze waarop wij bepaalde diensten onderhouden, kan het enige tijd duren voordat back-upkopieën zijn gewist.

        4. Recht van beperking van verwerking

          Je hebt het recht van beperking van de verwerking van jouw persoonsgegevens, wat inhoudt dat wij de verwerking van jouw gegevens voor een bepaalde periode opschorten. De omstandigheden die aanleiding kunnen zijn voor dit recht omvatten situaties waarin de juistheid van je persoonsgegevens werd betwist, maar waarbij wij enige tijd nodig hebben om de (on)juistheid ervan te verifiëren. Dit recht belet ons niet uw persoonsgegevens opgeslagen te houden. Wij zullen je informeren voordat de beperking wordt opgeheven.

        5. Recht van dataportabiliteit

          Je recht van dataportabiliteit houdt in dat je ons kunt vragen om je persoonsgegevens op een gestructureerde, veelgebruikte en machineleesbare vorm te verstrekken en waar technisch mogelijk deze gegevens rechtstreeks naar een ander beheerder door te geven. Op verzoek en waar technisch mogelijk zullen wij je persoonsgegevens direct naar de andere beheerder doorzenden.

        6. Recht van bezwaar

    Je hebt ook het recht bezwaar te maken tegen de verwerking van je persoonsgegevens, wat inhoudt dat je ons kunt vragen je persoonsgegevens niet langer te verwerken. Dit geldt alleen in geval dat de reden ‘gerechtvaardigd belang’ (waaronder profilering) de wettige basis voor verwerking vormt (zie paragraaf 4).

    Je kunt op elk moment en zonder kosten bezwaar maken tegen direct-marketingdoeleinden indien je persoonsgegevens voor dergelijke doeleinden worden verwerkt, waaronder profileringsdoeleinden voor zover deze verband houden met dergelijke direct marketing. Je kunt dit recht te allen tijde uitoefenen door het intrekken van je eerder gegeven toestemming door de instructies in de desbetreffende marketingcommunicatie te volgen. Als je dit recht uitoefent, zullen wij je persoonsgegevens niet langer voor zulke doeleinden verwerken.

    Er kunnen situaties zijn waarin wij het recht hebben je rechten zoals beschreven in deze paragraaf af te wijzen of te beperken. In elk geval zullen wij zorgvuldig beoordelen wanneer zo’n uitsluiting van toepassing is en je hierover informeren.

    Zo kunnen wij je verzoek om toegang afwijzen wanneer het noodzakelijk is de rechten en vrijheden van andere personen te beschermen of weigeren je persoonsgegevens te wissen als het verwerken van dergelijke gegevens noodzakelijk is om te voldoen aan wettelijke verplichtingen. Het recht van dataportabiliteit bijvoorbeeld geldt niet wanneer de persoonsgegevens niet door jou waren verstrekt of wanneer wij de gegevens niet op basis van jouw toestemming of voor de uitvoering van een overeenkomst verwerken.

    Als je vragen, opmerkingen of klachten hebt met betrekking tot deze privacyverklaring, neem dan contact met ons op. Als je met onopgeloste vragen blijft zitten, heb je ook het recht een klacht in te dienen bij de Autoriteit Persoonsgegevens.

  • Home / privacy

    Privacy Statement

    Een zorgvuldige omgang met persoonsgegevens is voor het COC van groot belang. Persoonlijke gegevens worden dan ook zorgvuldig verwerkt en beveiligd. Hierbij houden wij ons aan de wet en regelgeving op het gebied van de bescherming van persoonsgegevens, zoals de Wet bescherming persoonsgegevens en – met ingang van 25 mei 2018 – de Algemene Verordening Gegevensbescherming (AVG).

    Verantwoordelijke voor de verwerking van persoonsgegevens

    Conform de wettelijke vereisten geeft het COC, bij het opvragen van persoonsgegevens, altijd het doel aan waarvoor deze gegevens worden gebruikt. Het COC gebruikt de door u verstrekte persoonsgegevens nooit voor een ander doel dan waarvoor u bij de verstrekking van de gegevens akkoord hebt gegeven.

    Doelen van de verwerking van persoonsgegevens

    Als u onze website bezoekt verzamelt het COC geen persoonsgegevens van u. Als u zich bij ons aanmeldt, een dienst aanvraagt of telefonisch contact met ons opneemt, dan vragen wij wel persoonsgegevens van u op en registreren wij deze. Het COC registreert alleen de voor het opgegeven doel noodzakelijke persoonsgegevens.

    De volgende doelen zijn van toepassing bij de verwerking van persoonsgegevens door het COC:

    • Omdat u heeft aangegeven lid of donateur van het COC te willen zijn
    • Omdat u heeft aangegeven een van onze nieuwsbrieven te willen ontvangen
    • Omdat u heeft aangegeven deel te willen nemen aan een van onze activiteiten
    • Omdat u ons gevraagd heeft contact met u op te nemen over een specifieke zaak

    Wilt u een nieuwsbrief niet meer ontvangen dan kunt u gebruik maken van de afmeldmogelijkheid die is opgenomen in de nieuwsbrief.

    Rechtsgronden van de verwerking van persoonsgegevens

    Volgens de wetgeving mag COC alleen persoonsgegevens verwerken als daarvoor één van de wettelijke grondslagen geldt. Het COC hanteert de volgende rechtsgronden voor de verwerking van persoonsgegevens:

    • in het kader van de totstandkoming en/of uitvoering van een overeenkomst;
    • om de wet na te leven (waaronder boekhoudkundige verwerking, fiscale verplichtingen en verplichtingen in het kader van gerechtelijke bevelen of andere dwingende wet- en regelgeving);
    • in verband met de gerechtvaardigde belangen van het COC, waarbij het COC erop let dat de impact op uw privacy zo beperkt mogelijk is.

    Website en Cookies

    Sommige delen van onze websites sturen een ‘cookie’, naar uw computer. Hierdoor wordt uw computer herkend wanneer u deze website opnieuw bezoekt. Voor meer informatie over cookies kunt u terecht op www.cookiecentral.com.

    Beveiliging van persoonsgegevens

    Om persoonsgegevens te beschermen heeft het COC passende technische en organisatorische maatregelen genomen tegen verlies of tegen enige vorm van onrechtmatige verwerking.

    Uitwisseling van persoonsgegevens

    COC Nederland is een federatie van 20 regionale lidverenigingen. Leden gaan een lidmaatschapsrelatie aan met een regionale lidvereniging. De lidverenigingen hebben de ledenadministratie bij COC Nederland belegd en COC Nederland heeft dit uitbesteed aan een ledenadministratiekantoor.

    De persoonsgegevens die verstrekt zijn om uitvoering te kunnen geven aan het lidmaatschap worden gedeeld tussen de lidvereniging, COC Nederland en het ledenadministratiekantoor.

    De relatie die u aangaat met het COC kan met zich meebrengen dat de persoonsgegevens die u heeft verstrekt worden gedeeld met andere organisaties. Deze uitwisseling van gegevens vindt uitsluitend plaats op basis van de relatie die u met ons bent aangegaan. De door u verstrekte persoonsgegevens worden niet langer bewaard dan de duur van de relatie die u met ons bent aangegaan, tenzij de wet ons anders voorschrijft.

    Geen commercieel gebruik
    Het COC zal uw persoonsgegevens niet verkopen, noch verhuren, verdelen of anderszins commercieel ter beschikking stellen aan derden, behalve zoals beschreven in deze privacyverklaring of tenzij met uw voorafgaande toestemming.

    Correctheid van de opgegeven persoonsgegevens

    Door het meedelen van uw persoonsgegevens garandeert u dat deze juist en volledig zijn. Het COC kan u bij het meedelen van valse identiteiten, onvolledige of onjuiste gegevens tijdelijk of definitief iedere toegang tot de websites of delen ervan ontzeggen.

    Bewaren van persoonsgegevens

    Het COC bewaart persoonsgegevens niet langer dan noodzakelijk voor de verwezenlijking van de doeleinden waarvoor de gegevens worden verwerkt, en in elk geval zo lang als specifieke regelgeving vereist.

    Uw privacyrechten

    U heeft recht op inzage in uw persoonsgegevens, het recht om correctie, beperking of verwijdering van uw persoonsgegevens te vragen en daarnaast kunt u vragen om overdracht van uw gegevens. Ten slotte kunt u bezwaar maken tegen het gebruik van uw gegevens.

    Indien de verwerking van uw gegevens berust op toestemming, dan kunt u deze te allen tijde intrekken.

    U kunt uw schriftelijke verzoeken dan wel vragen m.b.t. privacy gerelateerde zaken sturen aan:

    COC Nederland
    T.a.v. de Privacy Officer
    Nieuwe Herengracht 49
    1011 RN Amsterdam

    Of via email : info@coc.nl

    U ontvangt dan zo spoedig mogelijk antwoord.

    U bent tevens gerechtigd een klacht in te dienen over het gebruik van uw gegevens bij de Autoriteit persoonsgegevens. Wilt u meer weten kijk op autoriteitpersoonsgegevens.nl.

    Wijzigingen

    Wij behouden ons het recht voor om wijzigingen aan te brengen in het Privacy Statement. Check daarom regelmatig het Privacy Statement voor een update van ons privacybeleid.

    Vragen

    Als u nog vragen heeft over ons privacybeleid, neemt u dan contact op met de Privacy Officer via COC Nederland in Amsterdam.

     

    Laatste update: 25 mei 2018

  • GDPR FAQ

    What personal data does Codecademy collect and store, and for what purposes?

    Codecademy collects the following data:

    1. Mandatory data – Codecademy collects your First Name, Email address, IP Address. This data is used in communications, user tracking, advertising, marketing and to derive product insights.
    2. Optional data – Codecademy also allows you to enter your gender, a username, avatar photo, and links to your github, facebook, twitter, and personal websites. This data is optional and not used in any automated processing or profiling.
    Where can I find a list of Codecademy’s subprocessors?

    Here is a non-exclusive list of our subprocessors and what they are used for. This list is subject to change as our business evolves.

    Subprocessor Name Nature of Processing:
    New Relic Logging and security monitoring.
    Amazon Web Services Storage and archival of Codecademy user data and metadata.
    Github Repository of software code used to implement Looker software deployments.
    Google Authentication, business management, tracking.
    Customer.io Email delivery services for communications to data exporter personnel involved in the data exporter-data importer relationship.
    Zendesk Support chat services within the Looker software.
    Facebook Authentication and Advertising.
    Twitter Authentication.
    May I opt out of Codecademy Communications?

    Yes. We retain basic user contact information to communicate with our customers and their users about product and security updates, relevant marketing, training and events. Codecademy users may opt-out of communications here.

    Where does Codecademy host customer data?

    Looker-hosted instances are hosted in the Amazon Web Services cloud. By default, Codecademy hosts in the Ohio and Virginia (US) regions.

    How Can I Edit my Codecademy Data?

    You can edit your data at any time from your profile page here.

    How long does Codecademy retain Customer Data? Will Codecademy delete customer data when requests?

    Codecademy maintains all customer data until we mark users as “non-active” or a customer deletes their own account. User can delete their own accounts and data here.

    How Can I download my Codecademy Data?

    Our customer support team will be happy to help you here. You can reach them via this form.

    How to Contact Us

    If you have any questions about this Privacy Policy or the Service, please contact us at legal@codecademy.com.

    Codecademy, Inc.
    575 Broadway, 5th Floor
    New York City, NY 10012

    Changes to Our Privacy Policy

    Codecademy may modify or update this Privacy Policy from time to time to reflect the changes in our business and practices, and so you should review this page periodically. When we change the policy in a material manner we will let you know and update the ‘last modified’ date at the bottom of this page.

    This privacy policy was last modified on May 25th, 2018.

  • Privacy statement

    Dit privacy statement is van toepassing op het gebruik van persoonsgegevens door Onderlinge Waarborgmaatschappij Centrale Zorgverzekeraars groep (hierna te noemen: CZ) voor uitvoering van de zorgverzekering (“basisverzekering”) en de aanvullende ziektekostenverzekering.

    CZ gaat zorgvuldig om met uw persoonsgegevens en wil u in dit statement uitleg geven over het gebruik van uw persoonsgegevens. Omdat zorgverzekeraars het belangrijk vinden dat zij de wettelijke regels op de juiste wijze nakomen, hebben zij hierover gezamenlijke gedragsregels opgenomen in de Gedragscode verwerking persoonsgegevens zorgverzekeraars. Bekijk de huidige Gedragscode. Eén van de wettelijke privacyregels is de verplichting om transparant te zijn over hoe omgegaan wordt met persoonsgegevens van klanten. CZ doet dit in de vorm van dit privacy statement.

    In dit privacy statement worden de volgende vragen beantwoord:

    1. Waarvoor worden uw persoonsgegevens gebruikt?
    2. Hoe lang worden uw persoonsgegevens bewaard? 
    3. Wat zijn uw rechten? 
    4. Op welke manier kunt u uw rechten uitoefenen?
    5. Hoe zijn uw persoonsgegevens beveiligd?
    6. Hoe gaan wij om met uw gegevens bij het gebruik van WhatsApp?
    7. Hoe kunt u in contact treden met uw zorgverzekeraar?

    1. Waarvoor worden uw persoonsgegevens gebruikt?

    Om uitvoering te kunnen geven aan de Zorgverzekeringswet en de verzekeringsovereenkomst die CZ heeft gesloten met zijn verzekerden zijn persoonsgegevens noodzakelijk. Specifiek om u te kunnen identificeren neemt CZ het burgerservicenummer (bsn) van zijn verzekerden op in zijn administratie (wettelijke verplichting).

    CZ gebruikt uw persoonsgegevens voor verschillende doelen en alleen als en voor zover het gebruik voor dat doel nodig is.

    De doelen betreffen:
    I. Beoordelen en accepteren
    II. Sluiten en uitvoeren van de verzekering
    III. Commercie en Marketing

    I. Beoordelen en accepteren

    CZ gebruikt uw persoonsgegevens om te controleren of u verzekeringsplichtig bent voor de basisverzekering. Voor de basisverzekering is het uitgangspunt dat iedere verzekeringsplichtige geaccepteerd wordt, dat is bepaald in de Zorgverzekeringswet.

    Voor de (meest uitgebreide) aanvullende tandartsverzekering en bij de verzekering voor niet-verzekeringsplichtigen woonachtig in het buitenland worden in het kader van het acceptatiebeleid persoonsgegevens betreffende iemands gezondheid gevraagd om te beoordelen of de verzekering die wordt aangevraagd, afgesloten kan worden. De gegevens worden beoordeeld onder verantwoordelijkheid van de tandheelkundig adviseur resp. medisch adviseur. Deze beoordeling kan ertoe leiden dat de aanvrager een aanbod ontvangt dat afwijkt van zijn aanvraag.

    Geautomatiseerde verwerking aanvraag
    Uw gegevens worden geautomatiseerd verwerkt als u een basis- of een aanvullende ziektekostenverzekering aanvraagt. Dit gebeurt aan de hand van de gegevens die u op het (elektronische) aanvraagformulier hebt ingevuld.

    Bij uw aanvraag voor een aanvullende tandartsverzekering of de verzekering voor niet-verzekeringsplichtigen woonachtig in het buitenland kan het ook gaan om gezondheidsgegevens. Dit leidt tot het afsluiten van de verzekering of afwijzing van uw aanvraag. U kunt altijd contact opnemen met CZ en een vraag of klacht indien en naar aanleiding van de geautomatiseerde afhandeling van uw aanvraag.

    II. Sluiten en uitvoeren van de verzekering

    CZ heeft uw persoonsgegevens nodig voor het sluiten en uitvoeren van de basisverzekering en aanvullende ziektekostenverzekering. Voor het uitvoeren van deze verzekeringen zijn ook gegevens over uw gezondheid nodig.

    Onder het uitvoeren van de verzekering vallen: bepalen of u recht heeft op (vergoeding van) zorg, betalen aan de zorgaanbieder, betalen van vergoedingen aan u, innen van premie, vaststellen van eigen bijdrages en verplicht en vrijwillig eigen risico, uitvoeren van controles, bestrijden van fraude (waaronder een intern registratiesysteem), verhalen van schade op derde partijen, onderzoek onder verzekerden naar de kwaliteit van zorg, verbeteren van dienstverlening (waaronder ook technische support), gericht informeren van groepen verzekerden met voor hen relevante informatie, beperken van betalingsachterstanden van de verzekeringnemer bij de zorgverzekeraar, bewerkstelligen dat de verzekeringnemer niet langer een bestuursrechtelijke premie verschuldigd is, behandelen van klachten en geschillen en analyseren van (persoons)gegevens voor risicobeheersing (waaronder de beheersing van zorguitgaven) en de inkoop van zorg.

    Uitwisseling met derden
    Uw persoonsgegevens worden soms gedeeld met of verkregen van derden. Ze worden nooit verkocht aan derden. Voorbeelden van het delen met een derde zijn:

    • CAK: CZ en het CAK wisselen uw bsn uit als u te maken heeft met de regeling wanbetalers en de regeling onverzekerden. Dit is een wettelijke verplichting.
    • College van burgemeester en wethouders: CZ wisselt persoonsgegevens uit met het college van burgemeester en wethouders van de gemeente waarin u woont voor het voorkomen en verminderen van schulden. Dit is een wettelijke verplichting.
    • Werkgevers of belangenbehartigers: als u korting krijgt op uw premie omdat u onderdeel uitmaakt van een collectiviteit, gebruikt CZ uw persoonsgegevens om periodiek bij uw werkgever of belangenbehartiger te controleren of u nog recht heeft op deze korting.
    • Tussenpersonen: Als u uw verzekering sluit via een tussenpersoon, kan ook uitwisseling plaatsvinden van persoonsgegevens met de tussenpersoon, voor zover dit noodzakelijk is voor de uitvoering van de taken door de tussenpersoon en de afhandeling van provisie. Het gaat dan alleen om polisgegevens, nooit om gezondheidsgegevens.
    • Zorgkantoren: om te voorkomen dat zorg zowel op grond van de Wlz als de basisverzekering wordt betaald, en voor de onderlinge afstemming van de op grond van de zorgverzekering en de Wlz verzekerde zorg.
    • Sociale Verzekeringsbank (SVB): de SVB ontvangt gegevens van het Zorgkantoor voor de verzekerdenadministratie bedoeld in artikel 35 van de Wet structuur uitvoeringsorganisatie werk en inkomen en de betalingen ten laste van het persoonsgebonden budget en het daarmee verbonden budgetbeheer.
    • CZ wisselt persoonsgegevens uit met toezichthouders (bijvoorbeeld Nederlandse Zorgautoriteit of de Autoriteit Persoonsgegevens) indien dit nodig is in het kader van de toezichthoudende taak. Dit is een wettelijke verplichting.
    • Zorgverzekeraars krijgen regelmatig verzoeken van bijvoorbeeld universitaire ziekenhuizen of onderzoeksbureaus om persoonsgegevens (over gezondheid) te mogen gebruiken voor wetenschappelijk onderzoek of statistiek. Deze gegevens worden alleen verstrekt voor zover niet volstaan kan worden met anonieme gegevens, het onderzoek in het algemeen belang is, en toestemming vragen niet mogelijk is.
    • CZ heeft een Incidentenregister waarin persoonsgegevens worden opgenomen. In dit register worden gebeurtenissen opgenomen die als gevolg hebben of zouden kunnen hebben dat de belangen, integriteit of veiligheid van de verzekerden, de (medewerkers van) CZ of de financiële sector als geheel in het geding zijn of kunnen zijn, zoals het vervalsen van nota’s, identiteitsfraude, skimming, verduistering in dienstbetrekking, phishing en opzettelijke misleiding.
    • In het Extern Verwijzingsregister worden de persoonsgegevens opgenomen van personen van wie in voldoende mate vaststaat dat de gedragingen een bedreiging (kunnen) vormen voor de financiële belangen van (medewerkers van) CZ of zijn verzekerden. Het Extern Verwijzingsregister kan worden ingezien door de deelnemers aan het Protocol Incidenten waarschuwingssysteem Financiële Instellingen.
    • Basis Registratie Personen: Zorgverzekeraars verkrijgen persoonsgegevens vanuit de Basis Registratie Personen.
    • Zorgaanbieders met wie CZ een contract heeft gesloten: zij brengen de kosten van zorg direct bij CZ in rekening.

    Als het om een dringende reden noodzakelijk is dat zorgaanbieders geen inzage kunnen hebben in uw adresgegevens, kunt u dit aan ons laten weten. Wij kunnen uw adresgegevens dan afschermen. Dit geldt ook voor personen tegen wie u beschermd wordt. Daartegen kunt u uw gegevens laten afschermen, ook als het de verzekeringsnemer betreft.

    Gegevens over uw gezondheidGegevens over uw gezondheid zijn gegevens waar CZ extra zorgvuldig mee omgaat. CZ gebruikt controle, het doen van fraudeonderzoek, verhaal op een derde en analyses voor zorginkoop en risicobeheersing.

    De medisch adviseur van CZ is een in het register inzake Beroepen in de Individuele Gezondheidszorg (BIG) ingeschreven arts, tandarts, fysiotherapeut, verloskundige, verpleegkundige, gezondheidszorgpsycholoog, psychotherapeut of apotheker.
    De medisch adviseur heeft een wettelijke geheimhoudingsplicht. Het gebruik van gezondheidsgegevens valt onder verantwoordelijkheid van de medisch adviseur(s). Iedere medewerker die gezondheidsgegevens gebruikt, valt onder de verantwoordelijkheid van de medisch adviseur, behalve voor wat betreft handelingen met een puur administratief karakter zoals het verwerken van declaraties van zorgaanbieders en het doorzenden en digitaliseren van post. De groep van medewerkers onder verantwoordelijkheid van de medisch adviseur, heet de ‘functionele eenheid’. De medewerkers in de functionele eenheid hebben dezelfde geheimhoudingsplicht als de medisch adviseur.

    Geautomatiseerde verwerking machtigingsaanvraag of declaratieMachtigingsaanvraag:
    Uw machtigingsaanvraag doorloopt een zorgvuldig proces, waarbij toetsingscriteria gebaseerd op de verzekeringsvoorwaarden worden toegepast op uw aanvraag. Het toepassen van deze criteria kan geautomatiseerd plaatsvinden. U krijgt altijd een bericht waarin de aanvraag wordt toe- of afgewezen. Daarin staat beschreven hoe u een klacht kunt indienen als u dat wilt.

    Declaraties:
    Declaraties worden meestal geautomatiseerd afgehandeld, waarbij toetsingscriteria gebaseerd op de verzekeringsvoorwaarden worden toegepast op uw declaratie. U heeft altijd het recht om een vraag of klacht in te dienen naar aanleiding van de geautomatiseerde afhandeling van uw declaratie.

    Uitbesteding
    CZ kan ervoor kiezen om werkzaamheden uit te besteden. CZ blijft wel altijd verantwoordelijk voor het gebruik van uw persoonsgegevens. Voorbeelden van uitbesteding zijn de werkzaamheden die onder andere VECOZO en Vektis namens zorgverzekeraars verrichten. VECOZO stelt bijvoorbeeld zorgverleners in staat om declaraties bij de juiste zorgverzekeraar digitaal aan te leveren. Vektis voorziet de zorgverzekeringsbranche als geheel en individuele zorgverzekeraars van o.a. statistische – en actuariële informatie ter ondersteuning van beleidsprocessen.

    III. Commercie en Marketing

    CZ gebruikt uw persoonsgegevens om u te informeren en te interesseren voor zijn andere producten en diensten. Gegevens over uw gezondheid (bijvoorbeeld declaratiegegevens) worden niet gebruikt voor commerciële doeleinden. Soms maakt CZ selecties van haar klantenbestand, bijvoorbeeld om een product voor een bepaalde doelgroep aan te prijzen. Bij het maken van selecties voor commerciële doeleinden, wordt geen gebruik gemaakt van gegevens over gezondheid of financiële gegevens.

    Analyse
    CZ zal uw persoonsgegevens gebruiken voor analyses ten behoeve van marketingactiviteiten. Hierbij wordt geen gebruik gemaakt van gegevens over uw gezondheid.

    Tracking scripts
    Als u e-mails van CZ ontvangt om u te informeren over onze producten en diensten, kan CZ (met behulp van e-mail tracking scripts) klikgedrag in e-mails opslaan, bijvoorbeeld om te zien wanneer een e-mail is geopend of op bepaalde artikelen uit de nieuwsbrief is geklikt. Deze informatie kan worden gebruikt om de mailings te verbeteren, zodat ze beter aansluiten op uw persoonlijke voorkeur. Daarbij wordt geen informatie op uw computer opgeslagen, zoals bij cookies.

    Cookies
    Als u de website van CZ bezoekt kan CZ informatie opslaan op uw computer in de vorm van een cookie. Informatie over cookies op de CZ website kunt u lezen in het Cookiestatement.

    2. Hoe lang worden uw persoonsgegevens bewaard?

    CZ bewaart uw persoonsgegevens zolang hij deze nodig heeft voor het doel waarvoor CZ uw gegevens in eerste instantie heeft gekregen. Dit betekent dat de meeste gegevens 7 jaar worden bewaard (met ingang van het volgende jaar dan het jaar waarop de gegevens betrekking hebben), met een aantal uitzonderingen. De uitzonderingen betreffen:

    • Niet gesloten verzekering
      Het kan voorkomen dat u bij CZ een verzekering heeft aangevraagd, maar deze niet heeft afgesloten. Omdat u zelf besloot de verzekering niet te willen sluiten, of omdat CZ deze geweigerd heeft. In dat geval bewaart CZ uw gegevens één jaar na de aanvraag. Op die manier kan CZ uw gegevens controleren als u het volgende jaar weer een aanvraag indient. Tevens biedt dit CZ de mogelijkheid om u te benaderen met andere mogelijk interessante producten, tenzij u heeft aangegeven dat u dit niet wenst.
    • Na beëindiging van uw verzekering
      Hebt u wel een verzekering gesloten, maar is deze inmiddels beëindigd? Dan bewaren wij uw gegevens maximaal 7 jaar nadat uw verzekering geëindigd is, dan wel nadat er nota’s van u zijn ontvangen. Dit doen wij o.a. vanwege de gestelde eis in de Zorgverzekeringswet. Deze gegevens mogen 2 jaar worden gebruikt voor marketingdoeleinden, tenzij u heeft aangegeven dat u dit niet wenst.
    • Onderzoek medische gegevens
      Hebben wij een onderzoek uitgevoerd, waarbij uw medische gegevens zijn gebruikt? Dan bewaren wij deze zolang dat nodig is om het onderzoek uit te voeren en af te ronden, en daarna om onze rechten veilig te stellen. Bijvoorbeeld om declaraties terug te vorderen als zorg is gedeclareerd die niet verleend is.
    • Fraude
      Als wij uw gegevens hebben gebruikt in een fraudeonderzoek, bewaren wij deze gegevens 8 jaar nadat het onderzoek is gesloten.
    • Opnemen telefoongesprekken voor trainingsdoelen
      Wij kunnen uw telefoongesprekken met ons opnemen. Dat doen wij om onze medewerkers te kunnen trainen en zo onze dienstverlening beter te maken. Deze gegevens bewaren wij niet langer dan noodzakelijk, maar maximaal 6 maanden.
    • Betalingsgedrag
      Als uw verzekering is beëindigd omdat u niet of te laat betaalde, worden de gegevens hierover maximaal vijf jaar bewaard.
    • Klachten en geschillen
      Als wij uw gegevens hebben gebruikt in het kader van klachten en geschillen bewaren wij deze gegevens 2 jaar nadat de procedure is afgerond.

    3. Wat zijn uw rechten?

    U heeft recht op inzage, rectificatie, gegevenswissing, beperking van het gebruik van uw persoonsgegevens, overdraagbaarheid van uw persoonsgegevens, bezwaar en op het intrekken van uw toestemming. Hieronder kunt u lezen wat deze rechten inhouden.

    Inzage
    U heeft recht op inzage in de persoonsgegevens die CZ van u heeft en informatie waarvoor hij die persoonsgegevens gebruikt.
    Het recht op inzage is in het algemeen op een veilige manier geregeld doordat u via MijnCZ zelf kunt zien welke persoonsgegevens over u worden verwerkt (NAW-gegevens, verzekeringsgegevens, informatie over het betaalde eigen risico en premiebetalingen en zorgkosten).
    Het kan zijn dat u daarnaast nog bepaalde specifieke informatie wilt hebben. U kunt daarvoor een verzoek indienen. Vermeld in uw verzoek welke gegevens u wilt inzien.

    Gegevensoverdraagbaarheid
    U heeft het recht uw persoonsgegevens te krijgen van CZ in een gestructureerde, gangbare en machine leesbare vorm, als die persoonsgegevens door u of namens u aan CZ zijn verstrekt en door CZ via geautomatiseerde procedés zijn gebruikt.

    CZ kan de persoonsgegevens ook direct aan een andere zorgverzekeraar sturen als het gaat om gegevens die nodig zijn om over te stappen naar die andere zorgverzekeraar of door CZ gegeven machtigingen voor het vergoeden van zorg.

    Als u wilt dat CZ uw gegevens direct aan een andere zorgverzekeraar stuurt, vermeld dit dan in uw verzoek.

    Rectificatie
    U heeft recht op correctie (rectificatie) van onjuiste persoonsgegevens die op u betrekking hebben. U heeft er recht op dat onvolledige persoonsgegevens volledig worden gemaakt, bijvoorbeeld door het verstrekken van een aanvullende verklaring.

    Vermeld in uw verzoek welke gegevens gecorrigeerd moeten worden en waarom.

    Gegevenswissing
    U kunt CZ vragen uw persoonsgegevens te wissen als volgens u één van de volgende gevallen van toepassing is:

    • CZ heeft uw persoonsgegevens niet meer nodig;
    • uw gegevens worden gebruikt op grond van uw toestemming, maar u trekt deze toestemming in;
    • u maakt bezwaar zoals hierna omschreven, tegen het gebruik van uw persoonsgegevens;
    • CZ mocht uw persoonsgegevens niet gebruiken;
    • CZ was op grond van de wet al verplicht uw gegevens te wissen;
    • CZ gebruikt uw gegevens voor social media.

    Vermeld in uw verzoek welke gegevens u wilt laten wissen en waarom u vindt dat CZ dit moet doen. Wanneer uw verzoek betrekking heeft op uw verzekering is het wissen van gegevens vaak niet mogelijk, bijvoorbeeld omdat CZ deze gegevens nog wel nodig heeft, met inachtneming van de geldende bewaartermijnen (zie onderdeel 2).

    Beperking
    U heeft er recht op dat het gebruik van uw persoonsgegevens wordt beperkt:

    • in de periode die CZ nodig heeft om vast te stellen of uw gegevens inderdaad gecorrigeerd moeten worden;
    • als CZ uw persoonsgegevens niet had mogen gebruiken, maar u wilt niet dat die gegevens worden gewist;
    • in de periode dat u tegen het gebruik van uw persoonsgegevens bezwaar heeft gemaakt maar van CZ nog geen antwoord heeft gekregen.

    Als het gebruik van uw persoonsgegevens wordt beperkt, heeft CZ uw toestemming nodig om toch nog gebruik van die gegevens te mogen maken. Hierop zijn een aantal uitzonderingen. Uw persoonsgegevens mogen toch worden gebruikt:

    • voor de uitvoering van uw zorgverzekering en aanvullende ziektekostenverzekering, zodat u verzekerd kunt blijven en uw nota’s kunnen worden betaald door uw zorgverzekeraar;
    • voor het instellen, uitoefenen of onderbouwen van een rechtsvordering;
    • ter bescherming van de rechten van een ander persoon of een rechtspersoon; of
    • om redenen van groot algemeen belang voor de Europese Unie of een lidstaat van de Europese Unie, zoals volksgezondheid.

    Vermeld in uw verzoek waarom CZ uw persoonsgegevens niet mocht gebruiken. Of voeg het verzoek tot beperking van het gebruik van uw persoonsgegevens toe aan een verzoek tot rectificatie of een bezwaar.

    Als u samen met het beroep op rectificatie of uw bezwaar ook een beroep op beperking van het gebruik van uw persoonsgegevens heeft gedaan, worden uw persoonsgegevens in deze termijn minder gebruikt.

    Bezwaar
    U heeft het recht om bezwaar te maken tegen het gebruik van uw persoonsgegevens voor direct marketing. Als uw gegevens worden gebruikt – maar niet voor direct marketing of uitvoering van uw verzekering – mag u daartegen bezwaar maken, als u daarvoor bijzondere persoonlijke redenen heeft. Vermeld in uw bezwaar om welke gegevens het gaat en wat de reden van uw bezwaar is.

    Toestemming
    Als CZ alleen met uw toestemming uw persoonsgegevens heeft gebruikt, dan mag u deze toestemming te allen tijde intrekken. De intrekking van uw toestemming heeft geen terugwerkende kracht. Het intrekken van uw toestemming heeft dus geen gevolgen voor al uitgevoerde handelingen.

    Vermeld bij uw verzoek welke toestemming u wilt intrekken.

    4. Op welke manier kunt u uw rechten uitoefenen?

    Als u een beroep wilt doen op één van de rechten die hierboven genoemd worden, kunt u daarvoor een verzoek indienen bij de functionaris voor de gegevensbescherming van CZ. Dit kunt u bijvoorbeeld per brief of elektronisch doen. We vertellen u dan binnen een maand wat we met uw verzoek hebben gedaan. Als uw verzoek erg ingewikkeld is, kan deze termijn met nog eens twee maanden worden verlengd. Als CZ de termijn wil verlengen, laten wij u dat binnen een maand na ontvangst van uw verzoek weten.
    Als u het niet eens bent met de afhandeling van uw verzoek kunt u daarover een klacht indienen bij de Autoriteit Persoonsgegevens. U kunt ook een verzoekschrift indienen bij de rechtbank.

    5. Hoe zijn uw persoonsgegevens beveiligd?

    CZ past in het hele bedrijf beveiligingsmaatregelen toe om persoonsgegevens te beveiligen. Deze maatregelen betreffen: de organisatie, het personeel, processen, techniek, en fysieke beveiliging, en zijn vastgelegd in het beveiligingsbeleid van CZ.
    De ontwikkelingen binnen de wereld van informatiebeveiliging gaan snel. De invulling van de maatregelen is afgeleid van internationaal geldende standaarden, zoals ISO norm ISO27002. Periodiek wordt door ons gecontroleerd of onze maatregelen nog adequaat zijn. Dit gebeurt door middel van het uitvoeren van risicoanalyses, interne controleplannen en door onafhankelijke audits. Daarnaast staat CZ onder direct toezicht van verschillende toezichthouders en de externe accountant, waarbij onder meer wordt toegezien op de werking van interne beheersing van informatiebeveiliging. Als CZ gebruik maakt van derde partijen bij de verwerking van persoonsgegevens dan controleert CZ dat die derde partij, afhankelijk van het soort persoonsgegevens, beschikt over voldoende beveiliging.

    6. Hoe gaan wij om met uw gegevens bij het gebruik van WhatsApp?

    We delen via WhatsApp geen privacygevoelige informatie met u, zoals medische gegevens of andere persoonsgegevens. Want WhatsApp is minder betrouwbaar en veilig dan bijvoorbeeld e-mail of chat. We zullen u dus nooit vragen om vertrouwelijke informatie. We verzoeken u vriendelijk om ook niet uit uzelf privacygevoelige gegevens te delen via WhatsApp.

    7. Hoe kunt u in contact treden met CZ?

    We vinden het vanzelfsprekend dat we u duidelijk en compleet informeren over uw privacy. Heeft u vragen over dit privacy statement, bent u het oneens met hoe CZ met uw gegevens omgaat of wilt u het gebruik van uw gegevens voor één van de genoemde doeleinden beëindigen, dan kunt u ons uw vraag stellen via het contactformulier of per brief. Verzoeken met betrekking tot één van de rechten zoals hierboven onder punt 3 genoemd kunt u richten aan de functionaris voor de gegevensbescherming CZ.

    Adresseer uw brief aan:
    CZ Klantenservice
    Postbus 90152
    5000 LD Tilburg

    Dit privacy statement kan wijzigen. De laatste versie vindt u altijd hier. De datum van de laatste wijziging vindt u onderaan dit statement.

    De belangrijkste wijzigingen ten opzichte van de vorige versie
    Dit privacy statement is opnieuw opgesteld bij de inwerkingtreding van de Algemene Verordening Gegevensbescherming. Sindsdien zijn er geen wijzigingen geweest.

    Tilburg, 25 mei 2018

  • Privacy Notice

    It’s simple – you own your data

    At digi.me, we understand that we have a responsibility to look after your data and to protect and respect your privacy. The digi.me app does not require a user to register in order to use the application and therefore, by default, a user’s personally identifiable information (name, email address etc.) are not known by the company.

    Additionally, if you are a user of the digi.me application, you can be assured that not only is your data library securely stored, using military grade encryption, but that we do not have access to it. We do not see, touch or hold your library data.

    There are however a number of legitimate reasons why we may have personal data about you and this notice describes how we collect and use that personal data, the reasons why we may need to disclose your personal data to others and how we store your personal data securely, compliant with the General Data Protection Regulation (GDPR). Digi.me may be both a data controller and a data processor of your personal data.

    About us

    Digi.me Limited operates to enable users of our applications to download, aggregate and store a wide variety of data about them or connected with them, view and review that data in novel ways and, if they so wish, share all or parts of that data for service, convenience or reward.

    Digi.me Limited is registered in England and Wales as a limited company under registration number 6861219 and our registered office is at 7 Bower Road, Wrecclesham, Farnham, Surrey GU10 4ST.

    Our Data Protection Officer (DPO) is the company’s Chief Financial Officer. If you have any questions regarding this notice or would like further information about the personal data we hold on you and the way in which we may process that data, please email DPO (@) digi.me.

    How we may collect your personal data

    We obtain personal data about you when for example you:

    – Sign up for our user, business or partner newsletters;
    – Sign up as a beta user, a tester, join our insider programme or use Apple Testflight;
    – Submit a bug report to us via Instabug or other reporting system or submit a support ticket via Freshdesk or other support system;
    – Use our website or complete forms on our website;
    – Enter a competition, promotion or survey;
    – Attend a hackathon or other event;
    – Request further information from us on in respect of the services we provide;
    – Contact us by email, post, telephone or social media;
    – Have a commercial relationship with us as a customer, supplier, business advisor, consultant or other service provider;
    – Make an employment application to us.

    We may also obtain personal data about you for example from third parties and/or publicly available resources, e.g. Companies House.

    The type of data about you we may collect and hold

    The data we collect and hold you may include:

    – Your personal details such as your name, address, email address, phone numbers, payment information, IP address etc.;
    – Your career history or other data if you are making a job application;
    – Information on your use of the digi.me application, session data etc.;
    – Any communications that have taken place between us;
    – Details of contact we have had with you in respect of the actual or proposed provision of services to you or from you;
    – Details of any services you have received from us or provided to us;
    – Information about any complaints & enquiries you have made to us or us to you;

    How we use your data

    We use information about you in the following ways:

    – To process enquiries, non-disclosure or other agreements or orders you have submitted to us or us to you or for the performance of any contract we have with you or you with us;
    – To comply with our legal obligations and any contractual obligations we have with you;
    – To provide you with products and services;
    – To enable us to review and improve our website, applications and services;
    – To provide customer support, including responding to your support requests;
    – To administer creditor or debtor accounts and process and track payments;
    – To carry out marketing and statistical analysis or where we seek your thoughts and opinions on the services we provide;
    – To notify you about changes to our website, terms & conditions, services or prices;
    – To process job applications;
    – To provide you with information about our products and services that you request from us or which we feel may be of interest to you, provided you have consented to be contacted for such purposes.

    We may process your personal data for the purposes of our own legitimate interests provided that those interests do not override any of your own interests, rights and freedoms which require the protection of personal data. This includes processing for marketing, business development, statistical and management purposes.

    We may process your personal data for certain additional purposes with your consent. In the limited circumstances where your consent is required for the processing of your personal data then you have the right to withdraw your consent to processing for such specific purposes.

    Please note that we may process your personal data for more than one lawful basis depending on the specific purpose for which we are using your data.

    In some circumstances we may anonymise or pseudonymise the personal data so that it can no longer be associated with you, in which case we may use it without further notice to you.

    We may also process your personal data without your knowledge or consent, in accordance with this notice, where we are legally required or permitted to do so.

    Retention of your data

    We will only retain your personal data for as long as is necessary to fulfil the purposes for which it is collected. When assessing what retention period is appropriate for your personal data, we take into consideration:

    – the requirements of our business and the services provided to you and the services you provide to us;
    – any statutory or legal obligations;
    – the purposes for which we originally collected the personal data;
    – the lawful grounds on which we based our processing;
    – the types of personal data we have collected;
    – the amount and categories of your personal data; and
    – whether the purpose of the processing could reasonably be fulfilled by other means.

    We may need to keep your data for up to 7 years after any commercial arrangement has ended in order to satisfy our legal, taxation or accountancy obligations. We may also keep your data for research or statistical purposes. In all cases, your personal data will only be used for the purposes we collected it.

    Change of purpose

    Where we need to use your personal data for another reason, other than for the purposes for which we collected it, we will only use your personal data where that reason is compatible with the original purposes. Should it be necessary to use your personal data for a new purpose, we will notify you and communicate the legal basis which allows us to do so before starting any new processing.

    Who has access to your personal data?

    Access to your personal data within our organisation is limited to those who require access in order for us to fulfil the purposes for which we hold that data.

    We will share your personal data with third parties where we are required by law, where it is necessary to administer the relationship between us or where we have another legitimate interest in doing so. For the avoidance of doubt, we do not and never shall sell your personal data to third parties for marketing, advertising or other purposes.

    “Third parties” includes third-party service providers. The following activities may be carried out by third-party service providers: IT and cloud services, professional advisory services, administration services, marketing services and banking services. All of our third-party service providers are required to take commercially reasonable and appropriate security measures to protect your personal data. We only permit our third-party service providers to process your personal data for specified purposes and in accordance with our instructions.

    We may share your personal data with other third parties, for example in the context of the possible sale or restructuring of the business. We may also need to share your personal data with a regulator or to otherwise comply with the law.

    We will not transfer the personal data we collect about you outside of the EEA.

    Use of Cookies

    Our cookies policy is available to view here.

    Links to other websites

    We may provide links to third party sites. Since we do not control those websites, we encourage you to review the Privacy Notices of those third party sites. Any information provided on these sites will not be within our control and we cannot be responsible for the privacy policies or the practices of these sites.

    Data Security

    We take the security of your data and our own most seriously. We have put in place commercially reasonable and appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

    We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

    Your rights

    You have the right to object to our use of your personal data, or ask us to delete, remove or cease using it if there is not need for us to retain it. This is known as your right to be forgotten. There are genuine legal and accountancy reasons why we will need to keep your data, but please do inform us if you think we are retaining or using your personal data incorrectly.

    Our Privacy Notice will be made clear to you at any point of collection of your personal data. You will always have the right to ask us not to process your personal data for marketing purposes. If you choose not to receive marketing communications from us about our products and services, you will be able to make that choice by not opting in to receive such communications. We will not contact you for marketing purposes unless you have given us your prior consent through this opt-in process.

    It is important that the personal data we hold about you is accurate and current. Should your personal information change, please notify us of any changes of which we need to be made aware by emailing DPO (@) digi.me.

    Under certain circumstances, by law you have the right to:

    – Request access to your personal data. This enables you to receive details of the personal data we hold about you and to check that we are processing it lawfully;
    – Request correction of the personal data that we hold about you;
    – Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object to processing (see below);
    – Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this basis. You also have the right to object where we are processing your personal information for direct marketing purposes;
    – Request the restriction of processing of your personal data. This enables you to ask us to suspend the processing of personal data about you, for example if you want us to establish its accuracy or the reason for processing it;
    – Request the transfer of your personal data to you or another data controller if the processing is based on consent, carried out by automated means and this is technically feasible.

    If you want to exercise any of the above rights, please email DPO (@) digi.me.

    You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

    We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it. We apologise in advance for any delay that may arise from these security measures.

    Your right to withdraw Consent

    Where you may have provided your consent to the collection, processing and transfer of your personal data for a specific purpose (e.g. in relation to direct marketing that you have indicated you would like to receive from us), you have the right to withdraw your consent for that specific processing at any time. To withdraw your consent, please email DPO (@) digi.me.

    Once we have received notification that you have withdrawn your consent, we will no longer process your personal data for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.

    Changes to this Privacy Notice

    This Privacy Notice may be updated from time to time. Any changes we make to this Privacy Notice will be updated on our website.

    Contacting us

    Should you have any questions regarding this Privacy Notice or would like further information about how we process your personal data, please email DPO (@) digi.me.

    Your right to make a complaint

    You have the right to make a complaint to the Information Commissioner’s Office (ICO) about how we hold or process your personal data. The ICO’s contact details are:

    Information Commissioner’s Office
    Wycliffe House
    Water Lane
    Wilmslow
    Cheshire
    SK9 5AF

    Tel: 0303-123-1113

  • Privacy Policy

    Written by Team Member
    Updated this week

    Updated: May 21, 2018

    General

    We at dock.io, Inc., d/b/a dock.io (“we,” “our” or “us”) very much respect your privacy, are committed to protecting it and want you to be informed about the ways we protect, use and share the information that we collect.

    This Privacy Policy (this “Policy”) serves to inform you of our policies and procedures regarding the collection, use and disclosure of the information we receive when you visit the website and associated domains of https://dock.io (the “Site”) and when you access use any part of our services, software, applications, content, programs and products available through the Site or other related toolbars, widgets, applications or distribution channels operated by us (the “Services”).  This Policy applies only to information that you provide to us through the Site or the Services, when you access or use any content appearing on the Site or made available through the Services, or that we collect on your behalf as part of the Services.

    This Policy is an integral part of our Terms of Service (the “Terms of Service”).

    Types of Information We Collect

    Personal Identifiable Information “PII”

    Personal Identifiable Information (“PII”) is information that specifically identifies you as an individual, including, but not limited to:

    • Name
    • Email address
    • Password
    • Location
    • Phone number
    • Headline
    • Social Media accounts
    • Introduction
    • Experiences – including company, title, dates, and description
    • Skills
    • Education
    • Reviews and endorsements
    • Network Contacts
    • KYC data
    • Tax data
    • Account login information for third party services providers
    • IP addresses and other information collected passively
    • Device identifiers

    In order to use the Services and create an account on the Site (your “Account”), you must provide us with at least your name and email address, and a password for your Account.  In the course of using the Services, you may choose to provide additional PII on your profile to create your profile, network with other users, administer your Account, or access certain restricted parts of the Site and the Services.  Providing additional PII also enables us to provide you with relevant contents on and off of the Services.  You understand that by creating an Account with us, we and other users or visitors of the Site will be able to identify you by your profile.

    You may import your address books, contact lists and/or emails, including first name, last name, email address, company, job title and other Personal Information of your contacts (collectively, “Contact Data”), into the Service. You may choose to activate or deactivate the import feature on your Account at any time. When this feature is activated, your address book, contact list or email is copied to our servers and automatically scanned for relevant Contact Data. For some email services, you may need to provide your username and password for us to access your email to enable this feature. We store the Contact Data and use it to provide the services and help you manage and network with your contacts in connection with the Services as described further below. We use industry-standard security practices for the security of any username and or password you provide us.

     
    Non- PII

    We also collect information about the use of our Service and the characteristics and activities of users of the Services, from which any personal information has been removed (“Non-Personal Identifiable Information”). When you access the Site or use the Services, we may collect Non-PII, including without limitation:

    • Information regarding your use of the Services, including without limitation, activity and visit behavior on your website;
    • Information that your browser sends whenever you visit a website or online service (“Log Data”). This Log Data may include, but is not limited to: your computer’s Internet Protocol (IP) address, device type, browser type, operating system and version, the web page you were visiting before you came to the Site, information you search for on the Site, locale preferences, identification numbers associated with your devices, your mobile carrier, date and time stamps associated with transactions, system configuration information, metadata concerning your files, and other interactions with the Services;
    • Content that you upload to your Account, your website, your profile or otherwise provided to us that is not Personal Information.

    In this Policy, we refer to all information collected from or about you, including but not limited to Personal Information, Contact Data and Non-Personal Information, as “Your Information.”

    Cookies.

    Cookies are small bits of information that this website places on your computer. We and our third party service providers use cookies and Pixel Tags to identify your IP address, browser type, domain name, and specific web pages through which you click. This data is collected automatically and utilized to help us look for trends to improve our website and your interactive experience. The cookies allow us to recognize you when you return to the website and to provide you with a customized experience that we feel will be of value to you. The cookies that are configured by this website do not contain any personally identifying information, such as your name, or sensitive information, such as your credit card number. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the website you visit. If you do not accept cookies, however, you may not be able to use all portions of the Site or all functionality of the Services

    Social Media.

    The Services provide you and users the opportunity to interact and connect through various social media sites including, but not limited to, Facebook and Twitter (“Social Media”). Your interactions with the Social Media sites and any information you provide to us in connection with such interactions are not Personal Information.  Our Site may also include social media features, such as a connect with Facebook option, and widgets, such as the Share this button, or interactive mini-programs that run on our Site (the “Features”). These Features may collect your IP address, which page you are visiting on our Site, and may set a cookie to enable the Features to function properly. The Features are either hosted by a third party or hosted directly on our Site. Your interactions with these Features are governed by the privacy policy of the company providing it.


    Service Providers.

    We do not sell your Personal Information or Contact Data to any third party; however, we may share Your Information with third parties as described below.

    Additional Features.

    We are always seeking to improve the Services and will introduce new features, some of which may result in the collection of new information. If we start collecting substantially new types of personal information and materially change how we handle your data, we will modify this Policy and post the revised Policy on the Site and may notify you in accordance with this Policy.

    How We Use Your Information

    When you submit information to us, it is collected, processed and maintained solely by us or by third party agents who are bound by privacy restrictions at least as restrictive as those set forth in this Policy. Your Information is used and disclosed for, but is not limited to, the following purposes:

    • Administer your use of the Services and any accounts you may have with us
    • Account Registration
    • Personalize your experience
    • Allow you to login and/or import data to other websites
    • Connecting your information with other applications
    • Provide to you Service announcements
    • Provide you with further information and offers from us or third parties that we believe you may find useful or interesting, such as newsletters, marketing or promotional materials
    • On behalf of and according to instructions of a third party
    • To enforce our Terms of Service
    • To resolve any questions or issues being experienced
    • To contact you to obtain feedback from you regarding the Site and the Services
    • Verifying KYC information or fulfilling tax requirements as required by law
    • Exporting your data when requested by you
    • Protecting against and deterring against fraudulent, harmful, or unlawful behavior

    If you decide at any time that you no longer wish to receive such contact, announcements, information or offers, please follow the unsubscribe instructions provided in the communication.  Furthermore, communications that you initiate through the Services (for example, an invitation sent to a non-user or non-member) will list your name and primary email address in the header of the message.

    We use Non-Personal Information for the above purposes and in addition in order to:

    • Monitor and analyze use of the Services and for the technical administration of the Site
    • Improve the Site and the Services
    • Generate and derive useful data and information concerning the interests, characteristics and website use behavior of our users
    • Verify that users of the Services meet the criteria required to process their requests.

    Your Information, including your Contact Data, that you provide to us may reveal or allow others to identify aspects of your life and your contacts’ life that are not expressly stated on your profile (for example, your picture or your name may reveal your gender). By providing Your Information to us, you are expressly and voluntarily accepting the Terms of Service and freely accepting and agreeing to our processing of Your Information, including your Contact Data, in ways set out by this Policy. Supplying to us any information deemed “sensitive” by applicable law is entirely voluntary on your part.

    Analytics Information.

    We use third-party analytics tools (such as Google Analytics) to help us measure traffic and usage trends for the Services. These tools collect information sent by your browser as part of a web page request, including the web pages you visit, your browser add-ons, and other information that assists us in improving the Services. We may collect and use this analytics information together with your Personal Information and stitch together session data from unauthenticated user visits with authenticated user visits to build a broader profile of our individual users so that we can serve you better.  You can find out more information about how Google Analytics works and collects and processes the data here: www.google.com/policies/privacy/partners/.

    Links to Other Websites.

    We may present links in a format that enables us to keep track of whether these links have been followed.

    This Policy applies only to the Site and the Services. We do not exercise control over third party services or other websites that provide information, or over banners, other advertisements or links from within the Site or the Services. These other sites may place their own cookies or other files on your computer’s browser, collect data or solicit personal information from you. Other websites follow different rules regarding the use or disclosure of the Personal Information that you submit, and the collection and use of such information and access of any third party websites are subject to such third party’s privacy policy. We encourage you to read the privacy policies and other terms of such third parties’ websites before using their services.

    Data Subject Rights

    You have certain rights with how your Personal Data is processed which are described below. In some circumstances, we may not be able to fully comply with your requests, or we may ask you to provide us with additional information in connection with your request, which may be Personal Data, for example, if we need to verify your identity or the nature of your request. In such situations, however, we will still respond to let you know of our decision.

    Right to be informed – You have the right to know how your data is being processed.

    Right of Access – Your have the right to access and request copies of your data that’s being collected.

    Right of Rectification – You have the right to modify or update your personal data if incorrect data is being used.

    Right to Erasure – You have the right to delete any personal data that has been collected.

    Right to Restriction – You have the right to prevent a company from processing certain types of personal data.

    Right to Data Portability – You have the right to access your personal data and transfer it between controllers.

    Right to Object – You have the right to withdraw consent to the processing of your data for public interest, marketing or research.

    Right to Reject Automated Decisions – You have the right to object to your data being processed by automatic systems.

    To make any of requests described above, contact us at privacy@dock.io.

    Information Sharing and Disclosure

    Disclosure by You of Information of Other Users.

    Personal Information of another user obtained through your use of the Site or the Services may be used by you only for the purpose for which such Personal Information was provided to you and strictly in accordance with the Terms of Service and this Policy, or otherwise subject to such user’s prior written consent.

    Your Submissions.

    As an online profile and networking platform, part of Your Information and with your permission, including without limitation content of your profile, is shared with other visitors to the Site.  Any information you choose to provide in a submission on the Site or the Services should reflect how much you want other users to know about you. We recommend that you guard your anonymity and sensitive information and we encourage you to think carefully about what information about yourself you disclose in your comments or submissions.

    Social Media and other Applications.

    If you have opted to link your Account to your Social Media accounts or other third-party applications, you can easily share content from the Services to these third party services, in accordance with your Account settings (which you may change at any time) and respective policies of these third parties.  If you connect your Account with one of these services, you may be giving such third party service access to your Personal Information or Contact Data.

     
    Service Providers.

    We may employ third party companies and individuals to facilitate or enhance the Services, to provide the Services on our behalf (such as email delivery), to assist us in analyzing how the Services is used, and to perform services related to administration of the Services or the Site (including, without limitation, maintenance, hosting and database management services, website analytics and administration).

    Combined Information.

    We may combine certain Personal Identifiable Information with Non-Personal Identifiable Information in order to allow us to create information packages and services that are better tailored to your interests and preferences. Among other things, linking this information may allow us generally to improve and personalize the Site and the Services. If we combine or link any information with your Personal Information, the resulting combination will be treated as Personal Information under this Policy.

    Compliance with Laws and Law Enforcement.

    We cooperate with government and law enforcement officials and private parties to enforce and comply with the law. We will disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to: (1) comply with a legal requirement or process, including, but not limited to, civil and criminal subpoenas, court orders or other compulsory disclosures; (2) enforce this Policy or the Terms of Service; (3) respond to claims of a violation of the rights of third parties; (4) respond to user comments or service inquiries; (5) protect the our rights, property, or safety and the rights, property and safety of the Services, our users or the public; or (6) prevent or stop any activity we may consider to be, or to pose a risk of being, illegal, unethical, inappropriate or legally actionable.

    Changing or Deleting Your Information

    You may review, update, correct or delete Your Information, if not required to be retained by law or for legitimate business reasons. You may delete your account at any time by done at any time by accessing the General tab under the Settings section. This right shall only be limited where the burden or expense of providing access would be disproportionate to the risks to your privacy in the case in question, or where the rights of persons other than you would be violated. If you close your Dock account, we will mark your account in our database as “Closed,” but will keep your account information in our database for a period of time described above and then deleted. This is necessary in order to deter fraud, by ensuring that persons who try to commit fraud will not be able to avoid detection simply by closing their account and opening a new account. However, if you close your account, your personally identifiable information will not be used by us for any further purposes, nor shared with third parties, except as necessary to prevent fraud and assist law enforcement, as required by law, or in accordance with this Privacy Policy.

    For assistance with deleting your Account, please follow the steps here.

    Transfer of data and personal information to the U.S.

    We primarily store data about you, including personal information, on servers located and operated within the United States. Therefore, if you reside outside of the United States, in order to provide the services to you, we may send and store your personal information (also commonly referred to as personal data) outside of the country where you reside or are located, to the united states. Therefore, our collection and use of your personal information is subject to the United States’ laws related to privacy and use of personal data and information.  These laws, including what is determined to be “personal data and/or information,” are different and may be less protective than those applicable to you in your country of residence. By accepting the terms of this policy you acknowledge, agree and consent to (1) the transfer to and processing of personal information on servers located outside of the country where you reside, (2) our collection and use of your personal information as described herein and in accordance with the laws of the united states that may be different and may be less protective than those in your country and (3) that you are taking a risk by using the site and services.

    Changes to this Policy.

    We may at times update or make changes to this policy and will notify users of these changes on our Privacy Policy page. Users should visit this page periodically to review the most current Policy and may notify users by email of changes to the Policy. We will also contact you if there are any significant changes made. If any future changes to this Policy are unacceptable to you, you may delete your account and remove all data associated with your account.

    Our Policy Toward Children

    We understand the importance of protecting children’s privacy, especially in an online environment. The Site and Services are not designed for or directed at children and children under 13 are not permitted to use the Services. We do not knowingly collect personally identifiable information from children under 13.  If we become aware that we have unknowingly collected personal information from a child under the age of 13, we will make commercially reasonable efforts to delete such information from our database.  If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us at privacy@dock.io.

    Security

    Dock is very concerned about safeguarding the confidentiality of your personally identifiable information. We employ administrative, physical and electronic measures designed to protect your information from unauthorized access. However, we cannot guarantee unauthorized personnel will not gain access to your personal information despite our efforts. You should note that in using Dock, your information would travel through third party infrastructures, which are not under our control. PLEASE DO NOT PROVIDE ANY PRIVILEGED INFORMATION ON THE SITE OR WHEN USING THE SERVICE.

    Contact Us

    If you have any concerns or questions about this Policy, please contact us at privacy@dock.io.

  • DZone.com Privacy Policy

    DZone is committed to protecting your privacy. This Privacy Policy applies to the web site at dzone.com and all other affiliated sites and services (collectively, the “Site”). We are providing this Privacy Policy to inform you of our policies and procedures regarding the collection, use, and disclosure of personal information that we collect and receive from you in connection with the Site.

    This Privacy Policy does not apply to: (1) activities that occur offline; or (2) to information we collect outside of the Sites, including through any AnswerHub-powered site or the www.dzonesoftware.com website provided by DZone.

    The Site is made available free of charge only because advertisers and sponsors on the Site cover the costs associated with hosting and operating the Site. As further described below, by clicking on advertisements on the Site and taking advantage of sponsored content on the Site, you consent to the delivery of the personal information gathered by DZone to DZone’s advertisers and sponsors.

    Collection of Personal Data

    When inquiring about use of or subscribing to or otherwise using the Site, you may provide certain personally identifiable information necessary for use of the Site and for communicating with you. The data collected includes information about you that can be used to contact or identify you, and information related to your use or potential use of Site (collectively, “Personal Information”). Personal Information that we collect may include without limitation name, email address, organization, job title, and phone number.

    Within our Site, if you interact with other users, the Site may share additional information with such other users. The additional information you share by participating in these types of communications is your choice and responsibility and the privacy of such information cannot be guaranteed. Similarly, information you share through messaging within our Site is solely your responsibility.

    We will maintain your personal data so long as your account is active.

    Use of Cookies and Tracking Technologies

    We use cookies as part of the Site to store your viewing preferences on the Site and, at your choosing, to store your login information so that once you have logged in you do not need to repeat the login process.

    We also use session ID cookies to make it easier for you to navigate our Site. A session ID cookie expires when you close your browser. If you reject cookies, you may still use our Site, but your ability to use some areas of our Site will be limited.

    We also may use pixel tags, web beacons and other similar technologies to improve our understanding of site traffic, visitor behavior, and response to promotional campaigns, as a supplement to our server logs and other methods of traffic and response measurement. Pixel tags are sometimes used in conjunction with small Javascript-based applications, which are also for the purpose of traffic measurement. We may also implement pixel tags provided by other companies, for the same purpose. The information we obtain in this manner enables us to customize the Site and to measure the overall effectiveness of the Site’s content, programming and other activities. DZone uses Google Analytics to measure site traffic, visitor behavior, and to improve delivery of services. To understand the information shared with Google, how it is processed, and how you can control the information collected by Google on DZone, visit https://policies.google.com/technologies/partner-sites.

    In addition to personal information, certain anonymous information about your visit is automatically captured when you visit the Site. This information includes the name of the Internet service provider and the Internet Protocol (IP) address through which you access the Internet; the date and time you access the Site; the pages that you access while at the Site, occasional geographic data, and the Internet address of the Web site from which you linked directly to our site. We also may use your IP address to determine the organization that you are affiliated with. This anonymous information is used to help improve the Site, analyze trends, and administer the Site.

    We may monitor your interactions with the Site, such as what pages you visit, what content you review, and what comments you make, and maintain this information with your Site profile.

    Use and Disclosure of Information

    We do not sell, rent, use or share your personal information with others except as indicated in this Privacy Policy.

    We may use your Personal Information to:

    • provide the Site and associated content and services,
    • complete information for you including your name, signature, and profile picture when you post content to the Site,
    • support and maintain the Site,
    • improve and update the Site,
    • communicate information to you that you have requested,
    • for our marketing, research and development purposes, and
    • for other purposes specified in this Privacy Policy or at the time information is requested from you.

    Comments or questions sent to us using email or other messaging tools will be shared with our staff that is most likely to be able to address your concerns. We may archive your messages once we have provided you with a response. If we find your personal question valuable to community discussion, we reserve the right to post your question on the Site, after using reasonable efforts to remove any names or personal identification. Please note that email communications will not necessarily be secure; accordingly, you should not include sensitive information in email correspondence with us.

    DZone may aggregate your information with other users’ information to determine and distribute aggregated statistics and information about the Site and its use and users. This aggregated information will not identify any specific user.

    DZone may disclose your Personal Information to sponsors of content (such as white papers, product downloads, reference guides, and other content) and to advertisers on the Site when you download or otherwise access such content, or view or click on such advertisements.

    DZone may also disclose your Personal Information to selected outside firms for marketing purposes. These firms are required to target their offers carefully. You may modify your account to withdraw your consent to receive offers that are not tied to your specific actions in clicking on advertisements or downloading sponsored content.

    DZone may also disclose Personal Information:

    • when we have your permission to do so; or
    • to companies who work for DZone to provide one or more parts of the Site or that provide related administrative functions (such as support Sites and analytics). These third parties may have access to your personal information; if they do, this access is only so that they may perform these tasks on our behalf and they are obligated not to disclose or use it for any other purpose; or
    • when we believe in good faith that disclosure is reasonably necessary to (1) comply with a legal process or law, or to respond to a subpoena, court order, or government request for information, (2) enforce Terms of Service and/or other agreements between you and DZone, (3) respond to claims that any content on the Site violates the rights of third parties, or that otherwise arise from your use of the Site, or (4) protect the rights, property, or personal safety of DZone, its users, or the public.
    • when required or permitted to do so by law for public safety. Disclosures may be made to protect you from a serious threat to your health or safety or to protect the health or safety of another person.

    Your Rights

    You may withdraw your consent for disclosure of your Personal Information to sponsors of third-party content by providing notice to DZone at the address or email address noted below. If you withdraw your consent, your account will either be suspended or removed, or you will be restricted from downloading such content.

    You have the right to access and edit, update or delete your personal information by logging onto the Site and accessing your account information. You may contact us with any questions or if you need assistance in updating or deleting your personal information.

    You can ask us for a copy of your personal data in machine readable form.

    Third Parties and Links

    This Privacy Policy applies only to our Site. We may provide links to other information and sites that we believe may be of interest to our users. Their sites may collect or request personally identifiable information from you. You should review the privacy policy of these sites before providing such information, as these sites are not covered by our Privacy Policy. We cannot guarantee the standards of sites to which we link or be responsible for the contents, or privacy practices and policies, of these and other third-party sites. We encourage you to read the privacy policy of every site you visit.

    Our Site may include social media features, including the Facebook Like button and widgets, such as the “share this” button or interactive mini-programs that run on our Site. These features may collect your IP address, where you are using our Site, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our Site. Your interactions with these features and widgets are governed by the privacy policy of the company that created the feature.

    Access to Account

    If you are a registered user of the Site, you can change your account information through your user profile page. You may need to supply certain information so that we can try to verify that you have authority to modify this information.

    Opt-Out

    You may opt-out of receiving certain marketing communications from us, by emailing us at privacy@dzone.com. In addition, all marketing e-mails from DZone will provide you with the opportunity to unsubscribe from future marketing mailings. Even if you opt out of such mailings, however, we reserve the right to send you e-mail and other communications to disclose maintenance and other Site-related issues.

    Legal Requirements

    We intend to protect your privacy to the fullest extent possible as described in this policy while also fulfilling our responsibility to uphold all applicable laws and regulations. Due to potential legal requirements and other possible circumstances, we cannot ensure that all of your private communications and other personally identifiable information will never be disclosed or accessed in ways not otherwise described in this policy. We may be compelled under law to disclose information to government or third parties under certain circumstances or third parties may unlawfully intercept or access transmissions or private communications. Further, we can, and you hereby authorize us to, disclose any information to law enforcement or other government officials that we, in our sole discretion, believe necessary or appropriate in compliance with the law and/or government requests.

    United States

    The Site is hosted in the United States. If you are accessing the Site from outside the United States, please be advised that through your continued use of the Site, which is governed by U.S. law and this Privacy Policy, you are transferring your personal information to the United States and you consent to that transfer. The United States may not have the same data protection laws as your country. However, to the extent that Regulation (EU) 2016/679, the General Data Protection Regulation (“GDPR”) applies to you, DZone will comply with GDPR.

    Security Measures

    We have implemented reasonable and industry standard security measures on the Site to help protect against the loss, misuse and alteration of the personal information under our control. Additionally, we take reasonable steps to ensure that our third party business partners, including our hosting partners, provide sufficient protection for personal information. We will take reasonable efforts to maintain Personal Information in the area (e.g., country or continent) as specified by our Customer. We will promptly make any legally required disclosures of any breach of the security, confidentiality, or integrity of your unencrypted electronically stored personal data.

    You acknowledge that no method of transmission over the Internet, or method of electronic storage, is 100% secure, and that we cannot guarantee absolute security. If you have any questions about security on our Site, you may contact us.

    Privacy of Children

    Children under age 16 are not permitted to use the Site. We will not knowingly collect personally identifiable information on the Site from children under 16. If we become aware that a user of the Site is under the age 16 and has provided us with Personal Information, we may delete such information from our files and may deactivate the related account.

    In the Event of Merger, Sale or Bankruptcy

    In the event that all or part of DZone is acquired by or merged with a third party entity, DZone may transfer or assign the personally identifiable information held by DZone as part of such merger, acquisition, or other change of control. In the unlikely event of DZone’s bankruptcy, insolvency, reorganization, receivership, or assignment for the benefit of creditors, or the application of laws or equitable principles affecting creditors’ rights generally, DZone may not be able to control how personal information is treated, transferred, or used.

    Changes to this Privacy Policy

    This policy may be revised by us from time to time. By using this Site you agree that we have a right to change our policy without prior notification. The revised policy will appear on our Site with the date of last revision. Your continued use of the Site following such revisions will be conclusively deemed acceptance of any changes to these Terms.

    If you have any questions or complaints regarding this Privacy Policy, please email us or write to:
    DZone, Inc.
    150 Preston Executive, Suite 201
    Cary, NC 27513 USA
    privacy@dzone.com

    If you believe you have not received an appropriate response from us regarding your question or complaint, you may contact the applicable supervisory authority below based on your residence:

    • EU Data Protection Authorities (DPAs)
    • Swiss Federal Data Protection and Information Commissioner (FDPIC)

    Last Revised: May 2018

  • Privacyverklaring EASY Noise Control B.V.

    Via onze webwinkel worden privacygevoelige gegevens oftewel persoonsgegevens verwerkt. EASY Noise Control B.V. acht een zorgvuldige omgang met persoonsgegevens van groot belang. Persoonlijke gegevens worden door ons dan ook zorgvuldig verwerkt en beveiligd.

    Bij onze verwerking houden wij ons aan de eisen die de privacywetgeving stelt. Dat betekent onder andere dat:

    • wij duidelijk vermelden met welke doeleinden wij persoonsgegevens verwerken. Dat doen wij via deze privacyverklaring;
    • wij onze verzameling van persoonsgegevens beperken tot alleen de persoonsgegevens die nodig zijn voor legitieme doeleinden;
    • wij u eerst vragen om uitdrukkelijke toestemming om uw persoonsgegevens te verwerken in gevallen waarin uw toestemming is vereist;
    • wij passende beveiligingsmaatregelen nemen om uw persoonsgegevens te beschermen en dat ook eisen van partijen die in onze opdracht persoonsgegevens verwerken;
    • wij uw recht respecteren om uw persoonsgegevens op uw aanvraag ter inzage te bieden, te corrigeren of te verwijderen.

    EASY Noise Control B.V. is de verantwoordelijke voor de gegevensverwerking. In deze privacyverklaring leggen wij uit welke persoonsgegevens wij verzamelen en gebruiken en met welk doel. Wij raden u aan deze zorgvuldig te lezen.

    Deze privacyverklaring is voor het laatst aangepast op 01-12-2017 00:00:00.

    Gebruik van persoonsgegevens
    Bij het gebruiken van onze webwinkel verkrijgen wij bepaalde gegevens van u. Dat kunnen persoonsgegevens zijn. Wij bewaren en gebruiken uitsluitend de persoonsgegevens die rechtstreeks door u worden opgegeven, in het kader van de door u gevraagde dienst, of waarvan bij opgave duidelijk is dat ze aan ons worden verstrekt om te verwerken.

    Wij gebruiken de volgende gegevens voor de in deze privacyverklaring genoemde doelen:

    • NAW gegevens
    • Telefoonnummer
    • Factuuradres
    • Emailadres
    • Betalingsgegevens
      Registreren
      Bij bepaalde onderdelen van onze webwinkel moet u zich eerst registreren. Na registratie bewaren wij via de door u gekozen gebruikersnaam de door u opgegeven persoonsgegevens. Wij bewaren deze gegevens zodat u deze niet elke keer opnieuw hoeft in te vullen en zodat wij u kunnen contacteren in het kader van uitvoering van de overeenkomst.

    Wij zullen de aan uw gebruikersnaam gekoppelde gegevens niet aan derden verstrekken, tenzij dat noodzakelijk is in het kader van de uitvoering van de overeenkomst die u met ons sluit of indien dit wettelijk verplicht is. In geval van een vermoeden van fraude of misbruik van onze webwinkel kunnen wij persoonsgegevens aan de bevoegde autoriteiten overhandigen.

    Afhandelen bestelling
    Wanneer u bij ons een bestelling plaatst, maken wij voor de afhandeling daarvan gebruik van uw persoonsgegevens. Indien dat nodig is voor een goede afhandeling kunnen wij uw persoonsgegevens ook aan derden verstrekken. Meer daarover leest u verderop in deze privacyverklaring.

    Reclame
    Wij kunnen u, naast de informatie op onze website, ook op de hoogte brengen van onze nieuwe producten en diensten:

    • per e-mail
    • via social media

    Contactformulier en nieuwsbrief
    Wij bieden via onze webwinkel de mogelijkheid om vragen te stellen middels een contactformulier, waarbij u gevraagd wordt diverse gegevens in te vullen om uw vraag te behandelen. U kiest zelf welke gegevens u daarbij verstrekt. De gegevens die u ons toestuurt, worden bewaard zolang als naar de aard van het formulier of de inhoud van uw e-mail nodig is voor de volledige beantwoording en afhandeling daarvan.

    Wij bieden een nieuwsbrief waarmee wij geïnteresseerden willen informeren over onze producten en/of diensten. Iedere nieuwsbrief bevat een link waarmee u zich kunt afmelden. Uw e-mailadres wordt slechts met uw expliciete toestemming toegevoegd aan de lijst van abonnees.

    Publicatie
    Wij publiceren uw klantgegevens niet.

    Verstrekking aan derden
    Wij kunnen uw gegevens doorgeven aan onze partners. Deze partners zijn betrokken bij de uitvoering van de overeenkomst.
    Deze partners zijn (mede) gevestigd buiten de EU.
    In onze webwinkel zijn social media buttons opgenomen. Hiermee verzamelen de beheerders van deze diensten uw persoonsgegevens.

    ** Cookies**
    Op onze webwinkel wordt gebruik gemaakt van cookies. Ook via derden die door ons zijn ingeschakeld worden cookies geplaatst.

    Wanneer u onze webwinkel voor het eerst bezoekt, wordt er een mededeling getoond waarin wij u uitleggen waarom wij cookies gebruiken. Uw verder gebruik van onze webwinkel vatten wij op als toestemming voor dit gebruik van cookies.

    Het staat u vrij om cookies uit te schakelen middels uw browser. Houd er wel rekening mee dat het mogelijk is dat onze website dan niet meer optimaal werkt.

    Met derden die cookies plaatsen hebben wij afspraken gemaakt over het gebruik van de cookies en applicaties. Toch hebben wij geen volledige controle op wat de aanbieders van deze applicaties zelf met de cookies doen wanneer zij deze uitlezen. Voor meer informatie over deze applicaties en hoe zij met cookies omgaan, zie graag de privacyverklaringen van deze partijen (let op: deze kunnen regelmatig wijzigen).

    Google Analytics
    Wij gebruiken Google Analytics om bij te houden hoe bezoekers onze webwinkel gebruiken. Wij hebben een bewerkersovereenkomst met Google gesloten om afspraken te maken over de omgang met onze data. Verder hebben wij Google niet toegestaan de verkregen Analytics informatie te gebruiken voor andere Google diensten, tot slot laten wij de IP-adressen anonimiseren.

    Beveiliging
    Wij nemen beveiligingsmaatregelen om misbruik van en ongeautoriseerde toegang tot persoonsgegevens te beperken.

    Bewaartermijnen
    De hierboven beschreven persoonsgegevens worden bewaard voor zo lang als nodig om uw bestellingen af te handelen, inclusief garantie. Daarna bewaren wij gegevens nog maximaal een jaar voor de beschreven statistische doeleinden. De gegevens worden vervolgens gewist, tenzij er een wettelijke plicht is die langer bewaren vereist (zoals de fiscale bewaarplicht van zeven jaar voor betaalgegevens).

    Websites van derden
    Deze privacyverklaring is niet van toepassing op websites van derden die door middel van links met onze webwinkel zijn verbonden. Wij kunnen niet garanderen dat deze derden op een betrouwbare of veilige manier met uw persoonsgegevens omgaan. Wij raden u aan de privacyverklaring van deze websites te lezen alvorens van deze websites gebruik te maken.

    Wijzigingen in deze privacyverklaring
    Wij behouden ons het recht voor om wijzigingen aan te brengen in deze privacyverklaring. Het verdient aanbeveling om deze privacyverklaring geregeld te raadplegen, zodat u van deze wijzigingen op de hoogte bent.

    Inzage en wijzigen van uw gegevens
    Voor vragen over ons privacybeleid of vragen omtrent inzage en wijzigingen in (of verwijdering van) uw persoonsgegevens kunt u te allen tijde contact met ons opnemen via onderstaande gegevens.

    U kunt ons ook een verzoek toesturen om deze gegevens in te zien, te wijzigen of te verwijderen. Ook kunt u een verzoek indienen om een gegevensexport op te vragen voor gegevens die wij met uw toestemming gebruiken, of gemotiveerd aangeven dat u de verwerking van persoonsgegevens door ons wil laten beperken.

    Om misbruik te voorkomen kunnen wij u daarbij vragen om u adequaat te identificeren. Wanneer het gaat om inzage in persoonsgegevens gekoppeld aan een cookie, dient u een kopie van het cookie in kwestie mee te sturen. U kunt deze terug vinden in de instellingen van uw browser. Indien de gegevens niet kloppen, kunt u ons verzoeken om de gegevens te wijzigen of te laten verwijderen.

    Autoriteit Persoonsgegevens
    Natuurlijk helpen wij u graag verder als u klachten heeft over de verwerking van uw persoonsgegevens. Op grond van de privacywetgeving heeft u ook het recht om een klacht in te dienen bij de Autoriteit Persoonsgegevens tegen deze verwerkingen van persoonsgegevens. U kunt hiervoor contact opnemen met de Autoriteit Persoonsgegevens.

    Contactgegevens
    EASY Noise Control B.V.
    Boteyken 363
    3454 PD De Meern
    info@easy-noisecontrol.nl
    302270800

  • Elegant Themes Privacy Policy

    Your privacy is important to us

    Purpose of the Privacy Policy.

    Elegant Themes, Inc. (“Elegant Themes”, “we” or “us”) is a WordPress Theme & Plugin company, which means we build web software that people (our “Clients”) can use to power their websites (our “Service”). People who run their websites on WordPress, or web development agencies that build websites for their clients on WordPress, can purchase our Themes & Plugins to assist them in the creation of those websites. Our Themes are pre-made templates that change how the website looks, while the plugins add functionality of some kind (much like an App in the IOS App store). Clients in turn make their websites available to their customers (“End Users”) and may in turn collect information from them.

    We are committed to respecting and protecting the privacy rights of Clients and their End Users, and we created this Privacy Policy to give you notice of how your private information will (and will not) be used by us. This Privacy Policy provides information on our policies and procedures regarding the collection, use and disclosure of personal information we receive from (1) Clients, (2) End Users who download and use the websites created by Clients (“End Users”), and (3) visitors who simply browse the Site or Apps (“Visitors”).

    End Users may be asked by Clients to provide additional information to them, including your personally identifiable and other information, to be used and shared pursuant to their own privacy and confidentiality policies, and we may collect and share information related to interactions by End Users with the respective Client. We encourage you to read the Clients’ privacy policies. We are not responsible for the use of your information by any Clients, and disclaim any liability related thereto.

    By using or accessing the Service in any manner, you acknowledge that you accept the practices and policies outlined in this Privacy Policy, and you hereby consent that we will collect, use, and share your information in the following ways.

    Remember that your use of the Service is at all times subject to the Terms of Service[http://www.elegantthemes.com/policy/terms/], which incorporates this Privacy Policy. Any terms we use in this Policy without defining them have the definitions given to them in the Terms of Service.

    This Privacy Policy may be updated from time to time. We will notify you of any material changes by posting the new Privacy Policy on the Site. You are advised to consult this policy regularly for any changes.

    What Information Do You Collect and How Do You Collect It?

    At various times, you could be asked to provide information such as your name, email address, contact phone number or other information. Information collected is often defined as being either anonymous or personally identifiable:

    Anonymous Information refers to information that cannot be tied back to a specific individual. For instance, we may know that thousands of people have visited this Privacy Policy, but we do not necessarily know their names, where they live, or their date of birth. What we collect from visits such as this constitutes anonymous information. You do not have to provide us with any personal information. Some of the individuals who access our Services decline to use the personalization features that are available to them, and therefore those individuals are anonymous to us and the only data we collect about them is anonymous information.

    Personally Identifiable Information refers to information that tells us specifically who you are, such as your name, email address, or phone number. Downloading information or logging in may allow the Company to “recognize” you to allow us to personalize our service for you.

    We keep this information for a reasonable period of time in connection with your on-going business with us. You have the right to withdraw your consent to use of your Personally Identifiable Information at any time.

    Anonymous Information

    As is true of most websites, we gather certain information (such as mobile provider, operating system, etc.) automatically and store it in log files. We use this information, which does not identify individual users, to analyze trends, to administer the website, to track users movements around the website and to gather demographic information about our user base as a whole. We may link some of this automatically-collected data to certain Personally Identifiable Information.

    Personally Identifiable Information

    If you are a Client, when you register with us via our Website, we will ask you for some personally identifiable information, such as your first and last name, company name, email address, billing address, and credit card information. You may review and update this personally identifiable information in your profile by logging in and editing such information in your dashboard.

    You can request that all of your pesronal information be deleted from our servers using the online deletion request form.

    You can request a copy of your personal information using the online information request form.

    Due to the nature of the Service, except to assist Clients with certain limited technical problems or as otherwise legally compelled, we will not access any of the Content that you upload to the Service.

    In order to use some features of this Service, you (an End User) may at times be asked by a Client to provide certain personal and other information. We also may store any Content that you upload or provide to the Service in order to make available to you with the features and functionality of the Service.

    Some Personally Identifiable Information may also be provided to intermediaries and third parties who assist us with the Service, but who may make no use of any such information other than to assist us in providing the Service. Except as otherwise provided in this Privacy Policy, however, we will not rent or sell your Personally Identifiable Information to third parties.

    If you choose to allow a website to collect your location data, such location data may be available to the applicable Client. In addition, if you have an account with Facebook, Twitter, Google+, LinkedIn, Foursquare or other similar websites (each a “Social Network”), your Social Network identity, including your public picture, may be associated with your location data. If you send a “Do Not Track” request through your web browser, we may still collect and use your browsing data to improve security, to provide our Service and to generate reporting statistics, but in general we will not track other websites that you may have visited.

    Elegant Themes, Inc. is the owner and data controller of the information collected through the Service.

    PayPal

    If you choose to use PayPal to finalize and pay for your order, you will provide your credit card number, directly to PayPal. PayPal’s privacy policy will apply to the information you provide on the PayPal website.

    Stripe.com

    Credit card transactions are also processed using Stripe.com, a secure third party payment processing company. When using your credit card to purchase our product, you may be redirected to their secure third party gateway in the form of an iframe popup. The information you provide for payment will be stored on their secure servers. We do not store any payment information on our servers for your protection. Authorize.net

    Credit card transactions are also processed using Authorize.net, a secure third party payment processing company. When using your credit card to purchase our product, you may be redirected to their secure third party gateway in the form of an iframe. The information you provide for payment will be stored on their secure servers. We do not store any payment information on our servers for your protection.

    In order to make a purchase from us, you must use our shopping cart provider to finalize and pay for your order. Its privacy statement and security practices will also apply to your information. We encourage you to read that privacy statement before providing your information.

    Intercom

    We communicate with our customers using a combination of email and live chat. This communication is facilitated through Intercom.com. Chat histories are stored on their server. Other information, including your username and email address, are provided to Intercom when you sign up. This allows us to locate your account when we chat with you, which is necessary in order for us to provide sales, billing and technical support to our customers.

    No Information Collected from Children.

    We will never knowingly collect any personal information about children under the age of 13. If we obtain actual knowledge that it has collected personal information about a child under the age of 13, that information will be immediately removed from any access. Because it does not collect such information, Elegant Themes has no such information to use or to disclose to third parties. Elegant Themes has designed this policy in order to comply with the Children’s Online Privacy Protection Act (“COPPA”).

    How Do You Use Individual Information?

    General Use

    For our Clients, we use personal information mainly to provide the Services and contact our Clients regarding account activities, new version and product offerings, or other communications relevant to the Services.

    If you contact us by email or by filling-out a registration form, we may keep a record of your contact information and correspondence, and may use your email address, and any information that you provide to us in your message, to respond to you. In addition, we may use the personal information described above to send you information regarding the Service. If you decide at any time that you no longer wish to receive such information or communications from us, email us at support@elegantthemes.com and request to be removed from our list. The circumstances under which we may share such information with third parties are described in part (4) below.

    Our basis for processing your information is typically to perform a contract. Performance of a contract includes fulfilling your order. We may also process information based on consent or for our legitimate interest.

    How Do You Store My Personal Information?

    Storage of Individual Information

    Elegant Themes operates or leases secure data networks protected by industry standard firewall and password protection systems. Our security and privacy policies are periodically reviewed and enhanced as necessary, and only authorized individuals have access to the information provided by our Clients. Notwithstanding such measures, we cannot guarantee that our security measures will prevent our computers from being illegally accessed, and the individual information on them stolen or altered.

    Your account is protected by a password for your privacy and security. You must prevent unauthorized access to your account and Personal Information by selecting and protecting your password appropriately and limiting access to your computer or device and browser by signing off after you have finished accessing your account.

    Third Party Hosting, Serving and Storage

    ELEGANT THEMES MAY CONTRACT WITH A VARIETY OF THIRD PARTY SUPPLIERS/PROVIDERS/VENDORS/SOCIAL NETWORKS FROM TIME TO TIME, TO PROVIDE FOR OUR HOSTING, AUTHENTICATION, SERVING, STORAGE AND TELECOMMUNICATION NEEDS, ETC., INCLUDING WITHOUT LIMITATION STORAGE OF OUR USERS PERSONALLY IDENTIFIABLE INFORMATION. ELEGANT THEMES SHALL NOT BE RESPONSIBLE OR LIABLE, AND HEREBY DISCLAIMS ALL RESPONSIBILITY AND LIABILITY, FOR CULPABLE (INCLUDING WITHOUT LIMITATION NEGLIGENT) ACTS OR OMISSIONS BY ITS THIRD PARTY SUPPLIERS/VENDORS.

    Do You Disseminate Any Personal Information?

    Service Providers 

    We may use third parties to help operate our website, authenticate users and deliver products and services, and may share your Personally Identifiable Information with our service providers, vendors, suppliers, and other third parties that provide products or services for or through this Service (such as website or database hosting companies, authentication providers, address list hosting companies, e-mail service providers, analytics companies, distribution companies and other similar service providers that use such information on our behalf). Unless otherwise stated, these companies do not have any right to use the Personally Identifiable Information we provide to them beyond what is necessary for them to assist us. For more information about these third party, you can read our Tracking Policy.

    Non-identifiable Aggregate Statistics

    We may disclose non-identifiable aggregate statistics regarding user behavior as a measure of interest in, and use of our Service and e-mails to third parties in the form of aggregate data, such as overall patterns or demographic reports that do not describe or identify any individual user or Client.

    Complying with Legal Process 

    Elegant Themes reserves the right to use or disclose your Personally Identifiable Information and other information in response to subpoenas, court orders, warrants, or legal process, or to otherwise establish or exercise our legal rights or defend against legal claims or in the event you violate or breach an agreement with us. We may use and disclose your Personally Identifiable Information if we believe you will harm the property or rights of Elegant Themes, its owners, or those of our other Clients. We might share information when we are investigating potential fraud.

    Business Transitions 

    In the event Elegant Themes goes through a business transition, such as a merger, acquisition by another company, or sale of all or a portion of its assets as well as in the event of a bankruptcy, assignment for benefit of creditors or receivership, a customer list which may include your Personally Identifiable Information may be disclosed and will likely be among the assets transferred. You may be notified thereafter via prominent notice on our web site for 30 days of any such change in ownership or control of your personal information. Elegant Themes further reserves the right to disclose, transfer or sell your personal information to companies who are affiliated with us in our sole discretion.

    Do You Allow Foreign Use Of The Apps?

    To the extent that you are accessing our website in the United States while domiciled outside of the United States, you acknowledge that the Personally Identifiable Information you are providing us may be collected and stored in the United States and therefore consent to the transfer of information to and storage of the information outside of your domiciled country and in the United States.

    Cookies And Tracking Technologies

    General Use

    We use cookies, tracking pixels and related technologies on our website. Cookies are small data files that are served by our platform and stored on your device. Our site uses cookies dropped by us or third parties for a variety of purposes including to operate and personalize the website. Also, cookies may also be used to track how you use the site to target ads to you on other websites. For more information about these third party, you can read our Tracking Policy.

    Third Parties

    Our website employs the use the various third party services. Through the use of our website, these services may place anonymous cookies on the Visitor’s browser and may send their own cookies to the Visitor’s cookie file. Some of these services include, but are not limited to: Google, Facebook, Twitter, Adroll, MailChimp, Sucuri, Intercom and other social networks, advertising agencies, security firewalls, analytics companies and service providers. These services may also collect and use anonymous identifiers such as IP Address, HTTP Referrer, Unique Device Identifier and other non-personally identifiable information and server logs. We do not control the use of these technologies. To learn more, click here.

    You may opt-out from Google’s cookies using their Ad Settings. You may also use the Network Advertising Initiative opt-out page to opt-out of some third party cookies.

    You can also opt out of non essential third party cookies that are used on our website. To control your cookie settings for our website, click here.

    If I have Questions Concerning This Privacy Policy?

    If you have any questions or concerns about this Privacy Policy, please contact us at support@elegantthemes.com.

    You can also write us at:

    Elegant Themes, Inc.
    1233 Howard Street
    Apartment 3A
    San Francisco, CA 94103
    USA

    8. History

    Modified Date: May 25, 2018
    Modified Date: May 16, 2016
    Effective Date: April 29, 2011
  • THIS PRIVACY POLICY:
    • explains what information from users we collect, use, disclose and maintain and how we use it.
    • applies to the website and all products and services offered by Email List Verify.

    INFORMATION WE COLLECT

    We may collect information in the following ways:

    • Personal identification information in a variety of ways. We may register when Users visit our site, register on this site, place an order, and respecting resources, services, features or activities made available by us on our website. Name, website and email may be asked to the users. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to fill in and supply personal identification information, but it may restrict them from engaging in several website related activities.
    • Non-personal identification information. We may register it whenever Users interact with our website. The type of computer, the browser name and technical information about Users means of connection to our Website, such as the Internet service provider utilized, the operating system and other similar information may be included in non-personal identification information.
    • Web browser cookies. To amplify User experience, our website may use “cookies”. User’s web browser places cookies on their hard drive disk for record-keeping purposes and to track sometimes information about them. User’s browser may be set to refuse cookies, or to alert them when cookies are being sent. If the user does so, please note that some parts of the website may not function properly.

    HOW WE USE COLLECTED INFORMATION

    Email List Verify may collect and use User’s personal information for the following purposes:

    • To personalize user experience

      We may use information collected to understand how our Users use the services and resources provided on our website.

    • To improve our Site

      We may use feedback provided by you to improve our services and products.

    • To process payments

      We may use the information Users provide about themselves when placing an order only to provide service to that order. We do not share this information with any third parties.

    • To improve customer service

      Information you provide helps us respond to your customer service requests and support needs more efficiently.

    • To send periodic emails

      We may use the email address to send the users information and updates in connection with their order. It may also be used to respond to their inquiries, questions, and/or other requests. If the User decides to opt-in to our mailing list, they will receive emails that may include company news, updates, related product or service information, etc. The user may unsubscribe from receiving future emails at any time by their account page.

    Additional information about Data collection and processing

    Legal action
    The User’s Personal Data may be used for legal purposes by the Owner in Court or in the stages leading to possible legal action arising from improper use of this Website or the related Services.
    The User declares to be aware that the Owner may be required to reveal personal data upon request of public authorities.

    Additional information about User’s Personal Data
    In addition to the information contained in this privacy policy, this Website may provide the User with additional and contextual information concerning particular Services or the collection and processing of Personal Data upon request.

    System logs and maintenance
    For operation and maintenance purposes, this Website and any third-party services may collect files that record interaction with this Website (System logs) use other Personal Data (such as the IP Address) for this purpose.

    Information not contained in this policy
    More details concerning the collection or processing of Personal Data may be requested from the Owner at any time. Please see the contact information at the beginning of this document.

    How “Do Not Track” requests are handled
    This Website does not support “Do Not Track” requests.
    To determine whether any of the third-party services it uses honor the “Do Not Track” requests, please read their privacy policies.

    Changes to this privacy policy
    The Owner reserves the right to make changes to this privacy policy at any time by giving notice to its Users on this page and possibly within this Website and/or – as far as technically and legally feasible – sending a notice to Users via any contact information available to the Owner. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom.

    Should the changes affect processing activities performed on the basis of the User’s consent, the Owner shall collect new consent from the User, where required.

    HOW WE PROTECT YOUR INFORMATION

    We adopt appropriate data collection, storage and processing practices and also security measures to protect against unauthorized access, disclosure, alteration or destruction of your personal information, password, username, transaction information and data stored on our Site.

    Registration Information:
    We implement a variety of security measures to maintain the safety of your personal information when you register for Emaillistverify.com account or supply us with data for verification purposes. All credit card information provided during sign-up is transmitted via Transport Layer Security (TLS) technology and encrypted in our Payment gateway providers’ database. This information is only accessible by those with special access rights to such systems. Anyone with this access is required to keep this information confidential. Any credit card information supplied will be kept on file in order to process future payments for BV Services rendered. Credit card information may be deleted at any time should you choose to stop using BV Services by sending a written request to account@emaillistverify.com

    Data Supplied for Verification:
    You may also supply data to Emaillistverify as a part of the verification process. Information about how we keep this information secure in both transit and in rest will be sent upon request. Please send an email to security@emaillistverify.com to request a copy of Emaillistverify Data Security document.

    Email Communications
    Emaillistverify respects your Inbox and will not abuse the email address provided during signup. Email messages will be sent to you for the following purposes:

    • To more effectively respond to your customer service requests and support needs;
    • To communicate changes to BV products, terms, and policies;
    • To send invoices or payment notifications for BV Services rendered; or
    • To provide information about changes to your account status.

    Tracking Technologies
    A cookie is a small text file that is stored on a user’s computer for record-keeping purposes. We use cookies on this site. We do not link the information we store in cookies to any personally identifiable information you submit while on our site or on our Services.
    We use session ID cookies and persistent cookies on our Site and on our platform. We use session cookies to make it easier for you to navigate our site. A session ID cookie expires when you close your browser. A persistent cookie remains on your hard drive for an extended period of time. You can remove persistent cookies by following directions provided in your Internet browser’s ‘help’ file.
    We set a persistent cookie to store your passwords so you don’t have to enter it more than once. Persistent cookies also enable us to track and target the interests of our users to enhance the experience on our site.
    Technologies such as: cookies or similar technologies are used by Emaillistverify and our analytics or service providers, Google Analytics and Intercom.io. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.

    Behavioral Targeting
    We partner with a third party to either display advertising on our Web site or to manage our advertising on other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish to not have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking here or if located in the European Union click here. Please note this does not opt you out of being served ads. You will continue to receive generic ads.

    Social Media Widgets
    Our website includes Social Media Features, such as the Facebook Like button, and Widgets, such as the Share This button or interactive mini-programs that run on our website. These Features may collect your Internet protocol address, which page you are visiting on our website, and may set a cookie to enable the Feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our website. Your interactions with these Features are governed by the privacy statement of the company providing it.

    SHARING YOUR PERSONAL INFORMATION

    We do not sell, trade, or rent Users personal identification information to others. Generic aggregated demographic information not linked to any personal identification information regarding visitors and users with our trusted affiliates, business partners and advertisers for the purposes outlined above may be shared.

    COMPLIANCE WITH CHILDREN’S ONLINE PRIVACY PROTECTION ACT

    Protecting the privacy of the very young is especially important. This is the reason why, from those we actually know are under 13, we never collect or maintain information at our website, and no part of our website is structured to attract anyone under 13.

    CHANGES

    Email List Verify has the sole discretion to update this privacy policy at any time. The updated date at the bottom of this page will be revised when we do so. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and fully agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.

    EU CUSTOMERS

    Regarding our EU based customer, all data is being upload and processed on our EU based servers (Netherlands). Worldstream.nl P.O. Box P.O Box 223 2670 AE NAALDWIJK The Netherlands

    YOUR ACCEPTANCE OF THESE TERMS

    By using this website, you signify your acceptance of this policy. If you do not agree to this policy or terms, you shall not use our website. Your continued use of this website following the posting of changes to this policy will be deemed your acceptance of those changes.

    CONTACT US

    If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us. This document was last updated on May 23, 2018

  • Privacy Policy

    Welcome to Envato’s Privacy Policy

    1. Hi there, we’re Envato Pty Ltd (ABN 11 119 159 741) of Level 1, 121 King Street Melbourne, 3000, Australia (“Envato”) and welcome to our privacy policy. This policy sets out how we handle your personal information if you’re an Envato user or visitor to our Sites. It applies across Envato Elements, Envato Market, Envato Studio, Envato Sites, Envato Hosted and Envato Tuts+ (the “Sites”).
    2. When we say ‘we’, ‘us’ or ‘Envato’ it’s because that’s who we are and we own and run the Sites.
    3. If we say ‘policy’ we’re talking about this privacy policy. If we say ‘user terms’ we’re talking about the rules for using each of the Sites. The rules vary by product and each product makes them separately available and seeks consent to them separately to this policy.

    The type of personal information we collect

    1. We collect certain personal information about visitors and users of our Sites.
    2. The most common types of information we collect include things like: user-names, member names, email addresses, IP addresses, other contact details, survey responses, blogs, photos, payment information such as payment agent details, transactional details, tax information, support queries, forum comments, content you direct us to make available on our Sites (such as item descriptions) and web analytics data. We will also collect personal information from job applications (such as, your CV, the application form itself, cover letter and interview notes).

    How we collect personal information

    1. We collect personal information directly when you provide it to us, automatically as you navigate through the Sites, or through other people when you use services associated with the Sites.
    2. We collect your personal information when you provide it to us when you complete membership registration and buy or provide items or services on our Sites, subscribe to a newsletter, email list, submit feedback, enter a contest, fill out a survey, or send us a communication.

    Personal information we collect about you from others

    1. Although we generally collect personal information directly from you, on occasion, we also collect certain categories of personal information about you from other sources. In particular:
      1. financial and/or transaction details from payment providers located in the US, UK, and Australia in order to process a transaction;
      2. third party service providers (like Google, Facebook) who are located in the US or UK, which may provide information about you when you link, connect, or login to your account with the third party provider and they send us information such as your registration and profile from that service, this only occurs if you are using Envato Studio. The information varies and is controlled by that service provider or as authorized by you via your privacy settings at that service provider; and
      3. other third party sources/ and or partners from Australia, US or UK,  whereby we receive additional information about you (to the extent permitted by applicable law), such as demographic data or fraud detection information, and combine it with information we have about you. For example, fraud warnings from service providers like identity verification service. We also receive information about you and your activities on and off the Envato platform through partnerships, or about your experiences and interactions from our partner ad networks. We also receive information about you as a rights holder from our third party authors. For example, information in the form of a model release when your image is used in an item made available on our Sites.

    How we use personal information

    1. We will use your personal information:
      1. To fulfil a contract, or take steps linked to a contract: in particular, in facilitating and processing transactions that take place on the Sites, like where you purchase an item from our marketplace.
      2. Where this is necessary for purposes which are in our, or third parties, legitimate interests. These interests include:
        1. operating the Sites;
        2. providing you with services described on the Sites;
        3. verifying your identity when you sign in to any of our Sites;
        4. responding to support tickets, and helping facilitate the resolution of any disputes;
        5. updating you with operational news and information about our Sites and services e.g. to notify you about changes to our Sites, website disruptions or security updates;
        6. carrying out technical analysis to determine how to improve the Sites and services we provide;
        7. monitoring activity on the Sites, e.g. to identify potential fraudulent activity and to ensure compliance with the user terms that apply to the Sites;
        8. managing our relationship with you, e.g. by responding to your comments or queries submitted to us on the Sites or asking for your feedback or whether you want to participate in a survey;
        9. managing our legal and operational affairs (including, managing risks relating to content and fraud matters);
        10. training Envato staff about how to best serve our user community;
        11. improving our products and services.
        12. providing general administrative and performance functions and activities; and
        13. processing your job application to Envato.
      3. Where you give us consent:
        1. providing you with marketing information about products and services which we feel may interest you; and
        2. customising our services and websites, like advertising that appear on the Site – where this involves the use of cookies or similar technologies – in order to provide a more personalised experience.
      4. For purposes which are required by law.
      5. For the purpose of responding to requests by government, a court of law, or law enforcement authorities conducting an investigation.

    When we disclose your personal information

    1. We will disclose personal information to the following recipients:
      1. companies that are in the Envato group which are located in Australia, Mexico and the US;
      2. authors of any items or services made available to you, so they can facilitate support and license validation, who maybe located in any of the countries our products are available in;
      3. subcontractors and service providers who assist us in connection with the ways we use personal information (as set out above), in particular: website hosting providers which are located in Australia, US and UK; technical and customer support services which are located in Australia, Canada, Philippines, Poland, Mexico, Romania, UK and the US; recruitment agencies which are located in Australia, US and Mexico; marketing and analytics services which are located in the US; security and fraud prevention services which are located in the US; subscription management services which are located in the US; payment processing services which are located in the US, UK and Australia; identification verification services located in the UK; and operational tooling services which are located in the US. Noting that our subcontractors and services providers may also transfer and access such information from  other countries in which they have operations.
      4. our professional advisers (lawyers, accountants, financial advisers etc.) which are located in Australia, UK, USA;
      5. regulators and government authorities in connection with our compliance procedures and obligations;
      6. a purchaser or prospective purchaser of all or part of our assets or our business, and their professional advisers, in connection with the purchase;
      7. a third party to respond to requests relating to a criminal investigation or alleged or suspected illegal activity;
      8. a third party, in order to enforce or defend our rights, or to address financial or reputational risks;
      9. a rights holder in relation to an allegation of intellectual property  infringement or any other infringement; and
      10. other recipients where we are authorised or required by law to do so.

    Where we transfer and/or store your personal information

    1. We are based in Australia so your data will be processed in Australia and the US. Some of the recipients we have described in section 10 above, and to whom we disclose your personal information, are based outside Australia in places like Canada, Ireland, Philippines, Poland, Romania, UK, and the US. We do this on the basis of your consent to this policy.In order to protect your information, we take care where possible to work with subcontractors and service providers who we believe maintain an acceptable standard of data security compliance.

    How we keep your personal information secure

    1. We store personal information on secure servers that are managed by us and our service providers, and occasionally hard copy files that are kept in a secure location in Australia, Ireland and the US. Personal information that we store or transmit is protected by security and access controls, including username and password authentication, two-factor authentication, and data encryption where appropriate.

    How you can access your personal information

    1. You can access some of the personal information that we collect about you by logging in to your account. You also have the right to make a request to access other personal information we hold about you and to request corrections of any errors in that data. You can also close the account you have with us for any of our Sites at any time. To make an access or correction request, contact our privacy champion using the contact details at the end of this policy.

    Marketing Choices regarding your personal information

    1. Where we have your consent to do so (e.g. if you have subscribed to one of our e-mail lists or have indicated that you are interested in receiving offers or information from us), we send you marketing communications by email about products and services that we feel may be of interest to you. You can ‘opt-out’ of such communications if you would prefer not to receive them in the future by using the “unsubscribe” facility provided in the communication itself.
    2. You also have choices about cookies, as described below. By modifying your browser preferences, you have the choice to accept all cookies, to be notified when a cookie is set, or to reject all cookies. If you choose to reject cookies some parts of our Sites may not work properly in your case.

    Cookies (not the type you eat!) and web analytics

    1. For more information about how we use cookies, web beacons and similar technologies see our cookie policy here and for more general information on cookies, see http://www.allaboutcookies.org.
    2. When you visit our Sites, there’s certain information that’s recorded which is generally anonymous information and does not reveal your identity. If you’re logged into your account some of this information could be associated with your account. We’re talking about the following kinds of details:
      1. your IP address or proxy server IP address’;
      2. the domain name you requested;
      3. the name of your internet service provider is sometimes captured depending on the configuration of your ISP connection;
      4. the date and time of your visit to the website;
      5. the length of your session;
      6. the pages which you have accessed;
      7. the number of times you access our site within any month;
      8. the file URL you look at and information relating to it;
      9. the website which referred you to our Sites; and
      10. the operating system which your computer uses.
    3. Occasionally, we will use third party advertising companies to serve ads based on prior visits to our Sites.  For example, if you visit our Sites, you may later see an add for our products and services when you visit a different Site. Read more about your options in our cookie policy.

    Information about children

    1. Our Sites are not suitable for children under the age of 16 years, so if you are under 16 we ask that you do not use our Sites or give us your personal information (if you are a young tech wiz, please direct your nearest responsible adult to use the Sites for you!). If you are from 16 to 18 years, you can browse the Sites but you’ll need the supervision of a parent or guardian to become a registered user. It’s the responsibility of parents or guardians to monitor their children’s use of our Sites.

    Information you make public or give to others

    1. If you make your personal information available to other people, we can’t control or accept responsibility for the way they will use or manage that data. There are lots of ways that you can find yourself providing information to other people, like when you post a public message on a forum thread, share information via social media, or make contact with another user (such as a third party Author) whether via our Sites or directly via email. Before making your information publicly available or giving your information to anyone else, think carefully. If giving information to another user via our Sites, ask them how they will handle your information. If you’re sharing information via another website, check the privacy policy for that site to understand its information management practices as this privacy policy will not apply.

    How long we keep your personal information

    1. We retain your personal information for as long as is necessary to provide the services to you and others, and to comply with our legal obligations. If you no longer want us to use your personal information or to provide you with the Envato services, you can request that we erase your personal information and close your Envato account. Please note that if you request the erasure of your personal information we will retain information from deleted accounts as necessary for our legitimate business interests, to comply with the law, prevent fraud, collect fees, resolve disputes, troubleshoot problems, assist with investigations, enforce the terms of service and take other actions permitted by law. The information we retain will be handled in accordance with this Privacy Policy.

    When we need to update this policy

    1. We will need to change this policy from time to time in order to make sure it stays up to date with the latest legal requirements and any changes to our privacy management practices.
    2. When we do change the policy, we’ll make sure to notify you about such changes, where required. A copy of the latest version of this policy will always be available on this page.

    How you can contact us

    1. If you have any questions about our privacy practices or the way in which we have been managing your personal information, please contact our privacy champion in writing at PO Box 16122 Collins Street West Victoria 8007 Australia or privacy.champion@envato.com.
    2. We’re really glad you made it to the end of the privacy policy, because knowing this stuff is the best way to understand how your personal information is used and how to best manage it!

    If you’re a user or visitor in the European Economic Area these rights also apply to you:

    1. For the purposes of applicable EU data protection law (including the General Data Protection Regulation 2016/679 (the “GDPR”), we are a ‘data controller’ of your personal information.

    How you can access your personal information

    1. You are also entitled to ask us to port your personal information (i.e. to transfer in a structured, commonly used and machine-readable format, to you), to erase it, or restrict its processing. You also have rights to object to some processing that is based on our legitimate interests, such as profiling that we perform for the purposes of direct marketing, and, where we have asked for your consent to process your data, to withdraw this consent as more fully described below.
    2. These rights are limited in some situations – for example, we can demonstrate that we have a legal requirement to process your personal information. In some instances, this means that we may retain some data even if you withdraw your consent.
    3. Where we require your personal information to comply with legal or contractual obligations, then provision of such data is mandatory: if such data is not provided, then we will not be able to manage our contractual relationship with you, or to meet obligations placed on us. In all other cases, provision of requested personal information is optional.
    4. If you have unresolved concerns you also have the right to complain to data protection authorities. The relevant data protection authority will be the data protection authority of the country: (i) of your habitual residence; (ii) of your place of work; or (iii) in which you consider the alleged infringement has occurred.

    Both personal information and personal data have the same meaning in the context of this Privacy Policy.

    Envato Privacy Policy v3, effective date 25 May 2018

  • Privacy statement FD Mediagroep

    FD Mediagroep B.V., haar dochtermaatschappijen en aan haar gelieerde ondernemingen (hierna: ‘wij’) verwerken persoonsgegevens. Graag informeren wij u hier duidelijk en transparant over.

    In dit privacy statement beantwoorden wij de belangrijkste vragen over de verwerking van persoonsgegevens door FD Mediagroep. Daarbij geven wij voorbeelden om deze uitleg zo duidelijk mogelijk te laten zijn. Heeft u vragen over dit privacy statement? Dan leest u hier hoe u daarover contact met ons kunt opnemen.

    Wij gebruiken bepaalde woorden in dit privacy statement. Hieronder leest u wat wij met een aantal van deze woorden bedoelen:

    • Persoonsgegevens: gegevens die direct of indirect iets over u zeggen. Bijvoorbeeld uw naam en adres, reke- ningnummer of uw e-mailadres. Maar ook het IP-adres van uw computer of een overschrijving. Het gaat om alle gegevens die we in verband met u kunnen brengen.
    • Verwerken: alles wat er met persoonsgegevens kan worden gedaan. Bijvoorbeeld het verzamelen, maar ook het opslaan, gebruiken en verwijderen van uw gegevens uit onze administratie.
    • Relaties:
      1. alle natuurlijke personen en organisaties die betaalde en onbetaalde diensten van ons afnemen of in het verleden hebben afgenomen en
      2. alle natuurlijke personen en organisaties die via één van de contactkanalen (telefoon, email, briefpost, website, accountmanager) contact hebben gehad en daarbij gegevens hebben gedeeld met ons.
    • Diensten: alle huidige en toekomstige elektronische dan wel digitale diensten die wij aanbieden, zoals onder meer de (mobiele) websites, eventuele webwinkels, alle digitale applicaties, digitale nieuwsvoorzieningen (zo- als e-paper en RSS-feeds) en archieven, alsmede alle events en abonnementen die wij aanbieden (zoals het dagblad en overige media die wij uitgeven), die gebruikt worden door natuurlijke personen of rechtspersonen of waar natuurlijke personen of rechtspersonen op geabonneerd zijn.

      Wie zijn ‘wij’?

      Wij zijn FD Mediagroep, haar dochtermaatschappijen of de aan haar gelieerde ondernemingen. Dit zijn:

    • Het Financieele Dagblad B.V.
    • Business Nieuws Holding B.V.
    • Company Info B.V. /Webservices.nl B.V*
    • Energeia B.V.
    • FD/IP Nederland B.V. (Pensioen Pro)
    • ESB B.V. *

    Bovenstaande ondernemingen zijn allen gevestigd te (1097 BL) Amsterdam aan het Prins Bernardplein 173. Deze ondernemingen worden hierna gezamenlijk “FDMG” genoemd.

    *Ten aanzien van de uitgave ESB (Economisch Statische Berichten) is de Koninklijke Vereniging voor de Staathuis- houdkunde (KVS) medeverantwoordelijke voor de verwerking. Company Info B.V. en Webservices.nl B.V hanteren een eigen gezamenlijk privacy-statement. Zie hiervoor de website companyinfo.nl.

    De gegevens die bovengenoemde ondernemingen verzamelen worden in een centrale FD Mediagroep data ware- house omgeving samengevoegd. Deze omgeving wordt centraal beheerd vanuit Het Financieele Dagblad B.V. Om dit te realiseren vindt er gegevensuitwisseling plaats tussen andere dochtermaatschappijen en gelieerde onder- nemingen en Het Financieele Dagblad B.V.

    Van wie verwerken wij persoonsgegevens?

    Wanneer u een abonnement neemt op één van onze producten of diensten, wanneer u zich regis- treert, een event bezoekt, u aanmeldt voor een e-mailnieuwsbrief, deelneemt aan een actie, gebruik maakt van onze digitale diensten (website, apps, nieuwsbrieven), contact opneemt met ons of op een andere manier gebruik maakt van onze diensten, worden uw persoonsgegevens vastgelegd en verwerkt.

    Welke persoonsgegevens verwerken wij?

    Hieronder vindt u de gegevens die wij verwerken:

    1. Gegevens die door u zijn verstrekt om de dienst die u heeft afgenomen te kunnen leveren; zoals bijv. naam, adres, e-mailadres, telefoonnummer, bankrekeningnummer.
    2. Gegevens die door u zijn verstrekt bij het aanmaken en/of onderhouden van een digitaal gebruikersprofiel; zoals geboortedatum, sector en functie, nieuwsbrieven die u wel/niet wenst te ontvangen, het sociale media profiel, onderwerpen en interessegebieden waar u meer over wilt lezen. U kunt deze gegevens zelf beheren binnen uw account.
    3. Afgeleide gegevens; wij verkrijgen gegevens wanneer u onze digitale diensten (de website, apps of nieuwsbrieven) gebruikt. Zoals bijv. het apparaat waar u onze sites of apps mee bezoekt, de door u bezochte pagina’s in ons netwerk, de door u gelezen

      artikelen, locatie van lezen (op gemeente niveau), clicks op tekstlinks en advertenties, gegevens over het gebruik van een platform, tijdstip, gelezen onderwerpen en kliks. Deze gegevens worden uitsluitend met voorafgaande toestemming verzameld. Deze toestem- ming wordt gevraagd op het moment dat u (een van) onze site (s) bezoekt. (zie hiervoor ook het “Cookiebeleid”)

    4. Gegevens die voortvloeien uit uw contactgeschiedenis (het incidentele contact dat u heeft gehad met een van onze contactkanalen (call center, e-mail, briefpost, website, account- manager, etc.); zoals aantekeningen van gesprekken, klantvragen, klachten en deelname aan onderzoek. Dit contact kan zowel door u zelf geïnitieerd worden als door onszelf.

    Waarom verwerken wij deze persoonsgegevens?

    Wij verwerken persoonsgegevens voor de volgende doelen:

    1. Voor het uit kunnen voeren van onze Diensten

      Wij hebben bijvoorbeeld uw persoonsgegevens nodig om u de krant te kunnen bezorgen of om u een factuur te kunnen versturen. Daarnaast kunt u ons via verschillende kanalen bereiken, zoals onder andere telefoon, post, e-mail, Twitter, LinkedIn en Facebook. Om dat mogelijk te maken ver- werken wij ook persoonsgegevens.

    2. Om wettelijke verplichtingen na te komen

      Hierbij gaat het bijvoorbeeld om persoonsgegevens die nodig zijn om aan onze belastingplicht te kunnen voldoen.

    3. Het onderhouden van de gebruikersaccounts

      Een gebruikersaccount is nodig om artikelen te kunnen lezen op een van onze websites. Wanneer u bij ons een account aanmaakt, dan is deze te gebruiken voor het Het Financieele Dagblad, BNR Nieuwsradio, Pensioen Pro, ESB en Energeia Energienieuws.

    4. Het verbeteren en innoveren van onze dienstverlening

      We gebruiken persoonsgegevens ook om onze producten en diensten te verbeteren. Zo verzamelen we bijvoorbeeld het klikgedrag op de websites om te analyseren welke artikelen het meest of minst gelezen worden en verzamelen voorkeuren/interessegebieden en combineren dit met gelezen arti- kelen om op deze manier relevante gepersonaliseerde artikelen of nieuwsbrieven te tonen.

    5. Om marketingactiviteiten uit te voeren

    We houden u graag op de hoogte. Bijvoorbeeld met e-mails, nieuwsbrieven, aanbiedingen op onze website of apps die op maat zijn gemaakt voor u. Of met gepersonaliseerde advertenties van ons op apps en sites van andere partijen en social media.

    Daarnaast verkopen wij beschikbare advertentieruimte aan adverteerders. Van deze adverteerders worden ook gepersonaliseerde advertenties vertoond op onze sites.

    Ook maken wij gebruik van ‘aangepaste doelgroepen’ (custom audiences) via sociale media plat- forms zoals Facebook, Twitter, Linkedin. Op deze platforms kunnen (gepersonaliseerde) adverten- ties worden getoond. Wij geven hiervoor geen persoonsgegevens door aan derde partijen, tenzij u daar toestemming voor heeft gegeven.

    Als u niet wilt dat via deze platforms advertenties worden getoond dan kunt u dat bij ons aangeven via de contactgegevens hieronder genoemd. Ook kunt u zich hiervoor bij deze platforms afmelden. Hoe u dit doet leest u op de volgende pagina’s:

    Let op: u kunt daarna nog steeds advertenties van ons te zien krijgen omdat u in een algemene doelgroep valt waar wij onze advertentie op richten.

    Bijzondere gegevens

    Wij verwerken 2 typen bijzondere persoonsgegevens: geslacht en etniciteit (foto). Geslacht verwer- ken we om u aan te kunnen spreken met ‘mevrouw’ of ‘meneer’. Foto’s verwerken we om de inhoud op onze websites of e-mails meer sfeer te geven. Deze verwerkingen zijn altijd vrijwillig en worden niet voor andere doeleinden gebruikt.

    Hoe zorgen we ervoor dat er zorgvuldig wordt omgegaan met de verwerking van uw per- soonsgegevens?

    Uw persoonsgegevens worden zorgvuldig bewaard en niet langer dan noodzakelijk is voor het doel waarvoor zij zijn verwerkt en zo lang de wet ons verplicht om uw gegevens te bewaren. Hoe lang dat precies is, verschilt.

    De verzamelde gegevens worden opgeslagen in diverse bronsystemen. Deze brondata staan meest- al lokaal bij ons in Amsterdam, soms ook lokaal bij een van onze dienstverleners (bv. Selligent of Amazon Webservices).

    Wij voeren een beleid dat uitgaat van data-opslag op Europees vasteland.

    Veel van de data uit de bronsystemen consolideren wij ook in één centrale data warehouse omge- ving. Dit data warehouse wordt gehost vanuit Amazon Webservices. Ook hierbij geldt dat de data al- tijd fysiek op Europees vasteland staat. Amazon werkt bovendien volgens alle gangbare en robuuste

    veiligheidsstandaarden (zie: https://aws.amazon.com/compliance/eu-data-protection/)

    Binnen dit data warehouse hanteren wij naast de standaarden van Amazon specifiek de volgende maatregelen en privacy waarborgen:

    1. Slechts een zeer beperkt, minimaal benodigd aantal medewerkers hebben we toegang gegeven tot de data. En alleen als dit nodig is voor de uitvoering van de functie. Bovendien wordt de toegang tot de data slechts geautoriseerd voor dat gedeelte van de data dat nodig is voor de uitvoering van die functie.
    2. De medewerkers die toegang hebben tot de persoonsgegevens hebben allen een strikte geheimhoudings verklaring getekend.
    3. Alle informatie die direct, dan wel indirect valt te herleiden naar personen (o.a. naam, adresgegevens, e-mailadres, telefoonnummer) versleutelen we continu, zodat de data niet meer naar individuele personen valt te herleiden.
    4. De gegevens zullen we op geen enkele manier gebruiken met als doel het uitlenen, verhuren, verkopen of op een andere manier openbaar maken van de data.

    Derde ontvangers

    Soms zijn we wettelijk verplicht om persoonsgegevens aan derden te verstrekken, zoals de Belastingdienst. Ver- der zullen we alleen gegevens aan derden verstrekken als we daarvoor uw toestemming hebben gekregen.

    Tevens schakelen wij derden in die in onze opdracht persoonsgegevens bewerken. Bijvoorbeeld een drukkerij die voor ons een klantmailing verzorgt en naam en adresgegevens op enveloppen drukt. Wij kunnen alleen derden inschakelen als dit past bij het doel waarvoor wij uw persoonsgegevens hebben verwerkt. Daarnaast kan deze derde alleen onze opdracht krijgen als hij aantoonbaar passende beveiligingsmaatregelen heeft genomen en geheimhouding garandeert.

    Derden landen

    In landen buiten de Europese Unie (EU) wordt niet altijd dezelfde bescherming geboden aan uw gegevens als in landen binnen de EU. In sommige gevallen gebruiken we derden partijen (Google Analytics en Optimizely) waar- door het nodig kan zijn dat wij uw gegevens doorgeven aan landen buiten Europa , bijvoorbeeld omdat daar de (servers van de) bedrijven gevestigd zijn die ons ondersteunen of door ons zijn ingeschakeld bij de uitvoering van de Diensten. Wij zijn gerechtigd om uw persoonsgegevens – ter uitvoering van de Diensten – naar landen buiten de EU doorgeven. We geven alleen persoonsgegevens door als er passende waarborgen zijn op basis van het ‘Privacy Shield’ (Verenigde Staten).

    Welke rechten heb ik t.a.v. de verwerking van mijn persoonsgegevens?

    U heeft de volgende rechten:

    • Informatie en inzage: We vertellen u graag welke persoonsgegevens van u zijn vastgelegd of waarvoor we deze gebruiken.

    • Rectificatie: Wilt u uw persoonsgegevens laten verbeteren of aanvullen omdat deze onjuist en/of onvolledig zijn, laat het ons weten. Dan passen we het aan.

    • Vergetelheid/Verwijdering: Ook kunt u een verzoek bij ons indienen om de gegevens die wij van u hebben te laten verwijderen. Verwijdering van gegevens is niet mogelijk wanneer de wet ons verplicht de betreffende persoonsgegevens te bewaren. Ook kan het zijn dat wij voor andere doeleinden (administratie) die gegevens nog wel moeten verwerken.

    • Beperking: U kunt een verwerking van uw gegevens laten beperken indien u vindt dat uw gegevens onrecht- matig of onjuist verwerkt worden.

    • Bezwaar/Verzet: Voor de verwerking van uw gegevens kunt u een bezwaar indienen. Gaat het om verwer- ken voor direct marketingdoeleinden, dan zullen wij die verwerking zo snel mogelijk beëindigen.

      Indien u niet langer direct mail wenst te ontvangen, kunt u:

      • zich afmelden in elke marketingmail
      • uw instellingen van uw account aanpassen

    • Overdraagbaarheid: Wilt u dat uw gegevens naar een derde partij worden verstuurd, dan kunt u ook contact met ons opnemen via privacy@fdmediagroep.nl.

    Om gebruik te kunnen maken van bovengenoemde rechten, kunt u contact met ons opnemen via privacy@fdmediagroep.nl.

    Waar kan ik terecht met een vraag of klacht?

    Voor vragen of klachten over de verwerking van persoonsgegevens kunt u contact met ons opnemen via privacy@fdmediagroep.nl. Daarnaast kunt u na 25 mei 2018 ook een klacht indienen bij de Autoriteit Persoonsgegevens (www.autoriteitpersoonsgegevens.nl).

    Kunnen wij dit document wijzigen?

    Ja, ons privacy statement kan van tijd tot tijd wijzigen. Als er nieuwe gegevensverwerkingen zijn, dan passen wij het privacy statement daarop aan. En als deze wijzigingen ook voor u van belang zijn, dan attenderen wij u daarop of maken wij de wijzigingen op een opvallende manier aan u kenbaar. De meest actuele versie van ons privacy statement kunt u steeds terugvinden op www.fdmg.nl.

    [23 mei 2018]

  • EP01 – Fing Privacy Policy Version: 1.2 – 2018 05 15

    1. THE FING PRIVACY POLICY

    Fing (“we”, “our”, or “us”), are part of a group of companies whose main legal entity is Fing Limited (collectively, “Fing”). We will collect and use information obtained via the Fing Mobile Application (the “App”) and our hardware addon Fingbox (altogether the Fing” Services”) as described in this policy. In doing so, we are committed to protecting and respecting your privacy and personal data, in accordance with applicable data protection and privacy rules. We do not sell or rent your personally identifiable information to any third party. In this Policy, Personal Data means information relating to an identified or identifiable natural person. An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, and online identifier or to one or more factors specific to his/her physical, physiological, genetic, mental, economic, cultural or social identity. The use of information collected through our Services shall be limited to the purpose of providing the Service for which you have signed up. This policy explains how we use information we collect when you visit the App or use the Fingbox and, together with our Terms & Conditions and any other documents referred to on it, sets out the basis on which any information we obtain about you, or through the use of our App will be processed by us. Please read this policy carefully to understand our views and practices regarding your information and how we will treat it. By creating a Fing account on our App or installing our Fingbox you are accepting and consenting to the practices described in this policy.

    2. NOTICE OF PRIVACY SAFEGUARDS SPECIFIC TO OUR SERVICES

    Fing basic app: As an unregistered Fing basic service user, we will not collect any Personal Data from you such as your name, email address, or other contact information. The information we will collect will be the originating Public Internet Protocol (IP) address and app usage data for diagnostic purposes. Thus, when this Privacy Policy refers to data collection, use, and sharing practices below (Section II), for Fing basic app users, the description of these practices refers to the basic data sets described in this Section and the other data sets described in Section 3 will not apply. Fing basic app with device recognition: As an unregistered Fing basic service user with device recognition functionality turned on, we will collect the originating Public IP address and the MAC addresses of the devices you submit to us for the purpose of device recognition, in order to match your device with a corresponding device type, brand, and model. We will not require you to create an account or provide any personal data such as name, email address, or other contact information. Thus, when this Privacy Policy refers to data collection, use, and sharing practices below (Section II), for Fing basic app users with device recognition, the description of these practices refers to the basic data sets described in this Section for Fing basic app users with device recognition and the

    other data sets described in Section 3 will not apply. You also can turn off device recognition at any time. Fing SDK: As a developer using the SDK version of the app, you can embed our scanning device recognition technology in your software applications or physical products. This product uses the originating IP address and MAC addresses for device recognition purposes. The Privacy Policy terms below (Section II) for Fing SDK users describes our practices related to the data sets described in this Section and the other data sets described in Section 3 will not apply. Fing account holders and Fingbox users: If you register an account with Fing, or if you are a user of Fingbox we will ask for your name, email address, location and a password. This information will be combined with technical information about your device and other information we may collect about you or your use of the services, and we will handle all such Personal Data as described in section 3 below. For all of these services, we reserve the right to combine information we collect from you with information we may receive from third parties. We will use and share all such information in accordance with Section II.

    3. DETAILS ABOUT OUR PRACTICES

    This privacy policy is composed of the following sections:

    I. Information we may collect from you

    II. How we may use your information

    III. Legal basis for processing Personal Data of EEA users

    IV. Disclosure of your information

    V. Where and how we store and process your personal data

    VI. For how long do we store your personal data

    VII. Your rights

    VIII. Access to information

    IX. Changes to our privacy policy

    X. Comments and questions on the privacy policy

    As described in Section 2 above, please note that some of the information, collection, use, disclosure, and storage practices described below may not apply depending on the type Fing services you use.

    I. Information we may collect from you We may collect and process the following data about you:

    • Information you give us. You may give us information about you by filling in forms on the App or by corresponding with us by e-mail or otherwise. This includes information you provide when you register to use the App, subscribe to our service, search for networks using our service, sync to the cloud, and when you report a problem with the App. The information you give us may include your name, address, e-mail address and geo-location. We may ask for and may collect personal information from you when you submit web forms on our Website or App or as you use interactive features of the Websites, including, participation in surveys, requesting customer support, or otherwise communicating with us.

    • Information we may collect about you. We give you as much control as possible over your information. In general, you can visit the App without telling us who you are or revealing any information about yourself. However, depending on the service you use, we may automatically collect the following information via the App or the Box, if present:

    o Technical information, including the IP address used to connect your device to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, type of device;

    o Information on MAC addresses and Wi-Fi networks you collect through the App or the Box. Please note that this Privacy Policy does not exempt you from any obligations you may incur should you collect other individuals’ personal data.

    o Information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time); Networks viewed or searched for; app response times, download errors, length of visits to certain pages, app interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the App.

    • Information we may receive from other sources.

    We may receive information about you if you use any other services we provide. We are also working closely with third parties (including, for example, business partners, sub-contractors in technical and delivery services, advertising networks, analytics providers, search information providers) and may receive information about you from them. II. How we may use your information. To the extent we have collected or you have provided us information, and consistent with Section I above, we may use information in the following ways:

    • Information you give to us. We will use this information: o to provide you with the services you have subscribed for;
      • o to respond to any enquiries or requests for information you may have sent to us; o to notify you about changes to the App;
      • o to send you information about our products and services unless you unsubscribe to such communications;
      • o to ensure that content from the App is presented in the most effective manner for you and for your device.

    • Information we collect about you. We will use this information: o to administer the App and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;

    • to improve the App to ensure that content is presented in the most effective manner for you and for your device; o to allow you to participate in interactive features of our service, when you choose to do so;
    • as part of our efforts to keep the App safe and secure;
    • to share the information with our trusted partners, where applicable, for the provision of our services; trusted partners are for example our cloud service provider or the service provider we use for sending out our own newsletter.
    • to measure or understand the effectiveness of advertising we may serve to you and others, and to deliver relevant communication to you within the Fing Application;
    •  to make suggestions and recommendations to you and other users of the App about goods or services that may interest you or them; and for behavioural analysis; and o in anonymous (i.e. de-identified) format for analytical, statistical and business purposes. We may for example publish reports on the adoption of certain connected devices in different regions in the world, or provide you with statistics of how your network speed or performance compares to other users in your area.

     

    • Information we receive from other sources. We may combine this information with information you give to us and information we collect about you through other sources e.g. Google Ads/ Analytics. We may use this information and the combined information for the purposes set out above (depending on the types of information we receive).

    III. Legal basis for processing Personal Data of EEA users.

    If you are a Data Subject resident in the European Economic Area (EEA), our legal basis for collecting and using your Personal Data will depend on the information concerned and the specific context in which we collect it. However, we will collect personal information from you only where: (a) we have your consent to do so, (b) where we need the personal information to perform a contract with you (e.g. to deliver the Services you have requested), or (c) where the processing is in our or a third party’s legitimate interests (and not overridden by your data protection interests or fundamental rights and freedoms). In some cases, we may also have a legal obligation to collect personal information from you, or may otherwise need the personal information to protect your vital interests or those of another person. Where we rely on your consent to process the personal information, you have the right to withdraw or decline your consent at any time. Please note that this does not affect the lawfulness of the processing based on consent before its withdrawal. If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information). Similarly, if we collect and use your personal information in reliance on our (or a third party’s) legitimate interests which are not already described in this Notice, we will make clear to you at the relevant time what those legitimate interests are.

    IV. Disclosure of your information.

    To the extent we have collected or you have provided us information, and consistent with Section I above, we may share your information with any member of our group, which means our ultimate holding company and its subsidiaries (as defined in section 1159 of the UK Companies Act 2006). We may share your information with selected third parties including:

    • Business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you.

    • Analytics and search engine providers that assist us in the improvement and optimisation of the App.

    • In the event that we sell or buy any business or assets, in which case we may disclose your data to the prospective seller or buyer of such business or assets.

    • If we are under a duty to disclose or share your data in order to comply with any legal obligation, or in order to enforce or apply our Terms of Use and other agreements; or to protect the rights, property, or safety of Fing, our customers, or others. This includes, where relevant, exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

    V. Where and how we store and process your personal data Fing is a global business.

    To offer a consistent service to you we manage the App from servers provided by a third party cloud service provider that are located in Ireland and Germany. The data that we collect from you may be transferred to, and stored to these servers. It may also be processed by staff operating in other countries within the European Economic Area, who work for the company or for one of our suppliers. To provide you with the Services when you are on the go, we may need to store, process and transmit information in locations around the world from where you are accessing our services– including those outside your country. Those countries may not provide the same level of protection for your data as your home country, and may be available to the governments or agencies under a lawful order of those countries. Where this is the case, we will use reasonable efforts to try to ensure that your data is protected in accordance with this privacy policy. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy and applicable privacy laws. Unfortunately, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your data, we cannot guarantee the security of your data transmitted to the App. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. As per the organizational duties introduced by the General Data Protection Regulation (“GDPR”), we commit to report personal data breaches to the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk of adversely affecting individuals’ rights and freedoms, also those individuals will be informed without undue delay. For any questions about the security of your personal information, you can contact us at privacy@fing.io.

    VI. For how long do we store your personal data

    Fing stores your data on its cloud servers for as long as you remain a Fing user in order to provide you with Fing services and products and for legal compliance purposes. You can delete your personal data at any time by terminating your account or by writing to us at privacy@fing.io We may retain de-identified data indefinitely.

    VII. Your rights At Fing we take our users’ rights into the highest regard.

    For this purpose, we align ourselves to the most advanced privacy regulations available. When in it comes to your Personal Data, we recognize, and commit to respect and enforce, the following rights:

    1. The right to be informed: upon request we will provide you with information about whether we hold or process any of your personal information. To request this information please contact us at privacy@fing.io.

    2. The right of access: as a user of our Services, you may access your personal data, at any time, by logging into the Fing App and accessing the following section: https://app.fing.io/app#user:account you may also email us at privacy@fing.io.

    3. The right to rectification: as a user of our Services, you may access and update or change your Account Information by editing them yourself from your profile area of the Fing App. For any further information, or if you encounter any difficulty in accessing your data you can email us at privacy@fing.io.

    4. The right to erasure: If you no longer wish to make us of our Services, you my erase your personal data from the Account area of the Fing App. You may also exercise this right by making a request, in accordance with Data Protection Laws, by emailing privacy@fing.io.

    5. The right to restrict or object processing: You retain the right to request us to refrain from or restrict our processing of your data for the purposes of marketing. To exercise such right, you may click the “unsubscribe” link in any email from us, update your preferences in your account, or contact us via email at privacy@fing.io.

    6. The right to data portability: You retain at all times the right to to exercise your right of having your Personal Data exported and transferred – in a safe way – to another provider of Services similar to ours. You may exercise this right by making a request, in accordance with Data Protection Laws, by emailing privacy@fing.io. Any request related to your rights above, will be handled within thirty (30) days from the moment we receive such request. In case you deem your rights to have been violated, or if you are dissatisfied with the way your requests were handled, you can lodge a complaint with the Irish data protection regulator, the Irish Data Protection Commissioner (https://www.dataprotection.ie).

    VIII. Children’s Information

    The Fing Services are not directed to, nor do we knowingly collect personal information from, children under the age of 16. If you become aware that your child or any child under your care has provided us with information without your consent, please contact us at privacy@fing.io.

    IX. Links to third party websites

    The App may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these apps or websites, please note that these have their own privacy policies and that we do not accept any responsibility or liability for those policies. Please check the policies before you submit any data to these apps or websites.

    4. CHANGES TO OUR PRIVACY POLICY

    Any changes we may make to our privacy policy in the future will be notified vie the App and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy policy.

    5. HOW TO CONTACT US

    If you have questions or comments about this Privacy Policy, you can contact our Data Protection Officer, Pietro Pollichieni, at privacy@fing.io or write at our main office at 1st Floor Minerva House, Simmonscourt Road, Dublin 4, Ireland.

    • Home
    • Privacy policy

    Privacy policy

    May, 2018

    The website located at https://www.freepik.com and https://www.freepik.es, including any of their subdomains or section (known from now on as the “Website”) is operated by Graphic Resources, S.L. (known from now on as “Freepik”), with their registered office at Molina Lario street, 13, fifth floor, 29015, Malaga, Spain.

    The present Privacy and Cookies Policy regulates the treatment that data of the Website’s users (known from now on as the “User” or the “Users” as corresponds) receive from Freepik on the Website, within the services offered on the Website (known from now on as “Services”).

    The access and use of the Website implies that the User has read and accepted the present Privacy and Cookies Policy in its totality. The start date of the present Privacy and Cookie Policy indicated the date of the last revision of the Privacy and Cookies Policy, that will be applicable from the date of its publishing. Freepik therefore recommends reviewing the Privacy and Cookies Policy regularly.

    Some of the Services that are offered on the Website can be submitted to specific privacy policies that complete or, on the contrary to this Privacy and Cookies Policy, substitute the present Privacy and Cookies Policy, and that must be accepted by the user before initiating the corresponding Service. Therefore, respecting the access and the use of the Website and the offering of the Services stem from the application of the Conditions.

    1. Treatment of personal information

    In a general sense, the User can navigate the Website without giving Freepik their personal information.

    In the case that the User registers in the Website, their data will be incorporated into a Freepik archive with the purpose of managing the Website, offer the Services, offer certain functionalities related to their condition as a User (for example, the download of effected content) and relay information to them, previous consent expressed by the User, on the Services of Freepik, their sponsors, or collaborating third parties, that offer products or services related to the creative sector in the newsletters (whose reception can be canceled at any moment, through their account). Additionally, the Users that have expressed their consent marking the corresponding box during the registering process or in the corresponding section of their account, may also receive from Freepik, through any electronic communication medium (including email), offers or information on products or services from third parties related to the creative sector with which Freepik collaborates at every moment.

    Freepik does not collect the age nor the date of birth of their users. Consequently, there is no established specific treatment of the data of minors. Freepik is not exclusively marketed towards overage Users.

    Freepik does not process their data for third party use. The data that you introduce on to the work platform is exclusively for your identification within the platform.

    Any data received by Freepik in the Contact forms, Broken Link?, satisfaction surveys available on the Website or through the email addresses info@freepik or support@freepik.com, will be incorporated into a Freepik archive and will only be used with the purpose of answering consultations, suggestions, or complaints sent by the Users of the Website.

    Any data received by Freepik through the Work with Us form available on the Website, will be incorporated into a Freepik archive and will only be used with the purpose of managing the staff selection processes at Freepik.

    The Website includes plugins that allow the User to carry out actions on social networks of third parties like Facebook, Twitter, Pinterest, or Google+, like, for example, send a message or show support to the Website. These plugins are indicated through the corresponding social network logotype. If these plugins are accepted, the corresponding content will be transferred to the relevant social network. The User can find can find information on the workings on these plugins and the way in which these social networks treat your data in the data protection policies of said social networks. If you do not wish for these social networks collect your data, you must not accept the plugin and you must sign out of your account before navigating the Website.

    The legal basis for the treatment of data of the Users is the corresponding contractual relationship, the request of the user, and the legitimate interest on Freepik’s part of offering information on news and questions that are related to the Services to the Users that have not rejected the reception of that information.

    The data are held for the necessary period to achieve the purpose for which they were collected and, subsequently, in the periods needed for the applicable legal dispositions.

    2. Exercise of rights

    Freepik guarantees the exercise of rights established in the General Regulation 2016/679 on the Data Protection (now known as GDPR), that will start to be applicable on 25th of May, 2018.

    YOUR RIGHTS

    The User can exercise the rights present in the following section sending an email to rpd@freepik.com It is essential that you keep in mind that from Freepik, we may ask for the identity of our User to be verified before carrying out any action that has been requested.

    Managing your data

    The User may access and update some of their data in their Account’s settings. The User is the responsible party of keeping their data up to date.

    Rectification of incorrect or incomplete data

    The User has the right to request that any incorrect or incomplete data relative to them (and that they cannot modify in the User’s Account) be corrected.

    Access to the data and portability

    In some jurisdictions, the applicable laws can give the right to be able to request copies of data of the User that has been withheld. The User is also able to request a copy of the data that they have given in a structured form, of common and legible use, and or request that this data be sent to another service provider (within the technically possible).

    Conservation and deletion of data

    In general, we conserve the User’s data for the time that is necessary for the execution of the formalized contract between the User and Freepik, and to attain to the legal obligations relative to the Spanish legislation. If the User does not wish for their data to be used to put the Platform to their disposition, they may request that the data be eliminated and their account closed. Keep in mind that if the deletion of data is requested:

    • Freepik can retain and use the User’s data in whatever is necessary to attain to the legal obligations enforced by the fiscal obligations, on judicial information and auditing.
    • If the User requests so, their data can be eliminated from the safety back-up systems at Freepik when the next back-up is done.

    Revocation of consent and restriction to data treatment

    In those cases that the user has authorized the treatment of their data, the User may revoke their consent in any moment changing the setting in their Account or by sending an email to rpd@freepik.com, indicating, specifically that consent that they wish to revoke.Keep in mind that the revoking of consent does not effect the legality of the data subject to the consent that was given before said revocation.

    Opposition to data treatment

    If the personal information that the User is processed with direct marketing purposes, you may request, at any moment, for Freepik to interrupt said data treatment for commercial marketing purposes sending an email to rpd@freepik.com.

    Filing complaints

    The User has the right to file complaints relative to activities of data treatment carried out by Freepik to the Spanish Data Protection Agency (AEPD), at www.agpd.es.

    Cookies Policy

    Freepik uses their own cookies and those of third parties to ease and personalize the navigation of Users on the Website.

    A cookie is a file or device that is in the User’s PC when they visit the Website and that is used to store and recover data on the navigation of the Website.

    Freepik’s cookies are used to improve on the User’s experience, allowing them to navigate comfortably through the Website, interact with third party sites, provide additional functionalities to those on the Website and analyze the use of the Site more precisely. For example, the Website is able to place a cookie in your navigator that avoids the User having to remember and entering their password more than once on their visit to the Website.

    The Website’s cookies have the following functions:

    • Technical cookies: These are those that allow the User to navigate through the Website and use the different option or Services available.
    • Personalization cookies: These are those that allow the User to access the Services with some general characteristics predefined in relation to a series of criteria.
    • Analysis cookies: These are those that allow the responsible of those to follow and analyze the behavior of the Users of the Website. The information collected through this kind of cookies are used in measuring activity of the Website and elaborate on User navigation profiling, with the purpose of introducing improvement on the Website.
    • Publicity cookies: These are those that allow the management, in the most efficient way possible, of the publicity spaces on the Website related to the criteria such as edited content or the frequency at which adverts are shown.
    • Behavioral publicity cookies: These are those that allow the management, in the most efficient way possible, of the publicity spaces on the Website. These cookies collect information on the behavior of the User, obtained through the continued observation of their navigation habits, which allows us to develop a specific profile to show publicity with this function.

    The following is a list of cookies that are used on the Website:

    Cookies
    __cfduid .statcounter.com 2019-12-23T23:50:00.536Z
    __utma .pinterest.com 2016-08-06T12:27:06.000Z
    __utma .tutpad.com 2016-08-28T11:41:20.000Z
    __utma .twitter.com 2016-09-04T13:40:22.000Z
    __utmv .twitter.com 2016-09-04T13:40:22.000Z
    __utmz .tutpad.com 2015-02-27T23:41:20.000Z
    __utmz .twitter.com 2015-03-07T01:40:22.000Z
    __utmz .pinterest.com 2015-02-06T00:27:06.000Z
    _b .pinterest.com 2024-05-04T12:49:37.453Z
    _ga .tutpad.com 2016-08-31T12:57:33.000Z
    _ga .twitter.com 2016-09-04T06:07:05.000Z
    _pinterest_cm .pinterest.com 2015-09-15T11:57:37.158Z
    _pinterest_d_sess .pinterest.com 2015-08-02T12:27:01.786Z
    _pinterest_pfob .pinterest.com 2016-10-22T09:21:07.753Z
    _pinterest_sess .pinterest.com 2015-08-02T12:27:01.787Z
    cookietest .tutpad.com 2015-03-27T10:17:02.452Z
    csrftoken .pinterest.com 2015-08-06T12:27:02.786Z
    guest_id .twitter.com 2015-09-10T09:27:11.392Z
    is_unique .statcounter.com 2019-08-31T12:57:36.051Z
    landing .statcounter.com 2015-07-28T06:47:39.000Z
    lastsearch www.tutpad.com 2014-09-28T11:22:08.643Z
    panel_help www.tutpad.com 2031-01-20T05:52:36.578Z
    pid .twitter.com 2016-02-27T10:33:43.703Z
    promotion_set www.tutpad.com Session
    remember_checked .twitter.com 2024-07-22T19:02:25.296Z
    remember_checked_on .twitter.com 2024-07-29T12:38:13.394Z
    twll .twitter.com 2024-07-22T19:02:25.296Z
    uftid .tutpad.com 2014-09-18T10:24:22.908Z
    vblastactivity .statcounter.com 2015-07-28T06:47:38.064Z
    Storage
    jPoll
    time_valuation
    time_valuation1
    time_valuation3

    The usage of cookies can be modified in the navigator settings. In most navigators, the User may find a “Help” section in the tool bar.

    For more information on cookies on Internet Explorer, press Internet Explorer.

    For more information on cookies on Firefox, press Firefox.

    For more information on cookies on Chrome, press Chrome.

    For more information on cookies on Safari, press Safari.

    Freepik remits to these sections to obtain information on how to deactivate or eliminate cookies.

    Freepik recommends that Users leave their cookies on as this helps to take advantages of some of the functions on the Website.

    This Website also has access to the IP address with which the User accesses the Website. The IP address with which the User accesses the Website cannot be the same in every occasion. Also, the different Users can share one same IP address. Although Freepik does not carry out any actions associated to the IP address with concrete physical people, the access to IP addresses can be considered as a treatment of data related to the potentially identifying character of a physical person that may be associated to this IP, (more a theoretical possibility than a real one), for this, in agreement with the European data protection regulation (GDPR), may result in the application what is offered in the Privacy Policy.

    Third parties that are advertised on the Websites or those that the Users are connected to through plugins, may use cookies, or ‘web beacons’ of those that Freepik has no control over, would not be responsible for, or would be covered by the present Cookies and Privacy Policy, for which the responsibility of the User to configure the navigator so that cookies may only be used in agreement with their own settings.

  • Privacy policy

    Frontify AG and its subsidiary Frontify Deutschland GmbH (“Frontify”, “we”) are committed to handling information responsibly and in compliance with applicable privacy and data protection laws.

    Frontify is a technology company and provides a brand management software as a service (“Services”) to private and enterprise customers. Frontify operates several websites including frontify.com (“Sites”).

    We only collect personal information required to:

    • fulfill the contract with our customers,
    • comply with applicable laws and regulations,
    • protect our rights.

    This Privacy Policy describes how we collect and use personal information in connection with providing our Services and in operating our Sites. It also describes the choices you have regarding our processing of your personal information.

    Information we collect

    Frontify may collect the following information:

    • User information: Users may provide information such as an email address, a name, a company name, a job title or similar in order to register for one of our Services.
    • Product setup information: For enterprise customers, employees may be invited by a responsible person to access any of our products such as Style Guide, Pattern Library, Media Library, and Workspace. For this purpose, we may collect the email address as well as the publicly available gravatar profile image of the invited employees.
    • Billing information: For users who turn into paying customers, our payment service provider may collect and store billing addresses and credit card information on our behalf.
    • Usage information: To maintain and improve our Services we may collect usage statistics.
    • Browser data: We may collect a standard website visitor information supplied by your browser (e.g. your operating system, the browser you are using, IP addresses, language settings). This information is dependent of the type of the device, browser and the settings you are using.
    • Third party data: We may receive information by third-party to make our own information better or more useful. Such information could be on an aggregated level to measure the impact of our online marketing or email campaigns.

    How do we use the collected information

    Frontify will use the collected information to provide the Services to the customer and continuously improve them. From time to time, Frontify may publicly release aggregated statistics, e.g., by publishing a report on trends in the usage of our Sites. Frontify engages trusted third-parties that provide parts of Services on behalf of Frontify (e.g. functionality of a blog that you may make use of on our Sites).

    How do we protect personal information

    Frontify discloses potentially personally-identifying and personally-identifying information only to those of its employees, contractors and affiliated organizations that (i) need to know that information in order to process it on Frontify’s behalf or to provide services available at Frontify’s websites, and (ii) that have agreed not to disclose it to others. Some of those employees, contractors and affiliated organizations may be located outside of your home country; by using Frontify’s websites, you consent to the transfer of such information to them. Frontify will not rent or sell potentially personally-identifying and personally-identifying information to anyone. Other than to its employees, contractors and affiliated organizations, as described above, Frontify discloses potentially personally-identifying and personally-identifying information only in response to a subpoena, court order or other governmental request, or when Frontify believes in good faith that disclosure is reasonably necessary to protect the property or rights of Frontify, third parties or the public at large. If you are a registered user of an Frontify website and have supplied your email address, Frontify may occasionally send you an email to tell you about new features, solicit your feedback, or just keep you up to date with what’s going on with Frontify and our products. We primarily use our product blog to communicate this type of information, so we expect to keep this type of email to a minimum. If you send us a request (for example via a support email or via one of our feedback mechanisms), we reserve the right to publish it in order to help us clarify or respond to your request or to help us support other users. Frontify takes all measures reasonably necessary to protect against the unauthorized access, use, alteration or destruction of potentially personally-identifying and personally-identifying information.

    Cookies

    A cookie is a string of information that a website stores on a visitor’s computer and that the visitor’s browser provides to the website each time the visitor returns. Frontify uses cookies to help Frontify identify and track visitors, their usage of Frontify website, and their website access preferences. Frontify visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using Frontify’s websites, with the drawback that certain features of Frontify’s websites may not function properly without the aid of cookies.

    Google analytics

    We use Google Analytics services on our Sites to evaluate visitors’ use of our Sites. Google Analytics uses cookies to collect standard visitors’ information in an anonymous format and generate aggregated reports. The information generated using cookies about your use of the website (including IP address) is transmitted to Google. Frontify will not associate any data gathered from this site with any personal information from any source associated with you, unless you explicitly submit that information and the corresponding request to our support team.

    Business transfers

    If Frontify, or substantially all of its assets, were acquired, or in the unlikely event that Frontify goes out of business or enters bankruptcy, user information would be one of the assets that is transferred or acquired by a third party. You acknowledge that such transfers may occur, and that any acquirer of Frontify may continue to use your personal information as set forth in this policy.

    Outside of the European Union

    We make sure that personal data transferred outside of the EU is handled by trustworthy vendors. Vendors are regularly examined and individual data processing agreements are signed. When transferring personal data to the United States, we checks the validity of the vendors according to the EU-U.S. and Swiss-U.S. Privacy Shield.

    Your choices

    You may always refuse to supply personal information, with the caveat that it may prevent them from engaging in certain website-related activities.

    You may correct the personal information in your account using our Sites.

    You may always request to delete your personal information (see contact details below).

    Information Relating to Children

    We do not knowingly collect information from anyone under the age of thirteen. If we learn that we may have received information from someone under the age of thirteen, we will take reasonable measures to remove the information.

    Privacy Policy updates

    We may update this Privacy Policy from time to time. use of the information we collect is subject to the Privacy Policy in place at the time the information is collected. Recent changes are:

    • 3rd of May: Adoption of Privacy Policy to the GDPR requirements.

    Contact

    Please don’t hesitate to contact our Data Protection Officer at privacy@frontify.com if you have any questions about our Privacy Policy or regarding other privacy-related manners.

  • Privacy policy(platform)

    Revue Holding B.V. (“Revue”; “we”), situated in The Netherlands provides services to the users of our platform and subscribers (“you”). Our services include activities relating to providing a tool that allows writers and publishers to create and send out newsletters, as well as other services (“the Services”). We process personal data during the undertaking of these Services.

    Revue deems careful handling of personal data to be paramount. Personal data is carefully processed and secured. When processing, we adhere to the requirements of the General Data Protection Regulation (the “Rules”). This Privacy Statement relates to personal information collected by, or under the control of Revue, in accordance with the Rules. Our data processing terms are available here.

    In this Privacy Statement, we summarise what personal data we collect and use and for what purpose. We advise you to read our Privacy Statement carefully. This Privacy Statement applies to our Revue platform, related sites, apps, communications and services.

    This Privacy Statement was last altered on the 24th May 2018.

    Use of Personal Data

    By using our Services, you may share your personal data with us. We exclusively collect and use the personal data that is provided to us by you, or your organisation. Revue will not use your personal data for other purposes than for which you, or your organisation, have given us permission beforehand.

    Types of Data Collected

    When using our Services, we may collect the following Information about you:

    • Personal identification data: name, surname;
    • Contact information data: email, address;
    • Images/videos from which you may be identified;
    • Other provided data: IP address, payment information, social media accounts, feedback and other communication.

    Purposes of Processing

    Personal data is generally processed by Revue for the following purposes:

    • Logging in and verifying/authenticating users of the Service;
    • Sending and delivering messages, newsletters, and other communication via the Service;
    • Communication between Revue, platform users, and their audience;
    • Monitoring and auditing the Service;
    • Analysing statistics and optimising the Service.

    We collect your personal data based on legitimate business interests, performance of a contract between you and Revue, or consent. If the processing is based on consent, it can be withdrawn at any time.

    Subscription to Services

    Newsletters created with the use of our Services can be subscribed to directly or indirectly. Individuals can directly subscribe via signup forms or plugins. Indirect subscription is possible through third-party (such as Mailchimp, Zapier) lists or manual import. Indirect subscription is only allowed with the individuals’ consent. Revue instructs the platform users to collect valid consent for subscription and puts measures in place to prevent unauthorised direct marketing. However, ensuring the validity of subscribers’ consent is the responsibility of each platform user. Newsletters sent via our platform always contain a possibility to opt-out.

    Data Storage

    In principle, we only keep your data for as long as necessary to fulfil the purposes described in this Privacy Statement. As a general rule, we store personal data of our platform users until the platform user terminates its account.

    Your Rights

    You have the right to request access to the information we have about you. You can do this by contacting us directly. We will make sure to provide you with a copy of your data that we process in a machine-readable format. We may need to verify your identity to comply with your request.

    If you believe that the information we have about you is incorrect, you can contact us, so we can update the information to ensure it is accurate. You also have the right to object to certain data processing operations, such as direct marketing. If at any point you wish for us to delete information about you, you can communicate it to us.

    You can contact us at any time with these requests and we will respond in a timely manner applicable with the Rules. If you are unsatisfied with the reply received from us, you may then refer your complaint to the relevant supervisory authority.

    Provision to Third Parties

    We will not provide the data you have provided us to other parties if you have not given us permission to do so, unless this is necessary within the framework of the execution of the contractual agreement you, or your organisation, have taken out with us or if this is required by the law.

    Data Transfers

    For the fulfilment of the purposes mentioned in this Privacy Statement, your data may be transferred outside the European Economic Area. Whenever this is the case, we make sure that personal data is transferred in a secure manner. For transfers to the US, we ensure that the party is subject to the US-EU Privacy Shield Agreement. For other transfers, your data may be transferred to countries recognized by the European Commission as providing an adequate level of data protection.

    Cookies and Analytics

    For the functioning of our platform, it is necessary that Revue makes use of functional cookies. Additionally, when you use our service, your IP address is automatically saved in the log files of our web server. This is necessary to allow us to properly manage and secure our Services. We do not use your IP address to follow and register your behaviour online. Normally, we are not able to link your IP address to your name, address or other identifying information, except when you actively provide us with such information and continue to make use of the same IP address.

    User data that you provide may be kept for making statistical analyses including via Google Analytics. These statistics are used to optimise our Services. Wherever possible, we make this data pseudonymized.

    Security

    We take security measures in order to limit misuse of and unauthorised access to personal data. We take the measures including, but not limited to:

    • Logical access control, use of passwords and possibly a second factor;
    • Encryption of data;
    • Pseudonymising data;
    • Securing data during the exchange of it, making use of the HTTPS protocol, except if the platform user opts to use a different domain;
    • Purpose-bound access limitations;
    • Control of acknowledged authorisations.

    Special information for parents

    We do not provide our Services directly to, nor collect personal data of, children below the age of 16.

    If you are a parent or guardian and you are aware that your child has provided us with their personal information, please contact us. If we become aware that we have collected personal information from children under age of 16 without verification of parental consent, we will take steps to remove that information from our servers.

    Third Party Websites

    This statement does not apply to third party websites that are visited from our Services through links. We cannot guarantee that these third parties will handle your personal data safely and reliably. We advise you to read the privacy statements of these third parties before making use of them.

    Revue Holding B.V.
    Europalaan 500-unit O.2.3,
    3526KS Utrecht,
    The Netherlands

  • GitHub Privacy Statement

    Effective date: May 25, 2018

    Thanks for entrusting GitHub with your source code, your projects, and your personal information. Holding onto your private information is a serious responsibility, and we want you to know how we’re handling it.

    The short version

    We only collect the information you choose to give us, and we process it with your consent, or on another legal basis; we only require the minimum amount of personal information that is necessary to fulfill the purpose of your interaction with us; we don’t sell it to third parties; and we only use it as this Privacy Statement describes. If you’re visiting us from the EU, please see our global privacy practices: we comply with the Privacy Shield framework and we are compliant with the General Data Protection Regulation (GDPR). No matter where you are, where you live, or what your citizenship is, we provide the same standard of privacy protection to all our users around the world, regardless of their country of origin or location.

    Of course, the short version doesn’t tell you everything, so please read on for more details!

    Summary

    Section What can you find there?
    What information GitHub collects and why GitHub collects basic information from visitors to our website, and some personal information from our users. We only require the minimum amount of personal information necessary from you. This section gives details.
    What information GitHub does not collect We don’t collect information from children under 13, and we don’t collect sensitive data.
    How we share the information we collect We share information to provide the service to you, to comply with your requests, or with our vendors. We do not host advertising on GitHub and we do not sell your personal information. You can see a list of the vendors that access your personal information.
    How you can access and control the information we collect We provide ways for you to access, alter, or delete your profile information. You can also contact Support for more help.
    Our use of cookies and tracking We use cookies for the overall functionality of our website, and we use a small number of tracking and analytics services on a few parts of our site. We offer a page that makes this very transparent. Please see this section for more information.
    How GitHub secures your information We take all measures reasonably necessary to protect the confidentiality, integrity, and availability of your personal information on GitHub and to protect the resiliance of our servers as they host your information.
    GitHub’s global privacy practices GitHub complies with both the EU-US Privacy Shield Framework and the General Data Protection Regulation. Please see this section for more specific information.
    How we respond to compelled disclosure We may share your information in response to a warrant, subpoena, or other court action, or if disclosure is necessary to protect our rights or the rights of the public at large. We strive for transparency, and will notify you when possible.
    How we, and others, communicate with you We communicate with you by email. You can control the way we contact you in your account settings.
    Resolving complaints In the unlikely event that we are unable to resolve a privacy concern quickly and thoroughly, we provide a path of dispute resolution through external arbiters.
    Changes to our Privacy Statement We will notify you of material changes to this Privacy Statement 30 days in advance of any such changes becoming effective. You may also track changes in our Site Policy repository.
    Contacting GitHub Please feel free to contact us if you have questions about our Privacy Statement.

    GitHub Privacy Statement

    What information GitHub collects and why

    Information from website browsers

    If you’re just browsing the website, we collect the same basic information that most websites collect. We use common internet technologies, such as cookies and web server logs. This is stuff we collect from everybody, whether they have an account or not.

    The information we collect about all visitors to our website includes the visitor’s browser type, language preference, referring site, additional websites requested, and the date and time of each visitor request. We also collect potentially personally-identifying information like Internet Protocol (IP) addresses.

    Why we collect this information

    We collect this information to better understand how our website visitors use GitHub, and to monitor and protect the security of the website.

    Information from users with accounts

    If you create an account, we require some basic information at the time of account creation. You will create your own user name and password, and we will ask you for a valid email address. You also have the option to give us more information if you want to, and this may include “User Personal Information.”

    “User Personal Information” is any information about one of our users which could, alone or together with other information, personally identify him or her. Information such as a user name and password, an email address, a real name, and a photograph are examples of “User Personal Information.” User Personal Information includes Personal Data as defined in the General Data Protection Regulation.

    User Personal Information does not include aggregated, non-personally identifying information. We may use aggregated, non-personally identifying information to operate, improve, and optimize our website and service.

    Why we collect this information
    • We need your User Personal Information to create your account, and to provide the services you request, including to provide the GitHub service, the Marketplace service, or to respond to support requests.
    • We use your User Personal Information, specifically your user name, to identify you on GitHub.
    • We use it to fill out your profile and share that profile with other users if you ask us to.
    • We will use your email address to communicate with you, if you’ve said that’s okay, and only for the reasons you’ve said that’s okay. Please see our section on email communication for more information.
    • We use User Personal Information and other data to make recommendations for you, such as to suggest projects you may want to follow or contribute to. For example, when you fill out an interest survey at account creation, we learn from it — as well as from your public behavior on GitHub, such as the projects you star — to determine your coding interests, and we recommend similar projects. These recommendations are automated decisions, but they have no legal impact on your rights.
    • We use your User Personal Information for internal purposes, such as to maintain logs for security reasons, for training purposes, and for legal documentation.
    • We limit our use of your User Personal Information to the purposes listed in this Privacy Statement. If we need to use your User Personal Information for other purposes, we will ask your permission first. You can always see what information we have, how we’re using it, and what permissions you have given us in your user profile.
    Our legal basis for processing information

    Under certain international laws (including GDPR), GitHub is required to notify you about the legal basis on which we process User Personal Information. GitHub processes User Personal Information on the following legal bases:

    • When you create a GitHub account, you provide your user name and an email address. We require those data elements for you to enter into the Terms of Service agreement with us, and we process those elements on the basis of performing that contract. We also process your user name and email address on other bases. If you have a GitHub Hosted, GitHub Enterprise, or other paid account with us, there will be other data elements we must collect and process on the basis of performing that contract. GitHub does not collect or process a credit card number, but our third-party payment processor does.
    • When you fill out the information in your user profile, you have the option to provide User Personal Information such as your full name, an avatar which may include a photograph, your biography, your location, your company, and a URL to a third party website. You have the option of setting a publicly visible email address here. We process this information on the basis of consent. All of this information is entirely optional, and you have the ability to access, modify, and delete it at any time (while you are not able to delete your email address entirely, you can make it private).
    • Generally, the remainder of the processing of personal information we perform is necessary for the purposes of our legitimate interests. For example, for security purposes, we must keep logs of IP addresses that access GitHub, and in order to respond to legal process, we are required to keep records of users who have sent and received DMCA takedown notices.
    • If you would like to request erasure of data we process on the basis of consent or object to our processing of personal information, please use our Privacy contact form.

    What information GitHub does not collect

    We do not intentionally collect sensitive personal information, such as social security numbers, genetic data, health information, or religious information. Although GitHub does not request or intentionally collect any sensitive personal information, we realize that you might store this kind of information in your account, such as in a repository or in your public profile. If you store any sensitive personal information on our servers, you are responsible for complying with any regulatory controls regarding that data.

    If you’re a child under the age of 13, you may not have an account on GitHub. GitHub does not knowingly collect information from or direct any of our content specifically to children under 13. If we learn or have reason to suspect that you are a user who is under the age of 13, we will unfortunately have to close your account. We don’t want to discourage you from learning to code, but those are the rules. Please see our Terms of Service for information about account termination. Other countries may have different minimum age limits, and if you are below the minimum age for providing consent for data collection in your country, you may not use GitHub without obtaining your parents’ or legal guardians’ consent.

    We do not intentionally collect User Personal Information that is stored in your repositories or other free-form content inputs. Information in your repositories belongs to you, and you are responsible for it, as well as for making sure that your content complies with our Terms of Service. Any personal information within a user’s repository is the responsibility of the repository owner.

    Repository contents

    GitHub employees do not access private repositories unless required to for security reasons, to assist the repository owner with a support matter, or to maintain the integrity of the service. Our Terms of Service provides more details.

    If your repository is public, anyone (including us and unaffiliated third parties) may view its contents. If you have included private or sensitive information in your public repository, such as email addresses or passwords, that information may be indexed by search engines or used by third parties. In addition, while we do not generally search for content in your repositories, we may scan our servers for certain tokens or security signatures, or for known active malware.

    Please see more about User Personal Information in public repositories.

    How we share the information we collect

    We do share User Personal Information with your permission, so we can perform services you have requested or communicate on your behalf. For example, if you purchase an integration or other Developer Product from our Marketplace, we will share your account name to allow the integrator to provide you services. Additionally, you may indicate, through your actions on GitHub, that you are willing to share your User Personal Information. For example, if you join an organization, the owner of the organization will have the ability to view your activity in the organization’s access log. We will respect your choices.

    We do not share, sell, rent, or trade User Personal Information with third parties for their commercial purposes, except where you have specifically told us to (such as by buying an integration from Marketplace).

    We do not host advertising on GitHub. We may occasionally embed content from third party sites, such as YouTube, and that content may include ads. While we try to minimize the amount of ads our embedded content contains, we can’t always control what third parties show. Any advertisements on individual GitHub Pages or in GitHub repositories are not sponsored by, or tracked by, GitHub.

    We do not disclose User Personal Information outside GitHub, except in the situations listed in this section or in the section below on Compelled Disclosure.

    We do share certain aggregated, non-personally identifying information with others about how our users, collectively, use GitHub, or how our users respond to our other offerings, such as our conferences or events. For example, we may compile statistics on the usage of open source licenses across GitHub. However, we do not sell this information to advertisers or marketers.

    We do share User Personal Information with a limited number of third party vendors who process it on our behalf to provide or improve our service, and who have agreed to privacy restrictions similar to our own Privacy Statement by signing data protection agreements. Our vendors perform services such as payment processing, customer support ticketing, network data transmission, and other similar services. When we transfer your data to our vendors under Privacy Shield, we remain responsible for it. While GitHub processes all User Personal Information in the United States, our third party vendors may process data outside of the United States or the European Union. If you would like to know who our third party vendors are, please see our page on Subprocessors.

    We do share aggregated, non-personally identifying information with third parties. For example, we share the number of stars on a repository, or in the event of a security incident, we may share the number of times a particular file was accessed.

    We may share User Personal Information if we are involved in a merger, sale, or acquisition. If any such change of ownership happens, we will ensure that it is under terms that preserve the confidentiality of User Personal Information, and we will notify you on our website or by email before any transfer of your User Personal Information. The organization receiving any User Personal Information will have to honor any promises we have made in our Privacy Statement or in our Terms of Service.

    Public information on GitHub

    Much of GitHub is public-facing. If your content is public-facing, third parties may access and use it in compliance with our Terms of Service, such as by viewing your profile or repositories or pulling data via our API. We do not sell that content; it is yours. However, we do allow third parties, such as research organizations or archives, to compile public-facing GitHub information. Other third parties, such as data brokers, have been known to scrape GitHub and compile data as well.

    Your Personal Information, associated with your content, could be gathered by third parties in these compilations of GitHub data. If you do not want your Personal Information to appear in third parties’ compilations of GitHub data, please do not make your Personal Information publicly available and be sure to configure your email address to be private in your user profile and in your git commit settings. We currently set users’ email address private by default, but legacy GitHub users may need to update their settings.

    If you would like to compile GitHub data, you must comply with our Terms of Service regarding scrapingand privacy, and you may only use any public-facing Personal Information you gather for the purpose for which our user has authorized it. For example, where a GitHub user has made an email address public-facing for the purpose of identification and attribution, do not use that email address for commercial advertising. We expect you to reasonably secure any Personal Information you have gathered from GitHub, and to respond promptly to complaints, removal requests, and “do not contact” requests from GitHub or GitHub users.

    Similarly, projects on GitHub may include publicly available Personal Information collected as part of the collaborative process. In the event that a GitHub project contains publicly available Personal Information that does not belong to GitHub users, we will only use that Personal Information for the limited purpose for which it was collected, and we will secure that Personal Information as we would secure any User Personal Information. If you have a complaint about any Personal Information on GitHub, please see our section on resolving complaints.

    Third party applications

    You have the option of enabling or adding third party applications, known as “Developer Products,” to your account. These Developer Products are not necessary for your use of GitHub. We will share your User Personal Information to third parties when you ask us to, such as by purchasing a Developer Product from the Marketplace; however, you are responsible for your use of the third party Developer Product and for the amount of User Personal Information you choose to share with it. You can check our API documentation to see what information is provided when you authenticate into a Developer Product using your GitHub profile.

    GitHub applications

    You also have the option of adding applications from GitHub, such as our Desktop app, our Electron or Atom applications, or other account features, to your account. These applications each have their own terms and may collect different kinds of User Personal Information; however, all GitHub applications are subject to this Privacy Statement, and we will always collect the minimum amount of User Personal Information necessary, and use it only for the purpose for which you have given it to us.

    How you can access and control the information we collect

    If you’re already a GitHub user, you may access, update, alter, or delete your basic user profile information by editing your user profile or contacting GitHub Support. You can control the information we collect about you by limiting what information is in your profile, by updating out of date information, or by contacting GitHub Support.

    Data portability

    As a GitHub User, you can always take your data with you. You can clone your repositories to your desktop, for example, or you can use our Data Portability tools to download all of the data we have about you.

    Data retention and deletion of data

    Generally, GitHub will retain User Personal Information for as long as your account is active or as needed to provide you services.

    We may retain certain User Personal Information indefinitely, unless you delete it or request its deletion. For example, we don’t automatically delete inactive user accounts, so unless you choose to delete your account, we will retain your account information indefinitely.

    If you would like to cancel your account or delete your User Personal Information, you may do so in your user profile. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements, but barring legal requirements, we will delete your full profile (within reason) within 90 days. You may contact GitHub Support to request the erasure of the data we process on the basis of consent within 30 days.

    After an account has been deleted, certain data, such as contributions to others’ repositories and comments in others’ issues, will remain. However, we will delete or deidentify your personal information, including your user name and email address, from the author field of issues, pull requests, and comments by associating them with the ghost user.

    The email address you have supplied via your Git commit settings will always be associated with your commits in the Git system. If you chose to make your email address private, you should also update your Git commit settings. We are unable to change or delete data in the Git commit history — the Git software is designed to maintain a record — but we do enable you to control what information you put in that record.

    Our use of cookies and tracking

    Cookies

    GitHub uses cookies to make interactions with our service easy and meaningful. We use cookies (and similar technologies, like HTML5 localStorage) to keep you logged in, remember your preferences, and provide information for future development of GitHub. We also use cookies to identify a device, for security reasons. By using our website, you agree that we can place these types of cookies on your computer or device. If you disable your browser or device’s ability to accept cookies, you will not be able to log in or use GitHub’s services.

    We provide a web page on cookies and tracking that describes the cookies we set, the needs we have for those cookies, and the types of cookies they are (temporary or permanent). It also lists our third party analytics and service providers and details exactly which parts of our website we permit them to track.

    Tracking and analytics

    We use a number of third party analytics and service providers to help us evaluate our users’ use of GitHub; compile statistical reports on activity; and improve our content and website performance. We only use these third party analytics providers on certain areas of our website, and all of them have signed data protection agreements with us that limit the type of personal information they can collect and the purpose for which they can process the information. In addition, we use our own internal analytics software to provide features and improve our content and performance.

    We do not currently respond to your browser’s Do Not Track signal, and we do not permit third parties other than our analytics and service providers to track GitHub users’ activity over time on GitHub. We do not track your online browsing activity on other online services over time.

    How GitHub secures your information

    GitHub takes all measures reasonably necessary to protect User Personal Information from unauthorized access, alteration, or destruction; maintain data accuracy; and help ensure the appropriate use of User Personal Information.

    GitHub enforces a written security information program. Our program:

    • aligns with industry recognized frameworks;
    • includes security safeguards reasonably designed to protect the confidentiality, integrity, availability, and resilience of our users’ data;
    • is appropriate to the nature, size, and complexity of GitHub’s business operations;
    • includes incident response and data breach notification processes; and
    • complies with applicable information security related laws and regulations in the geographic regions where GitHub does business.

    In the event of a data breach that affects your User Personal Information, we will act promptly to mitigate the impact of a breach and notify any affected users without undue delay.

    Transmission of data on GitHub is encrypted using SSH, HTTPS, and SSL/TLS. While our data is not encrypted at rest, we manage our own cages and racks at top-tier data centers with excellent physical and network security, and when data is stored with a third party storage provider, it is encrypted.

    No method of transmission, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security. For more information, see our security disclosures.

    GitHub’s global privacy practices

    We store and process the information that we collect in the United States in accordance with this Privacy Statement (our subprocessors may store and process data outside the United States). However, we understand that we have users from different countries and regions with different privacy expectations, and we try to meet those needs even when the United States does not have the same privacy framework as other countries’.

    We provide the same standard of privacy protection — as described in this Privacy Statement — to all our users around the world, regardless of their country of origin or location, and we are proud of the levels of notice, choice, accountability, security, data integrity, access, and recourse we provide. We have appointed a Privacy Counsel and we work hard to comply with the applicable data privacy laws wherever we do business, and our Privacy Counsel also acts as our Data Protection Officer, part of a cross-functional team that oversees our privacy compliance efforts. Additionally, if our vendors or affiliates have access to User Personal Information, they must sign agreements that require them to comply with our privacy policies and with applicable data privacy laws.

    In particular:

    • GitHub provides clear methods of unambiguous, informed consent at the time of data collection, when we do collect your personal data using consent as a basis.
    • We collect only the minimum amount of personal data necessary for our purposes, unless you choose to provide more. We encourage you to only give us the amount of data you are comfortable sharing.
    • We offer you simple methods of accessing, correcting, or deleting the User Personal Information we have collected.
    • We provide our users notice, choice, accountability, security, and access, and we limit the purpose for processing. We also provide our users a method of recourse and enforcement. These are the Privacy Shield Principles, but they are also just good practices.

    Cross-border data transfers

    For cross-border data transfers from the European Union (EU) and the European Economic Area (EEA), GitHub adheres to the Privacy Shield Framework. You may view our entry in the Privacy Shield List.

    In addition to providing our users methods of unambiguous, informed consent and control over their data, we participate in and comply with the Privacy Shield framework, and we are committed to subject any Personal Information we receive from the EU and EEA to the Privacy Shield Principles. In addition, we continue to participate in the Safe Harbor Framework for Swiss data transfers to the US. Please read more about GitHub’s international privacy commitments.

    How we respond to compelled disclosure

    GitHub may disclose personally-identifying information or other information we collect about you to law enforcement in response to a valid subpoena, court order, warrant, or similar government order, or when we believe in good faith that disclosure is reasonably necessary to protect our property or rights, or those of third parties or the public at large.

    In complying with court orders and similar legal processes, GitHub strives for transparency. When permitted, we will make a reasonable effort to notify users of any disclosure of their information, unless we are prohibited by law or court order from doing so, or in rare, exigent circumstances.

    For more information, see our Guidelines for Legal Requests of User Data.

    How we, and others, communicate with you

    We will use your email address to communicate with you, if you’ve said that’s okay, and only for the reasons you’ve said that’s okay. For example, if you contact our Support team with a request, we will respond to you via email. You have a lot of control over how your email address is used and shared on and through GitHub. You may manage your communication preferences in your user profile.

    By design, the Git version control system associates many actions with a user’s email address, such as commit messages. We are not able to change many aspects of the Git system. If you would like your email address to remain private, even when you’re commenting on public repositories, you can create a private email address in your user profile. You should also update your local Git configuration to use your private email address. This will not change how we contact you, but it will affect how others see you. We set current users’ email address private by default, but legacy GitHub users may need to update their settings. Please see more about email addresses in commit messages here.

    Depending on your email settings, GitHub may occasionally send notification emails about changes in a repository you’re watching, new features, requests for feedback, important policy changes, or offer customer support. We also send marketing emails, but only with your consent, if you opt in to our list. There’s an unsubscribe link located at the bottom of each of the marketing emails we send you. Please note that you can not opt out of receiving important communications from us, such as mails from our Support team or system emails, but you can configure your notifications settings in your profile.

    Our emails might contain a pixel tag, which is a small, clear image that can tell us whether or not you have opened an email and what your IP address is. We use this pixel tag to make our email more effective for you and to make sure we’re not sending you unwanted email.

    Resolving complaints

    If you have concerns about the way GitHub is handling your User Personal Information, please let us know immediately. We want to help. You may contact us by filling out the Privacy contact form. You may also email us directly at privacy@github.com with the subject line “Privacy Concerns.” We will respond promptly — within 45 days at the latest.

    You may also contact our Data Protection Officer directly.

    Our Data Protection Officer Our EU Office
    Hannah Poteat GitHub BV
    88 Colin P. Kelly Jr. St. Vijzelstraat 68-72
    San Francisco, CA 94107 1017 HL Amsterdam
    United States The Netherlands
    privacy@github.com privacy@github.com

    Dispute resolution process

    In the unlikely event that a dispute arises between you and GitHub regarding our handling of your User Personal Information, we will do our best to resolve it. If we cannot, we have selected JAMS, an independent dispute resolution provider, to handle unresolved Privacy Shield complaints. If we are unable to resolve your concerns after a good faith effort to address them, you may contact JAMS and submit a Privacy Shield claim. JAMS is a US-based private alternate dispute resolution provider, and we have contracted with JAMS to provide an independent recourse mechanism for any of our users for privacy concerns at no cost to you. You do not need to appear in court; you may conduct this dispute resolution process via telephone or video conference. If you are not based in the EU or EEA, but you would still like to use the JAMS arbitration process to resolve your dispute, please let us know and we will provide access to you.

    Independent arbitration

    Under certain limited circumstances, European Union individuals may invoke binding Privacy Shield arbitration as a last resort if all other forms of dispute resolution have been unsuccessful. To learn more about this method of resolution and its availability to you, please read more about Privacy Shield. Arbitration is not mandatory; it is a tool you can use if you choose to.

    We are subject to the jurisdiction of the Federal Trade Commission.

    Changes to our Privacy Statement

    Although most changes are likely to be minor, GitHub may change our Privacy Statement from time to time. We will provide notification to Users of material changes to this Privacy Statement through our Website at least 30 days prior to the change taking effect by posting a notice on our home page or sending email to the primary email address specified in your GitHub account. We will also update our Site Policy repository, which tracks all changes to this policy. For changes to this Privacy Statement that do not affect your rights, we encourage visitors to check our Site Policy repository frequently.

    License

    This Privacy Statement is licensed under this Creative Commons Zero license. For details, see our site-policy repository.

    Contacting GitHub

    Questions regarding GitHub’s Privacy Statement or information practices should be directed to our Privacy contact form.

  • Data Processing and Security Terms (Customers)

    Last modified: 25 May 2018 | Previous Versions

    The customer agreeing to these terms (“Customer”), and Google LLC (formerly known as Google Inc.), Google Ireland Limited, Google Asia Pacific Pte. Ltd., or any other entity that directly or indirectly controls, is controlled by, or is under common control with Google LLC (as applicable, “Google”), have entered into an agreement under which Google has agreed to provide Google Cloud Platform (as described at https://cloud.google.com/terms/services) and related technical support to Customer (as amended from time to time, the “Agreement”).

    These Data Processing and Security Terms, including their appendices (the “Terms”) will be effective and replace any previously applicable data processing and security terms as from the Terms Effective Date (as defined below).

    These Terms supplement the Agreement. Where the Agreement was entered into offline with Google Ireland Limited, these Terms supersede the “Privacy” Clause in that agreement (if applicable).

    1. Introduction

    These Terms reflect the parties’ agreement with respect to the terms governing the processing and security of Customer Data under the Agreement.

    2. Definitions

    2.1 Capitalized terms used but not defined in these Terms have the meanings set out in the Agreement. In these Terms, unless stated otherwise:

    • Additional Security Controls means security resources, features, functionality and/or controls that Customer may use at its option and/or as it determines, including the Admin Console and other features and/or functionality of the Services such as encryption, logging and monitoring, identity and access management, security scanning, and firewalls.
    • Agreed Liability Cap means the maximum monetary or payment-based amount at which a party’s liability is capped under the Agreement, either per annual period or event giving rise to liability, as applicable.
    • Alternative Transfer Solution means a solution, other than the Model Contract Clauses, that enables the lawful transfer of personal data to a third country in accordance with Article 45 or 46 of the GDPR (for example, the EU-U.S. Privacy Shield).
    • Audited Services means the Services indicated as being in-scope for the relevant certification or report at https://cloud.google.com/security/compliance/services-in-scope, as may be updated by Google from time to time, provided that Google may only remove a Deprecation Policy Service from such URL if that Service has been discontinued in accordance with the Deprecation Policy.
    • Customer Data has the meaning given in the Agreement or, if no such meaning is given, means data provided by or on behalf of Customer or Customer End Users via the Services under the Account.
    • Customer End Users has the meaning given in the Agreement or, if not such meaning is given, has the meaning given to “End Users” in the Agreement.
    • Customer Personal Data means the personal data contained within the Customer Data.
    • Data Incident means a breach of Google’s security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, Customer Data on systems managed by or otherwise controlled by Google. “Data Incidents” will not include unsuccessful attempts or activities that do not compromise the security of Customer Data, including unsuccessful log-in attempts, pings, port scans, denial of service attacks, and other network attacks on firewalls or networked systems.
    • Deprecation Policy Service means a Service identified at https://cloud.google.com/cloud/terms/deprecation.
    • EEA means the European Economic Area.
    • European Data Protection Legislation means, as applicable: (a) the GDPR; and/or (b) the Federal Data Protection Act of 19 June 1992 (Switzerland).
    • GDPR means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
    • Google’s Third Party Auditor means a Google-appointed, qualified and independent third party auditor, whose then-current identity Google will disclose to Customer.
    • ISO 27001 Certification means an ISO/IEC 27001:2013 certification or a comparable certification for the Audited Services.
    • ISO 27017 Certification means an ISO/IEC 27017:2015 certification or a comparable certification for the Audited Services.
    • ISO 27018 Certification means an ISO/IEC 27018:2014 certification or a comparable certification for the Audited Services.
    • Model Contract Clauses or MCCs mean the standard data protection clauses for the transfer of personal data to processors established in third countries which do not ensure an adequate level of data protection, as described in Article 46 of the GDPR.
    • Non-European Data Protection Legislation means data protection or privacy legislation in force outside the European Economic Area and Switzerland.
    • Notification Email Address means the email address(es) designated by Customer in the Admin Console, or in the Order Form or Ordering Document (as applicable), to receive certain notifications from Google.
    • Security Documentation means all documents and information made available by Google under Section 7.5.1 (Reviews of Security Documentation).
    • Security Measures has the meaning given in Section 7.1.1 (Google’s Security Measures).
    • SOC 2 Report means a confidential Service Organization Control (SOC) 2 report (or a comparable report) on Google’s systems examining logical security controls, physical security controls, and system availability, as produced by Google’s Third Party Auditor in relation to the Audited Services.
    • SOC 3 Report means a Service Organization Control (SOC) 3 report (or a comparable report), as produced by Google’s Third Party Auditor in relation to the Audited Services.
    • Subprocessors means third parties authorized under these Terms to have logical access to and process Customer Data in order to provide parts of the Services and TSS.
    • Term means the period from the Terms Effective Date until the end of Google’s provision of the Services, including, if applicable, any period during which provision of the Services may be suspended and any post-termination period during which Google may continue providing the Services for transitional purposes.
    • Terms Effective Date means the date on which Customer accepted, or the parties otherwise agreed to, these Terms.

    2.2 The terms “personal data”, “data subject”, “processing”, “controller”, “processor” and “supervisory authority” as used in these Terms have the meanings given in the GDPR, and the terms “data importer” and “data exporter” have the meanings given in the Model Contract Clauses, in each case irrespective of whether the European Data Protection Legislation or Non-European Data Protection Legislation applies.

    3. Duration of these Terms

    These Terms will take effect on the Terms Effective Date and, notwithstanding expiry of the Term, will remain in effect until, and automatically expire upon, deletion of all Customer Data by Google as described in these Terms.

    4. Scope of Data Protection Legislation

    4.1 Application of European Legislation. The parties acknowledge and agree that the European Data Protection Legislation will apply to the processing of Customer Personal Data if, for example:

    • the processing is carried out in the context of the activities of an establishment of Customer in the territory of the EEA; and/or
    • the Customer Personal Data is personal data relating to data subjects who are in the EEA and the processing relates to the offering to them of goods or services in the EEA or the monitoring of their behaviour in the EEA.

    4.2 Application of Non-European Legislation. The parties acknowledge and agree that Non-European Data Protection Legislation may also apply to the processing of Customer Personal Data.

    4.3 Application of Terms. Except to the extent these Terms state otherwise, these Terms will apply irrespective of whether the European Data Protection Legislation or Non-European Data Protection Legislation applies to the processing of Customer Personal Data.

    5. Processing of Data

    5.1 Roles and Regulatory Compliance; Authorization.

    5.1.1 Processor and Controller Responsibilities. If the European Data Protection Legislation applies to the processing of Customer Personal Data, the parties acknowledge and agree that:

    • the subject matter and details of the processing are described in Appendix 1;
    • Google is a processor of that Customer Personal Data under the European Data Protection Legislation;
    • Customer is a controller or processor, as applicable, of that Customer Personal Data under European Data Protection Legislation; and
    • each party will comply with the obligations applicable to it under the European Data Protection Legislation with respect to the processing of that Customer Personal Data.

    5.1.2 Authorization by Third Party Controller. If the European Data Protection Legislation applies to the processing of Customer Personal Data and Customer is a processor, Customer warrants to Google that Customer’s instructions and actions with respect to that Customer Personal Data, including its appointment of Google as another processor, have been authorized by the relevant controller.

    5.1.3 Responsibilities under Non-European Legislation. If Non-European Data Protection Legislation applies to either party’s processing of Customer Personal Data, the parties acknowledge and agree that the relevant party will comply with any obligations applicable to it under that legislation with respect to the processing of that Customer Personal Data.

    5.2 Scope of Processing.

    5.2.1 Customer’s Instructions. By entering into these Terms, Customer instructs Google to process Customer Personal Data only in accordance with applicable law: (a) to provide the Services and TSS; (b) as further specified via Customer’s use of the Services (including the Admin Console and other functionality of the Services) and TSS; (c) as documented in the form of the Agreement, including these Terms; and (d) as further documented in any other written instructions given by Customer and acknowledged by Google as constituting instructions for purposes of these Terms.

    5.2.2 Google’s Compliance with Instructions. Google will comply with the instructions described in Section 5.2.1 (Customer’s Instructions) (including with regard to data transfers) unless EU or EU Member State law to which Google is subject requires other processing of Customer Personal Data by Google, in which case Google will inform Customer (unless that law prohibits Google from doing so on important grounds of public interest) via the Notification Email Address.

    6. Data Deletion

    6.1 Deletion by Customer. Google will enable Customer to delete Customer Data during the Term in a manner consistent with the functionality of the Services. If Customer uses the Services to delete any Customer Data during the Term and that Customer Data cannot be recovered by Customer, this use will constitute an instruction to Google to delete the relevant Customer Data from Google’s systems in accordance with applicable law. Google will comply with this instruction as soon as reasonably practicable and within a maximum period of 180 days, unless EU or EU Member State law requires storage.

    6.2 Deletion on Termination. On expiry of the Term, Customer instructs Google to delete all Customer Data (including existing copies) from Google’s systems in accordance with applicable law. Google will, after a recovery period of up to 30 days following such expiry, comply with this instruction as soon as reasonably practicable and within a maximum period of 180 days, unless EU or EU Member State law requires storage. Without prejudice to Section 9.1 (Access; Rectification; Restricted Processing; Portability), Customer acknowledges and agrees that Customer will be responsible for exporting, before the Term expires, any Customer Data it wishes to retain afterwards.

    7. Data Security

    7.1 Google’s Security Measures, Controls and Assistance.

    7.1.1 Google’s Security Measures. Google will implement and maintain technical and organizational measures to protect Customer Data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access as described in Appendix 2 (the “Security Measures”). As described in Appendix 2, the Security Measures include measures to encrypt personal data; to help ensure ongoing confidentiality, integrity, availability and resilience of Google’s systems and services; to help restore timely access to personal data following an incident; and for regular testing of effectiveness. Google may update or modify the Security Measures from time to time provided that such updates and modifications do not result in the degradation of the overall security of the Services.

    7.1.2 Security Compliance by Google Staff. Google will take appropriate steps to ensure compliance with the Security Measures by its employees, contractors and Subprocessors to the extent applicable to their scope of performance, including ensuring that all persons authorized to process Customer Personal Data have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality.

    7.1.3 Additional Security Controls. In addition to the Security Measures, Google will make the Additional Security Controls available to: (a) allow Customer to take steps to secure Customer Data; and (b) provide Customer with information about securing, accessing and using Customer Data.

    7.1.4 Google’s Security Assistance. Customer agrees that Google will (taking into account the nature of the processing of Customer Personal Data and the information available to Google) assist Customer in ensuring compliance with any of Customer’s obligations in respect of security of personal data and personal data breaches, including if applicable Customer’s obligations pursuant to Articles 32 to 34 (inclusive) of the GDPR, by:

    • implementing and maintaining the Security Measures in accordance with Section 7.1.1 (Google’s Security Measures);
    • making the Additional Security Controls available to Customer in accordance with Section 7.1.3 (Additional Security Controls);
    • complying with the terms of Section 7.2 (Data Incidents); and
    • providing Customer with the Security Documentation in accordance with Section 7.5.1 (Reviews of Security Documentation) and the information contained in the Agreement including these Terms.

    7.2 Data Incidents

    7.2.1 Incident Notification. If Google becomes aware of a Data Incident, Google will: (a) notify Customer of the Data Incident promptly and without undue delay after becoming aware of the Data Incident; and (b) promptly take reasonable steps to minimize harm and secure Customer Data.

    7.2.2 Details of Data Incident. Notifications made pursuant to this section will describe, to the extent possible, details of the Data Incident, including steps taken to mitigate the potential risks and steps Google recommends Customer take to address the Data Incident.

    7.2.3 Delivery of Notification. Notification(s) of any Data Incident(s) will be delivered to the Notification Email Address or, at Google’s discretion, by direct communication (for example, by phone call or an in-person meeting). Customer is solely responsible for ensuring that the Notification Email Address is current and valid.

    7.2.4 No Assessment of Customer Data by Google. Google will not assess the contents of Customer Data in order to identify information subject to any specific legal requirements. Without prejudice to Google’s obligations under this Section 7.2 (Data Incidents), Customer is solely responsible for complying with incident notification laws applicable to Customer and fulfilling any third party notification obligations related to any Data Incident(s).

    7.2.5 No Acknowledgement of Fault by Google. Google’s notification of or response to a Data Incident under this Section 7.2 (Data Incidents) will not be construed as an acknowledgement by Google of any fault or liability with respect to the Data Incident.

    7.3 Customer’s Security Responsibilities and Assessment.

    7.3.1 Customer’s Security Responsibilities. Customer agrees that, without prejudice to Google’s obligations under Section 7.1 (Google’s Security Measures, Controls and Assistance) and Section 7.2 (Data Incidents):

    • Customer is solely responsible for its use of the Services, including:
      • making appropriate use of the Services and the Additional Security Controls to ensure a level of security appropriate to the risk in respect of the Customer Data;
      • securing the account authentication credentials, systems and devices Customer uses to access the Services;
      • backing up its Customer Data as appropriate; and
    • Google has no obligation to protect copies of Customer Data that Customer elects to store or transfer outside of Google’s and its Subprocessors’ systems (for example, offline or on-premises storage), or to protect Customer Data by implementing or maintaining Additional Security Controls except to the extent Customer has opted to use them.

    7.3.2 Customer’s Security Assessment.

    • Customer is solely responsible for reviewing the Security Documentation and evaluating for itself whether the Services, the Security Measures, the Additional Security Controls and Google’s commitments under this Section 7 (Data Security) will meet Customer’s needs, including with respect to any security obligations of Customer under the European Data Protection Legislation and/or Non-European Data Protection Legislation, as applicable.
    • Customer acknowledges and agrees that (taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of the processing of Customer Personal Data as well as the risks to individuals) the Security Measures implemented and maintained by Google as set out in Section 7.1.1 (Google’s Security Measures) provide a level of security appropriate to the risk in respect of the Customer Data.

    7.4 Security Certifications and Reports. Google will do the following to evaluate and help ensure the continued effectiveness of the Security Measures:

    • maintain the ISO 27001 Certification, ISO 27017 Certification and ISO 27018 Certification; and
    • update the SOC 2 Report and SOC 3 Report at least once every 18 months.

    7.5 Reviews and Audits of Compliance

    7.5.1 Reviews of Security Documentation. In addition to the information contained in the Agreement (including these Terms), Google will make available for review by Customer the following documents and information to demonstrate compliance by Google with its obligations under these Terms:

    • the certificates issued in relation to the ISO 27001 Certification, the ISO 27017 Certification and the ISO 27018 Certification;
    • the then-current SOC 3 Report; and
    • the then-current SOC 2 Report, following a request by Customer in accordance with Section 7.5.3(a).

    7.5.2 Customer’s Audit Rights.

    • If the European Data Protection Legislation applies to the processing of Customer Personal Data, Google will allow Customer or an independent auditor appointed by Customer to conduct audits (including inspections) to verify Google’s compliance with its obligations under these Terms in accordance with Section 7.5.3 (Additional Business Terms for Reviews and Audits). Google will contribute to such audits as described in Section 7.4 (Security Certifications and Reports) and this Section 7.5 (Reviews and Audits of Compliance).
    • If Customer has entered into Model Contract Clauses as described in Section 10.2 (Transfers of Data Out of the EEA), Google will, without prejudice to any audit rights of a supervisory authority under such Model Contract Clauses, allow Customer or an independent auditor appointed by Customer to conduct audits as described in the Model Contract Clauses in accordance with Section 7.5.3 (Additional Business Terms for Reviews and Audits).
    • Customer may also conduct an audit to verify Google’s compliance with its obligations under these Terms by reviewing the Security Documentation (which reflects the outcome of audits conducted by Google’s Third Party Auditor).

    7.5.3 Additional Business Terms for Reviews and Audits.

    • Customer must send any requests for reviews of the SOC 2 Report under Section 7.5.1(c) or audits under Section 7.5.2(a) or 7.5.2(b) to Google’s Cloud Data Protection Team as described in Section 12 (Cloud Data Protection Team; Processing Records).
    • Following receipt by Google of a request under Section 7.5.3(a), Google and Customer will discuss and agree in advance on: (i) the reasonable date(s) of and security and confidentiality controls applicable to any review of the SOC 2 Report under Section 7.5.1(c); and (ii) the reasonable start date, scope and duration of and security and confidentiality controls applicable to any audit under Section 7.5.2(a) or 7.5.2(b).
    • Google may charge a fee (based on Google’s reasonable costs) for any review of the SOC 2 Report under Section 7.5.1(c) and/or audit under Section 7.5.2(a) or 7.5.2(b). Google will provide Customer with further details of any applicable fee, and the basis of its calculation, in advance of any such review or audit. Customer will be responsible for any fees charged by any auditor appointed by Customer to execute any such audit.
    • Google may object in writing to an auditor appointed by Customer to conduct any audit under Section 7.5.2(a) or 7.5.2(b) if the auditor is, in Google’s reasonable opinion, not suitably qualified or independent, a competitor of Google, or otherwise manifestly unsuitable. Any such objection by Google will require Customer to appoint another auditor or conduct the audit itself.

    7.5.4 No Modification of MCCs. Nothing in this Section 7.5 (Reviews and Audits of Compliance) varies or modifies any rights or obligations of Customer or Google LLC under any Model Contract Clauses entered into as described in Section 10.2 (Transfers of Data Out of the EEA).

    8. Impact Assessments and Consultations

    Customer agrees that Google will (taking into account the nature of the processing and the information available to Google) assist Customer in ensuring compliance with any obligations of Customer in respect of data protection impact assessments and prior consultation, including if applicable Customer’s obligations pursuant to Articles 35 and 36 of the GDPR, by:

    • providing the Additional Security Controls in accordance with Section 7.1.3 (Additional Security Controls) and the Security Documentation in accordance with Section 7.5.1 (Reviews of Security Documentation); and
    • providing the information contained in the Agreement including these Terms.

    9. Data Subject Rights; Data Export

    9.1 Access; Rectification; Restricted Processing; Portability. During the Term, Google will, in a manner consistent with the functionality of the Services, enable Customer to access, rectify and restrict processing of Customer Data, including via the deletion functionality provided by Google as described in Section 6.1 (Deletion by Customer), and to export Customer Data.

    9.2 Data Subject Requests

    9.2.1 Customer’s Responsibility for Requests. During the Term, if Google receives any request from a data subject in relation to Customer Personal Data, Google will advise the data subject to submit their request to Customer and Customer will be responsible for responding to any such request including, where necessary, by using the functionality of the Services.

    9.2.2 Google’s Data Subject Request Assistance. Customer agrees that Google will (taking into account the nature of the processing of Customer Personal Data) assist Customer in fulfilling any obligation to respond to requests by data subjects, including if applicable Customer’s obligation to respond to requests for exercising the data subject’s rights laid down in Chapter III of the GDPR, by:

    • providing the Additional Security Controls in accordance with Section 7.1.3 (Additional Security Controls); and
    • complying with the commitments set out in Section 9.1 (Access; Rectification; Restricted Processing; Portability) and Section 9.2.1 (Customer’s Responsibility for Requests).

    10. Data Transfers

    10.1 Data Storage and Processing Facilities Customer may select where certain Customer Data will be stored (the “Data Location Selection”), and Google will store it there in accordance with the Service Specific Terms. If a Data Location Selection is not covered by the Service Specific Terms (or a Data Location Selection is not made by Customer in respect of any Customer Data), Google may, subject to Section 10.2 (Transfers of Data Out of the EEA), store and process the relevant Customer Data anywhere Google or its Subprocessors maintains facilities.

    10.2 Transfers of Data Out of the EEA.

    10.2.1 Google’s Transfer Obligations. If the storage and/or processing of Customer Personal Data involves transfers of Customer Personal Data out of the EEA, and the European Data Protection Legislation applies to the transfers of such data (“Transferred Personal Data”), Google will:

    • if requested to do so by Customer, ensure that Google LLC as the data importer of the Transferred Personal Data enters into Model Contract Clauses with Customer as the data exporter of such data, and that the transfers are made in accordance with such Model Contract Clauses; and/or
    • offer an Alternative Transfer Solution, ensure that the transfers are made in accordance with such Alternative Transfer Solution, and make information available to Customer about such Alternative Transfer Solution.

    10.2.2 Customer’s Transfer Obligations. In respect of Transferred Personal Data, Customer agrees that:

    • if under the European Data Protection Legislation Google reasonably requires Customer to enter into Model Contract Clauses in respect of such transfers, Customer will do so; and
    • if under the European Data Protection Legislation Google reasonably requires Customer to use an Alternative Transfer Solution offered by Google, and reasonably requests that Customer take any action (which may include execution of documents) strictly required to give full effect to such solution, Customer will do so.

    10.3 Data Center Information. Information about the locations of Google data centers is available at: https://www.google.com/about/datacenters/inside/locations/index.html (as may be updated by Google from time to time).

    10.4 Disclosure of Confidential Information Containing Personal Data. If Customer has entered into Model Contract Clauses as described in Section 10.2 (Transfers of Data Out of the EEA), Google will, notwithstanding any term to the contrary in the Agreement, ensure that any disclosure of Customer’s Confidential Information containing personal data, and any notifications relating to any such disclosures, will be made in accordance with such Model Contract Clauses.

    11. Subprocessors

    11.1 Consent to Subprocessor Engagement. Customer specifically authorizes the engagement as Subprocessors of: (a) those entities listed as of the Terms Effective Date at the URL specified in Section 11.2 (Information about Subprocessors); and (b) all other Google Affiliates from time to time. In addition, Customer generally authorizes the engagement as Subprocessors of any other third parties (“New Third Party Subprocessors”). If Customer has entered into Model Contract Clauses as described in Section 10.2 (Transfers of Data Out of the EEA), the above authorizations will constitute Customer’s prior written consent to the subcontracting by Google LLC of the processing of Customer Data if such consent is required under the Model Contract Clauses.

    11.2 Information about Subprocessors. Information about Subprocessors, including their functions and locations, is available at: https://cloud.google.com/terms/third-party-suppliers (as may be updated by Google from time to time in accordance with these Terms).

    11.3 Requirements for Subprocessor Engagement. When engaging any Subprocessor, Google will:

    • ensure via a written contract that:
      • the Subprocessor only accesses and uses Customer Data to the extent required to perform the obligations subcontracted to it, and does so in accordance with the Agreement (including these Terms) and any Model Contract Clauses entered into or Alternative Transfer Solution adopted by Google as described in Section 10.2 (Transfers of Data Out of the EEA); and
      • if the GDPR applies to the processing of Customer Personal Data, the data protection obligations set out in Article 28(3) of the GDPR, as described in these Terms, are imposed on the Subprocessor; and
    • remain fully liable for all obligations subcontracted to, and all acts and omissions of, the Subprocessor.

    11.4 Opportunity to Object to Subprocessor Changes.

    • When any New Third Party Subprocessor is engaged during the Term, Google will, at least 30 days before the New Third Party Subprocessor processes any Customer Data, inform Customer of the engagement (including the name and location of the relevant subprocessor and the activities it will perform) by sending an email to the Notification Email Address.
    • Customer may object to any New Third Party Subprocessor by terminating the Agreement immediately upon written notice to Google, on condition that Customer provides such notice within 90 days of being informed of the engagement of the subprocessor as described in Section 11.4(a). This termination right is Customer’s sole and exclusive remedy if Customer objects to any New Third Party Subprocessor.

    12. Cloud Data Protection Team; Processing Records

    12.1 Google’s Cloud Data Protection Team. Google’s Cloud Data Protection Team can be contacted at https://support.google.com/cloud/contact/dpo (and/or via such other means as Google may provide from time to time).

    12.2 Google’s Processing Records. Customer acknowledges that Google is required under the GDPR to: (a) collect and maintain records of certain information, including the name and contact details of each processor and/or controller on behalf of which Google is acting and, where applicable, of such processor’s or controller’s local representative and data protection officer; and (b) make such information available to the supervisory authorities. Accordingly, if the GDPR applies to the processing of Customer Personal Data, Customer will, where requested, provide such information to Google via the Admin Console or other means provided by Google, and will use the Admin Console or such other means to ensure that all information provided is kept accurate and up-to-date.

    13. Liability

    13.1 Liability Cap. If Model Contract Clauses have been entered into as described in Section 10.2 (Transfers of Data Out of the EEA), the total combined liability of either party and its Affiliates towards the other party and its Affiliates under or in connection with the Agreement and such Model Contract Clauses combined will be limited to the Agreed Liability Cap for the relevant party, subject to Section 13.2 (Liability Cap Exclusions).

    13.2 Liability Cap Exclusions. Nothing in Section 13.1 (Liability Cap) will affect the remaining terms of the Agreement relating to liability (including any specific exclusions from any limitation of liability).

    14. Third Party Beneficiary

    Notwithstanding anything to the contrary in the Agreement, where Google LLC is not a party to the Agreement, Google LLC will be a third party beneficiary of Section 7.5 (Reviews and Audits of Compliance), Section 11.1 (Consent to Subprocessor Engagement) and Section 13 (Liability) of these Terms.

    15. Effect of These Terms

    Notwithstanding anything to the contrary in the Agreement, to the extent of any conflict or inconsistency between these Terms and the remaining terms of the Agreement, these Terms will govern.

    Appendix 1: Subject Matter and Details of the Data Processing

    Subject Matter

    Google’s provision of the Services and TSS to Customer.

    Duration of the Processing

    The Term plus the period from the expiry of the Term until deletion of all Customer Data by Google in accordance with the Terms.

    Nature and Purpose of the Processing

    Google will process Customer Personal Data for the purposes of providing the Services and TSS to Customer in accordance with the Terms.

    Categories of Data

    Data relating to individuals provided to Google via the Services, by (or at the direction of) Customer or by Customer End Users.

    Data Subjects

    Data subjects include the individuals about whom data is provided to Google via the Services by (or at the direction of) Customer or by Customer End Users.

    Appendix 2: Security Measures

    As from the Terms Effective Date, Google will implement and maintain the Security Measures set out in this Appendix 2. Google may update or modify such Security Measures from time to time provided that such updates and modifications do not result in the degradation of the overall security of the Services.

    1. Data Center and Network Security

    (a) Data Centers.

    Infrastructure. Google maintains geographically distributed data centers. Google stores all production data in physically secure data centers.

    Redundancy. Infrastructure systems have been designed to eliminate single points of failure and minimize the impact of anticipated environmental risks. Dual circuits, switches, networks or other necessary devices help provide this redundancy. The Services are designed to allow Google to perform certain types of preventative and corrective maintenance without interruption. All environmental equipment and facilities have documented preventative maintenance procedures that detail the process for and frequency of performance in accordance with the manufacturer’s or internal specifications. Preventative and corrective maintenance of the data center equipment is scheduled through a standard change process according to documented procedures.

    Power. The data center electrical power systems are designed to be redundant and maintainable without impact to continuous operations, 24 hours a day, 7 days a week. In most cases, a primary as well as an alternate power source, each with equal capacity, is provided for critical infrastructure components in the data center. Backup power is provided by various mechanisms such as uninterruptible power supplies (UPS) batteries, which supply consistently reliable power protection during utility brownouts, blackouts, over voltage, under voltage, and out-of-tolerance frequency conditions. If utility power is interrupted, backup power is designed to provide transitory power to the data center, at full capacity, for up to 10 minutes until the diesel generator systems take over. The diesel generators are capable of automatically starting up within seconds to provide enough emergency electrical power to run the data center at full capacity typically for a period of days.

    Server Operating Systems. Google servers use a Linux based implementation customized for the application environment. Data is stored using proprietary algorithms to augment data security and redundancy. Google employs a code review process to increase the security of the code used to provide the Services and enhance the security products in production environments.

    Businesses Continuity. Google replicates data over multiple systems to help to protect against accidental destruction or loss. Google has designed and regularly plans and tests its business continuity planning/disaster recovery programs.

    (b) Networks and Transmission.

    Data Transmission. Data centers are typically connected via high-speed private links to provide secure and fast data transfer between data centers. This is designed to prevent data from being read, copied, altered or removed without authorization during electronic transfer or transport or while being recorded onto data storage media. Google transfers data via Internet standard protocols.

    External Attack Surface. Google employs multiple layers of network devices and intrusion detection to protect its external attack surface. Google considers potential attack vectors and incorporates appropriate purpose built technologies into external facing systems.

    Intrusion Detection. Intrusion detection is intended to provide insight into ongoing attack activities and provide adequate information to respond to incidents. Google’s intrusion detection involves:

    1. tightly controlling the size and make-up of Google’s attack surface through preventative measures;
    2. employing intelligent detection controls at data entry points; and
    3. employing technologies that automatically remedy certain dangerous situations.

    Incident Response. Google monitors a variety of communication channels for security incidents, and Google’s security personnel will react promptly to known incidents.

    Encryption Technologies. Google makes HTTPS encryption (also referred to as SSL or TLS connection) available. Google servers support ephemeral elliptic curve Diffie-Hellman cryptographic key exchange signed with RSA and ECDSA. These perfect forward secrecy (PFS) methods help protect traffic and minimize the impact of a compromised key, or a cryptographic breakthrough.

    2. Access and Site Controls

    (a) Site Controls.

    On-site Data Center Security Operation. Google’s data centers maintain an on-site security operation responsible for all physical data center security functions 24 hours a day, 7 days a week. The on-site security operation personnel monitor closed circuit TV (CCTV) cameras and all alarm systems. On-site security operation personnel perform internal and external patrols of the data center regularly.

    Data Center Access Procedures. Google maintains formal access procedures for allowing physical access to the data centers. The data centers are housed in facilities that require electronic card key access, with alarms that are linked to the on-site security operation. All entrants to the data center are required to identify themselves as well as show proof of identity to on-site security operations. Only authorized employees, contractors and visitors are allowed entry to the data centers. Only authorized employees and contractors are permitted to request electronic card key access to these facilities. Data center electronic card key access requests must be made through e-mail, and require the approval of the requestor’s manager and the data center director. All other entrants requiring temporary data center access must: (i) obtain approval in advance from the data center managers for the specific data center and internal areas they wish to visit; (ii) sign in at on-site security operations; and (iii) reference an approved data center access record identifying the individual as approved.

    On-site Data Center Security Devices. Google’s data centers employ an electronic card key and biometric access control system that is linked to a system alarm. The access control system monitors and records each individual’s electronic card key and when they access perimeter doors, shipping and receiving, and other critical areas. Unauthorized activity and failed access attempts are logged by the access control system and investigated, as appropriate. Authorized access throughout the business operations and data centers is restricted based on zones and the individual’s job responsibilities. The fire doors at the data centers are alarmed. CCTV cameras are in operation both inside and outside the data centers. The positioning of the cameras has been designed to cover strategic areas including, among others, the perimeter, doors to the data center building, and shipping/receiving. On-site security operations personnel manage the CCTV monitoring, recording and control equipment. Secure cables throughout the data centers connect the CCTV equipment. Cameras record on site via digital video recorders 24 hours a day, 7 days a week. The surveillance records are retained for up to 30 days based on activity.

    (b) Access Control.

    Infrastructure Security Personnel. Google has, and maintains, a security policy for its personnel, and requires security training as part of the training package for its personnel. Google’s infrastructure security personnel are responsible for the ongoing monitoring of Google’s security infrastructure, the review of the Services, and responding to security incidents.

    Access Control and Privilege Management. Customer’s administrators must authenticate themselves via a central authentication system or via a single sign on system in order to administer the Services.

    Internal Data Access Processes and Policies – Access Policy. Google’s internal data access processes and policies are designed to prevent unauthorized persons and/or systems from gaining access to systems used to process personal data. Google designs its systems to (i) only allow authorized persons to access data they are authorized to access; and (ii) ensure that personal data cannot be read, copied, altered or removed without authorization during processing, use and after recording. The systems are designed to detect any inappropriate access. Google employs a centralized access management system to control personnel access to production servers, and only provides access to a limited number of authorized personnel. LDAP, Kerberos and a proprietary system utilizing SSH certificates are designed to provide Google with secure and flexible access mechanisms. These mechanisms are designed to grant only approved access rights to site hosts, logs, data and configuration information. Google requires the use of unique user IDs, strong passwords, two factor authentication and carefully monitored access lists to minimize the potential for unauthorized account use. The granting or modification of access rights is based on: the authorized personnel’s job responsibilities; job duty requirements necessary to perform authorized tasks; and a need to know basis. The granting or modification of access rights must also be in accordance with Google’s internal data access policies and training. Approvals are managed by workflow tools that maintain audit records of all changes. Access to systems is logged to create an audit trail for accountability. Where passwords are employed for authentication (e.g., login to workstations), password policies that follow at least industry standard practices are implemented. These standards include restrictions on password reuse and sufficient password strength. For access to extremely sensitive information (e.g. credit card data), Google uses hardware tokens.

    3. Data

    (a) Data Storage, Isolation and Logging. Google stores data in a multi-tenant environment on Google-owned servers. The data and file system architecture are replicated between multiple geographically dispersed data centers. Google also logically isolates the Customer’s data. Customer will be given control over specific data sharing policies. Those policies, in accordance with the functionality of the Services, will enable Customer to determine the product sharing settings applicable to Customer End Users for specific purposes. Customer may choose to make use of certain logging capability that Google may make available via the Services.

    (b) Decommissioned Disks and Disk Erase Policy. Disks containing data may experience performance issues, errors or hardware failure that lead them to be decommissioned (“Decommissioned Disk”). Every Decommissioned Disk is subject to a series of data destruction processes (the “Disk Erase Policy”) before leaving Google’s premises either for reuse or destruction. Decommissioned Disks are erased in a multi-step process and verified complete by at least two independent validators. The erase results are logged by the Decommissioned Disk’s serial number for tracking. Finally, the erased Decommissioned Disk is released to inventory for reuse and redeployment. If, due to hardware failure, the Decommissioned Disk cannot be erased, it is securely stored until it can be destroyed. Each facility is audited regularly to monitor compliance with the Disk Erase Policy.

    4. Personnel Security

    Google personnel are required to conduct themselves in a manner consistent with the company’s guidelines regarding confidentiality, business ethics, appropriate usage, and professional standards. Google conducts reasonably appropriate backgrounds checks to the extent legally permissible and in accordance with applicable local labor law and statutory regulations.

    Personnel are required to execute a confidentiality agreement and must acknowledge receipt of, and compliance with, Google’s confidentiality and privacy policies. Personnel are provided with security training. Personnel handling Customer Data are required to complete additional requirements appropriate to their role (eg., certifications). Google’s personnel will not process Customer Data without authorization.

    5. Subprocessor Security

    Before onboarding Subprocessors, Google conducts an audit of the security and privacy practices of Subprocessors to ensure Subprocessors provide a level of security and privacy appropriate to their access to data and the scope of the services they are engaged to provide. Once Google has assessed the risks presented by the Subprocessor, then subject to the requirements set out in Section 11.3 (Requirements for Subprocessor Engagement) of these Terms, the Subprocessor is required to enter into appropriate security, confidentiality and privacy contract terms.

    Previous Versions

  • PRIVACY- EN COOKIEBELEID

    PRIVACYVERKLARING

     

    Identiteit
    Deze privacyverklaring wordt gebruikt door Guardian360 B.V., ingeschreven bij de Kamer van Koophandel onder nummer 24350810, op de website www.guardian360.nl en de Guardian360 apps in de Appstore en Playstore (hierna: website/apps).

     

    Ons adres:
    Schouwburgplein 30-34
    3012 CL Rotterdam

     

    Ons telefoonnummer:
    +31 (0)88 225 15 00
    Ons e-mailadres:
    info@guardian360.nl

     

    Algemeen
    Wij achten een zorgvuldige omgang met persoonsgegevens van groot belang. Persoonlijke gegevens worden door ons dan ook zorgvuldig verwerkt en beveiligd. Bij onze verwerking houden wij ons aan de eisen die de Algemene Verordening Gegevensbescherming stelt. Wij werken in overeenstemming met ISO 27001; een standaard voor informatiebeveiliging.
    In deze verklaring leggen wij uit welke persoonsgegevens wij verzamelen en gebruiken en met welk doel. Wij raden u aan deze verklaring zorgvuldig door te nemen.

     

    Beveiliging
    Wij spannen ons in om de website/apps te beveiligen tegen misbruik en ongeautoriseerde toegang tot persoonsgegevens. Wij doen dit bijvoorbeeld door middel van SSL beveiligde verbindingen. Het is uw verantwoordelijkheid de apparatuur waarmee u van onze website/apps bezoekt en gebruikt te beveiligen, bijvoorbeeld met een virusscanner.

     

    Persoonsgegevens
    Door het gebruik van onze website/apps laat u bepaalde gegevens bij ons achter. Dat kunnen persoonsgegevens zijn: gegevens die direct of indirect naar u te herleiden zijn. Wij bewaren en gebruiken uitsluitend de persoonsgegevens die rechtstreeks door u worden opgegeven of waarvan bij opgave duidelijk is dat ze aan ons worden verstrekt om te verwerken.

    Wij gebruiken de verkregen persoonsgegevens alleen voor de doeleinden waarvoor wij de gegevens van u ter beschikking gesteld hebben gekregen.

     

    Nieuwsbrief
    Als u zich abonneert op onze nieuwsbrief, en wij daarom gegevens vragen, zullen wij deze gegevens alleen gebruiken om u onze nieuwsbrief per e-mail te kunnen sturen. U kunt zich altijd van de nieuwsbrief afmelden door gebruik te maken van de afmeldlink in de nieuwsbrief. Zodra u zich afmeldt, verwijderen wij onmiddellijk uw persoonsgegevens die betrekking hebben of hadden op de nieuwsbrief. De grondslag op basis waarvan wij de persoonsgegevens verwerken, is het kunnen uitvoeren van uw verzoek om de nieuwsbrief te ontvangen.

    Verder verwerken wij uw gegevens voor statistische doeleinden. Zo kunnen wij algemene inzichten verkrijgen, bijvoorbeeld demografische inzichten.
    Wij verzamelen ook uw persoonsgegevens om een profiel op te bouwen. Dit doen wij aan de hand van bijvoorbeeld op welke links u klikt in de nieuwsbrief, op welk apparaat u de nieuwsbrief bij voorkeur leest of wanneer u de nieuwsbrief leest.

    De grondslag om een profiel op te bouwen in dat geval is om een gerechtvaardigd belang Guardian360 te kunnen behartigen: wij kunnen u dan namelijk betere op maat gesneden content tonen.

    Wij verwerken niet meer gegevens dan noodzakelijk is voor dit doel, en uw belangen, grondrechten en fundamentele vrijheden worden niet geschaad. Indien u zich afmeldt voor de nieuwsbrief, wordt ook uw profiel verwijderd.

     

    Contact- en/of aanmeldformulier
    Als u een vraag wilt stellen, contact met ons wilt opnemen, voor een bepaald programma wilt aanmelden, dan kunt u gebruik maken van het contact en/of aanmeldformulier op onze website/apps. De gegevens die u aan ons via een formulier verstrekt, gebruiken wij uitsluitend om antwoord te geven op uw vraag of commentaar, of uw aanmelding af te handelen. Wij zullen na beantwoording van uw vraag uw gegevens verwijderen indien verwerking verder niet meer noodzakelijk is.

    De grondslag op basis waarvan wij de persoonsgegevens verwerken is: het kunnen uitvoeren van uw verzoek tot informatie; het reageren op uw commentaar; het afhandelen en verwerken van uw aanmelding.

     

    Downloads
    Als op onze site de mogelijkheid bestaat om, na achterlating van uw contactgegevens, materiaal te downloaden, zoals bijvoorbeeld white papers, dan gebruiken wij uw contactgegevens om contact met u op te nemen over dat materiaal.

    De grondslag op basis waarvan de persoonsgegevens verwerken is: toestemming.

     

    Sollicitatie
    Indien u gegevens achter laat op onze website/apps in het kader van een sollicitatie, zullen wij deze gegevens alleen gebruiken in het kader van de sollicitatieprocedure voor de vacature waarop u gesolliciteerd heeft. Als de vacature waarop u gesolliciteerd heeft vervuld is, of wordt ingetrokken, vernietigen wij de door u achter gelaten gegevens, zoals curriculum vitae en motivatiebrief, tenzij wij uw toestemming hebben verkregen om de gegevens langer te bewaren voor eventuele toekomstige vacatures.

    De grondslag op basis waarvan wij de persoonsgegevens verwerken is: de (precontractuele) uitvoering van een (arbeids)overeenkomst.

    Let op: een pasfoto, geboorteplaats of –land en lidmaatschappen op vakbonden, seksuele geaardheid, gezondheidstoestand zijn bijzondere persoonsgegevens. U hoeft dat niet te noemen in uw curriculum vitae of motivatiebrief en is ook helemaal niet relevant bij de beoordeling van uw sollicitatie.

     

    Verstrekking derden
    Wij kunnen derden inschakelen om namens ons persoonsgegevens te verwerken. Deze derden worden in dat geval aan te merken als “verwerkers”. Deze verwerkers handelen steeds onder de verantwoordelijkheid van Guardian360 en mogen de persoonsgegevens niet voor eigen doeleinden aanwenden. Wij hebben met deze derden verwerkersovereenkomsten gesloten.

    Het gaat dan bijvoorbeeld om ons hostingprovider en leveranciers van online tools. Met deze online tools kunnen wij bijvoorbeeld de nieuwsbrief versturen, uw vragen of commentaar opvolgen of uw sollicitatie afhandelen.

    Persoonsgegevens kunnen buiten de E.U. of E.E.R. verwerkt worden. Het gaat dan meestal om de Verenigde Staten. Wij dragen er zorg voor dat de derden die uw persoonsgegevens verwerken Privacy Shield gecertificeerd zijn of werken met de modelcontracten van de E.U. voor doorgifte.

     

    Cookies
    Op onze website/apps worden cookies geplaatst. Hoe wij met cookies omgaan hebben we in een aparte cookieverklaring vastgelegd.

     

    Websites of diensten van derden
    Deze verklaring is niet van toepassing op websites of diensten van derden die door middel van links, of anderszins aan onze website verbonden of gekoppeld zijn. Wij kunnen niet garanderen dat deze derden conform de privacywetgeving met je persoonsgegevens omgaan. Wij raden u aan de privacyverklaringen of andere (algemene) voorwaarden van deze websites of diensten te lezen, alvorens de websites of diensten van deze derden te gebruiken.

     

    Vragen, recht van inzage, correctie en verwijdering
    Voor vragen over ons privacybeleid of vragen omtrent inzage en wijzigingen in (of verwijdering van) uw persoonsgegevens, kunt u te allen tijde contact met ons opnemen. Om misbruik te voorkomen kunnen wij u daarbij vragen om u adequaat te identificeren.

    Voor vragen over ons privacybeleid of vragen omtrent inzage en wijzigingen in (of verwijdering van) uw persoonsgegevens, kunt u te allen tijde contact met ons opnemen. Om misbruik te voorkomen kunnen wij u daarbij vragen om u adequaat te identificeren.

    U heeft ingevolge de AVG de volgende rechten:

    • Het recht om inzage van en rectificatie of wissing van de persoonsgegevens of beperking van de verwerking, alsmede het recht om tegen (verdere) verwerking bezwaar te maken.
    • Het recht om uwe gegevens mee te nemen en/of over te dragen.
    • Indien de verwerking van persoonsgegevens gebaseerd is op toestemming, heeft u te allen tijde het recht deze toestemming in te trekken.
    • U heeft het recht een klacht in te dienen bij de Autoriteit Persoonsgegevens over de verwerking van uw persoonsgegevens door ons.

     

    Wijzigingen
    Wij behouden ons het recht voor deze privacyverklaring op ieder moment te wijzigen. Raadpleeg daarom regelmatig deze tekst om zeker te weten dat u kennis heeft genomen van de laatste versie.

    COOKIEVERKLARING

     

    Identiteit
    Deze cookieverklaring wordt gebruikt door Guardian360 B.V., ingeschreven bij de Kamer van Koophandel onder nummer 24350810, op de website www.guardian360.nl en de Guardian360 apps in de Appstore en Playstore (hierna: website/apps).

     

    Ons adres:
    Schouwburgplein 30-34
    3012 CL Rotterdam

     

    Ons telefoonnummer:
    +31 (0)88 225 15 00
    Ons e-mailadres:
    info@guardian360.nl

     

    Algemeen
    Op deze website/apps maken wij gebruik van cookies. Een cookie is een klein bestandje dat met de pagina’s van deze website/apps wordt meegestuurd en door uw browser op uw apparaat waarmee u onze website/apps gebruikt wordt opgeslagen. De daarin opgeslagen informatie kan bij een volgend bezoek weer naar onze servers teruggestuurd worden. In deze cookieverklaring lichten wij toe wat dit voor u betekent.

     

    Toestemming
    Voor functionele cookies (zie verder) en voor cookies van Google Analytics (zie verder) vragen wij geen toestemming. Voor alle andere cookies vragen wij u toestemming om deze te plaatsen alvorens wij deze plaatsen.

     

    Functionele cookies
    Onze website/apps plaatst sessiecookies. Deze sessiecookies worden standaard gebruikt door de programmeertaal waarmee onze website/apps is geprogrammeerd. Deze sessiecookies zorgen vooral voor een makkelijk en ongestoord gebruik van de website/apps. De sessiecookies worden automatisch van uw apparaat verwijderd als u de browser sluit. Als de website/apps functionaliteit bevat om in te loggen kan de website/apps aan de hand van een (sessie)cookie detecteren of u ingelogd bent.

     

    Google Analytics
    Via onze website/apps wordt een cookie geplaats van het Amerikaans bedrijf Google, als deel van de “Google Analytics”-dienst. Wij gebruiken deze dienst om bij te houden en rapportages te krijgen over hoe bezoekers de website/apps gebruiken. Wij hebben Google een verwerkersovereenkomst gesloten en daarbij Google verboden de verkregen analytics informatie te gebruiken voor andere Google diensten. Ook hebben wij het doorsturen van IP-addressen naar Google via Google Analytics uitgeschakeld.

     

    Social media buttons
    Op onze website/apps zijn buttons opgenomen om webpagina’s te kunnen promoten en delen op sociale netwerken, met name Facebook, LinkedIn, Twitter, Google+ en AddThis. Deze buttons plaatsen cookies.
    Deze buttons werken door middel van stukjes code die van deze sociale netwerken zelf afkomstig zijn. Wij hebben daar geen invloed op. Leest u de privacyverklaring en andere (algemene) voorwaarden van deze netwerken (welke regelmatig kunnen wijzigen) om te lezen wat zij met de (persoons)gegevens doen die zij via deze cookies verkrijgen.

     

    Tracking cookies
    Met uw toestemming onze adverteerders “tracking cookies” op uw apparaat. Deze cookies gebruiken zij om bij te houden welke pagina’s u bezoekt uit hun netwerk, om zo een profiel op te bouwen van uw online surfgedrag. Dit profiel wordt mede opgebouwd op basis van vergelijkbare informatie die zij van uw bezoek aan andere websites uit hun netwerk krijgen. Dit profiel dient alleen op advertenties af te stemmen op uw profiel zodat deze zo veel mogelijk relevant voor u zijn.

     

    Retargeting cookies
    Met uw toestemming gebruiken wij zogenaamde retargeting cookies van Google Adsense en Facebook waarmee wij op de sites van derden advertenties kunnen tonen die gerelateerd zijn aan uw eerdere bezoeken aan onze website/apps.
    Vragen, recht van inzage, correctie en verwijdering
    Voor vragen over ons cookiebeleid of vragen omtrent inzage en wijzigingen in (of verwijdering van) uw persoonsgegevens, kunt u te allen tijde contact met ons opnemen. Om misbruik te voorkomen kunnen wij u daarbij vragen om u adequaat te identificeren.

    Meestal kunt u cookies wissen via de instellingen van uw browser. Meer informatie omtrent het in- en uitschakelen en het verwijderen van cookies is te vinden in de instructies en/of met behulp van de helpfunctie van uw browser.

    Wanneer het gaat om inzage in persoonsgegevens gekoppeld aan een cookie, dient u een kopie van het cookie in kwestie mee te sturen. U kunt deze terugvinden in de instellingen van uw browser.

     

    Wijzigingen
    Wij behouden ons het recht voor deze cookieverklaring op ieder moment te wijzigen. Raadpleeg daarom regelmatig deze tekst om zeker te weten dat u kennis heeft genomen van de laatste versie.

  • Privacy Policy

    Last updated: March 6, 2018

    Introduction

    Highsoft is committed to protecting your privacy. Any and all information collected is safeguarded according to the applicable legislation concerning personal data.

    This privacy policy provides information on how we handle your privacy rights and content ownership as well as all other information that is collected when using Highcharts Cloud.

    Information we collect

    Highsoft is strongly committed to protecting your information and ensuring that your rights are honored. Highsoft is the custodian of the personal data you provide when using Highcharts Cloud.

    When you register for Highcharts Cloud we may collect information which is offered by your openId provider (e.g. Google, Yahoo) such as your name and email address. Highsoft uses this information to be able to provide our service, for identification and authorization of users, and to be able to contact you.

    Highsoft may also use collected information to inform you of other products or services available from Highsoft. Highsoft may also contact you via surveys to conduct research about your opinion of current services or of potential new services.

    The information we collect is not shared with other organizations except as detailed below for the provisioning and improvement of our service, or as required by law. The data we collect will never be sold to third parties for commercial purposes.

    Cookies and Beacons

    Highcharts Cloud uses cookies, which is a small amount of data stored by your web browser on your computer. The cookie stores your current session and allows you to stay logged on to the service. Cookies are required to use Highcharts Cloud.

    Pages on our site and any e-mails we send to our users may contain web beacons. Web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) are small electronic files that are embedded onto a web page or an email to document traffic and for website analytics without collecting any personal information, that, for example, allow us to count users who have visited webpages or opened our e-mails.

    We also use Google Analytics to track usage of the Highcharts Cloud. The primary reason for this is to understand our customers and improve our service and offerings. Google Analytics collects information such as how often users visit this site, what pages they visit when they do so, and what other sites they used prior to coming to this site. Google Analytics collects only the IP address assigned to you on the date you visit this site, rather than your name or other identifying information. We do not combine the information collected through the use of Google Analytics with personally identifiable information. We are not sharing or selling any information collected via Google Analytics. We reserve the right to use portions or aggregated numbers for marketing, presentations, though never by disclosing personal data about you without your consent. Google provides some additional privacy options described at www.google.com/policies/privacy/partners/regarding Google Analytics cookies.

    Charts created with Highcharts Cloud log views through an Ajax call to our own servers. The information we gather through this view counter is limited to referer, user agent, and IP, and is used for statistics (i.e. chart view counters, and an overview of referrers).

    Security

    Access to your account may be authenticated by signups/logins with email/password or by signing in using your google account. Your user credentials are always safely encrypted. It is Highsoft’s intention to keep your personal information safe.

    Third-Party Service Integration

    To run Highcharts Cloud we use a number of third-party services, Highsoft is not responsible for the actions of these third parties, including their privacy practices and any content posted on their web sites.

    In order to use Highcharts Cloud you need to register through an openID provider or oldskool email/password pairs. Hereby you allow basic user credentials send to Highcharts Cloud such as email address and username.

    We use a third party vendor, Recurly, to store and process credit card transactions. Recurly adheres to the PCI Data Security Standard (PCI DSS) for Service Providers. Your email address, credit card details and billing address are passed on to Recurly and are not stored with Highsoft. Read more about Recurly here: https://recurly.com/security

    Your Rights

    You are entitled to review the personal data you have provided us and ensure that it is accurate and correct at all times. You are also entitled to demand that the personal data shall be deleted.

    Exclusions

    The privacy policy covers your personal data, but not the content you create and publish through the platform, such as charts that you embed on a public website. By posting such information, you agree that it may be viewed and used by other users or otherwise. We are not responsible for events arising from the distribution of information you choose to publicly post or share through our platform.

    Our Policy Toward Children

    Our services are not intended for users under the age of 13, and we do not knowingly collect or maintain information from of such individuals. We encourage parents and guardians to monitor their children’s online activities.

    Legal Requirements

    We might need to disclose personal data of users based on requirements by law. This might result in legal obligations or urgent needs to suspend or block an account. In such an event we will aim to notify the user that is affected by such actions.

    Changes to our Privacy Policy

    Highsoft will occasionally update this Privacy Policy to reflect company needs and customer feedback. Highsoft encourages you to periodically review this page to be informed of how Highsoft is protecting your information.

    Contact us

    Contact us any time via sales@highsoft.com or support@highcharts.com Highsoft AS

    Sentrumsgata 44 6893 Vik i Sogn Norway

  • HubSpot Privacy Policy

    Last Modified: May 21, 2018

    We at HubSpot (HubSpot, Inc. and our affiliates) are committed to protecting your privacy. This Privacy Policy applies to both our Websites (www.hubspot.com, www.hubspot.de, www.hubspot.fr, www.hubspot.es, www.hubspot.jp, br.hubspot.com, and www.inbound.com) and our Subscription Service (the Subscription Service), including our associated mobile applications (Mobile Apps) owned and controlled by HubSpot. This Privacy Policy governs our data collection, processing and usage practices. It also describes your choices regarding use, access and correction of your personal information. If you do not agree with the data practices described in this Privacy Policy, you should not use the Websites or the Subscription Service.

    We periodically update this Privacy Policy. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice by sending you an email notification, or if you subscribe to the Subscription Service, through the Notification app in your HubSpot portal.

    While we will notify you of any material changes to this Privacy Policy, we encourage you to review this Privacy Policy periodically. We will also keep prior versions of this Privacy Policy in an archive for your review.

    If you have any questions about this Privacy Policy or our treatment of the information you provide us, please write to us by email at privacy@hubspot.com or by mail to HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 USA, Attn: Privacy.

     

    1.  Use of the Subscription Service by HubSpot and our Customers
    2.  Information We Collect
    3.  How We Use Information We Collect
    4.  How we Share Information we Collect
    5.  International Transfer of Information
    6.  Cookies and Similar Technologies
    7.  How to Access & Control Your Personal Data

     

    1. Use of the Subscription Service by HubSpot and our Customers

    The HubSpot Subscription Service

    Our online Subscription Service allows any company that uses it (our customers and HubSpot itself) to create and share marketing, sales and customer service content. The Subscription Service can also be used to help organize sales data about a company’s sales pipeline (e.g., leads, customers, deals, etc.). The information added to the Subscription Service, either by site visitors providing their contact information or when a Subscription Service user adds the information, is stored and managed on our service providers’ servers. This information is then used to contact visitors about their interest in the company’s goods or services and interact with the company. HubSpot provides the Subscription Service to our customers for their own marketing, lead generation, and customer service needs, and we use it to meet HubSpot’s related needs.

    Use by HubSpot

    We use our own Subscription Service to build webpages that people can visit to learn more about HubSpot. Information that we collect and manage using the Subscription Service for our own marketing belongs to us and is used, disclosed and protected according to this Privacy Policy.

    Use by Our Customers

    Our customers use the Subscription Service to build webpages that people can visit to learn more about their business. HubSpot does not control the content of these webpages or the types of information that our customers may choose to collect or manage using the Subscription Service. That information belongs to them and is used, disclosed and protected by them according to their privacy policies and is not subject to this Privacy Policy. HubSpot processes our customers’ information as they direct and in accordance with our agreements with our customers, and we store it on our service providers’ servers, but we do not have control over its collection or management. Our agreements with our customers prohibit us from using that information, except as necessary to provide and improve the Subscription Service, as permitted by this Privacy Policy, and as required by law. We have no direct relationship with individuals who provide Personal Information to our customers. HubSpot acknowledges that you have the right to access your Personal Information. Our customers control and are responsible for correcting, deleting or updating information they have collected from you using the Subscription Service. If requested to remove data we will respond within a reasonable timeframe. We may work with our customers to help them provide notice to their visitors about their data collection, processing and usage. Our agreements with our customers prohibit them from using the Subscription Service to collect, manage, or process Sensitive Information. We are not responsible for our customers’ use of information they collect on the Subscription Service.

    HubSpot collects information under the direction of its customers, and has no direct relationship with the individuals whose Personal Information it processes. If you are a customer of one of our customers and would no longer like to be contacted by one of our customer that use our Subscription Service, please contact the customer that you interact with directly. We may transfer Personal Information to companies that help us provide our service. Transfers to subsequent third parties are covered by the service agreements with our customers.

    “Sensitive Information”

    This refers to credit or debit card numbers, personal financial account information, Social Security numbers, passport numbers, driver’s license numbers or similar personal identifiers, racial or ethnic origin, physical or mental health condition or information, or other employment, financial or health information.

    2. Information We Collect

    When You Visit our Websites

    You are free to explore the Websites without providing any Personal Information about yourself. When you visit the Websites or register for the Subscription Service, we request that you provide Personal Information about yourself, and we collect Navigational Information.

    When You Use our Mobile Application

    We use mobile analytics software to allow us to better understand the functionality of our Mobile Apps on your mobile device. This software may record information such as how often you use the application, the events that occur within the application, aggregated usage, performance data, and where the application was downloaded from. In addition to information we collect on our Websites, when you use our Mobile Apps we may also collect your city location, device model and version, device identifier (or “UDID”), OS version, and your HubSpot Subscription Service credentials.

    We send push notifications from time to time in order to update you about events or promotions. If you no longer wish to receive such communications, you may turn them off at the device level.

    We may link information we store within the analytics software to Personal Information you submit within the Mobile App. We do this to improve services we offer you and improve our marketing, analytics and site functionality.

    “Personal Information”

    This refers to any information that you voluntarily submit to us and that identifies you personally, including contact information, such as your name, e-mail address, company name, address, phone number, and other information about yourself or your business. Personal Information can also include information about any transactions, both free and paid, that you enter into on the Websites, and information about you that is available on the internet, such as from Facebook, LinkedIn, Twitter and Google, or publicly available information that we acquire from service providers.

    Personal Information also includes Navigational Information or Payment Information where such information can directly or indirectly identify an individual. Navigational information refers to information about your computer and your visits to this website such as your IP address, geographical location, browser type, referral source, length of visit and pages viewed. Please see the “Navigation Information” section below. Payment information includes We collect and process payment information from you when you subscribe to the Subscription Service, including credit cards numbers and billing information, using third party PCI-compliant service providers. Except for this, we do not collect Sensitive Information from you.

    Log Files

    When you use our services our view content provided by us, we automatically collect information about your computer hardware and software. This information can include your IP address, browser type, domain names, internet service provider (ISP), the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system, clickstream data, access times and referring website addresses. This information is used by HubSpot for the operation of the Subscription Service, to maintain quality of the Subscription Service, and to provide general statistics regarding use of the HubSpot Website. For these purposes, we do link this automatically-collected data to Personal Information such as name, email address, address, and phone number.

    Information we collect from third parties

    From time to time, we may receive Personal Information about you from third party sources including partners with which we offer co-branded services or engage in joint marketing activities, and publicly available sources such as social media websites.

    Information About Children

    The Websites are not intended for or targeted at children under 16, and we do not knowingly or intentionally collect information about children under 16 If you believe that we have collected information about a child under 16, please contact us at privacy@hubspot.com, so that we may delete the information.

    3. How We Use Information We Collect

    Compliance with Our Privacy Policy

    We use the information we collect only in compliance with this Privacy Policy. Customers who subscribe to our Subscription Services are obligated through our agreements with them to comply with this Privacy Policy.

    We Never Sell Personal Information

    We will never sell your Personal Information to any third party.

    Use of Personal Information

    In addition to the uses identified elsewhere in this Privacy Policy, we may use your Personal Information to:

    • improve your browsing experience by personalizing the Websites and to improve the Subscription Service;
    • send information or HubSpot content to you which we think may be of interest to you by post, email, or other means and send you marketing communications relating to our business;
    • promote use of our services to you and share promotional and information content with you in accordance with your communication preferences;
    • provide other companies with statistical information about our users — but this information will not be used to identify any individual user;
    • send information to you regarding changes to our Customer Terms of Service, Privacy Policy (including the Cookie Policy), or other legal agreements
    • meet legal requirements.

    We may, from time to time, contact you on behalf of external business partners about a particular offering that may be of interest to you. In those cases, we do not transfer your Personal Information to the third party.

    We use the information collected through our Subscription Service by our customers for the following purposes:

    • to provide the Subscription Service (which may include the detection, prevention and resolution of security and technical issues);
    • to respond to customer support requests; and
    • otherwise to fulfill the obligations under the HubSpot Customer Terms of Service.

    Legal basis for processing Personal Information (EEA visitors only)

    If you are a visitor/customer located in the European Economic Area (“EEA”), HubSpot Ireland Limited is the data controller of your personal information. HubSpot’s Data Protection Officer can be contacted at privacy@hubspot.com.

    Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it. However, we will normally collect personal information from you only where we have your consent to do so, where we need the personal information to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. In some cases, we may also have a legal obligation to collect personal information from you.

    If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information). Similarly, if we collect and use your personal information in reliance on our legitimate interests (or those of any third party), we will make clear to you at the relevant time what those legitimate interests are.

    Use of Navigational Information

    We use Navigational Information to operate and improve the Websites and the Subscription Service. We may also use Navigational Information alone or in combination with Personal Information to provide you with personalized information about HubSpot.

    Customer Testimonials and Comments

    We post customer testimonials and comments on our Websites, which may contain Personal Information. We obtain each customer’s consent via email prior to posting the customer’s name and testimonial.

    Use of Credit Card Information

    If you give us credit card information, we use it solely to check your financial qualifications and collect payment from you. We use a third-party service provider to manage credit card processing. This service provider is not permitted to store, retain, or use information you provide except for the sole purpose of credit card processing on our behalf.

    Security of your Personal Information

    We use a variety of security technologies and procedures to help protect your Personal Information from unauthorized access, use or disclosure. We secure the Personal Information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure. All Personal Information is protected using appropriate physical, technical and organizational measures.

    Social Media Features

    Our Websites include Social Media Features, such as the Facebook Like button and Widgets, such as the Share This button or interactive mini-programs that run on our sites. These features may collect your IP address, which page you are visiting on our sites, and may set a cookie to enable the feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our Websites. This Privacy Policy does not apply to these features.  Your interactions with these features are governed by the privacy policy and other policies of the companies providing them.

    External Websites

    Our Websites provide links to other websites. We do not control, and are not responsible for, the content or practices of these other websites. Our provision of such links does not constitute our endorsement of these other websites, their content, their owners, or their practices. This Privacy Policy does not apply to these other websites, which are subject to any privacy and other policies they may have.

    Public Forums

    We offer publicly accessible message boards, blogs, and community forums. Please keep in mind that if you directly disclose any information through our public message boards, blogs, or forums, this information may be collected and used by others. We will correct or delete any information you have posted on the Websites if you so request, as described in “Opting Out and Unsubscribing” below.

    Retention of Personal Information

    How long we keep information we collect about you depends on the type of information. as described in further detail below.  After such time, we will either delete or anonymize your information or, if this is not possible, then we will securely store your information and isolate it from any further use until deletion is possible.

    We retain Personal Information that you provide to us where we have an ongoing legitimate business need to do so (for example, as long as is required in order to contact you about the Subscription Service or our other services, or as needed to comply with our legal obligations, resolve disputes and enforce our agreements).

    When we have no ongoing legitimate business need to process your Personal Information, we securely delete the information or anonymise it or, if this is not possible, then we will securely store your Personal Information and isolate it from any further processing until deletion is possible. We will delete this information from the servers at an earlier date if you so request, as described in “To Unsubscribe from Our Communcations” below.

    If you provide information to our customers as part of their use of the Subscription Service, our customers decide how long to retain the personal information they collect from you. If a customer terminates its use of the Subscription Service, then we will provide customer with access to all information stored for the customer by the Subscription Service, including any Personal Information provided by you, for export by the customer according to our agreement with our customer. After termination, we may, unless legally prohibited, delete all customer information, including your Personal Information, from the Subscription Service.

    If you have elected to receive marketing communications from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our content, products, or services, such as when you last opened an email from us or ceased using your HubSpot account.  We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.

    4. How we Share Information we Collect

    Service Providers

    We employ other companies and people to provide services to visitors to our Websites, our customers, and users of the Subscription Service and may need to share your information with them to provide information, products or services to you. Examples may include removing repetitive information from prospect lists, analyzing data or performing statistcal analysis, providing marketing assistance, processing credit card payments, supplementing the information you provide us in order to provide you with better service, and providing customer service or support. In all cases where we share your information with such agents, we explicitly require the agent to acknowledge and adhere to our privacy and customer data handling policies.

    Hubspot Partners

    In addition, we may share data with trusted partners to contact you based on your request to receive such communications, help us perform statistical analysis, or provide customer support. Such third parties are prohibited from using your Personal Information except for these purposes, and they are required to maintain the confidentiality of your information.

    We partner with trusted third parties to provide you with co-marketing content that we think may be relevant to you. When you engage with these co-marketing partners, we will tell you who we are sharing data with, and provide a link to the co-marketing partner’s privacy policy so you can learn more about how to opt-out of the partner’s communications. These co-marketing partners are required to adhere to our privacy and data protection policies. For more information on our co-marketing program, see this page.

    Corporate Events

    If we (or our assets) are acquired by another company, whether by merger, acquisition, bankruptcy or otherwise, that company would receive all information gathered by HubSpot on the Websites and the Subscription Service. In this event, you will be notified via email and/or a prominent notice on our website, of any change in ownership, uses of your Personal Information, and choices you may have regarding your Personal Information.

    Compelled Disclosure

    We reserve the right to use or disclose your Personal Information if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or comply with a law, court order, or legal process.

    5. International Transfer of Information

    International Transfers within HubSpot’s Entities

    To facilitate our global operations, we transfer information to either Ireland or the United States and allow access to that information from countries in which the HubSpot affiliated entities have operations for the purposes described in this policy.

    This Privacy Policy shall apply even if we transfer Personal Information to other countries. We have taken appropriate safeguards to require that your Personal Information will remain protected. When we share information about you within and among HubSpot’s affiliated entities, we make use of standard contractual data protection clauses, which have been approved by the European Commission, and we rely on the EU-U.S. and Swiss-U.S. Privacy Shield Framework to safeguard the transfer of information we collect from the European Economic Area and Switzerland. Please see our Privacy Shield notice below for more information.

    International transfers to third parties

    Some of the third parties described in this privacy policy, which provide services to us under contract, are based in other countries that may not have equivalent privacy and data protection laws to the country in which you reside. When we share information of customers in the European Economic Area or Switzerland, we make use of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks, European Commission-approved standard contractual data protection clauses, binding corporate rules for transfers to data processors, or other appropriate legal mechanisms to safeguard the transfer. Please see our Privacy Shield Notice below.

    Privacy Shield Notice

    HubSpot participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss–U.S. Privacy Shield Framework. The following affiliated entities adhere to the Privacy Shield principles: HubSpot Ireland Limited, HubSpot Germany GmbH, HubSpot Australia Pty Ltd, HubSpot Asia Pte. Ltd., and HubSpot Japan KK. HubSpot is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List at https://www.privacyshield.gov.

    HubSpot is responsible for the processing of personal data it receives under the Privacy Shield Framework and subsequently transfers to a third party acting as an agent on its behalf. HubSpot complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.

    With respect to personal data received or transferred pursuant to the Privacy Shield Framework, HubSpot is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, HubSpot may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

    You may direct any inquiries or complaints related to our Privacy Shield compliance to privacy@hubspot.com. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, you may contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.

    Under certain conditions, more fully described on the Privacy Shield website, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.

    6. Cookies and Similar Technologies

    Cookies

    HubSpot and its partners use cookies or similar technologies (such as web beacons) to analyze trends, administer the website, track users’ movements around the website, and to gather demographic information about our user base as a whole. To find out more about how we use cookies on our Websites and how to manage your cookie preferences please see our Cookie Policy.

    Navigational Information Collected by Our Customers

    Our customers can use the tools we provide, as well as tools provided by third parties, to collect Navigational Information when you visit their webpages on the Subscription Service. HubSpot does not control our customers’ use of these tools, nor do we control the information they collect or how they use it.

    Single Sign-On

    You can log in to our site using a Single Sign-on (SSO) service like your Google account. This service will authenticate your identity and provide you the option to share certain personal information with us such as your name and email address to pre-populate our sign up form.  Such services may give you the option to post information about your activities on this Web site to your profile page to share with others within your network.

    Flash Cookies and Other Third Party Tracking Technologies

    The Adobe Flash Player (and similar applications) use technology to remember settings, preferences and usage similar to browser cookies but these are managed through a different interface than the one provided by your Web browser. This technology creates locally stored objects that are often referred to as “Flash cookies.” HubSpot does not use Flash cookies. However, our customers of our software platform may create pages on the HubSpot platform that employ Adobe Flash cookies. For more information on “Flash cookies” and how you can manage them please visit our Cookie Policy.

    Advertising

    We partner with a third party ad network to either display advertising on our Web site or to manage our advertising on other sites. Our ad network partner uses cookies and Web beacons to collect information about your activities on this and other Web sites to provide you targeted advertising based upon your interests.  If you wish to not have this information used for the purpose of serving you targeted ads, you may opt-out by clicking here: http://preferences.truste.com/ (or if located in the European Union, by clicking here: http://www.youronlinechoices.eu/). Please note this does not opt you out of being served advertising.  You will continue to receive generic ads.

    Third Party Tracking Technologies

    The use of cookies and web beacons by any tracking utility company is not covered by our Privacy Policy or Cookie Policy.

    7. How to Access & Control Your Personal Data

    Reviewing, Correcting and Removing Your Personal Information

    You have the following data protection rights:

    • You can request access, correction, updates or deletion of your personal information.
    • You can object to processing of your personal information, ask us to restrict processing of your personal information or request portability of your personal information.
    • If we have collected and process your personal information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your personal information conducted in reliance on lawful processing grounds other than consent.
    • You have the right to complain to a data protection authority about our collection and use of your personal information. Contact details for data protection authorities in the EEA, Switzerland and certain non-European countries (including the US and Canada) are available here.)

    To exercise any of these rights, please contact us at privacy@hubspot.com or by mail to HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 USA, Attention: Privacy. We will respond to your request to change, correct, or delete your information within a reasonable timeframe and notify you of the action we have taken.

    Anti-Spam Policy

    Our Acceptable Use Policy, at http://legal.hubspot.com/acceptable-use, applies to us and to our customers and, among other things, prohibits use of the Subscription Service to send unsolicited commercial email in violation of applicable laws, and requires the inclusion in every email sent using the Subscription Service of an “opt-out” mechanism and other required information. We require all of our customers to agree to adhere to the Acceptable Use Policy at all times, and any violations of the Acceptable Use Policy by a customer can result in immediate suspension or termination of the Subscription Service.

    To Unsubscribe From Our Communications

    You may unsubscribe from our marketing communications by clicking on the “unsubscribe” link located on the bottom of our e-mails, updating your communication preferences, or by sending us email us at privacy@hubspot.com or postal mail to HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 USA, Attention: Privacy. Customers cannot opt out of receiving transactional emails related to their account with us or the Subscription Service.

    To Unsubscribe from Our Customers’ Communications

    Our customers are solely responsible for their own marketing emails and other communications; we cannot unsubscribe you from their communications. You can unsubscribe from our customers’ marketing communications by clicking on the “unsubscribe” link located on the bottom of their emails, or by contacting them directly.

    Contact

    HubSpot, Inc.
    25 First Street, 2nd Floor
    Cambridge, MA 02141 USA

  • Privacy Notice

    The Privacy Notice was last updated on 24th May, 2018.

    Changes to our Privacy Notice

    We may change this Privacy Notice from time to time. We will post any Privacy Notice changes on this page and, if the changes are significant, we will provide a more prominent notice by adding an announcement on the Iconfinder website or by sending you an email notification. We encourage you to review our Privacy Notice whenever you use the Services to stay informed about how we treat Personal Information and the ways you can help protect your privacy.

    If you disagree with any changes to this Privacy Notice, you will need to stop using the Services and deactivate your account(s), as outlined below.

    Third-party links

    This Site may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our Site, we encourage you to read the privacy notice of every website you visit.

    Questions or concerns

    If you have any questions or concerns regarding this Privacy Notice, please send us a detailed message to contact@iconfinder.com, and we will try to resolve your concerns.

    1. Who is the Personal Information collector

    Iconfinder ApS (a company incorporated in Denmark under company number DK-33779437, and referred to as “we”, “us” or “our” in this privacy notice) is the data controller (Controller) and responsible for your Personal Information. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact us using the details set out below. We collect and process Personal Information in accordance with applicable data protection law.

    Full name of legal entity Iconfinder ApS
    Title of data privacy manager Data Protection Representative
    Email address contact@iconfinder.com
    Postal address Bredgade 10A, 1260, Copenhagen K, Denmark

    2. What Personal Information we collect about you and how we collect it

    We gather various types of Personal Information from our users, as explained more fully below. We may use this Personal Information to personalize and improve our Services, to allow our users to set up a user account and profile, to contact users, to fulfill your requests for certain products and Services, to analyze how users utilize the Services, and as otherwise outlined in this Privacy Notice. We may share certain types of Personal Information with third parties, as described in section 4.

    It is important that the Personal Information we hold about you is accurate and current. Please keep us informed if your Personal Information changes during your relationship with us.

    2.a. Information You Provide to Us

    Account information: We collect information about you when you register for an account, create or modify your profile, set preferences, sign-up for a subscription or make purchases through the Services. For example, we collect Personal Information such as your name, email address, browser information, and, in some cases, billing information, company name, and third-party account credentials (for example, your log-in credentials for Facebook or other third party sites). If you provide your third-party account credentials to us, you accept that some content and/or information in those accounts (“Third Party Account Information”) may be transmitted into your account with us if you authorize such transmissions, and that Third Party Account Information transmitted to our Services is covered by this Privacy Notice. You can choose not to provide us with certain information, but then you may not be able to register with us or to take advantage of some of our features. We may anonymize your Personal Information so that you cannot be individually identified, and provide that anonymous information to our partners.

    Content you provide through our features: **We collect and store content that you post, send, receive and share while using our Services’ features. This content includes any information about you that you may choose to provide. Examples of content we collect and store include: The comments you write, the product Collections you create, the messages, files and links you send to other users via our messaging feature.

    Content you provide through our websites*:* We collect other content that you submit to websites owned or operated by us, which include social media or social networking websites operated by us. For example, you provide content to us when you provide feedback or when you participate in any interactive features, surveys, contests, promotions or events.

    Information you provide through our support channels: The Services also include our customer support, where you may choose to submit information regarding a problem you are experiencing with the Services. Whether you contact our support via email, social media or support chat, speak to one of our representatives directly or otherwise engage with our support team, you may be asked to provide contact information, a description of the problem you are experiencing, and any other documentation, screenshots or information that would be helpful in resolving the issue.

    Payment information*:**We collect payment and billing information when you register for certain paid Services. For example, we ask you to provide payment information, such as billing address and payment card details, which we collect via secure payment processing services.

    Information needed to verify user identity for paying out the earnings: This type of information collection is limited to the users who earn money through the Services, either by selling their artwork or by participating in Iconfinder’s referral program (Earner). Before making the first payout to the Earner, we ask to provide the personal identification document to verify the identity of the Earner. We may store this Personal Information for a reasonable amount of time needed to process the verification. We delete the personal identification document within a reasonable amount of time after the verification is completed. When verifying Earners, we may ask for additional information, such as links to social media accounts or examples of work in progress to verify that contributing artists are selling their original artwork.

    When information is collected Type of information
    When you register Email, Username, Password
    When making transactions Name, Address, Billing details, Company details
    When communicating using the Services Messages, Comments, File Attachments
    When adjusting preference for your account Payment methods, Notification settings, Filter settings
    When we pay out the earnings for contributors and users of Iconfinder’s referral program Personal Identification document, Links to social media accounts, Work in progress

    We do not collect any Special Categories of Personal Information about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offenses.

    2.b. Information collected automatically when you use our Services

    Your use of the Services: We keep track of certain information about you when you visit and interact with our Services. This information includes the visiting frequency, features you use; the search terms you enter, the links you click on, the products you purchase and/or download; the attachments you upload to the Services, and how you interact with the free and paid content available on the Services, or interact with other users of the Services.

    Cookies and Other Tracking Technologies: Whenever you visit and interact with our Services, you accept that we automatically receive and record information on our server logs from your browser including your IP address, “cookie” information, and the page you requested. “Cookies” are identifiers we transfer to your computer or mobile device that allow us to recognize your browser or mobile device and tell us how and when pages and features in our Services are visited and by how many people. You may be able to change the preferences on your browser or mobile device to prevent or limit your computer or device’s acceptance of cookies, but this may prevent you from taking advantage of some of our features. Our advertising partners may also transmit cookies to your computer or device when you click on ads that appear on the Services. Also, if you click on a link to a third party website, such third party may also transmit cookies to you. This Privacy Notice does not cover the use of cookies by any third parties. When we collect usage information (such as the numbers and frequency of visitors to the Website), we only use this data in an aggregate form, and not in a manner that would identify you personally directly or indirectly. For example, this aggregate data tells us how often users use parts of the Services so that we can make the Services appealing to as many users as possible. We may also provide this aggregate information to our partners; our partners may use such information to understand how often and in what ways people use our Services so that they, too, can provide you with an optimal experience. We never disclose aggregate information to a partner in a manner that would identify you personally directly or indirectly.

    Device and connection information: We collect information about your computer, phone, tablet, or other devices you use to access the Services. This device information includes your connection type and settings when you install, access, update, or use our Services. We also collect information through your device about your operating system, browser type, IP address, URLs of referring/exit pages, device identifiers, and crash data. We use your IP address and/or country preference to approximate your location to provide you with a better Service experience. How much of this information we collect depends on the type and settings of the device you use to access the Services.

    2.c. Information we receive from other sources

    The table below gives you an overview of the sources we receive information from. For more details about how we use this information, please see section 3.

    Tool and company Type of information
    Google Analytics by Google LLC., The United States of America Visitor data, Page interaction, Commercial transactions, Traffic sources.
    Stripe by Stripe Inc., The United States of America Credit card token/key, Last four digits of the credit card number, Ratings for detecting fraudulent users.
    Mandrill by The Rocket Science Group, LLC d/b/a MailChimp, a Georgia limited liability., The United States of America Information about email bounces, Information about spam filters, Click and open rates for emails.
    Mouseflow by Mouseflow ApS., Denmark Mouse pointer movements, Form interactions, Scroll behavior on pages.
    Sentry by Functional Software, Inc., The United States of America Technical data for debugging errors that occur on the Services including: Browser, IP address, Operating system, Visited URL, Errors messages including values of variables. This will include any variable handled by the backend or frontend except sensitive data such as passwords and credit card numbers.
    Facebook by Facebook Inc., The United States of America When you choose to create an account with the Services using Facebook connect we will receive the email address and name from Facebook.
    Intercom by Intercom, The United States of America When you interact with customer service tools or send emails to our customer service, Intercom will share your email address and location with us.

    3. How we use the Personal Information

    Below we list the specific purposes for which we use the information about you.

    3.a. How we use the Personal Information you provide to us and the Personal Information collected automatically when you use the Services

    To provide the Services*:* We use information about you to provide the Services to you, including to process transactions with you, authenticate you when you log in, provide customer support, and operate and maintain the Services. Your activity on the Services might be used to personalize and improve your experience with the Services. For example, the information about designers you follow may be used to send you tailored emails showcasing more content from those designers. You can always choose to opt out of these emails within the emails itself or in your notification settings.

    For Research and Development*:* We are continually looking for ways to make our Services faster, more intuitive and more useful to you. We use collective learnings about how people use our Services to identify trends, usage, activity patterns and areas for improvement of the Services. For example, to improve the diversity and relevance of the content on our Services, we aggregate and analyze frequently used search terms that do not return any results.

    To communicate with you about the Services: We use your contact information to send transactional communications via email and within the Services. Such communications include, but are not limited to, purchase confirmations and receipts, subscription reminders, messages from other users on the Services, questions and requests, customer support communications, and any technical notices, updates, security alerts, and administrative messages. We also send you communications as you onboard to the Services to help you become more proficient in using the Services. These communications are part of the Services and in most cases you cannot opt out of them. If an opt-out is available, you will find that option within the communication itself or in your notification settings.

    To promote and drive the engagement with the Services: We use your contact information and information about your activity on the Services to send promotional communications, including by email, directly displayed in the Services, or by displaying Iconfinder ads on other companies’ websites and applications, as well as on platforms like Facebook and Google. The purpose of these communications is to drive engagement to the Services and increase the value you get from using the Services. These communications include but are not limited to, information about new features, offers, discounts, survey requests, newsletters, contests, and events we think may be of interest to you. You can choose to opt out of this type of communications at any time either within the communication itself or in your notification settings.

    Customer service: We use your information to resolve technical issues you experience, to respond to your requests for assistance and to repair and improve the Services.

    For security*:* We use information about you and your Services’ use to screen and verify accounts and activity, to monitor suspicious or fraudulent activity and to identify violations of the Services’ terms.

    To protect our legal rights: Where required by law or where we believe it is necessary to protect our legal rights, interests and the interests of others, we use information about you in connection with legal claims, compliance, regulatory, and audit functions, and disclosures in connection with the acquisition, merger or sale of a business.

    To automate decision-making: We use automated systems that analyze your information to customize search results, personalize ads or tailor features to how you use our Services. We analyze your information to detect abuse such as fraud, spam, malware, and illegal content. We may also combine information collected among our and third-party Services and across your devices for the purposes described above.

    With your consent*:* We use information about you where you have given us consent to do so for a specific purpose not listed above. For example, with your permission, we may write down and publish user case stories to promote the Services.

    3.b. How we use the information collected by third-parties

    Tool How we use the information
    Google Analytics To provide the Services: Improving user experience, Tracking business performance in order to maintain the Services. For Research and Development: Identifying trends, usage, and activity patterns.
    Stripe To provide the Services: Verification of billing details, Processing transactions. For security: Monitoring suspicious and fraudulent activity. For legal purposes: Protecting our and others’ legal rights, Legal claims, compliance, regulatory, and audit functions.
    Mandrill To provide the Services: Verification of the email address
    Mouseflow To provide the Services: Improving user experience. For Research and Development: Identifying trends, usage, and activity patterns.
    Sentry For Research and Development: Identifying trends, usage and activity patterns. For customer service: Resolving technical issues experienced by the users, Repairing and improving the Services.
    Pingdom For Research and Development: Monitoring load times, file sizes, uptime.

    4. How and with whom we share the Personal Information we collect

    We neither rent nor sell your Personal Information in personally identifiable form to anyone. However, we do share your Personal Information with third parties as described below.

    4.a. Advertisers

    We may allow advertisers and/or merchant partners (“Advertisers”) to choose the demographic information of users who will see their advertisements and/or promotional offers and you agree that we may provide any of the information we have collected from you in non-personally identifiable form to an Advertiser, in order for that Advertiser to select the appropriate audience for those advertisements and/or offers. For example, we might use the fact you are located in San Francisco to show you ads or offers for San Francisco businesses, but we will not tell such businesses who you are.

    4.b. Affiliated Businesses and Third Party Websites We Do Not Control

    In certain situations, businesses or third party websites we’re affiliated with may sell items or provide services to you through the Services (either alone or jointly with us). You can recognize when an affiliated business is associated with such a transaction or service, and we will share your Personal Information with that affiliated business only to the extent that it is related to such transaction or service. One such service may include the ability for you to automatically transmit Third Party Account Information to your Services’ profile or to automatically transmit information in your Services’ profile to your third party account. We have no control over the policies and practices of third party websites or businesses as to privacy or anything else, so if you choose to take part in any transaction or service relating to an affiliated website or business, please review all such business’ or websites’ policies.

    4.c. Agents/data processors

    We employ other companies and people to perform tasks on our behalf and need to share your information with them to provide products or services to you. Unless we tell you differently, our agents do not have any right and are not allowed to use the Personal Information we share with them beyond what is necessary to assist us.

    4.d. User Profiles and Submissions

    Certain user profile information, including, without limitation, a user’s name, username, location, and any video or image content that such user has uploaded to the Services, may be displayed to other users to facilitate user interaction within the Services or address your request for Company’s Services. Your account privacy settings allow you to limit the other users who can see the Personal Information in your user profile and/or what information in your user profile is visible to others. Any content you upload to your public user profile, along with any Personal Information or content that you voluntarily disclose online in a manner other users can view (on discussion boards, in messages and chat areas, etc.) becomes publicly available, and can be collected and used by others. Your username may also be displayed to other users if and when you send messages or comments or upload images or videos through the Services and other users can contact you through messages and comments.

    4.e. Business Transfers

    We may choose to buy or sell assets. In these types of transactions, customer information is typically one of the business assets that would be transferred. Also, if we (or our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Information would be one of the assets transferred to or acquired by a third party.

    4.f. Protection of Company and Others

    We reserve the right to access, read, preserve, and disclose any information that we reasonably believe is necessary to comply with law or court order; enforce or apply our conditions of use and other agreements; or protect the rights, property, or safety of Company, our employees, our users, or others. This includes exchanging information with other companies and organizations for fraud protection and credit risk reduction.

    4.g. Other Transfers

    Except as set forth above, you will be notified or asked for consent when your Personal Information may be shared with third parties in a personally identifiable form and will be able to prevent the sharing of this information.

    4.h. Overview of information shared by Iconfinder with third-parties

    Tool Type of information Why we share this information
    Intercom When you register with the Service Intercom will collect: Email, Username, Password. When making transactions within the Services Intercom will collect: Name, Address, Billing details, Company details, IP address, Account balance from Iconfinder. Data about actions: Purchases of icons and services, Searches, Downloads, Favorites To communicate about the Services: When onboarding new users, To market and promote the Services. For customer service: Providing help and assistance for the users, Resolving technical issues experienced by the users, Improving the Services.
    Facebook Email address To promote and drive engagement with the Services: Serving ads.
    Stripe Whether a user has been marked as fraudulent For security: Handling fraudulent users and returning money to credit cards.
    Mandrill Email address To communicate about the Services: Sending transactional emails. To promote and drive engagement with the Services: Sending promotional communications.
    Sentry All Personal Information except sensitive information such as password and credit card information. To operate the Services: Debugging.

    5. How we store and secure the Personal Information we collect

    5.a. Information storage and security

    We endeavor to protect the privacy of your account and other Personal Information we hold in our records and we have implemented what we consider to be appropriate security measures, but we cannot guarantee complete security. Unauthorized entry or use, hardware or software failure, and other factors may compromise the security of user information at any time.

    Sensitive information such as credit card details and password are stored in encrypted form. SSL is applied when transferring information and while you access the Services from a web browser.

    6. Information processing and transfers for EEA individuals

    Legal bases for processing (for EEA individuals) **

    As an individual in the EEA (European Economic Area), we collect and process information about you where we have legal bases for doing so under EU laws. We only collect and use the information when:

    • We need it to provide you the Services, including operating the Services, provide customer support and personalize features as well as for safety and security processes.
    • It serves a legitimate interest (which is not overridden by your data protection interests), such as for research and development, for marketing and promotion and to protect our legal rights and interests.
    • You have given us consent to do so for a specific purpose.
    • We need the information to comply with legal obligations.

    If you have given consent to our use of your information for a specific purpose, you can change your mind at any time, but this will not affect any processing that has already taken place. You have the right to object to the use of your information, but this may mean that the Services are no longer available.

    7. International transfers of information

    Our third-party service providers may be located outside EEA which means their processing of Personal Information will involve transferring of data outside the EEA. When data is transferred outside EEA we ensure protection using the following safeguards:

    • We only transfer Personal Information to countries that have been deemed to provide an adequate level of protection of Personal Information by European Commission. Please see: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_en
    • Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe. For further details, see: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en
    • Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US. For further details, see https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/eu-us-privacy-shield_en

    Please contact us if you want further information on the specific mechanism used by us when transferring your Personal Information out of the EEA.

    8. For how long we store the Personal Information

    Iconfinder will process and store your Personal Information for as long as it is necessary and permitted under applicable data protection law. Your Personal Information will not be retained for longer than is necessary for the purposes for which the information is collected, or the purposes of satisfying any legal, accounting, or reporting requirements.

    To determine the appropriate period for storing your Personal Information, we consider the amount, nature, and sensitivity of the Personal Information, the potential risk of harm from unauthorised use or disclosure of your Personal Information, the purposes for which we process your Personal Information and whether we can achieve those purposes through other means, and the applicable legal requirements.

    In some cases, we may anonymize your Personal Information (making it no longer associated with you) for research and statistical purposes, in which case we may use this information indefinitely without further notice to you.

    In some circumstances, you can ask us to erase your Personal Information. Please see section 9. below for further information.

    9. What rights do you, as the data subject, have

    According to applicable data protection law, you have the following rights with regards to Iconfinder:

    The right of access: You have the right to obtain from us confirmation as to whether or not your Personal Information is being processed, and if this is the case, access to your Personal Information and other information such as the purpose of the processing, the categories of your Personal Information, the recipients or categories of recipients to whom your Personal Information has been or will be disclosed, your rights in relation to processing of your Personal Information, and the existence of automated decision-making. You have the right to obtain one copy of the Personal Information undergoing processing. For any further copies requested by you, we may charge you a reasonable fee based on administrative cost. If you would like one copy, please submit a written request to contact@iconfinder.comtogether with documentation showing that you are the person in question. You may independently in some cases be able to access some of the Personal Information you have provided to us. Please see section 10, “How to access and update your Personal Information” below.

    T*he right to correction:**You have the right to obtain from us without undue delay the correction of inaccurate or incomplete Personal Information concerning you. The accuracy of the new data you provide to us might need to be verified. We may use any aggregated data derived from or incorporating your Personal Information after you update it, but not in a manner that would identify you personally directly or indirectly. You may independently in some cases be able to correct some of the Personal Information you have provided to us. Please see section 10, “How to access and update your Personal Information” below.

    The right to erasure: You have the right to obtain from us the erasure of Personal Information concerning you without undue delay, and we are obligated to erase your Personal Information without undue delay in certain situations:

    • If you withdraw your consent to our processing of your Personal Information,
    • Where the Personal Information collected is no longer necessary for the purposes for which we have been collecting or processing it,
    • Where you have successfully exercised your right to object (see below),
    • Where we may have processed your information unlawfully,
    • Where we are required to erase your Personal Information to comply with local law

    Please note, that we may not always be able to comply with your request of erasure for specific legal reasons. In this case, we outline the legal reasons to you, if applicable, at the time of your request.

    The right to object: You have the right to object at any time to our processing of your Personal Information, which for instance is based on legitimate interest, on grounds relating to your situation, as you feel it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your Personal Information for direct marketing purposes, including profiling to the extent that it is related to such direct marketing. Also, you have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. If you object to the processing, we shall no longer process your Personal Information unless we, for instance, can demonstrate compelling legitimate ground for the processing, which overrides your interests, rights, and freedoms or for the establishment, exercise or defense of legal claims.

    The right to restriction: You have the right to obtain from us restriction of processing your Personal Information in certain situations:

    • If you contest the accuracy of your Personal Information,
    • If the processing of your Personal Information is unlawful,
    • If we no longer need your Personal Information for the purposes of processing, but you need it for the establishment, exercise or defense of legal claims,
    • If you have objected the processing of your Personal Information, as described above, and the verification whether our legitimate grounds override those of yours is pending.

    The right to data portability: You have the right to receive your Personal Information in a structured, commonly used and machine-readable format and have the right to transmit that information to another third-party if the processing, for instance, is based on your consent or the processing is carried out by automated means.

    The right to withdrawal of your consent: You can always opt not to disclose information to us, but keep in mind some information may be needed to register with us or to take advantage of some of our special features. You have the right to withdraw your consent to our processing of your Personal Information at any time. If you wish to withdraw your consent, please contact us at contact@iconfinder.com.

    The right to complain: You have the right to lodge a complaint with a supervisory authority.

    There are exceptions to these rights so that full access to your Personal Information may be denied, for example, if making the information available would adversely affect others. To make use of your rights described above, please contact us at contact@iconfinder.com at any time.

    10. How to access and update your Personal Information

    Through your account settings, you may be able to access, and, in some cases, edit or delete some of the Personal Information you’ve provided to us. The information you can view, update, and delete may change as the Services change. If you have any questions about your viewing, deleting or updating information we have on file about you, please contact us at contact@iconfinder.com.

    11. Our policy towards children

    We do not knowingly collect or solicit Personal Information from anyone under the age of 18 or knowingly allow such persons to register for the Services (as that term is defined in our Terms of service). If you are under 18, please do not attempt to register for the Services or send any information about yourself to us, including your name, address, telephone number, or email address. No one under age 18 may provide any Personal Information to us or on the Services. If we learn that we have collected Personal Information from a child under age 18 without verification of parental consent, we will delete that information as quickly as possible. If you believe that we might have any information from or about a child under 18, please contact us at contact@iconfinder.com.

  • Privacy Policy

    As of July 10th, 2013

    IFTTT Inc. (“IFTTT”) takes the private nature of your personal information very seriously. This Privacy Policy describes how we treat the information we collect when you visit and use the IFTTT website located at ifttt.com (the “Site”) and the services offered by IFTTT (the Site, Mobile Apps, and services referred to as the “Service”). Please read this Privacy Policy to learn more about the ways in which IFTTT uses and protects your personal information. By using the Service you acknowledge and agree to be bound by the terms and conditions of this Privacy Policy. If you do not agree to the terms, please do not use the Service or access our Site.

    The IFTTT Service is not intended for use by children. If you are under 18, you may use the Service only with involvement of a parent or guardian. We do not knowingly collect or solicit personal information from anyone under the age of 13. If you are under 13, please do not attempt to register for the Services or send any personal information about yourself to us. If we learn that we have collected personal information from a child under age 13, we will delete that information as quickly as possible. If you believe that a child under 13 may have provided us personal information, please contact us at privacy@ifttt.com.

    Information We Collect Automatically

    Browsing the Site does not require you to register for an account or provide any personal information to us. In general, IFTTT will gather some generic information automatically. This generic information may include the internet address assigned to your computer, the number and frequency of visitors to the Site, the URL that you just came from (whether this URL is on the Site or not), which URL you next go to (whether this URL is on the Site or not), and your computer browser information. Generic information does not reveal the identity of the visitor. This type of aggregate data may enable us to figure out how often users use parts of the Service, help us determine customer service and Site needs, and do internal research on our users’ demographics, interests, and behavior to better understand, protect and serve you and our community. IFTTT may use this data in aggregate form, that is, as a statistical measure, but not in a manner that would identify you personally. As part of this use of information, we may provide aggregate information, not information about you personally, to our partners about how our users, collectively, use our Service.

    Information You Provide to Us

    We receive and store any information you enter on the Service or provide to us in any other way. You can choose not to provide us with certain information, though you may not be able to take advantage of many Service features. The personal information you provide may be used for such purposes as responding to your questions or requests, customizing the content you see, and communicating with you about new Service features. If you send us personal correspondence, such as emails or letters, or if other users or third parties send us correspondence about your activities or postings on the Service, we may collect such information into a file specific to you. You agree that we may use your personal information to contact you as provided herein, though our intent is that email is the only channel we will use to contact you without your consent.

    Also, once you install any Mobile Apps or other IFTTT Services and enable specific Channels, you may be providing us with additional information, such as contacts and camera-photos on your device. Additionally, we may collect information about your location and calendar in order to provide you with more personalized Service. Again, you can choose not to provide us with certain information, though you may not be able to take advantage of many Service features.

    In order for you to take full advantage of the Service, you must provide registration information, including an e-mail address and password. We may also request demographic information and unique identifiers in order to provide you with a more personalized service, but this information is optional. Once you register for the Service, create Recipes or channels, and/or give us your personal information, you are not anonymous to us. Usernames and links to public accounts are only shown on your profile with your consent. You always have the option to not provide information by choosing not to register for the Service or create any tasks or channels. Our primary purpose in collecting personal information is to provide you with a safe, smooth, and efficient experience. We only collect personal information about you that we consider necessary for achieving this purpose. IFTTT does not sell or rent your personal information to third parties without your explicit consent. IFTTT may disclose information it has collected from you and/or that you have made available through the Service when it believes in good faith that the law or legal process requires it, or when it is necessary to do so to protect the rights or property of IFTTT or others. You are responsible for managing the flow of your private information from one third party service to another. If you post personal information online that is accessible to the public, that information becomes publicly available and can be collected and used by others and redistributed through the internet and other media channels. For example, if you push a private post on Facebook to a public blog, the private post will no longer be private. You may receive unsolicited messages from other parties in return.

    Is My Information Secure?

    We treat data as an asset that must be protected against loss and unauthorized access. We use industry-standard Secure Socket Layer (SSL) software to protect the security of your personal information during transmission, which encrypts all of the information you input. All personal information collected from other services that you provide through the use of the Service is stored securely. Only employees who need personal information to perform a specific job (for example, a customer service representative) are granted access to it. All of our employees are kept up to date on our privacy and security practices.

    Due to the existing regulatory environment, we cannot ensure that all of your private communications and other personal information will never be disclosed in ways not otherwise described in this Privacy Policy. By way of example, we may be forced to disclose personal information to the government or third parties under certain circumstances or third parties may unlawfully intercept or access transmissions or private communications.

    You need to work to protect against unauthorized access to your passwords and to your computer by signing off once you have finished using a shared computer. You are responsible for all actions taken with your User ID and password. Therefore we recommend that you do not disclose your password to any third parties. If you choose to share your User ID and password or your personal information with third parties, you are responsible for all actions taken with your account and therefore you should review that third party’s privacy policy. If you lose control of your password, you may lose substantial control over your personal information and may be subject to legally binding actions taken on your behalf such as if someone used your User and ID password to forward libelous material through the Service. Therefore, if your password has been compromised for any reason, you should immediately change your password.

    What about Cookies?

    When you visit the Site, we may send one or more “cookies” to your computer hard drive through your Web browser. A cookie is a small file containing a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. Any use of cookies by us will be solely for the purposes of improving the quality of access to the Site by storing user preferences, and tracking user trends, such as how people use the Site, and their Site access preferences. Cookies tell us how and when pages in our Site are visited and by how many people. We use cookies to allow you to enter your login information less frequently. To the extent IFTTT uses cookies, such cookies do not collect personal information, and we do not combine information collected through cookies with other personal information to tell us who you are or what your username or e-mail address is. You are always free to decline our cookies if your browser permits, although in that case you may not be able to use certain features on the Site and you may be required to reenter your password or login information more frequently. IFTTT visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using the Site. Most browsers are initially set up to accept cookies, but you can reset your browser to refuse all cookies or to indicate when a cookie is being sent. We recommend that you leave the cookies activated, however, because deleting cookies may reduce the functionality of IFTTT. We do not control the use of cookies by third parties.

    Will IFTTT Share Any of the Information it Receives with Other Entities?

    We may use third party service providers to facilitate or outsource one or more aspects of our business and therefore we may provide some of your personal information directly to these service providers. These service providers are subject to confidentiality agreements with us and other legal restrictions that prohibit their use of the information we provide them for any other purpose except to facilitate the specific outsourced IFTTT related operation, unless you have given your prior permission to them for additional uses. We may share our data, including personal information about you with our partners and joint ventures in furtherance of our business. To the extent that these entities have access to your information, they will treat it at least as protectively as they treat information they obtain from their other users. Our partners and joint ventures follow privacy practices no less protective of all users than our practices described in this document, to the extent allowed by applicable law. In some cases, we may choose to buy or sell assets. In these types of transactions, customer information is typically one of the business assets that is transferred. Moreover, if IFTTT, or substantially all of its assets, were acquired, or in the unlikely event that IFTTT goes out of business or enters bankruptcy, customer information would be one of the assets that may be transferred to or acquired by a third party. You acknowledge that such transfers may occur, and that any acquirer of IFTTT may continue to use your personal information as set forth in this policy. IFTTT cooperates with law enforcement inquiries, as well as other third parties to enforce laws and intellectual property rights. Therefore, in response to a verified request by law enforcement or other government officials relating to a criminal investigation or alleged illegal activity, we can (and you authorize us to) disclose your name, city, state, telephone number, and email address. We will not otherwise disclose your personal information to law enforcement or other government officials without a subpoena, court order or substantially similar legal procedure, except when we believe in good faith that the disclosure of information is necessary to prevent imminent physical harm or financial loss; or report suspected illegal activity. This Privacy Policy applies to the IFTTT Service only. We do not exercise control over any sites that you may visit from a link on our Site. These other sites may place their own cookies or other files on your computer, collect data or solicit personal information from you. Since IFTTT does not control the privacy policies of third parties, you are subject to the privacy policies of that third party. We encourage you to ask questions before you disclose your personal information to others.

    Except as set forth above, you will be notified when your personal information may be shared with third parties, and you will be able to prevent the sharing of this information.

    Accessing, Reviewing and Changing Your Personal Information

    Statements and Channels can be disconnected at anytime though prior tasks and Channels may remain in our electronic archive. You can change your email address and contact information by going to the settings page. You must promptly update your personal information if it changes or is inaccurate. You may be able to add or update certain additional information via the Service. When you update information, however, we often maintain a copy of the unrevised information in our records. Please note that information may remain in our records after deletion of your account. IFTTT will only update your information on third party sites or send you information (phone, sms, etc.) with your specific consent, such as when you add tasks to your account.

    User Communications

    You may input your contact information into the Service so that IFTTT may contact you. When you enter your contact information or send an email or other communication to IFTTT, we may retain those communications in order to process your inquiries and respond to your requests. We do not use your email address or contact information to send commercial or marketing messages nor do we give or sell this information to any third parties. To the extent your e-mail address is provided to IFTTT, you may receive e-mail or other communications from us.

    Your California Privacy Rights

    Under California Civil Code Sections 1798.83-1798.84, California residents are entitled to ask us for a notice identifying the categories of personal information which we share with our affiliates and/or third parties for marketing purposes, and providing contact information for such affiliates and/or third parties. If you are a California resident and would like a copy of this notice, please submit a written request to: privacy@ifttt.com or IFTTT Inc., 923 Market Street STE 400, San Francisco, California, 94103, Attn: Legal

    Changes to this Policy

    Please note that this Privacy Policy may change from time to time. We will not reduce your rights under this Policy without your explicit consent, and we expect most such changes will be minor. Regardless, we will post any Policy changes on this page. We may amend this Privacy Policy at any time by posting the amend terms on the Site. All amended terms shall automatically be effective thirty (30) days after they are initially posted on the Site. Each version of this Policy will be identified at the top of the page by its effective date.

    Contact Us

    If you have any additional questions or concerns about this policy or the Service in general, please feel free to contact us at privacy@ifttt.com.

  • PRIVACY

    Gegevens worden in geen enkel geval automatisch opgeslagen, tenzij je deze gegevens expliciet aan ons communiceert.

    Je deelt persoonsgegevens met ons als je klant bij ons bent of als je contact met ons hebt. Denk aan je naam, je telefoonnummer of je e-mailadres. Maar ook het IP-adres van je computer of een bestelling. Het gaat om alle gegevens die we in verband kunnen brengen met jou. Een los telefoonnummer is geen persoonsgegeven. Maar dat wordt het wel zodra je ook weet van wie het nummer is.

    Alle informatie die je vrijwillig aan ons hebt verstrekt, bijvoorbeeld de gegevens die je invoert tijdens het bestelproces, zullen worden opgeslagen in onze administratie. Deze gegevens worden tevens gebruikt voor marketingdoeleinden.

    Uiteraard zijn jouw gegevens uitsluitend bestemd voor intern gebruik en zullen in geen enkel geval worden verspreid aan derden.

    ALGEMENE VOORWAARDEN

    Uiteraard gelden onze algemene voorwaarden. Meer informatie over deze algemene voorwaarden vind je hier.

    COOKIES

    In indoorskydive.com gebruiken wij cookies om jouw klantgegevens op te slaan. Bij een volgend bezoek aan onze winkel kunnen deze gegevens snel worden opgeroepen. Dankzij deze cookies hoef je niet telkens opnieuw deze gegevens in te vullen.

    Wij doen ons uiterste best om te voldoen aan de nieuwe wetgeving en jou zo veel mogelijk duidelijkheid te verschaffen omtrent jouw privacy. Heb je toch nog vragen omtrent jouw privacy? Stuur jouw vraag dan naar privacy@sis-leisuregroup.nl.

  • Intego Privacy Policy

    Intego is committed to protecting the privacy and security of the data of its clients, associates, suppliers, and website visitors. We want you to understand how we collect and use information from our website so you can interact with Intego with confidence. By using Intego’s website (“Site”) you accept and agree to the practices this Privacy Policy describes.

    Information We Collect

    When you use our Site, we may collect and use personally identifiable information about you, as well as other information. “Personally identifiable information” includes your name, email address, telephone number, mailing address, and other similar information that can be used to identify you. More specifically, when you use our Site, we may collect and store the following information:

    • Name
    • Email address
    • Mailing Address
    • Physical Location
    • Company name
    • Job Title
    • Phone Number
    • Financial information, such as credit card or payment methods, depending on the requirements of the service used
    • Transactional information based on your activities on the Site (including but not limited to purchases you make, purchase content, and searches conducted, as related to your account activity)
    • Correspondence sent to us through the Site
    • IP addresses
    • Browser type
    • Computer operating system
    • Web log information
    • Date and time you visit the website
    • Other click-stream data

    Consent and Use of Your Information

    When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.

    When you provide us with personal information to become a partner or an affiliate, we imply that you consent to our collecting it and using it for that specific reason only.

    If we ask for your personal information for a secondary reason, like marketing, we will ask you directly for your expressed consent.

    You may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at support@intego.com.

    FastSpring

    Our e-store is hosted on FastSpring. They provide us with the online e-commerce platform that allows us to sell our products and services to you.

    Your data is stored through FastSpring’s data storage, databases and the general FastSpring application. They store your data on a secure server behind a firewall.

    If you choose a direct payment gateway to complete your purchase, then FastSpring stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS).

    All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.

    PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

    For more insight, you may also want to read FastSpring’s Terms of Service here or Privacy Statement here.

    How We Use Cookies

    A cookie is a very small text document, which often includes an anonymous unique identifier. When you visit a site, that site’s computer asks your computer for permission to store this file in a part of your hard drive specifically designated for cookies. Each site can send its own cookie to your browser if your browser’s preferences allow it.

    Note that your browser settings may allow you to automatically transmit a “Do Not Track” signal to sites and online services you visit. There is no consensus among industry participants as to what “Do Not Track” means in this context. Like many websites and online services, we currently do not alter our practices when we receive a “Do Not Track” signal from a visitor’s browser. To find out more about “Do Not Track,” you may wish to visit allaboutdnt.com.

    When you are on one of the Intego partner websites, we do not collect cookies nor use them for ad serving.

    Security

    We use commercially suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect on our Site. These procedures include, but are not limited to, encryption, SSL (secure socket layer), passwords, and physical security. We also limit access to any personally identifiable information we receive to employees who need access to that information in order to do their jobs. However, no data protection procedures are entirely infallible. As a result, while we strive to protect your personally identifiable information, we cannot guarantee that it will be 100% secure.

    Sharing Your Information

    We may share your personal information with a trusted third parties, including service providers under contract who help with our business operations.

    We may also share aggregated non-identifiable information about our general readership with third parties in order to help market our products and develop new vendor and customer relationships.

    Such third parties have access to personal information as needed to perform their functions, but they are not allowed to use it for other purposes. We do not sell or rent personal information collected through Intego’s Site to anyone.

    Other Circumstances: We may disclose your personal information to third parties if we are involved in a merger, acquisition, or sale of any or all of our business and/or our assets to a third party, or if we have a good faith belief that disclosure is necessary to:

    • Comply with applicable laws, regulations, legal process (such as a subpoena), or enforceable government request;
    • Enforce applicable Terms of Use, including investigation of potential violations of such Terms, or to detect, prevent, or otherwise address fraud, security, or technical issues; and
    • Protect against harm to the rights, property, or safety of Intego, our users, or the public as required or permitted by law.

    Third-Party Websites and Social Media Features

    Intego’s Site may contain links to other sites, including those of third parties or business partners. While we seek to link only to sites that share our high standards and respect for privacy, we cannot be responsible for the privacy practices other websites use. By accessing other third party websites or applications through our Site, you are consenting to the terms and privacy policies of those websites. It is possible that other parties may collect personally identifiable information about your online activities over time and across different websites when you use Intego’s Site.

    Review and Correction of Your Information

    You may review and edit the information Intego collected about you at any time. If your information has been shared with a third party, as described elsewhere in this Privacy Policy, then that third party has received its own copy of your data. If you have been contacted by one of these third parties and wish to correct or delete your information, please contact them directly. To receive a summary of the information you’ve provided to Intego, click here. To submit a request to erase your information, click here.

    California Privacy Rights

    California law allows California residents to ask companies with whom they have an established business relationship to provide certain information about the companies’ sharing of personal information with third parties for direct marketing purposes. Intego does not share any California consumer personal information with third parties for marketing purposes without consent.

    California customers who wish to request further information about our compliance with this law or have questions or concerns about our privacy practices may contact us using the contact information set forth below.

    Users Only of Legal Age of Majority

    Our Site is intended for a general audience over 18 years of age and is not directed to children under 13 years of age.  We do not intend to collect personal information as defined by the U.S. Children’s Online Privacy Protection Act (“COPPA”) (“Children’s Personal Information”) in a manner that is not permitted by COPPA, and for any children’s or mixed-use portions of our Site (if any) we will comply with COPPA.  If you are a parent or guardian and believe we have collected Children’s Personal Information in a manner not permitted by COPPA, please contact us at the address listed below (Attention: Legal) and we will remove such data to the extent required by COPPA.

    Parents may want to consider commercially available parental control protections to limit what minors can access online and/or monitor their minor children’s online activities. We recommend Intego ContentBarrier.

    Privacy Policy Updates

    This Privacy Policy was last updated on May 24, 2018.

    We update the Privacy Policy from time to time, so please review it regularly. If we materially change our Privacy Policy, we will notify you by contacting you through your user account e-mail address or by posting a notice on our Site. Your continued use of the Site will be deemed your agreement that your information may be used in accordance with the new policy. If you do not agree with the changes, then you should stop using the Site and notify us that you do not want your information used in accordance with the changes.

    Contacting Us

    Please contact us at support@intego.com to submit any questions, comments, or complaints you may have regarding this Privacy Policy.

    Additional contacts, including the mailing address and contact number, may be found by visiting our Contact Page.

  • InVision commits to strong and transparent privacy practices. Our Privacy Policy explains:

    • What Personal Data we collect and why we collect it
    • How we use Personal Data
    • Who we share Personal Data with
    • The choices we offer, including how to access, update, and remove Personal Data

    Please read this Privacy Policy carefully. By using or accessing the Service (defined below), you acknowledge that you have read, understood, and agree to be bound to all the terms and conditions of this Privacy Policy, and the “Terms of Use” or other customer agreement between you and InVision that is applicable to the particular Service you are using or accessing (collectively, “User Agreements”).

    If you do not agree to this Privacy Policy and the applicable User Agreement, please exit, and do not access or use, the Service.

    We have kept this simple for your understanding, but if you’re not familiar with terms like “cookies” or “IP addresses,” feel free to contact us. Your privacy is really important to us, so whether you’re new to InVision or a long-time user, please take the time to get to know our practices. Click on any of the links below to go straight to one of the following sections:

    INTRODUCTION

    This Privacy Policy (“Privacy Policy”) sets forth the privacy practices of InVisionApp Inc. and its current and future InVision Affiliates (collectively, “InVision”) for all InVision software and applications (including, without limitation, mobile software and applications) (collectively, the “Software”); the InVision websites located at www.invisionapp.comdesignbetter.comuz.li and any other InVision websites or services that link to this Privacy Policy, (collectively, the “Websites”); and all other InVision products or services provided or otherwise made accessible on or through the Software or the Websites or that otherwise link to or reference this Privacy Policy. The Software, the Websites, and any other InVision products or services that link or refer to this Privacy Policy are collectively referred to as the “Service.” This Privacy Policy describes how InVision collects, discloses, stores, transfers, and uses information that could individually identify our users (“Personal Data”) in connection with our Service.

    This Privacy Policy does not apply to the practices of third parties, as explained in more detail below. In this Privacy Policy, “we,” “us,” “our,” and other similar references mean InVision, “you” and “your” and other similar references mean any user of the Service, and “InVision Affiliates” means any parent, subsidiary, member, officer, director, employee, agent, or contractor of InVision or any entity under common control with InVision.

    This policy applies (i) immediately to new users who use or access the Service on or after the Effective Date and (ii) on the Effective Date to users who use or access the Service before the Effective Date.

    Please contact us if you have any questions or comments about our privacy practices. You can reach us online at privacy@invisionapp.com or by mail at the address listed in the “What If You Have Questions Regarding Your Personal Data?” section below.

    TRANSFERS OF PERSONAL DATA

    The Service is hosted and operated in the United States (“U.S.”), with development, support and maintenance operations in other countries (and hosting soon to come in the European Union (“EU”), through InVision and its service providers. If you do not reside in the U.S., laws in the U.S. (and other countries) may differ from the laws where you reside. By using the Service, you acknowledge that any Personal Data about you, regardless of whether provided by you or obtained from a third party, is being provided to InVision in the U.S. and will be hosted on U.S. servers, and you authorize InVision to transfer, store, host and process your information to and in the U.S., and possibly other countries. You hereby consent to transfer of your data to the U.S. pursuant to either, at InVision’s discretion, the EU-U.S. Privacy Shield Framework, the details of which are further set forth below, or the standard data protection clauses promulgated by the EC, a copy of which can be obtained at https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32010D0087.

    EU PERSONAL DATA

    If you are located in the EU, United Kingdom, Lichtenstein, Norway, or Iceland, you may have additional rights under the EU General Data Protection Regulation (the “GDPR”) related to your Personal Data, as further described below. InVision will be the controller of your Personal Data processed in connection with the Service, unless you access the Service through an enterprise account, or other InVision account that is controlled by a third party (e.g. your employer).

    EU-U.S. Privacy Shield Participation

    InVision complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of Personal Data transferred from the EU to the United States. InVision has certified to the Department of Commerce that it adheres to the Privacy Shield Principles of (1) Notice; (2) Choice; (3) Accountability for Onward Transfer; (4) Security; (5) Data Integrity and Purpose Limitation; (6) Access and (7) Recourse, Enforcement and Liability (collectively, the “Privacy Shield Principles”). If there is any conflict between the terms in this Privacy Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern with respect to all Personal Data transferred from the EU to the U.S. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/. As further set forth in the Privacy Shield Principles, we remain potentially liable if a third party processing Personal Data received from the EU on our behalf processes that Personal Data in a manner that is inconsistent with the Privacy Shield Principles (unless we can prove that we are not responsible for the event giving rise to the damage). InVision is subject to the investigatory and enforcement powers of the Federal Trade Commission with respect to any failure to comply with the Privacy Shield Principles. EU individuals with inquiries or complaints regarding U.S. privacy practices should contact us at privacy@invisionapp.com or follow the process set forth in the section titled “Privacy Shield Inquiries” below.

    NOTICE OF WHAT INFORMATION WE COLLECT AND HOW WE USE IT

    Types of Personal Data We Collect

    InVision collects Personal Data about you when you provide it directly to us, when third parties such as our business partners (e.g. companies with whom we integrate our Service), service providers (such as our advertising service providers) provide us with Personal Data about you, or when Personal Data about you is automatically collected in connection with your use of our Service. We collect the following Personal Data from you in connection with the Service:

    • Contact Information: information we collect to identify or contact you, we collect typical “business card information” such as your first and last name, physical address, email address, telephone number, or Twitter handle. For example, this is the basic information that we collect when you register for our flagship design and prototyping Service.
    • Financial Account Information: information that you provide in connection with your purchase of the Service (or a purchase made through the Service), including credit card number, credit card expiration date, credit card verification code, bank account number, bank account title, bank name, branch location, and routing number. You must only provide us with Financial Account Information for accounts and credit cards that you have the lawful right to access.
    • Transaction Information: information related to transactions you conduct on the Service, including when you register for a webinar, event or download special content, and your interactions with the Service (for example the functionality you use and the links clicked on the Service).
    • User Account Information: information that identifies you to the Service, such as your user name, email address, password, and IP address. For example, we use this information to authenticate you when you log in to the Service, and use the IP address to help maintain your web session security while using the Service.
    • User Content: to the extent that you choose to input Personal Data as part of such content, images, comments, and other content, information, and materials that you post to or through the Service.

    Important Note: Users of our Services should not use end-customer personal data (e.g. actual or “live” end-customer data) when building designs and prototypes. Industry practice is to use “dummy data” that does not refer to actual people. Please also do not provide us with any sensitive personal data while building your designs and prototypes. For example, do not provide personal health information or personal financial information (except for limited financial data when purchasing the service as set forth above). If this type of data is necessary to make your prototype “come alive”, use dummy data instead. Please see our knowledge base for more information and a tool to easily import such dummy data.

    • Partner Information: information that our business partners, such as our content-providing partners, share with us — for example, if you use their services to purchase, preview, and/or otherwise use their content when using our Service.
    • Log Data: information automatically recorded by the Service about how a person uses our Service, such as IP addresses, device and browser type, operating system, the pages or features of our Website or Service to which a user browsed, the time spent on those pages or features, the frequency with which the Service is used by a user, search terms used by a user, the links on the Service that a user clicked on or used, and other statistics.

    We also collect usage and performance information that is not Personal Data or that we aggregate or de-identify so that it no longer personally identifies an individual. We also associate some data that is not Personal Data with Personal Data.

    We collect Personal Data when a user (i) creates an account (a “User Account”); (ii) logs into the Service; (iii) interacts with the Service; (iv) uploads or generates User Content; (v) communicates with us; and (vi) responds to a communication or interaction from us. Some of the methods and tools we use to collect Personal Data are:

    Unique Identifiers: We use unique identifiers such as cookies, e-mail or your pseudonymized customer ID to track individual usage behavior on our Service, such as the length of time spent on a particular page and the pages viewed during a particular log-in period. Unique identifiers collect information about a user’s use of our Service on an individual basis.

    Mobile Device Identifiers: Mobile device identifiers are identifiers stored on your mobile device that track certain data and activities occurring on or through your device. Mobile device identifiers enable collection of Personal Data (such as media access controls) as well as non-personally identifiable information (such as usage and traffic data).

    Cookies, Web Beacons, and Other Tracking Tools: We and our third party service providers collect information about you, your device, and your use of the Service through cookies, clear gifs (a.k.a. web beacons/web bugs) (“Web Beacons”), and other tracking tools and technological methods (collectively, “Tracking Tools”). Tracking Tools collect information such as computer or device operating system type, IP address, browser type, browser language, mobile device ID, device hardware type, the website or application visited or used before or after accessing our Service, the parts of the Service accessed, the length of time spent on a page or using a feature, and access times for a webpage or feature. These Tracking Tools help us learn more about our users and analyze how users use the Service, such as how often users visit our Service, what features they use, what pages they visit, what emails they open, and what other sites or applications they used prior to and after visiting the Service.

    Cookies Like many websites and mobile application operators, we collect certain information through the use of “cookies,” which are small text files that are saved by your browser when you access our Service. Cookies can either be “session cookies” or “persistent cookies”. Session cookies are temporary cookies that are stored on your device while you are visiting our Website or using our Service, whereas “persistent cookies” are stored on your device for a period of time after you leave our Website or Service. We use persistent cookies to store your preferences so that they are available for the next visit, and to keep a more accurate account of how often you visit our Service, and how your use of the Service varies over time. We also use persistent cookies to measure the effectiveness of advertising efforts. Through these cookies, we may collect information about your online activity after you leave our Service. For more information on cookies, including how to control your cookie settings and preferences, visit http://ec.europa.eu/ipg/basics/legal/cookies/index_en.htmhttps://ico.org.uk/for-the-public/online/cookies/ and http://www.allaboutcookies.org/ and review our Cookie Policy.

    Web BeaconsWeb Beacons help us better manage content on our Service by informing us what content is effective. Web Beacons are embedded in, or otherwise associated with, certain emails or other communications that you receive from us or our partners. Web Beacons help us track your responses and interests and deliver relevant content and services to you. For example, they may let us know when you take actions based on the emails that we send. Web Beacons also allow us to enhance our Behavioral Advertising (defined below), which is further discussed below in the section titled “Online Behavioral Advertising” below.

    Social Media Widgets: Some parts of our Service may include social media features, such as the Facebook “like” button, and widgets, such as the “share this” button. These social media features are either hosted by a third party or hosted directly on our Service. When you use these tools, the party that provides the tool, the third party that operates the social media services, and/or we may receive Personal Data about you. By using these tools, you acknowledge that some information, including Personal Data, from your social media services will be transmitted to us, and that information is therefore is covered by this Privacy Policy, and some information, including Personal Data, may be shared with the third party services, and that information is therefore governed by their privacy policies.

    Third Party Sources: We may use third-party services, such as open search tools and social networks, to obtain information about you (such as your name or company) and to enrich your personal information by obtaining publicly available information about you, such as your job title, employment history and contact information.

    Online Behavioral Advertising: Some of our advertising (“Behavioral Advertising”) involves using Tracking Tools to collect information about a user’s online activities over time and across non-affiliated websites and applications and providing ads to the user based the user’s interests (as inferred from the user’s online activity) or use of our Service. Behavioral Advertising may appear on our Service or on other websites or services. We work with third parties to provide Behavioral Advertising, such as advertising networks, data exchanges, traffic measurement service providers, marketing analytics service providers, and other third-party service providers (collectively, “Advertising Service Providers”). Advertising Service Providers perform services such as facilitating targeting of advertisements and measuring and analyzing advertising effectiveness on the Service (collectively, all such services, “Targeting Services”). Targeting Services help us display Behavioral Advertising, prevent you from seeing repeated ads, and enable us to research the usefulness of ads.

    We adhere to self-regulatory principles for online behavioral advertising issued by the Digital Advertising Alliance (“DAA”) and the European Interactive Digital Advertising Alliance (“EDAA”) (collectively, the “OBA Principles”). More information about the OBA Principles can be found at http://digitaladvertisingalliance.org/principles and http://www.edaa.eu/european-principles/.

    You have the option to opt out of Behavioral Advertising. For more information, see the section below titled “Opting Out of Behavioral Advertising and Tracking Tools.”

    Use of Personal Data

    InVision uses Personal Data to: (i) provide, administer, and improve our Service; (ii) better understand your needs and interests; (iii) fulfill requests you make; (iv) personalize your experience; (v) provide Service announcements; (vi) provide you with information and offers from InVision, InVision Affiliates, and our business partners; (vii) protect, investigate, and deter against fraudulent, harmful, unauthorized, or illegal activity and (viii) comply with legal obligations.

    For example, we use Personal Data to:

    • Operate and improve the Service
    • Learn more about our users and their internet behaviors
    • Target offers to users
    • Facilitate communications among and between users and the public in general
    • Evaluate eligibility of customers for certain offers, products, or services
    • Evaluate the types of offers, products, or services that may be of interest to users
    • Provide user support
    • Communicate with users regarding support, security, technical issues, commerce, marketing, and transactions
    • Facilitate marketing, advertising, surveys, contests, sweepstakes, and promotions
    • Administer the Service, User Accounts, and transactions with respect to User Accounts
    • Enforce our contracts, administering and carrying out our obligations under contracts, and complying with the law
    • Publish aggregated data about usage trends, which may be derived from Personal Data
    • Complete corporate transactions such as mergers, sales of assets, or bankruptcies

    PROCESSING GROUNDS

    We will only use your Personal Data if we have a lawful basis for doing so. Lawful bases for processing include consent, contractual necessity, and our “legitimate interests” or the legitimate interest of others, as further described below.

    • Contractual Necessity: We process the following categories of Personal Data because we need to process the data to perform under our User Agreement with you, which enables us to provide you with the Service. When we process data due to contractual necessity, failure to provide such Personal Data will result in your inability to use some or all portions of the Service that require such data:
      • Contact Information
      • User Account Information
      • Financial Account Information
      • Transaction Information
      • User Content
    • Legitimate Interest: We process the following categories of Personal Data when we believe doing so furthers the legitimate interest of us or third parties:
      • Contact Information
      • Financial Account Information
      • User Account Information
      • Transaction Information
      • User Content
      • Partner Information
      • Log Data

    Examples of these legitimate interests include:

      • Operation and improvement of our business, products, and services
      • Marketing of our products and services
      • Provision of customer support
      • Protection from fraud or security threats
      • Compliance with legal obligations
      • Completion of corporate transactions
    • Consent: In some cases, we process Personal Data based on the consent you expressly grant to us at the time we collect such data. When we process Personal Data based on your consent, it will be expressly indicated to you at the point and time of collection.
    • Other Processing Grounds: From time to time we may also need to process Personal Data to comply with a legal obligation, if it is necessary to protect the vital interests of you or other data subjects, or if it is necessary for a task carried out in the public interest.

    HOW AND WITH WHOM DOES INVISION SHARE PERSONAL DATA?

    We share Personal Data with vendors, third party service providers, and agents who work on our behalf and provide us with services related to the Service. These parties include:

    • Third parties who act for us or provide services for us, such as billing and credit card payment processing, maintenance, sales, marketing, administration, support, data enrichment, hosting, and database management services
    • Outside professional advisors (such as lawyers and accountants) for purposes related to the operation of our business such as auditing, compliance, and corporate governance
    • InVision Affiliates, including persons or entities that acquire some or all of InVision or our assets
    • Co-sponsors and presenters of webinars and events that you attend

    We also share Personal Data with third party service providers and agents when necessary to complete a transaction initiated or authorized by you or provide you with a product or service you have requested. In addition to those set forth above, these parties also include:

    • Other users (when you use a “share link” to post information publicly, share or comment on content, or as otherwise necessary to effect a transaction initiated or authorized by you through the Service)
    • Social media services (if you interact with them through your use of the Service)
    • Third party business partners who you access through the Service
    • Other parties authorized by you
    • The owner and administrator(s) of the Service account that you use, or of the email address that you used to register with the Service (see “Use of Third-Party E-mail Address” immediately below).

    We share Personal Data with presenters, sponsors, or other conference participants or organizers if you register for or attend a conference we are involved with.

    We also share Personal Data when we believe it is necessary to:

    • Comply with applicable law or respond to valid legal process, including from law enforcement or other government agencies
    • Protect us, our business or our users, or third parties, for example to enforce our terms of service, prevent spam or other unwanted communications and investigate or protect against fraud
    • Maintain the security of our products and services

    We also share information with third parties when you have given us consent to do so.

    Use of Third-Party E-mail Address

    If you register for the Service using an e-mail address that we recognize to be either a part of a third-party enterprise account for the Service (an “Enterprise Account”) or a potential enterprise Service purchaser (for example, your employer’s) (each, an “E-Mail Holder”), we may provide your name and email address to the E-Mail Holder and their administrator. In some cases, we will also consolidate your account(s) with the accounts of the E-Mail Holder and we provide your E-Mail Holder and their administrator with access to your User Account information and User Content. This may happen when the E-Mail Holder’s account is established after you register for your individual User Account. We make these transfers to allow users who are part of a larger organization to take advantage of the special features and security enjoyed by our enterprise Account holders, and in order to help you and your organization comply with its internal security and email usage obligations. Please note that all accounts for the Service, and all applicable subaccounts (which may include your User Account), are controlled by the account administrator. In certain cases (e.g. when we are aggregating all of the accounts under a current or potential Enterprise Account), we will provide you with the ability to opt-out of consolidation with an E-Mail Holder’s Account (typically by changing the email address on your account to a non-E-Mail Holder email address).

    Additionally, when an E-Mail Holder creates an Account, we may notify any individuals already using the Services under an email address with the same company domain as yours so that they can be migrated to your enterprise Account.

    Business Transfers

    InVision may sell, transfer, or otherwise share some or all of its business or assets, including your Personal Data, in connection with a business deal (or the evaluation of a potential business deal) such as a merger, consolidation, acquisition, reorganization, or sale of assets or in the event of bankruptcy. You acknowledge that such transfers may occur and that any acquirer or successor of InVision or its assets may continue to use your Personal Data as set forth in this Privacy Policy. You will be notified via email and/or a prominent notice on our Website or Service of any change in ownership or resulting change in uses of your Personal Data, as well as any choices you may have regarding your Personal Data. Similarly, if you access the Service as part of a third party Enterprise Account, the individual or entity controlling the Enterprise Account may transfer or otherwise share the account (including your User Account, User Content, and Personal Data) to an acquirer of some or all of its assets in connection with the migration to an E-Mail Holder’s account, or a business deal (or the evaluation of a potential business deal) such as a merger, consolidation, acquisition, reorganization, or sale of assets, or in the event of bankruptcy.

    YOUR PRIVACY CHOICES

    Opting Out of Behavioral Advertising and Tracking Tools

    You can opt-out of certain Behavioral Advertising activities by doing one or more of the following. Please note that you will need to opt-out of each browser and device for which you desire to apply these opt-out features.

    • Service Provider Opt Out: You can opt-out directly from some Advertising Service Providers and providers of Tracking Tools by using their opt-out tools. Some of these service providers, and links to their opt-out tools, are:
    • Industry Opt Out Tools: Some Advertising Service Providers or providers of Tracking Tools may participate in the Network Advertising Initiative’s (NAI) Opt-Out Tool (http://www.networkadvertising.org/choices/) and/or the Digital Advertising Alliance (DAA) Consumer Choice Page (http://www.aboutads.info/choices/), and you can opt-out of certain services and learn more about your choices by visiting the links included there. Users in the EU can visit http://www.youronlinechoices.eu/ for more information about your choices and to opt out of participating service providers.
    • Web Browser Controls: You can prevent the use of certain Tracking Tools, such as cookies, on a device-by-device basis using the controls in your web browser. These controls can be found in the Tools > Internet Options (or similar) menu for your browser, or as otherwise directed by your browser’s support feature. Through your web browser, you may be able to:
      • Delete existing Tracking Tools
      • Disable future Tracking Tools
      • Set your browser to provide you with a warning each time a cookie or certain other Tracking Tools are being set
    • Mobile Opt Out: Your mobile devices may offer settings that enable you to make choices about the collection, use, or transfer of mobile app information for Behavioral Advertising. You may also opt-out of certain Tracking Tools on mobile devices by installing the DAA’s AppChoice app on your mobile device (for iTunes, visit https://itunes.apple.com/us/app/appchoices/id894822870?mt=8, for Android, visit https://play.google.com/store/apps/details?id=com.DAA.appchoices&hl=en). For more information, please visit http://support.apple.com/kb/HT4228https://support.google.com/ads/answer/2662922?hl=en or http://www.applicationprivacy.org/expressing-your-behavioral-advertising-choices-on-a-mobile-device, as applicable.
    • Do Not Track: Your browser may offer you a “Do Not Track” option, which allows you to signal to operators of websites and web applications and services (including behavioral advertising services) that you do not wish such operators to track certain of your online activities over time and across different websites. The Service does not support Do Not Track requests at this time, which means that we collect information about your online activity both while you are using the Service and after you leave our Service.
    • Our Cookie Management Tool: We also allow you the ability to opt out of certain types of Cookies by clicking on the cookie banner when you first enter the applicable website (for EU users), or by using the solution below:

    Please note the following with respect to opting out of Behavioral Advertising:

      • Some opt-out features are cookie-based, meaning that when you use these opt-out features, an “opt-out” cookie will be placed on your computer or other device indicating that you do not want to receive Behavioral Advertising from certain companies. If you delete your cookies, use a different browser, or use a different device, you will need to renew your opt-out choice.
    • Opting-out of Behavioral Advertising does not mean that you will no longer receive online ads. It only means that such ads will no longer be tailored to your specific viewing habits or interests. You may continue to see ads on and about the Service.

    Emails: We will give you the ability to opt-out of marketing-related emails by going to our rights management page, or clicking on a link at the bottom of each such email. You cannot opt-out of receiving certain non-marketing emails regarding the Service.

    Information Shared with Third Parties: Except as set forth in this Privacy Policy, you will be notified when your Personal Data may be shared with third parties, and will be able to prevent the sharing of this information. To the extent permitted or required by applicable law, you can opt-out of having your information shared with a third party that is not our agent, by contacting us at privacy@invisionapp.com. However, please note that opting-out of information sharing or collection may affect your ability to use some features of the Service.

    SECURITY

    We believe the security of your information is a serious issue and we are committed to protecting the information we receive from you. We use commercially reasonable security measures to protect against the loss, misuse, and alteration of your information under our control based on the type of Personal Data and applicable processing activity, such as data encryption in transit, data encryption at rest (for customers that elect to purchase our “private cloud” solution), pseudonymization, and enforcement of least privilege and need-to-know principles.

    To the extent the Service requires you to provide any Financial Account Information, such as when you purchase subscriptions to the Service, that information will be collected and processed by third-party PCI-compliant service providers. We do not store Financial Account Information transmitted through the Service, provided that we do store (or our payment processor on our behalf will store) just the last four digits of your credit card number, if you provide this to us, to comply with credit card processing requirements of authorizations, charges and chargebacks.

    DATA RETENTION

    We retain Personal Data about you for as long as you have an open account with us or as otherwise necessary to provide you with the Service, and thereafter as set forth in our Service agreement with you (typically 30 days after termination of the Service, or sooner upon request (except as required by law)). In some cases we retain Personal Data for longer, if doing so is necessary to comply with our legal obligations, resolve disputes or collect fees owed, or is otherwise permitted or required by applicable law, rule, or regulation. Upon disposal, we will destroy or render unreadable any such Personal Data. Afterwards, we retain some information in a depersonalized or aggregated form but not in a way that would identify you personally.

    INTERACTIONS WITH OTHERS

    This Privacy Policy applies only to the Service. It does not apply to products, services, or sites that are provided by or operated by third parties, even if such products, services or sites are linked or redirected to or from the Service (“Third-Party Sites”), regardless of whether or not such link or redirection is authorized by InVision. Third-Party Sites may have their own policies regarding privacy, or no policy at all. The fact that we link to a Third-Party Site is not an endorsement, authorization, or representation that we are affiliated with that third party. InVision is not responsible for Third-Party Sites, and you use them at your own risk. We encourage you to read the privacy policies and terms of the Third-Party Sites that you visit or use.

    The Service contains areas where you may be able to publicly post information, communicate with others, submit media content, and/or review goods, services, or vendors, such as discussion boards or blogs. Any information, including Personal Data that you post there, will be public and can be viewed by the public at large, and therefore anyone who accesses such postings will have the ability to read, collect, and further disseminate such information. We have no control over, and take no responsibility for, the use, storage, or dissemination of information posted or otherwise made available on such portions of the Service. By posting Personal Data online in public forums, you may receive unsolicited messages from other parties.

    WHAT RIGHTS AND CHOICES DO YOU HAVE REGARDING YOUR PERSONAL DATA?

    Accessing, Correcting, and Deleting Your Personal Data and Other Data Subject Rights

    You have certain rights with respect to your Personal Data, and we want to help you review and update your information to ensure it is accurate and up-to-date.We may limit or reject your request in certain cases, such as if it is frivolous or extremely impractical, if it jeopardizes the rights of others, if it is not required by law, or if the burden or expense of providing access would be disproportionate to the risks to your privacy in the case in question. In some cases, we may also need you to provide us with additional information, which may include Personal Data, to verify your identity and the nature of your request. We will take reasonable steps to respond to all requests within 30 days (or less!).

    If you are an InVision Account holder, you can accomplish most of the following by logging into your User Account or, for those using enterprise accounts, by contacting your account administrator. For more information as to tools available to you and your account administrator, please refer to our rights management page. You can also contact us directly at privacy@invisionapp.com if you have any additional requests or questions:

    • Access: You can request more information about the Personal Data we hold about you and request a copy of such Personal Data.
    • Rectification: If you believe that any Personal Data we are holding about you is incorrect or incomplete, you can request that we correct or supplement such data.
    • Erasure: You can request that we erase some or all of your Personal Data from our systems. Please note that if you request the deletion of information required to provide the Service to you, your User Account will be deactivated and you will lose access to the Service.
    • Portability: You can ask for a copy of your Personal Data in a machine-readable format. You can also request that we transmit the data to another controller where technically feasible.

    For the following, please email us at privacy@invisionapp.com:

    • Withdrawal of Consent: If we are processing your Personal Data based on your consent (as indicated at the time of collection of such data), you have the right to withdraw your consent at any time. Please note, however, that if you exercise this right, you may have to then provide express consent on a case-by-case basis for the use or disclosure of certain of your Personal Data, if such use or disclosure is necessary to enable you to utilize some or all of our Service.
    • Objection: You can contact us to let us know that you object to the further use or disclosure of your Personal Data for certain purposes, such as for marketing purposes.
    • Restriction of Processing: You can ask us to restrict further processing of your Personal Data.

    You also have the right to lodge a complaint about InVision’s practices with respect to your Personal Data with the supervisory authority of your country or EU Member State.

    Closing Your Account

    You may close an account, and upon termination of your User Account, we will take reasonable steps to provide, modify, or delete your Personal Data as soon as is practicable. However, InVision may nevertheless retain your Personal Data to protect the business interests of InVision, InVision Affiliates, vendors, and other users, and some information may remain in archived/backup copies for our records or as otherwise required by law. Those interests include without limitation the completion of transactions, maintaining records for financial reporting purposes, complying with our legal obligations, resolving disputes, and enforcing agreements.

    California Privacy Rights

    Pursuant to Section 1798.83 of the California Civil Code, residents of California can obtain certain information about the types of Personal Data that companies with whom they have an established business relationship have shared with third parties for direct marketing purposes during the proceeding calendar year. In particular, the law provides that companies must inform consumers about the categories of Personal Data that have been shared with third parties, the names and addresses of those third parties, and examples of the types of services or products marketed by those third parties. To request a copy of the information disclosure provided by InVision pursuant to Section 1798.83 of the California Civil Code, please contact as set forth above.

    ENFORCEMENT AND RECOURSE

    We take our privacy commitments very seriously. We will conduct internal audits of our compliance with this Privacy Policy, and work to ensure that our employees and service providers also adhere to the Privacy Policy. If you have any questions or concerns regarding privacy related to the Service, please send us a detailed message to privacy@invisionapp.com, and we will try to resolve your concerns.

    Privacy Shield Inquiries

    We also commit to resolve complaints about your privacy and our collection or use of Personal Data transferred from the EU to the U.S. in compliance with the Privacy Shield Principles where applicable and have further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the U.S. If you do not receive timely acknowledgment of your Privacy Shield-related complaint from us, or if we have not resolved your complaint, you may contact or visit JAMS by visiting www.jamsadr.com/eu-us-privacy-shield for more information or to file a complaint, at no cost to you. Under certain conditions, you may also be entitled to invoke binding arbitration for residual claims about whether we have violated our obligations to you under the Privacy Shield, and if that violation remains fully or partially un-remedied.

    CHANGES TO THE PRIVACY POLICY

    We reserve the right to modify this Privacy Policy at any time. We encourage you to periodically review this page for the latest information on our privacy practices. If we make material changes to this Privacy Policy, you will be notified via email (if you have an account where we have your contact information) or otherwise in some manner through the Service that we deem reasonably likely to reach you (which may include posting a new privacy policy on our Website—or a specific announcement on this page or on our blog). Any modifications to this Privacy Policy will be effective upon our posting of the new terms and/or upon implementation of the new changes on the Service (or as otherwise indicated at the time of posting) or on the Effective Date set forth in the modified Privacy Policy. In all cases, your continued use of the Service or Website after the posting of any modified Privacy Policy indicates your acceptance of the terms of the modified Privacy Policy.

    CHILDREN

    Our Service is not intended for children under the age of 13 (16 in the EU), and therefore, InVision does not knowingly acquire or receive Personal Data from children under the age of 13 (16 in the EU). If we later learn that any user of our Service is under the age of 13 (16 in the EU), we will take appropriate steps to remove that user’s information from our account database and will restrict that individual from future access to the Service.

    WHAT IF YOU HAVE QUESTIONS REGARDING YOUR PERSONAL DATA?

    Please see our GDPR Compliance Page. Please contact us if you have any questions or comments about our privacy practices or this Privacy Policy. You can reach us online at privacy@invisionapp.com, or by mail at:

    InVisionApp Inc.
    Attention: Privacy Officer
    41 Madison Ave
    Floor 25
    New York, NY, 10010
    USA

  • JetBrains Privacy Policy

    VERSION 2.0, LAST UPDATED: MAY 18TH, 2018

    In this Privacy Policy, we describe the type of data, including personal data (collectively, “data”), that we and our associated companies collect from you when you use JetBrains Websites and certain JetBrains products and services as described in this Privacy Policy (collectively, our “services”), how we and our associated companies use and disclose that data, and your options to access or update your data.

    This Privacy Policy may be amended from time to time. The respective latest version of the Privacy Policy at the point of time of the purchase or registration of a JetBrains Software Product (whichever occurs later) shall apply. The data controllers are JetBrains s.r.o., Praha 4, Na Hřebenech II 1718/10, PSČ 140 00, Czech Republic, and the associated companies of JetBrains.

    JetBrains and its associated companies act as joint data controllers, who are jointly responsible for compliance with data protection legislation. JetBrains s.r.o. is primarily responsible for exercising of rights of data subjects and providing information about data processing.

    Definitions

    The following definitions are used throughout this Privacy Policy:

    JetBrains Software Product. Any software product owned or created by JetBrains and provided under JetBrains’ Subscription Agreement or other JetBrains’ Agreement EXCLUDING software that can be used by JetBrains software products but is not created by JetBrains. This may include, but not be limited to, code that extends the functionality of a JetBrains software product (e.g., a “plugin”). Any such code is governed by its own terms and conditions and privacy policy.

    JetBrains Downloadable Software Product. Any JetBrains Software Product that can be downloaded and installed on a device.

    JetBrains Software as a Service. Any JetBrains Software Product that is offered as a hosted solution, where the software is installed and maintained by JetBrains and provided to you as a service.

    JetBrains Website. Any website that is the property of JetBrains, including but not limited to everything hosted under the top-level domains jetbrains.comjetbrains.netjetbrains.orgjetbrains.ru,intellij.netkotl.in, and kotlinlang.org.

    JetBrains Account. An account you create and which JetBrains may use in communicating with you or providing JetBrains Products to you, which contains your first name, last name, email, and username. It is accessed via a username and password and can be used to manage your Personal Data.

    JetBrains Terms of Use means JetBrains Subscription Agreement, JetBrains Terms of Use for a product or a service, JetBrains License Agreement, or other agreement you have in place with JetBrains covering JetBrains Products or services.

    JetBrains Software Products, JetBrains Downloadable Software Products, JetBrains Website, and JetBrains Software as a Service may be collectively referred to as “JetBrains Products“.

    Personal Data means any data relating to an identified or identifiable natural person.

    Why We Collect Data and What We Collect

    We collect data for various reasons, such as:

    a) To provide you with software, services, or information. We may collect data which are required to provide you with the software, support, and services, including checking for license validation and updates, provision of support, reporting of issues and bugs, and other processing connected with use of JetBrains software, services, or information. You explicitly fill in the data required for you to receive the software, support, or services, whether you purchase or use JetBrains Products, use our support forums, sign up for a JetBrains Account, register for a webinar, participate in a survey, and/or subscribe to receive marketing and/or technical information and content, or these data are collected in the course of use of JetBrains Products. We may use third-party service providers, acting as data processors, to assist us in provisioning JetBrains Products to you or in our operations. For example, we may use third-party service providers to provide data storage and backup services. With your consent, your Personal data may also be transferred to third-party service providers, acting as separate data controllers, who provide products and services complementary to JetBrains Products (further data processing performed by these service providers is governed by their privacy policies). The legal basis for this data processing is performance of contract between you and us.

    b) To protect us from piracy and unlawful use of our software or services. We may collect data which are required to protect us from any piracy, unlawful, or unauthorized use of our software or services, or which are necessary to ensure security of our software or services, including both data provided by you (see above) and data collected in the course of use of JetBrains Products. The legal basis for this data processing is JetBrains’ legitimate interest in protection from piracy and unlawful use of JetBrains software and services.

    c) To improve our offerings based on usage. We may collect data based on your use of JetBrains Products and services, and we do not associate these data with your name. We use these data to better understand usage patterns of our products and behavior of our collective audience. At times we may share this information in aggregated anonymous form with third parties. Collection of data based on your use of JetBrains Downloadable Software Products is done only if you permit it. The legal basis for this data processing is our legitimate interest in improving our software and services.

    d) For internal evidence of JetBrains and to protect the rights and interests of JetBrains and other users. We may collect data which are required to keep evidence of provision of software and services to you, of any communication between you and us, of your contact details, of your use of our software and services, of any payments, refunds, and of any issues or disputes between you and us. We may use and disclose these data where we believe, in our sole judgment, that it is legitimate and appropriate to do so to protect our rights and interests and the rights and interests of other users of JetBrains Products or services, or where we believe there has been a violation of this Privacy Policy that could affect the interests of JetBrains or its customers. The legal basis for this data processing is our legitimate interest in keeping internal evidence and protecting the rights and interests of us and other users.

    e) To promote and market our products and services. We may use feedback that you provide voluntarily on our products or services. As permitted by applicable law, we may use this in the form of quotes or in other ways in accordance with the JetBrains Terms of Use. We also may use data that we collect and aggregate to assist us in determining appropriate marketing and advertising for our products and services. In doing so, we may share anonymous aggregated data with third parties to assist us with these efforts. With your consent or if permitted by applicable law, we may also use your contact details to send you commercial communications about our products and services. We also may use third-party service providers to assist us with our email marketing; in that case, the third-party service provider will have access to your email address, your name, and other information necessary to engage in the marketing. Such third-party service provider will act as a data processor and will not use your data for any other purpose. The legal basis for this data processing is our legitimate interest in promoting and marketing our products and services.

    f) To fulfil legal duties stipulated by accounting, taxation and other laws. We may use and disclose your personal data where required by law, such as in keeping and disclosing our accounts, in keeping and disclosing our tax records, and in response to a court order, valid subpoena, or other legal process. The legal basis for this data processing is our compliance with our legal obligations.

    You may object to the processing of your personal data for the purposes b) to e) at any time.

    Categories of data involved in data processing include:

    • names,
    • email address,
    • phone number,
    • username,
    • password,
    • cookies,
    • IP address,
    • SSH public key,
    • physical address,
    • information about subscription and payments, and
    • tax ID.

    Where appropriate, we will prompt you to give us your consent to the collection and processing of your data as described above. This may happen within JetBrains Products, on JetBrains Website, or in another environment set up by JetBrains, always in a clear and conspicuous manner. You can manage your data and opt-outs as described in the Transparency section below.

    Children

    Our products and services are not designed for and are not offered to children under the age of 13. If we discover that a person under the age of 13 has submitted information directly to us, we will endeavor to delete the information from our systems.

    Transparency

    To respect your privacy, before usage of your personal data, we will inform you about the categories of data we collect and the purposes we use it for. We will also inform you about the data management options that you may have. For this purpose, we use agreements, terms of use, and consent notices embedded in JetBrains Products and services, which are available here. Should you wish to access and manage your data, you can do so here, you can update and manage your data and also provide us with an opt-out of certain personal data collection.

    Sharing

    Collected personal data are shared based on Subscription Agreement, License Agreement, Terms of Use of a product or service in use, and this Privacy Policy. Additionally, we share collected personal data within the JetBrains group of companies described above, which act as joint data controllers and process personal data for the purposes described above.

    According to JetBrains Terms of Use covering a particular product or service, as part of the product or service functionality, collected personal data may be shared with other representatives of your company.

    We may share your data with certain third parties which help us provide you with JetBrains Products or services, or to run our business, for example to providers of data storage and backup services. We may also share your data with individual representatives of your company.

    Your personal data may also be shared with other organizations or individuals if we have obtained your consent to do so.

    We may also share your data with certain third parties if we are obliged to do so under applicable legislation (especially with tax authorities or with other government bodies exercising their statutory powers) or if such sharing is necessary to achieve the purposes defined above (especially with government bodies or with parties harmed by your illegal acts, if applicable).

    Security

    To secure your personal data, our products and services are designed with security and privacy in mind.

    We encrypt your data in transfer and at rest where it is technically feasible. External web resources are protected by SSL encryption.

    We review the processes of personal data usage before implementing them. This is done to minimize data usage and to make sure that you as the data owner is informed about the processing. When the reason for data storage expires, we remove your personal data from our servers or anonymize it for further usage. By the nature of the activity within which your data is collected, it may appear in datasets used for research. Before using the datasets for research or other purposes you are not informed of, we remove or anonymize your personal data in the datasets.

    We use partners to host our services and websites and to process your data in accordance with this Privacy Policy. While choosing the partners, we ascertain their compliance with legal regulations and security standards to make sure your data are stored in a secure location with appropriate security measures in place.

    Location of Your Information

    Any servers or services that contain personal data are located within the EU. For YouTrack InCloud, we provide the option for our customers to choose between hosting their instance in the EU or in the US. At times, JetBrains may process or transfer some of your personal data (such as name and email) to our affiliate companies outside of the EU. Any such transfer will be made in accordance with the applicable laws on data protection and this Privacy Policy and will be based on relevant adequacy decision of the European Commission, especially on standard data protection clauses or Privacy Shield decision.

    Data retention, withdrawal of approval, access to data and your rights

    If at any time you choose to cease using JetBrains Products, you may ask for your data to be removed from our servers by sending a request to privacy@jetbrains.com or via your JetBrains Account. After the data removal, we may keep pseudonyms of your personal data solely for a record about the data removal. Generally, we retain your data as long as we need to in order to achieve the purpose for which it was collected. We may retain your information if it is required to comply with legal obligations and/or defense in case of violation of JetBrains Terms of Use and/or Privacy Policies. We may also have copies of your information in application logs, weblogs, and/or backups made for security and support purposes if this is mentioned in a JetBrains Terms of Use or consent text accepted before the personal data collection. These backups will not be accessible as separately delineated information. Please note, however, that you must retain a copy of all data that you have placed on our servers in the case of any loss; further, if you cease using our software and/or services, we will not be responsible for retention of any of your data.

    You may manage your Personal Data in your JetBrains Account, including providing us with an opt-out for certain kinds of data collection. You are responsible for the correctness of the Personal Data you provide to us. We expect you to check the Personal Data you provide to us and if any inconsistency takes place, update your Personal Data or report the inconsistency to JetBrains.

    As permitted by applicable law, EU residents may request a copy of the information that we hold about them. To do so, please go to your JetBrains Account and ask for a copy through the means available there, or contact privacy@jetbrains.com. We may charge a fee in accordance with applicable law for this service.

    Moreover, as set out in locally applicable personal data protection law, you may have the right to: (i) request access to your personal data; (ii) request rectification of your personal data; (iii) request erasure of your personal data; (iv) request a restriction on the processing of your personal data; (v) request personal data portability; or (vi) object to the processing of your personal data.

    • Right of access. You may have the right to obtain from us a confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, to request access to your personal data. The information about personal data processing includes the purposes of the processing, the categories of personal data concerned, and the recipients or categories of recipient to whom your personal data have been or will be disclosed, etc. However, this is not an absolute right and the interests of other individuals may restrict your right of access. Further, you may have the right to obtain a copy of your personal data undergoing processing. For additional copies requested, we may charge a reasonable fee based on administrative costs.
    • Right to rectification. You may have the right to obtain from us the rectification of inaccurate personal data. Depending on the purposes of the processing, you may have the right to have incomplete personal data made complete, in particular by providing a supplementary statement.
    • Right to erasure (right to be forgotten). Under certain circumstances, you may have the right to require us to delete your personal data.
    • Right to a restriction on processing. Under certain circumstances, you may have the right to require us to restrict the processing of your personal data. In this case, the respective personal data will be marked and may only be processed by us for certain purposes.
    • Right to personal data portability. Under certain circumstances, you may have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format, and to transmit these personal data to another entity.
    • Right to object. Under certain circumstances, you may have the right to object, on grounds relating to their particular situation, at any time to the processing of your personal data by us and we can be required to no longer process your personal data.

    These rights can be exercised via the email address privacy@jetbrains.com.

    You may also contact JetBrains to get up-to-date information about your personal data processing and any personal data recipients.

    You may lodge a complaint related to the processing of your personal data with the competent data protection supervisory authority, i.e. in the Czech Republic the Office for Personal Data Protection, with its registered office at Pplk. Sochora 727/27, 170 00 Praha 7- Holešovice, phone number: +420 234 665 111. For more information, please visit https://www.uoou.cz.

    Changes to this Policy

    This Privacy Policy is current as of the Effective Date set forth above. We may change this Privacy Policy from time to time, so please be sure to check back periodically. We will post any changes to this Privacy Policy on JetBrains Website. If we make any changes to this Privacy Policy that materially affect our practices with regard to the personal information we have previously collected from you, we will endeavor to provide you with an advance notice of such change by highlighting the change on JetBrains Website.

    Reaching out

    If you have any questions or concerns, or you feel that this Privacy Policy has been violated in any way, please let us know immediately by contacting privacy@jetbrains.com.

  • Privacy statement

    Dit is ons volledige privacy statement. Ga voor een korte samenvatting en meer informatie over het inzien en wijzigen van jouw gegevens naar onze Privacypagina.

    1. Het privacy statement van Knab

    In dit privacy statement kun je lezen welke gegevens Knab van je verwerkt en waarom. De indeling is als volgt:

    1. Inleiding

    2. Wanneer is dit privacy statement van toepassing?

    3. Wie is verantwoordelijk voor jouw gegevens?

    4. Uitleg wettelijke grondslagen en doelstellingen.

    5. Welke gegevens verwerken wij en waarom?

    5.1 Functionaliteiten van de Knab website en app

    5.1.1 Om jou onze websites en app functionaliteiten aan te kunnen bieden

    5.2 Het afsluiten, administreren en uitvoeren van jouw overeenkomsten met Knab

    5.2.1 Om je aanvraag te beoordelen, het financieel product of dienst af te sluiten en uit te voeren

    5.2.2 Om facturen te kunnen sturen, betalingen te administreren en incasso’s te verwerken

    5.2.3 Jouw Persoonlijke omgeving

    5.3 Om contact met je te onderhouden en jouw vragen te kunnen beantwoorden

    5.3.1 Om je vragen en klachten te kunnen behandelen

    5.3.2 Het opnemen van telefoongesprekken en chatgesprekken

    5.4 Nieuwsbrieven, alerts en aanbiedingen

    5.4.1 Knab kan je met nieuwsbrieven, alerts en aanbiedingen benaderen

    5.5 Communicatie via social media

    5.5.1 Om vragen die je via social media stelt te kunnen beantwoorden

    5.5.2 Acties via social media

    5.5.3 Online conversaties over Knab

    5.6 Jouw keuze: Gepersonaliseerde informatie en aanbiedingen op websites

    5.7 Trendanalyse

    5.8 Het raadplegen van gegevens in registers

    5.9 Specifieke informatie over Financiële Tips bij het Financieel Plan

    5.9.1 Knab kan je met Financiële Tips benaderen

    5.10 Specifieke informatie over Verzekeren

    5.10.1 Registreren

    5.10.2 Om je verzekeringen handig in een overzicht te hebben en te kunnen aanpassen

    5.10.3 Om verzekeringen te vergelijken en advies te krijgen

    5.10.4 Om een Verzekercheck te laten doen op je verzekeringen

    5.10.5 Om voor jou een verzekering aan te vragen

    5.10.6 Om schadebegeleiding te kunnen uitvoeren

    5.11 Specifieke informatie over Hypotheken

    5.11.1 Aanvragen hypotheekadvies

    5.11.2 Belafspraak

    5.11.3 E-books/Checklists

    5.12 Specifieke informatie over Crowdfunding

    6. Verstrekking van jouw gegevens aan derden

    7. Beveiliging en fraudebestrijding

    8. Bewaartermijnen

    9. Vragen en verzoeken om inzage, correctie en verwijdering, beperking en overdraagbaarheid van gegevens en bewaar tegen verwerking

    9.1 Contactgegevens

    Knab respecteert jouw privacy en doet er alles aan om jouw persoonsgegevens te beschermen. We vinden het belangrijk dat onze dienstverlening transparant, persoonlijk en betrouwbaar is. We zijn dan ook voortdurend op zoek naar manieren om onze dienstverlening te verbeteren en deze zoveel mogelijk af te stemmen op jouw persoonlijke wensen en behoeften. Daarbij verwerken we jouw persoonsgegevens zorgvuldig en veilig. Bij nieuwe verwerkingen of bij belangrijke aanpassingen in de verwerkingen zullen we de effecten hiervan voor de bescherming van jouw gegevens beoordelen, waarbij we de risico’s voor jouw rechten en vrijheden meewegen. Bovendien verwerken we jouw persoonsgegevens alleen in overeenstemming met de Algemene Verordening Gegevensbescherming (‘AVG’) en de Gedragscode Verwerking Persoonsgegevens Financiële Instellingen. In de gedragscode zijn de regels van de AVG verder uitgewerkt voor banken en verzekeraars. Lees hierover meer op www.verbondvanverzekeraars.nl en www.nvb.nl.

    Het privacy statement van Knab kan wijzigen als nieuwe ontwikkelingen daartoe aanleiding geven. Het meest actuele privacy statement vind je altijd op onze website. Dit privacy statement is op 24 mei 2018 het laatst gewijzigd. We raden je aan dit privacy statement geregeld te raadplegen, zodat je op de hoogte bent van wijzigingen.

    De verwerkingen van persoonsgegevens zijn opgenomen in ons verwerkingsregister. De functionaris voor gegevensbescherming ziet erop toe dat de verwerking binnen Knab in overeenstemming is met de wet.

    2. Wanneer is dit privacy statement van toepassing?

    Dit privacy statement is van toepassing op alle gegevens die Knab verzamelt en verwerkt van (potentiële) klanten en van gebruikers van haar website, apps en andere diensten. Het kan zijn dat we een specifiek privacy statement hebben voor bepaalde producten en diensten. In dat geval geldt het specifieke privacy statement. Wij geven dat dan duidelijk in dat specifieke privacy statement aan.

    3. Wie is verantwoordelijk voor jouw gegevens?

    Knab bestaat uit twee juridische entiteiten: de producten op het gebied van sparen, betalen, beleggen en crowdfunding worden aangeboden door Aegon Bank N.V.. Aegon Bank N.V. is onderdeel van de Aegon Groep. Binnen de Aegon Groep is Aegon Nederland N.V., gevestigd te Den Haag aan het Aegonplein 50 (2591 TV) (hierna ‘Aegon’), aangewezen als verantwoordelijke voor de verwerking van persoonsgegevens van Aegon Bank N.V.. De advisering en bemiddeling voor hypotheken en verzekeringen wordt verricht door Knab Advies & Bemiddeling N.V., gevestigd te Amsterdam aan de Meeuwenlaan 98-100, (1021JL). Knab Advies & Bemiddeling N.V. is ook onderdeel van de Aegon Groep en is bij de Autoriteit Financiële Markten geregistreerd onder nummer 12020760 dan ook verantwoordelijke. Knab Advies & Bemiddeling N.V. is verantwoordelijke voor de verwerking van de persoonsgegevens die zij in het kader van de bedrijfsuitoefening verkrijgt. Beide entiteiten kunnen ook gezamenlijk verantwoordelijke zijn. De beide entiteiten worden hierna aangeduid met: ‘Knab’.

    Andere verantwoordelijken:

    Als Knab optreedt als bemiddelaar voor hypotheken en verzekeringen, zijn de hypotheekverstrekker of verzekeraar zelf een verantwoordelijke voor de verwerking van persoonsgegevens. Je kan bij hen dan informatie verkrijgen over de gegevensverwerking die zij verrichten.

    4. Uitleg wettelijke grondslagen en doelstellingen.

    In dit privacy statement beschrijven we per dienst welke persoonsgegevens Knab in het kader van de bedrijfsactiviteiten van je verwerkt en voor welke doeleinden Knab dat doet. Ook leggen we in dit privacy statement uit wat deze verwerkingen precies inhouden.

    Wettelijke grondslag Doelstelling
    Uitvoeren van de overeenkomst – Het aangaan en uitvoeren van een overeenkomst.
    Wettelijke verplichting – Voldoen aan wettelijke verplichtingen.
    Gerechtvaardigd belang – Voor het leveren van online diensten
    – Relatiemanagement & contact
    – Product- en dienstenontwikkeling en verbetering
    – Marketing
    – Veiligheid en beveiliging
    – Om fraude, misbruik en oneigenlijk gebruik te voorkomen
    – Statistische en wetenschappelijke doeleinden
    Toestemming – Voor sommige diensten meld je je apart aan. In dat geval is soms ook apart je expliciete toestemming nodig voor de verwerking van je persoonsgegevens.

    5. Welke gegevens verwerken wij en waarom?

    5.1 Functionaliteiten van de website en de apps van Knab

    Wanneer je de Knab website bezoekt of een Knab app gebruikt, verwerken wij een aantal gegevens van jou om de functionaliteiten van deze online diensten te bieden en deze technisch te beheren. In dit verband verwerken wij jouw gegevens voor de volgende doelen:

    • 5.1.1 Om jou onze websites en app functionaliteiten aan te kunnen bieden

      Wat houdt dit doel in?
      Wanneer je onze website bezoekt of onze app gebruikt, verwerken wij jouw technische gegevens om de functionaliteiten van de websites en apps te bieden. Met deze gegevens zijn onze website- en appbeheerders in staat om de websites en apps te beheren en te verbeteren. Zo kunnen zij bijvoorbeeld technische storingen oplossen of de beschikbaarheid verbeteren. Om te zorgen dat je informatie op onze websites snel en eenvoudig kunt vinden, gebruiken we ook cookies.

      Welke gegevens verwerken wij hiervoor?
      Voor dit doel verwerken wij technische gegevens zoals het IP-adres van je apparaat, bezochte web- of app-pagina’s, klik- en surfgedrag, de internetbrowser waarmee je surft, vorige/volgende bezochte sites en de duur van een bezoek of sessie.

    5.2 Het afsluiten, administreren en uitvoeren van jouw overeenkomsten met Knab

    Als je klant van ons wordt, rechtstreeks of via je adviseur of bemiddelaar, verwerken we jouw gegevens. Omdat de producten en diensten die Knab levert door wet- en regelgeving zijn gereguleerd, brengt dat met zich mee dat persoonsgegevens die Knab verzamelt en verwerkt voor het uitvoeren van de overeenkomst ook worden gebruikt voor het voldoen aan wettelijke verplichtingen. Vanwege deze wettelijke verplichtingen verzamelt en verwerkt Knab ook aanvullende persoonsgegevens van jou. Wij verwerken persoonsgegevens voor de volgende doelen:

    • 5.2.1 Om je aanvraag te beoordelen, het financieel product of dienst af te sluiten en uit te voeren

      Wat houdt dit doel in?
      Producten en diensten kun je via het online aanvraagformulier op de website van Knab of via een bemiddelaar afsluiten. Wanneer wij je aanvraag ontvangen, verwerken wij jouw gegevens om het product of de dienst af te kunnen sluiten en te administreren.

      Na ontvangst van je aanvraag, zullen we jouw aanvraag beoordelen. We doen dit op basis van de gegevens die je zelf of via je bemiddelaar aan ons hebt verstrekt. Als je aanvraag akkoord is, sturen we een bevestiging per e-mail. Wij beoordelen bijvoorbeeld je kredietwaardigheid, je risicobereidheid en je risicoprofiel. Je kunt altijd contact opnemen met onze klantenservice als je niet tevreden bent met de uitkomst.

      Knab informeert je over belangrijke ontwikkelingen voor het uitvoeren van jouw contract. Je ontvangt informatie digitaal. Je kunt per e-mail bericht krijgen als er belangrijke documenten voor je klaarstaan in je Persoonlijke omgeving, zoals jouw jaaropgave.

      Welke gegevens verwerken wij hiervoor?
      Wij verwerken gegevens zoals je naam, adresgegevens, land, geboortedatum, geslacht, Burgerservicenummer, e-mailadres, telefoonnummers, IBAN’s, gegevens van je identiteitsbewijs, in welk land je belastingplichtig bent, informatie over je financiële positie, relevante kennis en ervaring, doelstellingen en risicobereidheid, betalings- en beleggingsgegevens, score over betrouwbaarheid, persoonsgegevens over de producten en correspondentie. Voor de uitvoering van een betaling via een telefoonnummer (Knab Social) verwerken en bewaren wij persoonsgegevens van de begunstigde (telefoonnummer en IBAN). Sommige financiële producten en diensten, bij bank, verzekeren, hypotheek en crowdfunding kun je alleen ontvangen nadat je ons informatie hebt gegeven over jouw strafrechtelijk verleden. Wij vragen alleen naar je gegevens over de periode van 8 jaar voorafgaand aan de aanvraag. In verband met een verantwoord acceptatie-, risico- en fraudebeleid raadplegen wij externe en interne registers en kunnen wij jouw persoonsgegevens vastleggen in deze registers die hierna onder 5.8 worden genoemd

      Voor medische acceptatie bij verzekeringen en hypotheken kunnen ook gezondheidsgegevens nodig zijn. Die ontvangen we dan van jou zelf.

    • 5.2.2 Om facturen te kunnen sturen, betalingen te administreren en incasso’s te verwerken

      Wat houdt dit doel in?
      Wanneer je een product of dienst van Knab afneemt waarvoor je moet betalen, sturen we je per e-mail of per post facturen voor de premie en/of kosten. Wanneer jouw premie en/of kosten op onze rekening is bijgeschreven, administreren we dat je de premie en/of kosten hebt betaald.

      Bij bancaire producten administreren we betalingen op jouw bankrekening.

      Welke gegevens verwerken wij hiervoor?
      Voor dit doel verwerken we onder andere je naw-gegevens, betalingsgegevens, factuurgegevens en bankrekeningnummer in onze klantenadministratie. Ook verwerken we voor dit doel je basispremie, eventuele premies voor aanvullende dekkingen, verloning van uitkeringen en premiekorting.

    • 5.2.3 Jouw Persoonlijke Bankomgeving

      Wat houdt dit doel in?
      Zodra je over een persoonlijke gebruikersnaam en wachtwoord beschikt, krijg je toegang tot je Persoonlijke omgeving. Als je inlogt op jouw Persoonlijke omgeving, heb je op één plek een overzicht van alle producten en diensten die je bij Knab hebt afgesloten. Ook kun je hier jouw gegevens beheren, zoals het verrichten van betalingen en inzicht krijgen in je financiële situatie. Je kunt inloggen op je Persoonlijke omgeving via de Knab website en via de Knab App.

      Inloggen met een social media account
      Wanneer je toegang aanvraagt tot je Knab account kun je – waar mogelijk – ervoor kiezen je social media accounts (Facebook, Google of LinkedIn) te koppelen aan je Knab account. Als je dit doet, kun je ook via social media inloggen op je Knab account. Je hebt dan niet je gebruikersnaam of wachtwoord van Knab nodig om in te loggen. We verwerken je gegevens in dit kader alleen zodat je kunt inloggen op je Knab account. Wanneer je het socialmediaplatform voor andere zaken gebruikt, verwijzen wij je voor informatie over deze verwerkingen naar het privacybeleid van het betreffende socialmediaplatform.

      Welke gegevens verwerken wij hiervoor?
      Voor dit doel verwerken wij je inloggegevens van je Knab account (inlognaam en wachtwoord of social media-ID en persoonlijke pincode), de specificaties van de producten en diensten die je hebt afgenomen, eventuele wijzigingen die je in jouw gegevens doorvoert en andere gegevens die je ons in dit verband verstrekt. Als je aan je Persoonlijke omgeving zelf een profielfoto toevoegt slaan wij die op voor je persoonlijke gebruikservaring. Als je inlogt via jouw social-ID, ontvangt Knab ook je openbare profiel (onder meer ID, naam, gebruikersnaam en moment van de laatste update). Wij verwerken en gebruiken deze gegevens verder niet.

    5.3 Om contact met je te onderhouden en jouw vragen te kunnen beantwoorden

    Wij willen je graag een goede service bieden. Hierbij hoort ook dat we je snel te woord kunnen staan via verschillende kanalen. Zo kunnen we snel reageren als je contact met ons zoekt en kunnen we vragen of klachten in behandeling nemen. In dit verband verwerken we jouw gegevens voor de volgende doelen:

    • 5.3.1 Om je vragen en klachten te kunnen behandelen

      Wat houdt dit doel in?
      Je kunt ons via verschillende kanalen (zoals via de Knab website, per e-mail, telefoon en chat) benaderen met vragen of klachten. Als je contact met ons opneemt, zullen wij je persoonsgegevens verwerken om je vraag te beantwoorden. Je kunt ons ook benaderen via social media.

      Welke gegevens verwerken wij hiervoor?
      Voor dit doel verwerken wij je naam, contactgegevens, je correspondentie met Knab over je vraag en alle overige persoonsgegevens die je aan ons verstrekt en die nodig zijn om je vraag te beantwoorden.

    • 5.3.2 Het opnemen van telefoongesprekken en chatgesprekken

      Wat houdt dit doel in?
      Wanneer je contact hebt met de klantenservice van Knab, nemen we het telefoongesprek of de chat op. De Servicedesk van Knab neemt telefoongesprekken op voor trainings- en coachingsdoeleinden, ter verificatie van en onderzoek naar opdrachten en transacties, voor fraudebestrijding en integriteitsbewaking binnen financiële instellingen en om te kunnen voldoen aan wettelijke verplichtingen. Bij een geschil over de inhoud van opgenomen telefoon- en chatgesprekken heb je het recht om het opgenomen telefoon- of chatgesprek te beluisteren of een transcriptie daarvan te ontvangen. Indien je een inzageverzoek doet, worden de loggegevens standaard geleverd. De loggegevens laten de momenten zien wanneer je contact met de Servicedesk hebt gehad. De techniek laat op dit moment nog niet toe dat de gesprekken standaard bij inzageverzoeken kunnen worden meegeleverd. Mocht je die alsnog op een andere manier willen ontvangen, dan kan je daarom nog specifiek verzoeken en zullen wij die aan je ter beschikking stellen.
Omdat chats in de open webomgeving door ons niet aan een direct of indirect identificeerbare verzoeker kunnen worden verbonden, worden deze bij een standaard inzageverzoek niet meegeleverd.

      Welke gegevens verwerken wij hiervoor?
      Voor dit doel verwerken wij opnames van telefoon- en chatgesprekken met Knab.

    5.4 Nieuwsbrieven, alerts en aanbiedingen

    Wij sturen je graag digitale nieuwsbrieven, alerts, en aanbiedingen om je van dienst te kunnen zijn en je te helpen bij het maken van de juiste keuzes als je een product of dienst wilt afsluiten. Dat doen wij ook in het kader van gerechtvaardigd belang om jouw gegevens te mogen verwerken (zie paragraaf 4). Wij gebruiken in dit verband jouw gegevens voor de volgende doeleinden:

    • 5.4.1 Knab kan je met nieuwsbrieven, alerts en aanbiedingen benaderen
      Als je klant van ons bent, kunnen wij je via post, e-mail of telefoon benaderen met nieuwsbrieven, alerts en aanbiedingen. We kunnen je dan service verlenen en sturen je aanbiedingen, alerts of informatie over de producten en diensten van Knab. Wij kunnen je ook met aanbiedingen benaderen op socialmediaplatforms zoals Facebook en Twitter. Je kunt je hiervoor afmelden via de link onderaan de e-mail en tijdens ons telefoongesprek met jou. Je ontvangt dan geen nieuwsbrieven en aanbiedingen meer. Ook niet op social media.

      Wat houdt dit doel in?
      We verwerken je contactgegevens om je onze nieuwsbrief en aanbiedingen toe te sturen. Wil je deze nieuwsbrief en aanbiedingen niet meer ontvangen? Dan kun je je uitschrijven op de in de nieuwsbrief of aanbieding aangegeven manier.

      Welke gegevens verwerken wij hiervoor?
      Voor dit doel verwerken we je in-/uitschrijving voor de nieuwsbrief en jouw contactgegevens (zoals je e-mailadres).

    5.5 Communicatie via socialmedia

    Knab is actief op socialmediaplatforms zoals Facebook, Twitter, YouTube, Instagram en LinkedIn. Als je via social media contact opneemt met Knab, verwerken we jouw gegevens voor de volgende doelen:

    • 5.5.1 Om vragen die je via social media stelt te kunnen beantwoorden
      Je kunt op verschillende manieren met ons in gesprek gaan om informatie te verkrijgen of om vragen te stellen over je persoonlijke situatie. Als je Knab benadert via onze socialmediapagina’s, kan Knab de gegevens die je aan ons verstrekt verzamelen. Denk hierbij aan je (gebruikers)naam (social-ID), adres, e-mailadres, geslacht en bijvoorbeeld de gegevens die je in jouw vraag aan ons met ons deelt.

      Om te kunnen reageren op jouw berichten vragen we je jouw persoonsgegevens in een besloten bericht (Direct Message of e-mail) met ons te delen. Zo kunnen wij controleren of wij met de juiste persoon in gesprek zijn en dragen wij zorg voor de veiligheid van jouw gegevens. Als je gevoelige gegevens of contractgegevens aan ons vraagt, zullen wij je e-mailen of bellen. Wij wijzen je erop dat er veiligere manieren zijn om met Knab te communiceren, bijvoorbeeld telefonisch.

    • 5.5.2 Acties via social media
      Als je deelneemt aan acties op de socialmediapagina’s van Knab verwerken we jouw contactgegevens om de actie uit te kunnen voeren en je te informeren over het vervolg en de uitslag van de actie. Jouw contactgegevens worden bewaard zolang nodig is om de actie te kunnen uitvoeren. Als wij jouw gegevens willen gebruiken voor marketingactiviteiten, vragen wij daar vooraf toestemming voor. Voor de details per actie verwijzen wij je naar de actievoorwaarden van de desbetreffende actie.
    • 5.5.3 Online conversaties over Knab
      Het gebeurt weleens dat er over Knab wordt gesproken in de social media. Wij zijn erg geïnteresseerd in je mening over Knab. Op deze manier kunnen wij je in de toekomst beter van dienst zijn. Als wij op social media of andere openbare bronnen lezen dat je een vraag hebt, gaan wij graag met je in gesprek.

    5.6 Jouw keuze: gepersonaliseerde informatie en aanbiedingen op websites

    Wanneer je bij het bezoeken van onze website ervoor kiest cookies en pixels (verder ‘cookies’) te laten plaatsen, verwerken wij jouw gegevens om voor jou relevant te zijn door je informatie en advertenties te laten zien die aansluiten bij jouw interesses en voorkeuren.

    Wat houdt dit doel in?
    Wij willen zo relevant mogelijk voor je zijn en proberen de website aan te passen aan jouw voorkeuren. Dit kunnen wij doen door bij bezoek van de website cookies te plaatsen als je hiervoor toestemming hebt gegeven. Wij verzamelen dan via cookies gegevens over bijvoorbeeld de manier waarop je de website gebruikt, naar welke inhoud je kijkt en gegevens die je achterlaat op onze website. Vanaf het moment dat je bent ingelogd in de Persoonlijke omgeving combineren wij de reeds verzamelde gegevens via de cookies met de gegevens die van je bekend zijn. Wij analyseren jouw gegevens om op onze website en externe websites zoals socialmediaplatforms informatie en advertenties af te beelden die beter aansluiten bij jouw persoonlijke interesses en voorkeuren. Lees meer hierover in ons cookiebeleid. Je kunt altijd via cookie-instellingen in je internetbrowser jouw voorkeuren en instellingen wijzigen. Hoe? Dat staat ook in ons cookiebeleid.

    Welke gegevens verwerken wij hiervoor?
    Voor dit doel verwerken wij jouw loggegevens, gegevens die je achterlaat op de website, je klik- en surfgedrag, IP-adres en de gegevens die bekend zijn in je Persoonlijke omgeving, zoals je productbezit, adres, klantnummer en geboortedatum.

    5.7 Trendanalyse

    Knab doet op basis van geaggregeerde informatie onderzoek naar trends in het gebruik van diensten en producten. Bij het uitvoeren van deze trendanalyses verwerken wij jouw gegevens om statistische analyses te kunnen uitvoeren.

    Wat houdt dit doel in?
    Knab voert onderzoek uit naar trends in de markt door middel van statistische analyses. De informatie die wij uit deze analyses halen, gebruiken wij om ons huidige producten- en dienstenportfolio en onze processen te evalueren en deze aan te passen op basis van nieuwe ontwikkelingen. Tenzij je ons voorafgaand toestemming hebt gegeven, gebruiken wij deze onderzoeksresultaten niet voor marketing- en verkoopactiviteiten die specifiek op jou gericht zijn. De resultaten van deze analyses worden uitsluitend op geaggregeerde basis gerapporteerd. Dit betekent dat de resultaten op geen enkele manier tot individuele klanten zijn te herleiden.

    Welke gegevens verwerken wij hiervoor?

    Wij verwerken voor dit doel gegevens zoals productassortiment en saldogegevens. Voor dit doel gebruiken wij deze gegevens alleen op geaggregeerde basis.

    5.8 Het raadplegen van gegevens in registers

    In verband met een verantwoord acceptatie-, risico- en fraudebeleid raadplegen wij jouw gegevens in interne en externe registers. Hiermee kunnen wij zien of iemand de afgelopen jaren fraudeerde, probeerde te frauderen, of op een andere manier een bedreiging vormt voor de veiligheid van de financiële sector.

    Externe Verwijzings Applicatie (EVA): EVA is het gezamenlijke fraudepreventiesysteem van de Nederlandse Vereniging van Banken. Het toetsen op fraude, oplichting en witwaspraktijken is verplicht bij een kredietaanvraag.

    Interne Verwijzings Applicatie (IVA): IVA is een intern register van Aegon Nederland waarin incidenten met betrekking tot de veiligheid en integriteit van de financiële sector wordt geregistreerd. Dit register is alleen toegankelijk voor bepaalde medewerkers van Aegon Nederland en haar dochtermaatschappijen.

    Wereldwijde risicosanctielijsten. Hierop zijn o.a. gegevens opgenomen van (rechts)personen of landen waartegen (inter)nationale sancties zijn uitgevaardigd.

    5.9 Specifieke informatie over Financiële Tips bij het Financieel Plan

    Wij sturen je graag Financiële Tips als je gebruikmaakt van je Financieel Plan om je van dienst te kunnen zijn en je inzicht te geven in je financiële situatie. Wij gebruiken in dit verband jouw gegevens voor de volgende doeleinden:

      • 5.9.1 Knab kan je met Financiële Tips benaderen
        Als je gebruikmaakt van het Financieel Plan, kunnen wij je per e-mail benaderen met Financiële Tips. We kunnen je dan service verlenen zodat je inzicht hebt in je financiële situatie. Voor Financiële Tips over je Financieel Plan kun je je apart afmelden in je Persoonlijke omgeving.

    Wat houdt dit doel in?
    We verwerken je contactgegevens en de gegevens die je hebt ingevuld in je Financieel Plan om je Financiële Tips te sturen. Wij gebruiken de gegevens uit je Financieel Plan niet om te beoordelen of producten van Knab of Aegon geschikt of passend zijn. Als je geen Financiële Tips meer wilt ontvangen, kun je je uitschrijven op de aangegeven manier.

    Welke gegevens verwerken wij hiervoor?
    Voor dit doel verwerken we je in-/uitschrijving voor de Financiële Tips, je contactgegevens en de gegevens in je Financieel Plan en transactiegegevens.

    5.10 Specifieke informatie over Verzekeringen

      • 5.10.1 Registreren
        Je kunt een Knab Verzekeren account aanmaken.

    Welke gegevens verwerken wij hiervoor?
    Wij verwerken onder andere je naam, adres, woonplaats, e-mailadres, telefoonnummer, inloggegevens zoals het afgeschermde wachtwoord dat je kiest en welke aanvullende diensten je wilt gebruiken.

    • 5.10.2 Om je verzekeringen handig in een overzicht te hebben en te kunnen aanpassen

      Na registratie heb je in de app en per verzekeringsproduct de mogelijkheid om de details van je huidige verzekering in te voeren en te raadplegen. Zodat je altijd een overzicht van je producten hebt, en snel de contactgegevens kunt opzoeken. Als je een verzekering toevoegt, die niet via het account is gekocht, dan toont Knab Verzekeren automatisch voor je gemak de contactgegevens van de betreffende verzekeraar in het account.

      Daarnaast kun je met de fotoimport via de app, foto’s van je verzekeringen versturen aan Knab Verzekeren en laten invoeren. Knab Verzekeren voegt de informatie van je polissen voor je toe aan het account, deze worden vervolgens getoond in je overzicht. De app heeft hiervoor toegang nodig tot de camera van je apparaat en/ of foto’s of video’s die zijn opgeslagen op je apparaat. De toegang tot de camera vindt plaats op het moment dat je de functionaliteit inschakelt en toestemming geeft voor deze mogelijkheid.

      Gegevens van verzekeringen die je zelf invoert, of hebt laten invoeren door de fotoimport in de app, en niet via Knab Verzekeren zijn afgesloten, kun je altijd aanpassen of verwijderen. Let op: dit betekent niet dat hiermee de gegevens bij de verzekeraar worden aangepast. Dit moet je zelf regelen bij de betreffende verzekeraar. Knab Verzekeren heeft hier geen automatische koppeling mee.

      Als je een product hebt afgesloten via Knab Verzekeren, dan zijn de productgegevens automatisch in het account opgenomen. Deze gegevens kun je niet aanpassen. Als er wijzigingen in jouw productvoorwaarden zijn, zal Knab Verzekeren de wijzigingen ontvangen van de verzekeraar en deze aanpassingen doorvoeren zolang het product via Knab Verzekeren loopt. Jouw contactgegevens kun je wel aanpassen via de Servicedesk van Knab.

      Welke gegevens verwerken wij hiervoor?

      Per verzekering kun je de volgende gegevens invullen en terugzien:

      Autoverzekering: de naam van de verzekeraar, het polisnummer, de premie per maand, tevredenheid over de verzekeraar, eigen risico, schadevrije jaren (voor auto), de ingangsdatum, de einddatum, de dekkingen die het betreft en het kenteken van de verzekerde auto

      Reisverzekering: de naam van de verzekeraar, het polisnummer, de premie per maand, tevredenheid over de verzekeraar, eigen risico, de ingangsdatum, de einddatum, de dekkingen die het betreft

      Inboedelverzekering: de naam van de verzekeraar, het polisnummer, de premie per maand, tevredenheid over de verzekeraar, eigen risico, de ingangsdatum, de einddatum

      Opstalverzekering: de naam van de verzekeraar, het polisnummer, de premie per maand, tevredenheid over de verzekeraar, eigen risico, de ingangsdatum, de einddatum, het verzekerde bedrag

      Aansprakelijkheidsverzekering: de naam van de verzekeraar, het polisnummer, de premie per maand, tevredenheid over de verzekeraar, eigen risico, de ingangsdatum, de einddatum, het verzekerde bedrag

    • 5.10.3 Om verzekeringen te vergelijken en advies te krijgen

      Knab Verzekeren vergelijkt producten van verschillende aanbieders met elkaar en geeft advies over welke producten goed bij jouw wensen passen.

      Welke gegevens verwerken wij hiervoor?

      Het advies en de vergelijking zijn gebaseerd op onderstaande gegevens. We gebruiken niet de gegevens van de bestaande verzekeringen die je zelf ingevoerd hebt voor jouw totaaloverzicht.

      Autoverzekering: je leeftijd, je woonadres, je gezinssituatie, kenteken van de auto, aantal schadevrije jaren, aantal km per jaar, bezit van lening voor de auto, hoeveelheid risico die je wilt lopen, type dekkingen die je wilt/p>

      Reisverzekering: wie je binnen het gezin wilt verzekeren, je naam, je leeftijd, je woonadres, de naam en leeftijd van overige mee te verzekeren leden van het gezin, aantal dagen dat je gemiddeld op reis gaat per jaar, waarde mee te verzekeren zaken, type bagagedekking die je wilt, gewenste extra dekkingen

      Inboedelverzekering: je naam, je geboortedatum, je adres, gezinssamenstelling, hoogte van je inkomen (range), grootte van de te verzekeren woning, steen of hout, waarde mee te verzekeren bezittingen (sieraden, apparatuur, of kunst)

      We hebben voor dit doeleinde nog aanvullende informatie nodig om een vergelijking te kunnen maken en het advies te kunnen geven. Aanvullende informatie vragen we bij derden op, op basis van enkele gegevens van jou. Voor de autoverzekering hebben we details van je auto nodig op basis van je kenteken, zoals merk, waarde, vermogen, carrosserietype, bouwdatum. Voor je inboedelverzekering betekent dit dat we op basis van je adres nog enkele details van je woning nodig hebben, zoals grootte, waarde, type. Hoelang bewaren wij je gegevens hiervoor? De vergelijkingen die je gedaan hebt en het advies van ons, bewaren wij zolang je een account hebt.

    • 5.10.4 Om een Verzekercheck te laten doen op je verzekeringen

      Je kunt je aanmelden voor de Verzekercheck, een dienst die je helpt om inzicht te krijgen in je huidige auto-, woon- en reisverzekeringen.

      Wat houdt dit in?

      Deze dienst toont je of je onder, over of dubbel verzekerd bent en of je niet te veel betaalt voor je huidige verzekeringen. Via de Verzekercheck knop in het dashboard van het account verstuur je je foto’s of bestanden van je verzekeringspolissen naar Knab Verzekeren. Knab Verzekeren maakt op basis van deze informatie een rapport op, indien nodig vraagt Knab Verzekeren aanvullende gegevens om een zo volledig mogelijk rapport op te maken. Je ontvangt per e-mail de Verzekercheck die je inzicht geeft in je verzekeringen. En je tips geeft voor mogelijke verbeteringen en besparingen.

      Daarnaast voegt Knab Verzekeren de informatie van je polissen voor je toe. Deze worden getoond in je overzicht. De app heeft toegang nodig tot de camera van je apparaat en/ of foto’s of video’s die zijn opgeslagen op je apparaat. De toegang tot de camera vindt plaats op het moment dat je de functionaliteit inschakelt en toestemming geeft voor deze mogelijkheid.

      Welke gegevens verwerken wij hiervoor?

      We verwerken de gegevens uit de door jou verstuurde polissen zoals je naam, adres, woonplaats leeftijd en de specifieke gegevens van je verzekering die vermeld staan op de polis. Knab Verzekeren kan contact met je opnemen als er nog informatie ontbreekt om een volledige Verzekercheck voor je op te stellen. Dit zijn gegevens zoals inkomen, schadevrije jaren of gegevens over je huis en inboedel

    • 5.10.5 Om voor jou een verzekering aan te vragen

      Wat houdt dit in?

      Knab Verzekeren verzorgt op basis van jouw gegevens de aanvraag bij de verzekeraar, met wie we een afspraak hebben om voor jou direct de verzekering aan te vragen. Kies je een verzekering? Dan geven we jouw gegevens door aan de verzekeraar. Deze handelt jouw aanvraag verder af. Als de verzekeraar extra informatie nodig heeft om jouw aanvraag volledig te beoordelen, dan vragen wij jou de aanvullende informatie in te voeren. Als de verzekeraar de aanvraag accepteert of afwijst, krijg je het bericht per e-mail en een bericht in de app/account of de verzekering gesloten is. Als je pushberichten hebt aanstaan, ontvang je dat bericht ook op die manier. Gesloten verzekeringen worden automatisch getoond in je ‘overzicht’.

      Welke gegevens verwerken wij hiervoor?

      Wij verwerken gegevens zoals je naam, adres, woonplaats, geboortedatum, geslacht, e-mailadres, telefoonnummer, betalingsgegevens (zoals je rekeningnummer), verzekeringspecifieke gegevens zoals je kenteken, type auto en meldcode van de auto, het aantal schadevrije jaren, kenmerken van je woning, reisgegevens, de datum waarop je de verzekering wilt laten ingaan, welke aanvullende dekking je kiest, je premie en poliskosten. Wij vragen bij alle verzekeringen naar strafrechtelijke gegevens in verband met de eisen van acceptatie van de verzekeraars. We vragen alleen deze gegevens over de periode van 8 jaar voorafgaand aan de aanvraag.

    • 5.10.6 Om schadebegeleiding te kunnen uitvoeren

      Heb je schade? Dan kun je direct contact opnemen met je verzekeraar. Je kunt ook via Knab Verzekeren je schade melden. Dan helpen wij je op weg.

      Wat houdt dit in?

      Wanneer je betrokken bent geweest bij een ongeluk, of op een andere manier schade hebt geleden, dan kun je direct contact opnemen met de verzekeraar. Als je wilt, kun je ook de schade via Knab Verzekeren melden. Dan helpen wij je op weg.

      Welke gegevens verwerken wij hiervoor?

      We verwerken voor dit doel het ingevulde formulier ‘schade melden’ waar eventuele door jou aangeleverde foto’s onderdeel van kunnen uitmaken. Op het formulier staan je naam, adres en woonplaats, telefoon, e-mailadres, polisnummer, een omschrijving van wat er is gebeurd en je ingevulde schadeformulier. Daarnaast verwerken we je verzekeringsgegevens, zoals je dekking en schadevrije jaren.

    5.11 Specifieke informatie voor Hypotheken

    Knab verleent advies- en bemiddelingsdiensten op het gebied van hypotheken.

    Je kunt door het aanmaken van een persoonlijk hypotheekomgeving een Knab Hypotheken account aanmaken. Zonder account kun je geen hypotheek advies aanvragen. Wel kun je veel mogelijkheden ontdekken. De gegevens die je zonder account invoert worden lokaal versleuteld op je eigen device opgeslagen. Via de website worden de gegevens verwijderd als een pagina opnieuw geladen wordt (refresh) of als je (opnieuw) achter de browser naar de website surft. Zodra je verzoekt om de door jou gemaakte berekening te e-mailen, worden de gegevens opgeslagen om te kunnen versturen.

    • 5.11.1 Aanvragen hypotheekadvies

      Met een account kun je een uitgebreide hypotheekberekening maken en kun je in een beveiligde omgeving je documenten uploaden nodig voor het aanvragen van hypotheekadvies.

      Knab Hypotheken verzorgt op basis van jouw gegevens de aanvraag bij de aanbieder van hypotheken, met wie we een afspraak hebben om voor jou direct of eventueel via een serviceprovider, het hypotheekkrediet aan te vragen. Kies je een aanbieder? Dan geven we jouw gegevens door aan de aanbieder. Deze handelt jouw aanvraag verder af. Als de aanbieder extra informatie nodig heeft om jouw aanvraag volledig te beoordelen, dan vragen wij jou de aanvullende informatie in te voeren. Als de aanbieder de aanvraag accepteert of afwijst, krijg je het bericht per e-mail.

      Welke gegevens verwerken wij hiervoor?

      Wij verwerken gegevens zoals je naam, adres, woonplaats, geboortedatum, geslacht, e-mailadres, telefoonnummer, betalingsgegevens (zoals je rekeningnummer en of je hebt gekozen voor een maandelijkse of jaarlijkse automatische incasso), Burgerservicenummer, gegevens van identiteitsbewijs, en productspecifieke gegevens zoals, informatie over relevante kennis en ervaring, inkomensgegevens, waarde van de woning, werkgeversverklaring, burgerlijke staat, de datum waarop je het product wilt laten ingaan. Wij vragen bij alle verzekeringen naar strafrechtelijke gegevens. We vragen alleen deze gegevens over de periode van 8 jaar voorafgaand aan de aanvraag.

      Verzekeraars kunnen, in verband met een verantwoord acceptatie-, risico- en fraudebeleid, je gegevens raadplegen en (laten) vastleggen in het Centraal informatiesysteem (CIS) van de in Nederland werkzame verzekeraars. Dit gebeurt door Stichting CIS. Op deze manier willen verzekeraars en volmachtorganisaties risico’s beheersbaar maken en fraude tegengaan. Knab Hypotheken kan als tussenpersoon niet de gegevens in CIS raadplegen en/of vast (laten) leggen. Dit kan wel door de verzekeraar of de volmachtorganisatie worden gedaan. Zie voor meer informatie www.stichtingcis.nl. Hier vind je ook het privacyreglement van Stichting CIS. Het CIS is te bereiken via: Stichting CIS, Bordewijklaan 2, 2591 XR te Den Haag, p/a Postbus 124, 3700 AC te Zeist.

    • 5.11.2 Belafspraak

      Wanneer je Knab verzoekt om een belafspraak te maken voor inventarisatie van je financiële situatie, verstrek je Knab zelf gegevens.

      Welke gegevens verwerken wij hiervoor?

      Voor dit doel verwerken wij de volgende gegevens naam, telefoon, e-mailadres, wat je huidige woningsituatie is, nieuwe hypotheek en hoever je bent in de aankoopfase.

    • E-books/Checklists

      Heb jij op onze website een formulier ingevuld, bijvoorbeeld omdat je een e-book of een checklist hebt gedownload? Dan hebben wij ook de gegevens die jij hier hebt ingevoerd, zoals je naam en e-mailadres om je aangevraagde documenten, tips, aanbiedingen en informatie voor (toekomstige) huiseigenaren te kunnen toesturen.

    5.12 Specifieke informatie voor Crowdfunding

    Knab Crowdfunding brengt ondernemers en investeerders met een investeringsbehoefte bij elkaar. Je kunt je voor deze dienst registreren. Via een online platform kunnen Knab klanten investeren in bedrijfsleningen via crowdfunding. Klanten investeren in bedrijven van ondernemers voor de realisatie van hun (voorgenomen) bedrijfsactiviteiten. Knab Crowdfunding wordt aangeboden in samenwerking met Collin Crowdfund N.V. Collin beoordeelt de leningaanvragen, beheert de leningen en faciliteert de financiële afwikkeling ervan. Knab is hier niet bij betrokken en draagt hier geen verantwoordelijkheid voor. Je kunt alleen in Knab Crowdfunding leningen investeren via een Knab Crowdfunding rekening bij Knab.

    In het kader van de uitvoering van de overeenkomst vindt uitwisseling van gegevens plaats tussen Collin en Knab. Collin is de verantwoordelijke voor de verwerking van persoonsgegevens van Knab Crowdfunding. De contactgegevens van Collin Crowdfund N.V. zijn Groenstraat 83, 5071 EB Udenhout, e-mail: , telefoon: 085 401 6546. Collin Crowdfund heeft van de Autoriteit Financiële Markten (AFM) een ontheffing voor het bemiddelen in het aantrekken van opvorderbare gelden en staat geregistreerd onder nummer 19000013. Collin beheert de persoonsgegevens van Knab Crowdfunding.

    Welke gegevens verwerken wij hiervoor?

    Voor deze dienst bezitten beide partijen de specifiek door jou geregistreerde gegevens, en je basisgegevens zoals naam, adres, woonplaats, telefoonnummer en e-mailadres. Deze gegevens hebben we nodig om onze dienstverlening uit te voeren en om contact met jou op te kunnen nemen als zich een investering heeft aangemeld en je op de hoogte te houden van nieuwe en jouw reeds gedane investeringen.

    Wanneer jij via Knab Crowdfunding als ondernemer een lening aanvraagt, weten wij onder andere de hoogte van jouw leenbedrag, het doel van de lening en je KvK-nummer.

    Knab heeft het recht om tijdens het proces voor de aanvraag van leningen controles uit te voeren op het klantacceptatieproces van Collin voor ondernemers. Knab zal de ondernemer en Collin informeren als de uitkomst van de controle van het klantacceptatieproces negatief is. In dat geval wordt de leningaanvraag altijd afgewezen. Knab deelt de uitkomst van controles van het klantacceptatieproces met Collin, waarbij de reden van een eventuele negatieve uitkomst niet met Collin wordt gedeeld.

    Raadpleeg voor meer informatie over de verwerking van gegevens die wij met Collin uitwisselen het privacy statement van Collin op www.collincrowdfund.nl.

    6. Verstrekking van jouw gegevens aan derden

    Knab schakelt bij de uitvoering van de dienstverlening en andere bedrijfsactiviteiten derden in (zoals postverzending, drukkerijen, hostingdiensten en automatiseringsdienstverleners). Voor zover deze derden bij het uitvoeren van de betreffende diensten en bedrijfsactiviteiten jouw gegevens verwerken, treft Knab de vereiste contractuele, technische en organisatorische maatregelen om te verzekeren dat jouw gegevens uitsluitend worden verwerkt voor zover dit in dit kader noodzakelijk is. In ieder geval zullen deze derde partijen jouw gegevens alleen verwerken in overeenstemming met de toepasselijke wet- en regelgeving. Knab kan in het kader van een verantwoord acceptatie,- risico- en fraudebeleid je persoonsgegevens aan Experian Nederland B.V. te Den Haag (Experian) verstrekken. De gegevens worden niet door Experian gebruikt ter verrijking van hun database(s). Heb je vragen over de verwerking van persoonsgegevens bij Experian? Neem dan contact op met Experian via 0900-EXPERIAN of kijk op www.experian.nl.

    Omdat Knab deel uitmaakt van Aegon, een wereldwijde organisatie, kunnen jouw gegevens ook worden doorgegeven naar ontvangers in landen buiten de Europese Economische Ruimte. Knab zal in dergelijke gevallen passende maatregelen nemen die redelijkerwijs nodig zijn om te waarborgen dat jouw gegevens adequaat worden beschermd.

    Knab kan jouw gegevens verstrekken aan zakelijke partners, zoals jouw bemiddelaar, die je adviseert of bemiddelt tussen jou en Knab.

    De overheid

    Knab deelt vanuit een wettelijke verplichting persoonsgegevens met overheidsorganisaties. Deze organisaties hebben je persoonsgegevens nodig voor hun taken, zoals voor je belastingaangifte en om witwassen of terrorisme te bestrijden. Veel van deze taken zijn vastgelegd in aparte wetten zoals de ‘Wet ter voorkoming van witwassen en financieren terrorisme’ (Wwft).

    Toezichthouders

    Toezichthouders, zoals De Nederlandse Bank, de Autoriteit Financiële Markten, de Autoriteit Persoonsgegevens of de Autoriteit Consument en Markt mogen speciale onderzoeken doen bij financiële instellingen. Daartoe kunnen zij persoonsgegevens opvragen als zij informatie nodig hebben over bepaalde klanten of groepen van klanten.

    Zakelijke dienstverleners

    Wij kunnen jouw gegevens verstrekken aan zakelijke dienstverleners, zoals notarissen, herverzekeraars, re-integratiebureaus, expertisebureaus en financiers. Wanneer je daarom vraagt zullen wij je persoonsgegevens ook delen met je advocaat of zaakwaarnemer.

    Voor zover deze derden bij het uitvoeren van de betreffende diensten en bedrijfsactiviteiten je gegevens verwerken, treffen wij de vereiste contractuele, technische en organisatorische maatregelen om te verzekeren dat jouw gegevens uitsluitend worden verwerkt voor zover dit in dit kader noodzakelijk is. In ieder geval zullen deze derde partijen jouw gegevens alleen verwerken in overeenstemming met de toepasselijke wet- en regelgeving.

    Overstapservice voor betaalrekeningen:

    Als je ons verzoekt om mee te werken aan de Overstapservice delen wij ter uitvoering van de Overstapservice gegevens met je oude bank (als je naar ons overstapt) of met je nieuwe bank (als je overstapt naar een andere bank). Daarnaast informeren wij je oude bank en alle partijen die eerder bij jou incasseerden over je nieuwe bankrekening.

    Welke gegevens verwerken wij hiervoor?

    Voor de uitvoering van de Overstapstapservice worden de volgende gegevens gedeeld:

    – De nieuwe bank deelt gegevens uit je aanvraag met de oude bank.

    – De oude bank stuurt de bijschrijvingen op je oude betaalrekening door naar de nieuwe bank.

    – Incasso’s die nu van je oude betaalrekening worden afgeschreven, worden doorgegeven aan je nieuwe bank en afgeschreven van je nieuwe betaalrekening.

    – Je nieuwe rekeningnummer wordt doorgegeven aan bedrijven en organisaties die van je betaalrekening mogen incasseren. Als je ons verzoekt om mee te werken aan de Overstapservice informeren wij je oude bank en alle partijen die eerder bij jou incasseerden over je nieuwe bankrekening.

    6.1 Uitwisseling van je persoonsgegevens binnen de Aegon Groep

    Als je klant bent van Knab, kunnen je persoonsgegevens binnen de Aegon Groep worden uitgewisseld tussen ondernemingen die werken onder de naam Aegon. Dit doen wij voor een verantwoord acceptatiebeleid en om fraude te voorkomen en te bestrijden. Voor de klanten die producten op het gebied van betalen, sparen, beleggen en crowdfunding om deze een totaalpakket aan diensten en producten te kunnen bieden. Voor klanten die uitsluitend bij Knab een dienst van advies & bemiddeling voor verzekeringen en/of hypotheken afnemen, worden de persoonsgegevens binnen de Aegon Groep niet gedeeld, anders dan ten behoeve van een verantwoord acceptatiebeleid en om fraude te voorkomen en te bestrijden.

    7. Beveiliging en fraudebestrijding

    Knab heeft passende maatregelen getroffen om je persoonsgegevens te beveiligen tegen verlies of onrechtmatige verwerking. Daarnaast verwerkt Knab je gegevens om fraude te bestrijden. In verband hiermee verwerken wij jouw gegevens voor de volgende doelen:

    7.1 Beveiliging

    Knab gaat zorgvuldig om met je gegevens. Knab heeft adequate technische en organisatorische maatregelen getroffen om jouw persoonsgegevens te beveiligen tegen verlies of onrechtmatige verwerking. Denk hierbij aan informatiebeveiligingsbeleid, training van onze medewerkers, beveiligde servers en fysieke beveiliging van ruimtes waar gegevens zijn opgeslagen.Wij adviseren jou ook om zorgvuldig en vertrouwelijk met je gegevens om te gaan en je inlog- en persoonsgegevens niet publiekelijk te delen. Bij gebruik van social media adviseren wij jou je gegevens alleen via een DM (Direct Message) met ons uit te wisselen. Openbaar gedeelde persoonsgegevens op de socialmediapagina’s van Knab verwijderen wij voor zover mogelijk vanwege jouw privacy en veiligheid.

    7.2 Om fraude, misbruik en oneigenlijk gebruik te voorkomen

    Wat houdt dit doel in?
    We verwerken jouw gegevens voor fraudebestrijding en integriteitsbewaking binnen de financiële sector, zowel in het belang van onze klanten, medewerkers en organisatie als voor andere financiële instellingen buiten onze organisatie.

    In het kader van de opsporing van fraude, misbruik en oneigenlijk gebruik houden wij ons bij het verwerken van je gegevens ook aan het Protocol Incidentenwaarschuwingssysteem Financiële Instellingen.

    Welke gegevens verwerken wij hiervoor?
    Wij verwerken gegevens zoals jouw contactgegevens en gegevens met betrekking tot vermeende onrechtmatige of strafbare gedragingen.

    8. Bewaartermijn

    Knab bewaart je persoonsgegevens niet langer dan wettelijk is toegestaan en noodzakelijk is voor de verwerkelijking van de doeleinden waarvoor je gegevens worden verwerkt. Hoe lang bepaalde gegevens worden bewaard, is afhankelijk van de aard van de gegevens en de doeleinden waarvoor zij worden verwerkt. De bewaartermijn kan dus per doel verschillen.

     Bewaartermijn

    9. Vragen en verzoeken om inzage, correctie verwijdering, beperking en overdraagbaarheid van gegevens en bewaar tegen verwerking

    Via je Persoonlijke omgeving kun je op ieder moment zelf je persoonsgegevens inzien en deze laten corrigeren of verwijderen. Wil je weten of alle gegevens die Knab van je heeft ook juist zijn? Dan kun je daar navraag naar doen. Binnen een maand leveren wij een overzicht van jouw gegevens zoals die bij ons bekend zijn.

    Je kunt ons hiertoe een verzoek toesturen via service@knab.nl. Knab kan voor het verzoek tot inzage een vergoeding in rekening brengen volgens de AVG.

    Indien je een verzoek hebt voor:

    Inzage in je persoonsgegevens

    De meeste van je gegevens kun je zelf inzien via je Persoonlijke omgeving. Je mag ons vragen welke persoonsgegevens wij van je verwerken. Wij zullen deze gegevens binnen de wettelijk vastgestelde termijn klaarzetten in je Persoonlijke omgeving of – als je die niet hebt – je deze gegevens anders aanbieden.

    Rectificatie van je persoonsgegevens

    Je kunt ons vragen wijzigingen/verbeteringen aan te brengen aan je persoonsgegevens.

    Beperking van de werking van persoonsgegevens

    Onder bepaalde voorwaarden heb je het recht op beperking van het gebruik van je persoonsgegevens. Dit kun je aangeven via de consent manager binnen je Persoonlijke omgeving. Wil je geen mailing meer ontvangen? Dan kun je dat ook aangeven op de wijze zoals aangegeven in je laatst ontvangen bericht. Indien Knab je persoonsgegevens verwerkt op basis van een wettelijke verplichting of het uitvoeren van de overeenkomst dan kunnen wij het dergelijk verzoek niet honoreren.

    Het maken van bezwaar tegen de verwerking van (bepaalde) persoonsgegevens

    Je kunt bezwaar maken tegen het verwerken van je persoonsgegevens door Knab. Echter, je kunt niet tegen elke verwerking van persoonsgegevens bezwaar maken. Bepaalde persoonsgegevens worden verzameld op basis van een wettelijke grondslag en moeten we dus verwerken.

    Niet te worden onderworpen aan geautomatiseerde individuele besluitvorming / profiling

    Zodra Knab gebruik zal maken van geautomatiseerde verwerkingen (zonder menselijke tussenkomst bij de besluitvorming) van je persoonsgegevens waarin je persoonlijke aspecten meewegen in het genomen besluit, kun je daartegen bezwaar maken. Indien je daartegen bezwaar maakt, nemen wij je verzoek binnen de wettelijk vastgestelde termijn in behandeling.

    Overdracht van persoonsgegevens

    Je mag ons vragen de door jou verstrekte persoonsgegevens aan een andere organisatie over te dragen. Wij bieden deze persoonsgegevens dan binnen de wettelijk vastgestelde termijn aan.

    Het wissen van persoonsgegevens

    Onder bepaalde voorwaarden kun je ons vragen je persoonsgegevens te verwijderen. Indien wij je persoonsgegevens verwerken op basis van een wettelijke verplichting of het uitvoeren van de overeenkomst, dan kunnen we dit verzoek niet honoreren.

    9.1 Contactgegevens

    Mocht je nog vragen hebben over deze privacyverklaring dan kun je je vraag stellen door een e-mail te sturen naar de Knab Servicedesk via service@knab.nl.

    De Functionaris voor de gegevensbescherming ziet erop toe dat de verwerking binnen Knab in overeenstemming is met de wet en de gedragsregels. Er is een functionaris voor Knab Advies & Bemiddeling en een functionaris voor Aegon Bank N.V.. Deze laatste is werkzaam bij Aegon Nederland N.V. en is verantwoordelijke voor de verwerking van de verwerking van persoonsgegevens door Aegon Bank N.V. Klantverzoeken kunnen in eerste instantie worden gericht tot de Servicedesk van Knab: service@knab.nl.

    Heb je een klacht over het gebruik van je persoonsgegevens? Dan kun je dit aan ons melden via service@knab.nl.

    Indien je er met Knab niet uitkomt, dan kun je je klacht ook indienen bij de Autoriteit Persoonsgegevens:

    Autoriteit Persoonsgegevens
    T.a.v. de klachtencoördinator
    Postbus 93374
    2509 AJ DEN HAAG

  • Privacy Policy

    About

    This Privacy Policy governs the manner in which LearnDash collects, uses, maintains and discloses information collected from users (each, a “User”) of the http://www.learndash.com website (“Site”). This privacy policy applies to the Site and all products and services offered by LearnDash.

    For a summary of LearnDash and GDPR, please see this overview.

    What we collect and store

    Product Purchases

    When purchasing a product from us we will ask Users to provide information including their name, billing address, email address, credit card/payment details and account username. This information will be used to:

    • Send information about a User’s account and order
    • Process payments and prevent fraud
    • Respond to User requests, including support inquiries and refunds
    • Set up User accounts in our store
    • Comply with any legal obligations we have, such as calculating taxes
    • Send product update messages
    • Improve our offerings

    When making a purchase we will store a User’s name, and billing address, which will be used to populate the checkout for future orders.

    We generally store information about users for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for as long as a subscription account remains active with us. Inactive accounts are stored for 10 years for tax and accounting purposes. This includes User name, email address and billing address.

    Contact Forms

    A User’s name and email address are recorded when contacting our pre-sales department. We do not use the information submitted for marketing purposes unless consent is explicitly given.

    Report Downloads

    A User’s email address is added to a marketing email list when requesting a free report download. The email address provided will receive the report and marketing content from LearnDash as users give consent in exchange for the information.

    Comments

    A User’s name and email address are recorded on this site when leaving a comment on a blog post. We do not use the information submitted for marketing purposes unless consent is explicitly given.

    Analytics

    We use Clicky for website visitor analytics. We do not log any Personal Data of site visitors; IP addresses are anonymized, “Do Not Track” headers and global opt out cookies are honored, and custom data tracking is disabled.

    Cookies

    Our Site may use “cookies” to enhance User experience. A User’s web browser places cookies on their hard drive for record-keeping purposes and sometimes to track information about them. Users may choose to set their web browser to refuse cookies or to alert users when cookies are being sent. If this is done then note that some parts of the Site may not function properly.

    Who in our company has access to stored data

    Members of our team have access to the information users provide us. For example, Administrators and Managers can access:

    • Order information like what was purchased, when it was purchased, and;
    • Customer information like name, email address, and billing information.

    Administrators, Managers, and Support Representatives can access:

    • Contact information (name and email address) from submitted contact forms.

    Our team members have access to this information to provide user support.

    What we share with others

    We share information with third parties who help us provide our service, including:

    • Zoho Subscriptions: We facilitate the checkout process using Zoho Subscriptions. When checking out, some user data will be passed to Zoho Subscriptions, including name, email address, billing information, and purchase total. Please see the Zoho Subscriptions Privacy Policy for more information.
    • Stripe: We accept payments through Stripe. When processing payments, some user data will be passed to Stripe, including information required to process or support the payment, such as the purchase total and billing information. Please see the Stripe Privacy Policy for more details.
    • PayPal: We accept payments through PayPal. When processing payments, some user data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information. Please see the PayPal Privacy Policy for more details.
    • ActiveCampaign: We email customers using ActiveCampaign. When processing payments, a User’s name and email address will be added to ActiveCampaign to be used when we send email announcements about product updates and relevant company news/promotions. Users will also be added to our marketing email lists if they explicitly give consent while filling out a contact form, or when entering an email address in exchange for a free report. Please see ActiveCampaign Privacy Policy for more details.
    • MailMunch: We capture email addresses for free report downloads using MailMunch. No emails are sent from this platform but are instead passed to ActiveCampaign (see above). Please see MailMunch Privacy Policy for more details.
    • MailChimp: The newsletter opt-in option on the contact form transmits the User’s email address to MailChimp. No emails are sent from this platform but are instead passed to ActiveCampaign (see above). Please see MailChimp Privacy Policy for more details.
    • Zapier: Passing of email addresses from MailChimp to ActiveCampaign is performed by Zapier. Please see Zapier Privacy Policy for more details.
    • HelpScout: Contact form inquiries are sent to our ticketing system, HelpScout, and includes a User’s name and email address. We do not use the information submitted for marketing purposes unless consent is explicitly given.
    • Akismet: This site uses Akismet (by Automattic) to prevent comment spam on blog posts. Please see the Automattic Privacy Notice for more details.

    Personal identification information

    We may collect personal identification information from users in a variety of ways, including, but not limited to, when users visit our site, send us a message from a contact form, place an order, subscribe to the newsletter, and in connection with other activities, services, features or resources we make available on our Site.

    Users may be asked for, as appropriate, name, email address, mailing address, credit card information. Users may, however, visit our Site anonymously. We will collect personal identification information from users only if they voluntarily submit such information to us.

    Users can always refuse to supply personally identification information, except that it may prevent them from engaging in certain Site related activities. Users can request the deletion of this information by us at contact@learndash.com.

    Non-personal identification information

    We may collect non-personal identification information about users whenever they interact with our Site. Non-personal identification information may include the browser name, the type of computer and technical information about users means of connection to our Sites, such as the operating system and the Internet service providers utilized and other similar information.

    How we use collected information

    LearnDash may collect and use user personal information for the following purposes:

    • To improve customer service
      The information provided helps us respond to customer service requests and support needs more efficiently.
    • To personalize user experience
      We may use information in the aggregate to understand how our users as a group use the services and resources provided on our Site.
    • To improve our Site
      We may use feedback provided to improve our products and services.
    • To process payments
      We may use the information users provide about themselves when placing an order only to provide service to that order. We do not share this information with outside parties except to the extent necessary to provide the service.
    • To run a promotion, contest, survey or other Site feature
      To send users information they agreed to receive about topics we think will be of interest to them.
    • To send periodic emails
      We may use the email address to send User information and updates pertaining to their order. It may also be used to respond to their inquiries, questions, and/or other requests. If User decides to opt-in to our mailing list, they will receive emails that may include company news, updates, related product or service information, etc. If at any time the User would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.

    How we protect information

    We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of personal information, username, password, transaction information and data stored on our Site.

    Sensitive and private data exchange between the Site and its users happens over an SSL secured communication channel and is encrypted and protected with digital signatures.

    What rights users have over their data

    If a User has left comments on this site then the User can request to receive an exported file of the personal data that this site holds, including any data provided by the User. Users can request that this data be erased. This does not include any data we are obliged to keep for administrative, legal, or security purposes. The same rights are available for any data associated with commercial transactions made with our company.

    Sharing of personal information

    We do not sell, trade, or rent a User’s personal identification information to others. We may share generic aggregated demographic information not linked to any personal identification information regarding visitors and users with our business partners, trusted affiliates and advertisers for the purposes outlined above.We may use third-party service providers to help us operate our business and the Site or administer activities on our behalf, such as sending out newsletters or surveys. We may share information with these third parties for those limited purposes provided that users have given us permission.

    Third party websites

    Users may find advertising or other content on our Site that link to the sites and services of our partners, suppliers, advertisers, sponsors, licensors and other third parties. We do not control the content or links that appear on these sites and are not responsible for the practices employed by websites linked to or from our Site. In addition, these sites or services, including their content and links, may be constantly changing. These sites and services may have their own privacy policies and customer service policies. Browsing and interaction on any other website, including websites which have a link to our Site, is subject to that website’s own terms and policies.

    Affiliate Links

    Some blog posts and web pages within this site contain affiliate links.

    An affiliate link is used as a mechanism for revenue generation. This revenue is generated by users who click on ads or hyperlinks within this website and then subsequently make a purchase on a third party website.

    While the link usage does not increase a visitor’s purchase price, usage of the link may result in a commission that is credited to this site.

    We have chosen to recommend products and services that we personally use or have thoroughly researched.

    The opinions expressed here are not necessarily the opinions of nor reflect the views of any merchants we are affiliated with or represent via affiliate links.

    Changes to this privacy policy

    LearnDash has the discretion to update this privacy policy at any time. When we do, we will revise the updated date at the bottom of this page. We encourage users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.

    Acceptance of these terms

    By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.

    Contacting us

    If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us at:
    LearnDash
    http://www.learndash.com
    2531 Jackson Avenue
    Ann Arbor, MI 48103

    734-274-2373
    contact[at]learndash.com

    This document was last updated on May 29, 2018

  • PRIVACY POLICY

    Last Updated: May 25, 2018

    Linden Research, Inc., Linden Research International, Inc., Linden Research UK, Ltd., Tilia Inc., and Tilia Branch UK Ltd.  (collectively “Linden Lab”) respect the privacy of its online visitors and users of its websites, products and services, including communication services, (collectively, the “Services”). We recognize the importance of protecting information collected from our users and have adopted this Privacy Policy to inform you about how we gather, use, process, store and disclose your information, including personal information, in conjunction with your access and use of our Services.

    By using our Services, you confirm that you have agreed to our Terms of Service and read and understood this Privacy Policy. We will not share your personally identifiable information except as described herein.

    1. Types of Information We Collect
    2. How We Collect Your Information
    3. Use of Your Information by Linden Lab
    4. Sharing Your Information with Other Companies
    5. Your Controls, Rights and Choices
    6. Children’s Privacy
    7. Data Transfers, Security and Lawful Basis for Processing
    8. Changes to this Privacy Policy
    9. Comments and Questions

    1.   TYPES OF INFORMATION WE COLLECT

    We collect two basic types of information – personal information and anonymous information – and we may use personal and anonymous information to create a third type of information, aggregate information. Personal Information means information that identifies (whether directly or indirectly) a particular individual, such as the individual’s first and last name, postal address, e-mail address and/or telephone number. Anonymous Information means information that does not directly or indirectly identify, and cannot reasonably be used to identify, an individual (including an individual’s computing device). Aggregate Information means information about groups or categories of individuals which does not identify and cannot reasonably be used to identify an individual. We may share Aggregate and Anonymous Information with other parties without restriction.

    We collect the following categories of information:

    • Registration information you provide when you create an account, which may include personal data such as: your first name and surname, country of residence, gender, date of birth, e-mail address, username and password.
    • Transaction information you provide when you request information or purchase a product or service from us, whether on our sites or through our applications, including identification information (copy of valid passport or government-issued photo identification document, if provided to Linden Lab), your date of birth, your postal and/or residential address, telephone number and payment information. If you conduct transactions (for instance, on Second Life’s LindeX or Sansar’s SandeX or through Tilia), we may collect and retain some or all of the information related to these transactions, including transaction amount(s), parties involved, time and manner of exchange, and other transaction circumstances, such as payment method and names or emails of external third-party accounts (for example, PayPal or Skrill).
    • Information you provide in public forums on our Service. Please note that our sites and applications may offer chat, forums, community environments (including multiplayer gameplay) or other tools that do not have a restricted audience. If you provide Personal Information when you use any of these features, that Personal Information may be publicly posted and otherwise disclosed without limitation as to its use by us or by a third party. We do not require our users to include sensitive data (e.g., race, ethnicity, political opinions, religious or philosophical beliefs, membership of a trade union, physical or mental health, sexual life or criminal record) in their account. If you choose to post any such data to your account or public forums on our Service, please understand that it is visible to others as noted above. We have no obligation to keep private any sensitive information or personally identifiable information that you have made available to other users or the public using these functions. To request removal of your Personal Information from a public forum on one of our sites or applications, please contact Customer Support at help@sansar.com (Sansar) or https://lindenlab.freshdesk.com/support/tickets/new (Second Life).
    • Information sent either one-to-one or within a limited group using our message, chat, post or similar functionality, where we are permitted by law to collect this information.
    • Content, communications and other information you provide to us, view or engage with when you use our sites and applications, our applications on third-party sites or platforms (such as social networking sites) or link your profile from a third-party site or platform to your registered account. We collect information about how you use our Services, such as the types of content you view or engage with, the features you use, the actions you take, the people or accounts you interact with, and the time, frequency and duration of your activities.
    • Location information when you visit our sites or use our applications, including location information either provided by a mobile device interacting with one of our sites or applications, or associated with your internet protocol (IP) address, where we are permitted by law to process this information.
    • Usage, viewing and technical data, including your device identifier and features, IP address, web pages you visited prior to coming to our sites, proxy server, operating system, web browser and add-ons, internet service provider or your mobile carrier, and third-party user handles associated with your account when you visit our sites, use our applications on third-party sites or platforms, or open e-mails that we send.  We use log-ins, cookies, device information and IP addresses to identify you and log your use.
    • Your marketing preferences.
    • Information you share with us in connection with surveys, contents or promotions.
    • Communications that you send to us, such as customer support inquiries or other inquiries related to your account.

    Additionally, there are a few special circumstances to note:

    • Intellectual Property Claim Notices: If you notify us of an intellectual property claim, the information in your claim notice may be shared with other parties to the disagreement or third parties in our discretion and as required by law;
    • Beta Service User: If you volunteer to serve as a beta participant for our pre-commercial content, we may track bug reports and individual system performance in an effort to test our technology rigorously before it is deployed;
    • Former Customer: If you discontinue your use of our Service, we may keep your registration file in our database for use in the event that you elect to renew your use of our Service, as well as for anti-fraud and other such protective measures.

    2.   HOW WE COLLECT YOUR INFORMATION

    We collect information you provide directly to us when you request products, services or information from us, register with us, participate in public forums or other activities on our sites and applications, respond to customer inquiries or surveys, or otherwise interact with us. We also record some of this information automatically when you use our Services.  We also may receive some of this information from third parties.

    • We collect the types of information as outlined in Section 1 and when you visit our sites or applications, when you register and manage your account, when you use our Services, when you purchase a product or services from us, when you post to public forums or chats, if you send us support inquiries, intellectual property claims or other claims, complaints or inquiries, when you participate in contents or promotions, or when we ask you for information for contractual or legal reasons.
    • We collect information through technology, such as cookies and other technologies (such as web beacons and pixel tags), including when you visit our sites and applications or use our applications on third-party sites or platforms. A cookie is a small string of data which often includes an anonymous unique identifier sent to your Internet browser from a website’s computers, which is stored on your computer’s hard drive and is used to customize your use of a product or online site, keep records of your access to an online site or product, or store information needed by you on a regular basis (e.g. password retention functionality). Linden Lab (itself or through third parties acting on our behalf) use cookies for a number of purposes relating to our websites, applications and services, including to access your account information where you “login” to our websites, forums or other areas and to keep track of your website session data. You can configure your browser to accept all cookies, reject all cookies, or notify you when a cookie is set. Each browser is different, so consult the “Help” menu of your browser to learn how you change your cookie preferences. Please note that if you reject all cookies, you may not be able to use certain of our (or other companies’) web pages.
    • We participate in ad and/or affiliate networks operated by various third-party companies. These companies collect and may use certain anonymous information about your visits to our Service as a function of referring Internet traffic to our Service. We do not permit these companies to collect any Personal Information about you, however, these companies may collect your IP address. These companies may set and use cookies, web beacons, pixels and other technologies to collect anonymous information about your visits to our Service, and may otherwise aggregate, analyze and anonymize that data. If you would like to learn more about these specialized advertising technologies, the Network Advertising Initiative offers useful information about Internet advertising companies, including information about how to opt-out of certain information collection. You can opt out of interest-based targeting provided by participating ad servers through the Digital Advertising Alliance (http://youradchoices.com).
    • We acquire information from other trusted sources to update or supplement the information you provided or we collected automatically. Local law may require that you authorize the third party to share your information with us before we can acquire it.

    Please keep in mind that when you provide information to us on a third-party site or platform (for example, through our applications), the information you provide may be separately collected by the third-party site or platform. The information we collect is covered by this Privacy Policy and the information that the third-party site or platform collects is subject to the third-party site or platform’s privacy practices. Privacy choices you have made on the third-party site or platform will not apply to our use of the information we have collected directly through our applications.

    3.   USE OF YOUR INFORMATION BY LINDEN LAB

    Linden Research, Inc. (itself or in the capacity of a data processor for Linden Research UK, Ltd.) and Tilia Inc. (itself or in the capacity of a data processor) (collectively, “Linden Lab Controller”) will be the data controller for your information. Linden Lab Controller may have access to your information where it performs services on behalf of the data controller(s) (as a data processor) and, unless prohibited under applicable law, for use on its own behalf (as a data controller) for the following purposes:

    • Provide you with the products and services you request, such as create and manage your account, process payments, send your emails or other communications about your transactions and Service-related announcements, provide you with customized services based on your preferences
    • Communicate with you about your account or transactions with us and send you information about features on our sites and applications or changes to our policies
    • Consistent with local law and choices and controls that may be available to you:
      • Send you offers and promotions for our products and services or, as permitted, third-party products and services
      • Personalize content and experiences on our sites and applications
      • Provide you with advertising based on your activity on our sites and applications and on third-party sites and applications
      • Administer surveys, contest or promotions
    • Optimize or improve our products, services and operations
    • Detect, investigate and prevent activities that may violate our policies (including our Terms of Service) or be illegal, including law enforcement requests
    • Verify accounts and monitor activities within our Services to promote safety and security of our Services
    • Comply with applicable laws and regulations, including regulation related to money services business (by Tilia Inc., for example)
    • Develop, test, evaluate and improve our Services
    • Respond to your inquiries or concerns.

    Linden Lab uses cookies to perform authentication of your account, show you accurate information, personalize your experience (including communication preferences, features and customized content), enable and support our security features, help us detect malicious activity, conduct marketing campaigns and track their performance, and improve our services.

    Except under certain limited circumstances as set forth here and in our Terms of Service, Linden Lab Controller does not disclose to third parties the Personal Information or other account-related information that you provide to us without your permission. You understand, however, that Linden Lab Controller may disclose your Personal Information or other account-related information under the following circumstances:

    • If we believe in good faith that such disclosure is necessary under applicable law, or to comply with legal process served on Linden Lab;
    • In order to protect and defend the rights or interests of Linden Lab, its products and services, and/or the other users of such products and services;
    • In order to report to law enforcement authorities, or assist in their investigation of suspected illegal or wrongful activity, or to report any instance in which we believe a person may be in danger;
    • To service providers with whom we have contracted to assist us with the features or operations (such as anti-fraud functions, billing, collections, registration, customer support, e-mail delivery, age verification, or Sansar’s SandeX, Second Life’s LindeX or Tilia operations), to fulfill your service requests, offer new content or help us improve our products and/or services. Our contracts with these third parties prohibit them from using any of your Personal Information for purposes unrelated to the product or services they are providing;
    • To other third parties (a) to provide you with services you have requested, (b) to offer you information about our products or services (e.g. events or features), or (c) to whom you explicitly ask us to send your information (or about whom you are otherwise explicitly notified and consent to when using a specific service). For instance, we may provide certain information to our payment processor, to credit card associations, banks or issuers (if you are using a credit card), to PayPal (if you are using a PayPal account), or to providers of other services you request. If you choose to use these third parties’ products or services, then their use of your information is governed by their privacy policies. You should evaluate the practices of third party providers before deciding to use their services; and
    • To other business entities, should we plan to merge with or be acquired by that business entity.

    4.   SHARING YOUR INFORMATION WITH OTHER COMPANIES

    We will not share your Personal Information outside of Linden Lab except in limited circumstances, including:

    • When you allow us to share your Personal Information with another company, such as:
      • Directing us to share your Personal Information with third-party sites or platforms, such as social networking sites
      • Please note that once we share your Personal Information with another company, the information received by the other company becomes subject to the other company’s privacy practices
    • When companies perform services on our behalf, however, these companies are prohibited from using your Personal Information for purposes other than those requested by us or required by law;
    • When we share, assign or otherwise transfer Personal Information with third parties in connection with the sale of any of our products, services, assets and/or businesses, or when the ownership or control of all or part of our Services changes;
    • When we share Personal Information with third parties to enforce our Terms of Service or rules, to ensure the safety and security of our users and third parties, to comply with law enforcement or other legal process or in other cases if we believe in good faith that disclosure is required by law.

    5.   YOUR CONTROLS, RIGHTS AND CHOICES

    5.1 Data Retention

    We retain your Personal Information while each of your accounts is in existence or as needed to provide you with Services.  We also retain your Personal Information for as long as necessary to achieve the purposes described in this Privacy Policy, for example, to comply with our legal obligations.  If required by law or if the information is subject of a legal request or governmental investigation, we retain certain financial transaction information and Personal Information for as long as we are required to comply with applicable laws, regulations or such legal process or investigation.  We also retain Personal information in order to protect our and other’s rights, resolve disputes or enforce our legal terms or polices, to the extent permitted under applicable law.

    5.2 Right to Access and Control your Personal Information

    We provide you with the ability to exercise certain controls, rights and choices regarding our collection, use, process, store and sharing of your information. Individuals located in certain countries, including the European Economic Area, have certain statutory rights in relation to their personal data. In accordance with applicable law and subject to any exemptions provided by law, your controls, rights and choices may include:

    • Correct or Update: You may correct or update your account registration or your Personal Information or you may also ask us to change or update your data in certain cases, particularly if it is inaccurate;
    • Delete: You may delete your account registration or ask us to erase or delete all or some your Personal Information (for example, if it is no longer necessary to provide Services to you);
    • Object to, Limit or Restrict use of Personal Data: You may ask us to stop using all or some your Personal Information (for example if we have no legal right to keep using it) or to limit our use of it (for example, of your Personal Information is inaccurate or unlawfully held);
    • You may change your choices for subscriptions, newsletters and alerts;
    • You may choose whether to receive offers and promotions, or other marketing, from us for our products and services, or products and services that we think may be of interest to you, and you have a right to object to Linden Lab’s use of your Personal Information for this purpose at any time;
    • You may choose whether to share your Personal Information with other companies so they can send you offers and promotions about their products and services;
    • You may choose whether to receive targeted advertising from many ad networks, data exchanges, marketing analytics and other service providers by following the directions set forth above in Section 2;
    • Right to Access and/or Take Your Data: You may request access to the Personal Information we hold about you and you may ask for a copy of your Personal Information in machine-readable form.

    You may exercise your controls, rights and choices, or request access to your Personal Information, by modifying your selections on your account preferences page, following unsubscribe instructions provided in communications we send to you, or sending correspondence regarding your request(s) or the publications or services you no longer wish to receive from us to the following address:

    Linden Lab
    Attention: Privacy
    945 Battery Street
    San Francisco, CA 94111

    We will consider your request in accordance with applicable laws. Please note that, for technical reasons, there is likely to be a delay in deleting your Personal Information from our systems if you ask us to delete it.  Please be aware that such a request does not ensure complete or comprehensive removal of the content or information you have posted on our sites or that we have, and that there may be circumstances in which the law does not require or allow removal even if requested. Please be aware that if you do not allow us to collect Personal Information from you, we may not be able to deliver certain products and services to you, and some of our Services may not be able to take account of your interests and preferences.

    You may have the right to lodge a complaint with a competent supervisory authority, subject to applicable law.

    To the extent that Linden Lab’s processing of your Personal Information is subject to the General Data Protection Regulation (GDPR), Linden Lab relies on its lawful bases, described below, to process your data.

    If you collect or process Personal Information of users associated with the European Economic Area on a Linden Lab website or create or use of programs or applications that retain information about such Linden Lab users or their computers, you may also have obligations under the GDPR. You should seek independent legal advice relating to your status and obligations under the GDPR.  Nothing on this website is intended to provide you with, nor should it be used as a substitute for, legal advice.

    5.3 Account Closure

    You may close your account by contacting us at privacy@lindenlab.com.  If you choose to close your Linden Lab account, we retain information for the purposes set out in this Privacy Policy and as noted below.

    We retain your Personal Information even after you have closed your account if reasonably necessary to comply with our legal obligations (including law enforcement requests), meet regulatory requirements, resolve disputes, respond to government investigations, maintain security, prevent fraud and abuse, enforce our Terms of Service or other terms or policies, and protect our and other’s rights.  We will retain Anonymous Information and Aggregate Information after your account has been closed. As we do not control data you shared with others, such data will remain visible or accessible.

    6.   CHILDREN’S PRIVACY

    We recognize the need to provide further privacy protections with respect to Personal Information that we may collect from children on our sites and applications. Some of the features on our sites and applications are not directed towards children, and we do not knowingly collect Personal Information from children in connection with those features. When we direct certain sites, products or services toward children and intend to collect Personal Information from children, we take additional steps to protect their privacy, including:

    • Notifying parents (including guardians) about our information practices with regard to children, including the types of Personal Information we may collect from children, the uses to which we may put that information, and whether and with whom we may share that information;
    • In accordance with applicable law, obtaining parental consent for the collection, disclosure or use of Personal Information from their children, or for sending information about our products and services directly to their children;
    • Limiting our collection of Personal Information from children to no more than is reasonably necessary to participate in an online activity; and
    • Giving parents access or the ability to request access to Personal Information we have collected from their children and the ability to request that such Personal Information be changed or deleted. At anytime a parent may request that we cease to collect further Personal Information from their child or request that any Personal Information that we have collected be changed or deleted from our records, in accordance with applicable law, by sending an e-mail to our Customer Support teams at help@sansar.com (Sansar) or https://lindenlab.freshdesk.com/support/tickets/new (Second Life).

    In some instances, certain portions of our Service may allow children to submit Personal Information (such as their name and/or the child’s or his or her parent’s e-mail address) without first obtaining their parent’s consent. For example, we may collect online contact information from a child for the purpose of:

    • Obtaining parental consent and/or providing the child’s parent with any information regarding their child’s use of our Service, as required by law;
    • Responding directly to a specific request from the child on a one-time basis (for instance, in response to a customer support inquiry);
    • Responding directly more than once to a specific request from the child (for instance, to receive a newsletter or in-game communication from us), provided that in such case (i) we will use reasonable efforts to notify the child’s parent (e.g. via e-mail) of such ongoing communications with the child promptly after our initial response to the child and before making any subsequent responses to the child, and (ii) the child’s parent shall have the right to refuse further contact with the child and require the deletion of Personal Information about or collected from the child by contacting our Customer Support team;
    • Protecting the safety of a child participant on our Service, provided that we have used reasonable efforts to provide notice to the child’s parent (e.g. via e-mail). If the parent fails to respond to such notice, we may use such online contact information for the purpose stated therein; and
    • Protecting the security or integrity of our Service, to take precautions against liability, to respond to judicial process or to the extent permitted under other provisions of applicable laws, to provide information to law enforcement agencies or for an investigation on a matter related to public safety, to the extent reasonably necessary to do so.

    Parents are encouraged to spend time online with their children and to become familiar with the types of content available through our Service and on the Internet in general. Parents should regularly oversee their child’s use of e-mail and other online communications and transactional features. Control tools are available from online services and software manufacturers that can help to provide a safe online environment for children. If your child has used your credit card in connection with our Service without your permission, please contact our Customer Support teams immediately at help@sansar.com (Sansar) or https://lindenlab.freshdesk.com/support/tickets/new(Second Life).

    7.   DATA TRANSFERS, SECURITY AND LAWFUL BASIS FOR PROCESSING

    7.1 Cross Border Data Transfers

    We operate globally and may transfer your information or Personal Information to individual companies of Linden Lab or third parties in locations around the world for the purposes described in this Privacy Policy. If you are located in the European Union or other regions with laws governing data collection and use that may differ from U.S. law, please note that your information may be transferred to a country or jurisdiction that does not have the same data protection laws as your jurisdiction and you consent to the: (1) transfer of information to the U.S. or any other country in which Linden Lab or its subsidiaries, affiliates or service providers maintain facilities; and (2) the use and disclosure of information about you as described in this Privacy Policy. Whenever your Personal Information is transferred, stored or processed by us, we will take reasonable steps to safeguard the privacy of your Personal Information in accordance with applicable law.

    7.2 Security

    We implement technical, physical and organizational security safeguards designed to protect your data, from loss, misuse and unauthorized access and disclosure. We regularly monitor our systems for possible vulnerabilities and attacks. However, given the nature of electronic communications and information processing technologies, we cannot guarantee the security or safety of any information that is send to us, transmitted through the Internet or stored on our systems. There is no guarantee that data may not be accessed, disclosed, altered, or destroyed by breach by others of any of our physical, technical, or organizational safeguards.  In the event that Personal Information is compromised due to a breach of security, Linden Lab will promptly notify our users in compliance with applicable law.

    7.3 Lawful Basis for Processing

    We will collect, use, process and store your Personal Information where we have a valid lawful basis.  Our lawful bases include one or more of the following:

    • Consent (you have given Linden Lab consent, which you can change at anytime);
    • Performance of a contract (our processing is necessary for the performance of a contract we have with you to deliver the Services you have requested, to respond to your inquiries or to take specific steps before entering into a contract with you);
    • Legal obligation (processing is necessary for Linden Lab to comply with laws, regulations and regulatory authorities, court orders or law enforcement requests);
    • Vital Interest (processing is necessary to protect your vital interests or vital interests of another person);
    • Legitimate interest (improve our business or customer relationships, marketing and advertising, resolve disputes, prevent fraud and abuse, analyze and improve safety and security of our Services, enforce our Terms of Service, to anonymize and subsequently use the information).

    8.   CHANGES TO THIS PRIVACY POLICY

    From time to time, we may change this Privacy Policy to accommodate new technologies, industry practices, regulatory requirements or for other purposes. We will provide notice to you through our Services if these changes are material and, where required by applicable law, we will obtain your consent.  If you object to any changes, you may close your account. You acknowledge that your continued use of our Service after we publish or send a notice about our changes to this Privacy Policy means that the collection, use and sharing of your personal data is subject to the updated Privacy Policy.

    9.   COMMENTS AND QUESTIONS

    If you have a comment or question about this Privacy Policy or our privacy practices, please send an e-mail to privacy@lindenlab.com or write us:

    Linden Lab
    Attention: Privacy
    945 Battery Street
    San Francisco, CA 94111

    NOTICE TO CALIFORNIA RESIDENTS:

    If you are a California resident, California Civil Code Section 1798.83 permits you to request information regarding the disclosure of your Personal Information by Linden Lab to third parties for the third parties’ direct marketing purposes. With respect to these entities, this Privacy Policy applies only to their activities within the State of California. To make such a request, please send an e-mail to privacy@lindenlab.com or write us at the address listed immediately above.

  • Privacy Policy

    Effective Date: May 25, 2018

    We, MacUpdate.com Corp. (the “Company”), are aware of privacy issues that occur during the usage of products, services, and websites. Therefore we strictly follow the all data protection procedures regarding the full security of your personal information. Our privacy policy applies to:

    • using the Company’s products and services,
    • visiting the http://macupdate.com website,
    • visiting any other linked pages or application services offered by the Company.

    By doing all of the above actions, you confirm that you accept our Privacy Policy.

    The following Privacy Policy covers handling of personally identifiable information (“Personal Information”) collected by the Company when you use our products and services.

    Your California Privacy RightsWe make these disclosures to those visiting our website who reside in California which supersedes and replace any conflicting disclosures found elsewhere on our website.

    Opt-Out of Disclosure for Direct Marketing Purposes: California Civil Code Section 1798.83 permits California residents to learn the identities of entities that received their Personal Information for marketing purposes and the categories of information disclosed. You may request such information by contacting us through e-mail addressed to support@macupdate.com. Please reference California Privacy Rights in your subject line.

    Please be aware that this opt-out does not prohibit our disclosure of Personal Information for any purpose other than direct marketing. The information we collect and share may include your name, address, email address, and telephone number.

    Automatic Gathering of Information. We collect information that you provide to us online, and through websites of unaffiliated third parties.

    Automatic Gathering of Information by Third Parties: When you visit our website, third parties can collect Personally Identifiable Information about your online activities over time and across different websites pertaining to your visit to or use of our and other websites.

    Do-Not-Track Requests: California residents visiting our website may request that we do not automatically gather and track information about their online browsing movements across the Internet. Such requests are typically made through Web browser settings that control signals or other mechanisms that provide consumers the ability to exercise choice regarding the collection of Personally Identifiable Information about an individual consumer’s online activities over time and across third-party websites or online services. We currently cannot honor these requests. We may modify this Policy as our abilities change.

    Changes to Notice: By using the Service, you consent to our collection, use, and disclosure of your Personal Information you provide in accordance with this Privacy Policy. If we decide to change our Privacy Policy, we will post those changes on this page so that you are always aware of what information we collect, how we use it, and under what circumstances we disclose it. Privacy Policy changes will apply to the information collected from the date we post our revised Privacy Policy, as well as to existing information we hold.

    Effective May 2018

    Collection and Use of InformationWhile you are visiting our website or using our software, we may collect and use different types of information about you. This information is used only for fast and efficient rendering of our products and services to our customers. In addition, we may use your personal information to provide you with relevant information about the product or service that you are using, including critical updates and notifications.

    Personal Information We CollectWe gather the following data from our customers:

    Information Provided by YouYou will be required to provide your Personal Information at our website or in any other way.

    This information is:

    • Login and password;
    • Name;
    • Contact details (such as email address);
    • Communication with MacUpdate support (via emails or calls).

    You can create a MacUpdate account using sign-in services such as Facebook Connect. These services will authenticate your identity and provide you with an option to share specific personal information with us such as your name and email address to pre-populate our sign up form.

    Information Provided by You will be used for:

    • Creation of MacUpdate account;
    • Customer support CRM system;
    • Emails informing about news, updates etc.
    • Providing customer support and responding to customer requests.

    This data enables fast and efficient rendering of our products and services to our customers. In addition, it is used for communication purposes, such as notifying you about product updates or special offers.

    User information is not combined with information from other sources.

    Once you purchase our software, the information collected by our software is linked to your personal information and can be used to handle any technical, product, or customer support requests that you may send to us.

    Information Collected AutomaticallyIn addition to the information you enter yourself, we may collect some information automatically for optimizing your experience when using our product and improving the product itself, including but not limited to:

    • Device information;
    • User configuration information;
    • IP addresses;
    • Cookies;
    • Browser information.

    This data is used for the following purposes:

    • Finding out how many people visit our website and how frequently;
    • Learning how many people use our products and services;
    • Finding out which products and services are used more frequently than others;
    • Showing you the history of the pages you visited on our website;
    • Collecting some other statistical information.

    Collecting Information from ChildrenCompany’s website or services are not directed to children. We may not knowingly collect any personally identifiable information from children under 16 years of age.

    If you are under 16 years of age, then please do not use or access our product and services at any time or in any manner. Company reserves the right to delete this information if it learns that Personally Identifiable Information about or from children under the age of 16 has been collected on the services without parental consent. If you are a parent or guardian and discover that your child under the age of 16 has obtained an account on our services, then you may contact our Customer Support at support@macupdate.com and request to delete that child’s personal information.

    Information collected via MacUpdate:

    • Email address;
    • IP address;
    • Crash reports;
    • Information about your Mac (Mac OS version, Mac’s model, and serial numbers, MAC address, overall system information);
    • Information about your apps (e.g., versions, size, date of the last update, etc.);
    • Information about your app’s activity.

    Collected Information is used for:

    • Registration of the MacUpdate account;
    • Proper functioning of MacUpdate;
    • Supplying you with a list of recommended fixes/software updates.

    If you want to delete your MacUpdate account please, contact our Customer Support at support@macupdate.com.

    Information Collected via Email:Occasionally you will receive customer satisfaction surveys via email where you will be asked to provide us with your opinion and some additional personal information. It will be used solely by us for our internal usage to improve our products and services, overall, making your user experience better.

    Information that is Collected and Provided by Third Parties:Some of your Personal Information, such as your name, email address and other information (like the type of subscription you bought, it’s price, etc.; please note that we don’t collect information about your credit card number or other sensitive data), may be collected and provided to us by third parties. We will use your personal information collected in this way only in accordance with this Privacy Policy and Privacy Policy of a third party service.

    We recommend that you review the Privacy Policy of any third party service which is linked to MacUpdate to make sure that you agree to all conditions; otherwise, do not purchase or use our service.

    Data RetentionWe will retain your information for as long as your account is active or as needed to provide you services. In the event you terminate your relationship with MacUpdate, we may retain information necessary to resolve disputes, enforce our user agreement, protect our legal rights, and comply with technical and legal requirements and constraints related to the security, integrity, and operation of MacUpdate. Otherwise, we will retain your personal information for as long as reasonably necessary to provide you services, create and improve MacUpdate, comply with the law, and to run our business. If you wish to cancel your account or request that we no longer use your information to provide you services contact our Customer Support at support@macupdate.com.

    Data SharingWe may occasionally hire other companies, consultants and contractors to provide limited services on our behalf. We will only provide those companies the personal information they need to deliver the service.

    They are required to maintain the confidentiality of the information and are prohibited from using that information for any other purpose. To ensure this, we use standard contract clauses, rely on the European Commission’s adequacy decisions about certain countries, as applicable when transferring data to other countries. For example, we may share your non-identifiable information in the event of a business transfer, if it will be required by law etc.

    Sharing Your Personal InformationWe may share your information (identifiable or non-identifiable) in the event of:

    Affiliates: In some cases, we may closely cooperate with some companies and/or businesses, and may require your Personal Information for various transactions with these partners.

    Developers: We may send your data to developers whose products are presented on our website when you buy one of these products, in order to generate a license and link it to your profile. You can find information on how developers use personal data you provide to them in their privacy policy.

    Agents: We may employ other companies to act as intermediate parties for us; therefore, we may share our customers’ private information with them. These agents will not use your information for purposes other than assisting us.

    Business Transfers: Customer information belongs to the Company’s business assets. Therefore when the Company becomes owned by a third-party as the result of a merger, acquisition, reorganization, or bankruptcy, customer information is passed to this third party as well.

    Protection of the Company and Others: It may be necessary − by law, legal process, litigation, and/or requests from public and governmental authorities and institutions to disclose your Personal Information. We may also disclose information about you if we determine that such disclosure is necessary or appropriate for purposes of national security, law enforcement, or other issues of public importance.

    We may also disclose information about you if we determine that disclosure is reasonably necessary to enforce our terms and conditions or protect our operations or users.

    With Your Consent: You will be informed about other possible cases of sharing your Personal Information, and will have the right to prevent this.

    We do not sell, rent, or trade your Personal Information to anyone.

    Tracking TechnologiesThrough the use of “cookies” and other technologies, we may collect data in order to, among other things, make it easier to navigate our Site and to optimize the user experience across multiple devices.

    This data may include, but is not limited to the following:

    • The website that referred you to us;
    • The web pages you viewed on our site;
    • The advertisements you viewed and clicked on at our site;
    • Store your browser preferences such as language and currency;
    • Display content based upon what you view on our site to personalize your visit.

    CookiesWe use cookies to track your actions on our website. These small text files are stored on your hard drive and make it possible for our systems to recognize your browser. You can turn off cookies in your browser, but then you won’t have access to some essential features of our website.

    Additionally, we use third party cookies for analytical purposes. These cookies are:

    • Google Analytics;
    • Google AdSense;
    • Google Publisher Tag;
    • DoubleClick Ad Exchange-Buyer;
    • Hotjar.

    You can manage any cookies preferences at within the cookie policy settings in the browser(s) you use.

    Control of Your Personal InformationMacUpdate respects enhanced user privacy controls. We support the development and implementation of a standard “Do Not Track” browser feature, which is being designed to provide customers with control over the collection and use of information by third parties regarding their web-browsing activities. At this time MacUpdate does not respond to “Do Not Track” mechanisms. Once a standardized “Do Not Track” feature is released, MacUpdate intends to adhere to the browser settings accordingly.

    Except as otherwise described in this statement, personal information you provide on our website won’t be shared without your permission. To the extent we are legally permitted to do so, we will take reasonable steps to notify you in the event that we are required to provide your personal information to third parties as part of legal process.

    Privacy SettingsMacUpdate fully respects your privacy and will use only the minimum personal data required to improve our products or services and personalize our recommendations. You can review and manage your privacy settings by contacting our Customer Support in written via support@macupdate.com or in your Account Preferences at www.macupdate.com/member/account-preferences

    Note: In the event that you request to delete your information that is stored in our database you will no longer have access to the services associated with your account.

    SecuritySecurity of your information is critical to us, and we do our best to secure your information. However, remember that the Internet is not a secure environment, so we encourage you to be vigilant about protecting the confidentiality of your information.

    We have implemented a number of security features within the site that are intended to help prevent the unauthorized release of or access to the user information we collect online.

    As we described above, we collect different kinds of information. Specifically, it is Personally Identifiable Information and non-Personally Identifiable Information. Each kind of information has its own appropriate level of protection. For example, there is no need to protect non-Personal Information with the highest level of security.

    To protect your Personal Information, we restrict access to it to Company employees, contractors, and agents who need it to perform their job duties. In addition, those who have access to Personal Information are subject to strict contractual confidentiality obligations and may be disciplined or have their contracts terminated if they fail to meet these obligations.

    We protect your information by using physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorized access, disclosure, and alteration. Nevertheless, no one can guarantee absolute protection of your Personal Data. You must also do your part in protecting the data, systems, networks, and services that you are using.

    Please be aware that we are not responsible for the privacy policies of other websites and services that may be linked from our website.

    If you have reason to believe that your interaction with us is no longer secure, please immediately notify us by contacting us here.

    Changes To This PolicyWe will keep you up to date about any possible changes to our Privacy Policy. As soon as such changes occur, we will inform you via email and/or via our website.

    Questions?We are open to any questions about this Privacy Policy. Please address all your concerns to our Customer Support at support@macupdate.com.

  • Legal

    Privacy Policy

    Effective May 23, 2018
    View the prior version of our privacy policy (last updated November 1, 2017) here.

    MailChimp takes data privacy seriously. This privacy policy explains who we are, how we collect, share and use Personal Information, and how you can exercise your privacy rights.

    We recommend that you read this privacy policy in full to ensure you are fully informed. However, to make it easier for you to review the parts of this privacy policy that apply to you, we have divided up the document into sections that are specifically applicable to Members (Section 2), Contacts (Section 3), and Visitors (Section 4). Sections 1 and 5 are applicable to everyone.

    If you have any questions or concerns about our use of your Personal Information, then please contact us using the contact details provided at the end of Section 5.

    TRUSTe Privacy Certification
    1. The Basics

    A. About Us

    MailChimp is an online marketing platform (the “Services“) operated by The Rocket Science Group LLC, a company headquartered in the State of Georgia in the United States (“we,” “us,” “our,” and “MailChimp“).

    The Services enable our Members to, among other things, send and manage email campaigns and serve advertisements. We also provide other related services, such as real-time data analytics. Find out more about our Services here.

    B. Key Terms

    In this privacy policy, these terms have the following meanings:

    Contact” is a person a Member may contact through our Services. In other words, a Contact is anyone on a Member’s Distribution List or about whom a Member has given us information. For example, if you are a Member, a subscriber to your email marketing campaigns would be considered a Contact.

    Distribution List” is a list of Contacts a Member may upload or manage on our platform and all associated information related to those Contacts (for example, email addresses).

    Member” means any person or entity that is registered with us to use the Services.

    Personal Information” means any information that identifies or can be used to identify a Member, a Contact, or a Visitor, directly or indirectly. Examples of Personal Information include, but are not limited to, first and last name, date of birth, email address, gender, occupation, or other demographic information.

    Website(s)” means any website(s) we own and operate (such as www.mailchimp.com) or any web pages, interactive features, applications, widgets, blogs, social networks, social network “tabs,” or other online, mobile, or wireless offerings that post a link to this privacy policy.

    Visitor” means any person who visits any of our Websites.

    you” and “your” means, depending on the context, either a Member, a Contact, or a Visitor.

    2. Privacy for Members

    This section applies to the Personal Information we collect and process from a Member or potential Member through the provision of the Services. If you are not a Member, the Visitors or Contacts section of this policy may be more applicable to you and your data. In this section, “you” and “your” refer to Members and potential Members.

    A. Information We Collect

    The Personal Information that we may collect broadly falls into the following categories:

    (i) Information you provide to us: In the course of engaging with our Services, you may provide Personal Information about you and your Contacts. Personal Information is often, but not exclusively, provided to us when you sign up for and use the Services, consult with our customer service team, send us an email, integrate the Services with another website or service (for example, when you choose to connect your e-commerce account with MailChimp), or communicate with us in any other way.

    We will let you know prior to collection whether the provision of Personal Information we are collecting is compulsory or if it may be provided on a voluntary basis and the consequences, if any, of not providing the information. By giving us this information, you agree to this information being collected, used and disclosed as described in our Terms of Use and in this privacy policy.

    Learn More

    (ii) Information we collect automatically: When you use the Services, we may automatically collect certain information about your device and usage of the Services. We use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed more below, and in more detail in our Cookie Statement here.

    Learn More

    (iii) Information we collect from other sources: From time to time, we may obtain information about you or your Contacts from third-party sources, such as public databases, social media platforms, third-party data providers and our joint marketing partners. We take steps to ensure that such third parties are legally or contractually permitted to disclose such information to us.

    Learn More

    (iv) Information from the use of our mobile apps: When you use our mobile apps, we may collect certain device and usage-related information in addition to information described elsewhere in this privacy policy.

    Learn More

    B. Use of Personal Information

    We may use the Personal Information we collect through the Services or other sources for a range of reasons, including:

    • To bill and collect money owed to us by you.
    Learn More
    • To send you system alert messages.
    Learn More
    • To communicate with you about your account and provide customer support.
    Learn More
    • To enforce compliance with our Terms of Use and applicable law, and to protect the rights and safety of our Members and third parties, as well as our own. This may include developing tools and algorithms that help us prevent violations.
    Learn More
    • To meet legal requirements, including complying with court orders, valid discovery requests, valid subpoenas, and other appropriate legal mechanisms.
    • To provide information to representatives and advisors, including attorneys and accountants, to help us comply with legal, accounting, or security requirements.
    • To prosecute and defend a court, arbitration, or similar legal proceeding.
    • To respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
    • To provide, support and improve the Services. For example, this may include sharing your or your Contacts’ information with third parties in order to provide and support our Services or to make certain features of the Services available to you.
    Learn More
    • To provide suggestions to you.
    Learn More
    • For our data analytics projects. Our data analytics projects use data from MailChimp accounts, including Personal Information of Contacts, to provide and improve the Services. We use information like your sending habits and your Contacts’ details and purchase history, so we can make more informed predictions, decisions, and products for our Members. If you or your Contact prefers not to share this data, you can alter the security settings on your account (as described here) to opt out of data analytics projects, or your Contact can opt out of data analytics projects at any time by emailing us at personaldatarequests@mailchimp.com.
    Learn More
    • Combined information. We may combine Personal Information with other information we collect or obtain about you (such as information we source from our third-party partners) to serve you specifically, such as to deliver a product or service according to your preferences or restrictions, or for advertising or targeting purposes in accordance with this privacy policy. When we combine Personal Information with other information in this way, we treat it as, and apply all of the safeguards in this privacy policy applicable to, Personal Information.
    • Other purposes. To carry out other legitimate business purposes, as well as other lawful purposes about which we will notify you.

    C. Cookies and Tracking Technologies

    We and our partners may use various technologies to collect and store information when you use our Services, and this may include using cookies and similar tracking technologies, such as pixels and web beacons. For example, we use web beacons in the emails we send on your behalf. These web beacons track certain behavior such as whether the email sent through the Services was delivered and opened and whether links within the email were clicked. They also allow us to collect information such as the recipient’s IP address, browser, email client type and other similar details. We use this information to measure the performance of your email campaigns, and to provide analytics information and enhance the effectiveness of our Services. Reports are also available to us when we send email to you, so we may collect and review that information.

    Our use of cookies and other tracking technologies is discussed in more detail in our Cookie Statement here.

    D. Member Distribution Lists

    A Distribution List can be created in a number of ways, including by importing Contacts, such as through a CSV or directly from your email client. Your Distribution Lists are stored on a secure MailChimp server. We do not, under any circumstances, sell your Distribution Lists. If someone on your Distribution List complains or contacts us, we might then contact that person. You may export (download) your Distribution Lists from MailChimp at any time.

    If we detect abusive or illegal behavior related to your Distribution List, we may share your Distribution List or portions of it with affected ISPs or anti-spam organizations to the extent permitted or required by applicable law.

    If a Contact chooses to use the Forward to a Friend (FTF) link in an email campaign a Member sends, it will allow the Contact to share the Member’s email content with individuals not on the Member’s Distribution List. When a Contact forwards an email to a friend, we do not store the Contact’s email address or their friend’s email address, and no one is added to any Distribution List as a result of the FTF link. The Member who created the email campaign only sees an aggregate number of times their email campaign was forwarded by a Contact and does not have access to the email addresses used to share or receive that forwarded content.

    E. Other Data Protection Rights

    You and your Contacts may have the following data protection rights:

    • To access, correct, update or request deletion of Personal Information. MailChimp takes reasonable steps to ensure that the data we collect is reliable for its intended use, accurate, complete and up to date. As a Member, you can manage many of your individual account and profile settings within the dashboard provided through the MailChimp platform, or you may contact us directly by emailing us at personaldatarequests@mailchimp.com. You can also manage information about your Contacts within the dashboard provided through the MailChimp platform to assist you with responding to requests to access, correct, update or delete information that you receive from your Contacts.
    • In addition, individuals who are residents of the EEA can object to processing of their Personal Information, ask to restrict processing of their Personal Information or request portability of their Personal Information. You can exercise these rights by contacting us using the contact details provided in the “Questions and Concerns” section below. If any of your Contacts wishes to exercise any of these rights, they should contact you directly, or contact us as described in the “Privacy for Contacts” section below.
    • Similarly, if Personal Information is collected or processed on the basis of consent, the data subject can withdraw their consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent. If you receive these requests from Contacts, you can segment your lists within the MailChimp platform to ensure that you only market to Contacts who have not opted out of receiving such marketing.
    • The right to complain to a data protection authority about the collection and use of Personal Information. For more information, please contact your local data protection authority. Contact details for data protection authorities in the EEA are available here.

    We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection law. We may ask you to verify your identity in order to help us respond efficiently to your request. If we receive a request from one of your Contacts, we will either direct the Contact to reach out to you, or, if appropriate, we may respond directly to their request.

    3. Privacy for Contacts

    This section applies to the information we process about our Members’ Contacts as a data controller pursuant to our legitimate business interests, as explained in the “Legal Basis for Processing” section below. Our Services are intended for use by our Members. As a result, for much of the Personal Information we collect and process about Contacts through the Services, we act as a processor on behalf of our Members. MailChimp is not responsible for the privacy or security practices of our Members, which may differ from those set forth in this privacy policy. Please check with individual Members about the policies they have in place. For purposes of this section, “you” and “your” refer to Contacts.

    A. Information We Collect

    The Personal Information that we may collect or receive about you broadly falls into the following categories:

    (i) Information we receive about Contacts from our Members: A Member may provide Personal Information about you to us through the Services. For example, when a Member uploads their Distribution List or integrates the Services with another website or service (for example, when a Member chooses to connect their e-commerce account with MailChimp), or when you sign up for a Member’s Distribution List on a MailChimp signup form, they may provide us with certain contact information or other Personal Information about you such as your name, email address, address or telephone number. You may have the opportunity to update some of this information by electing to update or manage your preferences via an email you receive from a Member.

    (ii) Information we collect automatically: When you interact with an email campaign that you receive from a Member or browse or purchase from a Member’s connected store, we may collect information about your device and interaction with an email. We use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed more below, and in more detail in our Cookie Statement here.

    Learn More

    (iii) Information we collect from other sources: From time to time, we may obtain information about you from third-party sources, such as social media platforms and third-party data providers. We take steps to ensure that such third parties are legally or contractually permitted to disclose such information to us, and we use this information to provide publicly available social media information about you to Members who have enabled the “Social Profiles” feature in their MailChimp accounts.

    B. Use of Personal Information

    We may use the Personal Information we collect or receive about you for our legitimate business interests, including:

    • To enforce compliance with our Terms of Use and applicable law. This may include developing tools and algorithms that help us prevent violations.
    • To protect the rights and safety of our Members and third parties, as well as our own.
    Learn More
    • To meet legal requirements, including complying with court orders, valid discovery requests, valid subpoenas, and other appropriate legal mechanisms.
    • To provide information to representatives and advisors, including attorneys and accountants, to help us comply with legal, accounting, or security requirements.
    • To prosecute and defend a court, arbitration, or similar legal proceeding.
    • To respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
    • To provide, support and improve the Services. For example, this may include sharing your information with third parties in order to provide and support our Services or to make certain features of the Services available to our Members.
    Learn More
    • For our data analytics projects. Our data analytics projects use data from MailChimp accounts, including your Personal Information, to provide and improve the Services. We use information, like your purchase history, provided to us by Members, so we can make more informed predictions, decisions, and products for our Members. For example, we use data from MailChimp accounts to enable product recommendation, audience segmentation, and predicted demographics features for our Members. If you prefer not to share this data, you can opt out of data analytics projects at any time by emailing us at personaldatarequests@mailchimp.com.
    • Other purposes. To carry out other legitimate business purposes, as well as other lawful purposes.

    C. Cookies and Tracking Technologies

    We and our partners may use various technologies to collect and store information when you interact with a Member’s email campaign or connected store, and this may include using cookies and similar tracking technologies, such as pixels and web beacons. For example, we use web beacons in the emails we send on behalf of our Members. When you receive and engage with a Member’s campaign, web beacons track certain behavior such as whether the email sent through the MailChimp platform was delivered and opened and whether links within the email were clicked. They also allow us to collect information such as your IP address, browser, email client type, and other similar details. We use this information to measure the performance of our Members’ email campaigns, and to provide analytics information and enhance the effectiveness of our Services.

    Our use of cookies and other tracking technologies is discussed in more detail in our Cookie Statement here.

    D. Legal Basis for Processing

    We process Personal Information about you as a data controller as described in this section, where such processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. Our legitimate interests typically include: improving, maintaining, providing, and enhancing our technology, products and services; ensuring the security of the Services and our Website; and for our marketing activities.

    E. Other Data Protection Rights

    You may have the following data protection rights:

    • To access, correct, update or request deletion of your Personal Information. MailChimp takes reasonable steps to ensure that the data we collect is reliable for its intended use, accurate, complete, and up to date. You may contact us directly at any time about accessing, correcting, updating or deleting your Personal Information, or altering your data, by emailing us at personaldatarequests@mailchimp.com. We will consider your request in accordance with applicable laws.
    • In addition, if you are a resident of the EEA, you can object to processing of your Personal Information, ask us to restrict processing of your Personal Information or request portability of your Personal Information. Again, you can exercise these rights by emailing us at personaldatarequests@mailchimp.com.
    • You have the right to complain to a data protection authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority. Contact details for data protection authorities in the EEA are available here.

    As described above, for much of the Personal Information we collect and process about Contacts through the Services, we act as a processor on behalf of our Members. In such cases, if you are a Contact and want to exercise any data protection rights that may be available to you under applicable law or have questions or concerns about how your Personal Information is handled by MailChimp as a processor on behalf of our individual Members, you should contact the relevant Member that is using the MailChimp Services, and refer to their separate privacy policies.

    If you no longer want to be contacted by one of our Members through our Services, please unsubscribe directly from that Member’s newsletter or contact the Member directly to update or delete your data. If you contact us directly, we may remove or update your information within a reasonable time and after providing notice to the Member of your request.

    We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws. We may ask you to verify your identity in order to help us respond efficiently to your request.

    4. Privacy for Visitors

    This section applies to Personal Information that we collect and process through our Websites and in the usual course of our business, such as in connection with our recruitment, events, sales and marketing activities. In this section “you” and “your” refers to Visitors.

    A. Information We Collect

    (i) Information you provide to us on the Websites or otherwise: Certain parts of our Websites may ask you to provide Personal Information voluntarily. For example, we may ask you to provide certain Personal Information (such as your name, contact details, company name, profile information) in order to sign up for a free or paid MailChimp account, apply for a role with MailChimp, or otherwise submit inquiries to us. We may also collect Personal Information, such as your contact and job details and feedback, when you attend our events, take part in surveys, or through other business or marketing interactions we may have with you. You may choose to provide additional information when you communicate with us or otherwise interact with us, and we will keep copies of any such communications for our records.

    The Personal Information that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point we ask you to provide your Personal Information. We will also let you know prior to collection whether the provision of the Personal Information we are collecting is compulsory or may be provided on a voluntary basis and the consequences, if any, of not providing the information.

    (ii) Information we collect automatically through the Websites: When you visit our Websites, we may also collect certain information automatically from your device. In some countries, including countries in the European Economic Area, this information may be considered Personal Information under applicable data protection laws.

    Learn More

    B. Use of Personal Information

    We may use the information we collect through our Websites for a range of reasons, including:

    • To provide, operate, optimize, and maintain our Websites.
    • To send you information for marketing purposes, in accordance with your marketing preferences.
    • For recruitment purposes if you have applied for a role with MailChimp.
    • To respond to your online inquiries and requests, and to provide you with information and access to resources or services that you have requested from us.
    • To manage our Websites and system administration and security.
    • To improve the navigation and content of our Websites.
    • To identify any server problems or other IT or network issues.
    • To process transactions and to set up online accounts.
    • To compile aggregated statistics about site usage and to better understand the preferences of our Visitors.
    • To carry out research and development to improve our products and services.
    • To customize content and layout of the Websites.
    • To carry out other legitimate business purposes, as well as other lawful purposes.

    In addition, we may combine Personal Information with other information we collect or obtain about you (such as information we source from our third-party partners) to serve you specifically, such as to deliver a product or service according to your preferences or restrictions, or for advertising or targeting purposes in accordance with this privacy policy. When we combine Personal Information with other information in this way, we treat it as, and apply all of the safeguards in this privacy policy applicable to, Personal Information.

    C. Public Information and Third-Party Websites

    • Blog. We have public blogs on our Websites. Any information you include in a comment on our blog may be read, collected, and used by anyone. If your Personal Information appears on our blogs and you want it removed, contact us here. If we are unable to remove your information, we will tell you why.
    • Social media platforms and widgets. Our Websites include social media features, such as the Facebook Like button. These features may collect information about your IP address and which page you are visiting on our Website, and they may set a cookie to make sure the feature functions properly.
    Learn More
    • Links to third-party websites. Our Websites include links to other websites, whose privacy practices may be different from ours. If you submit Personal Information to any of those sites, your information is governed by their privacy policies. We encourage you to carefully read the privacy policy of any website you visit.
    • Contests and sweepstakes. We may, from time to time, offer surveys, contests, sweepstakes, or other promotions on our Websites or through social media (collectively, “Promotions“).
    Learn More

    D. Cookies and Tracking Technologies

    We use cookies and similar tracking technologies to collect and use Personal Information about you, including to serve interest-based advertising. For further information about the types of cookies and tracking technologies we use, why, and how you can control them, please see our Cookie Statement here.

    E. Other Data Protection Rights

    You have the following data protection rights:

    • To access, correct, update, or request deletion of your Personal Information. MailChimp takes reasonable steps to ensure that the data we collect is reliable for its intended use, accurate, complete, and up to date. You may contact us directly at any time about accessing, correcting, updating, or deleting your Personal Information, or altering your data or marketing preferences by emailing us at personaldatarequests@mailchimp.com. We will consider your request in accordance with applicable laws.
    • In addition, if you are a resident of the EEA, you can object to processing of your Personal Information, ask us to restrict processing of your Personal Information or request portability of your Personal Information. Again, you can exercise these rights by emailing us at personaldatarequests@mailchimp.com.
    • Similarly, if we have collected and processed your Personal Information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.
    • You have the right to complain to a data protection authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority. Contact details for data protection authorities in the EEA are available here.

    We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws. We may ask you to verify your identity in order to help us respond efficiently to your request.

    5. General Information

    A. How We Share Information

    We may share and disclose your Personal Information to the following types of third parties for the purposes described in this privacy policy (for purposes of this section, “you” and “your” refer to Members, Contacts, and Visitors unless otherwise indicated):

    (i) Our service providers: Sometimes, we share your information with our third-party service providers, who help us provide and support our Services and other business-related functions.

    Learn More

    (ii) Advertising partners: We may partner with third-party advertising networks and exchanges to display advertising on our Websites or to manage and serve our advertising on other sites and may share Personal Information with them for this purpose.

    Learn More

    (iii) Any competent law enforcement body, regulatory body, government agency, court or other third party where we believe disclosure is necessary (a) as a matter of applicable law or regulation, (b) to exercise, establish, or defend our legal rights, or (c) to protect your vital interests or those of any other person.

    (iv) A potential buyer (and its agents and advisors) in the case of a sale, merger, consolidation, liquidation, reorganization, or acquisition.

    Learn More

    (v) Any other person with your consent.

    B. Legal Basis for Processing Personal Information (EEA Persons Only)

    If you are from the European Economic Area, our legal basis for collecting and using the Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it.

    However, we will normally collect and use Personal Information from you where the processing is in our legitimate interests and not overridden by your data-protection interests or fundamental rights and freedoms. Typically, our legitimate interests include improving, maintaining, providing, and enhancing our technology, products, and services; ensuring the security of the Services and our Websites; and for our marketing activities.

    If you are a Member, we may need the Personal Information to perform a contractwith you. In some limited cases, we may also have a legal obligation to collect Personal Information from you.

    If we ask you to provide Personal Information to comply with a legal requirement or to perform a contact with you, we will make this clear at the relevant time and advise you whether the provision of your Personal Information is mandatory or not, as well as of the possible consequences if you do not provide your Personal Information.

    Where required by law, we will collect Personal Information only where we have your consent to do so.

    If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us using the contact details provided in the “Questions and Concerns” section below.

    C. Your Choices and Opt-Outs

    Members and Visitors who have opted in to our marketing emails can opt out of receiving marketing emails from us at any time by clicking the “unsubscribe” link at the bottom of our marketing messages.

    Also, all opt-out requests can be made by emailing us using the contact details provided in the “Questions and Concerns” section below. Please note that some communications (such as service messages, account notifications, billing information) are considered transactional and necessary for account management, and Members cannot opt out of these messages unless you cancel your MailChimp account.

    D. Our Security

    We take appropriate and reasonable technical and organizational measures to protect Personal Information from loss, misuse, unauthorized access, disclosure, alteration, and destruction, taking into account the risks involved in the processing and the nature of the Personal Information. For further information about our security practices, please see our Security page here. If you have any questions about the security of your Personal Information, you may contact us at privacy@mailchimp.com.

    MailChimp accounts require a username and password to log in. Members must keep their username and password secure, and never disclose it to a third party. Because the information in a Member’s MailChimp account is so sensitive, account passwords are hashed, which means we cannot see a Member’s password. We cannot resend forgotten passwords either. We will only provide Members with instructions on how to reset them.

    E. International Transfers

    (i) We operate in the United States

    Our servers and offices are located in the United States, so your information may be transferred to, stored, or processed in the United States. While the data protection, privacy, and other laws of the United States might not be as comprehensive as those in your country, we take many steps to protect your privacy, including offering our Members a data processing agreement.

    (ii) Data transfers from Switzerland or the EU to the United States

    MailChimp participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. We are committed to subjecting all Personal Information received from European Union (EU) member countries and Switzerland, respectively, in reliance on each Privacy Shield Framework, to each Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, and to view our certification, visit the U.S. Department of Commerce’s Privacy Shield website, here.

    A list of Privacy Shield participants is maintained by the Department of Commerce and is available here.

    MailChimp is responsible for the processing of Personal Information we receive under each Privacy Shield Framework and subsequently transfer to a third party acting as an agent on our behalf. We comply with the Privacy Shield Principles for all onward transfers of Personal Information from the EU and Switzerland, including the onward transfer liability provisions.

    With respect to Personal Information received or transferred pursuant to the Privacy Shield Frameworks, we are subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

    If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third-party dispute resolution provider TRUSTe (free of charge to you) here. Under certain conditions, more fully described on the Privacy Shield website, here, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.

    Members located in Switzerland and the EU should also request our data processing agreement here in addition to relying on MailChimp’s Privacy Shield certification.

    (iii) Members located in Australia

    If you are a Member who lives in Australia, this section applies to you. We are subject to the operation of the Privacy Act 1988 (“Australian Privacy Act“). Here are the specific points you should be aware of:

    • Where we say we assume an obligation about Personal Information, we are also requiring our subcontractors to undertake a similar obligation, where relevant.
    • We will not use or disclose Personal Information for the purpose of our direct marketing to you unless you have consented to receive direct marketing; you would reasonably expect us to use your personal details for the marketing; or we believe you may be interested in the material but it is impractical for us to obtain your consent. You may opt out of any marketing materials we send to you through an unsubscribe mechanism or by contacting us directly. If you have requested not to receive further direct marketing messages, we may continue to provide you with messages that are not regarded as “direct marketing” under the Australian Privacy Act, including changes to our terms, system alerts, and other information related to your account.
    • Our servers are located in the United States. In addition, we or our subcontractors may use cloud technology to store or process Personal Information, which may result in storage of data outside Australia. It is not practicable for us to specify in advance which country will have jurisdiction over this type of offshore activity. All of our subcontractors, however, are required to comply with the Australian Privacy Act in relation to the transfer or storage of Personal Information overseas.
    • If you think the information we hold about you is inaccurate, out of date, incomplete, irrelevant, or misleading, we will take reasonable steps, consistent with our obligations under the Australian Privacy Act, to correct that information upon your request.
    • If you are unsatisfied with our response to a privacy matter then you may consult either an independent advisor or contact the Office of the Australian Information Commissioner for additional help. We will provide our full cooperation if you pursue this course of action.

    F. Retention of Data

    We retain Personal Information where we have an ongoing legitimate business or legal need to do so. Our retention periods will vary depending on the type of data involved, but, generally, we’ll refer to these criteria in order to determine retention period:

    • Whether we have a legal or contractual need to retain the data.
    • Whether the data is necessary to provide our Services.
    • Whether our Members have the ability to access and delete the data within their MailChimp accounts.
    • Whether our Members would reasonably expect that we would retain the data until they remove it or until their MailChimp accounts are closed or terminated.

    When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymize it or, if this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.

    G. California Privacy

    Under California Law, California residents have the right to request in writing from businesses with whom they have an established business relationship, (a) a list of the categories of Personal Information, such as name, email, and mailing address, and the type of services provided to the customer that a business has disclosed to third parties (including affiliates that are separate legal entities) during the immediately preceding calendar year for the third-parties’ direct marketing purposes, and (b) the names and addresses of all such third parties. To request the above information, please contact us through our contact form or email us at privacy@mailchimp.com.

    H. Changes to this Policy

    We may change this privacy policy at any time and from time to time. The most recent version of the privacy policy is reflected by the version date located at the top of this privacy policy. All updates and amendments are effective immediately upon notice, which we may give by any means, including, but not limited to, by posting a revised version of this privacy policy or other notice on the Websites. We encourage you to review this privacy policy often to stay informed of changes that may affect you. Our electronically or otherwise properly stored copies of this privacy policy are each deemed to be the true, complete, valid, authentic, and enforceable copy of the version of this privacy policy that was in effect on each respective date you visited the Website.

    I. Questions & Concerns

    If you have any questions or comments, or if you have a concern about the way in which we have handled any privacy matter, please use our contact form to send us a message. You may also contact us by postal mail or email at:

    For EEA Residents:

    For the purposes of EU data protection legislation, The Rocket Science Group LLC d/b/a MailChimp is the controller of your Personal Information. Our Data Protection Officer can be contacted at dpo@mailchimp.com.

    For Non-EEA Residents:

    The Rocket Science Group LLC d/b/a MailChimp
    Attn. Privacy Officer
    privacy@mailchimp.com
    675 Ponce de Leon Ave NE, Suite 5000
    Atlanta, GA 30308 USA

  • Privacy policy

    INTRODUCTION

    This Privacy Policy describes how your personal information is collected, used, and shared when you visit or make a purchase from www.mathsgear.co.uk (the “Site”). It also provides information about individuals’ rights.

    PERSONAL DATA WE COLLECT

    Order information

    When you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers, Pay Pal Information), email address, and phone number. We refer to this information as “Order Information.”

    The legal basis for collecting this data is ‘by way of contract’ – we collect this order information in order to provide a product to the customer.

    Use of Order Information

    We use the Order Information that we collect generally to fulfill any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations).
    Additionally, we use this Order Information to: communicate with you or screen our orders for potential risk or fraud.

    Storage of Order Information

    Order information is stored securely in Shopify. Please read the Shopify privacy statement here:
    https://www.shopify.com/legal/privacy

    Subscriber Information

    When you opt-in to hear more information from us when you make an order, we keep the following information; name, address, email address, and phone number, in a separate subscriber data base. We refer to this information as “Subscriber Information.”

    The legal basis for collecting this data is ‘by way of consent’.

    Use of Subscriber Information

    We keep this data in order to send you information and advertising communications relating to our products or services.

    Storage of Subscriber Information

    Subscriber information is stored securely in Campaign Monitor. Please read the Campaign Monitor privacy policy here: https://www.campaignmonitor.com/policies/ – privacy-policy

    Device Information

    When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected
    information as “Device Information.” We collect Device Information using the following technologies:

    • “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org/
    • “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
    • “Web beacons,” “tags,” and “pixels” are electronic files used to record information about how you browse the Site.

    The legal basis for collecting this data is ‘legitimate interests’.

    Use of Device Information

    We use the Device Information that we collect to help us screen for potential risk and fraud (in particular your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).

    Storage of Tracking Information

    Tracking Information is stored securely in Shopify and Google Analytics. Please read the privacy statement for Shopify here: https://www.shopify.com/legal/privacy and the privacy statement for Google Analytics here: https://www.google.com/intl/en/policies/privacy

    ABOUT ALL PERSONAL DATA

    When we talk about “Personal data” from now in this Privacy Policy, we are talking about all the forms of personal data defined above.

    Sharing your personal data

    We share your Personal Information with third parties to help us use your Personal Information, as described above. For example, we use Shopify to power our online store–you can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy.

    We also use Google Analytics to help us understand how our customers use the Site – you can read more about how Google uses your Personal Information here:
    https://www.google.com/intl/en/policies/privacy/

    You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout

    Otherwise, we do not share your information with outside organisations.

    Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

    Do Not Track

    Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.

    Date Retention

    When you place an order through the Site, we will maintain your Order Information in order to provide you with the product. After that point, we will keep this information for our records unless and until you ask us to delete this
    information. See our contact details at the bottom of this policy. Equally we will keep your Subscriber Information on the subscriber data base unless you unsubscribe by clicking the link on our newsletters or by emailing us.

    Security, quality and risk management activities

    We take the security of all the data we hold very seriously and have security measures in place to protect our and our clients’ information (including personal data).

    We have a framework of policies, procedures and training in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the data we hold secure.

    Individuals’ rights

    Individuals who are European resident have certain rights over their personal data and data controllers are responsible for fulfilling these rights. These rights are listed below:

    Access to personal data – You have a right of access to personal data held by us as a data controller.

    Amendment of personal data – You have a right to update personal data submitted to us. Once we are informed that any personal data processed by us is no longer accurate, we will make corrections based on your updated information.

    Withdrawal of consent – Where we process personal data based on consent, individuals have a right to withdraw consent at any time.

    Other data subject rights – This privacy statement is intended to provide information about what personal data we collect about you and how it is used. As well as rights of access and amendment referred to above, individuals may have other rights in relation to the personal data we hold, such as a right to erasure/deletion, to restrict or object to our processing of personal data and the right to data portability.

    Complaints – We hope that you won’t ever need to, but if you do want to complain about our use of personal data, you have the right to do so and we will look into and respond to any complaints we receive.

    You also have the right to lodge a complaint with the Information Commissioner’s Office (“ICO”) (the UK data protection regulator). For further information on your rights and how to complain to the ICO, please refer to theICO website.

    European residents please note that your information will be transferred outside of Europe, including to Canada and the United States.

    How to exercise your individual rights

    To exercise any of the above rights, please do so by email to: data@mathsgear.co.uk

    or in writing to:

    Data Controller
    4 Chesnut Suite, Guardian House
    Borough Road, Godalming,
    Surrey. GU7 2AE

    Changes to this privacy statement

    We recognise that transparency is an ongoing responsibility so we will keep this privacy statement under regular review. This privacy statement was last updated on 23 May 2018.

    Data controller and contact information

    If you have any questions about this privacy statement or how and why we process personal data, please contact us at the contact details above.

  • Medium Privacy Policy

    Effective Date: May 25, 2018

    This policy explains what information we collect when you use Medium’s sites, services, mobile applications, products, and content (“Services”). It also has information about how we store, use, transfer, and delete that information. Our aim is not just to comply with privacy law. It’s to earn your trust.

    Information We Collect & How We Use It

    Medium doesn’t make money from ads. So we don’t collect data in order to advertise to you. The tracking we do at Medium is to make our product work as well as possible.

    In order to give you the best possible experience using Medium, we collect information from your interactions with our network. Some of this information, you actively tell us (such as your email address, which we use to track your account or communicate with you). Other information, we collect based on actions you take while using Medium, such as what pages you access and your interactions with our product features (like highlights, follows, and applause). This information includes records of those interactions, your Internet Protocol address, information about your device (such as device or browser type), and referral information.

    We use this information to:

    • provide, test, improve, promote and personalize Medium Services
    • fight spam and other forms of abuse
    • generate aggregate, non-identifying information about how people use Medium Services

    When you create your Medium account, and authenticate with a third-party service (like Twitter, Facebook or Google) we may collect, store, and periodically update information associated with that third-party account, such as your lists of friends or followers. We will never publish through your third-party account without your permission.

    Information Disclosure

    Medium won’t transfer information about you to third parties for the purpose of providing or facilitating third-party advertising to you. We won’t sell information about you.

    We may share your account information with third parties in some circumstances, including: (1) with your consent; (2) to a service provider or partner who meets our data protection standards; (3) with academic or non-profit researchers, with aggregation, anonymization, or pseudonomization; (4) when we have a good faith belief it is required by law, such as pursuant to a subpoena or other legal process; (5) when we have a good faith belief that doing so will help prevent imminent harm to someone.

    If we are going to share your information in response to legal process, we’ll give you notice so you can challenge it (for example by seeking court intervention), unless we’re prohibited by law or believe doing so may endanger others. We will object to requests for information about users of our services that we believe are improper.

    Data Storage

    Medium uses third-party vendors and hosting partners, such as Amazon, for hardware, software, networking, storage, and related technology we need to run Medium. We maintain two types of logs: server logs and event logs. By using Medium Services, you authorize Medium to transfer, store, and use your information in the United States and any other country where we operate.

    Third-Party Embeds

    Some of the content that you see displayed on Medium is not hosted by Medium. These “embeds” are hosted by a third-party and embedded in Medium. For example: YouTube or Vimeo videos, Imgur or Giphy gifs, SoundCloud audio files, Twitter tweets, GitHub code, or Scribd documents that appear within a Medium post. These files send data to the hosted site just as if you were visiting that site directly (for example, when you load a Medium post page with a YouTube video embedded in it, YouTube receives data about your activity). Medium does not control what data third parties collect in cases like this, or what they will do with it. So, third-party embeds on Medium are not covered by this privacy policy. They are covered by the privacy policy of the third-party service.

    Some embeds may ask you for personal information, such as your email address, through a form. We do our best to keep bad actors off of Medium. However, if you choose to submit your information to a third party this way, we don’t know what they may do with it. As explained above, their actions are not covered by this Privacy Policy. So, please be careful when you see embedded forms on Medium asking for your email address or any other personal information. Make sure you understand who you are submitting your information to and what they say they plan to do with it. We suggest that you do not submit personal information to any third-party through an embedded form.

    If you embed a form that allows submission of personal information by users, you must provide near the embedded form a prominent link to an applicable Privacy Policy that clearly states how to you intend to use any information collected. Failure to do so may lead Medium to disable the post or take other action to limit or disable your account.

    Tracking & Cookies

    We use browser cookies and similar technologies to recognize you when you return to our Services. We use them in various ways, for example to log you in, remember your preferences (such as default language), evaluate email effectiveness, allow our paywall and meter to function, and personalize content and other information.

    Medium doesn’t track you across the Internet. We track only your interactions within the Medium network (which encompasses Medium.com and custom domains hosted by Medium).

    Some third-party services that we use to provide the Medium Service, such as Google Analytics, may place their own cookies in your browser. This Privacy Policy covers use of cookies by Medium only and not the use of cookies by third parties.

    Medium complies with the “Do Not Track” (“DNT”) standard recommended by the World Wide Web Consortium. For logged-out users browsing with DNT enabled, Medium’s analytics will not receive data about you, but we will do some first-party tracking in order to customize content and provide data to third-party service providers that enable Medium Services to work. When you use Medium while logged-in to your account, we cannot comply with DNT. Here’s some more information about Medium’s Do Not Track policy.

    Modifying or Deleting Your Personal Information

    If you have a Medium account, you can access, modify or export your personal information, or delete your account here.

    To protect information from accidental or malicious destruction, we may maintain residual copies for a brief time period. But, if you delete your account, your information and content will be unrecoverable after that time. Medium may preserve and maintain copies of your information when required to do so by law.

    Data Security

    We use encryption (HTTPS/TLS) to protect data transmitted to and from our site. However, no data transmission over the Internet is 100% secure, so we can’t guarantee security. You use the Service at your own risk, and you’re responsible for taking reasonable measures to secure your account.

    Business Transfers

    If we are involved in a merger, acquisition, bankruptcy, reorganization or sale of assets such that your information would be transferred or become subject to a different privacy policy, we’ll notify you in advance so you can opt out of any such new policy by deleting your account before transfer.

    Email from Medium

    Sometimes we’ll send you emails about your account, service changes or new policies. You can’t opt out of this type of “transactional” email (unless you delete your account). But, you can opt out of non-administrative emails such as digests, newsletters, and activity notifications through your account’s “Settings” page

    When your interact with an email sent from Medium (such as opening an email or clicking on a particular link in an email), we may receive information about that interaction. We won’t email you to ask for your password or other account information. If you receive such an email, please send it to us so we can investigate.

    Changes to this Policy

    Medium may periodically update this Policy. We’ll notify you about significant changes to it. The most current version of the policy will always be here and we will archive former versions of the policy here.

    Questions

    We welcome feedback about this policy at legal@medium.com.

    Data Protection Statement for European Union Users

    Description of Processing Activity

    Medium collects and stores personal information about its users to customize their reading experience and enable personalized distribution of content. It shares minimal data with its service providers.

    Purposes of Processing

    • Provide, test, promote, and improve the services
    • Gather usage statistics of services
    • Provide customized reading experience
    • Publish and distribute user-generated content
    • Provide access to paid content
    • Pay authors in Partnership Program for certain content
    • Fight spam, fraud, and other abuse of services

    Legal Bases

    In order to provide the services, Medium collects and stores personal data about its users on the legal basis of consent given when you create an account and agree to the Privacy Policy.

    Medium also pursues its legitimate interests by collecting minimal data of logged out users to provide the services, as outlined above.

    Where Medium collects and stores personal data about non-users, it does so under performance of contract obligations with users who use the services to publish content on web sites hosted by Medium. In such cases, users authoring such content containing personal data of third parties are responsible for that content. Medium will consider related complaints in compliance with the General Data Protection Regulation’s rights of the data subject, as well as rights of expression and access to information.

    Public Nature of Personal Data

    Logged-in users may choose to interact publicly with the Medium Services in the form of clapping for a post, highlighting parts of a post, following other user accounts, sharing links on connected social media accounts, or writing original posts. Where such personal data may reveal special category protected data, it is processed on the basis that it is manifestly made public by the user. Additional information on potential consequences of such processing can be found below. If you do not agree to this public usage, do not create an account or use these features of Medium Services.

    Categories of Personal Data Collected

    Logged out users

    • Reading history
    • IP address
    • Browser information
    • DNT status

    Logged in users:

    • Username
    • Display name
    • Bio
    • Avatar image
    • Email address (non-public)
    • Session activity (security)
    • Linked social media accounts (optional)
    • IP address
    • Browser information
    • Reading history (on Medium network only)
    • Network interactions (recommends, follows, etc.)
    • Posts, responses, or series published by user

    Members:

    • Billing information and history

    Partner authors:

    • Bank account for payments
    • Business information, if applicable

    Categories of Recipients

    Medium shares minimal personal data with third-party processors in order to provide the Services. These processors offer at least the same level of data protection as that set out in this statement. This includes the following categories of recipients:

    • Hosting, Storage, & Other Infrasructure
    • Security
    • Analytics
    • Communication & Support
    • Payment Processors

    Search engines will index user profiles, public interactions, and any user-generated content. Users may also share links to your content on social media.

    Payment Processors

    Medium provides Services in conjunction with several payment processors, including: Stripe, Paypal, Google Play, and Apple Pay, through which users may pay for Medium memberships or receive payment based on participation in our Partner program. Those companies acting as payment processors may collect and store personal data related to your billing information and history in order to provide their services, and may collect and store personal data and business data to prevent fraud and other abuse.

    When you delete your Medium account, Medium deletes your personal data as outlined in this document. However, to delete your payment or billing information, you will need to do so with your payment provider, as Medium only has minimal secure access to those records as needed to provide the services.

    Embedded Content

    Medium posts may contain third-party embeds, which may in some cases collect and store personal data. The use of personal data by embedded content providers is not covered by this statement, but by the privacy policies of those sites or services.

    Existence of Automated Decision-making

    Medium collects and stores personal data about its users to customize reading. This includes automated decision-making to promote content tailored to the preferences and interests indicated by the user, and to their browsing history and network interactions.

    Medium also filters content for the purposes of fighting and preventing spam, fraud, and other forms of abuse.

    Potential Consequences of Processing

    By creating an account on Medium, users may make certain personal data about themselves public and accessible to others on their profile and through network interactions. This may in some cases constitute special category protected data which is considered manifestly made public by the user.

    Due to the public nature of information posted to Medium, it may be possible for third parties to derive identifying personal data from posts, whether by reading, inference, supplemental research, or automated extraction and analysis.

    Users are free to use their real name and information, or a pseudonym of their choosing, for their account. Users may also choose to use the service without posting data or engaging in network interactions. However, if you do not agree with and accept the risks of such usage, you may not use the services.

    Cross-border Transfers

    Medium is hosted in the United States. By using Medium Services, you authorize Medium to transfer, store, and use your information in the United States and any other country where we operate. Where your data is disclosed to our processors, it is subject by contract to at least the same level of data protection as that set out in this statement.

    Retention

    Medium retains personal data associated with your account for the lifetime of your account. If you would like to delete your personal information, you can delete your account at any time. Deleted account profile pages will yield an error 404 “file not found” page, immediately upon initiating deletion, and will become unrecoverable in our system after a period of fourteen days. It may take several additional days for your personal data to be de-indexed from search engines, depending on those search engines’ practices, over which Medium may have limited or no control.

    To delete your payment or billing information, you will need to do so with your payment provider, as Medium only has minimal secure access to those records as needed to provide the services.

    Rights of Data Subjects

    1. If you sign up for a Medium account, you may at any time request an export of your personal information from the Settings page.
    2. You may correct information associated with your account from the Settings page, and the Customize Your Interests page to update your interests.
    3. You may withdraw consent by deleting your account at any time through the Settings page, which will erase your personal information completely within 14 days (except to the extent Medium is prevented by law from deleting your information).
    4. You may object at any time to the use of your personal data by contacting privacy@medium.com. If your complaint relates to alleged misuse of your personal data by a third party, it may result in suspension of that post or account in keeping with relevant law, public interest, our contractual obligations, and the rights of expression and access to information of others.
    5. You may at any time lodge a complaint regarding the processing of your personal data by Medium with the Supervisory Authority of your EU member state.

    Contact Information

    A Medium Corporation

    799 Market Street, 5th Floor

    San Francisco, CA 94103

    United States of America

    Representative: Head of Legal — legal@medium.com

  • Privacy verklaring en voorwaarden

    Versie 25 mei 2018

    Met deze privacyverklaring wil Meer Democratie u graag informeren over welke (persoons)gegevens we voor welke doeleinden verzamelen en wat uw rechten zijn ten aanzien van onder meer het inzien, wijzigen en verwijderen van gegevens.

    Uw rechten

    Onder de geldende wetgeving – met name de Algemene Verordening Gegevensbescherming – heeft u een aantal rechten. Deze rechten, voor zover ze relevant zijn voor uw gebruik van de diensten die Meer Democrtie aanbiedt, omvatten onder meer het recht om uw gegevens in te zien, om ze te laten corrigeren en om ze te laten wissen. U mag niet verplicht worden tot het verstrekken van onnodige gegevens. U heeft het recht  dat uw gegevens goed beveiligd worden opgeslagen en verwerkt.

    Privacy officer

    Heeft u vragen of wensen ten aanzien van uw gegevens en de bescherming daarvan, neem dan contact op met de privacy officer van Meer Democratie, Arjen Nijeboer, via info@meerdemocratie.nl.

    Beperking van de toegang tot uw data

    Alleen die medewerkers van Meer Democratie voor wie het op grond van hun taken noodzakelijk is dat zij toegang hebben tot gegevens (bijvoorbeeld omdat zij het bestand met email abonnees beheren), krijgen deze toegang en dan alleen tot die delen van de gegevens die voor hun taken relevant zijn.

    Onze server

    Onze website, onze gegevensbestanden en onze mail server worden gehost op een eigen afgescheiden (dedicated) server gelokaliseerd in Zwitserland die valt onder de Zwitserse data privacy wetgeving (die tot de strengste ter wereld behoort). In beginsel hebben de Nederlandse  overheidsdiensten alsmede andere overheden geen toegang tot deze data.

    Cookies

    Om gebruiksstatistieken op onze website bij te houden, gebruiken we de open source software Matomo (voorheen Piwik geheten). Om de resultaten van onze berichten op Facebook te kunnen volgen, gebruiken we de analytische tool van Facebook op onze website.

    Feeds

    In onze website zijn feeds geïntegreerd van onze sociale media accounts op Facebook en Twitter. Indien u reacties plaatst op onze Facebook en Twitter account, kunnen deze ook verschijnen in de feeds op onze website.

    Donaties

    Bij donaties verwerken we de persoonsgegevens die u als donateur aan ons verstrekt voor het afhandelen van de eenmalige of doorlopende (maandelijkse) donaties.

    Doorlopende donaties

    Doorlopende donaties verwerken we door middel van een automatische incasso (dit gaat tegenwoordig via het SEPA systeem). We laten het donatiebedrag incasseren door onze bank, Rabobank. Hiervoor verstrekken we aan de Rabobank periodiek uitsluitend de gegevens die voor het incasseren van de verschuldigde bedragen noodzakelijk zijn.

    Eenmalige donaties

    Eenmalige donaties worden uitgevoerd via de betaalmodule van de Rabobank (de Omnikassa). Voor de uitvoering van donaties via deze betaalmodule moet de Rabobank persoonsgegevens verwerken. Hierop is het privacybeleid van de Rabobank van toepassing en is de Rabobank de verwerkingsverantwoordelijke. We raden u aan om het privacybeleid van Rabobank door te nemen voordat u van hun betaalmodule gebruik maakt.

    Zelf overmaken

    Het is ook mogelijk om uw donatie zelf direct over te maken naar onze bankrekening. In dat geval worden de persoonsgegevens die noodzakelijk zijn voor het overmaken van het bedrag verwerkt door uw bank en onze bank (Rabobank).

    Mailinglijsten

    Voor al onze mailinglijsten geldt dat uw  emailadres alleen met uw voorafgaande toestemming wordt toegevoegd aan de lijst van abonnees. Iedere mail die we via een mailinglijst sturen, bevat een link waarmee u uzelf direct kunt afmelden. Mocht dit niet lukken, dan zulen wij u handmatig verwijderen. Stuur daarvoor een verzoekje aan info@meerdemocratie.nl (de privacy officer is Arjen Nijeboer).

    Voor het versturen van mailings gebruiken wij de open source software CiviCRM die wordt gehost op onze eigen afgescheiden server in Zwitserland en die door ons wordt beheerd en beveiligd. Derden hebben geen toegang tot de gegevens.

    Formulieren

    Als u via een formulier persoonlijke gegevens invult, voor bijvoorbeeld een petitie, een open brief of om u te abonneren op onze email updates, dan stellen wij alleen die gegevens verplicht die we minimaal nodig hebben voor het betreffende doel van dat formulier.

    Indien u gegevens over uw woonplaats invult, dan kunnen we die gegevens gebruiken om u uit te nodigen voor evenementen of acties die (mede) door Meer Democratie in of nabij uw woonplaats worden georganiseerd.

    Wijzigingen in deze privacy verklaring

    We kunnen deze privacyverklaring wijzigen. Belangrijke wijzigingen zullen we aankondigen op onze website.

    Gebruik van deze website

    Bezoek, raadpleging en gebruik van deze website impliceert de acceptatie van deze privacyverklaring en de genoemde voorwaarden. Bent u het niet eens met dit privacybeleid en deze voorwaarden, maak dan geen gebruik van deze website en de daarop aangeboden diensten.

  • Privacy Policy

    Effective date: May 25, 2018

     

    Torpedo Farm Limited, with registered seat at 22 Northumberland Road, Ballsbridge, Dublin 4, corporation tax no. 3278952QH (“Torpedo Farm Limited”, “us”, “we”, or “our”) operates the www.misterhorse.tv website (the “Service”) and offers products listed on this website (the “Products”).

    This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data. We use your data to provide and improve the Service and Products. By using the Service, installing the Products or by giving your consent, you acknowledge the collection and use of information in accordance with this policy. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, accessible from www.misterhorse.tv

    Our Privacy Policy and the processing of your personal data is following all applicable legal regulations, especially the EU Regulation no. 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).

    Definitions

    • Service
      Service is the www.misterhorse.tv website operated by Torpedo Farm Limited
    • Products
      Products are products of Torpedo Farm Limited listed on the www.misterhorse.tv website (especially software).
    • Personal Data
      Personal Data means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).
    • Usage Data
      Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
    • Cookies
      Cookies are small pieces of data stored on your device (computer or mobile device).
    • Data Controller
      Data Controller means the natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal information are, or are to be, processed. For the purpose of this Privacy Policy, we are a Data Controller of your Personal Data.
    • Data Processors (or Service Providers)
      Data Processor (or Service Provider) means any natural or legal person who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively.
    • Data Subject (or User)
      Data Subject is any living individual who is using our Service and/or our Products and is the subject of Personal Data.

    Information Collection And Use

    We collect several different types of information for various purposes to provide and improve our Service and Products to you.

    Types of Data Collected

    Personal Data

    While using our Service and/or Products we may ask you to provide us with certain personally identifiable information (“Personal Data”). Personally identifiable information may include, but is not limited to:

    • Email address
    • First name and last name
    • Address, State, Province, ZIP/Postal code, City
    • Cookies and Usage Data

    Usage Data

    We may collect information how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

    Tracking & Cookies Data

    We use cookies and similar tracking technologies to track the activity on our Service and Products and hold certain information.

    Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service and Products. The cookies we use are all necessary for the proper function of the Service and/or Products.

    You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service and/or Products.

    Examples of Cookies we use:

    • Session Cookies. We use Session Cookies to operate our Service and/or Products.
    • Preference Cookies. We use Preference Cookies to remember your preferences and various settings (f. e. for logging in).
    • Security Cookies. We use Security Cookies for security purposes.

    Use of Data

    Torpedo Farm Limited uses the collected data for various purposes:

    • To provide and maintain our Service and/or Products
    • To notify you about changes to our Service and/or Products
    • To protect us from piracy and unlawful use of our Products and/or Service.
    • To allow you to participate in interactive features of our Service and/or Products when you choose to do so
    • To provide customer support
    • To gather analysis or valuable information so that we can improve our Service and Products
    • To monitor the usage of our Service and/or Products
    • To detect, prevent and address technical issues
    • To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information

    Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR)

    Torpedo Farm Limited legal basis for collecting and using the personal information described in this Privacy Policy depends on the Personal Data we collect and the specific context in which we collect it.

    Torpedo Farm Limited may process your Personal Data because:

    • We need to perform a contract with you
    • You have given us a consent to do so
    • The processing is in our legitimate interests and it’s not overridden by your rights
    • To comply with the law

      • The legitimate interests of Torpedo Farm Limited are:

    • Comprehensive protection and increased comfort of our clients, i.e. users of our Service and Products;
    • Improvement of our Service and Products;
    • Operation and security of our Service and Products;
    • Prevention of damages, fraud and other violations of legal and/or contractual provisions (

      • piracy and unlawful use of our Service and/or Products);

    • Legal protection, detection of offenders, enforcement of claims;
    • Providing information within direct marketing to our existing clients (news, special offers and general information about other goods, services and events which we offer that are similar to those that the client has already purchased or enquired about unless he/she has opted not to receive such information).

    Retention of Data

    Torpedo Farm Limited will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

    In case the processing of your Personal Data is based on consent, your Personal Data will be processed only for the duration of the consent.

    Transfer Of Data

    Your Personal Data are processed within the European union, especially Ireland.

    Some of your Personal Data may be transferred outside the European union – the USA, to our processors, who process the data on our behalf. Your Personal Data will be transferred only to US companies, which are under the so-called Privacy Shield (i.e. they ensure an adequate level of protection of the Personal Data).

    Torpedo Farm Limited will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a third country unless there are adequate controls in place including the security of your data and other personal information.

    Disclosure Of Data

    Torpedo Farm Limited may disclose your Personal Data to the following recipients:

    • Service providers (processors) – listed below;
    • Providers of legal, tax and accounting services;
    • Courts, law enforcement agencies;
    • Public authorities.

    Disclosure for Law Enforcement

    Under certain circumstances, Torpedo Farm Limited may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

    Service Providers

    We may employ third party companies and individuals to facilitate our Service and/or Products (“Service Providers”), to provide the Service and/or Products on our behalf, to perform Service- and/or Product- related services or to assist us in analyzing how our Service and/or Products are used.

    These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

    Tweak & Shuffle s.r.o.

    Tweak & Shuffle s.r.o. (Slovakia) is our sister company which we may use to perform Service- and/or Product- related services on our behalf (especially customer service).

    Google Analytics

    Google Analytics is a web analytics service offered by Google LLC (USA) that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity.

    For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: http://www.google.com/intl/en/policies/privacy/

    Exponea

    Exponea is an analytics and direct marketing service offered by Exponea s.r.o. (Slovakia). Exponea uses the data collected to track and monitor the use of our Service as well as facilitates email marketing. You can prevent Exponea from using your information for analytics purposes by opting-out. To opt-out of Exponea service, please visit this page: https://exponea.com/control-your-data/

    For more information on the service, please visit the Terms of Service page of Exponea: https://exponea.com/exponea-terms-of-service/

    DigitalOcean

    We store and safeguard Users’ data (registration and account information). This data is securely saved on our data centers hosted by DigitalOcean LLC, which are physically located in USA (New York City) and follow GDPR law. These data centers are also used for data storage in databases and as digital files, emails and hosting our website.

    Mailgun

    Mailgun is an email delivery service offered by Mailgun Technologies, Inc. (USA). We use Mailgun for sending transactional and marketing emails. Mailgun follows the GDPR law. For more infromation in the service, please visit the Terms of Service page of Mailgun: https://www.mailgun.com/terms/

    Other Services

    Torpedo Farm Limited also uses other cookie trackers for following purposes: Google Tag Manager (to manage HTML/JS tags), Post Affiliate Pro (to manage affiliate attribution). You may refuse the use of cookies by selecting the appropriate settings on your browser.

    Payments

    We provide paid Products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors).

    We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

    The payment processors we work with are:

    Security Of Data

    The security of your data is important to us. Torpedo Farm Limited uses state-of-the-art information technology for the purposes of safe storage and transfer of your Personal Data. Your Data Protection Rights Under General Data Protection Regulation (GDPR) In relation to the procession of your Personal Data you have certain data protection rights. Torpedo Farm Limited aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

    If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.

    In certain circumstances, you have the following data protection rights:

    • The right to access, update or to delete your Personal Data we have. Whenever made possible, you can access, update or request deletion of your Personal Data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.
    • The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
    • The right to object. You have the right to object to our processing of your Personal Data.
    • The right of restriction. You have the right to request that we restrict the processing of your personal information.
    • The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.
    • The right to withdraw consent. You also have the right to withdraw your consent at any time where Torpedo Farm Limited relied on your consent to process your Personal Data. You can withdraw your consent by contacting us through our website: https://www.misterhorse.tv/contact-us. You can opt-out from receiving marketing emails easily by following an unsubscribe link included with each email.

    Please note that we may ask you to verify your identity before responding to such requests. You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

    The right to object

    You have the right to object at any time to processing of your Personal Data which is based on one of our legitimate interests. We shall no longer process the Personal Data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims. If you object to processing for direct marketing purposes, the Personal Data will no longer be processed for such purposes. You can object by contacting us through our website: https://www.misterhorse.tv/contact-us. You can opt-out from receiving marketing emails easily by following an unsubscribe link included with each email.

    Links To Other Sites

    Our Service may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit.

    We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

    Children’s Privacy

    Our Service does not address anyone under the age of 18 (“Children”).

    We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

    Changes To This Privacy Policy

    We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

    We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the “effective date” at the top of this Privacy Policy.

    You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

    Contact Us

    If you have any questions about this Privacy Policy, please contact us by visiting this page on our website: https://www.misterhorse.tv/contact-us

  • Privacy Notice

    Last updated 23 May 2018

    This privacy notice tells you how we, Moodle PTY Ltd, will collect and use your personal data to provide our service which allows educators, of any kind, to create a private space online, filled with tools that easily create courses and activities, all optimised for collaborative learning.

    The Moodle software is free and open source, and may be hosted by Moodle, but also by anyone who wishes to manage an installation. This notice will tell you how Moodle uses your data, but if the site you are using isn’t hosted by Moodle, then your data controller will have added their own specific information to it as well, on how your data is used by them. Moodle has a Data Protection Officer and you can contact them if you have queries:

    Contact details of the Data Protection Officer

    Data Protection Officer / GDPR Owner contact details
    Contact Name: Data Compliance Europe
    Address line 1: 12 Citygate
    Address line 2: Lower Bridge Street
    Address line 3: Dublin 8
    Address line 4: Ireland
    Email: dpo@moodle.com

    Personal data

    Under the EU’s General Data Protection Regulation (GDPR) personal data is defined as: “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.

    Why does Moodle PTY Ltd need to collect and store personal data?

    In order for us to provide you with MoodleCloud and other Moodle Hosted websites we need to collect personal data for correspondence purposes and/or to allow us to provide you our service. In any event, we are committed to ensuring that the information we collect and use is appropriate for this purpose. Moodle is a company which values its users’ data protection and privacy rights and we have no interest in collecting data beyond what we need to make the Moodle Services work for you.

    If you are going to be contacted by us for marketing purposes, we will not rely solely on this notice, but will always seek an additional confirmation from you that it’s OK to do that.

    Will Moodle PTY Ltd share my personal data with anyone else?

    We may pass your personal data on to third-party service providers contracted to Moodle PTY Ltd in the course of dealing with you. We do this because there are some services, such as our video conferencing facility, which will not work unless we are able to make these transfers. Any third parties that we may share your data with are obliged to keep your details securely, and to use them only to deliver the service they provide on our- and of course, your-behalf. When they no longer need your data to fulfil this service, they will dispose of the details in line with Moodle PTY Ltd’s procedures. If we wish to pass your sensitive personal data onto a third party we will only do so once we have obtained your consent, or if it is necessary to comply with an employment contract, unless we are legally required to do otherwise. If you would like an up-to-date register of all our third-party service providers, please contact privacy@moodle.com and we will be happy to provide it.

    How will Moodle PTY Ltd use the personal data it collects about me?

    Moodle PTY Ltd will process (collect, store and use) the information you provide in a manner compatible with the EU’s General Data Protection Regulation (GDPR). We will endeavour to keep your information accurate and up to date, and not keep it for longer than is necessary. Moodle PTY Ltd maintains a register of its data processes which includes a record of the data retention policy for each type of data collected and is committed to only ever trying to process the minimum amount of data needed. Moodle PTY Ltd is required to retain certain information in accordance with the Law, such as information needed for income tax and audit purposes. How long certain kinds of personal data should be kept may also be governed by specific business-sector requirements and agreed practices. Personal data may be held in addition to these periods depending on individual business needs.

    Can I find out the personal data that the organisation holds about me?

    Moodle PTY Ltd at your request, can confirm what information we hold about you and how it is processed. If Moodle PTY Ltd does hold personal data about you, you can request the following information:

    • Identity and the contact details of the person or organisation that has determined how and why to process your data.
    • Contact details of our data protection officer in the EU, where applicable.
    • The purpose of the processing as well as the legal basis for processing.
    • If the processing is based on the legitimate interests of Moodle PTY Ltd or a third party, information about those interests.
    • The categories of personal data collected, stored and processed.
    • Recipient(s) or categories of recipients that the data is/will be disclosed to.
    • If we intend to transfer the personal data to a third country or international organisation, information about how we ensure this is done securely. The EU has approved sending personal data to some countries because they meet a minimum standard of data protection. In other cases, we will ensure there are specific measures in place to secure your information. These will rely on measures approved by the EU Commission.
    • How long the data will be stored.
    • Details of your rights to correct, erase, restrict or object to such processing.
    • Information about your right to withdraw consent at any time.
    • How to lodge a complaint with the supervisory authority.
    • Whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, as well as whether you are obliged to provide the personal data and the possible consequences of failing to provide such data.
    • The source of personal data if it wasn’t collected directly from you.
    • Any details and information of automated decision making, such as profiling, and any meaningful information about the logic involved, as well as the significance and expected consequences of such processing.

    What forms of ID will I need to provide in order to access this?

    Moodle PTY Ltd accepts the following forms of ID when information on your personal data is requested:

    • A colour copy of a Passport, driving licence or National ID Card

    DATA POLICY

    1. Scope

      All data subjects whose personal data is collected, in line with the requirements of the GDPR.

    2. Responsibilities

      All data subjects whose personal data is collected, in line with the requirements of the GDPR.

      • 2.1 Where Moodle PTY Ltd is hosting a website on its own behalf, it is the Data Controller for all the data collected. Where Moodle PTY Ltd is hosting someone else’s installation of the Moodle Platform (as with MoodleCloud) it is the Data Processor for the Site Admin for that installation.
      • 2.2 When Moodle PTY Ltd is not hosting an installation of the Software Platform, it is neither the Data Controller or the Data Processor and those duties fall on the people or organisations who have installed and are hosting those installations.

    3. Privacy notice

    • 3.1 Who are we?

      Moodle PTY Ltd is a software company which allows educators, of any kind, to create a private space online, filled with tools that easily create courses and activities, all optimised for collaborative learning. The Moodle software is open source, and may be hosted by Moodle, but also by anyone who wishes to manage an installation.

      We collect personal data relating to you for specific purposes, with the nature of the data collected depending on your interaction with Moodle PTY Ltd. We are committed to transparency in this and have provided a very detailed breakdown of these processes in Annex 1 at the end of this document.

      Our legal basis for processing for personal data:

          • Article 6.1(a), GDPR, Consent
          • Article 6.1(b), GDPR, Contract
          • Article 6.1(f), GDPR, Legitimate Interest

      Any legitimate interests pursued by us, or third parties we use, are as follows:

          • Recruitment and Induction of new Candidates
          • Emergency Contacts for people who work with us, such as employees and Contractors for Health and
            Safety purposes.
          • Business Development
          • Providing login systems to users via their existing social media accounts

      The special categories of personal data concerned are:

          • Biometric Data in the form of facial images
          • Health Data in respect of employees, Contractors and other people who work with us
          • Any special categories of special personal data which any user volunteers while using the Moodle systems or any Moodle website- for example in a forum or submission

      3.2 Consent

      By consenting to this privacy notice you are giving us permission to process your personal data specifically for the purposes identified. Where consent is required for Moodle PTY Ltd to process both standard and sensitive types of personal data, but it must be explicitly given. Where we are asking you for sensitive personal data we will always tell you why and how the information will be used. Agreement with this Privacy Notice and its accompanying Terms and Conditions (as applicable) (and any Data Processing Agreements, if they apply to you) will be considered to be explicit consent and we will keep a copy of the records of that consent for audit purposes.

      You may withdraw consent at any time by:

      Please identify your role in relation to Moodle (if you are a Contractor, Staff member, Moodle Partner, End-user, Site Admin etc.), and the data you wish to withdraw consent to be processed. Please include a copy of a state-issued Photo ID, in order to confirm that you are the person whose data is removed.


    • 3.3 Disclosure

      Moodle PTY Ltd will pass on your personal data to certain third parties. Moodle is a distributed, global company and it uses cloud services which may be accessed by Moodle employees in any part of the world, including our Head Office in Australia.

      The Moodle Software platform is open source, so that anyone can install and host a copy of the software, as the data controller. In those circumstances, it will be a matter for the Data Controller to ensure they have also put the necessary safeguards in place for any international transfers outside the EU.

      Third country (non-EU)/international organisation

      Safeguards in place to protect your personal data

      MoodleCloud: Australia, Global

      Use of the EU’s Standard Contract Clauses, Privacy Shield, and binding corporate rules

      Other Moodle Sites and services

      Use of the EU’s Standard Contract Clauses, Privacy Shield, and binding corporate rules

      Other Moodle installations, not hosted by Moodle PTY Ltd or additional processing of data from MoodleCloud by the Data Controller

      To be provided directly to you by the Data Controller for that installation.

    • 3.4 Retention period

      Moodle PTY Ltd will processes different forms of personal data for as long as is necessary and proportionate for the purpose for which it has been supplied and will store the personal data for the shortest amount of time possible, taking into account legal and service requirements. For further details on the retention period for any particular type of data, please contact privacy@moodle.com

    • 3.5 Your rights as a data subject

      At any point while we are in possession of or processing your personal data, you, the data subject, have the following rights:

      • Right of access – you have the right to request a copy of the information that we hold about you.
      • Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
      • Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
      • Right to restriction of processing – where certain conditions apply to have a right to restrict the processing.
      • Right of portability – you have the right to have the data we hold about you transferred to another organisation.
      • Right to object – you have the right to object to certain types of processing such as direct marketing.
      • Right to object to automated processing, including profiling – you also have the right to be subject to the legal effects of automated processing or profiling.
      • Right to judicial review: in the event that Moodle PTY Ltd refuses your request under rights of access, we will provide you with a reason as to why. You have the right to complain as outlined in clause 3.6 below.

      Where Moodle PTY Ltd are your Data Controller, you may make a request directly to the Data Protection Officer using the email address dpo@moodle.com

      Where Moodle PTY Ltd are a Data Processor, and act on behalf of a data controller (such as MoodleCloud) any requests received by Moodle PTY Ltd will be passed on to the Data Controller.

      Where Moodle PTY Ltd are not involved with your data, such as where the Moodle platform has been self-hosted, you should address your requests to the data controllers of those sites. Moodle PTY Ltd will have no access to your data.

    • 3.6 Complaints

      In the event that you wish to make a complaint about how your personal data is being processed by Moodle PTY Ltd (or third parties as described in 3.4 above), or how your complaint has been handled, you have the right to lodge a complaint directly with the supervisory authority and Moodle PTY Ltd’s data protection Officer, Data Compliance Europe Ltd.

      If you wish to make a complaint about how your personal data has been processed in MoodleCloud, or by a Self-Hosted installation of the Moodle Software you should contact your Moodle Site Admin or the Data Controller for your Moodle installation. (For example, if your university or school hosts their own Moodle site, they will be the Data Controller).

      The details of Contacts for where Moodle PTY Ltd’s are the Data Controller:

      Supervisory authority contact details

      Data Protection Officer (DPO) / GDPR Owner contact details

      Contact Name:

      Data Protection Commissioner

      Data Compliance Europe,

      Address line 1:

      Canal House

      Lower Bridge Street

      Address line 2:

      Portarlington

      Dublin 8

      Address line 3:

      Co Laois

      Address line 4:

      R32 AP23

      Email:

      info@dataprotection.ie

      dpo@moodle.com

      Telephone:

      +353 57 8684800

      The details of Contacts for where Moodle PTY Ltd is not the Data Controller, in your installation of Moodle, are available directly from your Data Controller.

    Annex 1

    Purpose of processing

    Categories of personal data

    The source of the personal data

    sending e newsletters to moodle.com users

    email address, name

    Data subject

    sending e newsletters to moodle.org users

    email address, name

    Data subject

    Attendee registrations and payment for moodlemoot.org

    email address, name, payment details

    Data subject

    Presentation admission process run by Marketing department for moodle moot’s events

    email address, name, workplace, summary of applicable presentations

    Data subject

    Communicating marketing campaigns on Facebook

    name, email address, location, job title, interests, any other Facebook categories used

    Data subject

    Communicating marketing campaigns on Twitter

    name, email address, location, interests

    Data subject

    MOOC participants information (Learn Moodle)

    name, email address

    Data subject

    Recruitment

    Name, Address, phone number, email, social media profile links, Photograph, educational and work history, interests

    Candidate

    Recruitment

    Contact details

    Candidate

    On-boarding

    Contact details, emergency contact details, drivers licence, passport, id documents, banking details, tax details, superannuation details, gender, qualifications, biometric data, date of birth

    Employees

    Health and Safety

    Name, phone number, email, relationship with Employee

    Employees

    HR Records

    Health Records

    Employees

    On-boarding

    Contact details, emergency contact details, drivers licence, passport, ID documents, banking details, gender, qualifications, biometric data

    Employees

    On-boarding

    Telephone number

    Team Members

    Performance

    Performance information, contact details

    Managers/HR

    Engagement

    Contact details, job information, engagement information

    Employees/HR

    Letter of Offer

    Name, address, phone number, email and remuneration details

    Employees/HR

    Confirmation of Information

    Contact details, remuneration details, length of service, job information

    Employees, HR

    Exit interviews

    Contact details, feelings about working at Moodle

    Employees

    On-boarding

    Photograph

    Employees

    Interview

    Answers to questions around previous job and skills

    Moodle HR

    Central code repository

    contact details (name, surname, email, photo), activity and contribution

    Data subject

    Community education and feedback (moodle.org)

    contact details (name, surname, email, photo), activity and contribution

    Data subject

    Mirror of central code repository

    contact details (name, surname, email, photo), activity and contribution

    Data subject

    Developer code repository

    contact details (name, surname, email, photo), activity and contribution

    Data subject

    Developer code repository (Local git repositories on dev machines)

    contact details (name, surname, email, photo), activity and contribution

    Data subject

    Sharing of rapid prototypes, research artefacts, usability testing feedback

    Contact details, activity, contribution

    Employee

    Conduct user studies, interviews, and surveys

    Contact details, activity, contribution

    Employee

    Conduct user surveys, Mobile – Support for Airnotifier websites

    Contact details, form entries,

    Data subject

    Scheduler for usability testing & user interviews

    Name, email, Contact details, schedules, location data

    Data Subject, Employees

    Hosts the usability tests and user interview recordings

    Contact details, biometric, video, voice recording,

    Data Subject, Employees

    Community engagement & recruitment for user studies

    Contact details, activity, contribution

    Data Subject, Employees

    Community engagement & recruitment for user studies

    contact details (name, surname, email, photo), activity and contribution

    MOBILE – Training in Moodlemoots

    contact details (name, surname, email, photo), activity and contribution

    Data subject

    Paying wages to employees

    Contact details (name, surname and email), Bank details, Tax details, sick leave, Annual Leave, salary, pension

    Employee

    Collecting fees payable by direct clients

    Contact details (name, surname and email)

    Client

    Collecting fees payable by partners

    Contact details (name of partner, email, name and surname of partner representative)

    Partner

    Receiving event registration fee

    Contact details (name, surname, email of the participant, phone number, business name and address)

    Attendee

    Paying supplier invoices

    Supplier details (name, surname, email, bank details)

    Attendee

    Individual’s Profile on Moodle Partner site

    Contact details

    Data subject and data subject employer

    Individual’s data on Moodle Partner website

    User and activity data

    Data subject, Controller

    Partner Marketing Support

    Partner details, Location, Date, Times

    Data subject

    Partner Marketing Support

    Client details, Partner details

    Data subject, data subject employer, Partner organisation

    Partnership support conference calls

    Name, Voice Recording, Video/Photograph of user

    Moodle HQ – Moodle Partner website Data

    Partner Organisation Profile on Moodle Partner site

    User details, Partner Organisation details

    Partner Organisation provides info and manages it

    Partnership team commercial discussion about Partners and sectors

    HQ Organisation details, Partner Organisation details, names, emails, addresses

    Controller(s) – Moodle Pty Employees (Moodle HQ) and for contractors ->themselves or company.

    Partnership team discussion

    Partner Organisation details

    Controller(s) – Moodle Pty Employees (moodle HQ) and for contractors ->themselves or company.

    Moodle HQ team communications

    Contact details and any other as comes up in emails

    Controller

    Moodle HQ team communications

    Contact details

    Controller

    Moodle Client Customer financial data from Partners

    Client details, Partner details

    Moodle Partner

    Moodle Client Customer financial data from Partners

    Client details, Partner details

    Moodle Partner

    Lead / Customer Information

    Contact Details

    Data Subject

    writing and storage of agreements/contracts/documentation with partners, and potential partners

    Contact details

    Moodle Partner / Applicant

    General Business Documentation of meetings including attendees

    Partner Organisation details, Partner details, Partner Employees

    Controller

    General Business Documentation

    Partner Organisation details, Partner details

    Controller

    General Business Documentation

    Partner Organisation details, Partner details

    Controller

    log storing and searching for analysing and troubleshooting MoodleCloud sites and signup/provisioning

    Location, IP address

    MoodleCloud site admins and MoodleCloud site users

    Storing of historical logs – moodle, web server, statistics

    website name, location, IP address

    MoodleCloud site admins and MoodleCloud site users

    Facilitating the signup and control of the MoodleCloud account

    Name, email, location, telephone number

    MoodleCloud site admins

    Primary provider for text messaging. Logs for text message sending

    Phone numbers

    MoodleCloud site admins

    Email processing (Moodle and signup)

    email

    MoodleCloud site admins and MoodleCloud site users

    Backup text messaging service. Data processed by Twilio

    Phone numbers

    MoodleCloud site admins

    News, Updates, Product tip emails subscriber lists (opt in)

    Name, email

    MoodleCloud site admins

    Email sent to site admins regarding their MoodleCloud service

    Name, email, financial data

    MoodleCloud site admins

    Operational reporting on cloud servers and moodle sites

    Location, IP address, moodle activity data

    MoodleCloud site admin

    Recurring subscriptions and Payment

    name, email, country

    MoodleCloud site admins

    Billing engine and subscription management

    contact details, country, website name

    MoodleCloud site users

    Assignment submission document converter (when students submit assignments in various file formats, this process converts them into PDF file so the teacher can grade and annotate the document)

    could be any data submitted in the file

    MoodleCloud site users

    Webconferencing feature for all MoodleCloud sites

    contact details, voice, audio, video, biometrics, IP address, location data

    MoodleCloud site users

    Authentication, Design, development and tracking of Moodle code, profile published on Tracker site, notifications

    Contact details, biometric (avatar)

    Data subject

    Authentication, profile published, notifications

    Contact details, biometric (avatar), any details provided by user

    Data subject

    Authentication, notifications

    Contact details, biometric (avatar)

    Data subject

    Statistics and error recording

    IP Address, error logged messages potentially including usernames, and usage records

    Website records

    Business Development statistics generation

    Data compiled from other listed data sources

    Website records

    Making and receiving phone calls

    Call metadata including phone numbers and time & call duration

    telephone records

    Making and receiving phone calls

    Call metadata

    telephone records

    Authentication, documents, usage, emails

    Names, Addresses., emails, phone numbers, Health Records, Contact details, biometric (avatar), IP Address, document contents, email contents, usage records

    Data Subjects, Moodle HQ

    Communication in and outside of company

    Names, Addresses., emails, phone numbers, Health Records, Contact details, biometric (avatar), IP Address, document contents, email contents, usage records

    Data Subjects, Moodle HQ

    Communication in and outside of company

    Names, Addresses., emails, phone numbers, Health Records, Contact details, biometric (avatar), IP Address, document contents, email contents, usage records

    Data Subjects, Moodle HQ

    Internal HR functions, leave and communications

    HQ personal staff information, leave information, communications details

    Data Subjects, Moodle HQ

    Partner billing, record keeping and communications

    HQ authentication information, contact details, Moodle partner contact details, client statistics & invoicing

    Data Subjects, Moodle HQ

    Purchasing various services (domains, etc)

    Profile data and credit card for Moodle HQ Staff or Contractor

    Data Subjects, Moodle HQ

    Licenses for software

    Personal contact information, cloud stored work may have personal data in it

    Data Subjects, Moodle HQ

    Notifications of critical ICT events

    Moodle HQ person information, possible data in alert if relevant to alerting

    Data Subjects, Moodle HQ

    Authentication, subscribed marketing & security notifications, bounce records, read and open records, link click records

    Personal contact information (Name & Email)

    Data Subjects, Moodle HQ

    Billing & Purchasing

    Billing information including name, addresses, order information

    Data Subjects, Moodle HQ

    Authentication, document management & office license

    Contact Details, IP addresses

    Data Subjects, Moodle HQ

    Hosting corporate infrastructure

    HQ Person information, all data covered by other register entries.

    Data Subjects, Moodle HQ

    Legacy ticketing system

    Contact details, biometric (avatar), any details provided by user

    Data Subjects, Moodle HQ

    Ticketing System / Public Comms Hub

    Contact details, biometric (avatar), any details provided by user

    Data Subjects, Moodle HQ

    CRM for Services team

    Contact details, contract details with partners, any other information related to partnership with Moodle HQ

    Data Subjects, Moodle HQ

    Monitoring

    No personal data, just system level metrics

    Data Subjects, Moodle HQ

    Authentication, Database/API query derived statistics

    Contact details

    Data Subjects, Moodle HQ

    Credential and secure information store

    Username and passwords for cloud services, may contain other notes

    Data Subjects, Moodle HQ

    Public site spam prevention

    User contributed content (forum posts)

    Data Subjects, Moodle HQ

    DNS and Denial of Service Protection (gradually being phased out)

    Website usage and all passed traffic data

    Data Subjects, Moodle HQ

    Voice and Video Meetings

    Moodle HQ Employee contact information and recorded video

    Data Subjects, Moodle HQ

    Monitoring sites

    Email address & Name for Authentication

    Data Subjects, Moodle HQ

    Virus & Malware scanning for Windows Users

    Email address, Name, Scan data from local computer

    Data Subjects, Moodle HQ

    Moodlebot Telegram Bot (Allows Telegram to interact with Tracker and logs conversation in public chat rooms)

    Any data listed in Tracker as well as free form chat

    Data Subjects, Moodle HQ

    Sharing created courses with other Moodle users worldwide for moodle.net

    Profile data for course creators

    Data Subjects, Moodle HQ

    Notification & Contact Forwarding, Analytics for moodle.com

    HQ Staff and Contractor profile information

    Data Subjects, Moodle HQ

    Moodle Staging Sites for internal use only

    Any non-anonymised data from production instances for testing

    Data Subjects, Moodle HQ

    Test specific features as part of development

    Should be no personal data stored, however IP addresses and other data may end up in logs, Moodle will also display IP data in internal logs which is publicly available

    Data Subjects, Moodle HQ

    Demo most recent version of software to the public

    Should be no personal data stored, however IP addresses and other data may end up in logs, Moodle will also display IP data in internal logs which is publicly available

    Data Subjects, Moodle HQ

    Statistics and Marketing Tracking

    IP addresses and logs, site behaviour analytics

    Data Subjects, Moodle HQ

    Communication about Moodle Moot Events

    HQ Staff and Contractor profile information

    Data Subjects, Moodle HQ

    Ongoing testing of software

    Logins for staff, possible other data as test cases

    Data Subjects, Moodle HQ

    Distribution of software

    Source code with names in it and Moodle profiles for HQ Staff and Contractors

    Data Subjects, Moodle HQ

    Language translations for Moodle

    Profile data

    Data Subjects, Moodle HQ

    Moodle documentation repository

    Profile data

    Data Subjects, Moodle HQ

    Private Moodle Code Repository

    Profile Data

    Data Subjects, Moodle HQ

    Learning Moodle course

    Profile data, course results

    Data Subjects, Moodle HQ

    Public Moodle Code Repository

    Profile data

    Data Subjects, Moodle HQ

    Storage of documents and other communications

    Free form storage of documents, so any personal data is possible

    Data Subjects, Moodle HQ

    Home page for Moodle User Association

    Profile data

    Data Subjects, Moodle HQ

    Data collection for applications to be part of the Partner Network

    Partner applications, Profile data

    Data Subjects, Moodle HQ

    Service status notifications

    User logins for HQ Staff

    Data Subjects, Moodle HQ

    User login and other information

    Login and other personal profile information

    Data Subjects, Moodle HQ

    Course hosting service

    Login and other personal profile information

    Data Subjects, Moodle HQ

    Testing accessibility features in Moodle

    Login and other personal profile information

    Data Subjects, Moodle HQ

    Collaborative document/code editing

    Open system with varied data as well as user IP addresses

    Data Subjects, Moodle HQ

    Register of research related to Moodle

    Published research documents, login details and profile

    Data Subjects, Moodle HQ

    Hosting applications for Moodle

    Login information

    Data Subjects, Moodle HQ

    Legacy Moodle sites

    Login information

    Data Subjects, Moodle HQ

    Indexing for search purposes

    Any data supplied over our sites network

    Data Subjects, Moodle HQ

    Collection and processing of anonymized data from third parties

    Anonymized data from other institutions as well as login/profile for Moodle HQ employees and contractors

    Data Subjects, Moodle HQ

    News and information for the Development community

    Login and other personal profile information. Details of specific development project participants

    Data Subjects, Moodle HQ

    Communication to Moodle community

    Login and other personal profile information

    Data Subjects, Moodle HQ

    Accounts for access to software and licensing

    Login and other personal profile information

    Data Subjects, Moodle HQ

  • Navicat’s GDPR Commitment

    Effective starting: May 25, 2018

    On Friday, May 25, the European Union’s Gerneral Data Protection Regulation (GDPR), officially takes place. We take our customer’s privacy seriously and this document will explain how we handle your data.

    This document covers the information we collect about you when you use our products or services, or otherwise interact with us (for example, by attending our seminar), unless a different policy is stated. Navicat, we, and us refers to Navicat. We refer to our product Navicat, together with our other services and websites as “Services” in this policy.

    This policy also explains your choices about how we use information about you. Your choices include how you can object to certain uses of information about you and how you can access and update certain information about you. If you do not agree with this policy, do not access or use our Services or interact with any other aspect of our business.

    Where we provide the Services under contract with an organization (for example your employer) that organization controls the information processed by the Services.

     

    What information we collect about you

    We collect information about you when you provide it to us, when you use our Services, and when other sources provide it to us, as further described below.

     

    Information you provide to us

    We collect information about you when you input it into the Services or otherwise provide it directly to us.

    Account and Profile Information: We collect information about you when you register for an account, create or modify your profile, set preferences, sign-up for or make purchases through the Services. For example, you provide your contact information and, in some cases, billing information when you register for the Services. You also have the option of adding a display name, profile photo and other details to your profile information to be displayed in our Services. We keep track of your preferences when you select settings within the Services.

    Content you provide through our websites: The Services also include the websites owned or operated by us. We collect other content that you submit to websites operated by us. For example, you provide content to us when you provide feedback or when you participate in any interactive features, surveys, contests, promotions, sweepstakes, activities or events.

    Information you provide through our support channels: The Services also include our customer support, where you may choose to submit information regarding a problem you are experiencing with a Service. Whether you designate yourself as a Technical Contact, open a support ticket, speak to one of our representatives directly or otherwise engage with our support team, you will be asked to provide contact information, a summary of the problem you are experiencing, along with other documentation, screenshots or information that would be helpful in resolving the issue.

    Payment Information: We collect certain payment and billing information when you register for certain paid Services. For example, we ask you to designate a billing representative, including name and contact information, upon registration.

     

    Information we collect automatically when you use the Services

    We collect information about you when you use our Services, including browsing our websites and taking certain actions within the Services.

    Your use of the Services: We keep track of certain information about you when you visit and interact with any of our Services. This information includes the features you use; the links you click on; the type and size of attachments you upload to the Services and how you interact with others on the Services. We also collect information about the teams and people you work with and how you work with them, like who has edited the project.

    Device and Software Information: We collect information about your computer, phone, tablet, or other devices you use to access the Services. This device information includes your connection type and settings when you install, access, update, or use our Services. We also collect information through your device about your operating system, browser type, IP address, URLs of referring/exit pages. We use your and IP address and/or country preference in order to approximate your location to provide you with a better Service experience.

    Cookies and Other Tracking Technologies: Navicat and our third-party partners, such as our advertising and analytics partners, use cookies and other tracking technologies (e.g., web beacons, device identifiers and pixels) to provide functionality and to identify you across different Services and devices.

     

    Information we receive from other sources

    We receive information about you from other Service users, from third-party services, from our related companies, and from our business and channel partners.

    Other users of the Services: Other users of our Services may provide information about you when they submit content through the Services. For example, you may be mentioned in a Navicat issue opened by someone else. We also receive your email address from other Service users when they provide it in order to invite you to the Services. Similarly, an administrator may provide your contact information when they designate you as the billing or Technical Contact on your company’s account.

    Navicat Partners: We work with a global network of partners who provide consulting, implementation, training, reselling, and other services around our products. Some of these partners also help us market and promote our products, generate leads for us, and resell our products. We receive information from these partners, such as contact information, company name, address, and what Navicat products you have purchased or may be interested in, evaluation information you have provided, what events you have attended, and what country you are in.

    Other Partners: We receive information about you and your activities towards the Services from third-party partners, such as advertising and market research partners who provide us with information about your interest in and engagement with, our Services and online advertisements.

     

    How we use information we collect

    How we use the information we collect depends in part on which Services you use, how you use them, and any preferences you have communicated to us. Below are the specific purposes for which we use the information we collect about you.

    To provide the Services and personalize your experience: We use information about you to provide the Services to you, including to process transactions with you, authenticate you when you log in, provide customer support, and operate and maintain the Services. For example, we use the name and picture you provide in your account to enable other Service users to identify you. Our Services also include tailored features that personalize your experience, enhance your productivity, and improve your ability to collaborate effectively with others by automatically analyzing the activities of your team to provide search results, activity feeds, notifications, connections and recommendations that are most relevant for you and your team.

    For research and development: We are always looking for ways to make our Services smarter, faster, more secure, integrated, and useful to you. We use collective learnings about how people use our Services and their feedback to us to troubleshoot and identify trends, usage, activity patterns and areas for integration and improvement of the Services.

    To communicate with you about the Services: We use your contact information to send transactional communications via email and within the Services, including confirming your purchases, reminding you of subscription expiration, responding to your comments, questions and requests, providing customer support, and sending you technical notice, updates, security alerts, and administrative messages. We send you email notifications when you or others interact with you on the Services. We also provide tailored communications based on your activity and interactions with us. We also send you communications as you onboard to a particular Service to help you become more proficient in using that Service. These communications are part of the Services and in most cases you cannot opt out of them. If an opt out is available, you will find that option within the communication itself or in your personal settings.

    Customer support: We use your information to resolve technical issues you encounter, to respond to your requests for assistance, to analyze crash information, and to repair and improve the Services.

    For safety and security: We use information about you and your Service use to verify accounts and activity, to monitor suspicious or fraudulent activity and to identify violations of Service policies.

    To protect our legitimate business interests and legal rights: Where required by law or where we believe it is necessary to protect our legal rights, interests and the interests of others, we use information about you in connection with legal claims, compliance, regulatory, and audit functions, and disclosures in connection with the acquisition, merger or sale of a business.

    With your consent: We use information about you where you have given us consent to do so for a specific purpose not listed above. For example, we may publish testimonials or feature customer stories to promote the Services, with your permission.

     

    Legal bases for processing (for EEA users):

    If you are an individual in the European Economic Area (EEA), we collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the Services you use and how you use them. This means we collect and use your information only where:

    We need it to provide the Services to you, including to operate the Services, provide customer support and personalized features and to protect the safety and security of the Services; It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the Services and to protect our legal rights and interests; You give us consent to do so for a specific purpose; or We need to process your data to comply with a legal obligation. If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.

     

    How we share information we collect

    We make database management and collaboration tools, and we want them to work well for you. This means sharing information through the Services and with certain third parties. We share information we collect about you in the ways discussed below, including in connection with possible business transfers, but we are not in the business of selling information about you to advertisers or other third parties.

     

    Sharing with other Service users

    When you use the Services, we share certain information about you with other Service users.

    For collaboration: You can create content, which may contain information about you, and grant permission to others to see, share, edit, copy, and download that content based on the settings you or your administrator (if applicable) have selected.

    Community Forums: Our websites offer publicly accessible blogs and forums. You should be aware that any information you provide on these websites – including profile information associated with the account you use to post the information – may be read, collected, and used by any member of the public who accesses these websites. Your posts and certain profile information may remain even after you terminate your account. We urge you to consider the sensitivity of any information you input into these Services. To request removal of your information from publicly accessible websites operated by us, please contact us as provided below.

     

    Sharing with third parties

    We share information with third parties that help us operate, provide, improve, integrate, customize, support, and market our Services.

    Service Providers: We work with third-party service providers to provide website and application development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, analysis and other services for us, which may require them to access or use information about you. If a service provider needs to access information about you to perform services on our behalf, they do so under close instruction from us, including policies and procedures designed to protect your information.

    Navicat Partners: We work with third parties who provide consulting, sales, and technical services to deliver and implement customer solutions around the Services. We may share your information with these third parties in connection with their services, such as to assist with billing and collections, to provide localized support, and to provide customizations. We may also share information with these third parties where you have agreed to that sharing.

    Links to Third Party Sites: The Services may include links that direct you to other websites or services whose privacy practices may differ from ours. If you submit information to any of those third party sites, your information is governed by their privacy policies, not this one. We encourage you to carefully read the privacy policy of any website you visit.

    Social Media Widgets: The Services may include links that direct you to other websites or services whose privacy practices may differ from ours. Your use of and any information you submit to any of those third-party sites is governed by their privacy policies.

    With your consent: We share information about you with third parties when you give us consent to do so. For example, we often display personal testimonials of satisfied customers on our public websites. With your consent, we may post your name alongside these testimonials.

    Compliance with Enforcement Requests and Applicable Laws; Enforcement of Our Rights: In exceptional circumstances, we may share information about you with a third party if we believe that sharing is reasonably necessary to (a) comply with any applicable law, regulation, legal process or governmental request, including to meet national security requirements, (b) enforce our agreements, policies and terms of service, (c) protect the security or integrity of our products and services, (d) protect Navicat, our customers or the public from harm or illegal activities, or (e) respond to an emergency which we believe in good faith requires us to disclose information to assist in preventing the death or serious bodily injury of any person.

     

    Sharing with affiliated companies

    Business Transfers: We may share or transfer information we collect under this privacy policy in connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company. You will be notified via email and/or a prominent notice on the Services if a transaction takes place, as well as any choices you may have regarding your information.

     

    How we store and secure information we collect

    Information storage and security

    We use AWS in the United States to host the information we collect, and we use technical measures to secure your data.

    While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.

     

    How long we keep information for

    How long we keep information we collect about you depends on the type of information, as described in further detail below. After such time, we will either delete or anonymize your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion is possible.

    Account information: We retain your account information for as long as your account is active and a reasonable period thereafter in case you decide to re-activate the Services. We also retain some of your information as necessary to comply with our legal obligations, to resolve disputes, to enforce our agreements, to support business operations, and to continue to develop and improve our Services. Where we retain information for Service improvement and development, we take steps to eliminate information that directly identifies you, and we only use the information to uncover collective insights about the use of our Services, not to specifically analyze personal characteristics about you.

    Information you share on the Services: If your account is deactivated or disabled, some of your information and the content you have provided will remain in order to allow your team members or other users to make full use of the Services. For example, we continue to display messages you sent to the users who received them and continue to display content you provided.

    Managed accounts: If the Services are made available to you through an organization (e.g., your employer), we retain your information as long as required by the administrator of your account. For more information, see “Managed accounts and administrators” above.

    Marketing information: If you have subscribed to our marketing emails, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our Services, such as when you last opened an email from us or ceased using your Navicat account. We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.

     

    How to access and control your information

    You have certain choices available to you when it comes to your information. Below is a summary of those choices, and how to exercise them and any limitations.

     

    Your Choices:

    You have the right to request a copy of your information, to object to our use of your information (including for marketing purposes), to request the deletion or restriction of your information, or to request your information in a structured, electronic format. Below, we describe the tools and processes for making these requests. You can exercise some of the choices by logging into the Services and using settings available within the Services or your account. Where the Services are administered for you by an administrator, you may need to contact your administrator to assist with your requests first. For all other requests, you may contact us as provided in the Contact Us section below to request assistance.

    Your request and choices may be limited in certain cases: for example, if fulfilling your request would reveal information about another person, or if you ask to delete information which we or your administrator are permitted by law or have compelling legitimate interests to keep.

    Access and update your information: Our Services and related documentation give you the ability to access and update certain information about you from within the Service. For example, you can access your profile information from your account. You can update your profile information within your profile settings and modify content that contains information about you using the editing tools associated with that content.

    Request that we stop using your information: In some cases, you may ask us to stop accessing, storing, using, and otherwise processing your information where you believe we don’t have the appropriate rights to do so. For example, if you believe a Services account was created for you without your permission or you are no longer an active user, you can request that we delete your account as provided in this policy. Where you gave us your consent to use your information for a limited purpose, you can contact us to withdraw that consent, but this will not affect any processing that has already taken place at the time. You can also opt-out of our use of your information for marketing purposes by contacting us, as provided below. When you make such requests, we may need time to investigate and facilitate your request. If there is delay or dispute as to whether we have the right to continue using your information, we will restrict any further use of your information until the request is honored or the dispute is resolved, provided your administrator does not object (where applicable).

    Opt out of communications: You may opt out of receiving promotional communications from us by using the unsubscribe link within each email, updating your email preferences within your Service account settings menu, or by contacting us as provided below to have your contact information removed from our promotional email list or registration database. Even after you opt out from receiving promotional messages from us, you will continue to receive transactional messages from us regarding our Services. If you no longer want to receive such messages from us, you can opt out of some notification messages in your account settings.

     

    How we transfer information we collect internationally

    International transfers of information we collect

    We collect information globally and primarily store that information in the United States. We transfer, process and store your information outside of your country of residence, to wherever we or our third-party service providers operate for the purpose of providing you the Services. Whenever we transfer your information, we take steps to protect it.

    International transfers to third parties: Some of the third parties described in this privacy policy, which provide services to us under contract, are based in other countries that may not have equivalent privacy and data protection laws to the country in which you reside.

     

    Our policy towards children

    The Services are not directed to individuals under 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information. If you become aware that a child has provided us with personal information, please contact our support team.

     

    Changes to our Privacy Policy

    We may change this privacy policy from time to time. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice by adding a notice on the Services homepages, login screens, or by sending you an email notification. We will also keep prior versions of this Privacy Policy in an archive for your review. We strongly encourage you to review our privacy policy whenever you use the Services to stay informed about our information practices and ways you can help protect your privacy.

    If you disagree with any changes to this privacy policy, you will need to stop using the Services and deactivate your account(s), as outlined above.

     

    Contact Us

    Your information is controlled by Navicat. If you have questions or concerns about how your information is handled, please direct your inquiry to Navicat, which we have appointed to be responsible for facilitating such inquiries.

    PremiumSoft CyberTech Limited
    (852) 2498-3422
    E-Mail: privacy@navicat.com

  • Privacy

    Laatst gewijzigd: 17 mei 2018, 11.21 uur

    We willen u een fijne reis bieden en ervoor zorgen dat u gebruik kunt maken van een reisproduct dat het beste bij u past. Dat kan een abonnement zijn, of een e-ticket. Hiervoor hebben we uw persoonsgegevens nodig. We vinden uw privacy heel belangrijk, daarom gaan we zorgvuldig met uw persoonsgegevens om.

    NS respecteert uw privacy

    Het zijn en blijven natuurlijk úw persoonsgegevens. Uw privacy is ons vertrekpunt:

    • Transparant
      We leggen u duidelijk uit hoe we uw gegevens verzamelen en waarvoor we die gebruiken.
    • Veilig bij NS
      We gebruiken uw gegevens, goed beveiligd, alleen voor onze diensten. We delen uw gegevens niet met derden voor hun marketingdoeleinden, behalve als we uw expliciete toestemming hebben.
    • Keuze en controle
      U bepaalt of we uw gegevens voor extra diensten van NS mogen gebruiken. U kunt uw gegevens over deze diensten wijzigen of verwijderen.
    • Innovatief en open
      We blijven bedenken hoe we uw privacy kunnen verbeteren en staan open voor suggesties en vragen.

    Wilt u weten hoe we precies met uw gegevens omgaan? U leest er alles over in ons privacy statement.

    De nieuwe privacywet, de Algemene Verordening Gegevensbescherming (AVG), geeft u een aantal rechten om uw persoonsgegevens ook zelf beter te beschermen en te beheren. Meer informatie vindt u onder ‘rechten van betrokkenen’.

    Uw rechten

    Door de komst van de Algemene Verordening Gegevensbescherming (AVG) gelden er nieuwe regels bij de verwerking van persoonsgegevens. NS gaat veilig en zorgvuldig met de gegevens van reizigers en (voormalig) medewerkers om. De persoonsgegevens die wij gebruiken, zijn en blijven natuurlijk van u. Daarom heeft u ook het recht om de gegevens die wij van u hebben in te zien, aan te passen, te wissen, te beperken of over te dragen aan iemand anders. Dit kan in sommige vallen via Mijn NS, of via het aanvraagformulier. U heeft het recht om ons het volgende te verzoeken:

    Recht op inzage

    Wilt u weten welke gegevens we van u verwerken? U kunt altijd een overzicht bij ons opvragen. We vertellen u dan onder andere waarvoor we deze gegevens gebruiken, hoe lang we ze bewaren en wat u kunt doen als uw gegevens niet kloppen. U kunt een deel van uw persoonsgegevens zelf inzien via Mijn NS. Als u nog geen Mijn NS-account (of Mijn NS Zakelijk) heeft, kunt u deze direct aanmaken.

    Wilt u meer gegevens inzien dan in het Mijn NS account voorhanden zijn, dan kunt u een verzoek tot inzage in uw persoonsgegevens ook indienen met het aanvraagformulier. We moeten natuurlijk zeker weten dat we de persoonsgegevens aan de juiste persoon verstrekken. Stuurt u daarom met het ingevulde formulier ook een kopie van uw geldige paspoort of identiteitsbewijs mee? Wij verzoeken u vriendelijk om het BSN-nummer en uw pasfoto af te schermen.

    Uw gegevens corrigeren of aanvullen (rectificatie)

    Kloppen de persoonsgegevens die wij van u gebruiken niet meer of zijn ze niet volledig? U kunt een deel van de gegevens eenvoudig zelf corrigeren via Mijn NS. Als u nog geen Mijn NS-account (of Mijn NS Zakelijk) heeft, kunt u deze direct aanmaken. Wilt u gegevens corrigeren die niet in Mijn NS zitten, dan kunt u een verzoek tot rectificatie indienen via het aanvraagformulier.

    Uw persoonsgegevens verwijderen (vergetelheid)

    U kunt ons onder bepaalde omstandigheden verzoeken om uw gegevens uit onze systemen te verwijderen, door het aanvraagformulier in te vullen. Dit heeft wel tot gevolg dat we onze diensten en producten niet langer aan u kunnen leveren.

    Verzet aantekenen tegen verwerking van uw gegevens

    In verschillende situaties kunt u bezwaar maken tegen de (verdere) verwerking van uw gegevens. Bijvoorbeeld op grond van uw persoonlijke omstandigheden. Dit kunt u aangeven in het aanvraagformulier. Na beoordeling laten we u weten of en hoe we aan uw verzoek kunnen voldoen.

    Verwerking van uw persoonsgegevens tijdelijk stopzetten (beperking)

    Wilt u de verwerking van uw gegevens tijdelijk stil laten zetten? Dat kunt u het aanvraagformulier invullen.

    Uw gegevens overdragen (dataportabiliteit)

    Als u dat wilt, kunt u van ons een kopie krijgen van de gegevens die wij van u hebben. Deze gegevens kunt u zelf overdragen of door ons laten overdragen aan derden. U kunt dat via het aanvraagformulier aanvragen en uw keuze aangeven.

    Meer informatie over de regels voor verwerking persoonsgegevens

    Indienen klacht

    U heeft op elk moment het recht om een klacht in te dienen bij de Autoriteit Persoonsgegevens. In de gevallen dat de Gedragscode OV-chipkaart of een DDMA-gedragscode van toepassing is, kunt u, afhankelijk van de gedragscode die u inroept, (ook) in beroep bij de Geschillencommissie Openbaar Vervoer of de DDMA Privacy Autoriteit.

  • Product- en Privacybeleid

    Privacy Beleid
    Beleid Klantengegevens
    Domeinverloopbeleid
    One.com behandelingsproces klantenservice
    Misbruik
    Speciale voorwaarden voor de individuele top level domeinen

    Privacy Beleid

    Waarom Privacy van onze Klanten voor One.com belangrijk is

    Het recht van de klant op privacy is van groot belang voor One.com. Wanneer een klant persoonlijke gegevens doorgeeft aan One.com, stelt de klant vertrouwen in het vermogen van One.com om verantwoordelijk om te gaan met de privacy van de klant.

    Persoonlijke Informatie Verkregen door One.com

    Wanneer er een abonnement afsloten wordt bij One.com, moet de klant persoonlijke informatie opgeven, waaronder de naam, het adres, e-mailadres en telefoonnummer.

    We verwijzen naar onze Privacyverklaring voor meer informatie over hoe wij uw persoonlijke gegevens opslaan en gebruiken.

    Bescherming van de Privacy van Klanten

    One.com neemt de benodigde stappen om de privacy van de klanten te waarborgen. Wanneer de klant gevoelige informatie doorgeeft (zoals bijv. een creditcardnummer om een betaling te doen), zal One.com alle redelijkerwijs te verwachten acties nemen om de veiligheid te waarborgen, door bijv. het creditcardnummer te encrypten. One.com neemt ook gepaste acties om de persoonlijke gegevens van de klant te beschermen.

    Hier vindt u onze Data Processing Agreement die van toepassing is op al onze klanten in de Europese Unie die via One.com persoonsgegevens verwerken.

    Samen met ons aangepaste privacybeleid, zal dit de basis zijn die u nodig heeft bij het verwerken van persoonlijke gegevens aan de hand van onze systemen.

    Merk op dat, als u onze diensten uitsluitend gebruikt voor het verwerken van persoonsgegevens voor persoonlijke of huishoudelijke activiteiten en u een natuurlijke persoon bent, de EU-privacyverordening niet op u van toepassing is en u geen DPA nodig heeft.

    Persoonlijke Informatie Beschikbaar voor Aanpassingen door de Klant

    Om de effectiviteit en kwaliteit van de diensten van One.com te verbeteren, is het belangrijk dat de klant One.com op de hoogte houdt van veranderingen in de naam, adresgegevens en het e-mailadres van de klant. De klant kan zijn/haar persoonlijke gegevens zelf bijwerken via het configuratiescherm van uw domein bij Gegevens Eigenaar.

    Beleid Klantengegevens

    Klantengegevens

    Met klantengegevens wordt alle informatie bedoeld die de klant heeft geplaatst op zijn/haar webruimte bij One.com, zoals bijv. e-mail, internetpagina’s, foto’s en inhoud van de database.

    Voor zover u als klant persoonsgegevens verwerkt als beheerder, verwijzen we naar de bovenstaande One.com als verwerker van gegevens.

    Klantengegevens op de Webruimte

    Bij registratie van een domein via One.com wordt de klant eigenaar van het domein. De klant behoudt alle rechten op de inhoud die de klant op zijn/haar webruimte plaatst. De templates en afbeeldingen die ter beschikking zijn gesteld door One.com blijven eigendom van One.com. Echter, One.com heeft geen rechten op de gegevens die de klant zelf op zijn/haar account geplaatst heeft. De eigenaar van de account is daarmee dus zelf wettelijk aansprakelijk voor hetgeen dat op de account geplaatst is.

    One.com heeft geen mening omtrent de data op de webruimte van de klant, en doet hier geen wettelijk onderzoek naar. Echter in geval van duidelijk illegale inhoud, zoals bijv. kinderporno, pogingen tot phishing e.d., zal One.com zijn verantwoording nemen, en de relevante autoriteiten op de hoogte brengen. In alle andere gevallen neemt One.com alleen stappen wanneer een EU of US rechtbank, of andere relevante instantie, One.com dit oplegt.

    De Verantwoordelijkheid van de Klant voor het Abonnement bij One.com

    De klant moet altijd uitloggen uit zijn account wanneer hij klaar is met het gebruik, om te voorkomen dat derden toegang krijgen tot persoonlijke gegevens van de klant. Ook wanneer de klant geen gebruik maakt van een publieke computer in bijv. een bibliotheek of internetcafé, moet de klant uit voorzorg altijd uitloggen.

    Veiligheid van Gegevens

    One.com erkent de speciale verantwoorlijkheid die komt kijken bij de hosting van persoonlijke gegevens op de webruimte van de klant. We willen graag zien dat de klanten One.com als een betrouwbare plaats zien voor hun data opslag. Het One.com datacenter is daarom ontworpen om te voldoen aan de hoogste standaards van beveiliging. Alle data van de klanten en de systeem data van One.com zijn beveiligd door een dagelijkse remote back-up van alle servers door middel van een privé 10 Gbit glasvezel verbinding naar een aparte back-up locatie, gesitueerd op 10 km afstand van de hoofdserverruimte.

    De dagelijkse back-up beschermt de webruimte van onze klanten tegen dataverlies. De back-up bevat alle webruimtes, ongeacht de grootte. Deze back-up is een voorzorg i.v.m. het verlies van data, veroorzaakt door eventuele storingen die binnen One.com veroorzaakt zijn. Hierdoor, kunnen we alle data terugzetten na een eventuele storing, tenzij de reden van verlies niet binnen One.com ligt. Wanneer een back-up wordt teruggezet, zal de gehele server, met alle webruimtes op deze server, terug gezet worden naar de staat zoals deze voor de storing was.

    Domeinverloopbeleid

    Generieke Top Level Domains en .uk / .co.uk / .me.uk / .org.uk domains

    One.com vernieuwt de registratie van een domeinnaam voorafgaand aan de vervaldatum, mits de registrant van de domeinnaam voldoet aan de voorwaarden van betaling van One.com.

    Domeinverloopbericht

    Voorafgaand aan het verstrijken van een gTLD, attendeert One.com de registrant van de domeinnaam tweemaal op de instructies voor de vernieuwing van de domeinnaam. De eerste melding is via e-mail ongeveer een maand voor het aflopen van de registratie. De tweede melding wordt ongeveer een week voor het aflopen van de registratie via e-mail gestuurd .

    Domeinverloopbericht

    Als een domeinregistratie niet wordt verlengd door de registrant, stuurt One.com, binnen vijf dagen na het verstrijken, een extra e-mail aan de houder van het domein met instructies voor het herstellen van de domeinnaam.

    Domeinverloopinhoud

    One.com stuurt de notificaties van de domeinvervalling via e-mail naar het domeinregistrant in de taal van de registratie-overeenkomst. Alle relevante informatie over de vervaldatum, domein vernieuwing en aanbevolen actie, zijn duidelijk beschikbaar door simpelweg het openen van de e-mailnotificatie.

    Redemption grace periode

    One.com biedt een redemptionperiode van 30 dagen na het verstrijken van een gTLD. Binnen de redemptionperiode wordt de DNS uitgeschakeld voor het domein en het domein kan niet worden overgedragen. One.com kan het domein op verzoek van de registrant herstellen tijdens de redemptionperiod. De vergoeding voor het herstellen van het domein is aangegeven in de One.com prijslijst.

    Dit Domain Expiratie Beleid is vastgelegd in One.com’s Verlopen Registratie Invorderingsprocedure (ERRP) voor gTLD’s, zoals gevraagd door ICANN en voor .uk/.co.uk/.me.uk/.org.uk domains. Andere domeinen kunnen een ander verloopbeleid hebben.

    Links

    One.com prijzen
    Registrant Educatieve Materialen (ICANN)
    Voordelen en verantwoordelijkheden registranten (ICANN)

    One.com behandelingsproces klantenservice

    Hoe wij met klantvragen omgaan

    Als u vragen heeft, neemt u contact op met onze klantenservice. Binnen vijf minuten nadat we uw vraag ontvangen op support@nl.one.com of sales@nl.one.com, sturen we u een automatische bevestiging. Binnen 24 uur ontvangt u een antwoord van iemand van onze klantenservice.

    Ons behandelingsproces bij klachten

    1. Contact met onze Support of Verkoop

    Ons eerste contactpunt is onze supportafdeling. Voor vragen over verkoop en abonnement neemt u contact op met het team Verkoop. Voor technische vragen neemt u contact op met de Support. Wij beantwoorden uw vraag binnen 24 uur.

    2. Contact met ons Customer Care team

    Bent u niet tevreden met het antwoord dat u krijgt van de klantenservice of verkoop, dan kunt u uw klacht neerleggen bij ons Customer Care team.

    Ons Customer Care team neemt uw klacht in behandeling en biedt u binnen 2 werkdagen een oplossing.

    Contact met onze Supportmanager

    Bent u niet tevreden met het antwoord dat u krijgt van ons Customer Care team, dan kunt uuw klacht neerleggen bij de supportmanager.

    Alle klachten moeten de volgende informatie bevatten: Uw naam, contactgegevens, domeinnaam of ordernummer en een duidelijke omschrijving van uw klacht. Zet als onderwerp “Klacht” in de onderwerpregel van uw e-mail.

    De supportmanager neemt uw klacht binnen 2 werkdagen in behandeling en streeft ernaar u binnen vijf werkdagen een reactie te geven.

    4. Klacht indienen voor online geschillenbeslechting

    Een klacht over een product of dienst van One.com kan ingediend worden bij het European Commission’s online dispute resolution portal: http://ec.europa.eu/odr.

    Als u een klacht indient, vermeld dan ons e-mailadres: service@one.com

    Betreffende .uk / .co.uk / .me.uk / .org.uk domeinnamen

    Indien u niet tevreden bent met het antwoord van onze Supportmanager en van mening bent dat we de Registrar overeenkomst overtreden, dan kunt u een klachtenprocedure bij Nominet starten.

    Misbruik

    Hoe wij omgaan met klachten over misbruik

    Als ICANN geaccrediteerde registrar, nemen wij klachten over misbruik erg serieus. Wij verzoeken u contact op te nemen als u misbruik wilt melden. One.com zal elke klacht controleren op geldigheid en zo snel mogelijk behandelen.

    Speciale voorwaarden voor de individuele top level domeinen

    Het gebruik van .de domeinen

    Bij de registratie of overdracht van .de domeinen fungeert One.com slechts als tussenpersoon tussen de domeineigenaar en DENIC (Domain Verwaltungs- und Betriebsgesellschaft eG) (cf. http://www.denic.de/)

    Het gebruik van .dk domeinen

    De domeineigenaar aanvaardt dat de voortdurende registratie of overdracht voorwaardelijk is, onder andere, over de naleving van de huidige DIFO regels betreffende het beheer van domeinnamen onder het top level domein .dk, inclusief de beslissingen van de raad van het klachtenbestuur opgezet door DIFO, cf. Artikel 5 van de regels (cf. http://www.dk-hostmaster.dk/)

    Het gebruik van .nl domeinen

    De domeineigenaar aanvaardt dat door de registratie of overdracht van een .nl domeinnaam, hij of zij akkoord gaat met en zich zal houden aan de huidige regels die SIDN heeft opgesteld voor het beheer van domeinnamen onder het top level domain .nl (cf. https://www.one.com/static/terms/regulations-registration.pdf)

    Het gebruik van .se domeinen

    Door het registreren van een .se domeinnaam, wordt One.com de link tussen de domeineigenaar en .SE (The Internet Infrastructure Foundation) en aanvaardt de domeineigenaar dat door de registratie of overdracht van een .SE domeinnaam, hij of zij akkoord gaat met en zich zal houden aan de huidige regels die .SE heeft opgesteld voor het beheer van domeinnamen onder het top level domain .se (cf. http://www.iis.se/ and https://www.one.com/static/terms/se-registrar.pdf)

    Het gebruik van .uk domeinen

    De domeineigenaar aanvaardt dat door de registratie of overdracht van een .uk domeinnaam, hij of zij akkoord gaat met en zich zal houden aan de huidige regels die Nominet heeft opgesteld voor het beheer van domeinnamen onder het top level domain .uk (cf. http://www.nominet.org.uk/)

    Voor andere domeinnamen dan die vermeld staan op deze pagina, wordt verwezen naar de regels van de individuele top level domeinen. Indien de domeineigenaar niet voldoet aan de regels van het betreffende domein, is One.com gerechtigd om de webruimte van de klant te verwijderen.

    Het gebruik van .rio domeinen

    De domeineigenaar gaat akkoord met de algemene voorwaarden bij het registreren van een .rio domein (cf. http://nic.rio/english/policies/)

    Het gebruik van .be domeinen

    De domeineigenaar gaat er mee akkoord dat door het registeren of verhuizen van een .be domein, zij zich aan de algemene voorwaarden van DNS.be zullen houden (cf. http://www.dnsbelgium.be/en/documents/enduser-terms-and-conditions-be)

    Het gebruik van generieke topleveldomeinen

    De domeineigenaar accepteert dat bij het registreren of overzetten van een generiek topleveldomein bij One.com, hij/zij akkoord gaat met de One.com domeinregistratieovereenkomst: http://www.one.com/nl/domeinregistratieovereenkomst

    Gebruik van andere domeinen

    Voor domeinen die hierboven niet worden genoemd wordt er verwezen naar de voorwaarden voor de individuele domeinen.

    Betalingsvoorwaarden

    Met betrekking tot de bijzondere betalingsvoorwaarden voor de individuele domeinen, bekijk https://help.one.com/hc/articles/115005595625.

  • Privacy Policy

    This version (Version 4.0) is effective as of May 25, 2018.

    OVERVIEW

    At O’Reilly, we pride ourselves on our commitment to protecting your privacy. Our data governance and privacy policies reflect our company’s values and how we strive to maintain your privacy.

    This Privacy Policy (the “Policy”) discloses the privacy practices of O’Reilly Media, Inc. and O’Reilly UK Limited (“O’Reilly”), and Safari Books Online, LLC (“Safari”) (referred to collectively as “we,” “us,” “our”). This Policy governs how we use and protect personal information that we collect when you visit our website, use our services, or otherwise engage with us. Any practices or points that are specific to O’Reilly or Safari are also clearly marked out in this Policy.

    Any use you make of O’Reilly service offerings is subject to O’Reilly’s Terms of Service (TOS)and any use you make of any Safari service offering is also subject to Safari’s Membership Agreement and TOS.

    ABOUT US

    O’Reilly Media, Inc. is a corporation registered in Delaware, with a principal office at located at 1005 Gravenstein Highway North, Sebastopol, CA 95472, United States of America.

    O’Reilly UK Limited is a company registered in England, under company number 03569414, with its registered address at New Derwent House, 69-73 Theobalds Road, London, WC1X 8TA, United Kingdom.

    Safari Books Online, LLC is a limited liability company registered in Delaware, with a principal office at located at 1003 Gravenstein Highway North, Sebastopol, CA 95472, United States of America.

    QUESTIONS OR CONCERNS: CONTACT US

    If you have any questions about this Policy or questions or complaints about our privacy practices, please contact us using the details below:

    FAO
    Data Protection Officer
    Address
    O’Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472, USA
    Email
    privacy@oreilly.com

    The contact information above should also be used for communications relating to exercising the rights described in section 6.2 below.

    If we do not resolve your question or concern satisfactorily, then please contact our U.S.-based third party dispute resolution providers (free of charge) at https://feedback-form.truste.com/watchdog/request.

    TRUSTe

    1. INFORMATION WE COLLECT

    We collect personal information in the following ways:

    1.1 INFORMATION THAT YOU PROVIDE TO US DIRECTLY

    We gather information that you provide to us when you:

    • purchase products or services from us
    • subscribe to our newsletters and mailing lists
    • participate in promotional offers (such as a trial Safari subscription) and other promotions, competitions or prize drawings
    • fill in forms, conduct searches, post content on the website, respond to surveys, or use any other features of our websites
    • make an inquiry, provide feedback, submit correspondence, or make a complaint over the phone, by email, on our website or by post
    • register for, and update an online account with us (including if you access through Facebook, LinkedIn, Twitter, Google, or an open IP provider)
    • register to, present at, and/or attend, our events and conferences, scan your attendance badge at any of the booths at our conferences/events, or at our booths when we are present at someone else’s conference/event
    • enter into a contract with us
    • sign up for job alerts on our websites, submit a job application, a CV, cover letter, or social media profile to a job vacancy, attend an interview, assessment, or meeting
    • contact other users on the websites, e.g. on the O’Reilly Community website
    • ‘follow’, ‘like’, post to, or interact with, our social media accounts, including Facebook, LinkedIn, Twitter, Pinterest, Instagram, Google+, and SnapChat.

    The information you provide to us will include (depending on the circumstances):

    • Identity and contact data: title, names, addresses, email addresses, phone numbers or your signature.
    • Account profile data: a username/display name, password, user preferences and, if you sign up through a social media account, certain information about that account.
    • Conference registration details: the company/organization you work for, job title/position, language preferences, your name, your email, your age, your gender, your job function, your experience, your opinions and why you are attending the conference and what you hope to learn, your accessibility needs.
    • Financial data: payment details, which may include billing addresses, credit/debit card details and bank account details.
    • Employment and background data: if you apply for employment on our sites, your academic and work history, qualifications, skills, projects and research that you are involved in, references, proof of your entitlement to work in the relevant country, your national security number, your passport or other identity document details, your current level of remuneration (including benefits), and any other such similar information that you may provide to us.
    • Visual and audio information about yourself: e.g. a photo or video footage, or sound recording.
    • Your preferences: information about your preferences, interests, industry focus, community choices, and other customer profile information.
    • Sensitive information: information about your race or ethnicity, religious beliefs, sexual orientation, health and whether or not you have any disability. You can find out more about how we use sensitive information below in the “Special Categories of Data” section.
    • Any other information that you choose to share with us: for example, any information that you provide via correspondence, when you fill out our survey(s), that you share via our website or social media accounts linked to our website, or any information that you choose to provide in person at events, meetings, or over the phone.
    • Mobile application: when you download and use the Safari service, we automatically collect information on the type of device you use and your operating system version.

    1.2 INFORMATION WE COLLECT THROUGH TECHNOLOGY RELATED TO OUR PRODUCTS AND SERVICES

    Some of our products and services collect information about system and product data. We use this information to manage and administer our products and services, to issue updates and new versions, testing and monitoring services that we provide, enhancing our products and services, and improving and targeting our communications with you.

    Our mobile apps may collect information about your geo-location data in order to provide you with conference services near you. You can switch off geo-location functionality for our mobile apps on your device.

    1.3 INFORMATION WE COLLECT THROUGH ONLINE TECHNOLOGY

    Technologies such as cookies, beacons, tags, local storage, and scripts are used by us and our affiliates, and other companies, such as third party technology service providers and web analytics providers. These technologies make it easier for you to navigate our website and to help us manage the content on our website and are used to analyze trends, administer the sites, track users’ movements around the site (including which site you clicked from to arrive at our site), and gather demographic information about our user base. Additional information about these online technologies is available here.

    1.4 INFORMATION FROM OTHER SOURCES

    In certain circumstances, we will receive information about you from other sources, including third parties. For example, we may receive personal information from any of the following, who may be based inside and/or outside the EU:

    • Other website users.
    • Event attendees.
    • Your agents or representatives who are acting on your instructions.
    • Commercial contact lists that we acquire from other organizations.
    • Organizations that we acquire or merge with.
    • Organizations with whom we provide co-branded events, websites, products, and services.
    • Fraud detection agencies.
    • Your current and former employers, recruitment agencies, and referees.
    • Service providers including our website developers, IT support providers, cloud services providers, payment services providers, billing service providers, contractors, consultants, advertising agencies and platforms, digital performance monitoring and management providers, advertising analytics providers, marketing and sales service providers, user experience testing platforms, B2B contact databases, recruitment agencies, survey tool providers, customer relationship and customer support service providers, event ticket retailers, event management platform service providers, customer identity account management providers, HR service providers, couriers, instant messaging service providers.
    • Social media plugins. By providing your social media account details you are authorizing that third-party provider to share with us certain information about you.
    • Publicly available sources such as LinkedIn.

    We might also receive information about you from other third parties if you have indicated to such third parties that you would like to hear from us.

    1.5 SPECIAL CATEGORIES OF DATA

    Special categories of particularly sensitive personal information require higher levels of protection. These so-called “special categories of data” include details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data. Depending on the circumstances, we will also collect information about criminal convictions and offenses.

    We need to have further justification for collecting, storing and using this type of personal information. We process special categories of personal information in the following circumstances:

    • in limited circumstances, with your explicit written consent
    • where it is necessary to carry out our legal obligations or exercise rights in connection with employment
    • where it is necessary for reasons of substantial public interest, such as for equal opportunities monitoring
    • where it is necessary in relation to legal claims
    • where it is necessary to protect your interests (or someone else’s interests) and you are not capable of giving your consent
    • where you have already made the information public.

    For example, we will collect special categories of information:

    • when you apply to work for us (for diversity and equal opportunities records, to support your needs and facilitate access to our premises, and to carry out background checks);
    • when you attend our events, visit our premises, or apply for a scholarship from us (to improve racial balance at our events, to make any necessary arrangements for your attendance, and to investigate claims about breaches of our Conference Code of Conduct).

    In limited circumstances, we may request your written consent to allow us to use certain particularly sensitive data. If we do so, we will provide you with full details of the information that we would like and the reason we need it, so that you can carefully consider whether you wish to consent.

    2. USING PERSONAL INFORMATION

    2.1 HOW WE USE INFORMATION WE COLLECT

    We use your information for the following purposes:

    • To provide access to our website in a manner convenient and optimal and with personalized content relevant to you (on the basis of our legitimate interest to ensure our website is presented in an effective and optimal manner).
    • To register and maintain your O’Reilly or Safari account (on the basis of performing our contract with you).
    • To process and fulfill your orders for O’Reilly and Safari products and services (on the basis of performing our contract with you).
    • To process and facilitate transactions and payments, and recover money owed to us (on the basis of performing our contract with you, and on the basis of our legitimate interest to recover debts due).
    • To monitor your account and use of services to ensure compliance with our end-user agreements and prevent and identify unlawful content use and violations (on the basis of our legitimate interests to operate a safe and lawful business, or where we have a legal obligation to do so).
    • To enable you to communicate with other website users and clients (on the basis of your consent where we have requested it, or on the basis of performing our contract with you).
    • To manage our relationship with you, which will include notifying you about changes to our terms of service or privacy policy, and asking you to leave a review or take a survey (on the basis of performing our contract with you, to comply with our legal obligations, and our legitimate interest in keeping our records updated and study how our website and services are used).
    • To conduct business with you or your employer, including to contact you and manage and facilitate our business relationship with you and your employer (on the basis of performing our contract with you, and our legitimate interest in running our business).
    • To provide customer service and support, like dealing with inquiries or complaints about the website, which may include sharing your information with our website developer, IT support provider, and payment services provider as necessary (on the basis of performing our contract with you, our legitimate interest in providing the correct products and services to our website users, and to comply with our legal obligations).
    • To enable you to take part in prize drawings, competitions, and surveys (on the basis of performing our contract with you, and our legitimate interest in studying how our website and services are used, to develop them, and to grow our business).
    • To work with you and undertake projects with you, including to process any proposals that you submit to us (on the basis of our contract with you, and our legitimate interest in running our business).
    • To provide access to, and administer O’Reilly scholarship programs (on the basis of your consent where we have requested it, on the basis of performing our contract with you, and our legitimate interest in making our products and services accessible to a range of individuals with diverse backgrounds).
    • For recruitment, including to process any job applications you submit to us, whether directly or via an agent or recruiter including sharing your information with our third party recruitment agencies (on the basis of our legitimate interest to recruit new employees or contractors).
    • To carry out marketing and let you know about our news, events, new website features products or services that we believe may interest you, including sharing your information with our marketing services providers (either on the basis of your consent where we have requested it, or our legitimate interests to provide you with marketing communications where we may lawfully do so).
    • To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you (on the basis of our legitimate interests in studying how our website/services are used, to develop them, to grow our business and to inform our marketing strategy).
    • To interact with users on social media platforms (on the basis of our legitimate interest in promoting our brand and communicating with interested individuals).
    • To conduct data analytics to improve our website, products/services, marketing, customer relationships and experiences (on the basis of our legitimate interests in defining types of customers for our website and services, to keep our website updated and relevant, to develop our business, to provide the right kinds of products and services to our customers, and to inform our business and marketing strategy).
    • To make suggestions and recommendations by sharing your information with selected third parties such as sponsors and partners, so they can contact you about things that may interest you (either on the basis of your consent where we have requested it, or on the basis of our legitimate interest to share details of conference attendees with our co-presenters and sponsors).
    • To carry out marketing research and user testing to assess the levels of satisfaction of existing and proposed products and services (on the basis of our legitimate interest in carrying out research, providing the right kinds of products and services to our customers).
    • To protect, investigate, and deter against fraudulent, unauthorized, or illegal activity (on the basis of our legitimate interests to operate a safe and lawful business, or where we have a legal obligation to do so).
    • To enable us to comply with our policies and procedures and enforce our legal rights, and to protect the rights, property or safety of our employees and share your information with our technical and legal advisors (on the basis of our legitimate interests to operate a safe and lawful business, or where we have a legal obligation to do so).

    We will use your information for the purposes listed above either on the basis of:

    • your consent (where we request it);
    • performance of your contract with us and the provision of our services to you;
    • where we need to comply with a legal or regulatory obligation; or
    • our legitimate interests or those of a third party (see section 2.2 below for more information).

    2.2 LEGITIMATE INTERESTS

    As outlined above, in certain circumstances we may use your personal information to pursue legitimate interests of our own or those of third parties. Where we refer to our “legitimate interests”, we mean our legitimate business interests in conducting and managing our business and our relationship with you, including the legitimate interests we have specified in section 2.1 above.

    Where we use your information for our legitimate interests, we make sure that we take into account any potential impact that such use may have on you. Our legitimate interests don’t automatically override yours and we won’t use your information if we believe your interests should override ours unless we have other grounds to do so (such as your consent or a legal obligation). If you have any concerns about our processing please refer to details of “Your Rights” in Section 6 below.

    3. HOW WE SHARE AND DISCLOSE PERSONAL INFORMATION

    We consider your personal information to be a vital part of our relationship with you and do not sell your personal information to third parties. There are, however, certain circumstances in which we may share your personal information with certain third parties, as follows:

    • Other website users and clients who use our websites and/or applications to communicate or otherwise interact with you;
    • Sponsors, partners and collaborators, including sponsors of our events, products or services, and organizations with whom we host co-branded events.
    • Our service providers who are acting as processors and who assist us with our administrative or business functions, or in the provision of any of our products/services to you.
    • Wholly owned subsidiaries, and foreign offices, of O’Reilly Media, Inc. including those based in the USA, UK, China, and Japan.
    • Regulators and governmental bodies like the IRS, HMRC, and other authorities and regulators acting as processors or joint controllers who require reporting of processing activities in certain circumstances.
    • Marketing parties which are any selected third party that you consent to our sharing your information with for marketing purposes.
    • Any prospective buyer of our business or assets, only in the event that we wish to sell any part of our business or assets.
    • Other third parties including legal, professional or other advisors, regulatory authorities, courts, law enforcement agencies and government agencies) where necessary to enable us to enforce our legal rights, or to protect the rights, property or safety of our employees or where such disclosure may be permitted or required by law.

    4. HOW WE LOOK AFTER YOUR PERSONAL INFORMATION AND HOW LONG WE KEEP IT

    4.1 SECURITY

    We use administrative, technical, and physical safeguards to protect the security, confidentiality, and integrity of personal data against loss, misuse and unauthorized access, disclosure, alteration, and destruction. We also operate a policy of “privacy by design” by looking for opportunities to minimize the amount of personal information we hold about you.

    The safeguards we use include:

    • ensuring the physical security of our offices, warehouses, or other sites
    • ensuring the physical and digital security of our equipment and devices by using appropriate password protection and encryption
    • using standard security protocols and mechanisms (such as secure socket layer (SSL) encryption) to transmit sensitive data such as credit card details
    • maintaining a data protection policy for, and delivering data protection training to, our employees
    • limiting access to your personal information to those who need to use it in the course of their work

    If you have any questions about the security of your personal information, please contact us using the methods outlined in the “Contact Us” section above.

    4.2 RETENTION

    We will keep your information for as long as is necessary to provide you with the services that you have requested from us or for as long as we reasonably require to retain the information for our lawful business purposes, such as for the purposes of exercising our legal rights or where we are permitted to do. We operate a data retention policy and look to find ways to reduce the amount of information we hold about you and the length of time that we need to keep it.

    Please contact us using the methods outlined in the “Contact Us” section above if you would like to obtain details of our retention periods for different aspects of your personal data.

    4.3 HELP KEEP YOUR INFORMATION SAFE

    You can also play a part in keeping your information safe by:

    • choosing a strong account password, changing it regularly, and using different passwords for different online accounts
    • keeping your login and password details confidential
    • logging out of the website and closing the browser each time you have finished using it, especially when using a shared computer
    • informing us if know or suspect that your account has been compromised, or if someone has accessed your account without your permission
    • keeping your devices protected by using the latest version of your operating system and maintaining any necessary anti-virus software
    • being vigilant to any fraudulent emails that may appear to be from us. Any emails that we send will come from an email address ending in either: @oreilly.com (O’Reilly US), @mail.oreilly.com.cn (O’Reilly China), @oreilly.co.uk (O’Reilly UK), @oreilly.co.jp (O’Reilly Japan), @safaribooksonline.com or @e.safaribooksonline.com (Safari Books)

    5. INTERNATIONAL TRANSFERS OF YOUR INFORMATION

    O’Reilly and Safari are both based in the United States of America.

    5.1 SAFARI PRIVACY SHIELD CERTIFICATION

    Safari (and entities and subsidiaries that are, or may become, covered by Safari’s privacy shield certification) participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework (collectively the “Privacy Shield Framework”). Safari is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland (“Privacy Shield Covered Data”), respectively, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability, including the 16 supplemental principles described in each Privacy Shield Framework (collectively, the “Privacy Shield Principles”). Safari has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. To learn more about the Privacy Shield Framework and to view Safari’s certification, please visit the U.S. Department of Commerce’s Privacy Shield List available at https://www.privacyshield.gov. If there is any conflict between the terms in this Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. Additionally, Safari may protect your data through other legally-valid methods, including international data transfer agreements.

    Under the Privacy Shield Framework, Safari collects, uses, and discloses Privacy Shield Covered Data for the purposes described in this Policy. Under the Privacy Shield Framework, as described in Section 6 below, you may inquire as to whether Safari is processing personal information about you, request access to Personal Information, and ask that we correct, amend or delete your personal information where it is inaccurate or has been processed in violation of the Privacy Shield Principles. Safari is responsible for the processing of personal data it receives, under each Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Privacy Shield requires that Safari remain liable should its third parties process personal information in a manner inconsistent with the Privacy Shield Principles. Safari complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.

    With respect to Privacy Shield Covered Data received or transferred pursuant to the Privacy Shield Framework, Safari is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (the “FTC”). The FTC has jurisdiction over Safari’s compliance with the Privacy Shield Framework. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

    If you are an EU or Swiss citizen and feel that we are not abiding by the terms of this Privacy Notice, or that we are not in compliance with the Privacy Shield Principles, please contact us by using the contact information provided at the top of this Privacy Policy.

    Under certain conditions, more fully described on the Privacy Shield website https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted. For additional information, see https://www.privacyshield.gov/article?id=ANNEX-I-introduction.

    If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request. If your request remains unresolved, you may contact the national data protection authority for your EU Member State.

    5.2 SPECIAL NOTE TO USERS OUTSIDE OF THE UNITED STATES

    We transact business throughout the world and have operations, processes and systems that cross borders. Our offices are located in the United States, the United Kingdom, China and Japan, and our servers are located in the United States, the United Kingdom, Belgium, China and Japan. We transfer your personal data within the O’Reilly and Safari group of companies in the United States, and to affiliates, joint venture partners, and third party service providers around the world.

    If you reside in the European Union, please be advised that your personal data will be processed outside of the European Economic Area (EEA). We will take all steps necessary to ensure that your information is adequately protected and processed in accordance with this Privacy Policy, including but not limited to:

    We may transfer your personal information to countries in the following regions outside of the EEA: North America and Asia. Please contact us using the contact details in this Privacy Policy if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.

    6. YOUR RIGHTS: ACCESS AND ACCURACY, UPDATING, CORRECTING, OR DELETING INFORMATION

    6.1 YOUR RIGHTS – SUMMARY

    You have certain rights in respect of the information that we hold about you, including:

    • the right to be informed of the ways in which we use your information, as we seek to do in this Privacy Policy
    • the right to ask us not to process your personal data for marketing purposes
    • the right to request access to the information that we hold about you
    • the right to request that we correct or rectify any information that we hold about you which is out of date or incorrect
    • the right to withdraw your consent for our use of your information in reliance of your consent (refer to section 2 above to see when we are relying on your consent), which you can do by contacting us using any of the details at the top of this Privacy Policy
    • the right to object to our using your information on the basis of our legitimate interests (refer to section 2 above to see when we are relying on our legitimate interests) (or those of a third party)) and there is something about your particular situation which makes you want to object to processing on this ground
    • the right to receive a copy of any information we hold about you (or request that we transfer this to another service provider) in a structured, commonly-used, machine readable format, in certain circumstances
    • in certain circumstances, the right to ask us to limit or cease processing or erase information we hold about you
    • the right to lodge a complaint about us to the UK Information Commissioner’s Office (https://ico.org.uk/) as well as a right to lodge a complaint with the relevant authority in your country of work or residence

    6.2 HOW TO EXERCISE YOUR RIGHTS

    You may exercise your rights above by contacting us using the methods outlined in the “Contact Us” section above and we will comply with your requests unless we have a lawful reason not to do so.

    In the case of preventing processing for marketing activities, you can opt out of marketing by signing in to your Safari account and updating your account settings. You may also opt-out of receiving newsletters or other communications by following the opt-out instructions included in each newsletter or communication or by contacting us using the methods outlined in the “Contact Us” section above.

    You can opt out of our Google Analytics data collection by using the tools available hereYou can opt out of Adobe Analytics by using the tools available here.

    Please note that your objection to processing (or withdrawal of any previously given consent) could mean that we are unable to provide you with our services. Even after you have chosen to withdraw your consent we may continue to process your personal information when required or permitted by law, in particular in connection with exercising and defending our legal rights, or meeting our legal and regulatory obligations.

    6.3 WHAT WE NEED FROM YOU TO PROCESS YOUR REQUESTS

    We may need to request specific information from you to help us confirm your identity and to enable you to exercise the rights set out above. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

    You will not have to pay a fee to exercise the rights set out above. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances. We will try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

    7. CHILDREN’S PRIVACY

    Our website is not intended for children. We do not knowingly collect or maintain the personal information of children under the age of 13, and in some jurisdictions under the age of 16. If you are under the age of 13, please do not access our website at any time or in any manner. If we learn that we have collected personal information of children under the age of 13 or 16 (as applicable), we will take appropriate steps to delete that data.

    8. SHARING DATA WITH THIRD PARTIES

    You might provide personal information directly to third parties as a consequence of your interactions with our website and other services offered by us. For example, our website may contain content and links to other third-party websites, plug-ins, and applications that are operated by third parties that may also operate cookies. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We don’t control these third party websites or cookies, we are not responsible for their privacy statements, and this Privacy Policy does not apply to them. Please check the terms and conditions and privacy policy of the relevant third party website to find out how they collect and use your information. If you do not want us to share your personal information with these companies, contact us at using one of the methods described in the “Contact Us” section above.

    Please be responsible with personal information of others when using our website and the services available on it. We are not responsible for your misuse of personal information, or for the direct relationship between you and others that takes place outside of the website or our services.

    9. FOR CALIFORNIA RESIDENTS: YOUR PRIVACY RIGHTS AND DO NOT TRACK DISCLOSURE

    O’Reilly’s and Safari’s policy is to share your personal information only if you have given us your consent, for instance, by your agreeing to this Privacy Policy through your use of our sites. After obtaining such consent, Safari may in accordance with this Privacy Policy from time to time provide its business partners with contact details for direct marketing purposes of relevant services, products, and programs. If you no longer wish your information to be shared, please let us know, and we will prevent disclosure of your information to such business partners free of charge, or if you have further inquiries regarding our information sharing practices, please let us know using the methods outlined in the “Contact Us” section above.

    California law requires us to let you know how we respond to web browser Do Not Track (DNT) signals. DNT is a way for users to inform websites and services that they do not want certain information about their webpage visits collected over time and across websites or online services. We do not respond to or honor DNT signals or similar mechanisms transmitted by web browsers at this time.

    10. CHANGES TO THIS PRIVACY POLICY

    Please note that this Policy may change from time to time. We will not reduce your rights under this Policy without your consent. If we make any material changes we will notify you by email or by means of a notice on this website prior to the change becoming effective. You can also view prior versions of the Policy by viewing the links in section 11 below.

    11. PREVIOUS VERSIONS OF THE PRIVACY POLICY

    11.1 O’REILLY PRIVACY POLICIES

    Click here for version 2.1

    Click here for version 2.0

    Click here for version 1.1

    11.2 O’REILLY SCHOOL OF TECHNOLOGY PRIVACY POLICIES

    Click here for version 2.1

    Click here for version 2.0

    11.3 SAFARI PRIVACY POLICIES

    Click here for version 3.4

    Click here for version 3.3

  • DATA PRIVACY POLICY NOTICE

    This Data Privacy Policy (“Privacy Policy”) applies to all websites and mobile applications owned and operated by Other World Computing, Inc., its subsidiaries and/or its affiliates (“OWC”), including, but not limited to, macsales.com, owcdigital.com, newertech.com, softraid.com and ntdist.com (collectively the “Site”).

    Our Commitment to Privacy

    Your privacy is important to us. Since our founding in 1988, it has been our unwavering policy to never sell or trade your personal or contact information to marketers. We continue to stand by this policy today.

    To better protect your privacy, we provide this notice explaining our online information practices and the choices you can make about the way your information is collected and used.

    BY CONTINUED USE OF THE SITE AND SUBMITTING OF PERSONAL INFORMATION TO THE SITE, YOU CONSENT TO THE TERMS AND CONDITIONS OF THIS PRIVACY POLICY AND TO OUR PROCESSING OF PERSONAL INFORMATION FOR THE PURPOSES STATED HEREIN. THIS PRIVACY POLICY INCORPORATES AND IS EXPRESSLY SUBJECT TO THE TERMS AND CONDITIONS OF USE. IF YOU DO NOT AGREE TO THE TERMS AND CONDITIONS OF THIS PRIVACY POLICY, PLEASE DO NOT USE THE SITE.

    This Privacy Policy has been developed in accordance with the applicable state and federal laws of the United States and the EU General Data Protection Regulation (“GDPR”).

    BACK TO TOP

    Purpose of Privacy Policy

    The purpose of the Privacy Policy is to provide clarity, transparency, and accuracy regarding the collection and use of an individual’s personal data for which OWC may collect and use for processing.

    BACK TO TOP

    The Way We Use Information

    We do use information that we collect about you or that you provide to us, including any Personal Information:

    • To present our Site and its contents to you.
    • To provide you with information, products or services that you request from us. To provide customer service to you, it is necessary for us to disclose information to our affiliates and other companies that work with us. We do not share your information with outside parties except as provided herein and to the extent necessary to provide you service and maintain our Site.
    • To fulfill any purpose for which you provide information.
    • To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
    • To notify you about changes to our Site or any products or services we offer or provide through it.
    • To allow you to participate in interactive features on our Site.

    We may also use your information to contact you about our goods and services that may be of interest to you. If you do not want us to use your information in this way, please check the relevant box located on the form on which we collect your data (for example, our Sweepstakes entry form), or send us an e-mail stating your request to custserv@macsales.com. If we have sent you a promotional e-mail, you may also send us a return e-mail asking to be omitted from future e-mail distributions. Note, these opt outs do not apply to information provided to OWC via the Site as a result of a product purchase, warranty registration, or other transactions.

    Finally, we may use the information we have collected from you to enable us to display advertisements to our advertisers’ target audiences, as well as for auditing, research, and analysis to improve OWC’s products and services and the Site.

    BACK TO TOP

    Publicly Displayed Information is Public

    You also may provide information to be published or displayed on public areas of the Site, or transmitted to other users of the Site or third parties (collectively, “User Contributions”). Your User Contributions are posted on and transmitted to others at your own risk. If you submit a product or store review or use a bulletin board or chat room on an OWC Site, you should be aware that any information you share is visible to other users. Information you submit to one of these forums can be read, collected, or used by other individuals to send you unsolicited messages. OWC is not responsible for the User Contributions you choose to submit. If you delete your User Contributions from the Site, copies of your User Contributions may remain viewable in cached and archived pages, or might have been copied or stored by other Site users. Proper access and use of information provided on the Site, including User Contributions, is governed by our terms of use.

    BACK TO TOP

    Moderation of Comments and Posts

    The Site allows individuals to post comments on discussion topics on various forums. We encourage you to share your thoughts as they relate to the topic being discussed, but please be advised that posts will be publicly visible; therefore, the Site utilizes a moderation policy for ensuring posts are appropriate and not harmful to others. As such, we review and moderate posts according to our stated guidelines below. The views expressed in posts reflect those of the individual making the post, and are not intended to be viewed as those of OWC.

    OWC promotes public comments and posts for purposes of transparency in who we are, what we do, and the services we offer. However, courtesy and professionalism are to be used at all times by individuals, thus OWC reserves the right to block, hide, and/or delete, remove posts that:

    • Are deemed obscene, indecent, or profane language.
    • Contain threats, defamatory, or derogatory statements.
    • Invoke terroristic threats, promote violence, along with any other offensive material and any other content deemed unprofessional, unethical or that violates any local, state, or federal law or regulation.
    • Reveal Personal Information.
    • Contain information posted in violation of law, including libel, condoning or encouraging illegal activity, and revealing classified information, or posts that might affect the outcome of ongoing legal proceedings.
    • Promote or endorse services or products, including links to external commercial sites. (Note that non-commercial links that are relevant to the topic or another post are acceptable.)
    • Contain content that is completely off-topic, spam, or intended primarily to promote a link for purposes of link building.
    • Contain any other type of content deemed unprofessional, unethical or that violates any local, state, or federal law or regulation.

    Unless you have clear permission to do so, please do not submit copyrighted, trademarked or other proprietary, confidential, and/or sensitive non-public information. By submitting your posts or other work, you grant the effectively allow anyone viewing the discussion forum on the Site irrevocable permission to copy, distribute, make derivatives, display or perform the poster’s work publicly and free-of-charge.

    To protect your privacy, please do not include Personal Information that can be used to potentially identify you. OWC will review all posts in a timely manner, and will respond accordingly and take action for any posts that violate the above-stated conditions.

    BACK TO TOP

    Site Security

    For site security purposes and to ensure that this service remains available to all users, the platform for which the Site resides on – commonly known as a “production environment”, utilizes a wide-range of software tools and programs to for the ultimate goal of ensuring its confidentiality, integrity, and availability (CIA) – a concept known as the CIA triad of information security. Tools which are currently in use, or are to be deployed if necessary for the security of the Site are to include, but are not limited to, the following:

    • Network Security and Network Monitoring: Tools that assist in securing the network for which the Site resides on. Such tools include network and perimeter firewalls, web application firewalls, routers, switches, intrusion detection systems, and other related tools.
    • Network Performance: Tools that assist in monitoring all aspects of the Site, such as performance monitoring for website uptime, etc.
    • Other: Additionally, A variety of physical, electronic and procedural safeguards are implemented for helping ensure the safety and security of the Site.

    Except for authorized law enforcement investigations by local, state, and/or federal agencies, no other attempts are made by OWC to identify individual users and/or their usage habits on the Site.

    BACK TO TOP

    External Links

    The Site may contain links to websites created and maintained by other public and/or private organizations. OWC provides these links as a courtesy to our users only. When users click on a link to an external website, they are leaving the Site and are thus subject to the privacy and security policies and the related terms and conditions of these external websites.

    BACK TO TOP

    Cookies

    A cookie is a small file that a website can place on your computer’s hard drive in order to collect information about your activities on the site or to make it easier to use certain site functions. The cookie transmits this information back to the website’s computer. Many users do not know that cookies are being placed on their computers when they visit websites. If you want to know when this happens, or prevent it from happening, you can set your browser to warn you when a website attempts to place a cookie on your computer.

    As is true of most websites, we use cookies and similar technologies to gather certain information automatically and store it in log files. This information includes Internet Protocol (IP) addresses, browser type, Internet Service Provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. We may use this information to analyze trends, personalize your shopping experience, administer the Site, track user movements around the Site, and to gather demographic information about our Site users as a whole. If you disable or refuse cookies, please note that some parts of this Site may then be inaccessible or not function properly.

    BACK TO TOP

    The Information We Collect

    We collect several types of information from and about our customers and users of our Site, including information:

    • by which you may be personally identified, such as name, postal address, e-mail address or telephone number (“Personal Information”);
    • that is about you but individually does not identify you; and/or
    • about your internet connection, the equipment you use to access our Site and usage details.

    We collect this information:

    • Directly from you when you provide it to us.
    • Automatically as you navigate through the site. Information collected automatically may include usage details, IP addresses and information collected through cookies, web beacons, and other tracking technologies.

    Information You Provide to Us. The information we collect may include:

    • Information that you provide by filling in forms on our Site. This includes information provided at the time of registering to use our Site, subscribing to our newsletter services, email registrations, posting material, orders, or requesting further services. We may also ask you for information when you enter a contest, sweepstakes, or promotion sponsored by us, and when you report a problem with our Site.
    • Records and copies of your correspondence (including e-mail addresses), if you contact us.
    • Your responses to surveys that we might ask you to complete for research purposes.
    • Details of transactions you carry out through our Site and of the fulfillment of your orders.
    • Your search queries on the Site.
    • Information that you provide through phone, mail and fax interactions or paper registrations that you submit to OWC via the Site.

    Usage Details, IP Addresses, Cookies. As you navigate through and interact with our Site, we may automatically collect certain information about your equipment, browsing actions and patterns, including:

    • Details of your visits to our Site, including traffic data, location data, logs and other communication data and the resources that you access and use on the Site.
    • Information about your computer and internet connection, including your IP address, operating system and browser type.

    The information we collect automatically is statistical data. It helps us to improve our Site and to deliver a better and more personalized service. The technologies we use for this automatic data collection may include Cookies and Web Beacons.

    When you interact with OWC on our Site or otherwise, such as when you call our sales or support staff, you may be required to provide financial information before placing an order through our Site. For example, we may collect Personal Information relevant to the situation, such as your name, mailing address, billing address, phone number, email address, and contact preferences; your credit card information; information about the OWC products you own, such as their serial numbers and date of purchase; and information relating to a support or service issue.

    BACK TO TOP

    Our Commitment to Data Security

    To prevent unauthorized access, maintain data accuracy, and ensure the correct use of information, we have put in place appropriate physical, electronic, and managerial procedures designed to safeguard and secure the information we collect online.

    This Site offers SHA256 + RSA 2048-bit SSL encryption of sensitive data. Doing so helps to protect the confidentiality of your personal and credit card information while it is transmitted over the Internet. No method of transmission over the Internet, or electronic storage, is 100% secure. Therefore, while we strive to protect your Personal Information with commercially acceptable practices, we cannot guarantee absolute security. Any transmission of Personal Information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Site.

    BACK TO TOP

    Newsletters

    OWC offers two e-mail newsletters that may be subscribed to at no cost. One newsletter is primarily focused on industry news and tech tips while the other provides regular updates on special offers and deals. To join click here for more information. You can opt-out of any OWC newsletter at any time via the link provided at the bottom of each newsletter mailing, or by sending us an e-mail stating your request to custserv@macsales.com.

    BACK TO TOP

    Our Commitment to Children’s Privacy

    Protecting the privacy of the very young is especially important. For that reason, OWC never knowingly collects or maintains information at our Site from those under 13, and no part of our Site is directed at anyone under 13. If you are under 13, do not use or provide any information on this Site. If we learn we have collected or received Personal Information from a child under 13 without verification of parental consent, we will use our best efforts to delete the information as soon as possible.

    BACK TO TOP

    How You Can Access or Correct Your Information

    OWC will make good-faith efforts to provide you with reasonable access to your Personal Information for the purpose of correcting this data. To request updates to your information, contact us by writing us at the following address:

    Other World Computing, Inc.
    Attn: Executive Management
    8 Galaxy Way
    Woodstock, IL 60098 USA

    Should you have other questions or concerns about these privacy policies, please contact us.

    BACK TO TOP

    Security

    All information accessed through the Site is in compliance with the required information security mandates of Article 32 of the GDPR. Specifically, Article 32 mandates the following:

    • Implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including inter alia as appropriate:
      • The pseudonymisation and encryption of personal data.
      • The ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services.
      • The ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident.
      • A process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing.

    BACK TO TOP

    Information Disclosure

    We may disclose aggregated information about our users, and information that does not identify any individual, without restriction.

    We may disclose Personal Information that we collect or you provide as described in this privacy policy:

    • To our subsidiaries and affiliates.
    • To contractors, service providers and other third parties we use to support our business.
    • To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of OWC’s assets.
    • For any other purpose disclosed by us when you provide the information.

    We may also disclose your Personal Information:

    • To comply with any court order, law or legal process, including to respond to any government or regulatory request.
    • To enforce or apply our terms of use or terms of sale and other agreements, including for billing and collection purposes.
    • If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of OWC, our customers or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.

    The Site includes hypertext links, or pointers, to information created and maintained by other public and/or private organizations. As such, OWC only provides these links for your information and convenience, thus, when you select a link to an outside website, you are leaving the Site and therefore subject to the privacy and security policies of these external websites. Additionally, please note the following:

    • OWC does not control or guarantee the accuracy, relevance, timeliness, or completeness of information contained on a linked website.
    • OWC does not endorse the organizations sponsoring linked websites and we do not endorse the views they express or the products/services they offer.
    • OWC therefore cannot authorize the use of copyrighted materials contained in linked websites. Users must request such authorization from the sponsor of the linked website.
    • OWC is not responsible for transmissions users receive from linked websites.

    BACK TO TOP

    Changes in this Privacy Policy

    If we decide to materially change our privacy policy, we will post those changes to this Privacy Policy and other places we deem appropriate so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it. We reserve the right to modify this Privacy Policy at any time, so please review it frequently. Your continued use of this Site after we make changes is deemed to be acceptance of those changes.

    BACK TO TOP

  • PRIVACY STATEMENT 

    De Persgroep Nederland B.V. (gevestigd en kantoorhoudende te (1018 LL) Amsterdam aan de Jacob Bontiusplaats 9, hierna: “de Persgroep”) is uitgever van onder meer het AD, de Volkskrant, Trouw, Het Parool, Brabants Dagblad, ED, Tubantia, BN DeStem, PZC, de Stentor, de Gelderlander en diverse regionale weekkranten. Daarnaast heeft de Persgroep een aantal online services waaronder intermediair.nl, tweakers.net, hardwareinfo.nl, indebuurt.nl, nationalevacaturebank.nl, reclamefolder.nl, deondernemer.nl, sportnieuws.nl en autotrack.nl. De volledige lijst merken en diensten waarvoor dit privacy statement geldt is hier te vinden.

    De Persgroep is een onderdeel van De Persgroep Publishing N.V., een internationaal opererende uitgever. De ICT werkzaamheden van De Persgroep Publishing worden grotendeels centraal uitgevoerd en beheerd op de hoofdvestiging van de Persgroep Publishing in Kobbegem, België. Veel van de persoonsgegevens in beheer van de Persgroep worden daar opgeslagen en beheerd. Persoonlijke gegevens van gebruikers van de producten en diensten van de Persgroep worden zorgvuldig behandeld en beveiligd. De Persgroep houdt zich aan de Algemene Verordening Gegevensbescherming en overige privacy wet- en regelgeving.

    Vastleggen en verwerking van persoonsgegevens

    Wanneer u gebruikt maakt van één van de diensten van de Persgroep, dan worden uw persoonsgegevens verwerkt. Dit gebeurt op verschillende manieren, voor verschillende doeleinden en de Persgroep houdt verschillende bewaartermijnen aan. In het onderstaande wordt onder ‘gegevens’ ook persoonsgegevens verstaan. Kijk hieronder welke categorie op u van toepassing is:

    • Heeft u een abonnement bij één van de kranten van de Persgroep?

    De Persgroep gebruikt uw persoons- en abonnementgegevens om uitvoering te geven aan de met u gesloten overeenkomsten en om u de overeengekomen diensten, producten en informatie te leveren. De krant moet bijvoorbeeld bij u thuis worden bezorgd. Daarvoor is het ook noodzakelijk dat de Persgroep uw persoonsgegevens doorgeeft aan de distributeur en de krantenbezorger. Daarnaast zijn de voornoemde gegevens noodzakelijk om u toegang te verschaffen tot de digitale versie van de krant en Topics. Zie ook de categorie ‘Heeft u een Persgroep account?’. De Persgroep gebruikt uw persoons- en abonnementgegevens ook voor direct marketingdoeleinden zodat aan u soortgelijke aanbiedingen kunnen worden gedaan. De Persgroep bewaart uw persoons- en abonnementgegevens tot en met twee jaar na afloop van het abonnement en mogelijk langer voor zover de geldende wet- en regelgeving de Persgroep daartoe verplicht.

    • Bent u een online bezoeker van één van de websites of gebruiker van één van de apps van de Persgroep?

    Als u één van onze websites bezoekt of een van onze apps gebruikt verstrekt u gegevens aan de Persgroep zonder dat u zich daar misschien bewust van bent. Dit gaat bijvoorbeeld om apparaat gegevens zoals een unieke apparaat-ID, de versie van het besturingssysteem en instellingen van het apparaat dat u gebruikt om toegang te krijgen tot een dienst van de Persgroep. Maar ook gebruikgegevens over de diensten die u gebruikt waaronder het tijdstip, de duur van het gebruik en de inhoud van de dienst. Daarnaast worden voor zover deze aan de Persgroep worden doorgegeven ook locatiegegevens afkomstig van uw mobiele apparaat of gegevens afgeleid van uw IP-adres gebruikt. De bewaartermijn van de online gegevens bedraagt zes maanden.

    • Maakt u gebruik van één van de vacaturewebsites en/of vacaturediensten van de Persgroep? 

    De Persgroep maakt onderscheid tussen actief en passief verstrekte (persoons)gegevens. De gegevens die u actief aan de Persgroep verstrekt worden opgenomen in een gegevensbestand en gebruikt voor de volgende doeleinden:
    A. Uw gegevens worden gebruikt voor de uitvoering van de met u gesloten overeenkomsten en om u de overeengekomen diensten, producten en informatie te leveren.
    B. Daarnaast gebruikt de Persgroep uw gegevens om u op de hoogte te houden van interessante informatie, om u aanbiedingen te kunnen doen, om u te informeren over huidige en toekomstige producten of diensten van de Persgroep en om specifiek op u gerichte vacatures te kunnen tonen.
    C. Indien van toepassing worden de door u verstrekte gegevens met uw toestemming gedeeld met bijvoorbeeld potentiele werkgevers en/of recruiters.

    Passief verstrekte gegevens zijn gegevens die u aan beheerders van de websites verstrekt zonder dat u zich daar misschien bewust van bent. Dit gaat bijvoorbeeld om apparaat gegevens zoals een unieke apparaat-ID, de versie van het besturingssysteem en instellingen van het apparaat dat u gebruikt om toegang te krijgen tot een dienst van de Persgroep. Maar ook gebruikgegevens over de diensten die u gebruikt waaronder het tijdstip, de duur van het gebruik en de inhoud van de dienst. Daarnaast worden voor zover deze aan de Persgroep worden doorgegeven ook locatiegegevens afkomstig van uw mobiele apparaat of gegevens afgeleid van uw IP-adres gebruikt.

    De Persgroep publiceert bepaalde gegevens die u in uw account of profiel hebt opgenomen op de vacaturewebsites. Deze gegevens zijn toegankelijk voor alle bezoekers van de vacaturewebsites. Bij het invullen van uw account of profiel is aangegeven welke gegevens op de vacaturewebsites worden gepubliceerd. Indien u niet wilt dat deze gegevens openbaar zijn, dan kunt u de invulvelden in uw account of profiel leeg laten. Ook de informatie die u zelf op de vacaturewebsites plaatst is toegankelijk voor alle bezoekers van de vacaturewebsites. In sommige gevallen kunt u via de website doorklikken naar websites van derden. De Persgroep is niet verantwoordelijk voor de gegevensverwerking of het privacy beleid van deze derden. Ook is de Persgroep niet verantwoordelijk voor de eventuele verwerking van uw openbare persoonsgegevens door andere gebruikers van de vacaturewebsites.

    Na een termijn van vijf jaar inactiviteit van uw account of profiel ontvangt u van de Persgroep een bericht of het account of het profiel verwijderd dient te worden.

    • Bezoekt u de website autotrack.nl of gebruikt u de autotrack app?

    Autotrack legt de gegevens die u invult voor het gebruikmaken van de zoekservice, advertentieservice en berichtenservice in haar database vast. Autotrack verzamelt en beheert deze gegevens om voor u interessante occasions te selecteren en per e-mail aan u te kunnen toezenden. De bewaartermijn van de door u verstrekte gegevens bedraagt maximaal twee jaar.

    • Bezoekt u de website reclamefolder.nl of gebruikt u de reclamefolder app?

    Reclamefolder legt de gegevens die u invult voor het gebruikmaken van het reclamefolderaccount en uw folder voorkeuren vast in haar database. Reclamefolder verzamelt en beheert deze gegevens om wekelijks de meest interessante folders per e-mail aan u te kunnen toezenden. Indien u daar toestemming voor geeft houdt de reclamefolder app op uw mobiele apparaat de locatie bij zodat u interessante aanbiedingen kunt ontvangen van winkels waar u op dat moment in de buurt bent. De bewaartermijn van de door u verstrekte gegevens bedraagt maximaal twee jaar.

    • Neemt u deel aan wedstrijden en/of spellen georganiseerd door de Persgroep?

    De door u verstrekte gegevens aan de Persgroep zijn noodzakelijk om de wedstrijd en/of het spel uit te kunnen voeren. Daarnaast gebruikt de Persgroep de gegevens om eventuele winnaars een prijs te kunnen (laten) uitreiken. De gegevens van de deelnemers die niet winnen worden één jaar bewaard. De Persgroep moet uw gegevens zeven jaar bewaren om te voldoen aan de geldende wet- en regelgeving, indien u een prijswinnaar bent.

    • Bent u een adverteerder of een zakelijke relatie bij of van de Persgroep?

    De Persgroep gebruikt de door u verstrekte gegevens om uitvoering te geven aan de met u gesloten overeenkomsten en om u de overeengekomen diensten, producten en informatie te leveren. De Persgroep gebruikt uw gegevens daarnaast voor direct marketingdoeleinden zodat aan u soortgelijke aanbiedingen kunnen worden gedaan. Uw gegevens worden tot maximaal zeven jaar bewaard na afloop van de overeenkomst.

    • Solliciteert u bij de Persgroep?

    De Persgroep gebruikt uw gegevens voor de afhandeling van uw sollicitatie. Onder andere de volgende gegevens worden verwerkt: voornaam, achternaam, geslacht, geboortedatum, adres, postcode, woonplaats, telefoonnummer, e-mailadres, opleidingsniveau, beschikbaarheid, cv en motivatie. De door u aan de Persgroep verstrekte gegevens inclusief cv en motivatie worden door de Persgroep bewaard gedurende een periode van vier weken na het einde van de sollicitatieprocedure. Indien u daar toestemming voor heeft gegeven worden uw gegevens pas na één jaar na beëindiging van de sollicitatieprocedure verwijderd. Treedt u in dienst bij de Persgroep, dan worden uw gegevens onderdeel van het personeelsdossier.

    • Koopt u een product of dienst via één van de webshops van de Persgroep? 

    De Persgroep gebruikt de door u verstrekte gegevens om uitvoering te geven aan de met u gesloten overeenkomsten en om u de overeengekomen diensten, producten en informatie te leveren. De Persgroep gebruikt uw gegevens daarnaast voor direct marketingdoeleinden zodat aan u soortgelijke aanbiedingen kunnen worden gedaan. Uw gegevens worden tot maximaal twee jaar na uw laatste aankoop bewaard.

    • Heeft u een Persgroep account?

    Met een Persgroep account kunt u eenvoudig op alle digitale diensten van de Persgroep inloggen. Hierdoor kunt u op een centrale plek uw voorkeuren en instellingen beheren en hoeft u niet meerdere gebruikersnamen en wachtwoorden te onthouden. Als u gebruik maakt van een social media login voor uw Persgroep account kan ook de social media partij gegevens over uw gebruik van de account vastleggen. Op de gegevensverwerking van de betreffende social media partij zijn de privacy voorwaarden van deze partij zelf van toepassing.
    Door middel van het Persgroep account heeft de Persgroep de mogelijkheid om verschillende diensten en verschillende apparaten te koppelen aan één gebruiker. Hiermee worden de producten en diensten van de Persgroep beter afgestemd op uw behoeften en interesses. De Persgroep legt bij uw account informatie over uw interesses en voorkeuren vast en stelt op basis hiervan een profiel op. Kijk voor informatie onder Samengesteld profiel. Uw Persgroep account is indien u een abonnement heeft bij de Persgroep gekoppeld aan de abonnementgegevens. In dat geval worden uw gegevens tot twee jaar na beëindiging van het abonnement bewaard.

    • U ontvangt een nieuwsbrief van de Persgroep?

    De Persgroep gebruikt met uw toestemming uw e-mailadres om een nieuwsbrief te kunnen toezenden. U kunt zich uitschrijven via de knop ‘afmelden’.

    Samengesteld profiel
    De door u actief en passief verstrekte gegevens worden zoveel als mogelijk in één samengesteld profiel opgeslagen. De samengestelde profielen worden op basis van postcode verrijkt met socio-demografische gegevens zoals bijvoorbeeld leeftijds- en inkomenscategorieën. De Persgroep gebruikt de gegevens uit het samengesteld profiel voor de navolgende doeleinden:

    • de lezer en gebruiker beter begrijpen om op deze manier artikelen aan te bevelen die aansluiten bij de interesses;
    • producten en diensten te verbeteren en deze op een zo goed mogelijke manier afstemmen op de lezer en gebruiker;
    • het informeren over andere producten en diensten van de Persgroep;
    • doelgericht adverteren;
    • het benaderen of uitsluiten van specifieke doelgroepen door middel van adverteren via sociale media zoals Facebook.

    Bijzondere persoonsgegevens
    De websites en diensten van de Persgroep hebben niet de intentie gegevens te verzamelen over bezoekers jonger dan 16 jaar. De Persgroep kan echter niet controleren of een bezoeker 16 jaar of ouder is. Als u er van overtuigd bent dat de Persgroep zonder ouderlijke toestemming persoonlijke gegevens heeft verzameld over een minderjarige, neem dan contact op via privacy@persgroep.nl zodat deze informatie kan worden verwijderd.

    Beveiliging gegevens
    De Persgroep maakt gebruik van uitgebreide veiligheidsprocedures voor de bescherming van de verwerkte gegevens, onder meer om te voorkomen dat onbevoegden toegang krijgen tot deze gegevens. Uw persoonlijke gegevens worden bewaard op beveiligde servers. Indien er aanwijzingen zijn van misbruik neemt u dan contact met ons op via onze klantenservice of via privacy@persgroep.nl.

    Gebruik van Cookies
    De websites van de Persgroep maken bij het aanbieden van hun diensten gebruik van cookies. Meer informatie over het gebruik van cookies en vergelijkbare technologieën vindt u in onze cookiepolicy.

    Gegevens inzien, aanpassen of verwijderen
    Je hebt het recht om je persoonsgegevens in te zien, te corrigeren, of te verwijderen. Hiervoor kan je het formulier op de volgende pagina gebruiken: https://consumentenrecht.persgroep.net/nl.
    Als je een vraag of verzoek hebt dat niet via het formulier kan worden ingediend kan je een mail sturen naar privacy@persgroep.nl.

    De Persgroep zal in beginsel binnen vier weken op een verzoek tot inzage of correctie verzoek reageren. In geval van een verzoek tot verwijdering zal de Persgroep de betreffende persoonsgegevens zo spoedig mogelijk verwijderen, tenzij en voor zover de wet verplicht om de betreffende persoonsgegevens te bewaren of er (andere) dringende redenen zijn die zich tegen verwijdering verzetten. De Persgroep stuurt je na uitvoering van een verzoek tot verwijdering een bevestigingsbericht. Indien de Persgroep de betreffende persoonsgegevens (gedeeltelijk) niet heeft verwijderd, stuurt de Persgroep de bezoeker een bericht waarin zij toelicht waarom niet (volledig) aan het verzoek kon worden voldaan.

    Indien de Persgroep niet of niet volledig kan vaststellen op welke persoonsgegevens een verzoek tot inzage, correctie of verwijdering betrekking heeft, kan de Persgroep de bezoeker vragen om zijn verzoek (nader) te specificeren. De uitvoering van het verzoek wordt dan opgeschort op totdat de bezoeker de (nadere) specificatie heeft verstrekt.

    U kunt door middel van het sturen van een bericht aan privacy@persgroep.nlbezwaar maken tegen het gebruik van uw persoonsgegevens voor direct marketingdoeleinden of andere verwerkingen.

    Data Protection Officer (DPO)
    Voor vragen of klachten over uw gegevens en de bescherming van uw privacy kunt u contact opnemen met de Data Protection Officer van de Persgroep via privacy@persgroep.nl.

    Wijzigingen
    De Persgroep behoudt zich het recht voor om wijzigingen aan te brengen in het privacy statement. Check daarom regelmatig het privacy statement voor eventuele aanpassingen. Deze versie is van 29 mei 2018.

    Vragen of klachten
    Als u nog vragen of klachten heeft over ons privacy beleid kunt u contact opnemen met de klantenservice van de Persgroep of een bericht sturen aan privacy@persgroep.nl. U heeft ook het recht een klacht in te dienen bij de Autoriteit Persoonsgegevens.

  • PIKLIST

    Hello *|FNAME|*,

    You may have heard about the new General Data Protection Regulation (“GDPR”), that comes into effect May 25, 2018. To help comply with GDPR consent requirements, we need to confirm that you would like to receive content from us.

    We hope that our content is useful to you. If you’d like to continue hearing from us, please update your subscription settings.

     

    Legal

    Privacy Policy

    Effective May 23, 2018
    View the prior version of our privacy policy (last updated November 1, 2017) here.

    MailChimp takes data privacy seriously. This privacy policy explains who we are, how we collect, share and use Personal Information, and how you can exercise your privacy rights.

    We recommend that you read this privacy policy in full to ensure you are fully informed. However, to make it easier for you to review the parts of this privacy policy that apply to you, we have divided up the document into sections that are specifically applicable to Members (Section 2), Contacts (Section 3), and Visitors (Section 4). Sections 1 and 5 are applicable to everyone.

    If you have any questions or concerns about our use of your Personal Information, then please contact us using the contact details provided at the end of Section 5.

    TRUSTe Privacy Certification
    1. The Basics
    2. Privacy for Members

    This section applies to the Personal Information we collect and process from a Member or potential Member through the provision of the Services. If you are not a Member, the Visitors or Contacts section of this policy may be more applicable to you and your data. In this section, “you” and “your” refer to Members and potential Members.

    A. Information We Collect

    The Personal Information that we may collect broadly falls into the following categories:

    (i) Information you provide to us: In the course of engaging with our Services, you may provide Personal Information about you and your Contacts. Personal Information is often, but not exclusively, provided to us when you sign up for and use the Services, consult with our customer service team, send us an email, integrate the Services with another website or service (for example, when you choose to connect your e-commerce account with MailChimp), or communicate with us in any other way.

    We will let you know prior to collection whether the provision of Personal Information we are collecting is compulsory or if it may be provided on a voluntary basis and the consequences, if any, of not providing the information. By giving us this information, you agree to this information being collected, used and disclosed as described in our Terms of Use and in this privacy policy.

    Learn More

    (ii) Information we collect automatically: When you use the Services, we may automatically collect certain information about your device and usage of the Services. We use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed more below, and in more detail in our Cookie Statement here.

    Learn More

    (iii) Information we collect from other sources: From time to time, we may obtain information about you or your Contacts from third-party sources, such as public databases, social media platforms, third-party data providers and our joint marketing partners. We take steps to ensure that such third parties are legally or contractually permitted to disclose such information to us.

    Learn More

    (iv) Information from the use of our mobile apps: When you use our mobile apps, we may collect certain device and usage-related information in addition to information described elsewhere in this privacy policy.

    Learn More

    B. Use of Personal Information

    We may use the Personal Information we collect through the Services or other sources for a range of reasons, including:

    • To bill and collect money owed to us by you.
    Learn More
    • To send you system alert messages.
    Learn More
    • To communicate with you about your account and provide customer support.
    Learn More
    • To enforce compliance with our Terms of Use and applicable law, and to protect the rights and safety of our Members and third parties, as well as our own. This may include developing tools and algorithms that help us prevent violations.
    Learn More
    • To meet legal requirements, including complying with court orders, valid discovery requests, valid subpoenas, and other appropriate legal mechanisms.
    • To provide information to representatives and advisors, including attorneys and accountants, to help us comply with legal, accounting, or security requirements.
    • To prosecute and defend a court, arbitration, or similar legal proceeding.
    • To respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
    • To provide, support and improve the Services. For example, this may include sharing your or your Contacts’ information with third parties in order to provide and support our Services or to make certain features of the Services available to you.
    Learn More
    • To provide suggestions to you.
    Learn More
    • For our data analytics projects. Our data analytics projects use data from MailChimp accounts, including Personal Information of Contacts, to provide and improve the Services. We use information like your sending habits and your Contacts’ details and purchase history, so we can make more informed predictions, decisions, and products for our Members. If you or your Contact prefers not to share this data, you can alter the security settings on your account (as described here) to opt out of data analytics projects, or your Contact can opt out of data analytics projects at any time by emailing us at personaldatarequests@mailchimp.com.
    Learn More
    • Combined information. We may combine Personal Information with other information we collect or obtain about you (such as information we source from our third-party partners) to serve you specifically, such as to deliver a product or service according to your preferences or restrictions, or for advertising or targeting purposes in accordance with this privacy policy. When we combine Personal Information with other information in this way, we treat it as, and apply all of the safeguards in this privacy policy applicable to, Personal Information.
    • Other purposes. To carry out other legitimate business purposes, as well as other lawful purposes about which we will notify you.

    C. Cookies and Tracking Technologies

    We and our partners may use various technologies to collect and store information when you use our Services, and this may include using cookies and similar tracking technologies, such as pixels and web beacons. For example, we use web beacons in the emails we send on your behalf. These web beacons track certain behavior such as whether the email sent through the Services was delivered and opened and whether links within the email were clicked. They also allow us to collect information such as the recipient’s IP address, browser, email client type and other similar details. We use this information to measure the performance of your email campaigns, and to provide analytics information and enhance the effectiveness of our Services. Reports are also available to us when we send email to you, so we may collect and review that information.

    Our use of cookies and other tracking technologies is discussed in more detail in our Cookie Statement here.

    D. Member Distribution Lists

    A Distribution List can be created in a number of ways, including by importing Contacts, such as through a CSV or directly from your email client. Your Distribution Lists are stored on a secure MailChimp server. We do not, under any circumstances, sell your Distribution Lists. If someone on your Distribution List complains or contacts us, we might then contact that person. You may export (download) your Distribution Lists from MailChimp at any time.

    If we detect abusive or illegal behavior related to your Distribution List, we may share your Distribution List or portions of it with affected ISPs or anti-spam organizations to the extent permitted or required by applicable law.

    If a Contact chooses to use the Forward to a Friend (FTF) link in an email campaign a Member sends, it will allow the Contact to share the Member’s email content with individuals not on the Member’s Distribution List. When a Contact forwards an email to a friend, we do not store the Contact’s email address or their friend’s email address, and no one is added to any Distribution List as a result of the FTF link. The Member who created the email campaign only sees an aggregate number of times their email campaign was forwarded by a Contact and does not have access to the email addresses used to share or receive that forwarded content.

    E. Other Data Protection Rights

    You and your Contacts may have the following data protection rights:

    • To access, correct, update or request deletion of Personal Information. MailChimp takes reasonable steps to ensure that the data we collect is reliable for its intended use, accurate, complete and up to date. As a Member, you can manage many of your individual account and profile settings within the dashboard provided through the MailChimp platform, or you may contact us directly by emailing us at personaldatarequests@mailchimp.com. You can also manage information about your Contacts within the dashboard provided through the MailChimp platform to assist you with responding to requests to access, correct, update or delete information that you receive from your Contacts.
    • In addition, individuals who are residents of the EEA can object to processing of their Personal Information, ask to restrict processing of their Personal Information or request portability of their Personal Information. You can exercise these rights by contacting us using the contact details provided in the “Questions and Concerns” section below. If any of your Contacts wishes to exercise any of these rights, they should contact you directly, or contact us as described in the “Privacy for Contacts” section below.
    • Similarly, if Personal Information is collected or processed on the basis of consent, the data subject can withdraw their consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent. If you receive these requests from Contacts, you can segment your lists within the MailChimp platform to ensure that you only market to Contacts who have not opted out of receiving such marketing.
    • The right to complain to a data protection authority about the collection and use of Personal Information. For more information, please contact your local data protection authority. Contact details for data protection authorities in the EEA are available here.

    We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection law. We may ask you to verify your identity in order to help us respond efficiently to your request. If we receive a request from one of your Contacts, we will either direct the Contact to reach out to you, or, if appropriate, we may respond directly to their request.

    3. Privacy for Contacts

    This section applies to the information we process about our Members’ Contacts as a data controller pursuant to our legitimate business interests, as explained in the “Legal Basis for Processing” section below. Our Services are intended for use by our Members. As a result, for much of the Personal Information we collect and process about Contacts through the Services, we act as a processor on behalf of our Members. MailChimp is not responsible for the privacy or security practices of our Members, which may differ from those set forth in this privacy policy. Please check with individual Members about the policies they have in place. For purposes of this section, “you” and “your” refer to Contacts.

    A. Information We Collect

    The Personal Information that we may collect or receive about you broadly falls into the following categories:

    (i) Information we receive about Contacts from our Members: A Member may provide Personal Information about you to us through the Services. For example, when a Member uploads their Distribution List or integrates the Services with another website or service (for example, when a Member chooses to connect their e-commerce account with MailChimp), or when you sign up for a Member’s Distribution List on a MailChimp signup form, they may provide us with certain contact information or other Personal Information about you such as your name, email address, address or telephone number. You may have the opportunity to update some of this information by electing to update or manage your preferences via an email you receive from a Member.

    (ii) Information we collect automatically: When you interact with an email campaign that you receive from a Member or browse or purchase from a Member’s connected store, we may collect information about your device and interaction with an email. We use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed more below, and in more detail in our Cookie Statement here.

    Learn More

    (iii) Information we collect from other sources: From time to time, we may obtain information about you from third-party sources, such as social media platforms and third-party data providers. We take steps to ensure that such third parties are legally or contractually permitted to disclose such information to us, and we use this information to provide publicly available social media information about you to Members who have enabled the “Social Profiles” feature in their MailChimp accounts.

    B. Use of Personal Information

    We may use the Personal Information we collect or receive about you for our legitimate business interests, including:

    • To enforce compliance with our Terms of Use and applicable law. This may include developing tools and algorithms that help us prevent violations.
    • To protect the rights and safety of our Members and third parties, as well as our own.
    Learn More
    • To meet legal requirements, including complying with court orders, valid discovery requests, valid subpoenas, and other appropriate legal mechanisms.
    • To provide information to representatives and advisors, including attorneys and accountants, to help us comply with legal, accounting, or security requirements.
    • To prosecute and defend a court, arbitration, or similar legal proceeding.
    • To respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
    • To provide, support and improve the Services. For example, this may include sharing your information with third parties in order to provide and support our Services or to make certain features of the Services available to our Members.
    Learn More
    • For our data analytics projects. Our data analytics projects use data from MailChimp accounts, including your Personal Information, to provide and improve the Services. We use information, like your purchase history, provided to us by Members, so we can make more informed predictions, decisions, and products for our Members. For example, we use data from MailChimp accounts to enable product recommendation, audience segmentation, and predicted demographics features for our Members. If you prefer not to share this data, you can opt out of data analytics projects at any time by emailing us at personaldatarequests@mailchimp.com.
    • Other purposes. To carry out other legitimate business purposes, as well as other lawful purposes.

    C. Cookies and Tracking Technologies

    We and our partners may use various technologies to collect and store information when you interact with a Member’s email campaign or connected store, and this may include using cookies and similar tracking technologies, such as pixels and web beacons. For example, we use web beacons in the emails we send on behalf of our Members. When you receive and engage with a Member’s campaign, web beacons track certain behavior such as whether the email sent through the MailChimp platform was delivered and opened and whether links within the email were clicked. They also allow us to collect information such as your IP address, browser, email client type, and other similar details. We use this information to measure the performance of our Members’ email campaigns, and to provide analytics information and enhance the effectiveness of our Services.

    Our use of cookies and other tracking technologies is discussed in more detail in our Cookie Statement here.

    D. Legal Basis for Processing

    We process Personal Information about you as a data controller as described in this section, where such processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. Our legitimate interests typically include: improving, maintaining, providing, and enhancing our technology, products and services; ensuring the security of the Services and our Website; and for our marketing activities.

    E. Other Data Protection Rights

    You may have the following data protection rights:

    • To access, correct, update or request deletion of your Personal Information. MailChimp takes reasonable steps to ensure that the data we collect is reliable for its intended use, accurate, complete, and up to date. You may contact us directly at any time about accessing, correcting, updating or deleting your Personal Information, or altering your data, by emailing us at personaldatarequests@mailchimp.com. We will consider your request in accordance with applicable laws.
    • In addition, if you are a resident of the EEA, you can object to processing of your Personal Information, ask us to restrict processing of your Personal Information or request portability of your Personal Information. Again, you can exercise these rights by emailing us at personaldatarequests@mailchimp.com.
    • You have the right to complain to a data protection authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority. Contact details for data protection authorities in the EEA are available here.

    As described above, for much of the Personal Information we collect and process about Contacts through the Services, we act as a processor on behalf of our Members. In such cases, if you are a Contact and want to exercise any data protection rights that may be available to you under applicable law or have questions or concerns about how your Personal Information is handled by MailChimp as a processor on behalf of our individual Members, you should contact the relevant Member that is using the MailChimp Services, and refer to their separate privacy policies.

    If you no longer want to be contacted by one of our Members through our Services, please unsubscribe directly from that Member’s newsletter or contact the Member directly to update or delete your data. If you contact us directly, we may remove or update your information within a reasonable time and after providing notice to the Member of your request.

    We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws. We may ask you to verify your identity in order to help us respond efficiently to your request.

    4. Privacy for Visitors

    This section applies to Personal Information that we collect and process through our Websites and in the usual course of our business, such as in connection with our recruitment, events, sales and marketing activities. In this section “you” and “your” refers to Visitors.

    A. Information We Collect

    (i) Information you provide to us on the Websites or otherwise: Certain parts of our Websites may ask you to provide Personal Information voluntarily. For example, we may ask you to provide certain Personal Information (such as your name, contact details, company name, profile information) in order to sign up for a free or paid MailChimp account, apply for a role with MailChimp, or otherwise submit inquiries to us. We may also collect Personal Information, such as your contact and job details and feedback, when you attend our events, take part in surveys, or through other business or marketing interactions we may have with you. You may choose to provide additional information when you communicate with us or otherwise interact with us, and we will keep copies of any such communications for our records.

    The Personal Information that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point we ask you to provide your Personal Information. We will also let you know prior to collection whether the provision of the Personal Information we are collecting is compulsory or may be provided on a voluntary basis and the consequences, if any, of not providing the information.

    (ii) Information we collect automatically through the Websites: When you visit our Websites, we may also collect certain information automatically from your device. In some countries, including countries in the European Economic Area, this information may be considered Personal Information under applicable data protection laws.

    Learn More

    B. Use of Personal Information

    We may use the information we collect through our Websites for a range of reasons, including:

    • To provide, operate, optimize, and maintain our Websites.
    • To send you information for marketing purposes, in accordance with your marketing preferences.
    • For recruitment purposes if you have applied for a role with MailChimp.
    • To respond to your online inquiries and requests, and to provide you with information and access to resources or services that you have requested from us.
    • To manage our Websites and system administration and security.
    • To improve the navigation and content of our Websites.
    • To identify any server problems or other IT or network issues.
    • To process transactions and to set up online accounts.
    • To compile aggregated statistics about site usage and to better understand the preferences of our Visitors.
    • To carry out research and development to improve our products and services.
    • To customize content and layout of the Websites.
    • To carry out other legitimate business purposes, as well as other lawful purposes.

    In addition, we may combine Personal Information with other information we collect or obtain about you (such as information we source from our third-party partners) to serve you specifically, such as to deliver a product or service according to your preferences or restrictions, or for advertising or targeting purposes in accordance with this privacy policy. When we combine Personal Information with other information in this way, we treat it as, and apply all of the safeguards in this privacy policy applicable to, Personal Information.

    C. Public Information and Third-Party Websites

    • Blog. We have public blogs on our Websites. Any information you include in a comment on our blog may be read, collected, and used by anyone. If your Personal Information appears on our blogs and you want it removed, contact us here. If we are unable to remove your information, we will tell you why.
    • Social media platforms and widgets. Our Websites include social media features, such as the Facebook Like button. These features may collect information about your IP address and which page you are visiting on our Website, and they may set a cookie to make sure the feature functions properly.
    Learn More
    • Links to third-party websites. Our Websites include links to other websites, whose privacy practices may be different from ours. If you submit Personal Information to any of those sites, your information is governed by their privacy policies. We encourage you to carefully read the privacy policy of any website you visit.
    • Contests and sweepstakes. We may, from time to time, offer surveys, contests, sweepstakes, or other promotions on our Websites or through social media (collectively, “Promotions“).
    Learn More

    D. Cookies and Tracking Technologies

    We use cookies and similar tracking technologies to collect and use Personal Information about you, including to serve interest-based advertising. For further information about the types of cookies and tracking technologies we use, why, and how you can control them, please see our Cookie Statement here.

    E. Other Data Protection Rights

    You have the following data protection rights:

    • To access, correct, update, or request deletion of your Personal Information. MailChimp takes reasonable steps to ensure that the data we collect is reliable for its intended use, accurate, complete, and up to date. You may contact us directly at any time about accessing, correcting, updating, or deleting your Personal Information, or altering your data or marketing preferences by emailing us at personaldatarequests@mailchimp.com. We will consider your request in accordance with applicable laws.
    • In addition, if you are a resident of the EEA, you can object to processing of your Personal Information, ask us to restrict processing of your Personal Information or request portability of your Personal Information. Again, you can exercise these rights by emailing us at personaldatarequests@mailchimp.com.
    • Similarly, if we have collected and processed your Personal Information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.
    • You have the right to complain to a data protection authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority. Contact details for data protection authorities in the EEA are available here.

    We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws. We may ask you to verify your identity in order to help us respond efficiently to your request.

    5. General Information

    A. How We Share Information

    We may share and disclose your Personal Information to the following types of third parties for the purposes described in this privacy policy (for purposes of this section, “you” and “your” refer to Members, Contacts, and Visitors unless otherwise indicated):

    (i) Our service providers: Sometimes, we share your information with our third-party service providers, who help us provide and support our Services and other business-related functions.

    Learn More

    (ii) Advertising partners: We may partner with third-party advertising networks and exchanges to display advertising on our Websites or to manage and serve our advertising on other sites and may share Personal Information with them for this purpose.

    Learn More

    (iii) Any competent law enforcement body, regulatory body, government agency, court or other third party where we believe disclosure is necessary (a) as a matter of applicable law or regulation, (b) to exercise, establish, or defend our legal rights, or (c) to protect your vital interests or those of any other person.

    (iv) A potential buyer (and its agents and advisors) in the case of a sale, merger, consolidation, liquidation, reorganization, or acquisition.

    Learn More

    (v) Any other person with your consent.

    B. Legal Basis for Processing Personal Information (EEA Persons Only)

    If you are from the European Economic Area, our legal basis for collecting and using the Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it.

    However, we will normally collect and use Personal Information from you where the processing is in our legitimate interests and not overridden by your data-protection interests or fundamental rights and freedoms. Typically, our legitimate interests include improving, maintaining, providing, and enhancing our technology, products, and services; ensuring the security of the Services and our Websites; and for our marketing activities.

    If you are a Member, we may need the Personal Information to perform a contractwith you. In some limited cases, we may also have a legal obligation to collect Personal Information from you.

    If we ask you to provide Personal Information to comply with a legal requirement or to perform a contact with you, we will make this clear at the relevant time and advise you whether the provision of your Personal Information is mandatory or not, as well as of the possible consequences if you do not provide your Personal Information.

    Where required by law, we will collect Personal Information only where we have your consent to do so.

    If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us using the contact details provided in the “Questions and Concerns” section below.

    C. Your Choices and Opt-Outs

    Members and Visitors who have opted in to our marketing emails can opt out of receiving marketing emails from us at any time by clicking the “unsubscribe” link at the bottom of our marketing messages.

    Also, all opt-out requests can be made by emailing us using the contact details provided in the “Questions and Concerns” section below. Please note that some communications (such as service messages, account notifications, billing information) are considered transactional and necessary for account management, and Members cannot opt out of these messages unless you cancel your MailChimp account.

    D. Our Security

    We take appropriate and reasonable technical and organizational measures to protect Personal Information from loss, misuse, unauthorized access, disclosure, alteration, and destruction, taking into account the risks involved in the processing and the nature of the Personal Information. For further information about our security practices, please see our Security page here. If you have any questions about the security of your Personal Information, you may contact us at privacy@mailchimp.com.

    MailChimp accounts require a username and password to log in. Members must keep their username and password secure, and never disclose it to a third party. Because the information in a Member’s MailChimp account is so sensitive, account passwords are hashed, which means we cannot see a Member’s password. We cannot resend forgotten passwords either. We will only provide Members with instructions on how to reset them.

    E. International Transfers

    (i) We operate in the United States

    Our servers and offices are located in the United States, so your information may be transferred to, stored, or processed in the United States. While the data protection, privacy, and other laws of the United States might not be as comprehensive as those in your country, we take many steps to protect your privacy, including offering our Members a data processing agreement.

    (ii) Data transfers from Switzerland or the EU to the United States

    MailChimp participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. We are committed to subjecting all Personal Information received from European Union (EU) member countries and Switzerland, respectively, in reliance on each Privacy Shield Framework, to each Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, and to view our certification, visit the U.S. Department of Commerce’s Privacy Shield website, here.

    A list of Privacy Shield participants is maintained by the Department of Commerce and is available here.

    MailChimp is responsible for the processing of Personal Information we receive under each Privacy Shield Framework and subsequently transfer to a third party acting as an agent on our behalf. We comply with the Privacy Shield Principles for all onward transfers of Personal Information from the EU and Switzerland, including the onward transfer liability provisions.

    With respect to Personal Information received or transferred pursuant to the Privacy Shield Frameworks, we are subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

    If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third-party dispute resolution provider TRUSTe (free of charge to you) here. Under certain conditions, more fully described on the Privacy Shield website, here, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.

    Members located in Switzerland and the EU should also request our data processing agreement here in addition to relying on MailChimp’s Privacy Shield certification.

    (iii) Members located in Australia

    If you are a Member who lives in Australia, this section applies to you. We are subject to the operation of the Privacy Act 1988 (“Australian Privacy Act“). Here are the specific points you should be aware of:

    • Where we say we assume an obligation about Personal Information, we are also requiring our subcontractors to undertake a similar obligation, where relevant.
    • We will not use or disclose Personal Information for the purpose of our direct marketing to you unless you have consented to receive direct marketing; you would reasonably expect us to use your personal details for the marketing; or we believe you may be interested in the material but it is impractical for us to obtain your consent. You may opt out of any marketing materials we send to you through an unsubscribe mechanism or by contacting us directly. If you have requested not to receive further direct marketing messages, we may continue to provide you with messages that are not regarded as “direct marketing” under the Australian Privacy Act, including changes to our terms, system alerts, and other information related to your account.
    • Our servers are located in the United States. In addition, we or our subcontractors may use cloud technology to store or process Personal Information, which may result in storage of data outside Australia. It is not practicable for us to specify in advance which country will have jurisdiction over this type of offshore activity. All of our subcontractors, however, are required to comply with the Australian Privacy Act in relation to the transfer or storage of Personal Information overseas.
    • If you think the information we hold about you is inaccurate, out of date, incomplete, irrelevant, or misleading, we will take reasonable steps, consistent with our obligations under the Australian Privacy Act, to correct that information upon your request.
    • If you are unsatisfied with our response to a privacy matter then you may consult either an independent advisor or contact the Office of the Australian Information Commissioner for additional help. We will provide our full cooperation if you pursue this course of action.

    F. Retention of Data

    We retain Personal Information where we have an ongoing legitimate business or legal need to do so. Our retention periods will vary depending on the type of data involved, but, generally, we’ll refer to these criteria in order to determine retention period:

    • Whether we have a legal or contractual need to retain the data.
    • Whether the data is necessary to provide our Services.
    • Whether our Members have the ability to access and delete the data within their MailChimp accounts.
    • Whether our Members would reasonably expect that we would retain the data until they remove it or until their MailChimp accounts are closed or terminated.

    When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymize it or, if this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.

    G. California Privacy

    Under California Law, California residents have the right to request in writing from businesses with whom they have an established business relationship, (a) a list of the categories of Personal Information, such as name, email, and mailing address, and the type of services provided to the customer that a business has disclosed to third parties (including affiliates that are separate legal entities) during the immediately preceding calendar year for the third-parties’ direct marketing purposes, and (b) the names and addresses of all such third parties. To request the above information, please contact us through our contact form or email us at privacy@mailchimp.com.

    H. Changes to this Policy

    We may change this privacy policy at any time and from time to time. The most recent version of the privacy policy is reflected by the version date located at the top of this privacy policy. All updates and amendments are effective immediately upon notice, which we may give by any means, including, but not limited to, by posting a revised version of this privacy policy or other notice on the Websites. We encourage you to review this privacy policy often to stay informed of changes that may affect you. Our electronically or otherwise properly stored copies of this privacy policy are each deemed to be the true, complete, valid, authentic, and enforceable copy of the version of this privacy policy that was in effect on each respective date you visited the Website.

    I. Questions & Concerns

    If you have any questions or comments, or if you have a concern about the way in which we have handled any privacy matter, please use our contact form to send us a message. You may also contact us by postal mail or email at:

    For EEA Residents:

    For the purposes of EU data protection legislation, The Rocket Science Group LLC d/b/a MailChimp is the controller of your Personal Information. Our Data Protection Officer can be contacted at dpo@mailchimp.com.

    For Non-EEA Residents:

    The Rocket Science Group LLC d/b/a MailChimp
    Attn. Privacy Officer
    privacy@mailchimp.com
    675 Ponce de Leon Ave NE, Suite 5000
    Atlanta, GA 30308 USA

  • Qndrs.training is de ondersteunende website voor de verschillende trainingen die verzorgd worden door Qndrs. Iedere deelnemer krijgt zijn eigen website waar gewerkt kan worden aan de oefeningen voor de trainingen:

    • ANSI SQL training
    • WordPress
    • Moodle
    • ILIAS
    • E-learning module auteur
    • Adobe Captivate
    • Articulate Storyline

  • Privacy

    Onze belofte

    Samsung Electronics Co., Ltd., Samsung Electronics (UK) Limited (gegevensverantwoordelijke voor de EU) en onze verbonden ondernemingen (“Samsung”, “we/wij”, “ons”, “onze”) weten hoe belangrijk privacy is voor onze klanten en we streven ernaar duidelijk te zijn in hoe we uw persoonsgegevens verzamelen, gebruiken, bekendmaken, verzenden en opslaan.

    Dit privacybeleid is van toepassing op alle apparaten, websites klantendienstplatforms of andere online toepassingen van Samsung die een verwijzing of koppeling bevatten naar het beleid (gezamenlijk aangeduid als onze “Diensten”). Dit privacybeleid is van toepassing ongeacht of u een computer, mobiele telefoon, tablet, tv of een huishoudelijk apparaat of ander smart apparaat gebruikt om onze diensten te gebruiken.

    Hieronder vindt u een overzicht van de belangrijkste punten in ons privacybeleid. Klik op de titels of lees hieronder verder voor meer gedetailleerde informatie over de manier waarop wij uw gegevens verwerken.

    Informatie die we verzamelen

    We verzamelen diverse soorten informatie in verband met de diensten, waaronder:

    • Informatie die u rechtstreeks aan ons verstrekt;
    • Informatie die we verzamelen over uw gebruik van onze diensten; en
    • Informatie die we verkrijgen van externe bronnen.

    We kunnen ook uw afzonderlijke toestemming vragen om informatie te verzamelen of u afzonderlijk informeren over hoe we uw persoonsgegevens verzamelen op een manier die niet is beschreven in dit privacybeleid, zoals vereist voor bepaalde aanvullende diensten.

    Gebruiken en delen van informatie

    De informatie die we verzamelen, gebruiken we onder andere om:

    • De diensten te leveren waar u om vraagt;
    • Inzicht te krijgen in hoe u de diensten gebruikt, zodat we uw ervaring nog verder kunnen verbeteren;
    • Inzicht te krijgen in onze klanten zodat we de meest relevante communicatie, diensten en ervaringen kunnen aanbieden; en
    • Aangepaste inhoud en advertenties aan te bieden met, indien vereist, uw afzonderlijke toestemming.

    Wij kunnen uw informatie mogelijk delen met:

    • Verbonden Ondernemingen – de bedrijven die door gemeenschappelijk eigendom of bestuur gelieerd zijn aan Samsung Electronics Co., Ltd..
    • Zakenpartners – vertrouwde bedrijven die informatie kunnen verstrekken over producten en diensten die mogelijk interessant voor u zijn, indien u afzonderlijk toestemming heeft gegeven.
    • Dienstproviders – bedrijven die namens Samsung diensten leveren.
    • Wetshandhavingsinstanties – wanneer we hiertoe verplicht zijn of om Samsung en haar gebruikers te beschermen.

    Aanvullende informatie over specifieke producten en diensten

    • Hoewel dit privacybeleid van toepassing is op al onze diensten, voorzien wij u ook, indien nodig, van bepaalde specifieke privacyaanvullingen met daarin aanvullende informatie over onze praktijken in verband met bepaalde diensten. Deze aanvullingen zijn van toepassing op uw gebruik van de diensten waarop ze betrekking hebben.

    Contact met ons opnemen

    Samsung Electronics (UK) Limited
    Samsung House, 1000 Hillswood Drive, Chertsey, Surrey KT16 0PS
    E-mail: Neem contact met ons op via dataprotection@samsung.com of GDPR Support page.

    • WERELDWIJD PRIVACYBELEID VAN SAMSUNG

    • Ingangsdatum: 25 mei 2018

      Samsung Electronics Co., Ltd., Samsung Electronics (UK) Limited (gegevensverantwoordelijke voor de EU) en onze verbonden ondernemingen (“Samsung”, “we/wij”, “ons”, “onze”) weten hoe belangrijk privacy is voor onze klanten en we streven ernaar duidelijk te zijn in hoe we uw persoonsgegevens verzamelen, gebruiken, bekendmaken, verzenden en opslaan. In dit privacybeleid lichten wij onze praktijken voor informatiegebruik nader toe. Dit privacybeleid is van toepassing op alle apparaten, websites klantendienstplatforms of andere online toepassingen van Samsung die een verwijzing of koppeling bevatten naar het privacybeleid (gezamelijk aangeduid als onze “Diensten”). Dit privacybeleid is van toepassing ongeacht of u een computer, mobiele telefoon, tablet, tv of een huishoudelijk apparaat of ander smart-apparaat gebruikt om onze diensten te gebruiken. Onder dit beleid valt ook de klantondersteuning voor dergelijke apparaten, websites of onlinetoepassingen.
      Hoewel dit privacybeleid van toepassing is op al onze diensten, voorzien wij u ook, indien nodig, van bepaalde specifieke privacyaanvullingen met daarin aanvullende informatie over onze praktijken in verband met bepaalde diensten. Deze aanvullingen zijn van toepassing op uw gebruik van de diensten waarop ze betrekking hebben.
      Het is belangrijk dat u het privacybeleid en alle aanvullende beleidsdocumenten die door ons worden geleverd zorgvuldig doorleest, aangezien deze documenten u informeren over hoe uw persoonsgegevens worden verwerkt bij elk gebruik van onze diensten.

      Ook is het belangrijk dat u regelmatig controleert of er updates beschikbaar zijn voor het privacybeleid. Als wij het privacybeleid bijwerken, informeren wij u vooraf over de wijzigingen die in onze ogen van wezenlijk belang zijn. Dit doen wij door het plaatsen van een kennisgeving in relevante diensten of door u, indien van toepassing, een e-mail te sturen. De meest recente versie van het privacybeleid is altijd te vinden op. De ingangsdatum bovenaan geeft aan wanneer het privacybeleid voor het laatst werd bijgewerkt.

    • INFORMATIE DIE WE VERZAMELEN

    • Informatie die u rechtstreeks verstrekt

      Bij sommige diensten kunt u informatie rechtstreeks aan ons verstrekken. Bijvoorbeeld:

      • Voor sommige van onze diensten kunnen gebruikers accounts of profielen aanmaken. In verband met deze diensten vragen we u bepaalde informatie over uzelf te verstrekken voor het instellen van uw account of profiel. Als u een Samsung-account maakt, kunt u bijvoorbeeld bepaalde persoonsgegevens verstrekken, zoals uw naam, geboortedatum en e-mailadres.
      • Als u een product of betaalde dienst bij ons bestelt, vragen we u om uw naam, contactgegevens, verzend- en factuuradres(sen) en creditcardgegevens om de bestelling te kunnen verwerken.
      • Als u contact opneemt met onze klantendienst om een product of dienst te bespreken, een vraag te stellen of een klacht in te dienen, verzamelen we gegevens van u omtrent de dienst die u van Samsung nodig heeft. Dergelijke verzamelde gegevens omvatten uw naam en, afhankelijk van de aard van uw vraag, mogelijk ook uw woonadres, telefoonnummer, e-mailadres en apparaat-id.
      • Via sommige van onze diensten kunt u communiceren met andere personen. Die communicatie wordt dan verzonden via onze systemen.
      • Als u het delen van gegevens van contactpersonen met Samsung toestaat, worden de telefoonnummers van de personen in uw contacten door ons verzameld om het delen van bestanden en uitwisselen van berichten met personen in uw contacten mogelijk te maken. In uw profielinstellingen kunt u de functionaliteit voor het delen van bestanden en uitwisselen van berichten uitschakelen, of het bereik van het delen beperken.

      Informatie over uw gebruik van de diensten

      Naast de informatie die u verstrekt, verzamelen we informatie over uw gebruik van onze diensten via software op uw apparaten en op andere manieren. Wij verzamelen:

      • Apparaatgegevens – zoals uw hardwaremodel, hardwaregegevens van uw apparaat, IMEI-nummer en andere unieke apparaat-id’s, telefoonnummer, serienummer, klantcode, toegangsopname, huidige softwareversie, mobiele landencode, mobiele netwerkcode, MAC-adres, IP-adres, cookie, pixels, abonnementsgegevens, versies van het besturingssysteem en instellingen van het apparaat dat u gebruikt om toegang te krijgen tot de diensten.
      • Logboekgegevens – diagnostische, technische, fout- en gebruiksgegevens zoals het tijdstip en de duur van uw dienstgebruik, ingevoerde zoektermen via de diensten en alle overige informatie die wordt opgeslagen in cookies die wij op uw apparaat hebben ingesteld. Ga naar de website(http://www.samsung.com/uk/support/mobile-devices/what-are-cookies-and-how-do-i-enable-or-disable-them-on-my-samsung-galaxy-device/) voor meer gedetaileerde informatie over de cookie.
      • Locatiegegevens – zoals het GPS-signaal van uw apparaat of informatie over Wi-Fi-toegangspunten en gsm-masten bij u in de buurt die wij mogelijk ontvangen wanneer u bepaalde diensten gebruikt en deze functie inschakelt.
      • Spraakinformatie – zoals opnamen van uw stem die wij maken (en mogelijk opslaan op onze servers) wanneer u deze functie inschakelt en spraakopdrachten gebruikt voor de bediening van een dienst of wanneer u contact opneemt met de klantendienst. (Als we gebruik maken van een externe dienstprovider die namens ons spraak-naar-tekst-conversiedienstendiensten levert, kan deze provider bepaalde spraakopdrachten ontvangen en opslaan in overeenstemming met het contract dat is gesloten tussen ons en onze vertrouwde externe dienstenprovider.)
      • Samsung Toetsenbordgegevens- de woorden die u typt wanneer u de functie ‘voorspellende tekst’ inschakelt. Deze functie wordt mogelijk aangeboden gekoppeld aan uw Samsung-account om de gegevens die u gebruikt op uw andere mobiele apparaten van Samsung te synchroniseren. U kunt de verzamelde getypte gegevens op elk moment wissen in de instellingen voor voorspellende tekst.
      • Andere informatie over uw gebruik van de diensten, zoals welke apps u gebruikt, welke websites u bezoekt en hoe u gebruikmaakt van de inhoud die via een dienst wordt aangeboden.

      Informatie van externe bronnen

      Mogelijk ontvangen wij informatie over u van openbare en commercieel toegankelijke bronnen (voor zover dit wettelijk is toegestaan), die we kunnen combineren met andere ontvangen informatie van of over u. Ook ontvangen we mogelijk informatie over u van externe sociale netwerkdiensten wanneer u kiest voor een koppeling met die diensten.

      Andere informatie die we verzamelen

      Met uw toestemming verzamelen we mogelijk ook andere informatie over u, uw apparaat of uw gebruik van de diensten op manieren die we beschrijven op het punt waar die informatie wordt verzameld of anderszins met uw afzonderlijke toestemming, indien vereist.
      U kunt ervoor kiezen bepaalde informatie (zoals informatie waar wij om vragen tijdens het registreren van een Samsung-account) niet aan ons te verstrekken. Dit heeft mogelijk echter wel negatieve gevolgen voor uw gebruik van bepaalde diensten. Wij voorzien u van relevante informatie op het moment van verzamelen om u te helpen een weloverwogen beslissing te nemen.

    • HET GEBRUIK VAN UW GEGEVENS

    • De informatie die we verzamelen, gebruiken we voor de volgende doeleinden:

      • om u of uw apparaat te registreren voor een dienst;
      • om een dienst of functie waar u om vraagt te kunnen leveren;
      • om aangepaste inhoud en persoonlijke diensten aan te bieden op basis van uw eerdere activiteiten in onze diensten met uw afzonderlijke toestemming indien vereist;
      • voor reclamedoeleinden, zoals aangepaste advertenties, gesponsorde inhoud en het verzenden van promotieberichten met uw afzonderlijke toestemming indien vereist;
      • om onze markt, klanten, producten, reclamecampagnes en diensten te beoordelen en analyseren zodat we, indien nodig met gebruik van statistische procedures, neer inzicht krijgen in onze klanten om u de meest relevante communicaties, diensten en ervaring aan te bieden.
      • om uw mening te vragen over onze producten en diensten en klantenenquêtes uit te voeren met uw afzonderlijke toestemming, indien vereist;
      • om inzicht te krijgen in de manier waarop mensen onze diensten gebruiken, zodat we ze verder kunnen verbeteren en nieuwe producten en diensten kunnen ontwikkelen;
      • om onderhoudsdiensten en ondersteuning te bieden voor uw apparaat;
      • om het leveren van software-updates mogelijk te maken;
      • om trekkingen voor gratis prijzen, wedstrijden of aanbiedingen te kunnen organiseren, voor zover wettelijk toegestaan; en
      • om met uw afzonderlijke toestemming andere zaken te doen.

      We combineren gegevens van en over u voor doeleinden die in lijn zijn met dit privacybeleid, ook als het daarbij gaat om andere diensten of apparaten. Zo gebruiken wij bijvoorbeeld de gegevens van uw Samsung-account voor alle diensten waarvoor een Samsung-account vereist is. We baseren ook onze aanbevelingen, aangepaste inhoud en gepersonaliseerde functionaliteit op deze gegevens om uw beleving van de diensten te verrijken, met gebruik van de gegevens die u rechtstreeks of door onze website te bezoeken aan ons verstrekt of gegevens die door onze vertrouwde externe partijen aan ons worden geleverd voor een beter inzicht in onze klanten. Wanneer we vertrouwde externe partijen gebruiken om onze database te verrijken, zorgen we ervoor dat er een juridisch afdwingbare overeenkomst tussen ons en de externe provider gesloten is om ervoor te zorgen dat alle gecombineerde gegevens rechtmatig van u zijn verkregen. Afhankelijk van de reden waarom wij de gegevens combineren en de vereisten van de toepasselijke wetgeving, kunt u specifieke beperkingen voor een dergelijke combinatie instellen, bijvoorbeeld in de menu’s voor apparaat- of toepassingsinstellingen of bij het bezoeken van onze webpagina, die u in de gelegenheid stelt om uw individuele rechten onder de wet op de gegevensbescherming uit te oefenen. Ga naar GDPR Support.

      We bieden u diverse keuzes voor de manier waarop we uw informatie gebruiken. U kunt kiezen of u promotieberichten van ons wilt ontvangen door u in eerste instantie aan te melden en, indien u van gedachten verandert, de afmeldinstructies in dergelijke communicatie te volgen. Verder kunt u ook keuzes maken door uw instellingen voor specifieke diensten te wijzigen, door te reageren op speciale kennisgevingen die wij verzenden of door relevante webpagina’s te bezoeken. U kunt ook contact met ons opnemen (dataprotection@samsung.com) indien u hulp nodig heeft bij het instellen van uw keuzes.
      Samsung verwerkt persoonsgegevens voor de hierboven beschreven doeleinden. De wettelijke basis van Samsung om persoonsgegevens te verwerken, omvat verwerking die: noodzakelijk is voor de uitvoering van het contract tussen u en Samsung (bijvoorbeeld om de Diensten aan u te leveren en om u te identificeren en uw identiteit te verifiëren zodat u bepaalde Diensten kunt gebruiken); noodzakelijk is om te voldoen aan wettelijke vereisten (bijvoorbeeld om te voldoen aan de toepasselijke boekhoudkundige voorschriften en om verplichte bekendmakingen te doen aan wetshandhavende instanties); noodzakelijk zijn voor de legitieme belangen van Samsung (bijvoorbeeld om onze relatie met u te beheren en de relevantie van onze communicatie, ervaringen en klantendienst te verbeteren) is gebaseerd op instemming van onze klanten (bijvoorbeeld om te communiceren met u over onze producten en diensten en u te voorzien van marketinginformatie) die vervolgens op enig moment kan worden ingetrokken, zoals beschreven in de paragraaf Contact met ons opnemen in dit privacybeleid, zonder gevolgen voor de wettigheid van de verwerking op grond van de instemming alvorens deze werd ingetrokken.

    • HET DELEN VAN UW GEGEVENS

    • Wij kunnen uw informatie intern binnen ons bedrijf bekendmaken aan de relevante teams, zoals, zonder beperking, het klantendienstteam, het juridische team, het financiële team, het verkoopteam en, wanneer u hebt gekozen voor het ontvangen van marketingboodschappen, aan de marketingteams. We kunnen uw gegevens ook bekendmaken aan de volgende entiteiten, maar alleen voor zover dat nodig is om de diensten uit te voeren:

      • Verbonden ondernemingen.Voor de doeleinden die in dit privacybeleid worden beschreven, kunnen wij uw informatie mogelijk delen met aan Samsung verbonden ondernemingen. De term ’verbonden onderneming’ heeft betrekking op bedrijven die door gemeenschappelijk bezit of beheer gelieerd zijn aan Samsung Electronics Co., Ltd. Onze verbonden ondernemingen zijn onder andere bedrijven die de naam Samsung Electronics dragen. Tot verbonden ondernemingen behoren ook andere bedrijven die door gemeenschappelijk bezit of beheer aan ons gelieerd zijn, zoals Samsung SDS CO., Ltd. Samsung SDS CO., Ltd in het bijzonder exploiteert en onderhoudt, namens Samsung Electronics Co., Ltd, een aantal diensten, inclusief, maar niet beperkt tot: Samsung-account, Samsung Health, Samsung Pay, Zoek mijn mobiel(FMM), Aangepaste dienst, Galaxy Apps (Koper), Samsung Pass, Samsung Cloud; Samsung Themes; Samsung Social, Veilige map, E-mail, Samsung Focus, Samsung Friends, Veilige Wi-Fi.
      • Zakenpartners.Wij kunnen uw informatie ook delen met vertrouwde zakenpartners, inclusief, zonder beperking, aanbieders van draadloze netwerken, retailers en distributeurs. Deze entiteiten kunnen uw informatie gebruiken om de diensten waar u om vraagt aan u te leveren, voorspellingen te doen over uw interesses en promotiematerialen, advertenties en andere materialen aan u te verstrekken met uw afzonderlijke toestemming.
      • Dienstproviders.Wij kunnen uw gegevens ook bekendmaken aan zorgvuldig geselecteerde bedrijven die voor of namens ons diensten verlenen, zoals bedrijven die ons helpen met reparaties, klantcontactcentra, klantendienstactiviteiten, reclame, het uitvoeren van klanttevredenheidsenquêtes, facturering of namens ons e-mails verzenden. Deze entiteiten worden door contractuele bepalingen beperkt in hun mogelijkheden om uw informatie te gebruiken voor andere doeleinden dan het leveren van diensten namens ons.
      • Andere partijen wanneer we dit wettelijk verplicht zijn of indien nodig om onze diensten te beschermen.In bepaalde gevallen kunnen we uw informatie aan andere partijen bekendmaken: – om te voldoen aan de wet of te reageren op verplichte wettelijke processen (zoals huiszoekingsbevelen of andere gerechtelijke bevelen);
        – om naleving van de beleidsregels die van toepassing zijn op onze diensten te controleren of af te dwingen; en
        – om de rechten, eigendommen of veiligheid van Samsung of een van onze verbonden ondernemingen, zakenpartners of klanten te beschermen.
      • Andere partijen in verband met zakelijke transacties.Als onderdeel van een fusie of afsplitsing, overname of verkoop of in geval van faillissement kunnen wij uw informatie mogelijk bekendmaken aan een derde partij.
      • Andere partijen met uw toestemming of op uw aanwijzing.Naast de bekendmakingen die in dit privacybeleid worden beschreven, kunnen we informatie over u ook met derde partijen delen wanneer u hiertoe afzonderlijk toestemming geeft.

    • UW GEGEVENS VEILIG HOUDEN

    • Wij nemen de bescherming van uw gegevens serieus en hebben passende fysieke en technische maatregelen genomen om de informatie te beveiligen die we in verband met de diensten verzamelen. Ondanks de redelijke stappen die wij nemen om uw informatie te beveiligen, moet u er echter rekening mee houden dat geen enkele website, overdracht via internet of draadloze verbinding en geen enkel computersysteem volledig veilig is.

      INTERNATIONALE OVERDRACHT VAN GEGEVENS

      Uw gebruik van de diensten houdt in dat uw persoonsgegevens worden overgedragen, opgeslagen en verwerkt buiten uw land van vestiging, namelijk Korea, conform dit privacybeleid. Daarnaast kan uw gebruik van de diensten ook de overdracht, opslag en verwerking van uw persoonsgegevens naar andere landen inhouden; dergelijke landen omvatten, zonder beperking, landen in de Europese Economische Ruimte, de Verenigde Staten van Amerika, China, Singapore, Vietnam, India, Canada, de Filippijnen en Japan. Houd er rekening mee dat de wetten inzake gegevensbescherming en andere wetten van landen buiten de Europese Economische Ruimte waarnaar uw informatie wordt overgedragen, mogelijk niet zo uitgebreid zijn als de wetten in uw eigen land. Wij zullen passende maatregelen nemen, in overeenstemming met de toepasselijke wetgeving, om ervoor te zorgen dat uw persoonsgegevens beschermd blijven. Dergelijke maatregelen omvatten het gebruik van standaard contractbepalingen om de overdracht van gegevens buiten de EER te beschermen. Neem voor meer informatie of om een kopie van de geldende contractuele overeenkomsten te verkrijgen contact met ons op via dataprotection@samsung.com.

    • Uw rechten

    • U hebt het recht om details op te vragen over de gegevens die wij over u verzamelen en om ons te verzoeken onjuistheden die gegevens te corrigeren, om bezwaar te maken tegen of te verzoeken om beperking van de verwerking, om toegang te vragen tot, het wissen of de overdraagbaarheid van uw persoonsgegevens. Onder de wetgeving van sommige rechtsgebieden kunnen we weigeren verzoeken te verwerken die onredelijk repetitief zijn, een disproportionele technische inspanning vereisen, de privacy van anderen in het gedrang brengen, extreem onpraktisch zijn of waarvoor toegang niet vereist wordt door de lokale wetgeving. Als u een verzoek voor toegang tot uw informatie wilt indienen, ga dan naar GDPR Support of neem contact met ons op via dataprotection@samsung.com.
      Als u vraagt om verwijdering van persoonsgegevens, erkent u dat u mogelijk niet in staat zult zijn toegang te verkrijgen tot of gebruik te maken van de diensten en dat restanten van uw persoonsgegevens mogelijk nog enige tijd achterblijven in de dossiers en archieven van Samsung, in overeenstemming met de toepasselijke wetgeving, maar Samsung zal die informatie niet gebruiken voor commerciële doeleinden. U begrijpt dat Samsung, ongeacht uw verzoek tot verwijdering, zich het recht voorbehoudt uw persoonsgegevens of een relevant onderdeel ervan te bewaren, in lijn met onderstaande paragraaf over Gegevensbehoud en de toepasselijke wetgeving. Samsung kan uw toegang tot de website opschorten, beperken of beëindigen in verband met inbreuk op de Gebruiksvoorwaarden van Samsung, wanneer dat nodig is om de rechten, eigendommen of veiligheid van Samsung of een van onze respectieve verbonden ondernemingen, zakelijke partners, werknemers of klanten te beschermen.

    • GEGEVENSBEHOUD

    • Wij bewaren uw persoonsgegevens niet langer dan nodig is voor het doel waarvoor deze zijn verzameld. Dit houdt in dat gegevens worden vernietigd of verwijderd van onze systemen als deze niet meer nodig zijn.
      Wij nemen passende maatregelen om ervoor te zorgen dat de informatie die wij over u verwerken en bewaren, gebaseerd is op de volgende logica:
      1. ten minste de duur waarvoor de gegevens zijn gebruikt om u een dienst te leveren;
      2. zoals verplicht volgens de wetgeving, een contract of onze wettelijke verplichtingen; of
      3. alleen zolang als nodig is voor de doeleinden waarvoor de gegevens zijn verzameld, worden verwerkt, of langer indien dit vereist is onder enig ander contract, toepasselijke wet of voor statistische doeleinden. Dit is altijd onderworpen aan passende waarborgen.

    • EXTERNE KOPPELINGEN EN PRODUCTEN IN ONZE DIENSTEN

    • Onze diensten bevatten mogelijk koppelingen naar externe websites en diensten waarop wij geen invloed hebben. Wij zijn niet verantwoordelijk voor de beveiliging of privacy van informatie die wordt verzameld via deze websites of diensten. Wees voorzichtig en lees de privacyverklaringen die van toepassing zijn op de externe websites en diensten die u gebruikt.
      Wij stellen wij ook bepaalde producten of diensten beschikbaar aan u die zijn ontwikkeld door externe partijen (bijvoorbeeld: apps die beschikbaar zijn via Galaxy Apps of Apps). Samsung is niet verantwoordelijk voor deze externe producten of diensten.
      Externe partijen die inhoud, advertenties of functies aanbieden via onze diensten
      Bepaalde inhoud, advertenties of functies in onze diensten worden mogelijk aangeboden door externe partijen die niet aan ons zijn gelieerd. In dergelijke gevallen hebben wij contractuele overeenkomsten gesloten met deze derde partijen. Bijvoorbeeld:

      • Wij bieden u de mogelijkheid om video-inhoud te bekijken die wordt aangeboden door contentproviders;
      • Externe partijen ontwikkelen apps die wij beschikbaar stellen via Galaxy Apps of Apps;
      • Bepaalde externe partijen vertonen advertenties of houden bij welke advertenties gebruikers zien, hoe vaak zij deze advertenties zien en wat zij doen in reactie hierop; en
      • Wij stellen u in staat bepaalde materialen via de diensten met anderen te delen op sociale netwerkdiensten zoals Facebook, Twitter, Google + en LinkedIn.

      Deze externe partijen kunnen bepaalde informatie over uw gebruik van de diensten verzamelen of ontvangen, onder andere door het gebruik van cookies, pixels, beacons en vergelijkbare technologieën. Deze informatie kan ook in de loop der tijd worden verzameld en worden gecombineerd met informatie die is verzameld op andere websites en via andere onlinediensten. Samsung heeft geen invloed op de manier waarop deze bedrijven gegevens verzamelen en gebruiken. Sommige van deze bedrijven nemen deel aan binnen de sector ontwikkelde programma’s die in het leven zijn geroepen om consumenten keuzes te bieden met betrekking tot de ontvangst van gerichte reclame. Meer informatie hierover vindt u op de websites die worden beheerd door het Network Advertising Initiative “http://networkadvertising.org” en de Digital Advertising Alliance “http://www.aboutads.info/“. Wees voorzichtig en lees de privacyverklaringen die van toepassing zijn op de externe websites en diensten die u gebruikt.
      Als u verbinding maakt met een sociale netwerkdienst, ontvangen en bewaren wij mogelijk verificatiegegevens van die dienst, zodat u zich kunt aanmelden, plus andere informatie waarvoor u toestemming geeft dat wij deze ontvangen wanneer u verbinding maakt met deze diensten.
      Als u verbinding maakt met een sociale netwerkdienst op een apparaat dat ook door andere personen wordt gebruikt, moet u er bovendien rekening mee houden dat die andere gebruikers informatie kunnen zien die is opgeslagen of wordt weergegeven in verband met uw account bij de sociale netwerkdienst(s) waarmee u verbinding maakt. We raden aan dat u bij alle dergelijke websites uitlogt en alleen informatie deelt met personen die u vertrouwt.

    • COOKIES, BEACONS EN VERGELIJKBARE TECHNOLOGIEËN

    • Wij en bepaalde derde partijen die inhoud, advertenties of andere functies aanbieden via onze diensten, kunnen in bepaalde delen van onze diensten gebruikmaken van cookies, pixels, beacons en andere technologieën, zoals hieronder nader wordt uitgelegd.

      Cookies

      Cookies zijn kleine bestanden waarmee informatie wordt opgeslagen op uw computer, tv, mobiele telefoon of ander apparaat. Ze stellen de entiteit die de cookie op uw apparaat heeft geplaatst, in staat om u te herkennen op andere websites en apparaten en in andere diensten en browsersessies. Cookies hebben allerlei nuttige functies. Bijvoorbeeld:

      • Cookies kunnen uw aanmeldgegevens onthouden, zodat u deze niet elke keer hoeft in te vullen wanneer u zich aanmeldt bij een dienst.
      • Cookies helpen ons en externe partijen te begrijpen welke delen van onze diensten het populairst zijn, omdat ze inzicht geven in de pagina’s en functies die bezoekers gebruiken en hoeveel tijd zij op die pagina’s besteden. Door dergelijke informatie te onderzoeken, kunnen we de diensten verder verbeteren en u een betere ervaring bieden.
      • Cookies helpen ons en externe partijen te begrijpen welke advertenties u hebt gezien, zodat niet telkens dezelfde advertentie verschijnt wanneer u een dienst gebruikt.
      • Cookies helpen ons en derde partijen relevante inhoud en advertenties aan te bieden aan u, doordat ze informatie verzamelen over uw gebruik van onze diensten en andere websites en apps.

      Wanneer u een webbrowser gebruikt voor toegang tot de diensten, kunt u configureren of u wilt dat de browser alle cookies accepteert, alle cookies weigert of aan u meldt wanneer er een cookie wordt verzonden. Elke browser is weer anders, dus raadpleeg het menu Help van uw browser als u wilt weten hoe u de cookievoorkeuren kunt wijzigen. Het besturingssysteem van uw apparaat bevat mogelijk nog extra opties voor cookies..
      Houd er echter rekening mee dat sommige diensten zodanig zijn ontworpen dat ze alleen werken met cookies en dat het uitschakelen van cookies mogelijk een nadelige invloed heeft op uw vermogen om deze diensten geheel of gedeeltelijk te gebruiken.

      We gebruiken de volgende typen cookies op onze website:

      Essentiële cookieswaarmee u producten kunt bestellen en diensten kunt ontvangen op onze website;

      Prestatiecookieswaarmee we de prestaties en het ontwerp van onze website kunnen analyseren en fouten detecteren. Dit type cookie stelt ons bijvoorbeeld in staat om te herkennen dat u onze website eerder hebt bezocht en laat ons zien welke delen van onze website het meest populair zijn, omdat we erdoor kunnen zien welke pagina’s bezoekers het vaakst bezoeken en hoeveel tijd bezoekers doorbrengen op elke pagina. We maken hiervoor, zonder beperking, gebruik van Google Analytics, Adobe en soortgelijke analysecookies..
      Zo wordt bijvoorbeeld de door de cookie gegenereerde informatie over het gebruik van de website normaliter worden opgeslagen op een Google-server in de Verenigde Staten. Maar als u zich in de EU of de Europese Economische Ruimte bevindt, wordt uw IP-adres eerst door Google ingekort. Alleen in uitzonderlijke gevallen wordt uw volledige adres verzonden naar een Google-server in de Verenigde Staten en aldaar ingekort. Google gebruikt deze informatie namens ons om rapporten samen te stellen over de activiteit op de website en andere diensten met betrekking tot activiteit op de website en internetgebruik te leveren. Het IP-adres dat vanuit uw browser wordt verzonden als onderdeel van Google Analytics wordt niet gekoppeld aan enige andere gegevens in het bezit van Google. U kunt voorkomen dat door de cookie gegenereerde gegevens over internetgebruik (waaronder uw IP-adres) worden verzonden naar Google en daar verwerkt door het downloaden en installeren van deze Browser-Plugin(http://tools.google.com/dlpage/gaoptout?hl=es).

      Neem voor meer informatie over andere dienstproviders contact met ons op via dataprotection@samsung.com.

      Functionele cookieswaarmee we de gebruiker een betere ervaring kunnen bieden. Dit type cookie zorgt er bijvoorbeeld voor dat de informatie die bij uw volgende bezoek aan onze website wordt weergegeven overeenstemt met uw gebruikersvoorkeuren of uw Samsung-account, van waaruit u een koppeling naar onze website hebt gebruikt of het feit dat u onze website bezoekt via een koppeling in een e-mail die aan u is gestuurd door Samsung of namens ons door een van onze vertrouwde externe dienstproviders.

      Reclamecookieswaarmee wij en onze zorgvuldig geselecteerde partners u advertenties kunnen aanbieden of rechtstreeks contact met u opnemen indien u afzonderlijk hebt ingestemd met dergelijke communicaties, die overeenkomen met uw interesses, door bijvoorbeeld informatie te verzamelen over producten die u hebt bekeken of besteld op onze website. Wij gebruiken bijvoorbeeld, en zonder beperking, Google remarketing tags om onze retailpartners in staat te stellen reclame te maken voor producten die u op onze website hebt bekeken. Voor meer informatie over de werking van Google remarketing tags, klikt u hier:- http://www.google.co.uk/think/products/newremarketing-tag.html.
      Onze website kan ook inhoud van een externe website of dienst weergeven, waardoor cookies van derden op uw harde schijf of in uw browser kunnen worden opgeslagen. Wij hebben geen controle over de opslag van deze cookies en u dient het privacybeleid van de relevante externe partij te raadplegen voor meer informatie.

      Andere lokale opslag

      Wijzelf en bepaalde externe partijen kunnen in verband met onze diensten ook andere technologieën voor lokale opslag gebruiken, zoals Local Shared Objects (ook wel “Flash-cookies” genoemd) en lokale HTML5-opslag. Deze technologieën zijn vergelijkbaar met de hierboven besproken cookies; ze worden namelijk ook opgeslagen op uw apparaat en kunnen worden gebruikt om bepaalde informatie over uw activiteiten en voorkeuren te bewaren. De technologieën maken mogelijk echter gebruik van andere delen van uw apparaat dan de standaardcookies. Daarom kunt u ze mogelijk niet beheren met de standaardtools en -instellingen van uw browser. Voor meer informatie over het uitschakelen of verwijderen van informatie in Flash-cookies, klikt u hier “http://helpx.adobe.com/flash-player/kb/disable-local-shared-objects-flash.html”.

      Beacons en/of pixels

      Wijzelf en bepaalde externe partijen kunnen ook zogenaamde beacon- of pixeltechnologieën gebruiken om informatie vanaf uw apparaat door te geven aan een server. Beacons en pixels kunnen worden ingesloten in online-inhoud, video’s en e-mails, en kunnen een server de mogelijkheid bieden om bepaalde soorten informatie op uw apparaat te lezen, te weten wanneer u bepaalde inhoud hebt bekeken of een bepaald e-mailbericht hebt gelezen, de tijd en datum te bepalen waarop u de beacon of pixel hebt bekeken en het IP-adres van uw apparaat te achterhalen. Wijzelf en bepaalde externe partijen gebruiken beacons en pixels voor diverse doeleinden, onder andere om het gebruik van onze diensten te analyseren en (in combinatie met cookies) om inhoud en advertenties aan te bieden die relevant voor u zijn.
      Wanneer u onze diensten opent en gebruikt, met uitzondering van de website geleverd door een externe dienstprovider, zal u om afzonderlijke toestemming worden gevraagd voor de opslag van cookies (inclusief andere technologieën voor lokale opslag, beacons, pixels en andere informatie op uw apparaten) door ons. Ook wordt u gevraagd om afzonderlijk toestemming te geven aan ons en de hierboven genoemde externe partijen om dergelijke cookies (inclusief technologieën voor lokale opslag, beacons, pixels en informatie) te raadplegen. Uw ervaring met onze website/diensten kan worden beïnvloed als u geen cookies accepteert en verdere informatie zal aan u worden verstrekt op het moment dat wij u om deze specifieke toestemming vragen.

    • PLUG-INS VAN SOCIALE NETWERKEN

    • Onze Diensten maken gebruik van plug-ins van sociale netwerken (“Plug-ins”). Wanneer u een Dienst gebruikt die Plug-ins bevat, kunnen gegevens rechtstreeks worden overgedragen van uw apparaat naar de operator van het sociale netwerk. We hebben geen invloed op de gegevens die worden verzameld door de Plug-in. Als u bent ingelogd op het sociale netwerk, kan naar uw gebruik van onze Dienst worden verwezen in uw sociale netwerkaccount. Als u iets doet met Plug-ins, bijvoorbeeld door te klikken op “Leuk”, “Volgen” of “Delen”, of een opmerking in te voeren, wordt de informatie mogelijk automatisch weergegeven in uw sociale netwerkprofiel. Zelfs wanneer u niet bent ingelogd op uw sociale netwerkaccount, is het mogelijk dat de Plug-ins uw IP-adres doorsturen naar de operator van het sociale netwerk. Houd hier rekening meer wanneer u onze Diensten gebruikt.
      Meer informatie over de operators van de sociale netwerken van de Plug-ins die worden gebruikt in onze Diensten (“Operators”) vindt u hieronder:

      Operators van Plug-ins die worden gebruikt in onze DienstenAls u lid bent van een of meer van de volgende sociale netwerken en niet wilt dat de Operator gegevens met betrekking tot uw gebruik van de Diensten in verband brengt met de lidmaatschapsgegevens die al zijn opgeslagen door de Operator, dient u uit te loggen op het sociale netwerk voordat u onze Diensten gebruikt.

      FacebookVerwerkingsverantwoordelijke: Facebook Ireland Limited, Hanover Reach, 5-7 Hanover Quay, 2 Dublin, Ireland (“Facebook”). Meer informatie over het privacybeleid van Facebook vindt u op “https://www.facebook.com/about/privacy/”.

      Google+Verwerkingsverantwoordelijke: Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Meer informatie over het privacybeleid van Google vindt u op “https://www.google.com/privacy”.

      LinkedInVerwerkingsverantwoordelijke: LinkedIn Ireland, Gardner House, Wilton Place, Wilton Plaza, Dublin 2, Ierland (“LinkedIn”). Meer informatie over het privacybeleid van LinkedIn vindt u op “http://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv”.

      TwitterVerwerkingsverantwoordelijke: Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (“Twitter”). Meer informatie over het privacybeleid van Twitter vindt u op “https://twitter.com/privacy”.

    • Contact met ons opnemen

    • Als u specifieke vragen hebt, kunt u contact met ons (verwerkingsverantwoordelijke voor de EU) opnemen via:
      Europese functionaris voor gegevensbescherming
      Samsung Electronics (UK) Limited
      Samsung House, 1000 Hillswood Drive, Chertsey, Surrey KT16 0PS

      U kunt ook contact met ons opnemen via dataprotection@samsung.com. Als u gebruik wilt maken van uw recht op toegang, rectificatie, verwijdering, bezwaar, beperking van de verwerking of portabiliteit, gaat u naar GDPR Support.

      U kunt een klacht indienen bij de relevante toezichthoudende instantie indien u vindt dat onze verwerking van uw persoonsgegevens inbreuk maakt op de toepasselijk wetgeving. Contactgegevens voor toezichthoudende instanties voor de EU vindt u hier (http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080 ).

    • GDPR Support

    • Wij bij Samsung geven om de privacy van onze klanten. Omdat we hierom geven, ondernemen we stappen die ervoor zorgen dat al onze producten en services worden gemaakt volgens het Privacy by Design -principe. Alle gegevens die we verzamelen, worden gebruikt om onze producten en services zo goed mogelijk te maken. Daarbij zorgen we er altijd voor dat uw gegevens worden beschermd en alleen gebruikt worden waar het voor ons noodzakelijk is om u een service of een product aan te bieden. We zorgen ervoor dat het pad dat uw gegevens volgen, veilig en beschermd is en voldoet aan de wet inzake gegevensbescherming.

      We verwelkomen de wijzigingen die zijn aangebracht in het kader van de algemene verordening gegevensbescherming (GDPR). Als onderdeel van onze GDPR-voorbereiding hebben we de GDPR-ondersteuningspagina gemaakt. Deze pagina is een platform dat is ontworpen om het onze klanten zo makkelijk mogelijk te maken om elk van de zes rechten onder de AVG uit te oefenen. Klik op de onderstaande link om naar de GDPR-ondersteuningspagina te gaan. Alle inzendingen op deze pagina worden beoordeeld door ons toegewijd Data Protection Office. Neem voor vragen contact op met uw lokale HR-medewerker of dataprotection@samsung.com

    • Aanvullende informatie over specifieke producten en diensten

    • Privacybeleid voor Aangepaste dienst

      Ingangsdatum: 25-5-2018

      Samsung Electronics (UK) Limited (“Samsung” of “we”) en haar verbonden ondernemingen respecteren uw zorgen omtrent privacy. Deze Privacybeleid is van toepassing op de persoonlijke gegevens die we verzamelen door middel van de Aangepaste dienst. Deze kennisgeving is niet van toepassing op informatie die is verzameld door andere apps, websites of diensten die worden geleverd door Samsung of haar verbonden ondernemingen.

      Wat is de Aangepaste dienst?

      De apparaten, apps en diensten van Samsung (elk een “dienst” en gezamenlijk de “diensten”) zijn zodanig ontworpen dat ze u een Aangepaste dienst bieden door op een slimme en intelligente manier uw wensen en behoeften te ondersteunen. De Aangepaste dienst van Samsung biedt een betere gebruikerservaring, met inbegrip van aangepaste inhoud en aanbevelingen die uitgaan van de informatie die wij over u en uw gebruik van de diensten hebben verzameld. De Aangepaste dienst kan bijvoorbeeld uw gebruikerservaring met de diensten verbeteren door u bij uw gebruik van de spraakherkenningsdienst van Samsung hints en informatie te bieden die op u zijn toegespitst, of door de muziek te onthouden waarnaar u luisterde op regenachtige dagen en die later aan te raden. Als u bovendien de opdracht “Herinner mij eraan een fles water te kopen wanneer ik bijna thuis ben” geeft, dan kan de Aangepaste dienst deze opdracht onthouden en u eraan herinneren een fles water te kopen wanneer u bijna thuis bent.

      Om de Aangepaste dienst te kunnen gebruiken, moet u beschikken over een Samsung account. Op uw gebruik van uw Samsung account en de Aangepaste dienst is ons privacybeleid op https://account.samsung.com/membership/pp (“Privacybeleid van Samsung”) van toepassing. Dit Privacybeleid biedt aanvullende informatie over de wijze waarop uw persoonlijke gegevens worden gebruikt in verband met de Aangepaste dienst en dient te worden gelezen in samenhang met het Privacybeleid van Samsung, dat meer informatie bevat over hoe wij de gegevens verwerken. In geval van inconsistentie of strijdigheid tussen de voorwaarden van dit Privacybeleid en het Privacybeleid van Samsung, prevaleren de voorwaarden van dit Privacybeleid.

      In dit Privacybeleid beschrijven we welke soorten gegevens worden verzameld door middel van de Aangepaste dienst, hoe we deze gegevens mogelijk gebruiken, hoe lang we de gegevens mogelijk bewaren en met wie we de gegevens mogelijk delen, evenals over welke opties u beschikt met betrekking tot ons gebruik van de gegevens en het uitoefenen van uw rechten. Daarnaast beschrijven we welke maatregelen we nemen om de gegevens te beschermen en vertellen we u hoe u contact met ons kunt opnemen over onze privacypraktijken. Samsung is verantwoordelijk voor de verwerking van de persoonlijke gegevens.

      Klik op een van de koppelingen hieronder om naar de vermelde sectie te gaan:

      Wat is de Aangepaste dienst?
      Gegevens die we verkrijgen
      Hoe we de verkregen gegevens gebruiken
      Aangepaste reclame en direct marketing
      Delen van gegevens
      Internationale gegevensoverdrachten
      Bewaren van persoonlijke gegevens
      Hoe kan ik de door de Aangepaste dienst verzamelde informatie verwijderen?
      Wat gebeurt er als ik de door de Aangepaste dienst verzamelde informatie verwijder of de verzameling van bepaalde informatie door de Aangepaste dienst stopzet?
      Uw keuzen (met inbegrip van hoe u uw toestemming voor het gebruik van de Aangepaste dienst kunt intrekken)
      Uw rechten
      Hoe we persoonlijke gegevens beschermen
      Wijzigingen in onze Privacybeleid
      Contact met ons opnemen

      Gegevens die we verkrijgen

      Hoe meer de Aangepaste dienst van u begrijpt en over u leert, des te sneller en nauwkeuriger kan deze u voorzien van aangepaste inhoud en informatie. De Aangepaste dienst is speciaal ontworpen om inzicht te krijgen in uw interesses, voorkeuren en locatie, en verzamelt en analyseert informatie over u op verschillende manieren, waaronder:

      • Apparaatgegevens.De Aangepaste dienst verzamelt de unieke identificatiegegevens van uw apparaat, informatie over instellingen (zoals de taal en de instellingen voor vergrendeling), statusinformatie (zoals verbindingen met overige apparaten) en overige informatie over uw apparaat. De Aangepaste dienst controleert ook welke toepassingen er op uw apparaat zijn geïnstalleerd of momenteel worden uitgevoerd. Daarnaast kan de Aangepaste dienst informatie verzamelen over hoe, wanneer en hoe lang u gebruikmaakt van de apparaten die zijn verbonden met uw Samsung account, met inbegrip van uw gebruik van de diensten en de apps en diensten van derden op de apparaten (zoals een lijst van de apps op uw apparaten, de muziek die wordt afgespeeld op uw apparaten, de websites die u bezoekt en de zoekopdrachten die u invoert).
      • Informatie over uw muziek en foto’s.De Aangepaste dienst verzamelt en analyseert informatie, zoals de titels, genres en artiesten van de door u afgespeelde of opgeslagen muziek, alsook informatie over uw foto’s, zoals het tijdstip en de locatie waarop de foto’s zijn gemaakt.
      • Contacten en communicatiegegevens.De Aangepaste dienst verkrijgt toegang tot uw lijst met contacten en verzamelt en analyseert de geschiedenis van uw inkomende en uitgaande oproepen en sms-berichten met als doel u bepaalde diensten te bieden, zoals het bepalen van relaties met anderen (bv. uw familie en vrienden), wie uw belangrijkste contacten zijn, wie het vaakst contact met u opnemen en naar welke contactmethode uw voorkeur uitgaat, het weergeven van informatie over uw belangrijkste contacten (bv. gemiste oproepen), en het zoeken naar contacten naar wie u verwijst tijdens het gebruik van spraakherkenning.
      • Agendagegevens.De Aangepaste dienst verkrijgt toegang tot de agenda op uw apparaat en verzamelt en analyseert uw agendagegevens om inzicht te krijgen in uw voorkeuren, speciale gelegenheden vast te leggen en uw locatie vast te stellen.
      • Internetgeschiedenis.De Aangepaste dienst verzamelt en analyseert uw internetgeschiedenis (zoals bezochte internetpagina’s, gebruikte trefwoorden en favorieten) om meer te leren over uw interesses en voorkeuren, om relevante zoekresultaten weer te geven en de meest passende informatie te bieden in verschillende contexten, en om u overige diensten aan te bieden, zoals omschreven in dit Privacybeleid. Uw zoekgeschiedenis van bezochte internetpagina’s in de geheime stand (incognito- of privéstand) wordt niet verzameld.
      • Locatiegegevens.De Aangepaste dienst maakt regelmatig gebruik van en verzamelt en analyseert nauwkeurige geolocatie- en andere gegevens met betrekking tot de locatie van uw apparaat door middel van Bluetooth- en Wi-Fi-signalen, agendavermeldingen en andere technologieën en gegevens voor bepaalde doeleinden, zoals het leveren van de locatiegerelateerde kennisgevingen of door u aangevraagde informatie. Als u wilt zorgen dat de Aangepaste dienst de geolocatiegegevens verzamelt, moet Locatie-instellingen op uw apparaat zijn ingeschakeld. Daarom zal de Aangepaste dienst u in sommige gevallen verzoeken Locatie-instellingen in te schakelen.
      • Gegevens van Samsung account, Mijn profiel en Samsung-diensten.De Aangepaste dienst verzamelt en analyseert informatie die is opgeslagen in of verband houdt met uw Samsung account (zoals uw Samsung account-id, contactgegevens, naam, geboortedatum en geslacht) en de informatie die staat geregistreerd in Mijn profiel. De Aangepaste dienst verzamelt en analyseert ook informatie met betrekking tot uw gebruik van de diensten, zoals uw gebruiksgeschiedenis van Samsung-apps, de spraakopdrachten die u hebt gegeven via de spraakherkenningsdienst, meldingen die staan ingesteld in Reminder, en aan u verstrekte weerberichten.
      • Gegevens van klantendienst.De Aangepaste dienst raadpleegt, verzamelt en analyseert de gegevens door middel van uw interactie met de Samsung-klantendienst verkregen gegevens, zoals reparatiegegevens en records van klanteninteractie met het personeel van de Klantendienst, uw aankoopgeschiedenis bij Samsung-winkels en informatie over promoties waaraan u hebt deelgenomen.
      • Informatie met betrekking tot apps en diensten van derden.Door de verbinding met een app of dienst van een derde toe te staan, kunt u de Aangepaste dienst toestemming geven de gegevens met betrekking tot uw gebruik van deze apps en diensten van derden te gebruiken en u te voorzien van aangepaste functies.

      Door middel van de Aangepaste dienst kunnen we persoonlijke gegevens verzamelen over uw online activiteiten in de loop der tijd op apparaten waarop de Aangepaste dienst wordt gebruikt. Wij verzamelen ook informatie die beschikbaar is gemaakt door platforms en apps van derden (zoals online socialemediaplatforms) of door online databases of directory’s, of die anderszins op wettige wijze is verkregen. Deze informatie is onderworpen aan het Privacybeleid(en) zoals op het moment van verzameling verstrekt door de desbetreffende derde. Voorbeelden van informatie die wij ontvangen, zijn onder meer: uw aankoop- en/of gebruiksstatus (bv. actief/inactief) bij diensten van derden en hoe u deze diensten van derden gebruikt.

      De Aangepaste dienst biedt ook opties met betrekking tot hoe de Aangepaste dienst bepaalde vormen van persoonlijke gegevens gebruikt en analyseert, zoals de geschiedenis van uw oproepen en sms-berichten, uw geolocatiegegevens of uw internetgeschiedenis.

      Hoe we de verkregen gegevens gebruiken

      De Aangepaste dienst combineert en analyseert de hierboven gespecificeerde gegevens en levert de geanalyseerde gegevens aan de diensten en aan de apps van derden die u voor de volgende doeleinden hebt geautoriseerd:

      • u te voorzien van aangepaste inhoud en informatie;
      • manieren te onderzoeken om u van betere diensten te voorzien;
      • de diensten te verbeteren en te ontwikkelen;
      • aangepaste advertenties over producten en diensten weer te geven die voor u van belang kunnen zijn; en
      • met uw afzonderlijke toestemming, met u te communiceren via e-mail en push-meldingen over de door Samsung en derden geboden producten en diensten, die zijn aangepast aan uw interesses.

      Samsung verwerkt persoonlijke gegevens voor de hierboven beschreven doeleinden. De rechtsgrond van Samsung om persoonlijke gegevens te verwerken omvat verwerking die:

      • gebaseerd is op uw toestemming om de Aangepaste dienst te gebruiken;
      • noodzakelijk is voor de legitieme belangen van Samsung (bijv. om onze relatie met u te beheren en de diensten te verbeteren); en
      • gebaseerd is op uw afzonderlijke toestemming (om met u te communiceren over onze producten en diensten en om u marketinginformatie te bieden).

      Aangepaste reclame en direct marketing

      De Aangepaste dienst verzamelt en analyseert uw gebruik van de diensten en uw online activiteiten over een bepaalde periode en tussen websites en apps van derden, evenals tussen apparaten, om u te voorzien van reclame- en direct-marketingberichten (gezamenlijk “Advertenties”) over producten en diensten die door Samsung en derden worden geboden en die zijn toegespitst op uw interesses. Wij vragen u eerst om toestemming om uw persoonlijke gegevens te verwerken voor direct-marketingdoeleinden. Zodra u uw toestemming hebt gegeven, kunt u ervoor kiezen het gebruik van deze informatie door de Aangepaste dienst voor aangepaste Advertenties uit te schakelen. Ga daarvoor in uw Samsung account naar Privacy > Aangepaste dienst > menu Alle apparaten beheren, en schakel vervolgens “Reclame met behulp van aangepaste dienst” uit.
      Let op: het uitschakelen van deze optie garandeert niet dat alle door Samsung geboden Advertenties (waaronder aangepaste Advertenties) worden stopgezet. Het kan zijn dat u de Advertenties van Samsung blijft ontvangen indien u ermee hebt ingestemd deze van overige diensten te ontvangen. Ga naar het menu Instellingen van de desbetreffende dienst voor meer informatie over hoe u dergelijke Advertenties van overige diensten kunt uitschakelen.

      Delen van gegevens

      We maken geen persoonlijke gegevens van u bekend door middel van de diensten, uitgezonderd zoals beschreven in dit Privacybeleid. Een beperkt aantal leden van de Aangepaste dienst binnen Samsung kan toegang verkrijgen tot persoonlijke gegevens en deze anderszins verwerken in het kader van hun verantwoordelijkheden of hun contractuele verplichtingen. We delen uw persoonlijke gegevens met onze dochterondernemingen en verbonden ondernemingen, alsook met dienstproviders die ons vertrouwen hebben en die diensten voor ons verrichten op basis van wettelijk bindende overeenkomsten ter bescherming van uw gegevens. We geven geen toestemming aan onze dienstproviders om de gegevens te gebruiken of bekend te maken, uitgezonderd voor zover dit noodzakelijk is om de diensten namens ons uit te voeren of te voldoen aan wettelijke vereisten.

      Internationale gegevensoverdrachten

      Sommige van deze personeelsleden, verbonden ondernemingen en externe dienstproviders zijn gevestigd buiten de EER, onder andere in landen die mogelijk niet dezelfde mate van bescherming van persoonsgegevens bieden als het thuisland van onze klanten, waaronder (zonder beperking) Zuid-Korea, de Verenigde Staten en India. Samsung neemt passende maatregelen om erop toe te zien dat dergelijke ontvangers gebonden zijn aan geheimhoudingsverplichtingen en Samsung implementeert maatregelen, zoals standaard contractbepalingen inzake bescherming van persoonsgegevens om ervoor te zorgen dat overgedragen persoonsgegevens beschermd en beveiligd worden. Een kopie van deze bepalingen kan worden verkregen door contact met ons op te nemen zoals beschreven in de paragraaf Contact met ons opnemen in dit Privacybeleid.

      Wanneer u de Aangepaste dienst gebruikt om toegang te verkrijgen tot of gebruik te maken van apps en diensten van derden, sturen we mogelijk bepaalde persoonlijke gegevens naar de leveranciers van de betreffende apps en diensten van derden om u te voorzien van de gevraagde diensten. Deze derden kunnen ook door middel van de Aangepaste dienst bepaalde persoonlijke gegevens rechtstreeks vanaf uw apparaten verzamelen. Samsung is niet verantwoordelijk voor de privacy- of beveiligingspraktijken van deze externe leveranciers. De privacy- en beveiligingspraktijken van de betrokken leveranciers, met inbegrip van details over de gegevens die ze van ons ontvangen of over u verzamelen, zijn onderworpen aan de privacyverklaringen van deze partijen. We raden u sterk aan deze door te lezen.

      Samsung, onze dochterondernemingen en verbonden ondernemingen, en onze externe dienstproviders kunnen ook informatie over u bekendmaken (1) wanneer we daartoe verplicht zijn op grond van de wet of een wettelijk proces (bijvoorbeeld een gerechtelijk bevel of dagvaarding); (2) in reactie op een verzoek van een overheidsinstelling, zoals een wetshandhavende instantie; (3) om onze wettelijke rechten te laten gelden, uit te oefenen of te verdedigen; (4) wanneer we geloven dat bekendmaking noodzakelijk of passend is om fysieke of andere schade dan wel financiële verliezen te voorkomen; (5) in verband met een onderzoek naar vermoede of daadwerkelijke illegale activiteiten; (6) in het geval dat we ons bedrijf of onze bedrijfsmiddelen geheel of gedeeltelijk verkopen of overdragen (onder andere in het geval van een fusie, overname, verkoop, overdracht, reorganisatie, opheffing of liquidatie); of (7) anderszins met uw afzonderlijke toestemming.

      Bewaren van persoonlijke gegevens

      Wij nemen passende stappen om te waarborgen dat de informatie over u alleen wordt bewaard als deze uitgaat van de volgende logica:

      • de informatie wordt bewaard voor ten minste de duur dat deze wordt gebruikt om u de diensten te leveren;
      • de informatie wordt bewaard voor zover verplicht op grond van de wet, een contract of onze wettelijke verplichtingen; of
      • de informatie wordt bewaard zolang als nodig is voor de doeleinden waarvoor de gegevens worden verzameld of verwerkt, of langer indien dit vereist is op grond van enig ander contract of de toepasselijke wetgeving dan wel voor statistische doeleinden, dit laatste met inachtneming van passende waarborgen.

      Hoe kan ik de door de Aangepaste dienst verzamelde informatie verwijderen?

      De door de Aangepaste dienst verzamelde en geanalyseerde informatie wordt verwijderd zodra u uw Samsung account verwijdert. Ook kunt u nog voordat u uw Samsung account verwijdert, aanvragen dat gegevens die op enig moment door de Aangepaste dienst zijn verzameld en geanalyseerd, worden verwijderd. Dit kunt u doen via het menu Privacy-instellingen in uw Samsung account. Let op: in sommige gevallen kan het 48 uur duren voordat de op onze servers opgeslagen informatie volledig is verwijderd.

      Wat gebeurt er als ik de door de Aangepaste dienst verzamelde informatie verwijder of de verzameling van bepaalde informatie door de Aangepaste dienst stopzet?

      Als u de verzamelde informatie verwijdert, kan dit een negatief effect hebben op de nauwkeurigheid en/of kwaliteit van de aangepaste inhoud die aan u door de Aangepaste dienst wordt geleverd. Bovendien kunnen sommige aanpassingsfuncties informatie vereisen die u hebt verwijderd of waartoe u de Aangepaste dienst de toegang hebt geweigerd. In sommige gevallen is het alleen mogelijk deze functies weer te ontvangen door de Aangepaste dienst opnieuw toestemming te geven de desbetreffende informatie te verzamelen en te gebruiken.

      Hoe we persoonlijke gegevens beschermen

      We hanteren passende administratieve, technische en fysieke maatregelen die zijn ontworpen om de persoonlijke gegevens die we verkrijgen door middel van de diensten te beschermen tegen onbedoeld(e), onwettig(e) of ongeautoriseerd(e) vernietiging, manipulatie, verlies, wijziging, toegang, bekendmaking of gebruik. Samsung hanteert verder redelijke procedures om erop toe te zien dat de gegevens betrouwbaar zijn voor het beoogde gebruik en waarheidsgetrouw, volledig en actueel zijn.

      Uw keuzen (met inbegrip van hoe u uw toestemming voor het gebruik van de Aangepaste dienst kunt intrekken)

      Samsung respecteert de keuzen die u hebt gemaakt en streeft ernaar diverse manieren te bieden waarop u uw gegevens kunt controleren. U kunt op ieder moment de Aangepaste dienst uitschakelen via de optie “Aangepaste dienst” in het menu Instellingen van uw Samsung account. In dat geval schort Samsung de levering van de aangepaste inhoud en informatie op en worden het verzamelen, combineren en analyseren van uw informatie door de Aangepaste dienst stopgezet. Als u bovendien in het onderdeel “Aangepaste reclame en direct marketing” de hiervoor beschreven instellingen wijzigt, wordt de door de Aangepaste dienst verzamelde en geanalyseerde informatie mogelijk niet langer gebruikt voor reclamedoeleinden.
      Bovendien kunt u de categorieën informatie specificeren die de Aangepaste dienst mag verzamelen en analyseren, evenals de ondersteuning van de Aangepaste dienst voor overige diensten. Daaropvolgende beslissingen hebben echter geen invloed op de informatie die reeds door de Aangepaste dienst is verzameld, gecombineerd en geanalyseerd. Als u de Aangepaste dienst uitschakelt, wordt de eerder door de Aangepaste dienst verzamelde, gecombineerde en geanalyseerde informatie niet verwijderd. Ook als u de Aangepaste dienst uitschakelt, kunt u nog altijd de standaardfuncties gebruiken die door elk van de diensten wordt geboden. U kunt diverse opties selecteren, zoals hieronder aangegeven:

      • Als u de instellingen van de Aangepaste dienst op elk van de in uw Samsung account geregistreerde apparaten wilt wijzigen, voert u de volgende acties uit:
        – Smartphones/tablets: Instellingen > Cloud en accounts > Accounts > Samsung account > Privacy > Aangepaste dienst
        – Draagbaar: Instellingen > Account > Aangepaste dienst
      • Als u de instellingen van de Aangepaste dienst voor alle in uw Samsung account geregistreerde apparaten wilt wijzigen, voert u de volgende acties uit:
        – Website: https://account.samsung.com/membership/pp > Instellingen voor persoonlijke gegevens
        – Smartphones/tablets: Instellingen > Cloud en accounts > Accounts > Samsung account > Privacy > Aangepaste dienst > Alle apparaten beheren

      Voornoemde specifieke instellingen kunnen bij updates of nieuwe modellen die de Aangepaste dienst ondersteunen, onder voorbehoud van wijzigingen zijn. Let op: uw aangepaste gebruikerservaring kan veranderen als gevolg van het uitschakelen van de Aangepaste dienst.

      Uw rechten

      U hebt het recht om details op te vragen over de informatie die wij over u verzamelen en om een verzoek in te dienen om onjuistheden in die informatie te corrigeren, bezwaar te maken tegen of te vragen om beperking van de verwerking, en om toegang te vragen tot of te vragen om uw informatie te wissen of over te dragen. Op grond van de wetgeving van bepaalde jurisdicties kunnen we weigeren verzoeken te verwerken die onredelijk repetitief zijn, een disproportionele technische inspanning vereisen, de privacy van anderen in het gedrang brengen of extreem onpraktisch zijn, of waarvoor toegang niet vereist wordt door de lokale wetgeving. Als u een verzoek om toegang tot uw informatie wilt indienen, neem dan contact met ons op via dataprotection@samsung.com. Op smartphones/tablets kunt u uw gegevens ook zelf wissen en/of downloaden (gegevens van de laatste 30 dagen): Instellingen > Cloud en accounts > Accounts > Samsung account > Privacy > Aangepaste dienst anders dan Gegevens klantendienst.
      Als u een verzoek indient om uw persoonlijke gegevens te wissen, erkent u dat u niet langer toegang hebt tot of gebruik kunt maken van de zakelijke diensten en dat uw particuliere persoonlijke gegevens nog altijd voor enige tijd bewaard kunnen blijven in de records of archieven van Samsung, overeenkomstig de toepasselijke wetgeving, maar dat Samsung die gegevens niet langer voor commerciële doeleinden zal gebruiken. U erkent dat Samsung, ondanks uw verzoek om uw gegevens te wissen, zich het recht voorbehoudt om uw persoonlijke gegevens of een relevant deel daarvan te bewaren overeenkomstig het beleid inzake gegevensbehoud en de geldige wetgeving, indien Samsung uw toegang tot de website heeft opgeschort, beperkt, of beëindigd wegens inbreuk op de Voorwaarden van Samsung, mocht dit nodig zijn om de rechten, bezittingen of veiligheid van Samsung of een van haar respectieve verbonden ondernemingen, zakenpartners, werknemers of klanten te beschermen.

      Hoe we persoonlijke gegevens beschermen

      We hanteren passende administratieve, technische en fysieke maatregelen die zijn ontworpen om de persoonlijke gegevens die we verkrijgen door middel van de diensten te beschermen tegen onbedoeld(e), onwettig(e) of ongeautoriseerd(e) vernietiging, manipulatie, verlies, wijziging, toegang, bekendmaking of gebruik. Samsung hanteert verder redelijke procedures om erop toe te zien dat de gegevens betrouwbaar zijn voor het beoogde gebruik en waarheidsgetrouw, volledig en actueel zijn.

      Wijzigingen in onze Privacybeleid

      Dit Privacybeleid kan van tijd tot tijd worden bijgewerkt in overeenstemming met onze praktijken met betrekking tot persoonlijke gegevens in het kader van de diensten, of wijzigingen in het toepasselijk recht. We zullen een kennisgeving publiceren op onze website en/of op uw apparaat om u vooraf in kennis te stellen van wezenlijke wijzigingen in ons Privacybeleid en bovenaan de kennisgeving aangeven wanneer deze voor het laatst is bijgewerkt.

      Contact met ons opnemen

      Als u specifieke vragen hebt over uw gegevens, kunt u contact met ons (gegevensverzamelaar voor de EU) opnemen via:
      European Data Protection Officer
      Samsung Electronics (UK) Limited
      Samsung House, 1000 Hillswood Drive, Chertsey, Surrey KT16 0PS

      Ook kunt u contact met ons opnemen via dataprotection@samsung.com.
      U kunt een klacht indienen bij een toezichthoudende instantie indien u vindt dat onze verwerking van uw persoonlijke gegevens inbreuk maakt op het toepasselijk recht.

      WERELDWIJD PRIVACYBELEID VAN SAMSUNG – SUPPLEMENT SMART TV

      De Samsung Smart TV-dienst biedt diverse voorzieningen voor verrijkte video-inhoud, persoonlijke tv-ervaringen, films, verbindingen met sociale netwerkdiensten en de mogelijkheid om met uw Smart TV te communiceren en deze te bedienen met gesproken opdrachten. We verzamelen gegevens via uw Smart TV en de apparaten die op uw Smart TV worden aangesloten en gebruiken, delen en bewaren deze op de manieren die worden beschreven in het wereldwijde privacybeleid van Samsung. In deze aanvulling vindt u extra informatie over de privacypraktijken van bepaalde Smart TV-diensten.

      De Smart TV is ontworpen om u de mogelijkheid te bieden videoprogramma’s en andere inhoud makkelijk te vinden en gebruiken. Zo kunt u via doorzoekbare gidsen die worden weergegeven op uw Smart TV bijvoorbeeld informatie raadplegen over liveprogramma’s die door uw kabel- of satellietbedrijf worden gedistribueerd en video-inhoud op aanbod die door externe aanbieders wordt aangeboden.
      In het geval van liveprogramma’s bepalen wij deels op basis van uw postcode welke inhoud er voor u beschikbaar is. Verder helpt de Smart TV u andere Smart TV-inhoud te vinden en ervaren die relevant voor u is door programma’s en inhoud te markeren die u waarschijnlijk interessant vindt of door extra diensten aan te bieden waarmee uw kijkervaring nog verder wordt verbeterd. Wij baseren deze aanbevelingen en extra diensten op:

      • Informatie over inhoud die u hebt bekeken, gekocht, gedownload of gestreamd via Samsung-toepassingen op uw Smart TV of andere apparaten (Zie de paragraaf ‘Kijkinformatiediensten’ hieronder voor meer informatie over tv-kijkgegevens);
      • Informatie over toepassingen die u hebt gebruikt via de Smart TV;
      • Informatie over klikken op “Leuk”, “Niet leuk”, “Nu kijken” en andere knoppen op uw Smart TV;
      • De zoektermen die u invoert in de zoekfuncties van de Smart TV, ook wanneer u zoekt naar specifieke video-inhoud;
      • Andere gebruiks- en apparaatgegevens van uw Smart TV, met inbegrip van, maar niet beperkt tot, IP-adres, logboekgegevens, informatie waarmee uw hardware- of softwareconfiguratie wordt geïdentificeerd, browserinformatie en de pagina(’s) die u opvraagt.

      Kijkinformatiediensten

      Teneinde u aangepaste en gepersonaliseerde Smart TV-ervaringen te bieden, zijn bepaalde functies en diensten afhankelijk van uw tv-kijkgeschiedenis en de gebruiksinformatie van uw Smart TV.
      Uw tv-kijkgeschiedenis omvat informatie over de netwerken, kanalen, bezochte websites en programma’s die u op uw Smart TV hebt bekeken en de hoeveelheid tijd die u hebt besteed aan het bekijken hiervan.
      We kunnen gebruikmaken van automatische herkenning van inhoud (ACR) en andere technologieën om deze informatie te registreren. Uw Smart TV draagt informatie over videofragmenten of uw tv-tuner over om vast te stellen welke programma’s zijn bekeken.
      U kunt uw privacykeuze elk moment wijzigen door naar het instellingenmenu te gaan en de desbetreffende functie of dienst naar eigen inzicht uit te schakelen, waarna uw tv-kijkgeschiedenis niet meer wordt verzameld voor die functie of dienst.
      Uw gebruik van de diensten houdt in dat uw persoonsgegevens worden overgedragen, opgeslagen en verwerkt buiten uw land van vestiging, namelijk Korea, conform dit privacybeleid. Daarnaast kan uw gebruik van de diensten ook de overdracht, opslag en verwerking van uw persoonsgegevens naar andere landen inhouden; dergelijke landen omvatten, zonder beperking, landen in de Europese Economische Ruimte, de Verenigde Staten van Amerika en Canada. Houd er rekening mee dat de wetten inzake gegevensbescherming en andere wetten van landen buiten de Europese Economische Ruimte waarnaar uw informatie wordt overgedragen, mogelijk niet zo uitgebreid zijn als de wetten in uw eigen land. Wij zullen passende maatregelen nemen, in overeenstemming met de toepasselijke wetgeving, om ervoor te zorgen dat uw persoonsgegevens beschermd blijven. Dergelijke maatregelen omvatten het gebruik van standaard contractbepalingen om de overdracht van gegevens buiten de EER te beschermen. Neem voor meer informatie of om een kopie van de geldende contractuele overeenkomsten te verkrijgen contact met ons op via dataprotection@samsung.com.
      Denk eraan dat uw privacykeuze van invloed kan zijn op de beschikbaarheid of kwaliteit van de op kijkinformatie gebaseerde dienst.

      Op interesse gebaseerde reclamediensten

      De Interest-Based Advertisement Diensten (de “IBA-diensten”) zijn ontworpen om nuttige, interactieve en op interesse gebaseerde reclame te kunnen ontvangen en bekijken over producten en diensten die door Samsung en derden worden aangeboden op uw Samsung Smart TV of op verschillende platforms of apparaten van Samsung en externe partijen. Dit geldt ook voor lineaire reclames, op het web, mobiele apparaten en tablets.

      Om de reclame op uw apparaten relevanter voor u te maken, vertrouwt de IBA dienst op uw tv-kijkgeschiedenis (waaronder informatie over de netwerken, kanalen, bezochte websites en programma’s die u op uw Samsung Smart TV hebt bekeken en de hoeveelheid tijd die u hebt besteed aan het bekijken hiervan), gebruiksinformatie van de Samsung Smart TV en andere statistische gegevens die zijn verkregen van vertrouwde externe gegevensbronnen. Wij kunnen automatische inhoudherkenning (ACR) en andere technieken gebruiken om uw tv-kijkgeschiedenis vast te leggen.

      Op basis van de bovenstaande informatie creëren we groepen Samsung Smart TV’s die dezelfde interesses delen en gebruiken we deze groepen voor de IBA-dienst. De bovenstaande informatie wordt gebruikt om de groepen te bepalen waaraan uw Samsung Smart TV is toegewezen en dus welke reclame uw apparaten ontvangen.

      U kunt de IBA-dienst op elk gewenst moment uitschakelen door naar het menu Instellingen op uw Samsung Smart TV te gaan.

      Uw privacykeuze voor de IBA-dienst is niet van invloed op het ontvangen of aangeboden krijgen van andere soorten reclame en marketing die niet specifiek gebaseerd zijn op uw tv-kijkgeschiedenis of de gebruiksinformatie van uw Samsung Smart TV. Die andere soorten reclame en marketing zullen op andere informatie zijn gebaseerd, zoals globale locatie en andere geschatte of afgeleide gegevens. Ze kunnen minder relevant zijn, omdat ze niet op uw interesses zijn gebaseerd.

      Raadpleeg voor meer informatie over de IBA-diensten dit privacybeleid voor de IBA-diensten aan de onderkant van dit Supplement.

      PSID

      De kijkgeschiedenis en gebruiksinformatie van uw Smart TV die zijn verzameld om op interesse gebaseerde reclame aan te bieden, worden gekoppeld aan een gerandomiseerde, niet-permanente en opnieuw instelbare apparaat-id, de zogenaamde Personalised Dienst ID of “PSID”.
      U kunt de PSID op elk gewenst moment resetten in het menu Instellingen op uw Smart TV. Als u dit doet, worden uw Smart TV-kijkgeschiedenis en Smart TV-gebruiksinformatie met betrekking tot op interesse gebaseerde reclame, losgekoppeld van de vorige PSID. Als u uw PSID reset, is de kwaliteit van aangepaste en op interesse gebaseerde reclame mogelijk niet meer zo nauwkeurig.

      Spraakherkenning

      U kunt uw Smart TV en veel van de bijbehorende functies bedienen met spraakopdrachten.
      Als u Spraakherkenning inschakelt, kunt u de Smart TV opdrachten geven met uw stem. Voor het gebruik van Spraakherkenning worden uw spraakopdrachten (plus informatie over uw apparaat, inclusief de apparaat-id) naar ons verzonden. Wij converteren uw spraakopdrachten vervolgens naar tekst om de spraakherkenningsfuncties te kunnen aanbieden. Verder verzamelt Samsung mogelijk spraakopdrachten en hieraan gerelateerde teksten, zodat wij de functies kunnen evalueren en verbeteren. Samsung verzamelt uw spraakopdrachten alleen wanneer u een specifieke zoekopdracht voor de Smart TV opgeeft door op de activeringsknop op de afstandsbediening of op het scherm te klikken en in de microfoon op de afstandsbediening te spreken.
      Als u Spraakherkenning niet inschakelt, kunt u de spraakherkenningsfuncties ook niet gebruiken.
      U kunt het verzamelen van gegevens voor Spraakherkenning altijd uitschakelen via het menu Instellingen. Als u dit doet, kunt u de spraakherkenningsfuncties echter niet gebruiken.

      Raadpleeg voor meer informatie over Spraakherkenning dit privacybeleid voor Spraakherkenning aan de onderkant van dit Supplement.

      Externe partijen

      Wanneer u een video bekijkt of toepassingen of inhoud gebruikt die door een externe partij worden aangeboden, kan die aanbieder informatie verzamelen of ontvangen over uw Smart TV (zoals het IP-adres en de apparaat-id), de gevraagde transactie (zoals uw verzoek om de video te kopen of huren) en uw gebruik van de toepassing of dienst. Samsung is niet verantwoordelijk voor de privacy- of beveiligingspraktijken van deze aanbieders. Wees voorzichtig en lees de privacyverklaringen die van toepassing zijn op de externe websites en diensten die u gebruikt.

      Landspecifieke functies

      Houd er rekening mee dat een of meer van de beschreven functies in dit Smart TV-supplement mogelijk niet beschikbaar zijn, afhankelijk van waar u woont.

      Privacybeleid Spraakherkenningsdienst

      Ingangsdatum: 25 mei 2018

      Samsung Electronics UK Limited (“Samsung” of “Wij”) en haar verbonden ondernemingen respecteren uw zorgen omtrent privacy. Dit privacybeleid is van toepassing op de persoonlijke informatie die wij verzamelen via de Spraakherkenningsdienst (de “Spraakdienst”).

      De Spraakdienst is een dienst die gebruikers de mogelijkheid biedt inhoud te zoeken en te bekijken en alles op hun Samsung-producten te beheren met hun stem. De dienst is in staat natuurlijke taal te verwerken voor het zoeken naar inhoud, voor het bedienen van een Samsung Smart TV, en voor internet, weersinformatie en andere diensten die gebruikers verwachten van hun Samsung Smart TV’s.

      Afhankelijk van de taal die u selecteert, kunt u mogelijk ook gebruikmaken van de uitgebreide spraakherkenningsfunctie Bixby. Wanneer Bixby is geactiveerd, kunt u dat herkennen aan pictogrammen, banners en andere merktekens op het scherm van uw Samsung Smart TV.

      Dit privacybeleid biedt aanvullende, specifieke informatie over de wijze waarop uw persoonsgegevens worden gebruikt in verband met de Spraakdienst en dient te worden gelezen in samenhang met het Algemeen privacybeleid van Samsung, dat ook van toepassing is op uw gebruik van de Spraakdienst en dat u kunt vinden op https://account.samsung.com/membership/pp.

      In dit privacybeleid beschrijven we welke soorten gegevens worden verzameld door middel van de Spraakdienst, hoe we deze gegevens mogelijk gebruiken, hoe lang we de gegevens mogelijk bewaren en met wie we de gegevens mogelijk delen, evenals over welke opties u beschikt met betrekking tot ons gebruik van de gegevens en het uitoefenen van uw rechten. Daarnaast beschrijven we welke maatregelen we nemen om de gegevens te beschermen en vertellen we u hoe u contact met ons kunt opnemen over onze privacypraktijken. Samsung is verwerkingsverantwoordelijke voor de persoonsgegevens.

      Gegevens die we verkrijgen

      We verkrijgen mogelijk op verschillende manieren gegevens over u door middel van de Spraakdienst. We verkrijgen onder andere de volgende typen persoonsgegevens:

      • Samsung-accountgegevens (optioneel). Wanneer u inlogt op het Samsung-account op uw Smart TV, verzamelen we mogelijk gegevens uit uw Samsung-account die worden gebruikt om toegang te verkrijgen tot de Spraakdienst, zoals uw naam, e-mailadres en uw Samsung-account-id.
      • Interactie met de Spraakdienst. We verzamelen mogelijk gegevens die u uitwisselt met de Spraakdienst door middel van uw interacties met de Diensten, met inbegrip van opnamen van uw gesproken opdrachten (zoals uw vragen, verzoeken en instructies), uw foto’s en andere input, en de informatie die u ontvangt van de Diensten (zoals reacties, antwoorden en inhoud). We kunnen ook andere gegevens verkrijgen in verband met uw gebruik van de Spraakdienst, met inbegrip van de gegevens (waaronder gegevens in verband met de apps die u gebruikt, de websites die u bezoekt, foto’s, muziek, agendavermeldingen, bladwijzers, en inhoud en gegevens van andere apps, websites en diensten van Samsung of van derden) die we ontvangen van apps en diensten van Samsung en van derden die worden geraadpleegd of gebruikt door de Spraakdienst om u te voorzien van de diensten (zoals muziekstreaming en weerberichten).
      • Geolocalisatiegegevens. We ontvangen mogelijk geolocalisatiegegevens van uw apparaat en andere gegevens met betrekking tot uw locatie door middel van postcodegegevens opgeslagen in de tv die kunnen worden verkregen aan de hand van uw IP-adres of gegevens die u hebt ingevoerd voor bepaalde doeleinden, bijvoorbeeld voor het leveren van de Diensten aan u.
      • Gegevens over apparaten en apps. We verzamelen mogelijk automatisch gegevens over uw apparaten waarop de Spraakdienst wordt gebruikt, zoals het model van het apparaat, de versie van het besturingssysteem, de configuratie en instellingen van het apparaat, het IP-adres en de apparaat-id of andere unieke id’s. Daarnaast verkrijgen we mogelijk gegevens over hoe, wanneer en hoe lang u gebruikmaakt van uw apparaten waarop de Spraakdienst wordt gebruikt, met inbegrip van uw gebruik van de Spraakdienst en apps en diensten van Samsung en van derden op de apparaten (zoals een lijst van de apps op uw apparaten, de muziek die wordt afgespeeld op uw apparaten, de websites die u bezoekt en de zoekopdrachten die u geeft).

      De servers van Samsung ontvangen mogelijk gegevens wanneer u communiceert met de Spraakdienst, zoals gegevens over uw gebruik van de Spraakdienst, uw interacties met de Spraakdienst, uw geolocalisatie en de apparaten die u gebruikt voor toegang tot de Spraakdienst.

      Hoe we de verkregen gegevens gebruiken

      We kunnen de gegevens die we verkrijgen door middel van de Spraakdienst gebruiken om:

      • u te identificeren en te verifiëren zodat u bepaalde Spraakdiensten kunt gebruiken;
      • uw ervaring van de Spraakdiensten verbeteren en aan te passen, bijvoorbeeld door het leveren van inhoud en reacties die zijn toegesneden op onze gebruikers en de wijze waarop ze de Spraakdienst gebruiken;
      • met uw afzonderlijke instemming, met u te communiceren over onze producten en diensten, en u te voorzien van kennisgevingen, inhoud, meldingen, aanbiedingen, promoties, marketinginformatie, communicatie en advertenties;
      • te reageren op uw verzoeken en vragen;
      • onze bedrijfsactiviteiten uit te voeren, te evalueren en te verbeteren (onder andere door nieuwe producten te ontwikkelen en onze producten en de diensten uit te breiden en te verbeteren; onze communicatie te beheren; onze producten, ons klantenbestand en de diensten te analyseren; marktonderzoek uit te voeren; gegevensanalyse te verrichten; de administratie bij te houden en boekhoudkundige controles en andere interne functies uit te voeren);
      • het voor u mogelijk te maken te werken met en gebruik te maken van apps en diensten van derden;
      • bescherming te bieden tegen fraude en andere criminele activiteiten, claims en andere risico’s en deze te herkennen en te voorkomen; en
      • toepasselijke wettelijke vereisten, relevante industrienormen en onze beleidsregels, met inbegrip van dit privacybeleid en het privacybeleid voor het Samsung-account na te leven en de handhaving daarvan af te dwingen.

      Door middel van de Spraakdienst kunnen we persoonsgegevens verzamelen over uw online activiteiten in de loop der tijd op apparaten waarop de Spraakdienst wordt gebruikt, en in diverse apps en websites van derden en andere online diensten. We kunnen gebruikmaken van analysediensten van derden in onze Diensten. De leveranciers die deze analysediensten beheren, helpen ons bij het analyseren van uw gebruik van de Diensten en bij het verbeteren van onze Diensten. De gegevens die we verkrijgen, kunnen worden bekendgemaakt aan of rechtstreeks worden verzameld door deze leveranciers en andere relevante derden die de gegevens bijvoorbeeld gebruiken om de Diensten te evalueren, te helpen bij het leveren van de Diensten en technische problemen te onderzoeken.

      Samsung verwerkt persoonsgegevens voor de hierboven beschreven doeleinden. De wettelijke basis van Samsung om persoonsgegevens te verwerken, omvat verwerking die: noodzakelijk is voor de uitvoering van het contract tussen u en Samsung (bijvoorbeeld om de diensten aan u te leveren en om u te identificeren en uw identiteit te verifiëren zodat u bepaalde diensten kunt gebruiken); noodzakelijk is om te voldoen aan wettelijke vereisten (bijvoorbeeld om te voldoen aan de toepasselijke boekhoudkundige voorschriften en om verplichte bekendmakingen te doen aan wetshandhavende instanties); noodzakelijk zijn voor de legitieme belangen van Samsung (bijvoorbeeld om onze relatie met u te beheren en de Diensten te verbeteren); en is gebaseerd op instemming van onze klanten (bijvoorbeeld om te communiceren met u over onze producten en diensten en u te voorzien van marketinginformatie) die vervolgens op enig moment kan worden ingetrokken, zoals beschreven in de paragraaf Contact met ons opnemen in dit privacybeleid, zonder gevolgen voor de wettigheid van de verwerking op grond van de instemming alvorens deze werd ingetrokken.

      U bent verplicht, als voorwaarde om een contract aan te gaan, om ons persoonsgegevens te verstrekken ter verwerking, zoals hierboven beschreven. Indien u geen persoonsgegevens aan ons verstrekt, zullen we niet in staat zijn alle voorzieningen aan u te leveren die beschikbaar zijn door middel van de Spraakdienst.

      Delen van gegevens

      We maken geen persoonsgegevens van u bekend door middel van de Diensten, uitgezonderd zoals beschreven in dit privacybeleid. Een beperkt aantal leden van het Spraakdienstteam in Samsung heeft toegang tot persoonsgegevens in verband met hun taakverantwoordelijkheden of contractuele verplichtingen en kan deze gegevens anderszins verwerken. We kunnen uw persoonsgegevens delen met onze dochterondernemingen en verbonden ondernemingen, en met dienstproviders die diensten voor ons uitvoeren. We geven geen toestemming aan onze dienstproviders om de gegevens te gebruiken of bekend te maken, uitgezonderd voor zover dit noodzakelijk is om de diensten namens ons uit te voeren of te voldoen aan wettelijke vereisten.

      Wanneer u de Spraakdienst gebruikt om toegang te verkrijgen tot of gebruik te maken van apps en diensten van derden, sturen we mogelijk bepaalde persoonsgegevens naar de leveranciers van de betreffende apps en diensten van derden om u te voorzien van de gevraagde diensten. Voorbeelden van deze gegevens zijn de gesproken opdrachten die u geeft om deze apps en diensten te bedienen, uw geolocalisatie en andere locatiegegevens, en andere gegevens die helpen de gevraagde diensten te leveren. Deze derden kunnen ook door middel van de Spraakdienst bepaalde persoonsgegevens verzamelen, rechtstreeks vanaf uw apparaten. Samsung is niet verantwoordelijk voor de privacy- of beveiligingspraktijken van deze externe leveranciers. De privacy- en beveiligingspraktijken van de betrokken leveranciers, met inbegrip van details over de gegevens die ze van ons ontvangen of over u verzamelen, zijn onderworpen aan de privacybeleiden van deze partijen. We raden u sterk aan deze door te lezen.

      Samsung, onze dochterondernemingen en verbonden ondernemingen, en onze externe dienstproviders kunnen ook informatie over u bekendmaken (1) als we daartoe verplicht zijn op grond van de wet of een wettelijk proces (bijvoorbeeld een gerechtelijk bevel of dagvaarding); (2) in reactie op een verzoek van een overheidsinstelling, zoals een wetshandhavende instantie; (3) om onze wettelijke rechten te laten gelden, uit te oefenen of te verdedigen; (4) wanneer we geloven dat bekendmaking noodzakelijk of passend is om fysieke of andere schade of financiële verliezen te voorkomen; (5) in verband met een onderzoek naar vermoede of daadwerkelijke illegale activiteiten; (6) in het geval dat we ons bedrijf of onze bedrijfsmiddelen geheel of gedeeltelijk verkopen of overdragen (onder andere in het geval van een fusie, overname, reorganisatie, opheffing of liquidatie); of (7) anderszins met uw toestemming.

      INTERNATIONALE OVERDRACHT VAN GEGEVENS

      Uw gebruik van de diensten houdt in dat uw persoonsgegevens worden overgedragen, opgeslagen en verwerkt buiten uw land van vestiging, namelijk Korea, conform dit privacybeleid. Daarnaast kan uw gebruik van de diensten ook de overdracht, opslag en verwerking van uw persoonsgegevens naar andere landen inhouden; dergelijke landen omvatten, zonder beperking, landen in de Europese Economische Ruimte en de Verenigde Staten van Amerika. Houd er rekening mee dat de wetten inzake gegevensbescherming en andere wetten van landen buiten de Europese Economische Ruimte waarnaar uw informatie wordt overgedragen, mogelijk niet zo uitgebreid zijn als de wetten in uw eigen land. Wij zullen passende maatregelen nemen, in overeenstemming met de toepasselijke wetgeving, om ervoor te zorgen dat uw persoonsgegevens beschermd blijven. Dergelijke maatregelen omvatten het gebruik van standaard contractbepalingen om de overdracht van gegevens buiten de EER te beschermen. Neem voor meer informatie of om een kopie van de geldende contractuele overeenkomsten te verkrijgen contact met ons op via dataprotection@samsung.com.

      GEGEVENSBEHOUD

      Wij bewaren uw persoonsgegevens niet langer dan nodig is voor het doel waarvoor deze zijn verzameld. Dit houdt in dat gegevens worden vernietigd of verwijderd van onze systemen als deze niet meer nodig zijn.
      Wij nemen passende maatregelen om ervoor te zorgen dat de informatie die wij over u verwerken en bewaren, gebaseerd is op de volgende logica:
      1. ten minste de duur waarvoor de gegevens zijn gebruikt om u een dienst te leveren;
      2. zoals verplicht volgens de wetgeving, een contract of onze wettelijke verplichtingen; of
      3. alleen zolang als nodig is voor de doeleinden waarvoor de gegevens zijn verzameld, worden verwerkt, of langer indien dit vereist is onder enig ander contract, toepasselijke wet of voor statistische doeleinden. Dit is altijd onderworpen aan passende waarborgen.

      Uw opties

      U kunt de Spraakdienst op elk gewenst moment uitschakelen door naar het instellingenmenu te gaan. Hierdoor kunt u de Spraakdienst mogelijk niet meer gebruiken.

      Verder bieden we u bepaalde opties met betrekking tot de persoonsgegevens die we over u verkrijgen. U kunt uw voorkeuren bijwerken, de communicatie die u van ons ontvangt beperken, of een verzoek indienen door contact met ons op te nemen zoals beschreven in de paragraaf Contact met ons opnemen in dit privacybeleid.

      Uw rechten

      U hebt het recht om details op te vragen over de gegevens die wij over u verzamelen en om ons te verzoeken onjuistheden die gegevens te corrigeren, om bezwaar te maken tegen of te verzoeken om beperking van de verwerking, om toegang te vragen tot, het wissen of de overdraagbaarheid van uw informatie. Onder de wetgeving van sommige rechtsgebieden kunnen we weigeren verzoeken te verwerken die onredelijk repetitief zijn, een disproportionele technische inspanning vereisen, de privacy van anderen in het gedrang brengen, extreem onpraktisch zijn of waarvoor toegang niet vereist wordt door de lokale wetgeving. Als u een verzoek voor toegang tot uw informatie wilt indienen, ga dan naar GDPR Support of neem contact met ons op via dataprotection@samsung.com.
      Als u vraagt om verwijdering van persoonsgegevens, erkent u dat u mogelijk niet in staat zult zijn toegang te verkrijgen tot of gebruik te maken van de diensten en dat restanten van uw persoonsgegevens mogelijk nog enige tijd achterblijven in de dossiers en archieven van Samsung, in overeenstemming met de toepasselijke wetgeving, maar Samsung zal die informatie niet gebruiken voor commerciële doeleinden. U begrijpt dat Samsung, ongeacht uw verzoek tot verwijdering, zich het recht voorbehoudt uw persoonsgegevens of een relevant onderdeel ervan te bewaren, in lijn met onderstaande paragraaf over Gegevensbehoud en de toepasselijke wetgeving. Samsung kan uw toegang tot de website opschorten, beperken of beëindigen in verband met inbreuk op de Gebruiksvoorwaarden van Samsung, wanneer dat nodig is om de rechten, eigendommen of veiligheid van Samsung of een van onze respectieve verbonden ondernemingen, zakelijke partners, werknemers of klanten te beschermen.

      Hoe we persoonsgegevens beschermen

      We hanteren administratieve, technische en fysieke maatregelen die zijn ontworpen om de persoonsgegevens die we verkrijgen door middel van de Diensten te beschermen tegen onbedoelde, onwettige of ongeautoriseerde vernietiging, manipulatie, verlies, wijziging, toegang, bekendmaking of gebruik. Samsung past ook redelijke procedures toe om ervoor te zorgen dat dergelijke gegevens betrouwbaar zijn voor het beoogde gebruik en correct, volledig en actueel zijn.

      Wijzigingen in onze Privacybeleid

      Dit privacybeleid kan zo nu en dan worden bijgewerkt in overeenstemming met onze praktijken met betrekking tot persoonsgegevens in het kader van de Diensten, of wijzigingen in het toepasselijk recht. We zullen een kennisgeving publiceren op onze website en/of op uw apparaat om u in kennis te stellen van aanzienlijke wijzigingen in onze Privacybeleid en bovenaan de kennisgeving aangeven wanneer deze voor het laatst is bijgewerkt.

      Contact met ons opnemen

      Als u specifieke vragen hebt, kunt u contact met ons (verwerkingsverantwoordelijke voor de EU) opnemen via:
      Europese functionaris voor gegevensbescherming
      Samsung Electronics (UK) Limited
      Samsung House, 1000 Hillswood Drive, Chertsey, Surrey KT16 0PS
      U kunt ook contact met ons opnemen via dataprotection@samsung.com. Als u gebruik wilt maken van uw recht op toegang, rectificatie, verwijdering, bezwaar, beperking van de verwerking of overdraagbaarheid, gaat u naar GDPR Support.

      U kunt een klacht indienen bij de relevante toezichthoudende instantie indien u vindt dat onze verwerking van uw persoonsgegevens inbreuk maakt op de toepasselijk wetgeving. Contactgegevens voor toezichthoudende instanties voor de EU vindt u hier (http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080).

      Privacybeleid van op interesse gebaseerde reclamedienst

      Ingangsdatum: 25 mei 2018

      Samsung Electronics UK Limited (“Samsung” of “Wij”) en haar verbonden ondernemingen respecteren uw zorgen omtrent privacy. Dit privacybeleid is van toepassing op de persoonlijke informatie die wij verzamelen via de op interesse gebaseerde reclamediensten (de “IBA dienst”).

      Dit privacybeleid biedt aanvullende, specifieke informatie over de wijze waarop uw persoonsgegevens worden gebruikt in verband met de IBA dienst en dient te worden gelezen in samenhang met het Algemeen privacybeleid van Samsung, dat ook van toepassing is op uw ontvangst van de IBA dienst en dat u kunt vinden op https://account.samsung.com/membership/pp.

      In dit privacybeleid beschrijven we welke soorten gegevens worden gebruikt door middel van op interesse gebaseerde reclame, hoe we deze gegevens mogelijk gebruiken, hoe lang we de gegevens mogelijk bewaren en met wie we de gegevens mogelijk delen, evenals over welke opties u beschikt met betrekking tot ons gebruik van de gegevens en het uitoefenen van uw rechten. Daarnaast beschrijven we welke maatregelen we nemen om de gegevens te beschermen en vertellen we u hoe u contact met ons kunt opnemen over onze privacypraktijken. Samsung is verwerkingsverantwoordelijke voor de persoonsgegevens.

      Wat is de IBA dienst?

      De IBA dienst is ontworpen om nuttige, interactieve en op interesse gebaseerde reclame te kunnen ontvangen en bekijken over producten en diensten die door Samsung en derden worden aangeboden op uw Samsung Smart TV of op verschillende platforms of apparaten van Samsung en externe partijen. Dit geldt ook voor lineaire reclames, op het web, mobiele apparaten en tablets.

      Om de reclame op uw apparaten relevanter voor u te maken, vertrouwt de IBA dienst op uw tv-kijkgeschiedenis (waaronder informatie over de netwerken, kanalen, bezochte websites en programma’s die u op uw Samsung Smart TV hebt bekeken en de hoeveelheid tijd die u hebt besteed aan het bekijken hiervan), gebruiksinformatie van de Samsung Smart TV en andere statistische gegevens die zijn verkregen van vertrouwde externe gegevensbronnen. Wij kunnen automatische inhoudherkenning (ACR) en andere technieken gebruiken om uw tv-kijkgeschiedenis vast te leggen.

      Op basis van de bovenstaande informatie creëren we groepen Samsung Smart TV’s die dezelfde interesses delen en gebruiken we deze groepen voor de IBA-dienst. De bovenstaande informatie wordt gebruikt om de groepen te bepalen waaraan uw Samsung Smart TV is toegewezen en dus welke reclame uw apparaten ontvangen.

      PSID

      Informatie over het gebruik van uw apparaat die wordt verzameld om de IBA dienst te kunnen leveren, wordt gekoppeld aan een gerandomiseerde, niet-permanente en opnieuw instelbare apparaat-id, de zogenaamde PSID. U kunt uw PSID resetten zoals wordt gespecificeerd in de paragraaf Uw opties van dit privacybeleid.

      Gegevens die we verkrijgen

      We verkrijgen op verschillende manieren gegevens over uw apparaten door middel van de IBA dienst. We verkrijgen onder andere de volgende typen gegevens:

      • Apparaatgegevens. We verzamelen gegevens zoals uw apparaatmodel, versie van het besturingssysteem, apparaatconfiguraties en instellingen, IP-adres, apparaat-id’s en andere identificatiegegevens.
      • Gegevens over apparaatgebruik en logboek. We verzamelen gegevens over hoe, wanneer en hoe lang u gebruikmaakt van uw apparaten, met inbegrip van uw interacties met de IBA dienst en apps en diensten van Samsung en van derden op de apparaten (zoals een lijst van de apps op uw apparaten).
      • Kijkgegevens. Wij verzamelen uw tv-kijkgeschiedenis. Uw tv-kijkgeschiedenis omvat informatie over de netwerken, kanalen, bezochte websites en programma’s die u op uw Samsung Smart TV hebt bekeken en de hoeveelheid tijd die u hebt besteed aan het bekijken hiervan. We kunnen ACR en andere technieken gebruiken om deze tv-kijkgeschiedenis vast te leggen.
      • Statistische gegevens. We kunnen statistische gegevens over u of uw apparaten gebruiken, zoals globale locatie, geschatte leeftijdsgroep. We verkrijgen deze statistische gegevens via commercieel beschikbare bronnen (die door de wet zijn toegestaan) zoals onze externe dienstproviders. We werken uitsluitend samen met externe dienstproviders die waarborgen dat deze gegevens zijn verkregen in overeenstemming met de toepasselijke wetgeving en aan ons kunnen worden verstrekt voor gebruik en bekendmaking.

      De servers van Samsung ontvangen gegevens wanneer u communiceert met de IBA dienst, zoals gegevens over uw interacties met de IBA dienst, uw geolocalisatie en de apparaten die u gebruikt om de IBA dienst te ontvangen.

      Hoe we de verkregen gegevens gebruiken

      We gebruiken de gegevens die we verkrijgen door middel van de IBA diensten om:

      • uw ervaring met de IBA dienst te verbeteren en aan te passen;
      • met uw afzonderlijke toestemming, met u via e-mail en pushkennisgeving te communiceren over producten en diensten die door Samsung en derden worden aangeboden en zijn afgestemd op uw interesses;
      • te reageren op uw verzoeken en vragen;
      • onze bedrijfsactiviteiten uit te voeren, te evalueren en te verbeteren (onder andere door nieuwe producten te ontwikkelen en onze producten en de diensten uit te breiden en te verbeteren; onze communicatie te beheren; onze producten, ons klantenbestand en de diensten te analyseren; marktonderzoek uit te voeren; gegevensanalyse te verrichten; de administratie bij te houden en boekhoudkundige controles en andere interne functies uit te voeren);
      • bescherming te bieden tegen fraude en andere criminele activiteiten, claims en andere risico’s en deze te herkennen en te voorkomen; en
      • toepasselijke wettelijke vereisten, relevante industrienormen en onze beleidsregels, met inbegrip van dit privacybeleid en het privacybeleid voor het Samsung-account na te leven en de handhaving daarvan af te dwingen.
      • u de IBA diensten te leveren;

      Samsung verwerkt persoonsgegevens voor de hierboven beschreven doeleinden. De wettelijke basis van Samsung om persoonsgegevens te verwerken, omvat verwerking die: noodzakelijk is voor de uitvoering van het contract tussen u en Samsung (bijvoorbeeld om u de IBA dienst te verlenen en om u te identificeren en te verifiëren); noodzakelijk is om te voldoen aan de wettelijke vereisten (bijvoorbeeld om te voldoen aan toepasselijke boekhoudregels en om verplichte openbaarmakingen te doen om de wet af te dwingen); noodzakelijk is voor de legitieme belangen van Samsung (bijvoorbeeld om onze relatie met u te onderhouden en om de IBA dienst te verbeteren); en op basis van toestemming door onze klanten (bijvoorbeeld om met u te communiceren over producten en diensten en om u marketinginformatie te verstrekken), wat vervolgens op elk gewenst moment kan worden ingetrokken door naar het menu Instellingen te gaan, zoals gespecificeerd in de paragraaf Uw opties van dit privacybeleid, zonder afbreuk te doen aan de rechtmatigheid van verwerking op basis van toestemming voorafgaand aan deze intrekking.

      U bent verplicht, als voorwaarde om de IBA dienst te ontvangen, om ons persoonsgegevens te verstrekken ter verwerking, zoals hierboven beschreven. Indien u geen persoonsgegevens aan ons verstrekt, zullen we niet in staat zijn alle voorzieningen aan u te leveren die beschikbaar zijn door middel van de IBA dienst.

      Delen van gegevens

      We maken via de IBA dienst geen persoonsgegevens van u bekend, behalve voor zover beschreven in dit privacybeleid en het Algemeen privacybeleid van Samsung. Een beperkt aantal leden van het reclamedienstteam in Samsung heeft toegang tot persoonsgegevens in verband met hun taakverantwoordelijkheden of contractuele verplichtingen en kan deze gegevens anderszins verwerken. We kunnen uw persoonsgegevens delen met onze dochterondernemingen en verbonden ondernemingen, en met dienstproviders die diensten voor ons uitvoeren. We geven geen toestemming aan onze dienstproviders om de gegevens te gebruiken of bekend te maken, uitgezonderd voor zover dit noodzakelijk is om de diensten namens ons uit te voeren of te voldoen aan wettelijke vereisten.

      Samsung, onze dochterondernemingen en verbonden ondernemingen, en onze externe dienstproviders kunnen ook informatie over u bekendmaken (1) als we daartoe verplicht zijn op grond van de wet of een wettelijk proces (bijvoorbeeld een gerechtelijk bevel of dagvaarding); (2) in reactie op een verzoek van een overheidsinstelling, zoals een wetshandhavende instantie; (3) om onze wettelijke rechten te laten gelden, uit te oefenen of te verdedigen; (4) wanneer we geloven dat bekendmaking noodzakelijk of passend is om fysieke of andere schade te voorkomen; (5) in verband met een onderzoek naar vermoede of daadwerkelijke illegale activiteiten; (6) in het geval dat we ons bedrijf of onze bedrijfsmiddelen geheel of gedeeltelijk verkopen of overdragen (onder andere in het geval van een fusie, overname, reorganisatie, opheffing of liquidatie); of (7) anderszins met uw toestemming.

      INTERNATIONALE OVERDRACHT VAN GEGEVENS

      Uw gebruik van de diensten houdt in dat uw persoonsgegevens worden overgedragen, opgeslagen en verwerkt buiten uw land van vestiging, namelijk Korea, conform dit privacybeleid. Daarnaast kan uw gebruik van de diensten ook de overdracht, opslag en verwerking van uw persoonsgegevens naar andere landen inhouden; dergelijke landen omvatten, zonder beperking, landen in de Europese Economische Ruimte, de Verenigde Staten van Amerika en Canada. Houd er rekening mee dat de wetten inzake gegevensbescherming en andere wetten van landen buiten de Europese Economische Ruimte waarnaar uw informatie wordt overgedragen, mogelijk niet zo uitgebreid zijn als de wetten in uw eigen land. Wij zullen passende maatregelen nemen, in overeenstemming met de toepasselijke wetgeving, om ervoor te zorgen dat uw persoonsgegevens beschermd blijven. Dergelijke maatregelen omvatten het gebruik van standaard contractbepalingen om de overdracht van gegevens buiten de EER te beschermen. Neem voor meer informatie of om een kopie van de geldende contractuele overeenkomsten te verkrijgen contact met ons op via dataprotection@samsung.com.

      GEGEVENSBEHOUD

      Wij bewaren uw persoonsgegevens niet langer dan nodig is voor het doel waarvoor deze zijn verzameld. Dit houdt in dat gegevens worden vernietigd of verwijderd van onze systemen als deze niet meer nodig zijn.
      Wij nemen passende maatregelen om ervoor te zorgen dat de informatie die wij over u verwerken en bewaren, gebaseerd is op de volgende logica:
      1. ten minste de duur waarvoor de gegevens zijn gebruikt om u een dienst te leveren;
      2. zoals verplicht volgens de wetgeving, een contract of onze wettelijke verplichtingen; of
      3. alleen zolang als nodig is voor de doeleinden waarvoor de gegevens zijn verzameld, worden verwerkt, of langer indien dit vereist is onder enig ander contract, toepasselijke wet of voor statistische doeleinden. Dit is altijd onderworpen aan passende waarborgen.

      Uw opties

      U kunt uw PSID op elk gewenst moment resetten door naar het menu Instellingen te gaan. Zodra u uw PSID hebt gereset, worden uw tv-kijkgeschiedenis en gebruiksinformatie van de Smart TV losgekoppeld van deze vorige PSID. Denk eraan dat als u uw PSID reset, de kwaliteit van de IBA dienst kan worden beïnvloed.

      Daarnaast kunt u de IBA dienst op elk gewenst moment uitschakelen door naar het menu Instellingen op uw Samsung Smart TV te gaan.

      Uw privacykeuze voor de IBA-dienst is niet van invloed op het ontvangen of aangeboden krijgen van andere soorten reclame en marketing die niet specifiek gebaseerd zijn op uw tv-kijkgeschiedenis of de gebruiksinformatie van uw Samsung Smart TV. Die andere soorten reclame en marketing zullen op andere informatie zijn gebaseerd, zoals globale locatie en andere geschatte of afgeleide gegevens. Ze kunnen minder relevant zijn, omdat ze niet op uw interesses zijn gebaseerd.

      Hoe we persoonsgegevens beschermen

      We hanteren administratieve, technische en fysieke maatregelen die zijn ontworpen om de persoonsgegevens die we verkrijgen door middel van de IBA dienst te beschermen tegen onbedoelde, onwettige of ongeautoriseerde vernietiging, manipulatie, verlies, wijziging, toegang, bekendmaking of gebruik. Samsung past ook redelijke procedures toe om ervoor te zorgen dat dergelijke gegevens betrouwbaar zijn voor het beoogde gebruik en correct, volledig en actueel zijn.

      Wijzigingen in onze Privacybeleid

      Dit privacybeleid kan zo nu en dan worden bijgewerkt in overeenstemming met onze praktijken met betrekking tot persoonsgegevens in het kader van de IBA dienst, of wijzigingen in het toepasselijk recht. We zullen een kennisgeving publiceren op onze website en/of op uw apparaat om u in kennis te stellen van aanzienlijke wijzigingen in onze Privacybeleid en bovenaan de kennisgeving aangeven wanneer deze voor het laatst is bijgewerkt.

      Contact met ons opnemen

      Als u specifieke vragen hebt, kunt u contact met ons (verwerkingsverantwoordelijke voor de EU) opnemen via:
      Europese functionaris voor gegevensbescherming
      Samsung Electronics (UK) Limited
      Samsung House, 1000 Hillswood Drive, Chertsey, Surrey KT16 0PS
      U kunt ook contact met ons opnemen via dataprotection@samsung.com. Als u gebruik wilt maken van uw recht op toegang, rectificatie, verwijdering, bezwaar, beperking van de verwerking of portabiliteit, gaat u naar GDPR Support.

      U kunt een klacht indienen bij de relevante toezichthoudende instantie indien u vindt dat onze verwerking van uw persoonsgegevens inbreuk maakt op de toepasselijk wetgeving. Contactgegevens voor toezichthoudende instanties voor de EU vindt u hier (http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080).

      ALGEMEEN PRIVACYBELEID VAN SAMSUNG – AANVULLING VOOR MOBIELE APPARATEN

      De mobiele apparaten, wearables en andere gerelateerde technologieën van Samsung (gezamenlijk onze “Mobiele Apparaten” genoemd) bevatten allerlei uiteenlopende functies, waaronder functies die gebruikers de mogelijkheid bieden hun conditie en welzijn te controleren en verbeteren, hun gebruikservaring te verbeteren, mobiele betalingen te verrichten en hun Mobiele Apparaten te bedienen met spraakopdrachten. Wanneer u onze mobiele apparaten gebruikt, verzamelen, gebruiken, delen en bewaren wij uw informatie op de manieren die worden beschreven in het privacybeleid van Samsung. In deze aanvulling vindt u extra informatie over de manier waarop wij die informatie gebruiken om de functies van onze mobiele apparaten te kunnen aanbieden.

      Standaardinformatie over uw mobiele apparaat

      Wanneer u uw mobiele apparaat activeert of functies erop gebruikt waarvoor een internetverbinding vereist is, wordt er informatie verzameld. Dit is onder andere informatie over uw Mobiele Apparaat, zoals het -adres, de versie van het besturingssysteem, land- en taalinstellingen, en IMEI’s en andere unieke apparaat-id’s. Verder omvat dit informatie over hoe, wanneer en hoe lang u uw Mobiele Apparaat gebruikt.
      Zoals beschreven in het privacybeleid, gebruiken wij standaardinformatie over uw Mobiele Apparaat voor bedienings-, onderhouds- en verbeteringsdoeleinden. Ook kunnen wij standaardinformatie over uw Mobiele Apparaat delen met zakenpartners zoals de aanbieder van uw draadloze netwerk of met dienstproviders die namens ons diensten leveren.

      Externe partijen

      Wanneer u een functie gebruikt die door een externe partij wordt aangeboden, inclusief de aanbieder van uw draadloze netwerk, kan die aanbieder informatie verzamelen of ontvangen over uw Mobiele Apparaat (zoals het IP-adres en de apparaat-id), de gevraagde transactie (zoals uw verzoek om inhoud te kopen of huren) en uw gebruik van de toepassing of dienst. Samsung is niet verantwoordelijk voor de privacy- of beveiligingspraktijken van deze aanbieders. Wees voorzichtig en lees de privacybeleiden die van toepassing zijn op de externe websites en diensten die u gebruikt.

      Specifieke functies

      Houd er rekening mee dat een of meer van de beschreven functies in deze aanvulling mogelijk niet beschikbaar zijn, afhankelijk van uw modelversie, uw dienstprovider of waar u woont.

      Samsung Health

      De Samsung Health-toepassing, hiermee verbonden toepassingen en accessoires (gezamenlijk “Samsung Health” genoemd) is een alles-in-een methode om een gezonde levensstijl te stimuleren. Met Samsung Health, kunt u uw dagelijkse activiteiten bijhouden, begeleiding krijgen om uw dagelijkse fitnessdoelen en -mijlpalen te bereiken, en factoren zoals uw hartslag, SpO-gehalte en stressniveau beheren.
      Het doel van de gegevensverwerking voor Samsung Health is dat wij u de dienst of functie kunnen bieden waar u om vraagt, inclusief het maken van back-ups en het synchroniseren van diensten voor gebruikers met een Samsung-account, het aanbieden van analyses en statistieken om uw welzijn te bevorderen, en het verbeteren van Samsung Health zelf en het bijbehorende aanbod. Gegevens kunnen worden verzameld via sensoren in uw mobiele apparaat of wanneer u daadwerkelijk zelf gegevens invoert op het toepasselijke mobiele apparaat of gerelateerde toepassingen of accessoires.
      Verdere informatie over de manier waarop wij uw informatie verwerken, is te lezen in dit privacybeleid voor Samsung Health, die te vinden is in het menu Instellingen van de Samsung Health-toepassing.

      Verbeterde voorzieningen

      Verbeterde voorzieningen’ is een set met gebundelde diensten die het mogelijk maken om makkelijker en beter zaken te delen en in contact te komen met uw vrienden. Onder de huidige ‘Verbeterde voorzieningen’ kunt u bijvoorbeeld uw profiel delen en afbeeldingen van uw vrienden bekijken via ‘Profiel delen’; en met behulp van ‘Eenvoudig delen’ kunt u makkelijk bestanden delen met uw vrienden.
      Om ‘Verbeterde voorzieningen’ te kunnen aanbieden, hebben wij uw telefoonnummer, informatie uit uw lijst met contactpersonen en toegang tot berichten nodig.
      U kunt ervoor kiezen ‘Verbeterde voorzieningen’ helemaal uit te schakelen of alleen bepaalde diensten te gebruiken. Dit doet u door op uw mobiele apparaat naar uw profiel te gaan onder Contactpersonen. Verder kunt u, afhankelijk van uw gekozen gebruik van ‘Verbeterde voorzieningen’, ook bepalen welke gegevenscategorieën u wilt delen en met welke vrienden u ze wilt delen.

      Interactieve en aangepaste diensten

      Mobiele apparaten van Samsung zijn zodanig ontworpen dat ze veelzijdig en makkelijk zijn, en uw behoeften en voorkeuren op slimme wijze kunnen voorspellen. Het is eigenlijk net zo als met vriendschappen: hoe meer u weet over de interesses, gewoonten en voorkeuren van een vriend, hoe beter u kunt inspelen op de persoonlijkheid van die vriend. Stel bijvoorbeeld dat u weet dat uw vriend niet van chocolade houdt, maar dat u toch een chocoladetaart maakt als hij komt eten: dat getuigt niet van een goede vriendschap. Dat geldt ook voor ons en wat wij weten over de behoeften en voorkeuren van onze individuele gebruikers. Zo kunnen wij betere en waarschijnlijk meer persoonlijke, interessante en nuttige diensten en voorzieningen aanbieden.
      Als u op onze mobiele apparaten interactieve en aangepaste diensten inschakelt, is een eenvoudig voordeel hiervan dat u niet telkens opnieuw dezelfde gegevens hoeft in te voeren. In plaats daarvan kunnen wij beter gebruikmaken van eerdere situaties en anticiperen wat u wilt invoeren, zonder dat we het elke keer aan u hoeven te vragen. Een complexer voordeel is de mogelijkheid om aanbevelingen, diensten of inhoud aan te bieden op basis van uw eerdere gebruiksinformatie. Als wij bijvoorbeeld uit uw gebruiksinformatie voor toepassingen opmaken dat u erg geïnteresseerd bent in sport, is de kans groot dat informatie, aanbiedingen of tips op het gebied van sport relevant voor u zijn en uw ervaring met onze mobiele apparaten nog beter zullen maken. Wij baseren deze ‘interactieve en aangepaste diensten’ op:

      • Informatie over websites of zoekopdrachten in uw browser-apps;
      • Informatie over toepassingen die u hebt gebruikt via uw mobiele apparaat;
      • Ander gebruik van mobiele apparaten en apparaatinformatie, inclusief maar niet beperkt tot: informatie waarmee uw hardware- of softwareconfiguratie wordt geïdentificeerd, browserinformatie en de pagina(‘s) die u opvraagt;
      • Informatie over locaties en nuttige plaatsen;
      • Lijsten met contactpersonen; en
      • Spraakopdrachten en gebruiksinformatie met betrekking tot spraakherkenningsfuncties;

      Raadpleeg de privacymenu’s van uw Samsung-accountprofiel of -toepassing voor de beschikbare keuzemogelijkheden als u geen interactieve en aangepaste diensten wilt ontvangen op uw mobiele apparaat, of als u de persoonlijke instellingen voor een bepaalde dienst of voorziening wilt wijzigen. Als u interactieve en aangepaste diensten volledig uitschakelt, zijn de informatie en inhoud die u aangeboden krijgt op uw mobiele apparaat, mogelijk niet heel relevant voor u. Voor de doeleinden die in dit privacybeleid worden beschreven, kan Samsung nog steeds informatie verzamelen over uw gebruik van mobiele apparaten.

      Samsung Pay

      Samsung Pay is een gemakkelijke en veilige manier om met een betaalpas of creditcard aankopen te doen op een compatibel mobiel apparaat. Als u Samsung Pay wilt gebruiken en het registratieproces voor een pas wilt starten, worden er vanaf uw mobiele apparaat identificatie- en verificatiegegevens verzonden naar uw bank. Hierbij gaat het onder andere om informatie over uw Samsung-account en gebruiksgegevens van Samsung Pay, apparaatinformatie, locatie-informatie (dat wil zeggen waar u zich bevindt wanneer u de pas registreert) als de locatie-instellingen zijn ingeschakeld, pasgegevens en een factuuradres. Al deze informatie wordt via onze servers verzonden naar de uitgever van uw pas. Deze informatie wordt door uw mobiele apparaat versleuteld en via Samsung-servers verzonden naar uw bank. Wij zullen de gegevens over uw pas of bank nooit raadplegen.
      Zodra u uw mobiele apparaat hebt geregistreerd, worden alle transactiegegevens veilig verzonden tussen uw mobiele apparaat en uw uitgever en bank. De recente transactiegeschiedenis is beschikbaar op uw mobiele apparaat. Deze geschiedenis is alleen bekend bij u, uw bank en de uitgever van uw pas. Wij verzamelen geen informatie over de transacties die u verricht of het apparaat dat u hiervoor gebruikt. We kunnen echter wel verzamelde informatie over uw pogingen om aankopen te doen met Samsung Pay samenvoegen en analyseren om zodoende inzicht te krijgen in de manier waarop mensen Samsung Pay gebruiken. Zo kunnen we de dienst verder verbeteren en nog gebruiksvriendelijker en nuttiger maken voor onze klanten.
      Verdere informatie over de manier waarop wij uw informatie verwerken, is te lezen in dit privacybeleid voor Samsung Pay, die te vinden is in het menu Instellingen van de Samsung Pay-toepassing.

      Spraakdiensten

      U kunt uw mobiele apparaat en veel van de bijbehorende functies bedienen met spraakopdrachten.
      Afhankelijk van uw model en regio kunt u uw mobiele apparaat opdracht geven om bepaalde functies te activeren, zoals het afspelen van muziek in afpeellijsten of het uitvoeren van zoekopdrachten op internet met S Voice. Verder kunt u Bixby gebruiken om alles wat u eerder deed met uw aanraakinterface, nu te doen met spraakopdrachten. Ook kunt u ondersteuning voor vertalingen krijgen met S Translator, memo’s dicteren met Spraakmemo of functies activeren terwijl u aan het rijden bent door tegen uw mobiele apparaat te praten nadat u de Automodus hebt ingeschakeld.
      Voor de spraakdiensten worden mogelijk bepaalde spraakopdrachten (plus informatie over uw apparaat en het gebruik ervan, inclusief apparaat-id’s) verzonden naar een externe dienstprovider die uw spraakopdrachten converteert naar tekst. Verder kan Samsung spraakopdrachten en bijbehorende teksten verzamelen en kan uw apparaat deze opslaan om u de spraakdiensten te kunnen bieden en de functies ervan te evalueren en verbeteren.

      Samsung-reclame-id

      Om de inhoud en advertenties op uw mobiele apparaat relevant voor u te kunnen maken, verzamelen wij informatie over uw gebruik van uw mobiele apparaat en mobiele diensten.
      Informatie over uw gebruik van uw mobiele apparaat die wordt verzameld om marketing op maat te kunnen leveren, wordt gekoppeld aan een gerandomiseerde, niet-permanente en opnieuw instelbare apparaat-id, de zogenaamde Samsung-reclame-id. U kunt uw Samsung-reclame-id op elk moment opnieuw instellen via het menu Instellingen op uw mobiele apparaat. Uw vorige gebruiksinformatie met betrekking tot marketing op maat wordt dan losgekoppeld en gescheiden van datgene dat is verzameld onder de nieuwe Samsung-reclame-id. Als u echter uw Samsung-reclame-id opnieuw instelt, sluit de marketing op maat mogelijk minder goed aan op uw persoonlijke interesses. U kunt er ook op elk moment voor kiezen om geen aangepaste marketing te ontvangen via het menu Instellingen in de toepasselijke Samsung-diensttoepassing op uw mobiele apparaat.
      Als u ervoor kiest om geen aangepaste marketing te ontvangen, heeft dit echter geen invloed op het al dan niet ontvangen van andere soorten advertenties en marketing op uw mobiele apparaten. Het enige verschil is dat die advertenties niet zijn gebaseerd op de gebruiksinformatie van uw mobiele apparaat.
      Wees u er ook van bewust dat Samsung nog steeds informatie over uw gebruik van uw mobiele apparaat kan verzamelen voor andere doeleinden zoals beschreven in de hoofdtekst van dit privacybeleid.

      Samsung-printers en -kopieerapparaten behoren nu tot de productfamilie van HP. Raadpleeg de privacyverklaring van HP op de volgende link: www.hp.com/go/privacy.

    Contact met ons opnemen

    Samsung Electronics (UK) Limited
    Samsung House, 1000 Hillswood Drive, Chertsey, Surrey KT16 0PS
    E-mail: Neem contact met ons op via dataprotection@samsung.com of GDPR Support page.

  • SAP Privacy Statement

    Protecting the individual’s privacy on the Internet is crucial to the future of Internet-based business and the move toward a true Internet economy. We have created this Privacy Statement to demonstrate our firm commitment to the individual`s right to data protection and privacy. This Privacy Statement outlines how we handle information that can be used to directly or indirectly identify an individual (“Personal Data”).

    A. General Information

    When does this Privacy Statement apply? This Privacy Statement applies to Personal Data that you provide to SAP or which is derived from the Personal Data as outlined below. The use of and any information that is gathered by cookies or other web tracking technologies is subject to the disclosures and options provided by the TrustArc Consent Manager which can be found on the relevant website.

    Data Controller. The data controller of www.sap.com is SAP America, Inc., 3999 West Chester Pike, Newtown Square, PA 19073, USA (“SAP”). Where a registration form is presented on this website, the data controller may vary depending on the actual offering or the purpose of the data collection but it is in any case displayed on the individual registration form’s privacy statement. The SAP Group’s data protection officer is Mathias Cellarius (privacy@sap.com).

    What does SAP do with my Personal Data? SAP will process the Personal Data provided hereunder only as set out in this Privacy Statement. Further information can be found in Sections B. and C. below. Where the processing of your Personal Data is based on a statutory permission, you can find information on which Personal Data SAP is processing or using for which purposes in Section B below. Where consent for the processing of your Personal Data is required you can find further information in Section C. below. This information matches with the respective consent statements pertaining to individual processing operations in the Consent Resource Center.

    Duration of processing of Personal Data. Where SAP is processing and using your Personal Data as permitted by law (see B. below) or under your consent (see C. below), SAP will store your Personal Data (i) only for as long as is required to fulfil the purposes set out below or (ii) until you object to SAP’s use of your Personal Data (where SAP has a legitimate interest in using your Personal Data), or (iii) until you withdraw your consent (where you consented to SAP using your Personal Data). However, where SAP is required by mandatory law to retain your Personal Data longer or where your Personal Data is required for SAP to assert or defend against legal claims, SAP will retain your Personal Data until the end of the relevant retention period or until the claims in question have been settled.

    Why am I required to provide Personal Data? As a general principle, your granting of any consent and your provision of any Personal Data hereunder is entirely voluntary; there are generally no detrimental effects on you if you choose not to consent or to provide Personal Data. However, there are circumstances in which SAP cannot take action without certain Personal Data, for example because this Personal Data is required to process your orders or provide you with access to a web offering or newsletter. In these cases, it will unfortunately not be possible for SAP to provide you with what you request without the relevant Personal Data.

    Where will my Personal Data be processed? As part of a global group of companies, SAP has affiliates and third-party service providers within as well as outside of the European Economic Area (the “EEA”). As a consequence, whenever SAP is using or otherwise processing your Personal Data for the purposes set out in this Privacy Statement, SAP may transfer your Personal Data to countries outside of the EEA including to such countries in which a statutory level of data protection applies that is not comparable to the level of data protection within the EEA. Whenever such transfer occurs, it is based on the Standard Contractual Clauses (according to EU Commission Decision 87/2010/EC or any future replacement) in order to contractually provide that your Personal Data is subject to a level of data protection that applies within the EEA. You may obtain a redacted copy (from which commercial information and information that is not relevant has been removed) of such Standard Contractual Clauses by sending a request to privacy@sap.com.

    Data subjects’ rights. You can request from SAP at any time information about which Personal Data SAP processes about you and the correction or deletion of such Personal Data. Please note, however, that SAP can delete your Personal Data only if there is no statutory obligation or prevailing right of SAP to retain it. Kindly note that if you request that SAP delete your Personal Data, you will not be able to continue to use any SAP service that requires SAP’s use of your Personal Data.

    If SAP uses your Personal Data based on your consent or to perform a contract with you, you may further request from SAP a copy of the Personal Data that you have provided to SAP. In this case, please contact the email address below and specify the information or processing activities to which your request relates, the format in which you would like this information, and whether the Personal Data is to be sent to you or another recipient. SAP will carefully consider your request and discuss with you how it can best fulfill it.

    Furthermore, you can request from SAP that SAP restricts your Personal Data from any further processing in any of the following events: (i) you state that the Personal Data SAP has about you is incorrect, (but only for as long as SAP requires to check the accuracy of the relevant Personal Data), (ii) there is no legal basis for SAP processing your Personal Data and you demand that SAP restricts your Personal Data from further processing, (iii) SAP no longer requires your Personal Data but you claim that you require SAP to retain such data in order to claim or exercise legal rights or to defend against third party claims or (iv) in case you object to the processing of your Personal Data by SAP (based on SAP’s legitimate interest as further set out in B. below) for as long as it is required to review as to whether SAP has a prevailing interest or legal obligation in processing your Personal Data.

    Please direct any such request to webmaster@sap.com.

    Right to lodge a complaint. If you believe that SAP is not processing your Personal Data in accordance with the requirements set out herein or applicable EEA data protection laws, you can at any time lodge a complaint with the data protection authority of the EEA country in which you live or with the data protection authority of the country or state in which SAP has its registered seat.

    Use of this website by children. This website is not intended for anyone under the age of 16 years. If you are younger than 16, you may not register with or use this website.

    Links to other websites. This website may contain links to foreign (meaning non-SAP Group companies) websites. SAP is not responsible for the privacy practices or the content of websites outside the SAP Group of companies. Therefore, we recommend that you carefully read the privacy statements of such foreign sites.

    B.  Where SAP uses My Personal Data based on the Law

    In the following cases, SAP is permitted to process your Personal Data under the applicable data protection law.

    Providing the requested goods or services. If you order goods or services from SAP, SAP will use the Personal Data that you enter into the order or registration form (usually (a subset of) your name, (email) address, telephone number, company name and address, your job title and role and, if payment is to be made to SAP, credit card number or bank details) only to process your order or to provide the requested goods or service. This may include taking the necessary steps prior to entering into the contract, responding to your related inquiries, and providing you with shipping and billing information and to process or provide customer feedback and support. This may also include conversation data that you may trigger via the chat functionalities on SAP.com or other local SAP web presences, contact forms, emails, or telephone. In this Privacy Statement, “goods and services” includes (access to) SAP’s web services, offerings, contests, sweepstakes, other content, non-marketing related newsletters, whitepapers, tutorials, trainings and events.

    If you participate in tutorials or trainings provided by SAP, SAP may also track your learning progress in order to make this information available to you. Furthermore, we communicate on a regular basis by email with users who subscribe to our services, and we may also communicate by phone to resolve customer complaints or investigate suspicious transactions. We may use your email address to confirm your opening of an account, to send you notice of payments, to send you information about changes to our products and services, and to send notices and other disclosures as required by law. Generally, users cannot opt out of these communications, which are not marketing-related but merely required for the relevant business relationship. With regard to marketing-related types of communication (i.e. emails and phone calls), SAP will (i) where legally required only provide you with such information after you have opted in and (ii) provide you the opportunity to opt out if you do not want to receive further marketing-related types of communication from us. You can opt out of these at any time at https://www.sap.com/unsubscribe.

    Ensuring compliance. SAP and its products, technologies, and services are subject to the export laws of various countries including, without limitation, those of the European Union and its member states, and of the United States of America. You acknowledge that, pursuant to the applicable export laws, trade sanctions, and embargoes issued by these countries, SAP is required to take measures to prevent entities, organizations, and parties listed on government-issued sanctioned-party lists from accessing certain products, technologies, and services through SAP’s websites or other delivery channels controlled by SAP. This may include (i) automated checks of any user registration data as set out herein and other information a user provides about his or her identity against applicable sanctioned-party lists; (ii) regular repetition of such checks whenever a sanctioned-party list is updated or when a user updates his or her information; (iii) blocking of access to SAP’s services and systems in case of a potential match; and (iv) contacting a user to confirm his or her identity in case of a potential match.

    Furthermore, you acknowledge that any information required to track your choices regarding the processing or use of your Personal Data or receipt of marketing materials (that is to say, depending on the country in which the relevant SAP Group company operates, whether you have expressly consented to or opted out of receiving marketing materials) may be stored and exchanged between members of the SAP Group as required to ensure compliance.

    SAP’s legitimate interest. Each of the use cases below constitutes a legitimate interest of SAP to process or use your Personal Data. If you do not agree with this approach, you may object against SAP’s processing or use of your Personal Data as set out below.

    Questionnaires and surveys. SAP may invite you to participate in questionnaires and surveys. These questionnaires and surveys will be generally designed in a way that they can be answered without any Personal Data. If you nonetheless enter Personal Data in a questionnaire or survey, SAP may use such Personal Data to improve its products and services.

    Creation of anonymized data sets. SAP may anonymize Personal Data provided under this Privacy Statement to create anonymized data sets, which will then be used to improve its and its affiliates’ products and services.

    Recording of calls and chats for quality improvement purposes. In case of telephone calls or chat sessions, SAP may record such calls (after informing you accordingly during that call and before the recording starts) or chat sessions in order to improve the quality of SAP’s services.

    In order to keep you up-to-date/request feedback. Within an existing business relationship between you and SAP, SAP may inform you, where permitted in accordance with local laws, about its products or services (including webinars, seminars or events) which are similar or relate to such products and services you have already purchased or used from SAP. Furthermore, where you have attended a webinar, seminar or event of SAP or purchased products or services from SAP, SAP may contact you for feedback regarding the improvement of the relevant webinar, seminar, event, product or service.

    Right to object. You may object to SAP using Personal Data for the above purposes at any time by unsubscribing at https://www.sap.com/unsubscribe. If you do so, SAP will cease using your Personal Data for the above purposes (that is to say, under a legitimate interest set out above) and remove it from its systems unless SAP is permitted to use such Personal Data for another purpose set out in this Privacy Statement or SAP determines and demonstrates a compelling legitimate interest to continue processing your Personal Data.

    C. Where SAP uses My Personal Data based on My Consent

    In the following cases SAP will only use your Personal Data as further detailed below after you have granted your prior consent into the relevant processing operations. Therefore, each information about a processing operation with regard to Personal Data is linked to one consent statement in the Consent Resource Center. If you re-open this Privacy Statement after you have initially one or more consents granted you will not only see the information related to the consents you have granted but the full privacy statement.

    News about SAP’s Products and Services. Subject to a respective provision and your consent, SAP may use your name, email and postal address, telephone number, job title and basic information about your employer (name, address, and industry) as well as an interaction profile based on prior interactions with SAP (prior purchases, participation in webinars, seminars, or events or the use of (web) services  – further details on this topic can be found in the TrustArc Consent Manager displayed on the relevant SAP website) in order to keep you up to date on the latest product announcements, software updates, software upgrades, special offers, and other information about SAP’s software and services (including marketing-related newsletters) as well as events of SAP and in order to display relevant content on SAP’s websites. In connection with these marketing-related activities, SAP may provide a hashed user ID to third party operated social networks or other web offerings (such as Twitter, LinkedIn, Facebook, Instagram or Google) where this information is then matched against the social networks’ data or the web offerings’ own data bases in order to display to you more relevant information.

    Creating user profiles. SAP offers you the option to use its web offerings including forums, blogs, and networks (such as the SAP Community) linked to this website that require you to register and create a user profile. User profiles provide the option to display personal information about you to other users, including but not limited to your name, photo, social media accounts, postal or email address, or both, telephone number, personal interests, skills, and basic information about your company.

    These profiles may relate to a single web offering of SAP or, if created in the SAP Cloud Platform Identity Authentication Service, may also allow you to access other web offerings of SAP or of other entities of the SAP Group, or both (irrespective of any consent granted under the section “Forwarding your Personal Data to other SAP companies.” below). It is, however, always your choice which of these additional web offerings you use and your Personal Data is only forwarded to them once you initially access them. Kindly note that without your consent for SAP to create such user profiles SAP will not be in a position to offer such services to you where your consent is a statutory requirement that SAP can provide these services to you.

    Within any web offering, beyond the mere provision of access your profile is used to personalize interaction with other users (for example, by way of messaging or follow functionality) and by SAP to foster the quality of communication and collaboration through such offerings and for SAP to provide gamification elements (gamification is the process of taking something that already exists, such as a website, an enterprise application, or an online community, and integrating game mechanics into it to motivate participation, engagement, and loyalty). To the greatest extent supported by the relevant web offering, you can use the functionality of the relevant web offering to determine which information you want to share.

    Special categories of Personal Data. In connection with the registration for and provision of access to an event or seminar, SAP may ask for information about your health for the purpose of identifying and being considerate of individuals who have disabilities or special dietary requirements throughout the event. Any such use of information is based on the consent you grant hereunder.

    Kindly note that if you do not provide any such information about disabilities or special dietary requirements, SAP will not be able to take any respective precautions.

    Event profiling. If you register for an event, seminar, or webinar of SAP, SAP may share basic participant information (your name, company, and email address) with other participants of the same event, seminar, or webinar for the purpose of communication and the exchange of ideas.

    Forwarding your Personal Data to other SAP companies. SAP may transfer your Personal Data to other entities in the SAP Group. The current list of SAP Group entities can be found here. In such cases, these entities will then use the Personal Data for the same purposes and under the same conditions as outlined in this Section C. above.

    Revocation of a consent granted hereunder. You may at any time withdraw a consent granted hereunder by unsubscribing at https://www.sap.com/unsubscribe. In case of withdrawal, SAP will not process Personal Data subject to this consent any longer unless legally required to do so. In case SAP is required to retain your Personal Data for legal reasons your Personal Data will be restricted from further processing and only retained for the term required by law. However, any withdrawal has no effect on past processing of personal data by SAP up to the point in time of your withdrawal. Furthermore, if your use of an SAP offering requires your prior consent, SAP will not be (any longer) able to provide the relevant service (or services, if you revoke the consent for SAP to use your profile under the SAP Cloud Platform Identity Authentication Service for multiple SAP offerings), offer or event to you after your revocation.

    D.  U.S.-Specific Provisions

    Where SAP is subject to U.S. privacy requirements, the following also applies:

    Do Not Track. Your browser may allow you to set a “Do not track” preference. Unless otherwise stated, our sites do not honor “Do not track” requests. However, you may elect not to accept cookies by changing the designated settings on your web browser or, where available, by way of the TrustArc Consent Manager if the relevant website contains a link to it. Cookies are small text files placed on your computer while visiting certain sites on the Internet used to identify your computer. Please note that if you do not accept cookies, you may not be able to use certain functions and features of our site. This site does not allow third parties to gather information about you over time and across sites.

    Requirements to Protect Children’s Privacy. We do not intend for our websites or online services to be used by anyone under the age of 13. If you are a parent or guardian and believe we may have collected information about a child, please contact at privacy@sap.com.

    E. Russia-Specific Provisions

    The following applies to users who are resident in the Russian Federation:

    The services hereunder are not intended for use by citizens of the Russian Federation who are resident in Russia. If you are a Russian citizen residing in Russia, you are hereby notified that any Personal Data that you input into the services will be solely at your own risk and responsibility, that you expressly agree that SAP may gather your Personal Data and will process this data in the United States and in other countries, and that you will not hold SAP accountable for any potential non-observance of legislation of the Russian Federation.

     

    Revised and posted as of January 22, 2018

  • SMARTBEAR TERMS OF USE

    The SmartBear Hosted Services Terms of Use, which are applicable to any Hosted Services (as defined below), and the SmartBear On-Premise License Terms of Use, which are applicable to any On-Premise licenses (as defined below), together with the SmartBear Data Processing Addendum and the SmartBear Privacy Policy, is a legal agreement between You and SmartBear (as defined below) that governs your access to, and use of, our Hosted Services and/or Software, whether purchased directly from SmartBear or a Reseller (collectively, the “EULA” or the “Agreement”).

    BY ACCEPTING THIS AGREEMENT, EITHER BY (1) CLICKING A BOX INDICATING YOUR ACCEPTANCE OR (2) EXECUTING A QUOTE OR ORDER, OR MAKING A PAYMENT AGAINST AN INVOICE OTHER SIMILAR DOCUMENT, THAT REFERENCES THIS AGREEMENT, YOU AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU ARE ENTERING INTO THIS AGREEMENT ON BEHALF OF A COMPANY OR OTHER LEGAL ENTITY, YOU REPRESENT THAT YOU HAVE THE AUTHORITY TO BIND SUCH ENTITY AND ITS AFFILIATES TO THIS AGREEMENT.

    You may not access the Services if You are a competitor of SmartBear, except with Our prior written consent.

    SMARTBEAR HOSTED SERVICES TERMS OF USE

    1. Definitions.

    “Affiliate” means any entity which directly or indirectly controls, is controlled by, or is under common control with the subject entity; for purposes hereof, “control” means possession, directly or indirectly, of the power to direct or cause the direction of the activities, management or policies of an entity, whether through the ownership of voting securities, by contract or otherwise. Without limiting the foregoing, control will be presumed to exist when an entity (a) owns or directly or indirectly controls fifty percent (50%) or more of the outstanding voting stock or other ownership interest of the applicable entity or (b) possesses, directly or indirectly, the power to elect or appoint fifty percent (50%) or more of the members of the applicable entity’s governing body.

    “Data” means (i) content, materials, or other information You post or otherwise submit to the Services; (ii) metadata or other information that is collected by virtue of your interaction with the Services; (iii) information You provide to SmartBear in connection with support activities, including file or screen sharing; and (iv) license and/or product usage data transmitted to SmartBear, at the time of registration, use or update.

    “Documentation” means the published and generally available on-line user and administrator materials SmartBear delivers or makes available with the Services, including on-line help, as updated from time to time.

    “Hosted Services” means the services provided by SmartBear through which it makes the Software available to you as a service (SaaS) and hosted by SmartBear or its authorized third-party provider(s).

    “Maintenance and Support” mean those technical support and related services provided by SmartBear as set forth at https://support.smartbear.com/support/media/pdf/SB_PS_SLA.pdf.

    “Order” means SmartBear’s online purchase order, quote or other document for placing orders entered into between You and SmartBear, which identifies the Services (including the applicable SmartBear product(s), license type, license model (duration or usage-based), quantity/term) ordered by You and any required access information. Any Order that has been accepted by SmartBear shall be deemed incorporated herein by reference.

    “Reseller” means an authorized reseller or distributor who may sell the Services to You.

    “Software” means the SmartBear software provided as part of the Services pursuant to the applicable Order, and all Updates, in each case, access to which is provided by SmartBear.

    “Services” means the Hosted Services, together with Maintenance and Support, as provided to you during the Subscription Term based on the applicable Order.

    “Subscription” means Our grant of the right to access and use the Software through the Services for the period of time or usage-based limit set forth in the Order (the “Subscription Term”).

    “Update” means any subsequent release of the Software that SmartBear generally makes available to its SaaS customers as part of the Services; Updates do not include any Software that is marketed and priced separately by SmartBear as part of the Services.

    “User” means an individual who is authorized by You to use the Services in accordance with this Agreement and the applicable license type set forth herein, and who has been supplied usage credentials.  A User may include, but is not limited to, your employee, consultant, contractor and any agent with which You transact business.

    “You” or “Company” means the company or other legal entity for which you are accepting this Agreement and Affiliates of that company or entity.

    2. Who We Are.

    If You acquire access to, and use, the Services from in the United States or Canada, “We”, “Us”, “Our” or “SmartBear” means SmartBear Software Inc., a Delaware corporation with its principal place of business at 450 Artisan Way, Somerville, MA 02145.

    If You acquire access to, and use, the Services from outside of the United States or Canada, “We”, “Us”, “Our” or “SmartBear” means SmartBear (Ireland) Limited with its principal place of business at Mayoralty House, Flood Street, Galway, Ireland.

    3. Free Trial Version.

    If You register for a free Subscription trial, SmartBear will make the applicable Services available to You on a temporary basis (the “Trial Version”) free of charge until the end of the free trial period for which You registered or ordered the applicable Services. The Trial Version may be used only to review evaluate and demonstrate, for Your internal purposes; the Services and may have limited features. The Trial Version may cease operating after the applicable time period or number of uses based on an internal metering mechanism within the Trial Version itself. Regardless of any such metering, You must stop use of the Services at the end of such period or number of uses.

    You shall not (a) access or use the Trial Version of the Services under more than one username, (b) disclose the results of performance benchmarks obtained using the Trial Version to any third party without SmartBear’s prior written consent, (c) use the Trial Version for any commercial training or any application deployment or ultimate production purpose, or (d) use the Trial Version other than for the sole purpose of determining whether to purchase a license to access and use the Services.

    ANY DATA YOU ENTER INTO A TRIAL VERSION, AND ANY CONFIGURATIONS MADE TO THE TRIAL VERSION BY OR FOR YOU DURING ANY FREE TRIAL MAY BE PERMANENTLY LOST UNLESS YOU PURCHASE A LICENSE TO THE SAME SERVICES AS THOSE COVERED BY THE TRIAL OR EXPORT SUCH DATA, BEFORE THE END OF THE TRIAL PERIOD.

    NOTWITHSTANDING SECTION 16 (LIMITED WARRANTY; REMEDIES), DURING A FREE TRIAL, THE TRIAL VERSION AND ANY APPLICABLE SERVICES ARE PROVIDED “AS-IS” WITHOUT WARRANTY AND SMARTBEAR HAS NO RESPONSIBILITY FOR DATA RETENTION OR RESULTS FROM TRIALS.

     4. Services Grants.

    Subject to the terms of this Agreement and during the Subscription Term, SmartBear grants You a non-exclusive, non-transferable, non-sublicensable, limited license to access and use the Services, Documentation, and, if any, associated media and materials, and, if applicable, third party software programs supplied by SmartBear solely (i) to access and use the Services as listed in the applicable Order and (ii) for Your internal business purposes. You may access and use the Services as permitted by the license type purchased, which license type is (i) specified in the applicable Order and (ii) subject to the further terms below applicable to the relevant product.

    5. License Types.

    The license granted in Section 4 are subject to all terms and conditions set forth in this Agreement, including the following applicable terms (as specified in the applicable Order):

    Single (Named) Licensee: all Services licensed under these terms are single licensee, meaning it can be activated by only one User, with a unique username and password. Access to the Services may not be reassigned other than for the permanent transfer of the access license to the Services to another User if the eligible User is no longer employed by You.  An eligible User may access the Services with a unique username and password on one device at a time.

    Floating (Concurrent) License: all Software licensed under these terms can be activated for different users and machine combinations, but only one at a time and has a floating license key. The number of running instances of the Software or the number of individuals simultaneously having access to the Software may not exceed at any one time the number of floating seats licensed.  One computer or computing device shall be designated as the “license server”, where the license is installed, and all other devices will require access to the license server to run the Software.

    Usage-Based License:  access to the Services licensed under these terms is (i) licensed on a time-based or unit-based basis during the Subscription Term as set forth in an Order and (ii) restricted to a computer or computing device, which is applicable to the Alertsite and VirtServer products.

    Freeware or Free Version License:  all Services licensed under these terms are licensed to an individual User who is specifically named in the Services registration and may only be used on one computer or computing device at a time. These licenses are not eligible for Maintenance and Support other than the materials and discussion groups that may be accessed generally via the SmartBear online community at https://community.smartbear.com.

    6. License Restrictions.

    Your use of the Services is limited to the number of units, duration and such other usage restrictions as are set forth on an Order and herein. SmartBear and its licensors and suppliers reserve any and all rights, implied or otherwise, which are not expressly granted to You hereunder, and retain all rights, title and interest in and to the Services.  You shall not (i) modify, adapt, distribute, resell, rent, lease or loan the Services or create or prepare derivative works based upon the Services or any part thereof; (ii) use the Services in a service bureau, or application service provider environment, or in any commercial timeshare arrangement; (iii) attempt to decompile, disassemble or otherwise reverse engineer the Services or any part thereof; (iv) use the Services in contravention of any applicable laws or government regulations; (v) access the Services in order to build a competitive product or service; (vi) copy any features, functions or graphics of the Services; (vii) create duplicate accounts or make the Services available to anyone other than Users,  or (viii) use the Services to store or transmit infringing, libelous, or otherwise unlawful or tortious material, or to store or transmit material in violation of third-party privacy rights.  To the extent the Services are used to monitor web sites or devices You do not own, then You shall not publish or otherwise disclose data acquired about such web sites or devices unless express consent is given to You by the web site or device owner; further you shall not (1) interfere with or disrupt the integrity or performance of the Services or third-party data contained therein, or (2) attempt to gain unauthorized access to the Services or their related systems or networks.

    If the restriction set forth in clause (iii) above is prohibited by applicable law, You shall provide SmartBear with a detailed prior written notice of any such intention to reverse engineer the Services and shall provide SmartBear with a right of first refusal to perform such work at rates equal to those proposed by a recognized third-party software services provider for such work. You shall take all reasonable precautions to prevent unauthorized or improper use or disclosure of the Services.

    Export. You may not provide to SmartBear or any other person (whether through the Service or any other means), or export or re-export, or allow the export or re-export of the Service, any data or information, or any Software or anything related thereto or any direct product thereof (collectively “Controlled Subject Matter”), in violation of any restrictions, laws or regulations of the United States Department of Commerce, the United States Department of Treasury Office of Foreign Assets Control, or any other United States or foreign agency or authority. Without limiting the foregoing, You acknowledge and agree that the Controlled Subject Matter will not be used or transferred or otherwise exported or re-exported to countries as to which the United States maintains an embargo (collectively, “Embargoed Countries”), or to or by a national or resident thereof, or any person or entity on the U.S. Department of Treasury’s List of Specially Designated Nationals or the U.S. Department of Commerce’s Table of Denial Orders (collectively, “Designated Nationals”). The lists of Embargoed Countries and Designated Nationals are subject to change without notice. Use of the Service is representation and warranty that the user is not located in, under the control of, or a national or resident of an Embargoed Country or Designated National. The Controlled Subject Matter may use or include encryption technology that is subject to licensing requirements under the U.S. Export Administration Regulations.

    7. Term.  

    The Term of this Agreement shall be determined based on the License Model and License Type as described herein.

    The Subscription Term begins on the date that SmartBear grants You access to the Services and continues for twelve (12) months thereafter, unless either (i) the Subscription is usage-based (see below) or (ii) a multi-year, or other, agreement is otherwise agreed upon in an Order (“Initial Term”). Except with respect to usage-based Subscriptions, the Agreement shall automatically renew, at the then current and then applicable price (each a “Renewal Term”) upon the end of the Initial Term and each Renewal Term for the same period of time as the prior Term, unless either party delivers written notice of non-renewal to the other party at least sixty (60) days prior to the end of the then-current Initial or Renewal Term, or as otherwise agreed. In the event that the Subscription is usage-based, the term of this Agreement is based upon the designated units of consumption as set forth in an Order.

    8. Termination.

    Notwithstanding anything contained herein to the contrary, this Agreement, an Order or an individual license granted hereunder may be terminated (a) by mutual agreement of SmartBear and You, (b) by either party if the other party is adjudicated as bankrupt, or if a petition in bankruptcy is filed against the other party and such petition is not discharged within sixty (60) days of such filing, (c) for all breaches that are remediable, by either party if the other party materially breaches this Agreement and fails to cure such breach to such party’s reasonable satisfaction within thirty (30) days following receipt of written notice thereof; or (d) for all breaches that are not remediable, immediately by delivery of written notice thereof to the other party. Without limiting its other rights or remedies, SmartBear may terminate this Agreement, an Order or an individual license granted hereunder with immediate effect by giving written notice to You if You fail to pay any amount due on the due date for payment. Upon any termination of this Agreement, an Order or a license granted hereunder, all applicable licenses are revoked and You shall immediately cease use of the Services. Termination of this Agreement, an Order or a license granted hereunder shall not limit either party from pursuing any remedies available to it, including injunctive relief, or relieve You of your obligation to pay all fees that have accrued or become payable hereunder.

    9. Your Responsibilities; Login Credentials.

    You shall (i) be responsible for each User’s compliance with this Agreement, (ii) be responsible for the accuracy, quality and legality of your Data and of the means by which You acquired Your Data, (iii) use commercially reasonable efforts to prevent unauthorized access to or use of the Services, and notify Us promptly of any such unauthorized access or use, (iv) use the Services in compliance with the Documentation and all applicable laws and government regulations in connection with the provisioning, ordering, use and payment of the Services, including any applicable data privacy or data protection legislation, (v) be responsible for obtaining and maintaining all telephone, computer hardware, Internet access services and other equipment or services needed to access and use the Services and all costs and fees associated therewith.

    You agree and acknowledge that You are solely responsible for: (i) ensuring that Your use of the SmartBear Services, and sharing of any data with SmartBear in connection therewith, complies with all applicable data protection laws and regulations worldwide, including the European Union General Data Protection Regulation (“GDPR”); and (ii) sending, receiving or processing only lawful content, data and information, to which You have appropriate legal rights, through the SmartBear Services.

    Data Responsibility. You are solely responsible for (a) Your Data, (b) the accuracy, quality, and legality of Your Data, (c) the means by which You acquired Your Data, including ensuring that Your Data does not infringe upon or violate the rights of any person or entity, (d) third party claims relating to Your Data, and (e) responding to any person claiming Your Data violates such persons rights, including notices pursuant to the Digital Millennium Copyright Act.

    Login Credentials.    SmartBear will provide You with credentials to assign usernames and passwords to each User (“Login Credentials”) in order to access and use the Services. In connection with the foregoing, You agree to (i) maintain as confidential all Login Credentials and not distribute or disclose any such Login Credentials and (ii) use the administrator account to assign the authorized number of Login Credentials to each User.  Further, You shall be responsible for the Login Credentials, which shall be maintained confidentially and not be distributed or disclosed. You shall immediately terminate Login Credentials upon knowledge or belief that any User is or may be subject to a breach of this Agreement and, at your own expense, provide all equipment, operating systems, web browser and internet access, etc. needed to access and use the Services in accordance with the Documentation.  You agree not to bypass or circumvent any access controls or Service use limits.

    10. Non-Human Devices.

    Non-human devices that access or use the Services, whether or not without interaction, are counted as Users. Each such device that accesses or uses the Services must be properly licensed to use the Services pursuant to one of the license types described herein. Examples of non-human devices include, but are not limited to, virtual PCs, build servers, unattended PCs for batch jobs, or similar devices.

    You agree not to develop, support or use software, devices, scripts, robots, or any other means or processes (including crawlers, browser plugins and add-ons, or any other technology or manual work) to scrape the Services or extract data (other than Your own Data) from the Services.

    11. Usage Verification.

    At SmartBear’s written request, and no more than once every twelve (12) months, You will permit SmartBear to review your deployment and use of the Services in order to verify your compliance with the terms and conditions of this Agreement. Any such review shall be scheduled at least ten (10) days in advance, conducted during normal business hours at your facilities, and shall not unreasonably interfere with your business activities. Within ten (10) days of completion of any review that finds your use of the Services to be greater than that which was licensed, You will provide SmartBear an Order for the applicable number of additional licenses and pay all applicable fees in accordance herewith.

    12. Maintenance and Support.

    Your Subscription to the Services includes Maintenance and Support during the Subscription Term. Any Maintenance and Support purchased through a Reseller shall be subject to this Agreement. During the Subscription Term, SmartBear will provide you with Maintenance and Support, including Updates, all in accordance with SmartBear’s Product Support Manual as it exists from time to time; the current version of the SmartBear Product Support Manual is located at https://support.smartbear.com/support/media/pdf/SB_PS_SLA.pdf, or as otherwise may be made available. In addition, as part of Maintenance and Support, SmartBear may make available bug lists, planned feature lists, and other supplemental materials. SmartBear makes no representations or warranties of any kind for these materials.

    13. Fees and Payments.

    Fees. You shall pay all fees specified in an Order. Fees are based on the Services purchased and, in the case of usage-based licenses only, actual usage; all payment obligations are non-cancelable and fees paid are non-refundable and You will not, except as expressly provided herein, be entitled to a refund of amounts paid for the license to use the Services, or any other amounts for any reason. The number of units or time period purchased cannot be decreased during the relevant Subscription Term. Unless otherwise stated in an applicable Order, payment is due thirty (30) days from the date of invoice. You shall provide a purchase order or notice that a purchase order is not required for purchase or payment prior to the date on which SmartBear provides you access to the Services or otherwise comply with the then-current process. If You provide credit card information to Us, You authorize Us to charge such credit card for all Services (including Maintenance and Support services) listed in the Order; such authorization shall include for the initial Subscription Term and any renewal Subscription Term(s)and, in the case of usage-based licenses, for any excess units. Such charges shall be paid in advance, either annually or in accordance with any different billing frequency stated in the applicable Order.

    Overdue Charges. If any payment is not received from You by the due date, then at Our discretion, (a) such charges may accrue late interest at the rate of 1.5% of the outstanding balance per month, or the maximum rate permitted by law, whichever is lower, from the date such payment was due until the date paid, and/or (b) for Subscriptions, We may condition future subscription renewals and Orders on payment terms shorter than those specified herein.

    Suspension of Service and Acceleration. If any amount owing by You under this or any other agreement for the Services is 15 or more days overdue or if Your credit card is not valid, in the event You are paying by credit card, You shall be considered in default of this Agreement and We may, without limiting Our other rights and remedies, accelerate Your unpaid fee obligations under such agreements so that all such obligations become immediately due and payable, and suspend access to the Services until such amounts are paid in full.

    Taxes. You shall be responsible for taxes levied on any transaction under this Agreement, including all federal, state, and local taxes, levies and assessments, duties or similar governmental assessments of any nature, including but not limited to value-added, sales, use or withholding taxes, assessable by any local, state, provincial, federal or foreign jurisdiction (collectively, “Taxes”), excluding any tax based on SmartBear’s income. Unless otherwise stated, Our fees do not include any Taxes. If We have the legal obligation to pay or collect Taxes for which You are responsible under this paragraph, the appropriate amount shall be invoiced to and paid by You, unless You provide Us with a valid tax exemption certificate authorized by the appropriate taxing authority. We are solely responsible for taxes assessable against Us based on Our income, property and employees.

    14. Confidentiality and Data Privacy; Telephone Consumer Protection Act Notice

    Confidential Information.  Each party will regard any information provided to it by the other party and designated in writing as proprietary or confidential to be confidential (“Confidential Information”). Confidential Information shall also include information which, to a reasonable person familiar with the disclosing party’s business and the industry in which it operates, is of a confidential or proprietary nature. A party will not disclose the other party’s Confidential Information to any third party without the prior written consent of the other party, nor make use of any of the other party’s Confidential Information except in its performance under this Agreement.  Each party accepts responsibility for the actions of its agents or employees (including, in Your case, all Users) and shall protect the other party’s Confidential Information in the same manner as it protects its own valuable confidential information, but in no event shall less than reasonable care be used. The parties expressly agree that the Services and the terms and pricing of this Agreement are the Confidential Information of SmartBear. You will not remove or destroy any proprietary markings or restrictive legends placed upon or contained in the Services.  A receiving party shall promptly notify the disclosing party upon becoming aware of a breach or threatened breach hereunder, and shall cooperate with any reasonable request of the disclosing party in enforcing its rights.

    Exclusions.  Information will not be deemed Confidential Information hereunder if such information: (i) is known prior to receipt from the disclosing party, without any obligation of confidentiality; (ii) becomes known to the receiving party directly or indirectly from a source other than one having a known obligation of confidentiality to the disclosing party; (iii) becomes publicly known or otherwise publicly available, except through a breach of this Agreement; or (iv) is independently developed by the receiving party without use of or access to the Confidential Information. The receiving party may disclose Confidential Information pursuant to the requirements of applicable law, legal process or government regulation, provided that it (to the extent permitted) gives the disclosing party reasonable prior written notice to permit the disclosing party to contest such disclosure, and such disclosure is otherwise limited to the required disclosure.

    Data Privacy: The terms and conditions of SmartBear’s Privacy Policy set forth at https://www.smartbear.com/privacy/ and the SmartBear Data Processing Addendum below, as such policy and addendum may be revised and updated by SmartBear from time to time, are incorporated by reference into this Agreement. By your acceptance of the terms of this Agreement or access or use of the Services, You authorize the collection, use and disclosure of information collected by SmartBear for the purposes provided for in this Agreement in accordance with the Privacy Policy and SmartBear Data Processing Addendum as revised from time to time. You represent and warrant to SmartBear that You comply with all applicable Data Protection Laws and Regulations (as such term is defined in the SmartBear Data Processing Addendum) and that Processing by SmartBear, on your behalf and pursuant to your use of the Services, of all Data you provide to SmartBear directly or through use of the Services, is not prohibited by any Data Protection Laws and Regulations. You agree to fully indemnify SmartBear, its successors and assigns, for any claims, allegations, costs, losses, damages (direct or indirect) including attorneys’ fees, relating to any alleged breach of the foregoing representation and warranty. The SmartBear Services may be provided using resources and servers located in various countries around the world, including the United States and other countries. Therefore, personal information about individuals or customers may be transferred, processed and stored outside the country where the SmartBear Services are used, including to countries outside the European Union (“EU”), European Economic Area (“EEA”) or Switzerland, where the level of data protection may not be deemed adequate by the European Commission. International users understand and consent to the processing of Data, including personal data as defined under applicable law, in the United States and outside of their country of residence for the purposes described herein in accordance with the Privacy Policy. You are responsible for your Data, including personal data. You shall only share Data with SmartBear that You have the right to share, and only in the manner and to the extent consistent with such right. SmartBear offers general purpose, content-neutral Services and is not responsible for being aware of whether or not You are using the Services in connection with personal data or sensitive data. Generally, SmartBear will have no reason to know the actual content of your Data.

    In addition to any other information transmitted as specified in the Privacy Policy and SmartBear Data Processing Addendum, the Services may transmit license and/or product usage data at the time of registration, use or update in order to activate your access rights and provide You with update notifications, protect You and SmartBear against unlicensed or illegal use of the Services, and improve customer service and the Services. By accessing the Services, You authorize SmartBear to create aggregated anonymous, pseudonymous or de-identified data based on activities and use of all Users. Upon creation, SmartBear will be deemed to be the owner of such aggregated data and may use and copy such data, in our discretion, for any lawful purpose, including but not limited to analytics. SmartBear may elect to provide the User with the ability to disable the collection of certain license and/or product usage data through the settings menu in the Services.

    Feedback. You may provide feedback (which may be oral or written) to Us including on the functions, operation, and utility of the Services and are encouraged to provide prompt reports of any issues, bugs or service errors, feature suggestions and corrections to problems in the Services and/or Documentation (collectively “Feedback”). You agree that Feedback provided by You becomes the property of, and upon creation, shall be deemed to be assigned to, Us and that We may use or exploit the same without any accounting or payment to You. You will not include in Feedback any third party proprietary or confidential information.

    Telephone Consumer Protection Act.  SmartBear may use Your information to make business, informational and collections calls relating to the Services to all telephone numbers, including cellular numbers or mobile devices, You choose to provide on Your account or in registering for any of the Services. You agree such calls may be pre-recorded messages or placed with an automatic telephone dialing system. In addition, You agree that SmartBear may send non-marketing service or account related text messages to cellular phone numbers You provide to SmartBear, and You agree to accept and pay all carrier message and data rates that apply to such text messages. If You choose to provide an e-mail or other electronic address on Your account, You acknowledge and consent to receive business and informational messages relating to the Services at such address, including collections messages, and You represent and warrant that such address is Your private address and is not accessible or viewable by any other person.

    15. Ownership.

    Except as expressly provided in this Agreement, SmartBear and its licensors, where applicable, retain all right, title and interest, including all copyright and intellectual property rights, in and to, the Services, as an independent work and as an underlying work serving as a basis for any improvements, modifications, derivative works, and applications You may develop, and all copies thereof. All rights not specifically granted in this Agreement, including U.S. and international copyrights, are reserved by SmartBear and its suppliers.

    SmartBear and other trademarks contained in the Services are trademarks or registered trademarks of SmartBear Software Inc. in the United States or other countries. You may not remove or alter any trademark, trade names, product names, logo, copyright or other proprietary notices, legends, symbols or labels in the Services.

    Subject to the limited rights granted by You hereunder, We acquire no right, title or interest from You or Your licensors hereunder in or to Your data, including any intellectual property rights therein.

    The Software may contain or otherwise make use of software, code or related materials from third parties, including, without limitation, “open source” or “freeware” software (“Third Party Components”). Third Party Components may be licensed under additional or other license terms that accompany such Third Party Components, and you acknowledge and agree that these accompanying license terms govern their use. Nothing in this Terms of Service limits your rights under, or grants you rights that supersede, the license terms that accompany any Third Party Components. For your convenience, we provide you with a list of the Third party Components that may be contained in the Software on our website at https://smartbear.com/legal/third-party-software-license-information/general/ If required by any license for a particular Third Party Component, SmartBear makes the source code of such Third Party Component, and any of SmartBear’s modifications to such Third Party Component as required, available by written request to SmartBear at the following address: support@smartbear.com.

    16. Limited Warranty; Remedies.

    SmartBear warrants that (a) it has the necessary corporate power and authority and has taken required corporate action on its part necessary to permit it to execute and deliver You this Agreement; (b) it has taken commercially reasonable steps to provide the Services free from any virus at the time of initial access; (c) for a period of thirty (30) days following the initial grant of access to You to the Services (the “Warranty Period”), the Services will perform in substantial conformity with the Documentation; and (d) the Services will be provided with reasonable skill and care conforming to generally accepted software industry standards and in accordance with any specifications set forth in the Order in all material respects. Your exclusive remedy and SmartBear’s sole obligation for SmartBear’s breach of 16(c), is that SmartBear will, at its option, and at no cost, to  (a) provide remedial services necessary to enable the Services to conform to the warranty, or (b) replace any defective Services to enable the Services to conform to the warranty without loss of any material functionality, or in the event that SmartBear determines that neither of the foregoing are reasonably practicable, (c) terminate this Agreement and refund amounts paid in respect of the defective Services for the balance of the then-current Subscription Term.  SmartBear’s warranty obligations will only extend (i) to material errors that can be demonstrated to exist in an unmodified version of the Services except where the modifications were carried out by SmartBear or with its written approval and (ii) in respect of alleged breaches for which SmartBear has received written notice within the Warranty Period, if applicable.  You will provide SmartBear with a reasonable opportunity to remedy any breach and reasonable assistance in remedying any defects.

    EXCEPT AS SET FORTH IN THE FOREGOING LIMITED WARRANTY, SMARTBEAR AND ITS SUPPLIERS AND LICENSORS DISCLAIM ALL OTHER WARRANTIES AND REPRESENTATIONS, WHETHER EXPRESS, IMPLIED, OR OTHERWISE, INCLUDING THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT AND TITLE OR QUIET ENJOYMENT.  SMARTBEAR DOES NOT WARRANT THAT THE SERVICES ARE ERROR-FREE OR WILL OPERATE WITHOUT INTERRUPTION.  IN ADDITION, ALL THIRD PARTY COMPONENTS ARE PROVIDED “AS IS,” “WHERE IS,” “AS AVAILABLE,” “WITH ALL FAULTS” AND, TO THE FULLEST EXTENT PERMITTED BY LAW, WITHOUT WARRANTY OF ANY KIND. SMARTBEAR AND ITS LICENSORS DISCLAIM ALL WARRANTIES WITH RESPECT TO THE THIRD PARTY COMPONENTS, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND TITLE, AND ANY WARRANTIES REGARDING THE SECURITY, QUIET ENJOYMENT, RELIABILITY, TIMELINESS, AND PERFORMANCE OF THE SERVICES. NO RIGHTS OR REMEDIES REFERRED TO IN ARTICLE 2A OF THE UCC WILL BE CONFERRED ON YOU UNLESS EXPRESSLY GRANTED HEREIN.  THE SERVICES ARE NOT DESIGNED, INTENDED OR LICENSED FOR USE IN HAZARDOUS ENVIRONMENTS REQUIRING FAIL-SAFE CONTROLS, INCLUDING WITHOUT LIMITATION, THE DESIGN, CONSTRUCTION, MAINTENANCE OR OPERATION OF NUCLEAR FACILITIES, AIRCRAFT NAVIGATION OR COMMUNICATION SYSTEMS, AIR TRAFFIC CONTROL, AND LIFE SUPPORT OR WEAPONS SYSTEMS. SMARTBEAR SPECIFICALLY DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY OF FITNESS FOR SUCH PURPOSES.

    No oral or written information or advice given by SmartBear, its Resellers, dealers, distributors, agents, representatives or employees shall create any warranty or in any way increase any warranty provided herein.

    If applicable law requires any warranties other than the foregoing, all such warranties are limited in duration to thirty (30) days from the date of grant of initial access to the Services to You. Some jurisdictions do not allow the exclusion of implied warranties, so the above exclusion may not apply to You.  The warranties provided herein give You specific legal rights and You may also have other legal rights that vary from jurisdiction to jurisdiction.  The limitations or exclusions of warranties, remedies or liability contained in this EULA shall apply to You only to the extent such limitations or exclusions are permitted under the laws of the jurisdiction where You are located.

    17. Indemnification.

    SmartBear will (a) defend indemnify and hold You harmless from and against all any claims and causes of action brought against You by a third party arising out of an allegation that the Services as provided to You by SmartBear, standing alone and not in combination with any other products or services, and as used in their intended manner, infringes any third party’s intellectual property rights enforceable under United States law or international copyright treaty and (b) pay any accrued costs and damages against You or the amount stated in a written settlement signed by SmartBear, provided You: (a) promptly notify SmartBear after learning of the suit or claim (provided, however, that SmartBear’s obligations under this Section 17 shall only be mitigated to the extent that it is prejudiced by a delay in receipt of such notification); (b) give SmartBear the authority to defend or settle the suit or claim (provided that SmartBear does not agree to any settlement that requires You to pay money or make any admissions); and (c) give SmartBear all available non-privileged information and assistance reasonably requested by SmartBear, at SmartBear’s expense, concerning the suit or claim.

    18. Remediation.

    If the Services are held or is reasonably believed by SmartBear to be held to infringe any third party rights described in Section 17 above, SmartBear may, at its expense, modify or replace the applicable Services to be non-infringing with similar functionality, or obtain permission for You to continue using the Services as permitted under the Agreement, or if neither option is commercially feasible, then to terminate this Agreement and refund that portion of the fees paid in respect of the applicable Services, which portion is equal to the amount of pre-paid fees for the balance of the then-current Subscription Term.

    19. Limitations of Liability.

    NEITHER SMARTBEAR NOR ITS SUPPLIERS, LICENSORS, SUCCESSORS OR ASSIGNS, SHALL BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY INDIRECT, SPECIAL, INCIDENTAL, PUNITIVE, COVER OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, DAMAGES FOR THE INABILITY TO USE EQUIPMENT OR ACCESS DATA, LOSS OF BUSINESS, LOSS OF PROFITS, LOST DATA, BUSINESS INTERRUPTION OR THE LIKE), ARISING OUT OF THE USE OF, OR INABILITY TO USE, THE SERVICES AND BASED ON ANY THEORY OF LIABILITY INCLUDING BREACH OF CONTRACT, BREACH OF WARRANTY, TORT (INCLUDING NEGLIGENCE), PRODUCT LIABILITY OR OTHERWISE, EVEN IF SMARTBEAR OR ITS REPRESENTATIVES HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES AND EVEN IF A REMEDY SET FORTH HEREIN IS FOUND TO HAVE FAILED OF ITS ESSENTIAL PURPOSE.  SMARTBEAR’S, SUPPLIERS’, AND LICENSORS’ TOTAL AGGREGATE LIABILITY TO YOU FOR ACTUAL DAMAGES FOR ANY CAUSE WHATSOEVER WILL BE LIMITED TO THE AMOUNT PAID BY YOU OR RESELLER, IF ORDERED THROUGH A RESELLER, FOR THE SERVICES THAT CAUSED SUCH DAMAGE IN THE TWELVE MONTH PERIOD IMMEDIATELY PRECEDING THE DATE OF THE APPLICABLE CLAIM.

    20. Government Matters

    This Section applies to all acquisitions of the Services by or for the United States Federal government, including by any prime contractor or subcontractor (at any tier) under any contract, grant, cooperative agreement or other activity with the Federal government. The Software was developed at private expense and is Commercial Computer Software, as defined in Section 12.212 of the Federal Acquisition Regulation (48 CFR 12.212 (October 1995)) and Sections 227.7202-1 and 227.7202-3 of the Defense Federal Acquisition Regulation Supplement (48 CFR 227.7202-1, 227.7202-3 (June 1995)). Accordingly, any use, duplication or disclosure by the Federal Government or any of its authorized users is subject to restrictions as set forth in this standard license agreement for the Services. If for any reason, Sections 12.212, 227.7202-1 or 227.7202-3 are deemed not applicable, then the Federal Government’s rights to use, duplicate or disclose the Services are limited to “Restricted Rights” as defined in 48 CFR Section 52.227-19(c)(1) and (2) (June 1987), or DFARS 252.227-7014(a)(14) (June 1995), as applicable. If this Agreement fails to meet the Federal Government’s needs or is inconsistent in any respect with Federal law, the Federal Government agrees to terminate its access to the  Services. Manufacturer is SmartBear Software Inc., 450 Artisan Way, Somerville, MA 02145.

    Federal Government End Use Provisions. We provide the Services, including related software and technology, for ultimate federal government end use solely in accordance with the following: Government technical data and software rights related to the Services include only those rights customarily provided to the public as defined in this Agreement. This customary commercial license is provided in accordance with FAR 12.211 (Technical Data) and FAR 12.212 (Software) and, for Department of Defense transactions, DFAR 252.227-7015 (Technical Data – Commercial Items) and DFAR 227.7202-3 (Rights in Commercial Computer Software or Computer Software Documentation). If a government agency has a need for rights not conveyed under these terms, it must negotiate with Us to determine if there are acceptable terms for transferring such rights, and a mutually acceptable written addendum specifically conveying such rights must be included in any applicable contract or agreement.

    21. General.

    Headings. The headings to the clauses in this Agreement are for reference only and shall not affect the interpretation of this Agreement.

    Governing Law and Venue. If the access to the Services was acquired in the United States or Canada, this Agreement shall be governed by the internal law of the Commonwealth of Massachusetts, U.S.A., without giving effect to principles of conflict of laws. To the extent that the arbitration clause below is not applicable for any reason, You hereby consent to the exclusive jurisdiction and venue of the state courts sitting in the Commonwealth of Massachusetts or the federal courts in the Commonwealth of Massachusetts to resolve any disputes arising under this EULA. In each case this EULA shall be construed and enforced without regard to the United Nations Convention on the International Sale of Goods.

    If You acquire access to, and use, the Services from outside the United States or Canada, this Agreement shall be governed by and construed in accordance with the laws of Ireland, without giving effect to principles of conflict of laws. To the extent that the arbitration clause below is not applicable for any reason, You hereby consent to the exclusive jurisdiction and venue of the Irish courts to resolve any disputes or issues arising directly or indirectly under this Agreement.

    Arbitration:  You agree that, unless prohibited by applicable law, any dispute or claim You may have against SmartBear will be resolved by binding arbitration, rather than in court. Such disputes and claims shall be referred to and finally determined by arbitration in accordance with JAMS Streamlined Arbitration Rules and Procedures. If You agree to this Privacy Policy and/or use the Services, You are agreeing in advance that You will not participate in or seek to recover monetary or other relief in any lawsuit filed against SmartBear alleging class, collective and/or representative claims on your behalf. Instead, by agreeing to arbitration, You may bring your claims against SmartBear in an individual arbitration proceeding. Claims of more than one individual cannot be arbitrated or consolidated with those of any other individual. You hereby consent to receive service of process by electronic means or social media to the extent allowed by the applicable federal or state court. This constitutes express agreement of the parties regarding Your consent pursuant to Federal Rule of Civil Procedure 5(b)(2)(E) and any applicable state law equivalent. You may consult with an attorney in deciding whether to accept this Privacy Policy prior to using the Services, including this arbitration agreement.

    Neither the foregoing arbitration clause nor anything else in this Agreement shall operate to prevent SmartBear from seeking interim, protective or provisional relief in the courts of any State or country, or to enforce an Irish order or collect or enforce a debt in the courts of any State or country.

    Notice. Except as otherwise specified in this EULA, all notices, permissions and approvals hereunder shall be in writing and shall be deemed to have been given upon: (i) personal delivery, (ii) five (5) business days after being sent by certified mail return receipt requested, or (iii) the first business day after sending by a generally recognized national or international guaranteed overnight delivery service. Billing-related notices to You shall be addressed to the relevant billing contact designated by You. All other notices to You shall be addressed to the relevant system administrator designated by You. You shall send all notices, demands, requests or other communications which may be or are required to be given hereunder to SmartBear at the address set forth above. SmartBear shall send all notices, demands, requests or other communications which may be or are required to be given hereunder to You at in the address set forth in the applicable Order, as You may update such information from time to time.

    If You acquire access to and use the Services from in the United States or Canada, You shall address all such notices, permissions and approvals to the Legal Department, 450 Artisan Way, Somerville, MA 02145.

    If You acquire access to and use the Services from outside the United States or Canada, You shall address all such notices, permissions and approvals to the Legal Department, Mayoralty House, Flood Street, Galway, Ireland.

    Publicity. You agree to be identified as a customer of SmartBear and agree that SmartBear may refer to You by name, trade name and trademark, if applicable, and may briefly describe your business in SmartBear’s marketing materials and web site. You hereby grant SmartBear a license to use your name and any of your trade names and trademarks solely in connection with the rights granted to SmartBear pursuant to this marketing section. You grant us the right to add your name and company logo to our customer list and website.

    Assignment. Neither party may assign any of its rights or obligations hereunder, whether by operation of law or otherwise, without the prior written consent of the other party (not to be unreasonably withheld). Notwithstanding the foregoing, either party may assign this Agreement in its entirety (including all Orders, without consent of the other party, to its Affiliate or in connection with a merger, acquisition, corporate reorganization, or sale of all or substantially all of its assets). Subject to the foregoing, this Agreement shall bind and inure to the benefit of the parties, their respective successors and permitted assigns.

    Severability. If any provision of this Agreement shall be held by a court of competent jurisdiction to be contrary to law that provision will be enforced to the maximum extent permissible and the remaining provisions of this Agreement will remain in full force and effect.

    Waiver. The failure or delay of SmartBear to exercise any of its rights under this EULA or upon any breach of this EULA shall not be deemed a waiver of those rights or of the breach. A waiver by either party of any term or condition of this EULA or any breach thereof, in any one instance, shall not waive such term or condition or any subsequent breach thereof.

    Force Majeure. Except for failure to make payments when due, neither party shall be liable to the other by reason of any failure in performance of this Agreement by either party if the failure arises out of any cause beyond the reasonable control of that party, including, but not limited to, the unavailability or faulty performance of communication networks or energy sources, any act of God, any act or omission of governmental or other competent authority, fires, strikes, industrial dispute, riots, war, inability to obtain materials, embargo, refusal of license, theft, destruction, denial of service attacks, unauthorized access to computer systems or records, programs, equipment, data, or services.

    Anti-Bribery. You have not received or been offered any illegal or improper bribe, kickback, payment, gift, or thing of value from any of SmartBear’s employees or agents in connection with this EULA. If You learn of any violation of the above restriction, You will use reasonable efforts to promptly notify SmartBear’s Legal Department.

    Independent Contractors. The parties are independent contractors. This Agreement does not create a partnership, franchise, joint venture, agency, fiduciary or employment relationship between the parties. There are no third-party beneficiaries to this EULA.

    Entire Agreement. This Agreement, together with all applicable Orders and the Maintenance and Support terms contain the complete agreement between the parties with respect to the subject matter hereof, and supersedes all prior or contemporaneous agreements or understandings, whether oral or written. You agree that any varying or additional terms contained in any purchase order or other written notification or document issued by You in relation to the Services licensed hereunder shall be of no effect. No Reseller is authorized to make any amendment to this EULA.

    Survival. All provisions of this Agreement which by their nature are intended to survive the expiration or termination of this Agreement (including, without limitation, the following Sections: Termination, Usage Verification, Fees and Payment, Confidentiality and Data Privacy, Ownership, Intellectual Property, Limited Warranty; Remedies, Indemnification, Disclaimers, Limitations of Liability and General)

    Changes:  These Terms of Service may change from time to time.  SmartBear will post any changed or updated versions on the website and, if appropriate provide email notification or login notification of such update.

    Last Updated: April 16, 2018

    SMARTBEAR ON-PREMISE TERMS OF USE

    1. Definitions.

    “Affiliate” means any entity which directly or indirectly controls, is controlled by, or is under common control with the subject entity; for purposes hereof, “control” means possession, directly or indirectly of the power to direct or cause the direction of the activities, management or policies of an entity, whether through the ownership of voting securities, by contract or otherwise. Without limiting the foregoing, control will be presumed to exist when an entity (a) owns or directly or indirectly controls fifty percent (50%) or more of the outstanding voting stock or other ownership interest of the applicable entity or (b) possesses, directly or indirectly, the power to elect or appoint fifty percent (50%) or more of the members of the applicable entity’s governing body.

    “Documentation” means the published and generally available on-line user and administrator materials SmartBear delivers or makes available with the Software, including on-line help, as updated from time to time.

    “Maintenance and Support” mean those services provided by SmartBear as set forth at https://support.smartbear.com/support/media/pdf/SB_PS_SLA.pdf .

    “Maintenance Period” means (i) for all Perpetual licenses of the Software, that number of years set forth in the applicable Order for which You have purchased Maintenance and Support or (ii) for all Subscription licenses of the Software, the number of years of such Subscription set forth in the applicable Order.

    “On-Premise” means that the Software must be installed on a server, desktop, virtual machine or container on site at Your facility; all Software licensed under the terms of this Agreement is for On-Premise deployments only.

    “Order” means SmartBear’s online purchase order, quote or other document for placing orders entered into between You and SmartBear and identifies the Software (including the applicable SmartBear product(s), license type, license model (Perpetual or Subscription), quantity) ordered by You and any required access information. An Order that has been accepted by SmartBear shall be deemed incorporated herein by reference.

    “Perpetual” means Our grant of a license of the Software without any limitation on the duration of the license.

    “Reseller” means an authorized reseller or distributor who may sell the Software to You.

    “Software” means the SmartBear software licensed pursuant to the applicable Order and Updates provided by SmartBear, solely in object code form.

    “Subscription” means Our grant of a license of the Software for the period of time set forth in the Order (the “Subscription Term”).

    “Update” means any subsequent release of the Software that SmartBear generally makes available to its customers who are enrolled in, and have fully paid for, Maintenance and Support.  Updates do not include any Software that is marketed and priced separately by SmartBear.

    “User” means an individual who is authorized by You to use the Software in accordance with this Agreement and the applicable license type set forth herein, and who has been supplied usage credentials.  A User may include, but is not limited to, your employee, consultant, contractor and any agent with which You transact business.

    “You” means the company or other legal entity for which you are accepting this Agreement and Affiliates of that company or entity.

    2. Who We Are.

    If You acquired Software in the United States or Canada, “We”, “Us”, “Our” or “SmartBear” means SmartBear Software Inc., a Delaware corporation with its principal place of business at 450 Artisan Way, Somerville, MA 02145.

    If You acquired Software outside of the United States or Canada, “We”, “Us”, “Our” or “SmartBear” means SmartBear (Ireland) Limited with its principal place of business at Mayoralty House, Flood Street, Galway, Ireland.

    3. Free Trial Version.

    If You register for a free trial, SmartBear will make the applicable Software available to You on a temporary basis (the “Trial Version”) free of charge until the end of the free trial period for which You registered or ordered the applicable Software. The Trial Version may be used only to review evaluate and demonstrate, for Your internal purposes; the Software and may have limited features. The Trial Version may cease operating after the applicable time period or number of uses based on an internal metering mechanism within the Trial Version itself. Regardless of any such metering, You must stop use of the Software at the end of such period or number of uses.

    You shall not (a) in the aggregate, install or use more than one copy of the Trial Version, (b) download the Trial Version under more than one username, (c) alter the contents of a hard drive or computer system to enable the use of the Trial Version for an aggregate period in excess of the trial period for one license to such Trial Version, (d) disclose the results of software performance benchmarks obtained using the Trial Version to any third party without SmartBear’s prior written consent, (e) use the Trial Version for any commercial training or any application deployment or ultimate production purpose, (f) use the Trial Version to update Software that is no longer eligible for Maintenance and Support or (g) use the Trial Version other than for the sole purpose of determining whether to purchase a license to the Software.

    ANY DATA YOU ENTER INTO A TRIAL VERSION, AND ANY CONFIGURATIONS MADE TO THE TRIAL VERSION BY OR FOR YOU DURING ANY FREE TRIAL MAY BE PERMANENTLY LOST UNLESS YOU PURCHASE A LICENSE TO THE SAME SOFTWARE AS THOSE COVERED BY THE TRIAL, PURCHASE UPGRADED SOFTWARE, OR EXPORT SUCH DATA, BEFORE THE END OF THE TRIAL PERIOD.

    NOTWITHSTANDING SECTION 19 (LIMITED WARRANTY; REMEDIES), DURING A FREE TRIAL, THE TRIAL VERSION AND ANY APPLICABLE SERVICES ARE PROVIDED “AS-IS” WITHOUT WARRANTY AND SMARTBEAR HAS NO RESPONSIBILITY FOR DATA RETENTION OR RESULTS FROM TRIALS.

    4. On-Premise License Grants.

    Perpetual – Subject to the terms of this Agreement, for all licenses of the Software that are granted on a Perpetual basis, as indicated on the applicable Order, SmartBear grants You a non-exclusive, non-transferable, non-sublicensable, perpetual, limited license to install and use the Software on compatible devices without any end date. You may install and use the Software solely as permitted by the license type purchased, which license type is (i) specified in the applicable Order and (ii) subject to the further terms below applicable to the relevant Software product.

    Subscription – Subject to the terms of this Agreement, for all licenses of the Software that are granted on a Subscription basis, as indicated on the applicable Order SmartBear grants You a non-exclusive, non-transferable, non-sublicensable, limited license to install and use the Software on compatible devices during the applicable Subscription Term. You may install and use the Software solely as permitted by the license type purchased, which license type is (i) specified in the applicable Order and and (ii) subject to the further terms below applicable to the relevant Software product.

    5. License Types.

    The licenses granted in Section 4 are subject to all terms and conditions set forth in this Agreement, including the following applicable terms (as specified in the applicable Order):

    Fixed (Named) License: all Software licensed under these terms are single instance, meaning it can be activated by only one User, with a unique username and password, on a single computer, computing device, or virtual machine and has a fixed license key.  You must acquire and dedicate a license for each separate User that You wish to access the Software. A separate license is required for each User and may not be shared. The Software may not be reassigned other than for the permanent transfer of the Software license to another User if the eligible User is no longer employed by You.  An eligible User may access the Software with a unique username and password on one device at a time.

    Floating (Concurrent) License: all Software licensed under these terms can be activated for different users and machine combinations, but only one at a time and has a floating license key. The number of running instances of the Software or the number of individuals simultaneously having access to the Software may not exceed at any one time the number of floating seats licensed.  One computer or computing device shall be designated as the “license server”, where the license is installed, and all other devices will require access to the license server to run the Software.

    Node-Locked License: all Software licensed under these terms is for use on a specified computer or computing device.  This license will be “bound” to the designated computer or computing device and will only function on this computer or computing device.  This license permits the use of a single instance of the Software, which functions on a single computer or computing device.

    Server Application License: all Software application licensed under these terms can be installed on one server machine and may be accessed by many Users. The license key is dedicated to the designated computer or computing device and will only function on this computer or computing device.

    Usage-Based License:  all Software licensed under these terms is (i) licensed on a unit-based basis during the Subscription Term as set forth in an Order and (ii) restricted to a computer or computing device, which is applicable to the Alertsite and VirtServer products.

    Freeware or Free Version License:  all Software licensed under these terms is licensed to an individual User who is specifically named in the Software registration and may only be used on one computer or computing device at a time. These licenses are not eligible for Maintenance and Support other than the materials and discussion groups that may be accessed generally via the SmartBear online community at https://community.smartbear.com.

    6. Software Delivery. 

    Delivery of the Software to You shall be made by electronic means and deemed to have occurred when the Software has been made available to You for download or by providing You with a key for such usage. SmartBear is expressly authorized by You to ship the Software upon completion of the applicable Order.

    7. License Restrictions.

    Your use of the Software is limited to the number of units, duration and such other usage restrictions as are set forth on an Order and herein. SmartBear and its licensors and suppliers reserve any and all rights, implied or otherwise, which are not expressly granted to You hereunder, and retain all rights, title and interest in and to the Software.  You shall not (i) modify, adapt, distribute, resell, rent, lease or loan the Software or create or prepare derivative works based upon the Software or any part thereof; (ii) use the Software in a service bureau, or application service provider environment, or in any commercial timeshare arrangement; (iii) decompile, disassemble or otherwise reverse engineer the Software; (iv) use the Software in contravention of any applicable laws or government regulations; (v) use the Software in order to build a competitive product or service; (vi) copy any features, functions or graphics of the Software; (vii) use the Software to store or transmit infringing, libelous, or otherwise unlawful or tortious material, or to store or transmit material in violation of third-party privacy rights..

    If the restriction set forth in clause (iii) above is prohibited by applicable law, You shall provide SmartBear with a detailed prior written notice of any such intention to reverse engineer the Software and shall provide SmartBear with a right of first refusal to perform such work at rates equal to those proposed by a recognized third-party software services provider for such work. You shall take all reasonable precautions to prevent unauthorized or improper use or disclosure of the Software.

    Export. You may not export the Software into any country prohibited by the United States Export Administration Act and the regulations thereunder. You acknowledge that the export of any Software is subject to export or import control and You agree that any Software or the direct or indirect product thereof will not be imported or exported (or re-exported from a country of installation) directly or indirectly, unless You obtain all necessary licenses from the U.S. Department of Commerce or other applicable agency or governmental body as required under applicable law.  Without limiting the generality of the foregoing, You agree that the Software is prohibited for export or re-export to Cuba, North Korea, Iran, Libya, Syria and Sudan or to any person or entity on the U.S. Department of Commerce Denied Persons List or on the U.S. Department of Treasury’s lists of Specially Designated Nationals, Specially Designated Narcotics Traffickers or Specially Designated Terrorists, as such is changed from time to time. Further,  you may not provide to SmartBear or any other person (whether through the Service or any other means), or export or re-export, or allow the export or re-export of the Service, any data or information, or any software or anything related thereto or any direct product thereof (collectively “Controlled Subject Matter”), in violation of any restrictions, laws or regulations of the United States Department of Commerce, the United States Department of Treasury Office of Foreign Assets Control, or any other United States or foreign agency or authority. Without limiting the foregoing, Customer acknowledges and agrees that the Controlled Subject Matter will not be used or transferred or otherwise exported or re-exported to countries as to which the United States maintains an embargo (collectively, “Embargoed Countries”), or to or by a national or resident thereof, or any person or entity on the U.S. Department of Treasury’s List of Specially Designated Nationals or the U.S. Department of Commerce’s Table of Denial Orders (collectively, “Designated Nationals”). The lists of Embargoed Countries and Designated Nationals are subject to change without notice. Use of the Service is representation and warranty that the user is not located in, under the control of, or a national or resident of an Embargoed Country or Designated National. The Controlled Subject Matter may use or include encryption technology that is subject to licensing requirements under the U.S. Export Administration Regulations.

    8. Term.

    The Term of this Agreement shall be determined based on the License Model and License Type as described herein.

    Perpetual License – The term of this Agreement shall commence upon delivery of the Software; for Maintenance and Support the term of this Agreement shall continue for the one-year period following delivery and, thereafter, shall automatically renew, at the then-current and then-applicable price, for subsequent one-year periods unless one party gives the other written notice of non-renewal at least sixty (60) days before the end of the then-current maintenance period.

    Subscription License – The term of this Agreement shall commence upon delivery of the Software and continue for twelve (12) months thereafter, unless a multi-year, or other, agreement is otherwise agreed upon in an Order (“Initial Term”). The Agreement shall automatically renew, at the then-current and then-applicable price (each a “Renewal Term”) upon the end of the Initial Term and each Renewal Term for the same period of time as the prior Term, unless either party delivers written notice of non-renewal to the other party at least sixty (60) days prior to the end of the then-current Initial or Renewal Term, or as otherwise agreed.

    Usage-Based License – The term of this Agreement is based upon the designated units of consumption as set forth in an Order.

    9. Termination.

    Notwithstanding anything contained herein to the contrary, this Agreement, an Order or an individual license granted hereunder may be terminated (a) by mutual agreement of SmartBear and You, (b) by either party if the other party is adjudicated as bankrupt, or if a petition in bankruptcy is filed against the other party and such petition is not discharged within sixty (60) days of such filing, or (c) for all breaches that are remediable, by either party if the other party materially breaches this Agreement and fails to cure such breach to such party’s reasonable satisfaction within thirty (30) days following receipt of written notice thereof; or (d) for all breaches that are not remediable, immediately by delivery of written notice thereof to the other party. Without limiting its other rights or remedies, SmartBear may terminate this Agreement, an Order or an individual license granted hereunder with immediate effect by giving written notice to You if You fail to pay any amount due on the due date for payment. Upon any termination of this Agreement, an Order or a license granted hereunder, all applicable licenses are revoked and You shall immediately cease use of the applicable Software and certify in writing to SmartBear within ten (10) days after termination that such Software and all copies thereof have been destroyed, purged or returned to SmartBear. Termination of this Agreement, an Order or a license granted hereunder shall not limit either party from pursuing any remedies available to it, including injunctive relief, or relieve You of your obligation to pay all fees that have accrued or become payable hereunder.

    10. Your Responsibilities.

    You shall (i) be responsible for each User’s compliance with this Agreement, (ii) be responsible for the accuracy, quality and legality of your data and of the means by which You acquired Your data, (iii) use commercially reasonable efforts to prevent unauthorized access to or use of the Software, and notify Us promptly of any such unauthorized access or use, and (iv) use the Software in compliance with the Documentation and all applicable laws and government regulations in connection with the provisioning, ordering, use and payment of the Software, including any applicable data privacy or data protection legislation.

    You agree and acknowledge that You are solely responsible for: (i) ensuring that Your use of the Software, and sharing of any data with SmartBear in connection therewith, complies with all applicable data protection laws and regulations worldwide, including the European Union General Data Protection Regulation (“GDPR”); and (ii) sending, receiving or processing only lawful content, data and information, to which You have appropriate legal rights, through the Software.

    11. Backup of Software.

    Notwithstanding anything to the contrary herein, You may make a copy(ies) of the Software for the sole purpose of backing-up and archiving the Software. Any copy of the Software is subject to all terms and conditions of this Agreement and must contain the same titles, trademarks, and copyrights as the original.

    12. Virtualization Technology.

    Unless otherwise restricted herein, the Software may be installed within a virtual (or otherwise emulated) hardware system as long as the use of the Software meets the terms of the license type and the virtual machines are run on hardware owned or leased by You. Virtualization technology may not be used to circumvent other licensing terms or restrictions.

    13. Non-Human Devices.

    Non-human devices that use the Software, whether or not without interaction, are counted as Users. Each such device that runs the Software must be properly licensed to use the Software pursuant to one of the license types described herein. Examples of non-human devices include, but are not limited to, virtual PCs, build servers, unattended PCs for batch jobs, or similar devices.

    You agree not to develop, support or use software, devices, scripts, robots, or any other means or processes (including crawlers, browser plugins and add-ons, or any other technology or manual work) to scrape the Software or extract data (other than Your own) from the Software.

    14. Usage Verification.

    At SmartBear’s written request, and no more than once every twelve (12) months, You will permit SmartBear to review your deployment and use of the Software in order to verify your compliance with the terms and conditions of this Agreement. Any such review shall be scheduled at least ten (10) days in advance, conducted during normal business hours at your facilities, and shall not unreasonably interfere with your business activities. Within ten (10) days of completion of any review that finds your use of the Software to be greater than that which was licensed, You will provide SmartBear an Order for the applicable number of additional licenses and pay all applicable fees in accordance herewith.

    15. Maintenance and Support.

    For Perpetual licenses, SmartBear will maintain and support licensed Software during the Maintenance Period for which You purchased Maintenance and Support. For the first year of a Perpetual license, You must purchase Maintenance and Support. After such first year, You may purchase Maintenance and Support in order to receive those services. The Maintenance Period for all Perpetual licenses shall be twelve months unless otherwise agreed upon in an Order.

    For Subscription licenses You receive Maintenance and Support during the Subscription Term.

    Any Maintenance and Support purchased through a Reseller shall be subject to this Agreement.

    In the case of both Perpetual and Subscription licenses, the term of the Maintenance Period shall commence upon the initial delivery of the Software.  All fees for Maintenance and Support shall be payable in advance.

    During a Maintenance Period, SmartBear will provide you with technical support services (“Support Services”), including Updates, to the extent such Support Services are provided for in the applicable Order, all in accordance with SmartBear’s Product Support Manual as it exists from time to time; the current version of the SmartBear Product Support Manual is located at https://support.smartbear.com/support/media/pdf/SB_PS_SLA.pdf, or as otherwise made available. In addition, as part of the Support Services, SmartBear may make available bug lists, planned feature lists, and other supplemental materials. SmartBear makes no representations or warranties of any kind for these materials.

    16. Fees and Payments.

    Fees. You shall pay all fees specified in an Order. Fees are based on the Software purchased and, in the case of Usage-based licenses only, actual usage; all payment obligations are non-cancelable and fees paid are non-refundable and You will not, except as expressly provided herein, be entitled to a refund of amounts paid for the license to use the Software, or any other amounts for any reason. For all Subscriptions, the number of units or time period purchased cannot be decreased during the relevant Subscription Term. Unless otherwise stated in an applicable Order, payment is due thirty (30) days from the date of invoice. You shall provide a purchase order or notice that a purchase order is not required for purchase or payment prior to the shipment of the Software or otherwise comply with the then-current process. If You provide credit card information to Us, You authorize Us to charge such credit card for all Software and Maintenance and Support service listed in the Order; with respect to Subscriptions, such authorization shall include for the initial Subscription Term and any renewal Subscription Term(s) and, in the case of usage-based licenses, for any excess units. Such charges shall be paid in advance, either annually or in accordance with any different billing frequency stated in the applicable Order.

    Overdue Charges. If any payment is not received from You by the due date, then at Our discretion, (a) such charges may accrue late interest at the rate of 1.5% of the outstanding balance per month, or the maximum rate permitted by law, whichever is lower, from the date such payment was due until the date paid, and/or (b) for Subscriptions, We may condition future subscription renewals and Orders on payment terms shorter than those specified herein.

    Suspension of Service and Acceleration. If any amount owing by You under this or any other agreement for Our services is 15 or more days overdue or if Your credit card is not valid, in the event You are paying by credit card, You shall be considered in default of this Agreement and We may, without limiting Our other rights and remedies, accelerate Your unpaid fee obligations under such agreements so that all such obligations become immediately due and payable, and suspend Our services to You until such amounts are paid in full.

    Taxes. You shall be responsible for taxes levied on any transaction under this Agreement, including all federal, state, and local taxes, levies and assessments, duties or similar governmental assessments of any nature, including but not limited to value-added, sales, use or withholding taxes, assessable by any local, state, provincial, federal or foreign jurisdiction (collectively, “Taxes”), excluding any tax based on SmartBear’s income. Unless otherwise stated, Our fees do not include any Taxes. If We have the legal obligation to pay or collect Taxes for which You are responsible under this paragraph, the appropriate amount shall be invoiced to and paid by You, unless You provide Us with a valid tax exemption certificate authorized by the appropriate taxing authority. We are solely responsible for taxes assessable against Us based on Our income, property and employees.

    17. Confidentiality and Data Privacy; Telephone Consumer Protection Act Notice.

    Confidential Information.  Each party will regard any information provided to it by the other party and designated in writing as proprietary or confidential to be confidential (“Confidential Information”). Confidential Information shall also include information which, to a reasonable person familiar with the disclosing party’s business and the industry in which it operates, is of a confidential or proprietary nature. A party will not disclose the other party’s Confidential Information to any third party without the prior written consent of the other party, nor make use of any of the other party’s Confidential Information except in its performance under this Agreement.  Each party accepts responsibility for the actions of its agents or employees (including, in Your case, all Users) and shall protect the other party’s Confidential Information in the same manner as it protects its own valuable confidential information, but in no event shall less than reasonable care be used. The parties expressly agree that the Software and the terms and pricing of this Agreement are the Confidential Information of SmartBear. You will not remove or destroy any proprietary markings or restrictive legends placed upon or contained in the Software.  A receiving party shall promptly notify the disclosing party upon becoming aware of a breach or threatened breach hereunder, and shall cooperate with any reasonable request of the disclosing party in enforcing its rights.

    Exclusions.  Information will not be deemed Confidential Information hereunder if such information: (i) is known prior to receipt from the disclosing party, without any obligation of confidentiality; (ii) becomes known to the receiving party directly or indirectly from a source other than one having a known obligation of confidentiality to the disclosing party; (iii) becomes publicly known or otherwise publicly available, except through a breach of this Agreement; or (iv) is independently developed by the receiving party without use of or access to the Confidential Information. The receiving party may disclose Confidential Information pursuant to the requirements of applicable law, legal process or government regulation, provided that it (to the extent permitted) gives the disclosing party reasonable prior written notice to permit the disclosing party to contest such disclosure, and such disclosure is otherwise limited to the required disclosure.

    Data Privacy: The terms and conditions of SmartBear’s Privacy Policy set forth at http://www.smartbear.com/privacy and the SmartBear Data Processing Addendum below, as such policy and addendum may be revised and updated by SmartBear from time to time, are incorporated by reference into this Agreement. By your acceptance of the terms of this Agreement or use of the Software, You authorize the collection, use and disclosure of information collected by SmartBear for the purposes provided for in this Agreement in accordance with the Privacy Policy and SmartBear Data Processing Addendum as revised from time to time. You represent and warrant to SmartBear that You comply with all applicable Data Protection Laws and Regulations (as such term is defined in the SmartBear Data Processing Addendum) and that Processing by SmartBear, on your behalf and pursuant to your use of the Software, of all data you provide to SmartBear directly or through use of the Software, is not prohibited by any Data Protection Laws and Regulations. You agree to fully indemnify SmartBear, its successors and assigns, for any claims, allegations, costs, losses, damages (direct or indirect) including attorneys’ fees, relating to any alleged breach of the foregoing representation and warranty. The Software may be provided using resources and servers located in various countries around the world, including the United States and other countries. Therefore, personal information about individuals or customers may be transferred, processed and stored outside the country where the Software is used, including to countries outside the European Union (“EU”), European Economic Area (“EEA”) or Switzerland, where the level of data protection may not be deemed adequate by the European Commission. International users understand and consent to the processing of data, including personal data as defined under applicable law,  in the United States and outside of their country of residence for the purposes described herein in accordance with the Privacy Policy. You are responsible for your data, including personal data. You shall only share data with SmartBear that You have the right to share, and only in the manner and to the extent consistent with such right. SmartBear offers general purpose, content-neutral Software and is not responsible for being aware of whether or not You are using the Software in connection with personal data or sensitive data. Generally, SmartBear will have no reason to know the actual content of your data.

    In addition to any other information transmitted as specified in the Privacy Policy and SmartBear Data Processing Addendum, SmartBear’s Software may transmit license and/or product usage data at the time of installation, registration, use or update in order to activate your license and provide You with update notifications, protect You and SmartBear against unlicensed or illegal use of the Software, and improve customer service and the product itself. We are permitted to create aggregated anonymous, pseudonymous or de-identified data based on activities and use of all Users. Upon creation, SmartBear will be deemed the owner of such aggregated data and may use and copy such data, in our discretion, for any lawful purpose, including but not limited to analytics. This process does not collect or communicate any proprietary application data. A User may disable the collection of certain license and/or product usage data through the Software’s settings menu.

    Feedback. You may provide feedback (which may be oral or written) to Us including on the functions, operation, and utility of the Software and are encouraged to provide prompt reports of any issues, bugs or service errors, feature suggestions and corrections to problems in the Software and/or Documentation (collectively “Feedback”). You agree that Feedback provided by You  becomes the property of, and upon creation, shall be deemed to be assigned to, Us and that we may use or exploit the same without any accounting or payment to You. You will not include in Feedback any third party proprietary or confidential information.

    Telephone Consumer Protection Act.  SmartBear may use Your information to make business, informational and collections calls relating to the Services to all telephone numbers, including cellular numbers or mobile devices, You choose to provide on Your account or in registering for any of the Services. You agree such calls may be pre-recorded messages or placed with an automatic telephone dialing system. In addition, You agree that SmartBear may send non-marketing service or account related text messages to cellular phone numbers You provide to SmartBear, and You agree to accept and pay all carrier message and data rates that apply to such text messages. If You choose to provide an e-mail or other electronic address on Your account, You acknowledge and consent to receive business and informational messages relating to the Services at such address, including collections messages, and You represent and warrant that such address is Your private address and is not accessible or viewable by any other person.

    18. Ownership.

    Except as expressly provided in this Agreement, SmartBear and its licensors, where applicable, retain all right, title and interest, including all copyright and intellectual property rights, in and to, the Software, as an independent work and as an underlying work serving as a basis for any improvements, modifications, derivative works, and applications You may develop, and all copies thereof. All rights not specifically granted in this Agreement, including U.S. and international copyrights, are reserved by SmartBear and its suppliers.

    SmartBear and other trademarks contained in the Software are trademarks or registered trademarks of SmartBear Software Inc. in the United States or other countries. You may not remove or alter any trademark, trade names, product names, logo, copyright or other proprietary notices, legends, symbols or labels in the Software.

    Subject to the limited rights granted by You hereunder, We acquire no right, title or interest from You or Your licensors hereunder in or to Your data, including any intellectual property rights therein.

    The Software may contain or otherwise make use of software, code or related materials from third parties, including, without limitation, “open source” or “freeware” software (“Third Party Components”). Third Party Components may be licensed under additional or other license terms that accompany such Third Party Components, and you acknowledge and agree that these accompanying license terms govern their use. Nothing in this Terms of Service limits your rights under, or grants you rights that supersede, the license terms that accompany any Third Party Components. For your convenience, we provide you with a list of the Third party Components that may be contained in the Software on our website at http://support.smartbear.com/support/thirdparty.aspx If required by any license for a particular Third Party Component, SmartBear makes the source code of such Third Party Component, and any of SmartBear’s modifications to such Third Party Component as required, available by written request to SmartBear at the following address: support@smartbear.com.

    The provision of source code, if included with the Software, does not constitute transfer of any legal rights to such code, and resale or distribution of all or any portion of all source code and intellectual property is strictly prohibited hereunder. All Software and other files remain SmartBear’s exclusive property. If source code or modifiable files are provided, regardless of any modifications that You make, You may not redistribute any such source code or modifiable files unless SmartBear has expressly designated these as re-distributable in writing.

    19. Limited Warranty; Remedies.

    SmartBear warrants that (a) it has the necessary corporate power and authority and has taken required corporate action on its part necessary to permit it to execute and deliver You this Agreement; (b) it has taken commercially reasonable steps to provide the Software and the medium on which it was originally provided to You is free from any virus at the time of delivery; (c) for a period of thirty (30) days following the initial delivery of the Software to You (the “Warranty Period”), the Software will perform in substantial conformity with the Documentation; and (d) any Services will be provided with reasonable skill and care conforming to generally accepted software industry standards and in accordance with any specifications set forth in the Order in all material respects. Your exclusive remedy and SmartBear’s sole obligation for SmartBear’s breach of 19(c), is that SmartBear will, at its option, and at no cost to  (a) provide remedial services necessary to enable the Software to conform to the warranty, or (b) replace any defective Software or media to enable the Software to conform to the warranty without loss of any material functionality, or in the event that SmartBear determines that neither of the foregoing are reasonably practicable, (c) terminate this Agreement and refund amounts paid in respect of the defective Software.  SmartBear’s warranty obligations will only extend (i) to material errors that can be demonstrated to exist in an unmodified version of the Software except where the modifications were carried out by SmartBear or with its written approval and (ii) in respect of alleged breaches for which SmartBear has received written notice within the Warranty Period, if applicable.  You will provide SmartBear with a reasonable opportunity to remedy any breach and reasonable assistance in remedying any defects.

    EXCEPT AS SET FORTH IN THE FOREGOING LIMITED WARRANTY, SMARTBEAR AND ITS SUPPLIERS AND LICENSORS DISCLAIM ALL OTHER WARRANTIES AND REPRESENTATIONS, WHETHER EXPRESS, IMPLIED, OR OTHERWISE, INCLUDING THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT AND TITLE OR QUIET ENJOYMENT.  SMARTBEAR DOES NOT WARRANT THAT THE SOFTWARE IS ERROR-FREE OR WILL OPERATE WITHOUT INTERRUPTION.  IN ADDITION, ALL THIRD PARTY COMPONENTS ARE PROVIDED “AS IS,” “WHERE IS,” “AS AVAILABLE,” “WITH ALL FAULTS” AND, TO THE FULLEST EXTENT PERMITTED BY LAW, WITHOUT WARRANTY OF ANY KIND. SMARTBEAR AND ITS LICENSORS DISCLAIM ALL WARRANTIES WITH RESPECT TO THE THIRD PARTY COMPONENTS, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND TITLE, AND ANY WARRANTIES REGARDING THE SECURITY, QUIET ENJOYMENT, RELIABILITY, TIMELINESS, AND PERFORMANCE OF THE SERVICES. NO RIGHTS OR REMEDIES REFERRED TO IN ARTICLE 2A OF THE UCC WILL BE CONFERRED ON YOU UNLESS EXPRESSLY GRANTED HEREIN.  THE SOFTWARE IS NOT DESIGNED, INTENDED OR LICENSED FOR USE IN HAZARDOUS ENVIRONMENTS REQUIRING FAIL-SAFE CONTROLS, INCLUDING WITHOUT LIMITATION, THE DESIGN, CONSTRUCTION, MAINTENANCE OR OPERATION OF NUCLEAR FACILITIES, AIRCRAFT NAVIGATION OR COMMUNICATION SYSTEMS, AIR TRAFFIC CONTROL, AND LIFE SUPPORT OR WEAPONS SYSTEMS. SMARTBEAR SPECIFICALLY DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY OF FITNESS FOR SUCH PURPOSES.

    No oral or written information or advice given by SmartBear, its Resellers, dealers, distributors, agents, representatives or employees shall create any warranty or in any way increase any warranty provided herein.

    If applicable law requires any warranties other than the foregoing, all such warranties are limited in duration to thirty (30) days from the date of delivery. Some jurisdictions do not allow the exclusion of implied warranties, so the above exclusion may not apply to You.  The warranties provided herein give You specific legal rights and You may also have other legal rights that vary from jurisdiction to jurisdiction.  The limitations or exclusions of warranties, remedies or liability contained in this EULA shall apply to You only to the extent such limitations or exclusions are permitted under the laws of the jurisdiction where You are located.

    20. Indemnification.

    SmartBear will (a) defend indemnify and hold You harmless from and against all any claims and causes of action brought against You by a third party arising out of an allegation that the Software as delivered by SmartBear, standing alone and not in combination with any other products or services, and as used in their intended manner, infringes any third party’s intellectual property rights enforceable under United States law or international copyright treaty and (b) pay any accrued costs and damages against You or the amount stated in a written settlement signed by SmartBear, provided You: (a) promptly notify SmartBear after learning of the suit or claim (provided, however, that SmartBear’s obligations under this Section 20 shall only be mitigated to the extent that it is prejudiced by a delay in receipt of such notification); (b) give SmartBear the authority to defend or settle the suit or claim (provided that SmartBear does not agree to any settlement that requires You to pay money or make any admissions); and (c) give SmartBear all available non-privileged information and assistance reasonably requested by SmartBear, at SmartBear’s expense, concerning the suit or claim.

    21. Remediation.

    If the Software is held or is reasonably believed by SmartBear to be held to infringe any third party rights described in Section 20 above, SmartBear may, at its expense, modify or replace the applicable Software to be non-infringing with similar functionality, or obtain permission for You to continue using the Software as permitted under the Agreement, or if neither option is commercially feasible, then to terminate this Agreement and refund that portion of the fees paid in respect of the applicable Software, which portion, in the case of Software licensed (i) on a Perpetual basis, is equal to such fees depreciated in a straight line over three (3) years from the date of delivery or (ii) on a Subscription basis, is equal to the amount of pre-paid fees for the balance of the then-current Subscription Term.

    22. Limitations of Liability.

    NEITHER SMARTBEAR NOR ITS SUPPLIERS, LICENSORS, SUCCESSORS OR ASSIGNS, SHALL BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY INDIRECT, SPECIAL, INCIDENTAL, PUNITIVE, COVER OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, DAMAGES FOR THE INABILITY TO USE EQUIPMENT OR ACCESS DATA, LOSS OF BUSINESS, LOSS OF PROFITS, LOSS OF DATA, BUSINESS INTERRUPTION OR THE LIKE), ARISING OUT OF THE USE OF, OR INABILITY TO USE, THE SOFTWARE AND BASED ON ANY THEORY OF LIABILITY INCLUDING BREACH OF CONTRACT, BREACH OF WARRANTY, TORT (INCLUDING NEGLIGENCE), PRODUCT LIABILITY OR OTHERWISE, EVEN IF SMARTBEAR OR ITS REPRESENTATIVES HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES AND EVEN IF A REMEDY SET FORTH HEREIN IS FOUND TO HAVE FAILED OF ITS ESSENTIAL PURPOSE.  SMARTBEAR’S SUPPLIERS’, AND LICENSORS’ TOTAL AGGREGATE LIABILITY TO YOU FOR ACTUAL DAMAGES FOR ANY CAUSE WHATSOEVER WILL BE LIMITED TO THE AMOUNT PAID BY YOU OR RESELLER, IF ORDERED THROUGH A RESELLER, FOR THE SOFTWARE THAT CAUSED SUCH DAMAGE IN THE TWELVE MONTH PERIOD IMMEDIATELY PRECEDING THE DATE OF THE APPLICABLE CLAIM.

    23. Government Matters.

    This Section applies to all acquisitions of the Software by or for the United States Federal government, including by any prime contractor or subcontractor (at any tier) under any contract, grant, cooperative agreement or other activity with the Federal government. The Software was developed at private expense and is Commercial Computer Software, as defined in Section 12.212 of the Federal Acquisition Regulation (48 CFR 12.212 (October 1995)) and Sections 227.7202-1 and 227.7202-3 of the Defense Federal Acquisition Regulation Supplement (48 CFR 227.7202-1, 227.7202-3 (June 1995)). Accordingly, any use, duplication or disclosure by the Federal Government or any of its authorized users is subject to restrictions as set forth in this standard license agreement for the Software. If for any reason, Sections 12.212, 227.7202-1 or 227.7202-3 are deemed not applicable, then the Federal Government’s rights to use, duplicate or disclose the Software are limited to “Restricted Rights” as defined in 48 CFR Section 52.227-19(c)(1) and (2) (June 1987), or DFARS 252.227-7014(a)(14) (June 1995), as applicable. If this Agreement fails to meet the Federal Government’s needs or is inconsistent in any respect with Federal law, the Federal Government agrees to return the Software, unused, to SmartBear. Manufacturer is SmartBear Software Inc., 450 Artisan Way, Somerville, MA 02145.

    Federal Government End Use Provisions. We provide the Services, including related software and technology, for ultimate federal government end use solely in accordance with the following: Government technical data and software rights related to the Services include only those rights customarily provided to the public as defined in this Agreement. This customary commercial license is provided in accordance with FAR 12.211 (Technical Data) and FAR 12.212 (Software) and, for Department of Defense transactions, DFAR 252.227-7015 (Technical Data – Commercial Items) and DFAR 227.7202-3 (Rights in Commercial Computer Software or Computer Software Documentation). If a government agency has a need for rights not conveyed under these terms, it must negotiate with Us to determine if there are acceptable terms for transferring such rights, and a mutually acceptable written addendum specifically conveying such rights must be included in any applicable contract or agreement.

    24. General.

    Headings. The headings to the clauses in this Agreement are for reference only and shall not affect the interpretation of this Agreement.

    Governing Law and Venue. If the Software was acquired in the United States or Canada, this Agreement shall be governed by the internal law of the Commonwealth of Massachusetts, U.S.A., without giving effect to principles of conflict of laws. To the extent that the arbitration clause below is not applicable for any reason, You hereby consent to the exclusive jurisdiction and venue of the state courts sitting in the Commonwealth of Massachusetts or the federal courts in the Commonwealth of Massachusetts to resolve any disputes arising under this EULA. In each case this EULA shall be construed and enforced without regard to the United Nations Convention on the International Sale of Goods.

    If the Software was acquired outside the United States or Canada, this Agreement shall be governed by and construed in accordance with the laws of Ireland, without giving effect to principles of conflict of laws. To the extent that the arbitration clause below is not applicable for any reason, You hereby consent to the exclusive jurisdiction and venue of the Irish courts to resolve any disputes or issues arising directly or indirectly under this Agreement.

    Arbitration:  You agree that, unless prohibited by applicable law, any dispute or claim You may have against SmartBear will be resolved by binding arbitration, rather than in court. Such disputes and claims shall be referred to and finally determined by arbitration in accordance with JAMS Streamlined Arbitration Rules and Procedures. If You agree to this Privacy Policy and/or use the Services, You are agreeing in advance that You will not participate in or seek to recover monetary or other relief in any lawsuit filed against SmartBear alleging class, collective and/or representative claims on your behalf. Instead, by agreeing to arbitration, You may bring your claims against SmartBear in an individual arbitration proceeding. Claims of more than one individual cannot be arbitrated or consolidated with those of any other individual. You hereby consent to receive service of process by electronic means or social media to the extent allowed by the applicable federal or state court. This constitutes express agreement of the parties regarding Your consent pursuant to Federal Rule of Civil Procedure 5(b)(2)(E) and any applicable state law equivalent. You may consult with an attorney in deciding whether to accept this Privacy Policy prior to using the Services, including this arbitration agreement.

    Neither the foregoing arbitration clause nor anything else in this Agreement shall operate to prevent SmartBear from seeking interim, protective or provisional relief in the courts of any State or country, or to enforce an Irish order or collect or enforce a debt in the courts of any State or country.

    Notice. Except as otherwise specified in this EULA, all notices, permissions and approvals hereunder shall be in writing and shall be deemed to have been given upon: (i) personal delivery, (ii) five (5) business days after being sent by certified mail return receipt requested, or (iii) the first business day after sending by a generally recognized national or international guaranteed overnight delivery service. Billing-related notices to You shall be addressed to the relevant billing contact designated by You. All other notices to You shall be addressed to the relevant system administrator designated by You. You shall send all notices, demands, requests or other communications which may be or are required to be given hereunder to SmartBear at the address set forth above. SmartBear shall send all notices, demands, requests or other communications which may be or are required to be given hereunder to You at in the address set forth in the applicable Order, as You may update such information from time to time.

    If You acquired the Software in the United States or Canada, You shall address all such notices, permissions and approvals to the Legal Department, 450 Artisan Way, Somerville, MA 02145.

    If You acquired the Software outside the United States or Canada, You shall address all such notices, permissions and approvals to the Legal Department, Mayoralty House, Flood Street, Galway, Ireland.

    Publicity. You agree to be identified as a customer of SmartBear and agree that SmartBear may refer to You by name, trade name and trademark, if applicable, and may briefly describe your business in SmartBear’s marketing materials and web site. You hereby grant SmartBear a license to use your name and any of your trade names and trademarks solely in connection with the rights granted to SmartBear pursuant to this marketing section. You grant us the right to add your name and company logo to our customer list and website.

    Assignment. Neither party may assign any of its rights or obligations hereunder, whether by operation of law or otherwise, without the prior written consent of the other party (not to be unreasonably withheld). Notwithstanding the foregoing, either party may assign this Agreement in its entirety (including all Orders, without consent of the other party, to its Affiliate or in connection with a merger, acquisition, corporate reorganization, or sale of all or substantially all of its assets). Subject to the foregoing, this Agreement shall bind and inure to the benefit of the parties, their respective successors and permitted assigns.

    Severability. If any provision of this Agreement shall be held by a court of competent jurisdiction to be contrary to law that provision will be enforced to the maximum extent permissible and the remaining provisions of this Agreement will remain in full force and effect.

    Waiver. The failure or delay of SmartBear to exercise any of its rights under this EULA or upon any breach of this EULA shall not be deemed a waiver of those rights or of the breach. A waiver by either party of any term or condition of this EULA or any breach thereof, in any one instance, shall not waive such term or condition or any subsequent breach thereof.

    Force Majeure. Except for failure to make payments when due, neither party shall be liable to the other by reason of any failure in performance of this Agreement by either party if the failure arises out of any cause beyond the reasonable control of that party, including, but not limited to, the unavailability or faulty performance of communication networks or energy sources, any act of God, any act or omission of governmental or other competent authority, fires, strikes, industrial dispute, riots, war, inability to obtain materials, embargo, refusal of license, theft, destruction, denial of service attacks, unauthorized access to computer systems or records, programs, equipment, data, or services.

    Anti-Bribery. You have not received or been offered any illegal or improper bribe, kickback, payment, gift, or thing of value from any of SmartBear’s employees or agents in connection with this EULA. If You learn of any violation of the above restriction, You will use reasonable efforts to promptly notify SmartBear’s Legal Department.

    Independent Contractors. The parties are independent contractors. This Agreement does not create a partnership, franchise, joint venture, agency, fiduciary or employment relationship between the parties. There are no third-party beneficiaries to this EULA.

    Entire Agreement. This Agreement, together with all applicable Orders and the Maintenance and Support terms contain the complete agreement between the parties with respect to the subject matter hereof, and supersedes all prior or contemporaneous agreements or understandings, whether oral or written. You agree that any varying or additional terms contained in any purchase order or other written notification or document issued by You in relation to the Software licensed hereunder shall be of no effect. No Reseller is authorized to make any amendment to this EULA.

    Survival. All provisions of this Agreement which by their nature are intended to survive the expiration or termination of this Agreement (including, without limitation, the following Sections: Termination, Usage Verification, Fees and Payment, Confidentiality and Data Privacy, Ownership, Intellectual Property, Limited Warranty; Remedies, Indemnification, Disclaimers, Limitations of Liability and General)

    Changes:  These Terms of Service may change from time to time.  SmartBear will post any changed or updated versions on the website and, if appropriate provide email notification or login notification of such update.

    Last Updated: April 16, 2018

     

    SMARTBEAR DATA PROCESSING ADDENDUM

    This SmartBear Data Processing Addendum, together with the Terms of Use that have been agreed upon between You and SmartBear, and the SmartBear Privacy Policy, is a legal agreement between You and SmartBear (as defined below) that governs your access to, and use of, our Hosted Services and Software, whether purchased directly from SmartBear or a Reseller (collectively, the “Agreement”).

    1.

    Definitions

    Capitalized terms used herein that are not otherwise defined shall have the meanings set forth in the Terms of Use or the Privacy Policy, as applicable.

    1.1

    In these Data Processing Addendum, the following terms shall have the meanings set out below:

    1.1.1

    Company Data” means (i) contact information of Company personnel who do business with SmartBear and user information of Company personnel who have SmartBear account access, such as email address and access credentials (login and password), content, materials, or other information You post or otherwise submit to the Services or Software; (ii) metadata or other information that is collected by virtue of Your interaction with the Services or Software or use of the Services or Software, including any on-premise use where data is transmitted to SmartBear; and (iii) information You provide to SmartBear in connection with support activities, including file or screen sharing.

    1.1.2

    Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law. For the purposes of these Data Processing Addendum, Company shall be considered the Controller. SmartBear, however, reserves the right to Process as a Controller anonymized, de-identified, or otherwise obfuscated information, including metadata and aggregated data, for research and analytics and to support and improve the Services or Software.

    1.1.3

    Data Protection Laws and Regulations” means laws and regulations applicable to the Processing of Personal Data under the Agreement, including applicable laws and regulations of the European Union, the European Economic Area and their member states, Switzerland, and the United Kingdom, including without limitation Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“General Data Protection Regulation” or “GDPR”) and EU Directive 2002/58/EC on Privacy and Electronic Communications (“e-Privacy Directive”) or, the superseding Regulation on Privacy and Electronic Communications (“e-Privacy Regulation”), once effective.

    1.1.4

    Processing operations”:  The Personal Data transferred will be subject to the following basic processing activities: Collection, recording, organization, storage, retrieval, consultation and use, in connection with the provision of services by SmartBear to Company.

    1.1.5

    Personal Data” means any information relating to an identified or identifiable natural person (also referred to herein as a “Data Subject”) that is Processed by SmartBear on behalf of Company pursuant to the terms of the Agreement. Unless otherwise specified by applicable law, hashed, anonymized, encrypted or otherwise obfuscated or de-identified IP addresses and email addresses, device IDs, or machine IDs, or other similarly obfuscated data, and city, regional or country level geo-location information, shall not be deemed to be Personal Data under these Data Processing Addendum.

    1.1.6

    “Personal Data Breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, Personal Data transmitted, stored or otherwise Processed.

    1.1.7

    “Proccess” “Processed” or “Processing” means any operation or set of operations performed upon Personal Data, whether or not by automatic means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

    1.1.8

    “Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller.  For the purposes of this Agreement, SmartBear shall be considered a Processor for Data of the Company (except as to aggregated, hashed, anonymized, encrypted or otherwise obfuscated or de-identified data that SmartBear uses to monitor the use and performance of the Services or Software, or for analytics, in which case SmartBear shall be a Controller).

    1.1.9

    Sensitive Data”:  Company is solely responsible for obtaining all required consents for Processing any special categories of data or sensitive data. The SmartBear Services and Software are designed to be for general use.  They are content-neutral and are not designed to meet the requirements for sensitive data such as classified military or defense information, law enforcement data, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person’s sex life or sexual orientation or any other data deemed to be sensitive by Company or applicable law.

    1.1.10

     “Subprocessor” means any Processor engaged by SmartBear in the provision of the SmartBear Services or Software to Company.

    2.

    Protection of Personal Data

    2.1

    Processing by SmartBear:  SmartBear shall Process Personal Data of Company: (i) to perform SmartBear’s obligations and as otherwise permitted under the Agreement and Data Protection Laws and Regulations, and (ii) as a Processor, in compliance with all applicable Data Protection Laws and Regulations.

    2.2

    Notices and Consents: Company shall comply with all applicable Data Protection Laws and Regulations, including: (i) providing all required notices and appropriate disclosures to all Data Subjects regarding Company’s, SmartBear’s, and any third parties acting on Company’s behalf, collection, use, Processing and transfer of Personal Data, (ii) obtaining all necessary rights and valid consents from the Data Subjects to permit Processing by SmartBear of Personal Data for the purposes of fulfilling SmartBear’s obligations, or as otherwise permitted, under the Agreement, and (iii) obtaining express consents from Data Subjects and complying with all applicable Data Protection Laws and Regulations, including GDPR Article 9, if the Company collects any Sensitive Data.

    2.3

    European Data: If Personal Data is transferred under the Agreement from the European Economic Area or Switzerland by Company as controller to SmartBear as Processor, or otherwise by SmartBear as Processor, to a jurisdiction which the European Commission or, where relevant, the Swiss Federal Data Protection and Information Commissioner, has determined does not ensure an adequate level of protection of Personal Data, then SmartBear will subscribe to an appropriate legal instrument for the international transfer of data (such as the EU-U.S. Privacy Shield Framework) or take such other measures as may be required under applicable Data Protection Laws and Regulations.

    2.4

    Subprocessors:

    2.4.1

    Company acknowledges and agrees that SmartBear may engage Subprocessors worldwide in connection with the provision of the SmartBear Services or Software.  However, personnel of SmartBear, whether employees or contractors, shall not be deemed to be “Subprocessors” for purposes of the following subsections in this Agreement (2.4.2 and subsequent sections).

    2.4.2

    Upon Company’s request or as otherwise required by applicable Data Protection Laws and Regulations, SmartBear shall make available information about Subprocessors who, to SmartBear’s actual knowledge, will Process Personal Data of Company, including their functions relevant to the performance of SmartBear Services or Software and locations. This information may be made available by SmartBear online at a URL provided by SmartBear to Company and may be updated by SmartBear from time to time.

    2.4.3

    When engaging any new Subprocessor, SmartBear will enter into a written agreement with each Subprocessor containing data protection obligations no less protective than those in these Data Processing Addendum or as may otherwise be required by applicable Data Protection Laws and Regulations. For the avoidance of doubt, SmartBear may continue to use those Subprocessors already engaged by SmartBear as at the date of this Agreement.

    2.4.4

    SmartBear will inform Company of any new Subprocessor who, to SmartBear’s actual knowledge, will be Processing Personal Data of Company and who is engaged during the term of the Agreement by updating the URL or Customer portal or account information or by email before the new Subprocessor processes Company Personal Data. If Company can reasonably show that the appointment of a new Subprocessor will have a material adverse effect on SmartBear’s ability to comply with applicable Data Protection Laws and Regulations, then Company must promptly notify SmartBear in writing within fifteen (15) business days thereafter of its reasonable basis for objection to the use of a new Subprocessor.  Upon receipt of Company’s written objection, Company and SmartBear will work together without unreasonable delay to recommend an alternative arrangement. If the following conditions apply: a) a mutually acceptable and reasonable alternative arrangement is not found; b) Company has a termination right under applicable Data Protection Laws and Regulations, and c) Company has provided prompt written notice under this Section, then Company may terminate the Service Agreement only with respect to those services that cannot be provided by SmartBear without the use of the new Subprocessor.  Unless prohibited by applicable Data Protection Laws and Regulations, in the event of such early termination by Company, SmartBear can retain or require payment for Services or Software through the end of Company’s current contract term for the terminated services.

    2.5

    Children; Sensitive Data: Company is responsible for compliance with all applicable Data Protection Laws and Regulations regarding its content, including without limitation those that regulate content directed toward children (as defined under applicable Data Protection Laws and Regulations; for example, under 13 years old in the United States or under 16 years old in certain other countries in accordance with applicable laws).

    3.

    Data Integrity

    3.1

    To the extent Company does not have the ability to access Personal Data to correct, amend, delete it, refrain from Processing it, or provide it in portable form, upon request from a Data Subject (to the extent that such Data Subject is entitled to such rights under applicable Data Protection Laws and Regulations) in connection with the SmartBear Service, SmartBear will assist Company with any reasonable request to do so.  If a Data Subject should apply directly to SmartBear to request access to, correction or deletion of Personal Data in connection with the services provided to Company by SmartBear, SmartBear will promptly notify Company of the request and will provide Company with reasonable assistance in processing any such request.

    4

    Investigations and Audits

    4.1

    SmartBear shall reasonably assist and support Company in the event of an investigation by a data protection regulator or similar authority, if and to the extent that such investigation relates to the collection, maintenance, use, processing, or transfer of Personal Data under this Agreement.

    4.2

    If required by applicable Data Protection Laws and Regulations, then, upon reasonable notice (not less than thirty (30) days in advance) and at mutually agreed times no more than once per year, SmartBear shall provide to Company, its authorized representatives, and/or independent inspection body designated by Company (i) access to records of SmartBear’s Processing of Personal Data; and (ii) reasonable assistance and cooperation of SmartBear ’s relevant staff for the purpose of auditing SmartBear’s compliance with its obligations under this Agreement.  SmartBear reserves the right, in its sole discretion, to restrict access to its proprietary information, including but not limited to its network architecture, internal and external test procedures, results and remediation plans. Company will use best efforts to minimize disruption to the SmartBear Service or business operations.  Company further agrees that (i) personnel (or designated third parties) performing said audits will be bound by confidentiality obligations; (ii) all findings will be deemed SmartBear’s Confidential Information; (iii) Company will share all findings with SmartBear; and (iv) SmartBear will classify and remediate findings in accordance with its risk management program.

    4.3

    Taking into account the nature of the Processing and the information available to SmartBear, SmartBear shall, upon Company’s written request, provide Company with reasonable cooperation and assistance needed to fulfil Company’s obligations under applicable Data Protection Laws and Regulations to carry out a data protection impact assessment related to Company’s use of the SmartBear Services or Software. Such cooperation and assistance is provided to the extent Company does not otherwise have access to the relevant information, to the extent such information is available to SmartBear, and that it will not compromise the security of SmartBear’s systems or the data of other SmartBear customers. To the extent required by applicable Data Protection Laws and Regulations, SmartBear shall provide reasonable assistance to Company in respect of Company’s prior consultations with the Supervisory Authority.

    5.

    Notice of Non-Compliance

    5.1

    If required by applicable Data Protection Laws and Regulations, in the event that SmartBear is unable to comply with its obligations stated in these Data Processing Addendum, SmartBear shall promptly notify Company, and Company may take any one or more of the following actions: (i) suspend the transfer of Personal Data to SmartBear; (ii) require SmartBear to cease Processing Personal Data; or (iii) demand the return or destruction of Personal Data.  Unless Company has additional rights or remedies under applicable law, this is the full extent of Company’s remedies.

    6.

    Security

    6.1

    SmartBear will ensure that all individuals with access to Personal Data are subject to written obligations of confidentiality.

    6.2

    Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of Processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, SmartBear shall in relation to the Company Personal Data implement appropriate technical and organizational measures to ensure a level of security appropriate to that risk, including, as appropriate, the measures referred to in Article 32(1) of the GDPR.

    6.3

    In assessing the appropriate level of security, SmartBear shall take account in particular of the risks that are presented by Processing, in particular from a Personal Data Breach.

    6.4

    If SmartBear knows of a Personal Data Breach, SmartBear shall (i) promptly, and without undue delay following SmartBear’s discovery thereof, notify Company of such Personal Data Breach, (ii) investigate, remediate, and mitigate the effects of the Personal Data Breach, (iii) reasonably cooperate with Company’s investigation of the Personal Data Breach to the extent that such cooperation does not compromise SmartBear’s security, (iv) take any additional actions and provide any additional cooperation with Company as may be required under applicable Data Protection Laws and Regulations, and (v) upon resolution, provide Company with a written incident report describing the breach, actions taken during the response, and plans for future actions to prevent a similar breach from occurring in the future.

    7.

    Legal Effect and Termination

    7.1

    Upon termination or expiration of the Agreement or these Data Processing Addendum, or at any time at Company’s reasonable written request, SmartBear shall: return to Company or destroy all Personal Data, except that, to the extent permitted by applicable Data Protection Laws and Regulations, SmartBear may retain a copy of any Personal Data (or permitted portion thereof) for SmartBear’s business records (including for billing and auditing purposes), for research, analysis and support purposes, and as otherwise required for compliance with applicable Data Protection Laws and Regulations.

    7.2

    Unless earlier terminated by either party in accordance with the Agreement, these Data Processing Addendum will terminate automatically when the Agreement terminates or expires, without further action required by either party.

    Changes:  This Data Processing Addendum may change from time to time.  SmartBear will post any changed or updated versions on the website and, if appropriate provide email notification or login notification of such updates.

    Updated April 16, 2018

  • Flickr Privacy Policy

    Date of Last Revision: April 20, 2018

    FLICKR USERS: As of April 19, 2018, Fantastic Fox, Inc. has acquired Flickr. This Privacy Policy will apply to information collected through your use of the Services including information that was transferred to us in the acquisition. SmugMug has no control over and no responsibility for any use of your personal information by previous owners or operators of Flickr.

    SmugMug, Inc. and its subsidiaries, including Fantastic Fox, Inc. (“SmugMug”“we” or “us”), are passionately committed to the privacy of our customers.

    This Privacy Policy (“Privacy Policy”) explains how information about you is collected, used and disclosed by SmugMug. This Privacy Policy applies to information we collect when you use the Flickr services, including the Flickr mobile application and Flickr website (collectively, the “Services”). This Privacy Policy applies only to the services offered by the Flickr division of SmugMug (“Flickr”) and do not apply to any other services offered by SmugMug. Please see https://www.smugmug.com/about/privacy for the privacy policy applicable to those services.

    We may change this Privacy Policy from time to time. If we make changes, we will notify you by revising the date at the top of the policy and, in some cases, we may provide you with additional notice (such as adding a statement to our homepage or sending you an email notification). We encourage you to review the Privacy Policy whenever you access the Services to stay informed about our information practices and the choices available to you.

    Collection of Information

    Information You Provide to Us

    We collect information you provide directly to us. For example, we collect information when you:

    • Create an account and subscribe to our digital photography, media hosting or other services;
    • Purchase photo prints or other products or services;
    • Participate in a survey, contest or sweepstakes;
    • Contact us for any reason, such as to request help with the Services or to provide us with your comments/feedback; or
    • Post information in connection with your photos and galleries (e.g., in a photo caption) or in other forums or interactive areas of the Services.

    The types of information we may collect include your name, email address, postal address, phone number, credit card information and other information you choose to provide.

    Information We Collect Automatically When You Use the Services

    When you access or use our Services, we automatically collect information about your use of the Services, including:

    • Log Information: We log information about your use of the Services, including the type of browser you use, access times, pages viewed, your IP address and the page you visited before navigating to our Services.
    • Device Information: We collect information about the computer or mobile device you use to access our Services, including the hardware model, operating system and version, screen resolution, color and depth, device identifiers and mobile network information.
    • Location Information: With your consent, we may collect information about the location of your device. For example, we use your location information to provide you with the option to add POI data to your photo. For more details, please see “Your Choices” below.
    • Photo Location Information: When you upload a photo with geographical data (i.e. from a mobile device) or manually geotag your photo, we collect the location of that photo. With your consent, we collect information about your location if you take a photo within the Flickr mobile application to add to your photo’s metadata.
    • EXIF Data: Exchangeable Image File Format (“EXIF”) data is a record of the settings and other relevant metadata inserted by a digital camera when you take a photo or video such as camera type, aperture, shutter speed, focal length, and location, among other information. Unless you turn off EXIF data on your camera or device or remove it from the picture before uploading to Flickr, Flickr receives and stores EXIF data.

    Image Recognition Technology

    We use image recognition algorithms to find visually similar images as well as to help you organize your photos and make it easier to search images. This technology might identify and tag scenes, actions, objects, or public figures.

    Information Collected by Cookies and Other Tracking Technologies

    We use various technologies to collect information, including cookies, web beacons and similar technologies. Cookies are small data files stored on your hard drive or in device memory that help us to improve our Services and your experience, see which areas and features of our Services are popular and count visits. We use cookies to keep you logged in to the Services, to count the number of unique computers using the Services and to record your user preferences. We may also collect information using web beacons (also known as “tracking pixels”). Web beacons are electronic images that may be used in our Services or emails and help deliver cookies, count visits, understand usage and campaign effectiveness and determine whether an email has been opened and acted upon. For more information about cookies, and how to disable them, please see “Your Choices” below.

    Information We Collect From Other Sources

    We may also obtain information from other sources and combine that with information we collect through our Services. For example, if you create or log into your account through a social media site, we will have access to certain information from that site, such as your name, account information and friends lists, in accordance with the authorization procedures determined by such social media site. We may receive updated information about you, such as an updated billing address, from the financial institution issuing your credit card in connection with our billing for the Services.

    Use of Information

    We may use information we collect to provide and improve our Services, to deliver the products and services you order, to facilitate contests, and to communicate with you. We also use the information we collect to understand how users interact with our services and to personalize our Services.

    Sharing of Information

    We may share information about you as follows or as otherwise described in this Privacy Policy:

    • With vendors, consultants and other service providers who need access to such information to carry out work on our behalf;
    • In response to a request for information if we believe disclosure is in accordance with any applicable law, regulation or legal process, or as otherwise required by any applicable law, rule or regulation;
    • If we believe your actions are inconsistent with the spirit or language of our user agreements or policies, or to protect the rights, property and safety of SmugMug or others;
    • In connection with, or during negotiations of, any merger, sale of company assets, financing or acquisition of all or a portion of our business to another company; and
    • With your consent or at your direction, including if we notify you through our Services that the information you provide will be shared in a particular manner and you provide such information.

    We may also share aggregated information that does not directly identify you.

    Social Sharing Features and Third-Party Integrations

    The Services may offer social sharing features and other integrated tools which let you share actions you take on our Services with other media, and vice versa. The use of such features enables the sharing of information with your friends or the public, depending on the settings you establish with the entity that provides the social sharing feature. For more information about the purpose and scope of data collection and processing in connection with social sharing features, please visit the privacy policies of the entities that provide these features.

    Additionally, you may give certain third party apps different levels of permissions to interact with your account to take advantage of things like photo editing tools. If you want to stop using one of these apps and revoke your permission, click the “Remove Permission” link under “Sharing & Extending” on your account page and remove that permission.

    Advertising and Analytics Services Provided by Others

    We may allow others to serve advertisements on our behalf across the Internet and to provide analytics services. These entities may use cookies, web beacons, mobile device identifiers, and other technologies to collect information about your use of the Services and other websites, including your IP address, web browser, pages viewed, time spent on pages, links clicked and conversion information. This information may be used by SmugMug and others to, among other things, analyze and track data, determine the popularity of certain content, deliver advertising and content targeted to your interests on our Services and other websites and better understand your online activity. For more information about interest-based-based ads, or to opt out of having your web browsing information used for behavioral advertising purposes, please visit www.aboutads.info/choices. Your device may also include a feature (“Limit Ad Tracking” on iOS or “Opt Out of Interest-Based Ads” or “Opt Out of Ads Personalization” on Android) that allows you to opt out of having certain information collected through apps used for interest-based advertising purposes.

    Security

    Flickr takes reasonable measures to help protect information about you from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction.

    Data Retention

    We store the information we collect about you for as long as is necessary for the purpose(s) for which we originally collected it. We may retain certain information for legitimate business purposes or as required by law.

    Data Transfers

    To provide the Services, we may transfer your information to SmugMug servers in the United States or other countries. When we transfer information from the European Economic Area (“EEA”) to countries that have not been deemed to provide an adequate level of protection, we employ data processing agreements based on the Standard Contractual Clauses to help ensure that your data is protected wherever it is transferred. You may request a copy of these clauses by contacting us at help@flickr.com.

    Your Choices

    Account Information

    You may update, correct or delete information about you at any time by logging into your online account or emailing us at help@flickr.com. You may delete your account or terminate your subscription pursuant to Flickr’s Terms of Use, but note that we may retain certain information as required by law or for legitimate business purposes.

    Privacy and Permissions Settings

    In your account “Privacy & Permissions” tab under “Settings”, you can control who is able to see different parts of your profile, including email address, IM names, real name, and current city. If you choose to use your real name (or include any identifying information as part of your “screen name”) that information will be publicly displayed through the Services. Therefore, please use caution in determining how you wish to be identified in using the Services.

    Deleting Photos

    You can delete individual photos that you have on Flickr by selecting the photos that you wish to delete, then clicking the delete button. Or you can delete groups of photos using batch operations.

    Photo Sharing Features

    In your “Privacy & Permissions” setting, you can choose to make your photos default to public for anyone to access, restrict access to a limited number of other Flickr users, or keep those photos private so only you can access them. If you do not change your settings, your photos will be public by default. On each photo page, you will also find more granular controls to change each photo setting. Your Guest Pass history allows you to manage Guest Passes you have created for sharing your photos with others. In your “Privacy & Permissions” setting, you may also hide photos or your profile from searches on flickr.com as well as from searches on 3rd party sites.

    Auto-Uploadr Feature

    If you turn on the Auto-Uploadr feature on mobile, photos and videos from your mobile device camera roll will be automatically uploaded to Flickr. These photos and videos will be stored as private on Flickr until you choose to share them. You can turn off auto-upload at any time in your mobile app settings.

    EXIF Information

    By default, Flickr will display a link showing EXIF data about photos or video you upload. The link shows on all your individual photo pages, and displays the make & model of the camera you used to take the shot. You can elect to hide this link in “Settings” under the “Privacy & Permissions” tab.

    Some cameras can store GPS (location) coordinates in a photo’s EXIF header. Flickr imports that data and if you choose, Flickr can display that data publicly. This setting can be changed through your account “Privacy and Permissions” tab.

    Location Information

    When you first launch any of our mobile applications that collect location information, you will be asked to consent to the application’s collection of this information. If you initially consent to our collection of location information, you can subsequently stop the collection of this information at any time by changing the preferences on your mobile device.

    Geofences

    A geofence is a hotspot on a map that has special default geo privacy settings. These are useful for locations such as “home” or “school” that you would like to make more private than your global default. Click here to create your geofences and manage your geo preferences to decide who can see the location of your photos by default. Further, you can change the geo preferences setting on individual photos by clicking on the map to the right of each photo.

    Cookies

    Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove or reject browser cookies. Removing or rejecting browser cookies does not necessarily affect third party flash cookies used in connection with our Services. To delete or disable flash cookies please visit www.adobe.com/products/flashplayer/security for more information. Please note that if you choose to remove or reject cookies, this could affect the availability and functionality of our Services

    Promotional Communications

    You may opt out of receiving promotional communications from Flickr by following the instructions in those communications or by emailing us at help@flickr.com. If you opt out, we may still send you non-promotional communications, such as those about your account or our ongoing business relations.

    Email Notifications

    Visit your Flickr account information area to edit your Flickr email notification settings.

    Residents of the European Economic Area

    If you are a resident of the EEA, you have certain rights and protections under the law regarding the processing of your personal information.

    Legal Basis for Processing

    If you are a resident of the EEA, when we process your personal data we will only do so in the following situations:

    • We need to use your personal information to perform our responsibilities under our contract with you (e.g., processing payments for and providing the Services you have requested).
    • We have a legitimate interest in processing your personal data. For example, we may process your personal data to send you marketing communications, to communicate with you about changes to our Services, and to provide, secure, and improve our Services.

    Data Subject Requests

    If you are a resident of the EEA, you have the right to access personal information we hold about you and to ask that your personal information be corrected, erased, or transferred. You may also have the right to object to, or request that we restrict, certain processing. If you would like to exercise any of these rights, you can log into your account and use the settings and features explained above or you may contact us as indicated below.

    Questions or Complaints

    If you are a resident of the EEA and have a concern about our processing of personal information that we are not able to resolve, you have the right to lodge a complaint with the data privacy authority where you reside. For contact details of your local Data Protection Authority, please see: http://ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm.

    Contact Us

    We welcome your feedback. If you have any comments or concerns about this Privacy Policy or would like to contact us for any reason, you may reach us via email at help@flickr.com or by mailing us at:

    ATTN: Privacy Policy
    SmugMug Inc.
    Suite 200
    67 E Evelyn Avenue
    Mountain View, CA 94041, USA
    650-265-0396

  • SPICEWORKS PRIVACY POLICY

    Last Updated: May 22, 2018

    This Spiceworks Privacy Policy describes how Spiceworks Inc and its subsidiary group companies (together the “Spiceworks Group” or “we” or “us”) treat Personal Data that you provide or we collect when you use any of our services (listed below).

    Our service consists of (a) our website located at www.spiceworks.com and community.spiceworks.com, and any subdomains of thereof (collectively, the “Site”), (b) any web-based service made available to you by or on behalf of Spiceworks via the Site (each, a “Web-based Offering”), (c) our downloadable or cloud based software applications (each, an “App”) and IT tools (each, a “Tool”), and (d) all  content published on our Site  (other than user content) (the “Content”). The Site, the Web-based Offerings, the Apps, the Tools, and the Content are referred to collectively in this Privacy Policy as our “Service” and each a “Service”. Additional features of portions of the Service are described in our Terms of Use (the “Terms of Use”), which may be found at www.spiceworks.com/terms (or any successor URL).

    Personal Data” means any information that can be used to identify, contact, or locate you, such as: your name, address, email address, or phone number, but does not include any information that has been fully anonymized so that a specific individual can no longer be identified from it.

    Please take a moment to read the following to learn more about our information practices, including what type of Personal Data is gathered, how the Personal Data is used and for what purposes, to whom we disclose Personal Data, and how we safeguard your Personal Data.

    Our privacy practices may vary among the countries in which we operate to reflect local practices and legal requirements (“Applicable Data Protection Laws”).

    According to Applicable Data Protection Laws, you may be entitled to know the identity of your “Data Controller” i.e. the legal entity which determines why and how your personal data is processed. In most cases, this will be Spiceworks, Inc. In the event another member of the Spiceworks Group is responsible for processing your Personal Data as a Data Controller we will make you aware of this when you purchase the relevant product or service from us.

    Within the Spiceworks Group, our most important asset is our relationship with our user community. We are committed to maintaining the confidentiality, integrity, and security of the Personal Data of our users. We are proud of our privacy practices and want you to know how we protect your information submitted or collected through your use of our service.

    WHAT INFORMATION WE COLLECT

    Account Information. When you sign up for a Spiceworks Account, we ask you for Personal Data such as your name, email address and company name.

    Social Networking Site Information. For your convenience, we may allow you to register to join Spiceworks by using log in credentials from third-party social networking sites (“SNS”) such as Facebook, Google and LinkedIn. If you register via an SNS, the SNS may provide us with some of the Personal Data you have provided to the SNS.

    Profile Information and User Contributions. You may choose to create a public Spiceworks profile, a project page or a profile page, and to share Personal Data or make user contributions as part of the same. Please be aware that any Personal Data or contribution you choose to share in this way, will be published, and made generally available to other users and third parties via the Site. This user generated content is publicly available and we are not responsible for the privacy practices of the other users or third parties who may view and use that information. If you do not want your Personal Data or user contributions to be accessible in this way, please do not post it. If you would like to contribute to our IT community via a Spiceworks profile, a project page or a profile page, but do not want to be identifiable to other users, you may use an alias or other pseudonym to protect your identify, provided that the information you provide as part of your Account Information must always be correct, accurate and up-to-date.

    Customer Support. We may collect Personal Data through your communications with our customer support team. Please ensure that no sensitive personal data is submitted in connection with your requests for support (for example, health information, political or religious beliefs, information about minors, etc.).

    Clickstream Data. We and our third party service providers may automatically collect certain information from your device or web browser when you use parts of the Service (such as the Site and the Tools) to help us understand usage, what is of interest to you and how to provide you more relevant advertising and content.  We refer to this information as Clickstream Data.  This includes, for example, your IP address, mobile device identifier or other unique identifier, browser and computer type, date and time of access, the previous Web page that you came from and the page you go to next after leaving the Service, each of our pages that you visit and how you interact with advertising and our content within the Service.  The Clickstream Data we collect generally does not identify you as an identifiable person, but if it does, we will treat it as Personal Data. If your browser has a “private browsing” mode you may be able to block this information from being sent to Spiceworks, but in some cases this may impact your ability to use the Service.

    App Data. As part of our Service, we offer Apps to help IT pros do their jobs every day.  We refer to this information as App Data.  For example, each installed copy of the Inventory app includes a unique application number. If you install the application, this number and a message indicating whether the installation succeeded or failed, is sent back to Spiceworks. Also, when the app automatically checks to see if a new version is available, the current version number and the unique application number are sent to Spiceworks. The unique application number is required for the app to function properly and cannot be disabled. We also collect information you input into this app and other Apps in connection with your use of those offerings.

    In addition, certain Apps contain features that are used to automatically transmit certain content and information about your environment and that information is transmitted back to Spiceworks and, where possible, then anonymized so that it no longer reflects or references an individually identifiable user.   This includes information about equipment on which the app was installed, the number and types of devices in your environment, warranty information related to devices in your environment and server information. If Personal Data is included on that equipment or included in other information collected by a different App, such as a Helpdesk ticket for example, it may be sent to or otherwise collected by Spiceworks. In general, we use App Data to better understand how the Apps are used, improve the functionality of the Apps and to better understand our users and their needs.  We also utilize information in end user tickets generated by the Helpdesk App to assist you with specific requested support issues and to better understand the kinds of issues our users are dealing with on a daily basis.  Some Apps incorporate software from third parties or are hosted by third parties and if you chose to use those Apps, the use of those Apps and the information gathered by them are subject to the terms and conditions and privacy policy of that third party.

    For more information about a particular App or Tool and the data it collects, please visit community.spiceworks.com/support.

    Payment Information. If you elect to use paid features of the Service, you may need to provide Personal Data to our third-party payment processors, such as your credit card number.

    OUR USE OF COOKIES AND RELATED TECHNOLOGIES

    Spiceworks uses cookies, which are alphanumeric identifiers in the form of text files that are stored on your computer, to make the Service easier to use, to improve our advertising, and to protect you and Spiceworks. For example, we use them to store your login ID (but never your password) to make it easier for you to login whenever you come back to the Site. We also use them to remember the last application page you visited and advertisements you’ve already seen. You can remove or block cookies using the settings in your browser, but in some cases that may impact your ability to use the Service.

    Many of the advertisements you see when using the Service have been placed by third parties. These third parties may choose to use their own cookies for the purposes of collecting information relating to the viewing of their advertising. This Privacy Policy is intended to cover the use of cookies implemented by Spiceworks and does not describe third party cookies in detail or their privacy policies.

    We use a third-party service provider to serve ads on our behalf across the Internet and sometimes on our site. They may collect anonymous information about your visits to our Site and your interaction with our products and services.

    A tracking pixel (also referred to as a clear gif, pixel tag or single pixel tag) is a graphic with dimensions of 1×1 pixels that is loaded when a user visits a website or opens an email. A pixel is used in conjunction with cookies to help us manage and monitor our online advertising and wider business arrangements with third parties, to measure and analyze site usage and activity and to improve the quality of the Service. In certain circumstances, we share IP addresses that are captured by pixels to help our advertisers analyze the efficacy of their campaigns. This also allow us to aggregate anonymous information relating to advertising and website usage. For example, the type of information collected includes information relating to page views. Pixels may be used to recognize third party cookies and inform us and/or third parties of which advertisement or link brought you to the Site, allowing us to monitor the business relationships with third parties.

    We also work with a third party to monitor certain pages of our Site for the purpose of reporting Site traffic and other advertising statistics. Where authorized by us, this third party may use cookies and/or other monitoring technologies to compile anonymous statistics about our Site visitors. No Personal Data is transferred to this third party.

    In addition, we use Google Analytics to monitor and analyze Service usage.  More information on how Google uses data when you use services like ours can be found at www.google.com/policies/privacy/partners.

    HOW AND WHY WE USE PERSONAL DATA

    We collect information, which may include Personal Data, because it helps us deliver the absolute best user experience we possibly can. It is one of our core beliefs that we can only achieve that goal with your help and by customizing your experience. Gathering this information enables us to connect you with other people interested in technology like yourself and technology vendors, provide you with convenient and accurate information about discussion topics you may be interested in, and bring you timely and relevant information about the products and services that you may need. In addition, this information helps us keep you informed on the latest product and service announcements, software updates, and support information in a timely fashion. Most importantly, this information allows us to tune the product experience over time (including showing your more relevant content and ads), optimizing the Service based on your feedback and how you actually use the Service.

    More specifically, we use your Personal Data in the following ways:

    Internal and Service-Related Usage. We use data that you input into, or that is collected by, the Service to perform the services requested in connection with those portions of the Service. For example, if you input inventory data into one of the Web-based Offerings, we will use that information to display that inventory data to you when you use such Web-based Offering. If you use a Tool to obtain information on a system in your network, we may store that data and provide you or other authorized users at or associated with your organization access to it via the Service. We use your payment information (through-third-party payment processors) to collect payment for the applicable portions of the Service. We may store and combine the Personal Data you submit or we collect via any part of the Service with information from other Spiceworks services or third parties (including SNS) in order to deliver the Service, to provide you with a better experience and to improve the quality of our services.

    We may use data that you input into, or that is collected by, the Service to derive anonymized or aggregate data about your current IT environment, or your company operations, and may use this data to display customized content and advertising to you, and/or compare your environment configuration to those of the broader user community or for other purposes. Such information does not identify you individually.

    We use Clickstream Data to analyze trends, to administer the Service, to track users’ movements around the Site, to gather demographic information about our user base as a whole, and to operate and improve the Spiceworks technologies and services. We may use and retain any data we collect to provide and improve our services.

    Displaying your profile information or user contributions to Other Users. Personal Data you choose to include in your public profile and/or any user contributions you post will be publicly available and can be read, collected, or used by other individuals, including to send you unsolicited messages. With the exception of your email address, which is never viewable, some of the information provided from your SNS may be viewable by persons who visit Spiceworks, which you can control by editing your Spiceworks profile. We cannot control the actions of other users of the Service with whom you may choose to share your user contributions or who may view your profile information. While we have restrictions in our Terms of Use, we cannot and do not guarantee that your user contributions or profile information will not be viewed or used inappropriately as they are publicly accessible. We are not responsible for the privacy practices of the other users who will view and use the posted information. However, you always have a choice as to whether (and to what extent) you share information as part of your public profile or as part of posts in the Community.

    Spiceworks-Related Communication. We use your Personal Data to contact you about administrative notices, application & network alerts, community activity, product updates, offers and promotions, and general news about Spiceworks and our partners. This communication may be in the form of an alert, email or possibly a phone call, where permitted under applicable law. The frequency of this type of communication varies based on the type of notification. For example, alerts are delivered as they occur, while our product newsletter is generally delivered monthly. You can manage your email preferences with respect to content and delivery or you may unsubscribe from all emails from us. You can also email us at support@spiceworks.com regarding your communication preferences.

    Advertising. Our current business model is based on free access and usage of the Service by IT pros and we earn revenue by charging our IT vendor partners who interact with IT pros through our Service in a number of ways, including through ads.  Like most other websites you probably use, in order to serve you those ads and to make them relevant to you, we need to use the data we know about you.  We also may share information we have collected to show our IT vendor partners how effective their campaigns performed or how to make their campaigns more effective.  While we may pass IP address information in pixels or cookies, no information that personally identifies you is shared with our IT vendor partners as part of this process but they may, under certain circumstances, see information about what companies are involved in our user community such as company names, sizes and industry. They do not know, and we do not tell them, your name, phone number, address, email address or any information that may personally identify you.

    Customer Testimonials. From time-to-time we may ask individual users to participate in customer testimonials posted on our website. We never post these testimonials without their express permission. Any information provided as part of these testimonials is used solely for the purpose of these testimonials and is not used in any other way. If you wish to update or delete your testimonial, you can contact us at support@spiceworks.com.

    Search Engines. Certain Personal Data may also be accessible via search engines or similar services. For example, if you make a post on one of our community forums, your profile information and the content of the posts you make may accessible through a Google search.

    We consider that the processing we undertake above (or mentioned elsewhere in this Privacy Policy) is either:

    • necessary for the performance of a contract to which you are a party (for example, where we provide a requested Service to you);
    • necessary for us to take steps, at your request, to enter into such a contract (for example, where you make an enquiry about receiving a Service from us);
    • necessary for the purposes of our legitimate interests or those of a third party and not overridden by the interests or fundamental rights and freedoms of any data subject (for example, where we desire to provide improved client customer service and support as well as enhancing and developing our products and services, and the IT-systems and processes used to support such products and services, and the marketing and sale thereof); or
    • necessary for compliance with a legal obligation to which we are subject. For example, under applicable law, we may be obliged to:
      • secure and maintain technical and organizational measures to protect the security of your data;
      • investigate and report any (suspected) breaches of those technical and organizational measures.
      • comply with legal and regulatory obligations, including, but not limited to, complying with minimum retention periods for certain types of data.

    Where we do not consider that we can rely on a legal basis for processing that is set out above, then we will ask for your consent before processing your information. For example, we will ask for your consent before publishing your customer testimonial on our Site. Another example is where you sign up for an event organized by Spiceworks, we may ask for your consent to share your contact details with the sponsor of the event, who may wish to contact you about products and services which may be of interest to you.  You can tell we are asking for consent because we will describe the request and have a link to a privacy policy.

    HOW WE SHARE INFORMATION

    Service Providers. We may use third party service providers to help us deliver parts of the Service and to improve the Service. For example, we use a third party service to manage our email marketing campaigns. This system stores your name, email address and the date on which you registered. When we use third parties to assist us in processing your Personal Data, we require that they comply with appropriate confidentiality and data protection and security measures.

    Clickstream Data. We may share Clickstream Data with our third party service providers to help us deliver and improve parts of the Service and when we do so we ensure they comply with appropriate confidentiality and data protection and security measures.  We also share Clickstream Data with our partners such as IT vendors who want to better understand our user base and what interests them and what kind of marketing materials might be the most relevant to them, but (as explained elsewhere in this policy) we ensure that any Clickstream Data that we share with our business partners does not identify you as an individual. We share this kind of data so that your experience in our Service is customized and the most relevant to you and your needs.

    App Data. We may share App Data with third parties so long as it does not identify any specific individual or disclose Personal Data about you or your end users (such as the name of someone in your organization who submitted a Helpdesk ticket). This information allows us and our advertisers to understand business technology needs and trends.

    Marketing. We may share firmographic data and anonymous aggregated information with third parties outside of Spiceworks, such as advertisers and market research firms approved by Spiceworks, for their marketing and promotional purposes. For example, we share with advertisers the breakdown of our user community by company size and industry and, in certain circumstances, the names of companies that are represented within our user community. This allows the advertisers to try to reach audiences that may be interested in their products or services. When we share this information, it does not identify you individually or disclose any of your Personal Information.

    When you sign up to a Spiceworks event. When you sign up for a Spiceworks event, such as a webinar, we will ask for your consent to share your contact information with the sponsor of the event so that they may contact you with products and service which they feel may be of interest to you. 

    As Required by Law and Similar Disclosures. We reserve the right to disclose your Personal Data as required by law and when we believe that disclosure is necessary to protect our rights and/or to comply with a judicial proceeding, court order, or legal process served on the Service. We may also share Personal Data with third parties in limited circumstances, including when preventing fraud or imminent harm and ensuring the security of our network and services.

    Merger, Sale, or Other Asset Transfers. If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of our assets, or transition of service to another provider, your information may be sold or transferred as part of such a transaction as permitted by law and/or contract.

    YOUR RIGHTS AND YOUR CHOICES

    Under Applicable Data Protection Laws, you may have the right, in certain cases, to request access to your Personal Data that we process, to request details about such Personal Data, including the purposes and potential recipients of this data, to have such Personal Data rectified or deleted, to have the processing thereof restricted, or to object to the processing of your Personal Data, as well as to request a copy of your Personal Data in a standardized format so that it can be provided to another vendor.

    You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you or by contacting us at any time using the contact details below.

    You may also have the right to lodge a complaint with your national data protection authority or other public authority governing the protection of your personal information.

    Further rights are covered in the EU Standard Contractual Clauses referenced above.

    In addition, you may decline to provide Personal Data to us and/or refuse cookies in your browser, but if you do (or if successfully object to the processing of your Personal Data by us, or successfully request that such Personal Data be deleted) some if not all of our features or services may not function properly as a result.

    To exercise these rights, please follow the steps set out below, or contact us via email at pii@spiceworks.comor send us a notice in writing, addressed to the Data Protection Manager at Spiceworks, Inc., 3700 N. Capital of Texas Highway, Suite 100, Austin, TX 78746, USA.

    You can manage your email subscriptions at any time by editing your personal profile at the following URL: https://community.spiceworks.com/profile/subscriptions

    Spiceworks relies on Google Services for display of ads in our Service. To Opt-Out of any targeted ads based on your activity on our site, please utilize the following URL: http://www.google.com/policies/technologies/ads/.

    If your Personal Data changes, you may update it using the “Update Profile” link at the bottom of the email newsletter. When you update information, we may keep a copy of the prior version for our records. If you have specific requests about your Personal Data, you may email us at pii@spiceworks.com.

    You have control over your Spiceworks user profile and related privacy settings and can edit such to remove information that you do not want others to see publicly via the Site. You can manage your personal profile information by visiting the URL: https://community.spiceworks.com/profile. The information you post in your project pages or profile pages is publicly available and there are not any privacy settings on those pages so if you do not want certain information to be publicly available, do not post it to your project pages or profile pages.

    We may access, preserve, and disclose your Personal Data, other account information, and content, including after you terminate usage of the Service, if we believe doing so is required or appropriate to: comply with our legal obligations, resolve disputes, respond to your requests, or protect yours’, ours’ or others’ rights, property, or safety.

    If you wish to terminate your community log-in, contact us at support@spiceworks.com.

    To uninstall Apps and Tools (including related agents), please refer to the then-current documentation for the applicable App or Tool. When you uninstall, generally the App or the Tool and all its associated data files (e.g., data on workstations collected by Tool-related agents, help desk tickets, etc.) will be deleted. Once deleted it cannot be recovered.

    INFORMATION CONFIDENTIALITY AND SECURITY

    By using the Service or providing Personal Data to us, you agree that we may communicate with you electronically regarding your use of the Site. If we learn of a security system’s breach, we may attempt to notify you electronically by posting a notice on our Help and Support Security Center or sending an email to you. You may have a legal right to receive this notice in writing. To receive free written notice of a security breach (or to withdraw your consent from receiving electronic notice), please notify us at pii@spiceworks.com.

    INTERNATIONAL USERS

    Spiceworks, Inc. is a United States company and processes Personal Data on servers in the United States of America and in other countries. In some cases, we may process Personal Data on a server outside your own country. If you are visiting from the European Union or other regions with laws governing data collection and use, please note that by using our Site, making an enquiry, availing yourself of any Service or otherwise providing us with Personal Data you will be exporting Personal Data outside of the EEA to the United States and processing it globally.

    Our Terms of Use incorporate the EU Standard Contractual Clauses prepared for transfers from data controllers to data processors, or data controllers to data controllers (depending on these circumstances of the transfer) which is a specific contract approved by the European Commission which give personal data the same protection it has in Europe (“Model Clause Agreement”). The template text is available in various languages at this link: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en.

    Where we are responsible for transferring your Personal Data out of the EEA (and where we are required to do so under Applicable Data Protection Law) we will ensure a similar degree of protection is afforded to it by ensuring at least one of the safeguards specified under applicable European data protection law is implemented, which may include that:

    • We will only transfer your Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the European Commission;
    • Where we use certain service providers, we may appoint them on terms which reflect a Model Clause Agreement; or
    • Where we use providers based in the US, we may transfer data to them if they are part of the EU-US Privacy Shield which requires them to provide similar protection to personal data shared between the Europe and the US.

    RETENTION OF DATA

    Where you choose to create a public Spiceworks profile, a project page or a profile page, or post a user contribution, we generally do not delete or disable any information contained in such page, profile or contribution until and unless you ask us to. To request this, please contact us via email at pii@spiceworks.com or send us a notice in writing, addressed to the Data Protection Manager at Spiceworks, Inc., 3700 N. Capital of Texas Highway, Suite 100, Austin, TX 78746, USA.

    In all other cases, your Personal Data will be stored by Spiceworks for as long as necessary in order to fulfill the purposes set out in this Privacy Policy and to comply with minimum retention periods under applicable law. Unless otherwise specified in our Terms of Use, or notified to you in writing, we generally aim to put this Personal Data beyond further use within 12 months after the end of the provision of any Service to you. However, you can request earlier deletion by contacting us via email at pii@spiceworks.com or send us a notice in writing, addressed to the Data Protection Manager at Spiceworks, Inc., 3700 N. Capital of Texas Highway, Suite 100, Austin, TX 78746, USA.

    IMPORTANT INFORMATION FOR CALIFORNIA RESIDENTS-YOUR CALIFORNIA PRIVACY RIGHTS

    Spiceworks does not share your Personal Data with third parties for their direct marketing purposes, as defined by California Civil Code Section 1798.83, unless we give you choice (opt-in or opt-out) before sharing with those third parties.

    If you are a California resident and you have questions about our practices with respect to sharing information with third parties for their direct marketing purposes and your ability to exercise choice, please contact us at Spiceworks, Inc., c/o General Counsel, 3700 N. Capital of Texas Hwy, Suite 100, Austin, TX 78746. You must put the statement “Your California Privacy Rights” in the body of your request, as well as your name, street address, city, state, and zip code. In the body of your request, please provide enough information for us to determine if this applies to you. Please note that we will not accept inquiries via the telephone, email, or by facsimile, and we are not responsible for notices that are not labelled or sent properly, or that do not have complete information.

    THIRD PARTY SITES

    Please be aware that other websites that may be accessed through the Service may collect Personal Data about you. Please note that the privacy policies of these sites may differ from those of Spiceworks. Spiceworks is not responsible for the privacy policies and practices of any linked website. This Privacy Policy does not cover the information practices of those third-party websites linked to our site. We encourage you to read the privacy statement of any website you may visit.

    Parts of the Service may include social media features, such as the Facebook Like button, and widgets, such as the Google Maps button or interactive mini-programs that run on the Service. These features may collect your IP address and which page you are visiting on our Site and may set a cookie to enable the feature to function properly. These features and widgets are either hosted by a third party or hosted directly on the Service. Your interactions with these features are governed by the privacy policy of the company providing it.

    CHILDREN’S PRIVACY

    Our Service is not intended for or directed to persons under the age of 18 and we do not knowingly collect, maintain, or use Personal Data from children under 18 years of age.  Any person who provides their information to Spiceworks through the account login page for new customers or any other part of the Service represents to Spiceworks that they are 18 years of age or older.  If you learn that your child has provided us with Personal Data without your consent, you may alert us at pii@spiceworks.com. If we learn that we have collected any Personal Data from children under 18, we will promptly take steps to delete such information and terminate the child’s account.

    CHANGES TO PRIVACY STATEMENT

    Spiceworks may update this Privacy Policy from time to time. We will post any adjustments to the Privacy Policy on this web page, and the revised version will be effective when it is posted. When we change this Privacy Policy in a material way, a prominent notice will be posted on our Site along with the updated this Privacy Policy prior to the changes becoming effective. Please check this URL frequently to see the latest version of this this Privacy Policy.

    FEEDBACK AND CONTACT FOR FURTHER ENQUIRIES

    If you wish to exercise any of your legal rights referred to in this Privacy Policy, or if you have any questions in relation to this Privacy Policy, please contact Spiceworks at Data Protection Manager, Spiceworks, Inc., 3700 N. Capital of Texas Highway, Suite 100, Austin, TX 78746 USA or at pii@spiceworks.com.

    If you have comments on any part of the Service or ideas on how to improve it, please send email to support@spiceworks.com. Please note that by doing so, you also grant Spiceworks and third parties permission to use and incorporate your ideas or comments into the Service (or third party software or content) without further compensation or approval.

    Copyright © 2006-2018 Spiceworks, Inc. All rights reserved.
    Spiceworks, Inc. 3700 N. Capital of Texas Highway, Suite 100, Austin, Texas 78746 USA

  • Spotify Privacybeleid

    Ingangsdatum: 25 mei 2018

    Inleiding
    Over dit beleid
    Uw rechten en voorkeuren: keuze en controle
    Hoe verzamelen we uw persoonlijke gegevens?
    Welke persoonlijke gegevens verzamelen wij van u?
    Waarvoor gebruiken wij uw persoonlijke gegevens?
    Delen van uw persoonlijke gegevens
    Bewaren en verwijderen van gegevens
    Overdracht naar andere landen
    10 Koppelingen
    11 Beveiliging van uw gegevens
    12 Kinderen
    13 Wijzigingen in dit privacybeleid
    14 Contact met ons opnemen

    1. Inleiding

    Bedankt dat u Spotify hebt gekozen!

    Bij Spotify willen wij u de best mogelijke ervaring bieden om ervoor te zorgen dat u optimaal kunt genieten van onze service zowel vandaag en morgen als in de toekomst. Om dit te kunnen doen en u een buitengewone, gepersonaliseerde service te kunnen bieden die volledig op u is toegesneden, hebben we inzicht nodig in uw luistergedrag. Niettemin zijn uw privacy en de veiligheid van uw persoonlijke gegevens voor ons altijd buitengewoon belangrijk. Daarom willen wij u zo transparant mogelijk uitleggen hoe we uw persoonlijke gegevens verzamelen, opslaan, delen en gebruiken en u inzicht geven in de opties en keuzes die u hebt om te bepalen wanneer en hoe u wilt dat uw persoonlijke gegevens worden gedeeld.

    Dat is ons doel, en in dit Privacybeleid (“Beleid”) leggen we in detail uit wat we precies bedoelen.

    2. Over dit beleid

    In dit beleid leggen we in detail uit welke relatie u hebt met Spotify AB wat betreft uw persoonlijke gegevens. Het beleid is van toepassing op alle services van Spotify en alle mogelijk daaraan gekoppelde services (hierna te noemen de “Spotify Service’). De voorwaarden die van toepassing zijn op uw gebruik van de Spotify Service staan beschreven in onze Gebruiksvoorwaarden (de “Gebruiksvoorwaarden”).

    Van tijd tot tijd kunnen wij nieuwe services ontwikkelen of aanvullende services bieden. Als de introductie van deze nieuwe of aanvullende services een verandering met zich meebrengt in de manier waarop wij uw persoonlijke gegevens verzamelen of verwerken, zullen wij u meer informatie en aanvullende voorwaarden of beleidslijnen verstrekken. Dit beleid is van toepassing op die nieuwe of aanvullende services, tenzij anders vermeld bij de introductie daarvan.

    Het doel van dit Beleid is:

    1. Zorgen dat u begrijpt welke persoonlijke gegevens we van u verzamelen, waarom we deze gegevens verzamelen en gebruiken en met wie we de gegevens delen;
    2. Uitleggen op welke manier we de persoonlijke gegevens die u met ons deelt gebruiken om u een optimale ervaring te bieden wanneer u de Spotify Service gebruikt; en
    3. Uitleggen welke rechten en keuzemogelijkheden u hebt betreffende de persoonlijke gegevens die wij van u verzamelen en verwerken en hoe wij uw privacy beschermen.

    Wij hopen u daarmee inzicht te geven in de zorgvuldigheid die wij betrachten ten aanzien van uw privacy. Meer informatie over de gebruikte termen in dit beleid kunt u vinden in ons Privacy Center op spotify.com. Voor informatie over hoe u ons kunt bereiken als u vragen of opmerkingen hebt, gaat u naar sectie 14 ‘Contact met ons opnemen’ hieronder. Als u het niet eens bent met de inhoud van dit Beleid, wijzen wij u erop dat het u vrij staat om al dan niet gebruik te maken van de Spotify Service.

    3. Uw rechten en voorkeuren: Keuze en controle

    U bent er wellicht van op de hoogte dat de nieuwe Europese wet AVG (Algemene Verordening Gegevensbescherming) individuele personen bepaalde rechten verschaft met betrekking tot hun persoonlijke gegevens. In het kader hiervan hebben we een aantal aanvullende transparantie- en toegangsbeheerfuncties in ons Privacy Center en onze privacyinstellingen geïmplementeerd, zodat gebruikers van deze rechten gebruik kunnen maken. De rechten die zijn toegewezen aan individuele personen, indien beschikbaar en onderhevig aan toepasselijk recht, zijn:

    • Recht van toegang – het recht om geïnformeerd te worden over en toegang te verzoeken tot de persoonlijke gegevens die wij van u verwerken;
    • Recht op rectificatie – het recht te verzoeken dat wij uw persoonlijke gegevens wijzigen of bijwerken indien deze onjuist of onvolledig zijn;
    • Recht op verwijdering – het recht te verzoeken dat wij uw persoonlijke gegevens verwijderen;
    • Recht op beperking – het recht te verzoeken dat wij tijdelijk of permanent stoppen met het verwerken van al uw persoonlijke gegevens of een deel daarvan;
    • Recht op bezwaar –
      • het recht om op elk moment om redenen betreffende uw specifieke situatie bezwaar te maken tegen onze verwerking van uw persoonlijke gegevens;
      • het recht om bezwaar te maken tegen de verwerking van uw persoonlijke gegevens voor direct marketing-doelen;
    • Recht op gegevensportabiliteit – het recht om een kopie te vragen van uw persoonlijke gegevens in elektronische vorm en het recht om die persoonlijke gegevens te verzenden voor gebruik in een service van een andere partij; en
    • Recht om niet te worden onderworpen aan geautomatiseerde besluitvorming – het recht om niet te worden onderworpen aan een besluit dat uitsluitend is gebaseerd op een geautomatiseerd besluitvormingsproces, inclusief profilering, als dat besluit voor u juridische of soortgelijke, belangrijke gevolgen zou hebben.

    Om u in staat te stellen deze rechten gemakkelijk uit te oefenen en uw voorkeuren aangaande het gebruik van uw persoonlijke gegevens door Spotify vast te leggen, bieden wij u via uw pagina Accountinstellingen toegang tot de volgende instellingen:

    • Privacy-instellingen – hier kunt u sommige categorieën persoonlijke gegevens die wij van u verwerken beheren, toegang krijgen tot uw persoonlijke gegevens via de knop ‘Mijn gegevens downloaden’ en via een koppeling naar het Privacy Center op spotify.com meer informatie vinden over de manier waarop Spotify uw persoonlijke gegevens gebruikt en wat uw rechten zijn; en
    • Instellingen voor meldingen – hier kunt u kiezen welke berichten u van Spotify ontvangt, uw algemeen toegankelijke persoonlijke gegevens beheren en uw voorkeuren voor delen instellen.

    Het Privacy Center geeft u de controle over de manier waarop Spotify uw persoonlijke gegevens verwerkt. U vindt er informatie over wat er gebeurt als u uw instellingen op uw pagina Accountinstellingen aanpast en hoe u zich kunt afmelden voor het ontvangen van bepaalde berichten van Spotify. Als wij u elektronische marketingberichten sturen op basis van uw toestemming of anderszins voor zover toegestaan volgens toepasselijk recht, dan mag u gratis te allen tijde, respectievelijk dergelijke toestemming intrekken of bezwaar maken (‘afmelden’). De elektronische marketingberichten die u van Spotify ontvangt (bijvoorbeeld berichten per e-mail) zijn ook voorzien van een afmeldmechanisme (bijvoorbeeld een koppeling voor afmelden in de e-mails die wij u sturen).

    U kunt meer informatie vinden over hierboven beschreven rechten onder de AVG en de controle die wij bieden aan alle Spotify-gebruikers met betrekking tot deze rechten in de sectie ‘Uw rechten’ in het Privacy Center. Voor vragen over uw privacy, uw rechten of hoe u deze kunt uitoefenen, kunt u contact opnemen met onze medewerker Gegevensbescherming via het formulier ‘Contact met ons opnemen’ in het Privacy Center. We zullen uw aanvraag binnen redelijke termijn na verificatie van uw identiteit beantwoorden. Als u niet tevreden bent over de manier waarop wij uw persoonlijke gegevens gebruiken, kunt u ook contact opnemen met of een klacht indienen bij het Zweedse College Bescherming Persoonsgegevens (Datainspektionen) of uw lokale College Bescherming Persoonsgegevens.

    4. Hoe verzamelen we uw persoonlijke gegevens?

    We verzamelen uw persoonlijke gegevens op de volgende manieren:

    1. Wanneer u zich inschrijft op de Spotify Service – wanneer u zich inschrijft op de Spotify Service, verzamelen wij bepaalde persoonlijke gegevens zodat u de Spotify Service kunt gebruiken, zoals uw e-mailadres, geboortedatum, geslacht en land.
    2. Via uw gebruik van de Spotify Service – wanneer u de Spotify Service gebruikt, verzamelen we persoonlijke gegevens betreffende uw gebruik van de Spotify Service, zoals welke nummers u hebt afgespeeld en welke afspeellijsten u hebt gemaakt.
    3. Persoonlijke gegevens op basis waarvan wij extra voorzieningen/functionaliteit kunnen bieden – van tijd tot tijd kunt u ons ook aanvullende gegevens verstrekken of ons toestemming geven uw aanvullende persoonlijke gegevens te verzamelen, bijvoorbeeld om u meer voorzieningen of functionaliteit te bieden. Zoals hieronder beschreven (zie Vrijwillige muziekgegevens), verzamelen wij geen foto’s, precieze mobiele apparaatlocatie, spraakgegevens of contactpersonen van uw apparaat zonder uw voorafgaande toestemming. U hebt altijd de optie van gedachten te veranderen en uw toestemming te allen tijde in te trekken.
    4. Van derden – wij ontvangen persoonlijke gegevens over u en uw activiteiten van derden, zoals adverteerders en partners met wie we samenwerken om u de Spotify Service te leveren (zie sectie 7 ‘Delen van uw persoonlijke gegevens’ hieronder). Wij gebruiken deze persoonlijke gegevens alleen als u de derde partij of Spotify voor het delen van die gegevens toestemming hebt verleend of als Spotify een gewettigd belang heeft om de persoonlijke gegevens te gebruiken om u te voorzien van de Spotify Service.

    Wij gebruiken geanonimiseerde en samengevoegde gegevens voor verschillende doelen, zoals het testen van onze IT-systemen, onderzoek, gegevensanalyse, het maken van marketing- en promotiemodellen, het verbeteren van de Spotify Service en het ontwikkelen van nieuwe voorzieningen en functies binnen de Spotify Service.

    5.Welke persoonlijke gegevens verzamelen wij van u?

    In de onderstaande tabellen ziet u welke categorieën persoonlijke gegevens wij van u verzamelen en gebruiken:

    Persoonlijke gegevens verzameld wanneer u zich inschrijft op de Spotify Service

    Categorieën persoonlijke gegevens Categoriebeschrijving
    Accountregistratiegegevens Dit zijn de persoonlijke gegevens die u ons hebt verstrekt of die door ons zijn verzameld om u te kunnen aanmelden bij en gebruik te kunnen maken van de Spotify Service. Daartoe behoren uw e-mailadres, geboortedatum, geslacht, postcode en land.

    Bepaalde persoonlijke gegevens die wij u van u vragen, zijn vereist om uw account aan te maken. U hebt ook de optie om ons aanvullende persoonlijke gegevens te verstrekken, zodat wij uw account verder kunnen personaliseren.

    Welke persoonlijke gegevens we precies verzamelen is afhankelijk van het soort Spotify Service-abonnement dat u neemt en of u al dan niet een Derde Service (zoals gedefinieerd in de Gebruiksvoorwaarden, zoals Facebook) gebruikt om u in te schrijven op en gebruik te maken van de Spotify Service. Als u een Derde Service gebruikt om een account te maken, zullen wij persoonlijke gegevens ontvangen via die Derde Service, maar alleen wanneer u die Derde Service toestemming hebt gegeven om uw persoonlijke gegevens met ons te delen.

    Persoonlijke gegevens verzameld via uw gebruik van de Spotify Service

    Categorieën persoonlijke gegevens Categoriebeschrijving
    Spotify Service gebruiksgegevens Dit zijn de persoonlijke gegevens die over u worden verzameld als u de Spotify Service gebruikt, zoals:

    • Informatie over het soort Spotify Service-abonnement dat u hebt.
    • Informatie over uw interacties met de Spotify Service, zoals de datum en tijd van door u ingediende verzoeken, nummers die u hebt beluisterd, afspeellijsten die u maakt, video-inhoud die u hebt bekeken, en uw interacties met andere Spotify-gebruikers. Dit kan ook gegevens omvatten over uw gebruik van toepassingen van derden en reclame die u ontvangt.
    • Gebruikersinhoud (zoals gedefinieerd in de Gebruiksvoorwaarden) die u plaatst op Spotify, waaronder berichten die u verzendt en/of ontvangt via Spotify en uw interacties met de Spotify klantenservice.
    • Technische gegevens, zoals URL-gegevens, cookiegegevens, uw IP-adres, het soort apparaten dat u gebruikt om toegang te krijgen tot of verbinding te maken met de Spotify Service, unieke apparaat-id’s, apparaatkenmerken, type netwerkverbinding (wifi, 3G, LTE, Bluetooth e.d.) en provider, netwerk- en apparaatprestaties, type browser, taal, informatie voor Digital Rights Management, besturingssysteem en de Spotify-app versie. Meer informatie over de technische gegevens die door ons worden verwerkt kunt u vinden in ons Cookiebeleid. Cookiebeleid.
    • Door beweging of oriëntatie gegenereerde, mobiele sensorgegevens (zoals versnellingsmeter of gyroscoop) die zijn vereist om u toegang te kunnen bieden tot specifieke functies van de Spotify Service.

    Dankzij persoonlijke gegevens die we met uw toestemming hebben verzameld, kunnen wij u extra eigenschappen of functies bieden

    Categorieën persoonlijke gegevens Categoriebeschrijving
    Vrijwillige mobiele data Behalve de mobiele data die we verzamelen om u te voorzien van de Spotify Service (bovenbeschreven), hebt u ook de optie om ons toestemming te geven om aanvullende persoonlijke gegevens op uw mobiele apparaat te verzamelen om u voorzieningen/functies te bieden die uw ervaring met de Spotify Service verbeteren.

    Wij zullen ons geen toegang verschaffen tot de hieronder genoemde persoonlijke gegevens zonder daarvoor eerst uw toestemming te verkrijgen:

    • Uw foto’s – Als u ons toestemming geeft toegang tot foto’s of camera te krijgen, zullen we alleen toegang krijgen tot de afbeeldingen die u specifiek met ons deelt en tot de metadata van die afbeeldingen, zoals het soort bestand en de grootte van de afbeelding. Wij zullen nooit uw fotobibliotheek of camera-album scannen of importeren;

      • Uw precieze mobiele apparaatlocatie – Als u ons toestemming geeft om uw exacte locatie te verkrijgen, stelt dit ons in staat om toegang te krijgen tot uw GPS of Bluetooth om op locatie gebaseerde functies in de Spotify Service te bieden. Wij wijzen erop dat uw IP-adres hier niet onder valt. We gebruiken uw IP-adres om uw niet-exacte locatie te bepalen, bijvoorbeeld in welk land u zich bevindt, om te voldoen aan onze licentieovereenkomsten;

    • Uw spraakgegevens – Als u ons toestemming geeft, stelt dit ons in staat om toegang te krijgen tot de spraakopdrachten opgenomen via de microfoon van uw apparaat, zodat u met uw stem met de Spotify Service kunt communiceren. Wij wijzen erop dat u altijd de mogelijkheid hebt om de microfoonfunctie uit te schakelen; en
    • Uw contactpersonen – Als u ons toestemming geeft om toegang te krijgen tot uw contactpersonen, stelt dit ons in staat om toegang te krijgen tot de persoonlijke contactpersonen opgeslagen op uw apparaat om u te helpen vrienden te vinden die Spotify gebruiken.
    Betalingsgegevens Wij kunnen dit soort persoonlijke gegevens verzamelen wanneer u zich inschrijft voor een proefabonnement of een van onze betaalde abonnementen (zoals gedefinieerd in de Gebruiksvoorwaarden) aanschaft of andere aankopen doet via de Spotify Service. Welke persoonlijke gegevens precies worden verzameld hangt af van de betalingsmethode (bijvoorbeeld direct via uw mobiele telefoon of op factuurbasis), maar betreft in elk geval de volgende gegevens:

    • Naam;
    • Geboortedatum;
    • Type credit- of debitcard, vervaldatum en bepaalde cijfers van uw credit-/debitcardnummer;
    • Postcode;
    • Mobiele telefoonnummer; en
    • Details van uw transactiegeschiedenis;

    Als u verkiest om op factuur te betalen, verstrekken wij uw persoonlijke gegevens aan onze betalingsverwerkers om zodat zij een kredietwaardigheidscontrole kunnen uitvoeren en u facturen kunnen sturen.
    Gegevens over prijsvragen, enquêtes en sweepstakes Deze persoonlijke gegevens worden gebruikt om u in staat te stellen zich in te schrijven op en deel te nemen aan dit soort promotieacties. Welke persoonlijke gegevens precies worden verzameld, hangt af van het type promotieactie.
    Marketinggegevens Deze persoonlijke gegevens worden gebruikt om Spotify en onze partners / serviceproviders in staat te stellen u marketingcommunicaties te sturen:

    • per e-mail,
    • tijdens uw gebruik van de Spotify Service, en/of
    • direct via de derde partij.

    Meer informatie over de verzamelde persoonlijke gegevens en de beheerfuncties die u ter beschikking staan betreffende marketingcommunicaties die u ontvangt, kunt u vinden via het Privacy Center on www.spotify.com.

    6. Waarvoor gebruiken wij uw persoonlijke gegevens?

    Wanneer u de Spotify Service gebruikt of daarmee communiceert, gebruiken wij om verschillende redenen diverse technologieën om de persoonlijke gegevens die wij over u verzamelen te verwerken. In de onderstaande tabel noemen wij de redenen waarom wij uw persoonlijke gegevens verwerken, de rechtsgronden op basis waarvan wij uw persoonlijke gegevens wettig mogen verwerken en de categorieën persoonsgegevens (genoemd in sectie 5 ‘Welke persoonlijke gegevens verzamelen wij van u?’ die daarvoor worden gebruikt:

    Waarom Spotify uw persoonlijk gegevens verwerkt (‘verwerkingsdoel’) Rechtsgrond voor het verwerkingsdoel Categorieën persoonlijke gegevens die Spotify gebruikt voor het verwerkingsdoel
    De Spotify Service leveren en personaliseren en uw ervaring daarmee en met andere door Spotify geleverde services en producten verbeteren, bijvoorbeeld door binnen of buiten de Spotify Service aangepaste, gepersonaliseerde of gelokaliseerde inhoud te bieden, aanbevelingen te doen, voorzieningen beschikbaar te stellen en reclames te tonen (ook voor producten en diensten van derden).
    • Uitvoering van een contract
    • Legitieme belangen
    • Accountregistratiegegevens
    • Service gebruiksgegevens
    Inzicht verkrijgen in de manier waarop u toegang verkrijgt tot de Spotify Service en deze gebruikt om te zorgen dat de Spotify Service technisch goed functioneert, om nieuwe producten en diensten te ontwikkelen en uw gebruik van de Spotify Service te analyseren, inclusief uw interactie met toepassingen, reclames, producten en diensten die via de Spotify Service beschikbaar worden gesteld, daaraan zijn gekoppeld of worden aangeboden.
    • Uitvoering van een contract
    • Legitieme belangen
    • Accountregistratiegegevens
    • Service gebruiksgegevens
    Om met u te communiceren voor aan de Spotify Service gerelateerde doelen.
    • Uitvoering van een contract
    • Legitieme belangen
    • Accountregistratiegegevens
    • Service gebruiksgegevens
    Uw betalingen verwerken om fraude te voorkomen en te detecteren, waaronder frauduleuze betalingen en frauduleus gebruik van de Spotify Service.
    • Uitvoering van een contract
    • Voldoen aan wettelijke verplichtingen
    • Legitieme belangen
    • Betalingsgegevens
    Direct of via een van onze partners met u communiceren voor:

    • marketingdoelen,
    • onderzoeksdoelen,
    • deelname aan prijsvragen, enquêtes en sweepstakes,
    • reclamedoeleinden,

    via e-mails, meldingen of andere berichten, overeenkomstig de door u aan ons verleende toestemmingen (bijvoorbeeld via uw pagina Accountinstellingen).
    • Toestemming
    • Legitieme belangen
    • Gegevens betreffende prijsvragen, enquêtes en sweepstakes
    • Marketinggegevens
    U aanbiedingen, informatie, reclames of andere inhoud sturen, gebaseerd op uw specifieke locatie.
    • Toestemming
    • Vrijwillige mobiele data

    Voor meer informatie over de afwegingstoets die Spotify heeft ondergaan om aanspraak te kunnen maken op de in de AVG vastgestelde rechtsgrond van gerechtvaardigd belang, verwijzen wij naar sectie 14 ‘Contact met ons opnemen’, waar u meer informatie vindt over hoe u contact met ons kunt opnemen.

    7. Delen van uw persoonlijke gegevens

    Wij hebben de categorieën ontvangers van de via uw gebruik van de Spotify Service verzamelde of gegenereerde persoonlijke gegevens gespecificeerd.

    Algemeen beschikbare informatie

    De volgende persoonlijke gegevens zullen altijd algemeen beschikbaar zijn in de Spotify Service: uw naam en/of gebruikersnaam, profielfoto, wie u volgt en door wie u wordt gevolgd in de Spotify Service, uw recent gespeelde artiesten en uw openbare afspeellijsten.

    Persoonlijke gegevens die u kunt delen

    De volgende persoonlijke gegevens zullen alleen worden gedeeld met de categorieën ontvangers beschreven in de onderstaande tabel, als:

    • u ervoor kiest gebruik te maken van een specifieke Spotify Service-functie waarbij het delen van bepaalde persoonlijke gegevens nodig is voor het juiste gebruik van de Spotify Service-functie; of
    • u ons toestemming geeft om de persoonlijke gegevens te delen, bijvoorbeeld door het selecteren van de juiste instelling van de Spotify Service.
    Categorieën ontvangers Reden voor delen
    Toepassingen van derden die u koppelt aan uw Spotify-account Als u uw Spotify-account koppelt aan een toepassing van derden, zoals sociale media, audio, televisie of autoplatforms, kan Spotify uw Service-gebruiksgegevens delen zodat u uw Spotify-account kunt koppelen.
    Toepassingen van derden die u gebruikt om u aan te melden bij Spotify Als u zich aanmeldt bij een toepassing van derden met uw Spotify-accountgegevens, kan die toepassing van derden toegang krijgen tot bepaalde Service-gebruiksgegevens, zoals uw afspeellijsten, opgeslagen inhoud en activiteiten.

    U ontvangt een melding voordat verbinding wordt gemaakt met de toepassing van derden om u te laten weten welke persoonlijke gegevens worden gedeeld met / toegankelijk zijn voor die toepassing van derden.
    Support Community Wanneer u zich registreert bij de Spotify Support Community voor een Spotify Support-account, vragen wij u om een specifieke Spotify Support Community-gebruikersnaam te maken. Deze gebruikersnaam is openbaar en wordt samen met vragen en opmerkingen die u plaatst getoond aan iedereen die toegang heeft tot de Spotify Support Community.
    Uw Spotify-volgers Het kan voorkomen dat u wilt dat wij bepaalde Service-gebruiksgegevens delen met andere Spotify gebruikers, ofwel ‘uw Spotify-volgers’, met name informatie over uw gebruik van Spotify.

    Als u bijvoorbeeld afspeellijsten maakt, kan het zijn dat u deze zichtbaar wilt maken voor andere gebruikers van de Spotify Service, maar het kan ook zijn dat u uw afspeellijsten privé wilt houden.
    Artiesten en platenmaatschappijen U kunt ons verzoeken om persoonlijke gegevens (zoals uw e-mailadres) te delen met artiesten of platenmaatschappijen of andere partners die u mogelijk direct nieuws of aanbiedingen willen sturen, maar u hebt ook de mogelijkheid om die toestemming te allen tijde in te trekken.

    Meer informatie over het beheren van meldingen, uw openbare informatie en wat u deelt met anderen kunt u vinden in de Sectie 3 ‘Uw rechten en voorkeuren: keuze en controle’ van dit beleid en in het Privacy Center.

    Informatie die wij kunnen delen

    Categorieën ontvangers Reden voor delen
    Serviceproviders en anderen We gebruiken technische serviceproviders die de technische infrastructuur kunnen beheren die we nodig hebben voor de Spotify Service, met name providers die de Spotify-app, de inhoud daarvan en de gegevens die wij verwerken hosten, opslaan, beheren en bewaren.
    Wij gebruiken technische serviceproviders om ons te helpen met u te communiceren, zoals beschreven in (Section 6) van dit beleid.
    Wij gebruiken marketing- en reclamepartners om u meer inhoud te tonen die beter aansluit bij uw interesses, of om inzicht te krijgen in uw gebruik van de Spotify Service om deze voor u te verbeteren. Wij kunnen persoonlijke gegevens ook delen met bepaalde marketing- en reclamepartners om u promotiemateriaal over Spotify te sturen.
    Spotify Partners
    • Als u toegang verkrijgt tot de Spotify Service via een aanbieding die u hebt gekregen of gekocht van een derde partij, zoals uw mobiele netwerkoperator, delen we persoonlijke gegevens met die derde partij over uw gebruik van de Spotify Service, bijvoorbeeld of en in hoeverre u gebruik hebt gemaakt van de aanbieding, of u een Spotify-account hebt geactiveerd en of u de Spotify Service actief hebt gebruikt.
    • Afhankelijk van hoe u zich aanmeldt bij de Spotify Service (bijvoorbeeld via een service van een derde of een mobiele provider), delen we uw Spotify-gebruikersnaam of andere accountregistratiegegevens zoals nodig om uw account te activeren.
    • Wij kunnen uw persoonlijke gegevens ook in een gepseudonimiseerde indeling met onze partners in de muziekindustrie delen om ze inzicht te geven in de werking van de inhoud die ze ons in licentie geven en u de mogelijkheid te bieden te luisteren naar streaminginhoud via de Spotify Service.
    • Wij delen uw persoonlijke gegevens ook in een gepseudonimiseerde indeling met marketingpartners die ons helpen bij promotiecampagnes, en met adverteerders die ons de mogelijkheid bieden om een gratis service aan te bieden.
    Academische onderzoekers Wij delen uw persoonlijke gegevens ten behoeve van bijvoorbeeld statistische analyse en academisch onderzoek, maar alleen in een gepseudonimiseerde indeling.
    Overige bedrijven van de Spotify-groep Wij delen uw persoonlijke gegevens met andere bedrijven van de Spotify-groep voor onze dagelijkse bedrijfsvoering en om de Spotify Service te onderhouden en aan u te kunnen leveren.
    Opsporingsinstanties en toezichthouders voor gegevensbescherming Wij delen uw persoonlijke gegevens wanneer wij te goeder trouw menen dat dit noodzakelijk is om te voldoen aan een wettelijke verplichting onder toepasselijk recht, of om te voldoen aan geldige gerechtelijke oproepen, zoals een huiszoekingsbevel, rechterlijk bevel of dagvaarding.

    Wij delen uw persoonlijke gegevens ook wanneer wij te goeder trouw menen dat dit noodzakelijk is voor het doel van ons eigen gewettigde belang of dat van een derde partij betreffende nationale veiligheid, rechtshandhaving, vervolging, opsporingsonderzoek, de bescherming van de veiligheid van personen, of ter voorkoming van overlijden of dreigend gevaar van lichamelijk letsel, mits we menen dat een dergelijke belang niet ondergeschikt is aan uw belangen en fundamentele rechten en vrijheden die vereisen dat uw persoonlijke gegevens worden beschermd.
    Kopers van ons bedrijf Wij delen uw persoonlijke gegevens in die gevallen waarin wij ons bedrijf verkopen aan of daarover onderhandelen met een koper of potentiële koper.

    In deze situatie zal Spotify de vertrouwelijkheid van uw persoonlijke gegevens blijven beschermen en u in kennis stellen voordat uw persoonlijke gegevens worden doorgegeven aan de koper of worden onderworpen aan een ander privacybeleid.

    8. Bewaren en verwijderen van gegevens

    Wij bewaren uw persoonlijke gegevens slechts zolang als nodig is om u te voorzien van de Spotify Service en voor legitieme en essentiële zakelijke doeleinden, zoals het in werking houden van de Spotify Service, het nemen van op gegevens gebaseerde zakelijke beslissingen over nieuwe functies en mogelijkheden, het voldoen aan onze wettelijke verplichtingen en de beslechting van geschillen. Wij bewaren sommige van uw persoonlijke gegevens zo lang u gebruiker bent van de Spotify Service. Wij bewaren bijvoorbeeld uw afspeellijsten, muziekbibliotheek en accountgegevens.

    Op uw verzoek verwijderen of anonimiseren wij uw persoonlijke gegevens, zodat u op basis daarvan niet meer kan worden geïdentificeerd, tenzij het ons wettelijk toegestaan is of tenzij wij wettelijk verplicht zijn om bepaalde persoonlijke gegevens te bewaren, bijvoorbeeld in de volgende situaties:

    • Als er een onopgeloste kwestie is betreffende uw account, zoals een openstaand tegoed op uw account of een onopgeloste vordering of lopend geschil, bewaren wij de benodigde persoonlijke gegevens totdat het probleem is opgelost;
    • Als wij wettelijk of fiscaal of om redenen van administratieve controle en verantwoording verplicht zijn de persoonlijke gegevens te bewaren, bewaren wij de benodigde persoonlijke gegevens voor de wettelijk toegestane termijn; en/of,
    • Als dit nodig is wegens onze legitieme zakelijke belangen, zoals fraudepreventie of de beveiliging van onze gebruikers.

    9. Overdracht naar andere landen

    Spotify deelt uw persoonlijke gegevens wereldwijd met andere bedrijven in de Spotify-groep om de in dit Beleid gespecificeerde activiteiten uit te voeren. Dit betreft de bedrijven van de Spotify-groep in de volgende landen: Australië, Oostenrijk, België, Brazilië, Canada, Denemarken, Duitsland, Finland, Frankrijk, Hongkong, Italië, Japan, Luxemburg, Mexico, Nederland, Polen, Singapore, Spanje, Zweden, Zwitserland, Taiwan, Turkije, het Verenigd Koninkrijk en de Verenigde Staten van Amerika. Spotify kan de verwerking ook uitbesteden aan of uw persoonlijke gegevens delen met derde partijen in andere landen dan uw land van verblijf. Uw persoonsgegevens kunnen zodoende onderworpen zijn aan andere privacywetgeving dan die in uw land van verblijf.

    Persoonlijke gegevens verzameld binnen de Europese Unie (EU) en Zwitserland kunnen bijvoorbeeld worden overgebracht naar en verwerkt door derde partijen in een land buiten de EU en Zwitserland. In dergelijke gevallen zal Spotify zorgen dat de overdracht van uw persoonlijke gegevens wordt uitgevoerd in overeenstemming met de geldende privacywetgeving en volgens gepaste contractuele, technische en organisatorische voorschriften, zoals de standaard EU-contractclausules.

    Raadpleeg voor meer informatie over de beveiligingsmaatregelen die wij treffen om uw persoonlijke gegevens te beschermen sectie 11 ‘Beveiliging van uw persoonlijke gegevens’ van dit beleid.

    10. Koppelingen

    Wij kunnen advertenties van derden en andere inhoud die is gekoppeld aan websites van derden, weergeven. We hebben geen controle over en kunnen niet verantwoordelijk worden gehouden voor de privacypraktijken en inhoud van derden. Als u klikt op een advertentie of koppeling van een derde partij, dient u zich te realiseren dat u de Spotify Service verlaat en dat persoonlijke gegevens die u verstrekt niet worden gedekt door dit beleid. Lees hun privacyregels om te weten te komen hoe ze uw persoonlijke gegevens verzamelen en verwerken.

    11. Beveiliging van uw persoonlijke gegevens

    Wij beschermen de persoonlijke gegevens van onze gebruikers zo goed mogelijk. We implementeren passende technische en organisatorische maatregelen om de veiligheid van uw persoonlijke gegevens te beschermen. Houd er echter rekening mee dat geen enkel systeem volledig veilig is. Wij hebben diverse beleidsmaatregelen genomen, waaronder maatregelen op het gebied van pseudonimisering, encryptie, toegang en retentie, om bescherming te bieden tegen onbevoegde toegang tot en onnodige bewaring van persoonlijke gegevens in onze systemen.

    Uw wachtwoord beveiligt uw gebruikersaccount. Daarom raden we u aan om een uniek en sterk wachtwoord te gebruiken, de toegang tot uw computer en browser te beperken en u na gebruik van de Spotify Service af te melden.

    12. Kinderen

    De Spotify Service is niet bedoeld voor kinderen jonger dan 13 jaar. In sommige landen kunnen echter krachtens lokale wetgeving strengere leeftijdslimieten van toepassing zijn. Raadpleeg onze Gebruiksvoorwaarden voor meer informatie.

    Wij verzamelen niet bewust persoonlijke gegevens van kinderen jonger dan 13 jaar of de toegestane leeftijdslimiet (de “Leeftijdslimiet”). Personen jonger dan de minimumleeftijd, dienen de Spotify Service niet te gebruiken en ons geen persoonlijke gegevens te verstrekken.

    Als u ouder bent van een kind onder de leeftijdsgrens en ontdekt dat uw kind persoonlijke gegevens heeft verstrekt aan Spotify, dient u contact met ons op te nemen via het formulier ‘Contact met ons opnemen’ in het Privacy Center en kunt u verzoeken om uitoefening van uw geldende rechten, zoals beschreven in sectie 3 ‘Uw rechten en voorkeuren: keuze en controle’ in dit beleid.

    Als wij merken dat wij de persoonlijke gegevens van een kind jonger dan 13 jaar hebben verzameld, zullen wij redelijke maatregelen nemen om de persoonlijke gegevens te verwijderen. Dit houdt in dat wij het Spotify-account voor dat kind mogelijk moeten verwijderen.

    13. Wijzigingen in dit privacybeleid

    Wij kunnen dit privacybeleid zo nu en dan wijzigen.

    Als wij wezenlijke veranderingen aanbrengen in dit beleid, zullen wij dat duidelijk kenbaar maken, zoals gepast onder de omstandigheden, bijvoorbeeld door in de Spotify Service een opvallende kennisgeving te tonen of door u een e-mail te sturen. Wij kunnen u vooraf in kennis stellen.

    Zorg daarom dat u een dergelijke kennisgeving zorgvuldig leest.

    Meer informatie over dit Beleid en hoe Spotify uw persoonlijke gegevens gebruikt, kunt u vinden in het Privacy Center op www.spotify.com.

    14. Contact met ons opnemen

    Dank u voor het lezen van ons privacybeleid. Als u vragen hebt over dit Beleid, kunt u met onze medewerker Gegevensbescherming contact opnemen via het formulier ‘Contact met ons opnemen’ in het Privacy Center of door ons een brief te sturen op het volgende adres:

    Spotify AB
    Regeringsgatan 19
    Stockholm
    111 53
    Zweden

    Spotify AB is de gegevenscontroller voor het doel van de persoonlijke gegevens verwerkt in het kader van dit Beleid.

    We hopen dat u geniet van Spotify!
    © Spotify AB.

  • Stack Exchange, Inc. Privacy Policy

    INTRODUCTION

    The Stack Overflow Network (also referred to herein as “Stack Overflow” or “Network”) is a set of related Internet sites and other applications for questions and answers, owned and operated by Stack Exchange, Inc. (“Stack Overflow”, “we” or “us”), a Delaware corporation. Stack Overflow welcomes you to the Network, the largest community of developers in the world, and invites you to participate in the community by sharing knowledge with your peers and colleagues. We have the modest goal of making the internet a better place, and as such are committed to your privacy. This privacy policy describes what information we collect on our Network and in the use of our Products and Services, how we use that information, and what options we offer you to control your personal information.

    We will need to process your personal information in order to offer the Network, and to offer you our Products and Services. By using the Network or (whether via the public or private Network, collectively the “Terms of Service”), or purchasing our Products or Services, you confirm that you have read and understood the Terms of Service and this privacy policy (“Privacy Policy”) including how and why we use your information and that your use of the Network is subject to the applicable Terms of Service and this Privacy Policy. If you do not want us to collect or process your personal information as described herein, you have several choices including limiting the information we collect on you, or not using the Network, or our Products and Services.

    By using the Network or purchasing our Products and Services, you acknowledge that Stack Overflow will use your information in the United States, the United Kingdom, and Germany as well as any other country where Stack Overflow operates. This privacy policy has been updated to comply with the EU’s General Data Protection Regulation (GDPR) and this policy describes how we protect personal information that is transferred outside of the EU. Please be aware that the privacy laws and standards in certain countries, including the rights of authorities to access your personal information, may differ from those that apply in the country in which you reside. We will transfer personal information only to countries to which we are permitted by law to transfer personal information and we will continue to ensure that your personal information is appropriately safeguarded.

    HOW WE COLLECT INFORMATION ON YOU

    In the course of providing you access to the Network, as well as Products and Services, Stack Overflow collects and receives personal information in a few ways. Often, you can choose what information to provide, but sometimes we require personal information from you to carry out certain activities such as account verification. This section details the ways in which we collect information from you and how that information is received.

    Account Registration

    Although the Network provides for anonymous and pseudonymous participation, in some instances in order to use certain Products or Services, we require account registration. This requires a name associated with your account, an email address at which we can contact you, and in some cases, additional information including, a contact address, a billing address, and a password to help secure your personal information.

    Profile Information

    When completing a public “profile” be it for use of the Network or our Products and Services, we may require you to share certain personally identifying information or sensitive information in required and optional profile fields. The name associated with your account, which you may review and change in your account settings, as well as reputation points are publicly displayed and connected to your activity on the Stack Overflow Network and via certain Products and Services such as our Talent and Teams platforms.

    Other profile information may also be publicly displayed if you choose to complete certain elective components of the Account Registration options including, e.g., your Developer Story, display picture, affiliated role and company, your location and your preferred technologies (javascript, swift, sql-server, etc.), and some information is publicly displayed and required, such as how long you have been a member. Similarly, you may share additional information that is not required but will be displayed publicly at your election. If you are using the private Network (e.g., Stack Overflow for Teams), your account settings including, name, affiliated role and company, and other information may be shared with your private Network Team members designated as authorized users of your private Network account. While some of the public and private Network profile information is required, much of it is within your control as we describe herein and can be modified, updated, and restricted by you in your Email Settings.

    Information Collected Automatically

    Stack Overflow receives and records information from your browser or mobile device when you visit the Network or use the Apps, such as your Internet Protocol (IP) address or unique device identifier. Cookies and data about which pages you visit on our Network allow us to operate and optimize the Products and Services we provide to you. This information is stored in secure logs and is collected automatically. We may combine this browser information with other information we collect about you. This information is used to keep the Products and Services secure, analyze and understand how our Products and Services are used, optimize such usage, provide advertising across the Network as well as certain Products and Services to personalize your experience, and to help connect you with potential job opportunities in the case of our recruiting Products and Services.

    Location Information

    When you use the Stack Overflow Network, and certain of our Products and Services, we collect location information about you including your IP address, your location, browser information, and how you came to the Stack Overflow Network. This is the case for individuals who have registered for an account, and non-members who engage with the Stack Overflow Network by visiting our website(s) but who have not completed an account registration. This information is collected for various purposes, including advertising, analytics and to serve content as it relates to certain Products or Services (e.g., Talent), as well as to provide you with localized content, recommendations, and marketing. You may revoke our permission to collect some of this data, including your location and browser information through your Account Settings, but this may limit functionality in some cases. Certain location information we collect is required for security and site functionality. We share this information with certain third-parties (e.g., talent recruiters, payment processors, and advertising providers) in order to provide you with our Products and Services.

    Information from Third Parties

    We may share personal information with third parties who provide services to Stack Overflow, such as payment processors, email delivery services, and advertising providers. Additionally, to improve user experience, we offer single sign-on solutions for account login and these third parties (including Facebook and Google) may receive information from these services when you elect to use them. When Stack Overflow shares your personal information and other collected information with third party service providers, we require that they use your information only for the purpose of providing services to us and that their terms are consistent with this privacy policy.

    Advertising and Marketing Partners

    When you register for an account, and when you interact with Stack Overflow, we and authorized third parties place cookies on you and your account activity as described in more detail within our Cookies Policy. We use this information to serve you certain advertising content. Similarly, we market our Products and Services to you and communicate important information and product opportunities to you. If you do not wish to receive direct marketing communications from us, you can tell us and remove yourself from our marketing communications via the unsubscribe and opt out options in our email communications and your Account Settings. If you do not wish to receive advertising promotions, you may restrict such activities in your Account Settings, but you should know that by doing so, you may reduce some functionality and you may not have access to certain features within our Products and Services (e.g., job recommendations on our Talent platform). For more information on how to control your account settings or to opt out of direct marketing campaigns, please visit your Email Settings.

    Analytics Information

    Stack Overflow uses data analytics to ensure site functionality and to optimize our Product and Service offerings to you. We use web browser and mobile analytics to allow us to understand Network and Apps functionality. In doing so, we record information including, for example how often you visit the Network, how often you contribute content, Network and Apps performance data, errors and debugging information, and the type of activity you engage in while on the Network or in your use of our Products and Services. We may on occasion share this information with third parties for research or product and services optimization.

    Billing Information

    For Products and Services requiring payment, we collect a billing name, phone number, and email address. We also collect a billing and shipping address for invoicing purposes. If you elect to pay by credit card, Stack Overflow may engage a third party to securely process your payment. All payment processing is done through a PCI DSS compliant third party. If customers are paying by a credit card, their card details are vaulted through a third party payment gateway. Stack Overflow will store an encrypted token along with the last four digits of the credit card and the expiration month and year of the card and will not store or retain any other billing information about you.

    WHAT INFORMATION WE COLLECT ON YOU

    This section describes in further detail the information we collect on you and how we use that information broken down by our Products and Services offerings.

    Public Network (Questions and Answers Content)

    The Public Question and Answer Network (“public Network”) allows individual users to engage in a community to share their knowledge and expertise, and to acquire knowledge and expertise. It is community-moderated, and the content in the public Network is . . . public. To provide an optimal community experience, and to ensure Network security, we collect certain personal information.

    We collect information such as your username, password, email address, IP address (collected at each site visit). This information is also used to identify individual users to the public Network and to award activities and attribute them to you. Your username and additional content you provide including your profile picture, question and answer content, and your reputation are visible publicly. Other limited information is visible to moderators, who have elevated access privileges, and may access content including your posts. For more information about moderators and their role in the Stack Overflow Network, please visit: /help/site-moderators. In addition, when you choose to use certain features such as our chat or support features, we collect a record of your communications with us and other third parties that are accessible to chat participants and certain authorized third parties. Other account information and usage information including your IP address and browser data may be used for diagnosis, security and Product and Service optimization.

    Please be aware that when using the Public Question and Answer Network, you cannot revoke permission for Stack Overflow to publish and to allow others to have derivative rights to such public content once it is made public. The content you contribute on the public network is public, in perpetuity, and Stack Overflow loses direct control over such content when it is published on the open internet. This also means that if you post personal information about yourself, you do so at your own risk, including the risk of abandoning any privacy rights you had in such information.

    Additionally, from time to time, Stack Overflow makes such public content available via compilation via the Creative Commons Data Dump and by providing public content to the Stack Overflow Network, you should be aware that such content, once public, cannot often be removed from public view even if it is removed from the Stack Overflow network and our servers.

    Talent and Jobs

    The Stack Overflow Talent platform allows for companies looking to hire and those seeking job opportunities to connect with each other and to engage in new employment opportunities. To optimize the recruitment experience, and to connect job seekers with jobs, we collect certain personal information on you the account holder (or account unregistered job seeker), and on the company and its authorized recruiters.

    Whether you are a recruiter seeking to hire on our Talent platform, or a registered account holder using our Jobs platform while seeking employment opportunities, we collect certain account registration information on you. For job seekers on the Jobs platform, we collect your name, location, email and resume (where applicable) along with certain optional information including your phone number and a cover letter (where applicable). For company authorized users using our Talent Platform to recruit developers, we collect certain account registration information on you including your name, email, and affiliated company. For job seekers who chose to participate in our Jobs platform your public profile can be observed and collected by those looking to hire you. For company authorized users your profiles are visible to authorized users of the company account and your contact details are visible to job seekers via direct messaging on the Talent platform. The information we collect on you as a job seeker is also used by Stack Overflow to customize job recommendations. You may additionally opt-in to specific features that rely on personal information. For example, you may elect to provide personal information in your Developer Story which collects certain CV-like information and achievements including employment history which may be used for recruiting purposes.

    Advertising Products

    Stack Overflow partners with third parties to display advertisements on our public Network and within our Talent Platform. These partnerships provide third parties access to the developer community to promote themselves or services and to provide you with visibility into companies and third parties seeking to recruit you for employment opportunities, and for other purposes. In providing this opportunity, Stack Overflow and its third party partners may collect and use your personal information to tailor your advertising experience to suit your interests, skills, as well as to monitor your account activity in order to optimize our Products and Services.

    We seek to limit what information advertisers and similar third parties have access to, as well as to ensure that your user experience on the public and private Stack Overflow network is not overwhelmed by advertising initiatives. However, our advertising products and services require us to collect certain personal and non-personal information on you, which includes:

    • Data from advertising technologies like cookies, web beacons, pixels, ad tags, and browser/device identifiers
    • Information you have provided to us directly including profile information, your Developer Story, and in limited instances your job history
    • Usage analytics including your visits to the Network, browsing and search history
    • Information from our advertising partners (e.g., device type and location)

    Stack Overflow for Teams

    Stack Overflow for Teams allows you to share private content via authorized closed communities. When creating or joining a Team, we collect account registration information on you the Entity and you the individual. On behalf of the Entity, we collect Company or Entity name, Team Representative name, the names of authorized users, and you may elect to provide a Company or Team logo, trademark, or photo for account association purposes. As a participant in Stack Overflow for Teams, we require you to create an individual account on our public Network and we associate this account registration with your Team for account security purposes and to verify your identity. Account registration information as well as company or team affiliation information is displayed to authorized users of your Team.

    In addition to account registration and company or team affiliation information, Stack Overflow collects certain application metadata for the purposes of maintaining and enhancing the Stack Overflow for Team product and related services we provide. This metadata is only made available to Stack Overflow authorized personnel and in some cases authorized third parties under a duty of confidentiality.

    Any content you provide in the course of your use of the Stack Overflow for Teams product is shared privately with authorized users of your Team, and may include private questions and answers, votes, source code, and other sensitive data. Our collection of such content is solely to provide the Products and Services, and is provided pursuant to our private Network Terms. Stack Overflow personnel may not access such content except to the extent as may be required in response to a support request with your explicit permission, or when required for security or maintenance of the product or services. In such cases, Stack Overflow personnel will only access the minimum content necessary to resolve the issue and in accordance with the private Network Terms.

    Enterprise

    Our Enterprise level platform is a privately hosted Question and Answer forum for large corporate clientele. The collection of personal data is limited to account registration information and usage analytics for product optimization. For additional information regarding the collection and processing of your Enterprise offering, please contact your account representative.

    Developer Survey

    As the world’s largest developer community, Stack Overflow annually publishes a Developer Survey to provide key insights into the developer community, including demographic and certain personal information. Your participation in the Developer Survey as well as any other Stack Overflow survey is entirely voluntary. In order to provide meaningful insights into the developer community, Stack Overflow may collect sensitive data about you, including, but not limited to your gender, race, sexual orientation, immigration status, and your location. We consider this data to be among our most sensitive, and have taken elevated measures to protect such data as well as to de-identify your name and other personal information from such data. We restrict such data within Stack Overflow on a privileged basis to only those that need to see it and while we may share your personal information with certain third parties such as researchers, we do so only after imposing contractual obligations of confidentiality on such third parties and only where absolutely necessary for limited research purposes.

    When we publish the Developer Survey, it is published as a compilation of anonymized data, which means that we take every effort to ensure that your information is understood in a statistical narrative decoupled from your personal identity.

    If you have any questions concerning the Developer Survey and our security measures to protect your sensitive personal data, please contact us at: privacy (at) stackoverflow (dot) com.

    YOUR CHOICE AND CONTROL OF THE INFORMATION WE COLLECT ON YOU

    Privacy is a guiding principle of all Stack Overflow Products and Services and we value your privacy. To this end, we provide you with the ability to control how your information is stored, and what information is collected. You may change or correct your account settings, and choose not to share certain information by creating a pseudonymous account. Additionally, much of the data we collect is voluntary and your choice entirely to provide us or not. You may also remove certain optional information that you no longer wish to be publicly displayed, such as your photo, or job history. And of course, should you wish, you may also request the permanent deletion of your account, in which case all personal information collected on you will be removed from our servers and encrypted (except, in some cases your IP address required for security purposes, site maintenance, and spam protection).

    We also provide you additional data control options, created by the GDPR, but provided to the Stack Overflow community regardless of geographic location with respect to your information, including data access and portability (including the right to obtain and download a copy of the personal data you provided to Stack Overflow), data correction (the ability to update the personal data we collect and display on you, in many cases via your account settings), data deletion (where Stack Overflow will delete personal information stored on you, which we are not required by necessity to maintain), and the ability to have us stop processing your personal data (with certain exceptions as may be necessary). For more information on these choices you have over how we collect and store your personal data please visit our GDPR page. Please also be aware that in order to provide some of these data choices to you, we may need to first verify your identity. We will make reasonable efforts to verify your identity, however if we are unable to do so, we reserve the right to refuse such a request in keeping with data privacy and information security principles.

    You may additionally control the receipt of certain marketing and advertising communications from Stack Overflow. Some messages that we send are required, and related to our legal obligations, or service related and mandatory. Other messages, like marketing and advertising communications are provided by us to let you know how you can continue to share, learn, and build your knowledge within the Stack Overflow community, and are voluntary. We provide you with the opportunity to control which voluntary messages you would like to receive in your Email Settings.

    COOKIES

    In order to provide the Stack Overflow Network along with the Products and Services described in this policy, we may place cookies on you as well as partner with third parties including advertising partners, who may use cookies or other similar technologies to provide you with advertising based on your browsing activities and interests. Please see our Cookies Policy for additional information on how we use cookies and what third party cookies we permit.

    DATA PROCESSING DISCLOSURES

    When you access the Stack Overflow Network and use the Products and Services we offer, we collect, display, store, share, transmit, and process your information in the manner described in this policy. In order to carry out these activities, Stack Overflow may rely on a number of legal bases in order to process your personal data, including where:

    • necessary to perform the contractual obligations in our Terms of Service and in order to provide the Products and Services to you
    • necessary for a third party’s, or our, legitimate interests
    • necessary to comply with a legal obligation or to defend legal claims
    • necessary to protect the public interest or vital interest of others
    • you have expressly made information public
    • you have consented to the processing, which may be revoked at any time

    Where we process your information on the basis of legitimate interests, we do so in order to:

    Secure your Personal Data and Information

    All records containing personal or financial information are considered to be proprietary and are afforded confidential treatment at all times. Stack Overflow is committed to the safety and security of your personal data and the information that you share with us and with the public. We treat your personal safety and safety from harassment as top organizational priorities. At Stack Overflow we consider it necessary to pursue these legitimate interests in order to keep our community, you and your information safe from spam, harassment, intellectual property infringement, identity theft, and the scraping and unlawful collection of your information.

    Provide and Optimize Products and Services

    We use your information to provide and improve our Products and Services, for identification verification, to provide support, for online and offline marketing including through third party tools such as Google Analytics, and for general research and analytics reporting. In doing so, we may learn which of our Products and Services you are using most, what you’re interested in, and to better enable you to use and access our Products and Services. As a core part of our business, Stack Overflow has a legitimate interest in enabling and customizing your experience of our Product and Services offerings.

    Engage in Commercial Transactions

    As part of providing our core Products and Services, Stack Overflow may charge you for the use of some Products and Services, or certain features within these Products and Services. In order to process your payment, and to secure your financial information, we may facilitate the sharing of your information with third parties. We share your information only with third parties who have met strict security standards and consider the secure processing of your financial information to be a strict and legitimate business necessity.

    Comply with Regulatory and Legal Obligations

    Stack Overflow has a legitimate interest in complying with certain legal obligations and interests which, from time to time, may require the disclosure of your personal information. Stack Overflow will not disclose your personal information to legal authorities except where such disclosure is by lawful request, including to meet legitimate national security or law enforcement demands (including a subpoena, court order, or other lawful legal demand by a legal authority with lawful jurisdiction). In some cases, we may also release your personal information to defend our legitimate legal interests. We consider our obligation to protect the Stack Overflow community from imminent physical harm to be both a legitimate business interest as well as to be within the public interest and may disclose your personal information if we believe you or another individual may be in imminent danger of harm to yourself or to another.

    Marketing and Product Communications

    From time to time, Stack Overflow may communicate with you about commercial and other Product and Services offerings. In doing so, we provide you with an opportunity to opt-out of such messages at any time you choose via your account settings. Stack Overflow will not sell your personal information to enhance our marketing opportunities or profitability (except as may relate to a corporate event such as a sale or merger), and as we are committed to preventing spam, our direct marketing efforts are limited in scope and frequency. We engage in such activities as a legitimate business interest in order to promote key Products and Service offerings and provide you with every opportunity to unsubscribe from such communications or to further limit their scope and frequency. In short, while we want to communicate some key commercial communications with you and have determined it to be a legitimate interest for us to be able to do so, you have the final say in whether or not you would like to receive such commercial communications from us. You can review or change your permissions in your Email Settings.

    Core Business Operations

    Stack Overflow may engage with third parties in business transactions including the buying and selling of assets, the auditing of our business practices and financials, and to engage in business development opportunities. These core activities may involve the processing and/or disclosure of some limited personal information which may be necessary and within our legitimate interests to develop the Stack Overflow brand and business. If we transfer any personal information in pursuing such a business transaction, we will always ensure that strict confidentiality measures are in place to protect your privacy interests.

    DATA TRANSFERS

    Stack Overflow is a global community and as such, you may access the Stack Overflow Network from most anywhere in the world, and are subject to the local laws of your jurisdiction. By accessing the Stack Overflow Network and engaging with our Products and Services, you acknowledge that your personal data may be collected and transferred from your local jurisdiction (including member states to the European Union) to the United States.

    Where Stack Overflow transfers your personal data from your local jurisdiction (including member states to the European Union) we rely on certain lawful transfer mechanisms to do so, including the following lawful bases for such transfers:

    Privacy Shield

    Stack Overflow complies with the EU – US Privacy Shield Framework and Swiss – US Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal information transferred from the European Union and Switzerland to the United States. Stack Overflow has certified (note: certification under legal name Stack Exchange, Inc.) to the Department of Commerce that it adheres to the Privacy Shield Principles including onward transfer principles as amended by the GDPR where applicable. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/. Covered entities include Stack Exchange, Inc., Stack Exchange, Ltd., and Stack Overflow GmbH. Stack Exchange is subject to the investigatory and enforcement powers of the Federal Trade Commission / Department of Transportation. Stack Overflow has further committed to refer unresolved Privacy Shield complaints to the PrivacyTrust Shield Program, an alternative dispute resolution provider located in the United Kingdom. If you do not receive timely acknowledgement of your complaint from Stack Overflow, or if we have not addressed your concern to your satisfaction, please contact us: privacy (at) stackoverflow (dot) com or visit https://www.privacytrust.com/drs/stackexchange or at the contact information provided below.

    Standard Contractual Clauses

    The European Commission has adopted standard contractual clauses (also referred to as model clauses), which provide safeguards to protect the transfer of personal information outside of the European Union. We may use these standard contractual clauses when transferring personal information outside of the European Union. You may review and request a copy of such standard contractual clauses as used by Stack Overflow by contacting us at legal (at) stackoverflow (dot) com.

    OUR ONGOING COMMITMENT TO DATA SECURITY

    Security is important to us and we know it is important to you. Stack Overflow follows generally accepted standards to protect your personal information when processing, transferring, and storing your personal information including Transport Layer Security (“TLS”), by restricting your personal data when we do not need to access it and by keeping your personal data only as necessary to perform our legitimate business interests.

    As the data subject, you too have an important role to play in helping us protect your personal information. We encourage you to protect yourself against unauthorized access to your personal information by choosing a password carefully and in accordance with industry best standards. Do not share your password with anyone you do not trust, and make sure your computer accesses Stack Overflow via a secure network and that you do not leave your personal information vulnerable to hackers and other bad actors by leaving your computer unattended or by failing to logout of your account when you have ended your session activity.

    DIRECT MARKETING OPT-OUT

    You may opt-out of receiving Stack Overflow email marketing materials by using the unsubscribe link in these communications or by changing your Email Settings.

    PRIVACY POLICY AMENDMENTS

    We may amend or update this policy from time to time, and will notify you of any material changes to this policy. Previous versions of this privacy policy are available upon request.

    CONTACT US

    General Contact Information

    Privacy Officer

    • Adam Francoeur, Corporate Counsel, 110 William Street, Floor 28, New York, NY 10038, privacy (at) stackoverflow (dot) com, phone: 212-232-8280

    Privacy Shield

    • Privacy Trust, Communications House, 26 York Street, London, W1U 6PZ

    EU Representative

    • Mary Croskery, People Operations Partner, 2nd Floor, Bentima House, 168-172 Old Street, London EC1V 9BP, privacy (at) stackoverflow (dot) com +44 (0) 20 3349 0864
    Last update: May 21, 2018
  • Privacybeleidsovereenkomst
            
    Privacy Policy
    Valve respects the privacy of its online visitors and customers of its products and services and complies with applicable laws for the protection of your privacy, including, without limitation, the European Union General Data Protection Regulation (“GDPR”) and the Swiss and EU Privacy Shield Frameworks.

    1. Definitions

    Wherever we talk about Personal Data below, we mean any information that can either itself identify you as an individual (“Personally Identifying Information”) or that can be connected to you indirectly by linking it to Personally Identifying Information. Valve also processes anonymous data, aggregated or not, to analyze and produce statistics related to the habits, usage patterns, and demographics of customers as a group or as individuals. Such anonymous data does not allow the identification of the customers to which it relates. Valve may share anonymous data, aggregated or not, with third parties.

    Other capitalized terms in this Privacy Policy shall have the meanings defined in the Steam Subscriber Agreement (“SSA”).

    2. Why Valve Collects and Processes Data

    Valve collects and processes Personal Data for the following reasons:

    a) where it is necessary for the performance of our agreement with you to provide a full-featured gaming service and deliver associated Content and Services;
    b) where it is necessary for compliance with legal obligations that we are subject to (e.g. our obligations to keep certain information under tax laws);
    c) where it is necessary for the purposes of the legitimate and legal interests of Valve or a third party (e.g. the interests of our other customers), except where such interests are overridden by your prevailing legitimate interests and rights; or
    d) where you have given consent to it.

    These reasons for collecting and processing Personal Data determine and limit what Personal Data we collect and how we use it (section 3. below), how long we store it (section 4. below), who has access to it (section 5. below) and what rights and other control mechanisms are available to you as a user (section 6. below).

    3. What Data We Collect and Process

    3.1 Basic Account Data

    When setting up an Account, Valve will collect your email address and country of residence. You are also required to choose a user name and a password. The provision of this information is necessary to register a Steam User Account. During setup of your account, the account is automatically assigned a number (the “Steam ID”) that is later used to reference your user account without directly exposing Personally Identifying Information about you.
    We do not require you to provide or use your real name for the setup of a Steam User Account.

    3.2 Transaction and Payment Data

    In order to make a transaction on Steam (e.g. to purchase Subscriptions for Content and Services or to fund your Steam Wallet), you may need to provide payment data to Valve to enable the transaction. If you pay by credit card, you need to provide typical credit card information (name, address, credit card number, expiration date and security code) to Valve, which Valve will process and transmit to the payment service provider of your choice to enable the transaction and perform anti-fraud checks. Likewise, Valve will receive data from your payment service provider for the same reasons.

    3.3 Other Data You Explicitly Submit
    We will collect and process Personal Data whenever you explicitly provide it to us or send it as part of communication with others on Steam, e.g. in Steam Community Forums, chats, or when you provide feedback or other user generated content. This data includes:

    • Information that you post, comment or follow in any of our Content and Services;
    • Information sent through chat;
    • Information you provide when you request information or support from us or purchase Content and Services from us, including information necessary to process your orders with the relevant payment merchant or, in case of physical goods, shipping providers;
    • Information you provide to us when participating in competitions, contests and tournaments or responding to surveys, e.g. your contact details.

    3.4 Your Use of the Steam Client and Websites
    We collect a variety of information through your general interaction with the websites, Content and Services offered by Steam.
    Personal Data we collect may include, but is not limited to, browser and device information, data collected through automated electronic interactions and application usage data.
    Likewise, we will track your process across your websites and applications to verify that you are not a bot and to optimize our services.

    3.5 Your Use of Games and other Subscriptions
    In order to provide you with services, we need to collect, store and use various information about your activity in our Content and Services. “Content-Related Information” includes your Steam ID, as well as what is usually referred to as “game statistics”. By game statistics we mean information about your games’ preferences, progress in the games, playtime, as well as information about the device you are using, including what operating system you are using, device settings, unique device identifiers, and crash data.

    3.6 Tracking Data and Cookies
    We use “Cookies”, which are text files placed on your computer, to help us analyze how users use our services, and similar technologies (e.g. web beacons, pixels, ad tags and device identifiers) to recognize you and/or your device(s) on, off and across different devices and our services, as well as to improve the services we are offering, to improve marketing, analytics or website functionality. The use of Cookies is standard on the internet. Although most web browsers automatically accept cookies, the decision of whether to accept or not is yours. You may adjust your browser settings to prevent the reception of cookies, or to provide notification whenever a cookie is sent to you. You may refuse the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this, you may not be able to access the full functionality of our websites.
    When you visit any of our services, our servers log your global IP address, which is a number that is automatically assigned to the network your computer is part of.

    3.7 Google Analytics
    This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on visitors’ computers, to help the website operators analyze how visitors use the site. The information generated by the cookie about the visitors’ use of the website will generally be transmitted to and stored by Google on servers in the United States.
    On this website, IP anonymization has been activated. The IP addresses users visiting Steam will be shortened. Only in exceptional cases will a complete IP address be transferred to a Google server in the United States and shortened there. On behalf of the website operator, Google will use this information for the purpose of evaluating the website for its users, in order to compile reports on website activity, and to provide other services relating to website activity and internet usage for website operators.
    Google will not associate the IP address transferred in the context of Google Analytics with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser. However, please note that in this case you may not be able to use the full functionality of this website.
    Furthermore, users can prevent the collection of data about their use of the website (including their IP address) generated by the cookie, and the processing of data by Google, by downloading and installing the browser plug-in through the following link: http://tools.google.com/dlpage/gaoptout?hl=en.

    3.8 Content Recommendations
    We may process information collected under this section 3 so that content, products and services shown on the pages of the Steam store and in update messages displayed when launching the Steam Client can be tailored to meet your needs and populated with relevant recommendations and offers. This is done to improve your customer experience. You can prevent the processing of your data in this way by turning off the automatic loading of the Steam store page and of Steam notifications in the “Interface” section of the Steam Client settings.
    Subject to your separate consent or where explicitly permitted under applicable laws on email marketing, Valve may send you marketing messages about products and services offered by Valve to your email address. In such a case we may also use your collected information to customise such marketing messages as well as collect information on whether you opened such messages and which links in their text you followed.
    You can opt out or withdraw your consent to receive marketing emails at any time by either withdrawing the consent on the same page where you previously provided it or clicking the “unsubscribe” link provided in every marketing email.

    3.9 Information Required to Detect Violations
    We collect certain data that is required for our detection, investigation and prevention of fraud, cheating and other violations of the SSA and applicable laws (“Violations”). This data is used only for the purposes of detection, investigation, prevention and, where applicable, acting on of such Violations and stored only for the minimum amount of time needed for this purpose. If the data indicates that a Violation has occurred, we will further store the data for the establishment, exercise or defense of legal claims during the applicable statute of limitations or until a legal case related to it has been resolved. Please note that the specific data stored for this purpose may not be disclosed to you if the disclosure will compromise the mechanism through which we detect, investigate and prevent such Violations.

    4. How Long We Store Data

    We will only store your information as long as necessary to fulfil the purposes for which the information is collected and processed or — where the applicable law provides for longer storage and retention period — for the storage and retention period required by law. After that your Personal Data will be deleted, blocked or anonymized, as provided by applicable law.

    In particular:

    • If you terminate your Steam User Account, your Personal Data will be marked for deletion except to the degree legal requirements or other prevailing legitimate purposes dictate a longer storage.
    • In certain cases Personal Data cannot be completely deleted in order to ensure the consistency of the gameplay experience or the Steam Community Market. For instance, matches you have played that affect other players’ matchmaking data and scores will not be deleted; rather, your connection to these matches will be permanently anonymized.
    • Please note that Valve is required to retain certain transactional data under statutory commercial and tax law for a period of up to ten (10) years.
    • If you withdraw your consent on which a processing of your Personal Data or of the Personal Data of your child is based, we will delete your Personal Data respectively the Personal Data of your child without undue delay to the extent that the collection and processing of the Personal Data was based on the withdrawn consent.
    • If you exercise a right to object to the processing of your Personal Data, we will review your objection and delete your Personal Data that we processed for the purpose to which you objected without undue delay, unless another legal basis for processing and retaining this data exists or unless applicable law requires us to retain the data.

    5. Who Has Access to Data

    5.1 Valve and its subsidiaries may share your Personal Data with each other and use it to the degree necessary to achieve the purposes listed in section 2. above. In the event of a reorganization, sale or merger we may transfer Personal Data to the relevant third party subject to applicable laws.

    5.2 We may also share your Personal Data with our third party providers that provide customer support services in connection with goods, Content and Services distributed via Steam. Your Personal Data will be used in accordance with this Privacy Policy and only as far as this is necessary for performing customer support services.

    5.3 In accordance with internet standards, we may also share certain information (including your IP address and the identification of Steam content you wish to access) with our third party network providers that provide content delivery network services and game server services in connection with Steam. Our content delivery network providers enable the delivery of digital content you have requested, e.g. when using Steam, by using a system of distributed servers that deliver the content to you, based on your geographic location.

    5.4 We make certain data related to your Steam User Account available to other players and our partners through the Steamworks API. This information can be accessed by anyone by querying your Steam ID. At a minimum, the public persona name you have chosen to represent you on Steam and your Avatar picture are accessible this way, as well as whether you have received a ban for cheating in a multiplayer game. The accessibility of any additional info about you can be controlled through your Steam Community user profile page; data publicly available on your profile page can be accessed automatically through the Steamworks API.
    In addition to the publicly available information, game developers and publishers have access to certain information from the Steamworks API directly relating to the users of the games they operate. This information includes as a minimum your ownership of the game in question. Depending on which Steamworks services are implemented in the game it may also include leaderboard information, your progress in the game, achievements you have completed, your multiplayer game matchmaking information, in-game items and other information needed to operate the game and provide support for it. For more information on what Steamworks services a specific game has implemented, please review its store page.
    While we do not knowingly share Personally Identifying Information about you through the Steamworks API such as your real name or your email address, any information you share about yourself on your public Steam Profile can be accessed through the Steamworks API, including information that may make you identifiable.

    5.5 The Steam community includes message boards, forums and/or chat areas, where users can exchange ideas and communicate with each other. When posting a message to a board, forum or chat area, please be aware that the information is being made publicly available online; therefore, you are doing so at your own risk. If your Personal Data is posted on one of our community forums against your will, please use the reporting function and the Steam help site to request its removal.

    5.6 Valve may allow you to link your Steam User Account to an account offered by a third party. If you consent to link the accounts, Valve may collect and combine information you allowed Valve to receive from a third party with information of your Steam User Account to the degree allowed by your consent at the time. If the linking of the accounts requires the transmission of information about your person from Valve to a third party, you will be informed about it before the linking takes place and you will be given the opportunity to consent to the linking and the transmission of your information. The third party’s use of your information will be subject to the third party’s privacy policy, which we encourage you to review.

    5.7 Valve may release Personal Data to comply with court orders or laws and regulations that require us to disclose such information.

    6. Your Rights and Control Mechanisms

    The data protection laws of the European Economic Area and other territories grant their citizens certain rights in relation to their Personal Data. While other jurisdictions may provide fewer statutory rights to their citizens, we make the tools designed to exercise such rights available to our customers worldwide.

    To allow you to exercise your data protection rights in a simple way we are providing a dedicated section on the Steam support page (the “Privacy Dashboard”). This gives you access to your Personal Data, allows you to rectify and delete it where necessary and to object to its use where you feel necessary. To access it, log into the Steam support page at http://help.steampowered.com and choose the menu items My Account -> View Account Data.

    As a resident of the European Economic Area you have the following rights in relation to your Personal Data:

    6.1 Right of Access.
    You have the right to access your Personal Data that we hold about you, i.e. the right to require free of charge (i) information whether your Personal Data is retained, (ii) access to and/or (iii) duplicates of the Personal Data retained. You can use the right to access to your Personal Data through the Privacy Dashboard. If the request affects the rights and freedoms of others or is manifestly unfounded or excessive, we reserve the right to charge a reasonable fee (taking into account the administrative costs of providing the information or communication or taking the action requested) or refuse to act on the request.

    6.2 Right to Rectification.
    If we process your Personal Data, we shall endeavor to ensure by implementing suitable measures that your Personal Data is accurate and up-to-date for the purposes for which it was collected. If your Personal Data is inaccurate or incomplete, you can change the information you provided via the Privacy Dashboard.

    6.3. Right to Erasure.
    You have the right to obtain deletion by us of Personal Data concerning you by deleting your Steam User Account via the Steam support page.

    As a result of deleting your Steam User Account, you will lose access to Steam services, including the Steam User Account, Subscriptions and game-related information linked to the Steam User Account and the possibility to access other services you are using the Steam User Account for.

    We allow you to restore your Steam User Account during a grace period of 30 (thirty) days from the moment you request deletion of your Steam User Account. This functionality allows you not to lose your account by mistake, because of your loss of your account credentials or due to hacking. During the suspension period, we will be able to finalize financial and other activities that you may have initiated before sending the Steam User Account deletion request. After the grace period, Personal Data associated with your account will be deleted subject to section 4. above.

    In some cases, deletion of your Steam User Account, and therefore Personal Data deletion, is complicated. Namely, if your account has a business relationship with Valve, such as due to your work for a game developer, you will only be able to delete your Steam User Account after you have transferred this role to another user or have dissolved the business relationship. In some cases, considering the complexity and number of the requests, the period for Personal Data erasure may be extended, but for no longer than two further months.

    6.4 Right to Object.
    When our processing of your Personal Data is based on legitimate interests according to Article 6(1)(f) of the GDPR / section 2.c) of this Privacy Policy, you have the right to object to thise processing. If you object we will no longer process your Personal Data unless there are compelling and prevailing legitimate grounds for the processing as described in Article 21 of the GDPR; in particular if the data is necessary for the establishment, exercise or defense of legal claims.

    You also have the right to lodge a complaint at a supervisory authority.

    7. Children

    The minimum age to create a Steam User Account is 13. Valve will not knowingly collect Personal Data from children under this age. Insofar as certain countries apply a higher age of consent for the collection of Personal Data, Valve requires parental consent before a Steam User Account can be created and Personal Data associated with it collected. Valve encourages parents to instruct their children to never give out personal information when online.

    8. Contact Info

    You can contact Valve’s data protection officer at the address below.

    While we review any request sent by mail, please be aware that to combat fraud, harassment and identity theft, the only way to access, rectify or delete your data is through logging in with your Steam User Account at http://help.steampowered.com and selecting the menu items -> My Account -> View Account Data.

    Valve Corporation
    Att. Data Protection officer
    P.O. Box 1688
    Bellevue, WA 98009

    European representative for data protection questions:

    Valve GmbH
    Att. Legal
    Rödingsmarkt 9
    D-20354 Hamburg
    Germany

    9. Additional Information for Users from the European Economic Area

    Valve complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States. Valve has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit http://www.privacyshield.gov.

    In compliance with the Privacy Shield Principles, Valve commits to resolve complaints about our collection or use of your personal information. EU and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Valve here. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request. As explained in the Privacy Shield documentation (https://www.privacyshield.gov/article?id=ANNEX-I-introduction) certain residual claims not resolved by other means may be subject to binding arbitration. In such event, an arbitration option will be made available to you.

    The Privacy Shield Principles describe Valve’s accountability for Personal Data that it subsequently transfers to a third party agent. Under the Principles, Valve shall remain liable if third party agents process the personal information in a manner inconsistent with the Principles, unless Valve proves it is not responsible for the event giving rise to the damage.

    The Federal Trade Commission has jurisdiction over Valve’s compliance with the Privacy Shield.

    Revision Date: May 25, 2018

  • PRIVACY
    STATEMENT
    MEI 2018
    TELE2

    Tele2 gebruikt je persoonsgegevens en respecteert daarbij je privacy. Lees hieronder hoe dit gebeurt.
    Wie is Tele2?
    • Tele2 is verantwoordelijk voor het gebruik van je persoonsgegevens.
    • Tele2 bestaat uit Tele2 Nederland B.V., Tele2 Finance B.V. en Tele2 Retail B.V.
    • Het adres van Tele2 is: Wisselwerking 58, 1112 XS, Diemen
    • Je kunt contact opnemen met Tele2:
    1. Via tele2.nl door in te loggen op uw persoonlijke internetpagina ‘MijnTele2’
    2. Door te bellen naar onze klantenservice (020-754 4444)
    3. Door een brief te sturen naar Tele2 Nederland B.V., Postbus 289, 2400 AG Alphen aan den Rijn
    • De Data Protection Officer van Tele2 is per e-mail te bereiken via privacy.nl@ tele2.com
    Waarom gebruikt Tele2 je persoonsgegevens?

    Dit doet Tele2 om:

    • diensten te verlenen aan jou zoals telefonie, internet en televisie.
    • met jou een overeenkomst te sluiten, je een factuur te sturen en voor de financiële administratie van Tele2.
    • een kredietwaardigheidsonderzoek uit te voeren.
    • diensten te verkopen en reclame te sturen.
    • het aanbieden van een app of digitale MijnTele2 omgeving waarin je een overzicht van jouw persoonsgegevens en diensten aantreft.
    • je vragen te beantwoorden en je klachten te behandelen
    • op jouw verzoek medewerking te verlenen aan het opnemen van je gegevens in openbare telefoongidsen en abonnee-informatiediensten (zie ook www.mijnnummervermelding.nl).
    • te zorgen dat je beschikt over een veilig en goed netwerk
    • fraude of misbruik van onze diensten te bestrijden en te voldoen aan wettelijke verplichtingen.
    • het personeel van Tele2 op te leiden en te trainen.
    • het gedrag van klanten van Tele2 te analyseren zodat de diensten van Tele2 kunnen worden verbeterd.
    • te controleren of je een toestel gebruikt dat geschikt is voor ons 4G netwerk en om te controleren of een toestel zo staat ingesteld dat dit toestel gebruik maakt van ons 4G netwerk.
    Welke persoonsgegevens gebruikt Tele2?

    Als je gebruik wenst te maken van de diensten van Tele2, zoals telefonie, internet en televisie, heeft Tele2 je persoonsgegevens nodig.

    Dat zijn de volgende persoonsgegevens:

    1. de gegevens van jou als klant van Tele2 (“Klantgegevens”):

    • achternaam en voornamen
    • of je vrouw of man bent
    • geboortedatum
    • adres, postcode en woonplaats
    • vaste telefoonnummer
    • mobiele telefoonnummer
    • e-mailadres
    • bankrekeningnummer
    • nummer van je paspoort, identiteitsbewijs of rijbewijs
    • je inkomen en woonlasten indien je een krediet afsluit voor de betaling van een toestel
    • je stemgeluid, als je belt met de klantenservice van Tele2 (het gesprek wordt kort bewaard voor opleiding en training of, indien je een bestelling telefonisch plaatst, om aan te tonen dat je een overeenkomst met ons hebt gesloten)

    en

    2. de gegevens van het gebruik dat je maakt van de diensten van Tele2 (“Gebruiksgegevens”):

    • het soort en type toestel dat je gebruikt, zoals een computer, laptop, tablet, vaste telefoon, mobiele telefoon of televisie
    • IP-adres van je apparaat dat kan verbinden met internet
    • SIM-kaartnummer en het daarin opgenomen IMSI-nummer
    • IMEI-nummer van je mobiele telefoon
    • Je locatiegegevens, dat wil zeggen de plaatsen waar je gebruik maakt van een dienst van Tele2
    • De instellingen van je toestel zodat we zien of je effectief gebruik maakt of kunt maken van ons 4G netwerk
    • Verkeersgegevens, dat wil zeggen de data en tijdstippen van inloggen, uitloggen, bellen met je vaste of mobiele telefoon, internetten en televisie kijken 

    en

    3. de gegevens over jouw verbruik van de diensten van Tele2 (“Verbruiksgegevens”):

    • het aantal door jou gebelde minuten (bij vaste of mobiele telefonie)
    • de hoeveelheid door jou verbruikte internetdata (bij mobiel internet)
    • de soorten en aantallen van de door jou gehuurde of gekochte films, series en pay-per-view (bij digitale televisie).

    We vragen je toestemming als we jouw Verbruiksgegevens gebruiken om je aanbiedingen te doen voor onze diensten. Als je toestemming hebt gegeven, kun je deze op elk gewenst moment weer intrekken via MijnTele2, via het menu van je decoder of online-tv app  (bij digitale televisie) of via de klantenservice van Tele2.

    Aan wie geeft Tele2 jouw persoonsgegevens?

    Tele2 kan je persoonsgegevens geven aan:

    • Onderaannemers van Tele2, zoals verkopers/handelsagenten van Tele2, pakketbezorgers, monteurs die bij jou thuis komen, klantcontactcentra en leveranciers van hardware en software indien je deze van ons hebt geleend om uw draadloos internet thuis te verbeteren. Deze onderaannemers werken in opdracht en onder verantwoordelijkheid van Tele2. Klantgegevens worden alleen gegeven met het doel: diensten te verlenen aan jou, met jou een overeenkomst te sluiten, je een factuur te sturen, beheer en onderhoud aan hardware en software te verrichten, aan jou diensten te verkopen en aan jou reclame te sturen of je vragen te beantwoorden en je klachten te behandelen
    • Experian, Postbus 16604, 2500 BP Den Haag, telefoonnummer 0900 – 39737426 (experian.nl). Klantgegevens worden alleen gegeven met het doel: een kredietwaardigheidsonderzoek uit te voeren of een betalingsachterstand te melden.
    • Stichting Preventel, Postbus 744, 7400 AS Deventer (preventel.nl). Klantgegevens worden alleen gegeven met het doel: een kredietwaardigheidsonderzoek uit te voeren of een betalingsachterstand te melden.
    • Stichting Bureau Krediet Registratie (BKR) te Tiel die een Centraal Krediet Informatiesysteem beheert, als je met een krediet een telefoontoestel koopt van Tele2 of van een verkoper/handelsagent van Tele2. Klantgegevens worden alleen gegeven met het doel: een kredietwaardigheidsonderzoek uit te voeren of een betalingsachterstand te melden
    • Incassobureau van Tele2, als je te laat bent met betalen. Klantgegevens worden alleen gegeven met het doel: je een factuur te sturen die je kunt betalen
    • Stichting COIN. Klantgegevens worden alleen gegeven met het doel: om jouw locatie te bepalen als je belt naar 112 op jouw verzoek jouw telefoonnummers af te schermen op jouw factuur, en op jouw verzoek voor opname van jouw telefoonnummers in openbare telefoongidsen of nummerinformatiediensten (zie www.mijnnummervermelding.nl)
    • Andere Telecomaanbieders. Klantgegevens worden alleen gegeven met het doel: in geval je je telefoonnummer wilt meenemen naar een andere telecomaanbieder of om telefonische overlast tegen te gaan)
    • Alarmcentrale 112. Klantgegevens worden alleen gegeven met het doel: als je belt naar 112. Je telefoonnummer (ook als deze geheim is) wordt dan doorgegeven aan deze alarmcentrale. Dit is een wettelijke verplichting
    • Politie en justitie, als Tele2 daartoe verplicht is op grond van de Nederlandse wetgeving
    • E- mail adressen worden aangeleverd en geanonimiseerd voor het aanmaken van doelgroepen die we met onze advertenties via Facebook willen benaderen. We ontvangen hierover vervolgens rapportages met geanonimiseerde gegevens.
    • Tele2 Finance B.V. Klantgegevens worden alleen gegeven met het doel: een kredietovereenkomst met je te sluiten in verband met de betaling van het toestel.
    • Tele2 Retail B.V. Klantgegevens worden alleen gegeven met het doel: een overeenkomst met je te sluiten voor de levering van diensten of een toestel of om een klantenservice aan je te verlenen, via een van onze winkels.

    Je Klantgegevens en Gebruiksgegevens worden door enkele van onze onderaannemers onder de voorwaarden, die de wet stelt, verwerkt  in landen buiten de Europese Unie (EU) met het doel: IT-ondersteuning en ondersteuning bij het verlenen van klantenservice.

    Hoe lang bewaart Tele2 je persoonsgegevens?

    Je Klantgegevens worden bewaard voor een periode van maximaal 30 maanden nadat je overeenkomst met Tele2 is geëindigd. Dit met het doel om jouw vragen of verzoeken achteraf te beantwoorden en om je een aanbieding te kunnen doen van onze diensten. Indien je hier  bezwaar tegen hebt gemaakt doen wij dit uiteraard niet.

    Je Gebruiksgegevens worden bewaard voor een periode van maximaal 18 maanden.

    Je Verbruiksgegevens worden bewaard voor een periode van maximaal 24 maanden.

    Je betaalgedrag aan Tele2 bewaren we gedurende 5 jaar.

    Je contracten en facturen worden tot uiterlijk 10 jaar bewaard voor fiscale doeleinden.

    Gebruikt Tele2 cookies?

    Tele2.nl maakt gebruik van cookies en vergelijkbare technieken.

    Voordat de cookies worden geplaatst, word je geïnformeerd over de soorten cookies die we gebruiken. Je kunt kiezen tussen ‘Volledige functionaliteit’ en ‘Beperkte functionaliteit’.

    Als je geen klant bent van Tele2, worden cookies geplaatst om onze website te laten functioneren, te verbeteren en af te rekenen met partijen via wie jij op onze website terecht bent gekomen.

    Wanneer je je e-mailadres invult in onze webshop, vragen we je om toestemming om je een e-mail te kunnen sturen en je te informeren over de status van je bestelling bij ons.

    Als je wel klant bent van Tele2 en kiest voor ‘Volledige functionaliteit’ dan plaatsen wij de hiervoor genoemde cookies en combineren wij de met deze cookies verzamelde gegevens met de gegevens die wij van je  hebben omdat je klant van ons bent. Wij gebruiken deze gegevens om onze websites en onze dienstverlening te verbeteren en om je gerichte advertenties te kunnen tonen en aanbiedingen te kunnen doen op onze eigen websites en op social media. Bijvoorbeeld, hoe vaak je inlogt in MijnTele2, welke instellingen je daarin hebt gewijzigd en welke pagina’s je op onze website bezoekt en op welke advertenties van Tele2 je hebt geklikt. We gebruiken deze gegevens om de effectiviteit van onze marketinginspanningen te meten.

    Als je wel klant bent van Tele2 en kiest voor ‘Beperkte functionaliteit’, worden alleen cookies geplaatst om onze website te laten functioneren, te verbeteren en af te rekenen met partijen via wie jij op onze website terecht bent gekomen.

    Daarnaast staan we social media en advertentienetwerken van Snapchat, Facebook en Twitter toe om via onze website een cookie, web beacon of vergelijkbare techniek te plaatsen om je apparaat te kunnen herkennen wanneer ze een online advertentie sturen. Op deze manier kunnen deze netwerken informatie verzamelen op welke advertenties je hebt geklikt. Deze partijen kunnen deze informatie ook voor hun eigen doelen gebruiken en het stelt de advertentienetwerken in staat gerichte reclame te leveren waarvan zij denken dat deze je interesseert. Tele2 heeft geen verdere toegang of inzage in deze cookies.

    Om je cookie-voorkeuren te wijzigen en voor meer informatie over welke cookies worden geplaatst via onze website en de duur van de opslag, kun je onze informatie over cookies op Tele2.nl/cookies raadplegen.

    Doet Tele2 aan profilering?

    Tele2 doet op verschillende manieren aan profilering.

    Bij aanvang van onze dienstverlening proberen we te voorspellen of je je betalingsverplichtingen aan ons kunt nakomen. Dit doen we op basis van intern beschikbare data (eerdere ervaringen) en extern beschikbare data over je betaalgedrag. Gevolg hiervan kan zijn dat je geen dienst of toestelkrediet bij ons mag afnemen.

    Als je klant bij ons bent, proberen we te voorspellen of er een risico is dat je ons weer wilt gaan verlaten, bijvoorbeeld wanneer je aan het einde van de looptijd van je contract zit, vaak naar onze klantenservice belt en/of wanneer je hebt aangegeven (on-)tevreden te zijn over onze dienstverlening of wanneer je op ‘Opzeggen’ klikt op de online MijnTele2 omgeving. Gevolg hiervan kan zijn dat we je benaderen voor een (verlengings-)aanbod.

    Afhankelijk van je verbruik van onze diensten, proberen we te voorspellen in welk type abonnementsvormen je geïnteresseerd zou kunnen zijn. Gevolg hiervan kan zijn dat je van ons een aanbod krijgt die aansluit op je verbruik van onze diensten.

    We proberen een interesseprofiel van je op te stellen op basis van het toestel dat je hebt of waarin je geïnteresseerd bent en de Tele2 acties waaraan je hebt deelgenomen.

    Wat zijn je rechten?

    Je hebt de volgende rechten:

    • Recht op inzage in je persoonsgegevens.
    • Recht op verbetering van je persoonsgegevens indien deze onjuist zijn.
    • Recht op verwijdering van je persoonsgegevens: je hebt recht op verwijdering van je persoonsgegevens wanneer het voor Tele2 niet langer nodig is om deze te bewaren. Het kan nodig zijn om je gegevens te bewaren om jou onze producten en diensten te kunnen leveren, om aan te tonen dat je een overeenkomst met ons hebt gesloten en omdat dit vereist is in verband met wettelijke verplichtingen. We hanteren daarbij maximale bewaartermijnen.
    • Recht op overdracht van je persoonsgegevens: je kunt je telefoonnummer meenemen naar een andere telecomaanbieder en ook kun je je (factuur-) gegevens opslaan en zelf daarnaar overdragen.
    • Recht om bezwaar te maken tegen gebruik van je persoonsgegevens voor marketing doeleinden van Tele2.
    • Recht op beperking van verwerking van je persoonsgegevens: op jouw verzoek beperken we de verwerking van je persoonsgegevens als je verbetering van je persoonsgegevens hebt verzocht, bezwaar hebt gemaakt tegen deze verwerking, of deze onrechtmatig is en je toch de persoonsgegevens wenst te bewaren.

    Voor het inzien, aanpassen en overdragen van je gegevens of instellingen kun je dit meestal zelf doen. Dat kan via je persoonlijke MijnTele2 omgeving of kijk op www.tele2.nl/klantenservice/privacy. Lukt dit niet of heb je een ander verzoek, neem dan contact met ons op. Kijk hiervoor onder ‘Heb je nog vragen?’.

    Heb je nog vragen?

    Bij vragen of het uitoefenen van een privacy recht kun je contact opnemen met Tele2:

    • Via tele2.nl door in te loggen op je persoonlijke internetpagina ‘MijnTele2’
    • Via tele2.nl/klantenservice/privacy
    • Door te bellen naar onze klantenservice (020-754 4444)
    • Door een brief te sturen naar Tele2 Nederland B.V. o.v.v. Privacy, Postbus 289, 2400 AG Alphen aan den Rijn
    • De Data Protection Officer van Tele2 is per e-mail te bereiken via privacy.nl@ tele2.com
    Geen reactie ontvangen?

    We doen ons uiterste best om succesvol te zijn in de zorgvuldige omgang met je persoonsgegevens en de afhandeling van je verzoeken. Als we niet  binnen 1 maand op je verzoek reageren, dan kun je daarover een klacht indienen bij ons.

  • Privacy Policy

    Effective as of 25 May 2018

    Your privacy is of the utmost importance at Devart. This Privacy Policy describes how we collect and manage your data.

    By using tmetric.com (the “Site”) and/or registering a TMetric User Account (using the Service), you agree to the terms of this Privacy Policy and the Terms of Service. TMetric is designed and operated by Devart Inc. (“Devart”, or “We”, “Our”, or “Us”). Please read the Terms of Service in their entirety, and refer to those for definitions and contacts.

    • We never sell your personal data to anyone.
    • We never share any information about your projects, time entries or customers with anyone without your explicit permission.
    • To provide better service, we share some statistical data and some Personal Data with third parties.
    • Your data is yours and you can change or delete it at any time.
    • We encrypt backups, don’t store credit card numbers on our servers and generally make sure your data is safe.

    To exercise any of the rights mentioned in this Privacy Policy and/or in the event of questions or comments relating to the use of Personal Data please write to support@tmetric.com

    1. Data Collected

    We may collect the following data from you.

    Site Usage Data

    We collect anonymous data from every visitor of our Site, such as, the website from which the person visited us from, the parts of Site visited, the date and duration of the visit, and information from the device (device type, operating system, screen resolution, language, country you are located in, and web browser type) you used during your visit. We only capture and store a truncated version of the IP address. It is captured and stored in an anonymized format by suppressing the last octet so your full IP address never reaches our servers and we never have access to it.

    Cookies

    We use cookies to process details of the visitor’s behavioral patterns upon visiting our Site. This is done to provide you with a better experience, and to facilitate the use of certain functions. Cookies are small data files transferred onto computers or devices by sites for record-keeping purposes and to enhance functionality on our Site.

    For more info about the cookies we make use of, please read Cookies Policy.

    User Profile Data

    When you sign up to TMetric Service, we collect the following information from you: name, email, password, company name and size. Most of this information can be reviewed and edited on My Profile page of our Service.

    Service Account Data

    When using TMetric Service, you may provide us with the following information: names and emails of your employees/coworkers, projects ans tasks you are working on, URLs of your tasks (from third party web applications), your client names, currency and billing rates.

    You can export this information using TMetric reporting system. You can also delete your Service Account data at any time.

    User Activity Data

    The following information is collected by our desktop applications (Mac, Windows and Linux): applications currently being worked on, websites you visited, time you are active, the operating system you are using, whether your mouse is actively moving or not, and whether your keyboard is being typed on.

    TMetric Desktop is not a keylogging program. It does not know what you are typing; rather, TMetric Desktop merely records whether your keyboard is active or inactive.

    You can disable collection of your activity data from the Preferences window of the TMetric Desktop application.

    Payment Information

    If you choose to upgrade your Service Account to a paid Subscription Plan, we will redirect you to a secure online shop of our merchant provider (2Checkout). They will collect your payment details and billing information.

    Feedback

    You may also provide information to be posted on public areas of the Site, or transmitted to other users of the Site or the Service or third parties. Your contributions are posted on and transmitted to others at your own risk. We cannot and do not guarantee that your contributions will not be viewed by unauthorized persons.

    We use a third party chat service on the Site. This service is governed by its own privacy policy you may find in section 6.

    This Privacy Policy also applies to information that you provide to us in email, text, and other messages.

    2. Use of the Data

    We only use your Personal Data to provide you with the Service to communicate with you about the Service or the Site. This includes both automated and manual processing of data.

    With respect to any data you may choose to enter or upload to TMetric, we take the privacy and confidentiality of this data seriously. Your data (in the Service) is specifically not shared between accounts or with the public. We employ industry standard techniques to protect against unauthorized access of data that we store, including Personal Data. All off-site backups of your data are securely encrypted.

    Please note that if you choose to share data (like sharing invoices with your clients), we are not responsible for any violation of privacy law you may be liable for.

    We do not share Personal Data you have provided to us without your consent, unless we believe it’s necessary to:

    • carry out a user’s request;
    • provide the highest quality of service;
    • enforce our Terms of Service, or comply with legal requirements;
    • detect, prevent or address fraud, security or technical issues;
    • otherwise protect our property, legal rights, or that of others.

    Devart may contact you by email. For example, Devart may send you promotional emails relating to TMetric or communicate with you about your use of the Site and Service. If you do not want to receive emails from us, please opt out of receiving emails at the bottom of any TMetric email. Please note that for some emails (for example billing issues), there’s no option to opt-out.

    3. Who Has Access to the Data

    If you use TMetric in your capacity as an employee, your employer has direct access to your data. If you are an independent contractor, the person or entity with whom you contract has direct access to your data.

    Devart employees or contractors may have access your accounts and the information that you have provided for support, maintenance and servicing purposes or for any security-related, technical or billing reasons.

    In addition, we may share some of your personal data (name, email, company information) with our sub-processors see (“Sharing of Data”).

    4. Where the Data is Stored

    Devart stores all your project, time entries, tasks, activity etc. in our database through Microsoft Azure services which are hosted and managed by Microsoft. Database backups are stored in Azure Storage accounts.

    Data center is located in the West Europe Azure region (Netherlands). See https://azure.microsoft.com/en-us/global-infrastructure/regions/

    You can read more about Microsoft’s security measures here.

    5. GDPR compliance

    For a detailed list of data sub-processors under The General Data Protection Regulation (GDPR) please see below under “Sharing of Data”.

    Your Data Protection Rights Under GDPR

    If you are a resident of the European Economic Area, you have the following data protection rights:

    • You can object to the processing of your Personal Data, ask us to restrict the processing of your Personal Data, or request portability of your Personal Data. You can exercise these rights by emailing support@tmetric.com.
    • You have the right to opt-out of marketing communications we send you at any time. You can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing emails we send you. To opt-out of other forms of marketing, please contact us by emailing support@tmetric.com.
    • Similarly, if we have collected and processed your Personal Data with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect the processing of your Personal Data conducted in reliance on lawful processing grounds other than consent.
    • You have the right to complain to a data protection authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority.

    If you want to request an export or deletion of your personal data, and have a User Account with us, please contact us at support@tmetric.com. Please note that we cannot delete personal data in open Service Accounts when you’re not the account owner, as this would prevent us from providing the service the account owner is paying for (We suggest that you contact the account owner of the TMetric Service Account in order to ask them to anonymize or remove your data).

    We will respond to Data Subject Rights Requests within the appropriate amount of time.

    Data Retention Schedule

    In order to accommodate customers who need older data restored, we keep backups for 30 days and cannot delete Personal Data form them as these are stored off-site, encrypted and compressed. Your Personal Data will be automatically deleted along with obsolete backups 30 days after we delete your data from the main database.

    Some third party party services collect data independently from us, and have incorporated it as part of their service.

    We do not store any copies of this data, and Data Subject Requests for this data must be submitted to the third party service, since we do not control the data.

    Data Processing Agreement

    We do have a Data Processing Addendum (DPA), which meets with GDPR requirements for agreements between Data Controllers (you) and Data Processors (us). We offer this DPA to our customers that operate in the EU.

    This document forms part of a contract of service with Devart (as the Data Processor) and our users/customers (as the Data Controllers). The DPA reflects the parties’ agreement with regard to the processing of Personal Data performed using our service.

    We provide a copy of DPA upon your request. As a Data Controller, in order to sign this agreement, you must review and digitally sign the copy of the Data Processing Addendum. We will countersign it and provide you with a fully executed downloadable copy via email.

    Upon Devart’s receipt of the validly completed and digitally signed agreement, this agreement shall be in full force and effect.

    6. Sharing of Data

    We don’t share your Personal Data with third parties except as listed below. You may also allow access for other apps (not listed here) to your TMetric account via our API.

    We listed below what data these third parties extract exactly. Feel free to check out their own Privacy Policies to find out more.

    Site usage tracking

    • Google Analytics: no personally identifiable data is shared.
    • Hotjar: no personally identifiable data is shared.

    Communication when getting started with TMetric, news, special offers relating to the Service and recommendations on how to use the Service

    Online chat and email support

    Service Fees

    • 2Checkout: email, payment information, name, and billing address as we do not store this data ourselves.

    Service hosting and data backups

    • Microsoft Azure: storing databases, encrypted archives of backup data, and import files. This data is not readable by Microsoft.

    7. Revisions to this Privacy Policy

    We may revise this Privacy Policy from time to time and all updates will be posted on this page. The most current version of this Privacy Policy will govern our practices for collecting, processing, and disclosing personal data.

  • Privacy policy

    Vier privacy promises

    We verzamelen het liefst zo min mogelijk gegevens van je. Toch is dat soms nodig, om bijvoorbeeld je bestelling te leveren of om te peilen wat je van een nieuwe productpagina vindt. TransIP behandelt je gegevens zorgvuldig en zorgt ervoor dat je privacy gewaarborgd blijft.

    Daarom geven we je deze vier privacy promises mee:

    1. Je persoonlijke gegevens beschermen we alsof het die van onszelf zijn.
    2. Je persoonlijke gegevens gebruiken we alleen voor de in deze privacyverklaring omschreven doeleinden.
    3. Wij bewaren je gegevens niet langer dan noodzakelijk is om de in deze privacyverklaring genoemde doeleinden te bereiken.
    4. Je persoonlijke gegevens delen we alleen indien dat noodzakelijk is voor de uitvoering van de overeenkomst.

    Welke persoonsgegevens verwerkt TransIP?

    Om jouw overeenkomst die je met ons aangaat uit te voeren, hebben we de volgende persoonsgegevens van je nodig.

    Naam en adresgegevens
    Je naam wordt opgeslagen omdat we je liever niet aanspreken met je klantnummer. Je adres en woonplaats hebben we onder meer nodig voor het opstellen van facturen, om contact op te nemen of om langs te komen voor een kop koffie (mocht je ons een keer uitnodigen).

    Bedrijfsgegevens
    Persoonlijk en zakelijk gescheiden houden is wel zo prettig. Daarom vragen we om je (bedrijfs)naam en vestigingsadres in te vullen wanneer je onze producten in de hoedanigheid als bedrijf afneemt.

    E-mailadres
    We bewaren je e-mailadres zodat het mogelijk is om je belangrijke berichten over je bestelling of account toe te sturen. Je e-mailadres kunnen we ook gebruiken om je via nieuwsbrieven up-to-date te houden over nieuwe ontwikkelingen bij TransIP. Uiteraard heb je de optie om je hiervoor uit te schrijven.

    Telefoonnummer
    Je telefoonnummer gebruiken we om contact met je op te nemen in een noodgeval of om je input te vragen. Daarnaast gebruiken we je nummer voor het verzenden van sms-berichten ter uitvoering van een tweestapsverificatie of monitoring van je VPS.

    Inloggegevens en klantnummer
    Je inloggegevens bewaren we om de toegang tot je account te beveiligen, zodat alleen jij of mensen met wie je deze gegevens deelt kunnen inloggen. Ook maken we een uniek klantennummer aan waarmee we je sneller kunnen helpen.

    IP-adres
    Je IP-adres bewaren we om je een overzicht te kunnen geven vanaf welk IP-adres ingelogd is op je account of wijzigingen zijn doorgevoerd. Dit adres wordt ook gebruikt om jouw account beter te beschermen tegen ongeoorloofde toegang vanaf andere locaties.

    Betaalgegevens
    We slaan betaalgegevens – zoals je PayPal- en creditcardgegevens, je rekeningnummer en je naam als rekeninghouder – op na een geslaagde bestelling. Voor de verwerking van je betalingen zetten we ook andere partijen in, zoals creditcardmaatschappijen. Bij een bestelling maken we zowel een uniek offertenummer als factuurnummer aan die gekoppeld worden aan je account.

    Overige gegevens die TransIP verwerkt

    We verzamelen ook enkele persoonsgegevens die niet bedoeld zijn voor de uitvoering van een overeenkomst. Dit doen we aan de hand van een gerechtvaardigd belang of met jouw toestemming. Het gaat om de volgende gegevens.

    Werkgerelateerde persoonsgegevens
    Solliciteer je bij ons, dan willen we natuurlijk graag weten wat je in huis hebt. Dit checken we aan de hand van je cv, motivatiebrief, portfolio of ingezonden sollicitatieopdracht. We zullen jouw persoonsgegevens binnen vier weken verwijderen in het geval je helaas niet wordt aangenomen.

    Cookies
    Enkele van de hiervoor genoemde persoonsgegevens in combinatie met de door ons geplaatste cookies maken het voor ons mogelijk om te bekijken hoe jij onze website en diensten gebruikt en waar jouw interesses liggen. Zo kunnen we onze website, dienstverlening en advertenties beter aanpassen naar jouw smaak. De toestemming die je hebt gegeven voor het plaatsen van cookies en het tonen van advertenties zijn op elk moment weer in te trekken.

    Serverlogs
    Maak je gebruik van onze diensten, dan bewaren wij in zogenaamde serverlogs automatisch enkele gegevens over je verbinding met onze servers. Denk aan je IP-adres, browserversie, en het tijdstip van je bezoek. De gegevens in deze logs gebruiken wij om fouten op onze systemen op te lossen en personen op te sporen die ons netwerk in gevaar brengen om hier vervolgens maatregelen tegen te treffen.

    Overige persoonsgegevens
    Het komt wel eens voor dat we via supporttickets, socialmediaberichten of via e-mailberichten aanvullende persoonsgegevens toegestuurd krijgen waar we niet om gevraagd hebben. Hebben we deze persoonsgegevens niet nodig om je verder te helpen, dan zullen we deze – voor zover technisch mogelijk – verwijderen.

    Doeleinden van de gegevensverwerking

    Wij verwerken je persoonsgegevens natuurlijk niet zonder achterliggende redenen, maar hebben ze nodig voor:

    • het verlenen van toegang tot onze website en diensten, zodat je bijvoorbeeld kan inloggen in je controlepaneel;
    • het laten werken van handige functionaliteiten op onze website, zodat bijvoorbeeld je winkelmandje bewaard blijft bij een volgend bezoek;
    • het aangaan en uitvoeren van jouw overeenkomst met ons, zodat we weten op welke diensten jij recht hebt;
    • het opnemen van contact, bijvoorbeeld om je te helpen bij een probleem waar je tegenaan loopt;
    • het behandelen van je klacht, voor een lange en gelukkige relatie;
    • het beveiligen van onze diensten en het bestrijden van fraude, zodat bijvoorbeeld niet iemand anders zich als jou voordoet;
    • het behandelen van reacties op onze vacatures, zodat we beter weten of jij de juiste match bent.

    Na het verkrijgen van jouw toestemming gebruiken we je persoonsgegevens ook voor:

    • het verkrijgen van inzicht in het gebruik van onze website, zodat we bijvoorbeeld weten welke pagina’s beter ingericht moeten worden;
    • het verbeteren en evalueren van onze website en diensten, zodat we bijvoorbeeld weten welke nieuwe functionaliteiten jij graag in onze diensten terugziet;
    • het afstemmen van onze content op jouw interesses, zodat je bijvoorbeeld geen advertenties op Google of Facebook te zien krijgt die geen toegevoegde waarde hebben;

    Wij zullen je persoonsgegevens niet voor andere doeleinden gebruiken dan degene die hierboven besproken zijn, tenzij je daar vooraf toestemming voor hebt gegeven of wij daartoe wettelijk verplicht zijn.

    Beveiliging

    Wij nemen strenge beveiligingsmaatregelen om misbruik van, en ongeautoriseerde toegang tot je persoonsgegevens te voorkomen. Zo zorgen wij dat alleen de noodzakelijke personen toegang hebben tot je gegevens, dat de toegang tot je gegevens afgeschermd is en dat onze beveiligingsmaatregelen regelmatig gecontroleerd worden. Daarnaast maken wij gebruik van SSL-certificaten voor een veilige overdracht van je gegevens en je communicatie met ons.

    Jouw privacy en derde partijen

    Wanneer iemand ons een miljoen euro biedt om zomaar je persoonsgegevens te mogen kopen, zullen we hem vriendelijk de deur wijzen. We zullen je gegevens alleen met anderen delen in de volgende drie gevallen:

    • Voor het verlenen of uitvoeren van onze diensten
      We zetten betaaldiensten als iDEAL of PayPal in om verschillende betaalwijzen mogelijk te maken.
    • Voor het uitvoeren van een wettelijke verplichting
      Een politievordering kan ons verplichten om jouw gegevens met de politie te delen.
    • Voor het registreren van een domeinnaam
      Jouw gegevens en domeinnaam worden opgenomen in de whois-database van de verantwoordelijke domeinnaamorganisatie. Als we dit niet delen, is de registratie van een domeinnaam niet mogelijk.

    Met jouw toestemming delen we je gegevens met derde partijen in de volgende twee gevallen:

    • Voor het verbeteren van onze diensten, website of advertenties
      We gebruiken software van andere partijen om te meten hoe goed een nieuwe productpagina bij jou aanslaat. Hiervoor gebruiken wij onder andere het Amerikaanse Google Analytics, waar wij een verwerkersovereenkomt mee hebben gesloten. Meer informatie over gegevensverwerking door Google Analytics vind je in de Privacy Policy van Google.
    • Voor het verkrijgen van feedback
      We zetten onderzoeksbureaus in om te horen hoe tevreden jij over onze diensten bent.

    Onze haviksogen, spierballen en scherpe afspraken zorgen ervoor dat je gegevens goed worden beschermd en beveiligd, ook nadat ze gedeeld zijn met een andere partij.

    Geautomatiseerde beslissingen

    Soms nemen wij aan de hand van persoonsgegevens een geautomatiseerde beslissing. Hieronder leggen wij uit hoe dit gebeurt, wat hier de reden voor is en welke gevolgen dit voor je kan hebben.

    • Wanneer er niet op tijd een factuur betaald wordt, zullen wij automatisch enkele waarschuwingen toesturen naar de niet-betalende klant. Wordt er daarna nog steeds niets ondernomen, dan blokkeren wij de diensten die bij ons worden afgenomen. Als laatste redmiddel wordt een incassobureau ingeschakeld voordat er automatisch diensten worden opgezegd.

    Cookies

    Cookies kunnen ook persoonsgegevens bevatten over bijvoorbeeld je surfgedrag en interesses. Bekijk onze cookieverklaring voor alle ins en outs over de cookies die we gebruiken.

    Websites van derden

    Onze privacy- en cookieverklaring zijn niet van toepassing op websites van anderen waar wij naartoe linken vanuit onder andere onze blogartikelen. Wij kunnen natuurlijk niet inzien of zij net zo netjes met je gegevens omgaan zoals wij dat doen. Beland je op een website van een ander bedrijf, vergeet dan niet om goed hun privacy- en cookieverklaring door te lezen voordat je jouw persoonsgegevens deelt.

    Jouw privacyrechten

    Als gebruiker van onze website en diensten heb jij enkele handige privacyrechten tot je beschikking. Zo kan je ons vragen om inzage in of correctie, verplaatsing of verwijdering van je persoonsgegevens. Daarnaast is het mogelijk om te vragen verdere verwerking van je persoonsgegevens tijdelijk stil te zetten of zelfs hiertegen bezwaar te maken.

    Wil je deze rechten inzetten of er meer over weten, neem dan contact met ons op via je controlepaneel of mail naar support@transip.nl.

    Om niet zomaar te sleutelen aan de verkeerde persoonsgegevens, kunnen we je vragen om je adequaat te identificeren door vanuit je controlepaneel een bericht te sturen.

    Het is ook mogelijk om contact met ons op te nemen wanneer je niet een van je privacyrechten wil uitoefenen, maar een klacht wil indienen over iets waar je niet tevreden over bent. Op grond van de privacywetgeving heb je ook het recht om bij de Autoriteit Persoonsgegevens aan te kloppen, de Nederlandse waakhond van de privacywetgeving.

    Contactgegevens

    Mocht je na het lezen van onze privacy-en cookieverklaring nog vragen of opmerkingen hebben, neem dan contact met ons op via onderstaande contactgegevens.

    Bedrijfsnaam: TransIP B.V.
    Adres: Schipholweg 9B
    2316 XB Leiden
    E-mailadres: support@transip.nl
    Socialemediakanalen: Twitter en Facebook
    KvK-nummer: 24345899
    Btw-nummer: NL812334966B01

  • Privacy Policy

    When using tylko.com you may be asked to share some of your personal information. This is required in order for us to provide you with the highest quality of services. Whenever you share your personal information, we make sure that it is processed in accordance with applicable law and to the highest standard of care and safety.

    You can also visit our website without providing any of your personaldata. Please note, however, that we do store so-called server logfiles, which may include the name of the file you have requested,date and time of access, amount of data transmitted and therequesting IP number. This data provides no personal informationand is only used to help us ensure trouble-free operation of the website and to improve our offer.

    The basis and purpose of personal data processing

    tylko.com processes your personal data in compliance with the provisions of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (the “GDPR”). You can always contact us about your personal data at:
    Custom Sp. z o. o.,
    Mińska 25/63,
    03-808 Warsaw,
    Poland.
    hello@tylko.com
    +44 113 868 0195

    Your personal data is processed within the scope necessary to accept and fulfil your order. As a result, we may need to share your personal data with third parties, such as storage or delivery companies, banks or online payment intermediaries, to the extent necessary to deliver our products or services. Where relevant, we will provide you with information on the processing of your personal data received from a third party.

    In some instances, we may also be required to share your personal data with public authorities upon their substantiated, specific request.

    Otherwise, we never share your personal data with any other third parties.

    Consent for personal data processing

    Upon your explicit consent we may use your personal data for marketing or advertising purposes. In particular, we may use your e-mail address to send you our newsletter.

    You may withdraw your consent for the processing of your personal data at any time and without incurring any additional costs. Simply e-mail us with your request at hello@tylko.com. Unless an order is pending or unless storing of your personal data is required for other legally justified purposes, we will immediately refrain from further processing your personal data. You can also unsubscribe from our newsletter by simply clicking “unsubscribe now” button in its footer.

    You may always request information on the scope of your personal data that we process. Also, you can always update your personal data, have us block it temporarily or permanently delete it whenever you think we no longer need it.

    More information regarding your data might be found in Terms and Conditions.

    Personal data protection

    We use technical and organizational measures to secure all personal data processed by tylko.com from loss, destruction or unauthorised access by third parties. We cannot, however, take responsibility for any unauthorized access to your personal data caused by security breaches that might happen in relation to your device, browser or your own negligence.

    Use of Google Analytics

    This website uses Google Analytics, a web analytics service provided by Google Inc. It furnishes us with information, generated with a cookie stored on your device (see above for more information), as to how you use our website. This means that information conveyed by a cookie stored on your device may be transmitted to Google, Inc. However, since the IP-anonymisation mechanism is active on this website, your IP address will be truncated within Member States of the European Union and your full IP address will only be provided to Google, Inc. in exceptional situations. Google Analytics helps us to evaluate your use of the website, compile reports on website activity and provides a number of other website and internet related services.

    In order to avoid being subjected to Google Analytics, whenever visiting this website in the future, you can download and install a browser plug-in available here. http://tools.google.com/dlpage/gaoptout?hl=de

    As an alternative to browser-plugin you can also click this link, which will install an opt-out cookie file on your device. In order to delete it, you will need to click the link once again.

    Use of Mixpanel

    This Website and App uses Mixpanel, Inc. technology. This means that this website and app collects user data under anonymised profiles. This may involve cookies (see above for more information). These profiles are used to analyse visitor behaviour, as well as, to improve and tailor our offer. The data collected within a profile is not merged with the user’s personal data without their explicit, prior consent.

    You can always opt-out from being subjected to the Mixpanel analytic tools by clicking this link and following the instructions: (https://mixpanel.com/help/questions/articles/can-i-exclude-myself-from-mixpanel-data).

    Integration of the Trusted Shops Trustbadge

    Following an order, the Trusted Shops Trustbadge is incorporated into this web page in order to display our Trusted Shops trustmark for buyers and the eventually collected reviews, as well as the Trusted Shops product offer.

    In balancing the various interests, this serves to safeguard our legitimate prevailing interests in an optimised marketing of our offer. The trustbadge and the services advertised are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Köln.

    Whenever a trustbadge is called up, the web server automatically stores a so-called server log file which contains, for example, your IP address, the date and time of retrieval, the data volume transferred and the requesting provider (access data), and documents the retrieval. This access data will not be evaluated and will be automatically overwritten seven days after your visit to the page.

    Other personal information will only be transferred to Trusted Shops if you decide, after completing an order, to use Trusted Shops products or have already registered for their use. In this case, the contractual agreement between you and Trusted Shops applies.

    What are cookie files?

    By cookie files shall be understood all IT data, especially text files, stored in the end devices of users, aimed for using the websites. These files allow identification of the user’s device and properly display the website adjusted to his individual preferences. Cookie files usually contain the name of the website from which they come, time of storing them at the end device and unique number.

    What do we use cookie files for?

    Cookie files are used to adjust the content of the websites to user’s preferences and optimize using of internet websites. They are also used to create anonymous, aggregated statistics which help in understanding in what way the user uses websites, which allow to improve its structure and content, without personal identification of the user.

    What cookie files do we use?

    There are, generally, two types of cookie files in use – “session” and „persistent”. The first ones are temporary files which remain on the user’s device until logging out from the website or turning of the software (browser). “Persistent” files remain on the user’s device during the whole time set in the parameters of cookie files or until the moment of their manual deletion by the user.

    Cookie files which are used by partners of website’s operator, in particular users of websites, are subjected to their own privacy policy.

    Cookie files may be specifically divided basing on the following categories:

    A. Types of cookie files depending on the necessity to perform service:
    Necessary – are absolutely necessary for proper functioning of the website or functionalities from which the user wants to use

    Functional – are important for the service:

    • they enhance functionalities of the service, without them the service will not operate properly, but it will not be adjusted to user’s preferences,
    • they grant high level of service functionality, without the settings inscribed on cookie file the level of functionality of service may lower, but it should not make impossible using the service,
    • they aim very important functionalities of the service, without them chosen functions will not operate properly.

    Business – they allow the realization of business model on bases of which the website is shared, their blocking will not result in inaccessibility of the whole service functionality, but it may lower the level of service due to lack of possibility of implementing the revenue which subsidies working of service. In this category fall for instance advertisement cookies.

    B. Depending on time for which the cookie file will be located on the user’s end device:
    Season cookie files – cookie file located for time of using the browser (session), is deleted after its closing

    Persistent cookie files – Is not deleted after closing of the browser and remains on the end device for specified amount of time or for unspecified amount depending on the settings of website owner

    C. Depending on the origin – administrator of the service, which manages cookie files:
    First party cookie files – cookie file located by the owner of the website which was visited

    Third-party cookie files – cookie file located by external entities, whose components were activated by the website owner

    Warning: cookie files may be activated by administrator using scripts, components located on partner’s servers, located in another localization – other country or even completely different legal system. In case of activating by the administrator the components coming from outside of administrator system there may be other standard cookie files policies than privacy / cookie files policy of the administrator of website.

    D. Depending on their purpose:
    Service configuration – allow for setting functions and services in the service

    Security and reliability of service – allow for verifying the authenticity and optimization of service performance

    Authentication – allow for informing when user is logged in, thanks to which the website may show proper information and functions

    State of session – allow for encrypting information about the way users use the website. They may concern the most often used websites or communicates about errors showed on some websites. Cookie files used to encrypt the “state of session” allow for improving the service and enhance comfort of using websites.

    Processes – allow for efficient operation of the website and its functions

    Advertisements – allow for presenting advertisements which are more appealing to users and more valuable for advertisers and publishers, as well as to personalize advertisements, may also be used to present advertisements outside of website (domain)

    Localization – allow for adjusting the information presented to the localization of the user

    Analysis, research, audit of viewing – allow the owners of websites to better understand preferences of users and through analysis improve and develop products and services. Usually the website’s owner or research company collect anonymously information and processes data about trends without identifying personal data of particular users

    E. Types of cookie files depending on their interference with user’s privacy:
    Harmless – these are cookie files:

    • necessary for proper functioning of website
    • necessary to allow the functionalities of website, but their behavior doesn’t have anything to do with user tracking

    Exploring – used for tracking users, but don’t cover information allowing for identification of particular user.

    Do cookie files contain personal data?

    Possible answer (depending on the company and adopted policy):
    a) Personal data collected with using cookie files may be collected only in order to perform specific functions for the user. Such data are encrypted in a way which doesn’t allow for unauthorized access.
    b) Cookie files are little text files send by visited website to the user’s device (computer, smartphone, etc.). They are used only to better adjust the website to users’ individual needs. They don’t contain any personal data.

    How can cookie files be rejected/deleted?

    There are two ways of uninstalling cookie files on the computer.
    First way: In the browser settings it can be checked, what cookie files are installed on the computer and delete them one after another as presented on the taskbar, or all at once.

    • Browser Apple Safari: enter „Settings”, „Safari” and choose „Delete history and website data”;
    • Browser Google Chrome: in tab „Privacy” in menu „Settings”, choose „Content settings”, then „All cookies and website data” and „Delete all”;
    • Browser Internet Explorer: enter menu „Settings”, tab „Internet options”, then choose successively „General”, „Browsing history”, „Settings”, window „Temporary internet files and history settings” and at the end „Show files”;
    • Browser Mozilla Firefox: in menu „Tools”, choose tab „Options”, then „Privacy” and „Delete cookies”.

    There is also an option of adjusting the internet browser in a way that it blocks cookie files or warns each time about their installation. Settings differ depending on the browser. Instructions relating to the cookie files can be found in menu “Help” of the browser. Behavior of browsers may be set separately on all devices used by You, on which You visit websites.

    Detailed information regarding the changes of settings in different browsers may be found also at www.aboutcookies.org.

  • Privacy Policy

    which is how any data is treated…

    Uptime Robot (a service by Uptime Robot Service Provider Ltd.) operates several websites including uptimerobot.comapi.uptimerobot.com and blog.uptimerobot.com. It is Uptime Robot’s policy to respect your privacy regarding any information we may collect while operating our websites.

    What This Policy Covers

    This Privacy Policy applies to information that we collect about you when you use:

    • Our website uptimerobot.com;
    • Our mobile applications (including the Uptime Robot mobile app for Android and iOS);

    Throughout this Privacy Policy, we’ll refer to our website, mobile applications and other products and services collectively as “Services.”

    Below we explain how we collect, use, and share information about you, along with the choices that you have with respect to that information.

    Information We Collect

    We only collect information about you if we have a reason to do so–for example, to provide our Services, to communicate with you, or to make our Services better.

    We collect information in two ways: if and when you provide information to us and automatically through operating our Services. Let’s go over the information that we collect.

    Information You Provide to Us

    It’s probably no surprise that we collect information that you provide to us. The amount and type of information depends on the context and how we use the information. Here are some examples:

    • Basic Account Information: We ask for basic information from you in order to set up your account. For example, we require individuals who sign up for an uptimerobot.com account to provide name-surname, email address , password and that’s it.
    • Transaction and Billing Information: If you buy something from us–a subscription to a uptimerobot.com plan, SMS messages, etc., for example–you will provide additional personal and payment information that is required to process the transaction and your payment, such as your name, credit card information, and contact information.
    • Credentials: Depending on the Services you use, you may provide us with credentials for your website (like SSH, FTP, and SFTP username and password).
    • Communications With Us (Hi There!): You may also provide us information when you respond to surveys or communicate with our team about a support question.

    Information We Collect Automatically

    We also collect some information automatically:

    • Log Information: Like most online service providers, we collect information that web browsers, mobile devices, and servers typically make available, such as the browser type, IP address, unique device identifiers, language preference, referring site, the date and time of access, operating system, and mobile network information. We collect log information when you use our Services–for example, when you create or make changes to your account.
    • Usage Information: We collect information about your usage of our Services. For example, we collect information about the pages you visit or site parts that you check the most. We use this information to, for example, provide our Services to you, as well as get insights on how people use our Services, so we can make our Services better.
    • Location Information: We may determine the approximate location of your device from your IP address. We collect and use this information to, for example, calculate how many people visit our Services from certain geographic regions.
    • Information from Cookies & Other Technologies: A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. Pixel tags (also called web beacons) are small blocks of code placed on websites and emails. Uptime Robot uses cookies and other technologies like pixel tags to help us identify and track visitors, usage, and access preferences for our Services, as well as track and understand email campaign effectiveness.

    How And Why We Use Information

    Purposes for Using Information

    We use information about you as mentioned above and for the purposes listed below:

    • To provide our Services–for example, to set up and maintain your account or charge you for any of our paid Services;
    • To further develop and improve our Services–for example by adding new features that we think our users will enjoy or will help them to create and manage their monitors more efficiently;
    • To monitor and analyze trends and better understand how users interact with our Services, which helps us improve our Services and make them easier to use;
    • To measure, gauge, and improve the effectiveness of our advertising, and better understand user retention and attrition–for example, we may analyze how many individuals purchased a plan after receiving a marketing message or the features used by those who continue to use our Services after a certain length of time;
    • To monitor and prevent any problems with our Services, protect the security of our Services, detect and prevent fraudulent transactions and other illegal activities, fight spam, and protect the rights and property of Uptime Robot and others, which may result in us declining a transaction or the use of our Services;
    • To communicate with you, for example through an email, about offers and promotions offered by Uptime Robot and others we think will be of interest to you, solicit your feedback, or keep you up to date on Uptime Robot and our products; and
    • To personalize your experience using our Services, provide content recommendations, target our marketing messages to groups of our users (for example, those who have a particular plan with us or have been our user for a certain length of time), and serve relevant advertisements.

    Legal Bases for Collecting and Using Information

    A note here for those in the European Union about our legal grounds for processing information about you under EU data protection laws, which is that our use of your information is based on the grounds that:

    (1) The use is necessary in order to fulfill our commitments to you under our Terms of Service or other agreements with you or is necessary to administer your account–for example, in order to enable access to our website on your device or charge you for a paid plan; or

    (2) The use is necessary for compliance with a legal obligation; or

    (3) The use is necessary in order to protect your vital interests or those of another person; or

    (4) We have a legitimate interest in using your information–for example, to provide and update our Services, to improve our Services so that we can offer you an even better user experience, to safeguard our Services, to communicate with you, to measure, gauge, and improve the effectiveness of our advertising, and better understand user retention and attrition, to monitor and prevent any problems with our Services, and to personalize your experience; or

    (5) You have given us your consent–for example before we place certain cookies on your device and access and analyze them later on..

    Sharing Information

    How We Share Information

    We do not sell our users’ private personal information.

    We share information about you in the limited circumstances spelled out below and with appropriate safeguards on your privacy:

    • Subsidiaries, Employees, and Independent Contractors: We may disclose information about you to our subsidiaries, our employees, and individuals who are our independent contractors that need to know the information in order to help us provide our Services or to process the information on our behalf. We require our subsidiaries, employees, and independent contractors to follow this Privacy Policy for personal information that we share with them.
    • Third Party Vendors: We may share information about you with third party vendors who need to know information about you in order to provide their services to us, or to provide their services to you. This group includes vendors that help us provide our Services to you (like payment providers that process your credit and debit card information, fraud prevention services that allow us to analyze fraudulent payment transactions, SMS and email delivery services that help us stay in touch with you), those that assist us with our marketing efforts (e.g. by providing tools for identifying a specific marketing target group or improving our marketing campaigns), those that help us understand and enhance our Services (like analytics providers) who may need information about you in order to, for example, provide technical or other support services to you. We require vendors to agree to privacy commitments in order to share information with them. These vendors are listed in in the “List of data sub-processors” section below.
    • Legal Requests: We may disclose information about you in response to a subpoena, court order, or other governmental request.
    • To Protect Rights, Property, and Others: We may disclose information about you when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of Uptime Robot, third parties, or the public at large. For example, if we have a good faith belief that there is an imminent danger of death or serious physical injury, we may disclose information related to the emergency without delay.
    • Business Transfers: In connection with any merger, sale of company assets, or acquisition of all or a portion of our business by another company, or in the unlikely event that Uptime Robot goes out of business or enters bankruptcy, user information would likely be one of the assets that is transferred or acquired by a third party. If any of these events were to happen, this Privacy Policy would continue to apply to your information and the party receiving your information may continue to use your information, but only consistent with this Privacy Policy.
    • With Your Consent: We may share and disclose information with your consent or at your direction. For example, we may share your information with third parties with which you authorize us to do so, such as the social media services that you connect to our site.
    • Aggregated or De-Identified Information: We may share information that has been aggregated or reasonably de-identified, so that the information could not reasonably be used to identify you. For instance, we may publish aggregate statistics about the use of our Services.

    Security

    While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so, such as monitoring our Services for potential vulnerabilities and attacks.

    To enhance the security of your account, we encourage you to enable our advanced security settings, like Two Step Authentication.

    Choices

    You have several choices available when it comes to information about you:

    • Limit the Information that You Provide: If you have an account with us, you can choose not to provide the optional account information, profile information, and transaction and billing information. Please keep in mind that if you do not provide this information, certain features of our Services–for example, paid ones, may not be accessible.
    • Opt-Out of Electronic Communications: You may opt out of receiving promotional messages from us. Just follow the instructions in those messages. If you opt out of promotional messages, we may still send you other messages, like those about your account, monitoring alerts and legal notices.
    • Set Your Browser to Reject Cookies: At this time, Uptime Robot does not respond to “do not track” signals across all of our Services. However, you can usually choose to set your browser to remove or reject browser cookies before using Uptime Robot’s websites, with the drawback that certain features of Uptime Robot’s websites may not function properly without the aid of cookies.
    • Close Your Account: While we’d be very sad to see you go, if you no longer want to use our Services 🙁 🙁 🙁 :(, you can close your uptimerobot.com account. Please keep in mind that we may continue to retain your information after closing your account, as described in How Long We Keep Information above–for example, when that information is reasonably needed to comply with (or demonstrate our compliance with) legal obligations such as law enforcement requests, or reasonably needed for our legitimate business interests.

    Your Rights

    If you are located in certain countries, including those that fall under the scope of the European General Data Protection Regulation (AKA the “GDPR”), data protection laws give you rights with respect to your personal data, subject to any exemptions provided by the law, including the rights to:

    • Request access to your personal data;
    • Request correction or deletion of your personal data;
    • Object to our use and processing of your personal data;
    • Request that we limit our use and processing of your personal data; and
    • Request portability of your personal data.

    You can usually access, correct, or delete your personal data using your account settings and tools that we offer, but if you aren’t able to do that, or you would like to contact us about one of the other rights, scroll down to How to Reach Us to, well, find out how to reach us.

    EU individuals also have the right to make a complaint to a government supervisory authority.

    How to Reach Us

    If you have a question about this Privacy Policy, or you would like to contact us about any of the rights mentioned in the Your Rights section above, please contact us.

    Other Things You Should Know (Keep Reading!)

    Transferring Information

    Because Uptime Robot’s Services are offered worldwide, the information about you that we process when you use the Services in the EU may be used, stored, and/or accessed by individuals operating outside the European Economic Area (EEA) who work for us, other members of our group of companies, or third party data processors. This is required for the purposes listed in the How and Why We Use Information section above. When providing information about you to entities outside the EEA, we will take appropriate measures to ensure that the recipient protects your personal information adequately in accordance with this Privacy Policy as required by applicable law.

    Ads and Analytics Services Provided by Others

    Other parties may also provide analytics services via our Services. These analytics providers may set tracking technologies (like cookies) to collect information about your use of our Services and across other websites and online services. These technologies allow these third parties to recognize your device to compile information about you or others who use your device. This information allows us and other companies to, among other things, analyze and track usage. Please note this Privacy Policy only covers the collection of information by Uptime Robot and does not cover the collection of information by any third party advertisers or analytics providers.

    List of Sub-processors

    Uptime Robot uses the following products/services (which are all GDPR compliant):

    • Limestone Networks: for sending monitoring requests and storing data.
    • Amazon Web Services: for sending monitoring requests and storing data.
    • Digital Ocean: for sending monitoring requests and storing data.
    • Nexmo: for sending SMS and voice notifications.
    • 2Checkout: for credit card payments.
    • PayPal: for PayPal and credit card payments.
    • Google Analytics: for analyzing the browsing behavior of our users and visitors.

    Privacy Policy Changes

    Although most changes are likely to be minor, Uptime Robot may change its Privacy Policy from time to time, and in Uptime Robot’s sole discretion. Uptime Robot encourages visitors to frequently check this page for any changes to its Privacy Policy.

    Change log:

    • May 21, 2018: Updated for GDPR compliance.
    • June 12, 2017: Removed Paylane from the list of payment processors.
    • July 1, 2016: Updated the company name to reflect the change.
    • May 20, 2014: Updated various typos.
    • Nov 14, 2014: Added “payment processors used”.

    This “Privacy Policy” is based on the “Creative Commons” licensed policy by WordPress (the awesome guys that created WordPress).

  • Vimeo.com Privacy Policy

    Last Updated: January 22, 2018

    Vimeo, Inc. respects the privacy of our users and has developed this Privacy Policy to demonstrate its commitment to protecting your privacy. These privacy policies (the “Privacy Policy”) are intended to describe for you, as an individual who is a user of Vimeo.com or any of our related sites, mobile and connected TV applications, or other online services, the information we collect, how that information may be used, with whom it may be shared, and your choices about such uses and disclosures.

    We encourage you to read this Privacy Policy carefully when using our website or services or transacting business with us. By using our websites or any of our applications, you are accepting the practices described in this Privacy Policy. Vimeo, Inc. is a part of the IAC family of businesses (www.iac.com).

    If you have any questions about our privacy practices, please refer to the end of this Privacy Policy for information on how to contact us.

    Information We Collect About You

    In General. We may collect personal information that can identify you, such as your name and email address, and other information that does not identify you. When you provide personal information through our website, the information may be sent to servers located in the United States and other countries around the world.

    • Information you provide. We may collect and store any personal information you enter on our website or provide to us in some other manner, including personal information that may be contained in any video, comment or other submission you upload or post to the website. This includes identifying information, such as your name, address, e-mail address, and telephone number; your likeness; and, if you transact business with us, financial information such as your payment method (valid credit card number, type, expiration date or other financial information). We also may request information about your interests and activities, your gender and age, and other demographic information.
    • Information from other sources. We may also periodically obtain both personal and non-personal information about you from other IAC businesses, business partners, contractors and other third parties. Examples of information that we may receive include: updated delivery and address information, purchase history, and additional demographic information.
    • Information about others. We may also collect and store personal information about other people that you provide to us. If you use our website to send others (friends, relatives, colleagues, etc.) a product as a gift, information that may interest them or messages (such as invitations) through our system, we may store your personal information, and the personal information of each such recipient. Similarly, if you use our website to upload, share and/or distribute content (including videos, comments or other submissions), and such content contains personal information about others, such information may be stored in order to allow for such uploading, sharing and/or distribution.

    Use of cookies and other technologies to collect information. We use various technologies to collect information from your computer and about your activities on our site and third party sites on which we display ads or serve our video player. For more information on Cookies, please see our Cookie Policy.

    • Information collected automatically. We automatically collect information from your browser when you visit our website. This information includes your IP address, your browser type and language, access times, the content of any undeleted cookies that your browser previously accepted from us (see “Cookies” below), and the referring website address.
    • Cookies. When you visit our website, we may assign your computer one or more cookies, to facilitate access to our site and to personalize your online experience. Through the use of a cookie, we also may automatically collect information about your online activity on our site, such as the web pages you visit, the links you click, and the searches you conduct on our site. Most browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies. If you choose to decline cookies, please note that you may not be able to sign in or use some of the interactive features offered on our website. You may also clear or delete existing cookies from standard internet browsers.
    • Other Technologies. We may use standard Internet technology, such as web beacons and other similar technologies, to track your use of our site. We also may include web beacons in promotional e-mail messages or newsletters to determine whether messages have been opened and acted upon. The information we obtain in this manner enables us to customize the services we offer our website visitors to deliver targeted advertisements and to measure the overall effectiveness of our online advertising, content, programming or other activities.
    • Information collected by third-parties. We may allow third-parties, including our authorized service providers, IAC companies, advertising companies, and ad networks, to display advertisements on our site. These companies may use tracking technologies, such as cookies, to collect information about users who view or interact with their advertisements. Unless expressly stated otherwise, our website does not provide any personal information to these third parties. This information allows them to deliver targeted advertisements and gauge their effectiveness. Some of these third-party advertising companies may be advertising networks that are members of the Network Advertising Initiative, which offers a single location to opt out of ad targeting from member companies (www.networkadvertising.org).

    How We Use the Information We Collect

    In General. We may use information that we collect about you to:

    • deliver the products and services that you have requested;
    • manage your account and provide you with customer support;
    • perform research and analysis about your use of, or interest in, our products, services, or content, or products, services or content offered by others;
    • communicate with you by e-mail, postal mail, telephone and/or mobile devices about products or services that may be of interest to you either from us, our sister IAC companies or other third parties;
    • develop and display content and advertising tailored to your interests on our site and other sites;
    • verify your eligibility and deliver prizes in connection with contests and sweepstakes;
    • enforce our terms and conditions;
    • manage our business and
    • perform functions as otherwise described to you at the time of collection.

    Financial information. We may use financial information or payment method to process payment for any purchases, subscriptions or sales made on our website, to protect against or identify possible fraudulent transactions, and otherwise as needed to manage our business.

    Please review “Your Choices About Collection and Use of Your Information” below.

    With Whom We Share Your Information

    We want you to understand when and with whom we may share personal or other information we have collected about you or your activities on our website or while using our services.

    Personal information. We do not share your personal information with others except as indicated below or when we inform you and give you an opportunity to opt out of having your personal information shared. We may share personal information with:

    • Authorized service providers: We may share your personal information with our authorized service providers that perform certain services on our behalf. These services may include fulfilling orders, processing credit card payments, delivering packages, providing customer service and marketing assistance, performing business and sales analysis, supporting our website functionality, and supporting contests, sweepstakes, surveys and other features offered through our website. These service providers may have access to personal information needed to perform their functions but are not permitted to share or use such information for any other purposes.
    • Seat Access.If you are a PRO or Business subscriber, you may grant access to your account to others subject to a seat limit. By doing so, you will be sharing all information related to the content and settings of your account except for your account credentials.
    • Business partners: When you make purchases, reservations or engage in promotions offered through our website or our services, we may share personal information with the businesses with which we partner to offer you those products, services, promotions, contests and/or sweepstakes. When you elect to engage in a particular merchant’s offer or program, you authorize us to provide your email address and other information to that merchant.
    • Direct mail partners. From time to time we may share our postal mailing list with selected providers of goods and services that may be of interest to you. If you prefer not to receive mailings from these providers, you can notify us at any time by clicking here.
    • Other IAC businesses. We are part of the IAC family of businesses (go to www.iac.com for a listing of these businesses). We may share information we collect, including personal information, with the IAC companies. Sharing information with our IAC companies enables us to provide you with information about a variety of products and services that might interest you.
    • Other Situations. We also may disclose your information:
      • In response to a subpoena or similar investigative demand, a court order, or a request for cooperation from a law enforcement or other government agency; to establish or exercise our legal rights; to defend against legal claims; or as otherwise required by law. In such cases, we may raise or waive any legal objection or right available to us, in our sole discretion.
      • When we believe disclosure is appropriate in connection with efforts to investigate, prevent, report or take other action regarding illegal activity, suspected fraud or other wrongdoing; to protect and defend the rights, property or safety of our company, our users, our employees, or others; to comply with applicable law or cooperate with law enforcement; or to enforce our website terms and conditions or other agreements or policies.
      • In connection with a substantial corporate transaction, such as the sale of our business, a divestiture, merger, consolidation, or asset sale, or in the unlikely event of bankruptcy.

    Any third parties to whom we may disclose personal information may have their own privacy policies which describe how they use and disclose personal information. Those policies will govern use, handling and disclosure of your personal information once we have shared it with those third parties as described in this Privacy Policy. If you want to learn more about their privacy practices, we encourage you to visit the websites of those third parties. These entities or their servers may be located either inside or outside the United States.

    Aggregated and non-personal information. We may share aggregated and non-personal information we collect under any of the above circumstances. We may also share it with third parties and our IAC sister companies to develop and deliver targeted advertising on our websites and on websites of third parties. We may combine non-personal information we collect with additional non-personal information collected from other sources. We also may share aggregated information with third parties, including advisors, advertisers and investors, for the purpose of conducting general business analysis. For example, we may tell our advertisers the number of visitors to our website and the most popular features or services accessed. This information does not contain any personal information and may be used to develop website content and services that we hope you and other users will find of interest and to target content and advertising.

    Third-Party Websites

    There are a number of places on our website or through our services where you may click on a link to access other websites that do not operate under this Privacy Policy. For example, if you click on an advertisement or a search result on our website, you may be taken to a website that we do not control. These third-party websites may independently solicit and collect information, including personal information, from you and, in some instances, provide us with information about your activities on those websites. We recommend that you consult the privacy statements of all third-party websites you visit by clicking on the “privacy” link typically located at the bottom of the webpage you are visiting.

    How You Can Access Your Information

    If you have an online account with us, you have the ability to review and update your personal information online by logging into your account. You can also review and update your personal information by contacting us. More information about how to contact us is provided below.

    If you have an account with us, you also may choose to close your account (and remove any of your content) at any time by following the directions provided here or contacting customer support at: support@vimeo.com. After you close your account, you will not be able to sign in to our website or access any of your personal information. However, you can open a new account at any time. If you close your account, we may still retain certain information associated with your account for analytical purposes and recordkeeping integrity, as well as to prevent fraud, collect any fees owed, enforce our terms and conditions, take actions we deem necessary to protect the integrity of our website or our users, or take other actions otherwise permitted by law. In addition, if certain information has already been provided to third parties as described in this Privacy Policy, retention of that information will be subject to those third parties’ policies.

    Your Choices About Collection and Use of Your Information

    • You can choose not to provide us with certain information, but that may result in you being unable to use certain features of our website because such information may be required in order for you to register as a member; purchase products or services; participate in a contest, promotion, survey, or sweepstakes; ask a question; or initiate other transactions on our website.
    • When you register on our website you may be given a choice as to whether you want to receive email messages and/or newsletters about product updates, improvements, special offers, or containing special distributions of content by us. At any time you can choose to no longer receive commercial or promotional emails or newsletters from us by clicking on the following link and entering the email address associated with your account: click here. You also will be given the opportunity, in any commercial e-mail that we send to you, to opt out of receiving such messages in the future. It may take up to 10 days for us to process an opt-out request. We may send you other types of transactional and relationship e-mail communications, such as service announcements, administrative notices, and surveys, without offering you the opportunity to opt out of receiving them. Please note that, changing information in your account, or otherwise opting out of receipt of promotional email communications will only affect future activities or communications from us. If we have already provided your information to a third party (such as a credit card processing partner or an event provider) before you have changed your preferences or updated your information, you may have to change you preferences directly with that third party.
    • You may tell us not to share your personal information with third parties or the IAC family of companies for direct marketing purposes by clicking on the following link and entering the email address associated with your account: click here.

    How We Protect Your Personal Information

    We take appropriate security measures (including physical, electronic and procedural measures) to help safeguard your personal information from unauthorized access and disclosure. For example, only authorized employees are permitted to access personal information, and they may do so only for permitted business functions. In addition, we use encryption in the transmission of your sensitive personal information between your system and ours, and we use firewalls to help prevent unauthorized persons from gaining access to your personal information.

    We want you to feel confident using our website to transact business. However, no system can be completely secure. Therefore, although we take steps to secure your information, we do not promise, and you should not expect, that your personal information, searches, or other communications will always remain secure. Users should also take care with how they handle and disclose their personal information and should avoid sending personal information through insecure email. Please refer to the Federal Trade Commission’s website at http://www.ftc.gov/bcp/menus/consumer/data.shtm for information about how to protect yourself against identity theft.

    User Submissions

    We may provide areas on our websites where you can post information about yourself and others and communicate with others; upload content (e.g. pictures, videos, audio files, etc.); and post comments or reviews of content found on the Website. Such postings are governed by our Terms and Conditions of Use. In addition, such postings may appear on other websites or when searches are executed on the subject of your posting. Also, whenever you voluntarily disclose personal information on publicly-viewable web pages, that information will be publicly available and can be collected and used by others. For example, if you post your email address or share it with another user, you may receive unsolicited messages. We cannot control who reads your postings or what other users may do with the information you post or otherwise share with other users, so we encourage you to exercise discretion and caution with respect to your personal information. Once you have posted information, you may not be able to edit or delete such information.

    Children’s Privacy

    Our website is a general audience site, and we do not knowingly collect personal information from children under the age of 13.

    Visiting Our Websites from Outside the United States

    This Privacy Policy is intended to cover collection of information on or via our website from residents of the United States. If you are visiting our website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located and our central database is operated. The data protection and other laws of the United States and other countries might not be as comprehensive as those in your country. Please be assured that we seek to take reasonable steps to ensure that your privacy is protected. By using our services, you understand that your information may be transferred to our facilities and those third parties with whom we share it as described in this privacy policy.

    No Rights of Third Parties

    This Privacy Policy does not create rights enforceable by third parties or require disclosure of any personal information relating to users of the website.

    Changes to This Privacy Policy

    We will occasionally update this Privacy Policy to reflect changes in our practices and services. When we post changes to this Privacy Policy, we will revise the “Last Updated” date at the top of this Privacy Policy. If we make any material changes in the way we collect, use, and/or share your personal information, we will notify you by sending an email to the email address you most recently provided us in your account, profile or registration (unless we do not have such an email address), and/or by prominently posting notice of the changes on our website. We recommend that you check our website from time to time to inform yourself of any changes in this Privacy Policy or any of our other policies.

    How to Contact Us

    If you have any questions about this Privacy Policy or our information-handling practices, or if you would like to request information about our disclosure of personal information to third parties for their direct marketing purposes, please contact us by email or postal mail as follows:

    Vimeo, Inc.
    555 West 18th Street
    New York, New York 10011

    ©2018 Vimeo, Inc. All rights reserved.

    Linked information:

    Cookies:

    A cookie is a small text file that is stored on a user’s computer for record keeping purposes. Cookies can be either session cookies or persistent cookies. A session cookie expires when you close your browser and is used to make it easier for you to navigate our website. A persistent cookie remains on your hard drive for an extended period of time.

    For example, when you sign in to our website, we will record your user or member ID and the name on your user or member account in the cookie file on your computer. We also may record your password in this cookie file, if you indicated that you would like your password saved for automatic sign-in. For security purposes, we will encrypt any usernames, passwords, and other user or member account-related data that we store in such cookies. In the case of sites and services that do not use a user or member ID, the cookie will contain a unique identifier. We may allow our authorized service providers to serve cookies from our website to allow them to assist us in various activities, such as doing analysis and research on the effectiveness of our site, content and advertising.

    You may delete or decline cookies by changing your browser settings. (Click “Help” in the toolbar of most browsers for instructions.) If you do so, some of the features and services of our website may not function properly.

    We may allow third-parties, including IAC companies, advertising companies, and ad networks, to display advertisements on our site. These companies may use tracking technologies, such as cookies, to collect information about users who view or interact with their advertisements. Our website does not provide any personal information to these third parties, but they may collect information about where you, or others who are using your computer, saw and/or clicked on the advertisements they deliver, and possibly associate this information with your subsequent visits to the advertised websites. They also may combine this information with personal information they collect from you. The collection and use of that information is subject to the third-party’s privacy policy. This information allows them to deliver targeted advertisements and gauge their effectiveness. Some of these third-party advertising companies may be advertising networks that are members of the Network Advertising Initiative, which offers a single location to opt out of ad targeting from member companies (www.networkadvertising.org).

    Web Beacons:

    Web beacons (also known as clear gifs, pixel tags or web bugs) are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of web users or to access cookies. Unlike cookies which are stored on the user’s computer hard drive, web beacons are embedded invisibly on the web pages (or in email) and are about the size of the period at the end of this sentence.

    Web beacons may be used to deliver or communicate with cookies, to count users who have visited certain pages and to understand usage patterns. We also may receive an anonymous identification number if you come to our site from an online advertisement displayed on a third-party website.

  • Privacy

    Privacybeleid

    Welkom bij op de site van Werken in Suriname onderdeel van 2Trust B.V. Wij nodigen u  uit om dit privacybeleid te lezen, waarin ons privacybeleid wordt beschreven en hoe wij omgaan met uw informatie. Het beschrijft de soorten informatie die verzameld en gecreëerd worden in verband met uw gebruik van de werken in Suriname website, hoe en waarom we die informatie gebruiken, met wie we dit delen en uw wettelijke rechten. Tenzij anders aangegeven, is dit privacybeleid van toepassing op al onze websites, domeinen, apps, producten, diensten en functionaliteiten.

    De persoonsgegevens worden met de grootst mogelijke zorgvuldigheid behandeld en beveiligd conform de eisen die de Wet Bescherming Persoonsgegevens (WBP) hieraan stelt. Dit geldt voor werknemers, kandidaten, flexwerkers en ook relaties en bezoekers van de website.

    Werken in Suriname

    Werken in Suriname is een project van 2Trust B.V. is gevestigd te Den Haag, Johan de Wittlaan 12, 2517 JR en is verantwoordelijk voor de gegevensverwerkingen in de zin van de Wet bescherming persoonsgegevens.

    Over het algemeen kan onze website bezocht worden zonder dat uw persoonsgegevens aan ons worden doorgegeven. Evenals veel andere websites verzamelt deze website wel automatisch bepaalde niet-identificeerbare informatie over de gebruikers van de website, zoals bijvoorbeeld het Internet Protocol (IP)- adres van uw computer, het IP-adres van uw Internet Service Provider, datum en tijd van toegang tot de website, het internetadres van de website vanwaar u rechtstreeks bent doorgelinkt naar onze website, het besturingssysteem dat u gebruikt, de onderdelen van de website die u bezoekt, de pagina’s van de website die u heeft bezocht en de informatie die u heeft bekeken, informatie over het type apparaat wat u gebruikt voor uw bezoek aan de site, de geografische locatie waar u zich bevindt en het materiaal dat u opstuurt of downloadt van de website.

    Deze technische informatie wordt gebruikt voor het beheer van de website en systeembeheer, en om de website en het gebruik ervan te verbeteren. Deze technische gegevens mogen aan derden worden doorgegeven en kunnen permanent worden opgeslagen voor toekomstig gebruik.

    2Trust maakt gebruik van cookies en webstatistieken. Dat doen we om te kijken hoe bezoekers onze website gebruiken. Deze informatie helpt ons om de site te verbeteren. Een cookie is een bestand dat op uw computer wordt opgeslagen. Bij een vervolgbezoek op onze website kunnen deze cookies worden herkend.

    Verzameling persoonsgegevens

    Uw persoonsgegevens worden verzameld vanaf het moment dat u uw gegevens invult of achterlaat op onze website, u zich inschrijft of op een andere wijze aanmeldt of wordt aangemeld om gebruik te maken van onze dienstverlening.

    We kunnen ook gegevens van u verzamelen indien u deze heeft geplaatst op publieke middelen waaruit zou kunnen blijken dat u geïnteresseerd zou zijn in werkgerelateerde dienstverlening. In dat geval zullen we u benaderen of u interesse heeft om zich bij ons in te schrijven conform onze voorwaarden en met inachtneming van dit privacybeleid. Heeft u geen interesse dan kunnen wij relevante gegevens van u verwerken om uw wens niet door ons benaderd te worden, te kunnen honoreren.

    Wij verzamelen en verwerken uw gegevens voor de uitvoering van onze dienstverlening, waaronder bemiddeling, detachering en werving & selectie.

    Meer specifiek, uw persoonsgegevens worden verwerkt om

    1. u aanbiedingen te kunnen doen en/of informatie te kunnen verstrekken over de dienstverlening en overige activiteiten en deze beter te kunnen afstemmen op uw wensen en kwaliteiten, dit gebeurt door onze medewerkers en deels geautomatiseerd;
    2. u te benaderen voor commerciële aanbiedingen, nieuwsbrieven en promotie-acties die voor u interessant kunnen zijn. Als u dit niet wilt, kunt u zich afmelden (opt-out);
    3. uw geschiktheid en beschikbaarheid te kunnen beoordelen in verband met bemiddeling naar vast of tijdelijk werk danwel een opdracht, waarbij ook gebruik gemaakt kan worden van testresultaten, referentiechecks, social media (indien dit voor de functie relevant is en bij de vacaturetekst is aangegeven), etc.;
    4. een werknemers- of personeels-/bemiddelingsrelatie met u aan te gaan en te onderhouden en hiervoor de relevante administratie uit te voeren;
    5. onze re-integratieverplichtingen na te komen en te voldoen aan (het vanuit de overheid opgelegde doeleinde) om personen met een grote(re) afstand tot de arbeidsmarkt aan het werk te helpen;
    6. een opdracht bij de opdrachtgever te kunnen vastleggen in een overeenkomst met de opdrachtgever en de overeenkomst met de opdrachtgever te onderhouden en na te komen;
    7. ten behoeve van onze opdrachtgevers gegevens te verwerken in het kader van een pre-employment screening;

     

    1. voor het bevorderen van uw persoonlijke ontwikkeling en inzetbaarheid, waaronder training, opleiding en testen;
    2. voor managementdoeleinden waaronder managementinformatie, het verzorgen van interne  controles en bedrijfsveiligheid en het uitoefenen van audits en accountantscontrole
    3. kwaliteitsdoeleinden zoals certificering;
    4. subsidies, premiekortingen e.d. aan te vragen;
    5. als we een werknemers- of personeels-/bemiddelingsrelatie met u zijn aangegaan, voor naleving van wet- en regelgeving, waaronder maar niet beperkt tot identificatie, abeidswetgeving, fiscale- en sociale zekerheidswetgeving, bestrijding van fraude en nationale en internationale sanctiewetgeving.

    Welke persoonsgegevens worden verzameld

    We verwerken de persoonsgegevens die noodzakelijk zijn voor onze dienstverlening; een deel van deze gegevens is verplicht om gebruik te kunnen maken van onze dienstverlening. Aanvullende gegevens kunnen wenselijk zijn om de dienstverlening beter te kunnen afstemmen op uw wensen en kwaliteiten of om te voldoen aan meer specifieke vragen of verplichtingen vanuit opdrachtgevers. U bent zelf verantwoordelijk voor juistheid en relevantie van de gegevens die u verstrekt.

    Meer specifiek gaat het om o.a. de volgende (documenten met) persoonsgegevens:

    • NAW gegevens, e-mail adres en andere contactgegevens
    • geboortegegevens, leeftijd, geslacht
    • curriculum vitae (CV), informatie over opleiding, stages en werkervaring
    • gegevens over trainingen en opleidingen en/of testen die u zelf of via ons hebt gevolgd of gedaan
    • gegevens over beschikbaarheid en verlof
    • andere gegevens die van belang (kunnen) zijn in het kader van de beoordeling van de geschiktheid van de kandidaat, bijvoorbeeld referenties en getuigschriften
    • pasfoto (op vrijwillige basis)

    Op het moment dat u voor 2Trust gaat werken/werkt/heeft gewerkt:

    • nationaliteit, BSN-nummer, ID bewijs, werkvergunning
    • overige gegevens die gerelateerd zijn aan de personeels-, salaris- en verzuimregistratie

    2Trust legt uitsluitend bijzondere persoonsgegevens vast als dat nodig is om aan haar wettelijke verplichtingen te voldoen, voor zover daar toestemming voor is gegeven, of indien dit anders toegelaten is bij of krachtens de wet. Met ‘bijzondere persoonsgegevens’ wordt bedoeld gegevens over ras, godsdienst of levensovertuiging, politieke gezindheid, gezondheid, seksuele leven, lidmaatschap vakvereniging, strafrechtelijke persoonsgegevens en/of persoonsgegevens over onrechtmatig of hinderlijk gedrag.

    Delen van de gegevens

    2Trust kan uw persoonsgegevens doorgeven aan andere entiteiten binnen 2Trust Holding, haar opdrachtgevers, onderaannemers (bijvoorbeeld gegevensbewerkers) die namens haar diensten verlenen of opdrachten uitvoeren, leveranciers, overheidsinstanties en andere zakelijke relaties. En in alle overige gevallen waarin wij hiertoe kunnen worden verplicht, bijvoorbeeld door een gerechtelijk bevel of een gerechtelijk vonnis.

    De verstrekking van de persoonsgegevens geschiedt op basis van een gerechtvaardigd belang, wettelijke verplichting en/of ter uitvoering van de overeenkomst in overeenstemming met de doelen zoals genoemd bij “Waarom verzamelen wij uw persoonsgegevens?”.

    Uw persoonsgegevens kunnen worden doorgegeven buiten Nederland. 2Trust heeft de nodige maatregelen genomen om te verzekeren dat de doorgegeven persoonsgegevens adequaat worden beschermd.

    Bewaartermijn persoonsgegevens

    De bewaartermijnen die wij hanteren, zijn afhankelijk van de toepasselijke wettelijke bewaartermijnen.

    Kandidaten die niet voor 2Trust B.V. hebben gewerkt:

    Uw bemiddelingsgegevens (CV, werkervaring, opleiding, testresultaten e.d.) zijn beschikbaar tot één jaar na het laatste contact indien u niet voor 2Trust heeft gewerkt. U krijgt een jaar na het laatste contact een bericht van ons dat u bij ons staat ingeschreven.

    Indien u niet meer bemiddeld wilt worden, kunt u een mail sturen om u uit te schrijven. U wordt niet meer benaderd en bemiddeld door 2Trust. Uw persoonsgegevens zijn nog drie kalendermaanden beschikbaar in een afgeschermde omgeving (bij Werving & Selectie is deze periode 24 maanden in verband met claimrisico’s). In deze afgeschermde omgeving zijn uw gegevens enkel beschikbaar voor 2Trust onder strikte voorwaarden overeenkomstig de daarvoor gestelde doelen en termijnen. Na afloop van genoemde termijnen worden uw gegevens definitief verwijderd.

    Kandidaten gewerkt voor 2Trust B.V. :

    Uw persoonsgegevens zijn beschikbaar tot twee jaar na einde dienstverband.

    Bepaalde persoonsgegevens zijn ten behoeve van bijvoorbeeld claims, audits en fiscale verplichtingen langer beschikbaar voor 2Trust.

    Indien u niet meer bemiddeld wilt worden, dan kunt u dit aangeven via een mail. U wordt niet meer benaderd en bemiddeld door 2Trust. Uw persoonsgegevens worden in dat geval na twee jaar gearchiveerd in een afgeschermde omgeving.

    Uw persoonsgegevens zijn dan enkel beschikbaar voor 2Trust. onder strikte voorwaarden overeenkomstig de daarvoor toepasselijke doelen en termijnen.

    Persoonsgegevens van zakelijke relaties:

    Dit betreft contactgegevens van medewerkers van opdrachtgevers, leveranciers, verkopers, referenten en elke andere instantie waarmee wij een zakelijke relatie onderhouden.

    2Trust verwerkt de persoonsgegevens van betrokkenen die werkzaam zijn voor ondernemingen waarmee wij zaken doen, voor het doen van aanbiedingen voor en/of verstrekken van informatie over de dienstverlening en overige activiteiten en een zakelijke relatie te onderhouden en een opdrachtovereenkomst te sluiten en te onderhouden.

    We verwerken onder andere de volgende persoonsgegevens van zakelijke relaties:

    • namen, contactgegevens en functies van contactpersonen.

    2Trust kan de van haar zakelijke relaties verkregen persoonsgegevens doorgeven indien dit nodig is ter verwezenlijking van de doelstellingen van de zakenrelatie dan wel ten behoeve van de bemiddeling. Deze gegevens kunnen worden doorgegeven aan andere entiteiten, aan sollicitanten of kandidaten, zakenpartners en onderaannemers (b.v. gegevensbewerkers) die namens haar diensten verlenen, en in alle overige gevallen waarin 2Trust hiertoe verplicht kan worden, bijvoorbeeld door een gerechtelijk bevel of rechterlijk vonnis. Persoonsgegevens kunnen worden doorgegeven buiten Nederland. 2Trust heeft de nodige maatregelen getroffen om te verzekeren dat alle doorgegeven persoonsgegevens adequaat worden beschermd.

    Uw rechten: inzage en/of wijzigen gegevens

    Dit betreft kandidaten, flexwerkers, zzp-ers en zakelijke relaties:

    Indien u uw eigen account (2trust.carerix.net) heeft, heeft u inzage in een groot deel van de over u geregistreerde persoonsgegevens. U kunt zelf op elk gewenst moment een aantal gegevens wijzigen zoals het doorvoeren van aanpassingen in uw CV of uw accountgegevens.

    Als u inzage wenst in uw totale persoonsgegevensverwerking en/of gegevens wilt wijzigen of verwijderen die u zelf niet kunt aanpassen, dan kunt u contact opnemen 2Trust.

    Voor overige relaties:

    U hebt recht op inzage en wijziging van de over u geregistreerde persoonsgegevens. U kunt daartoe contact opnemen met uw contactpersoon bij 2Trust.


    Beveiliging

    2Trust doet er alles aan om uw persoonsgegevens optimaal te beveiligen tegen onrechtmatig gebruik. Wij doen dit aan de hand van fysieke, administratieve, organisatorische en technische maatregelen. Bijvoorbeeld: alleen geautoriseerden hebben toegang tot de gegevens. Indien en voor zover gegevens worden verstrekt aan gegevensbewerkers die namens haar diensten verlenen of opdrachten uitvoeren, is 2Trust met hen overeengekomen dat zij de persoonsgegevens eveneens optimaal beveiligen.

    Vragen, opmerkingen, klachten of (vermoeden) datalek

    Heeft u vragen, opmerkingen of klachten over de bescherming van uw persoonsgegevens door 2Trust, dan kunt u schriftelijk of per e-mail contact met ons opnemen via info@2trust.nl of 2Trust B.V. t.a.v. HR-afdeling, Johan de Wittlaan 12, 2517 JR, Den Haag. U kunt onze HR-afdeling ook telefonisch bereiken via telefoonnummer 070 311 73 63.

    Is er sprake van een (vermoeden van) een datalek, dan verzoeken wij u dit direct te melden via bovenstaand telefoonnummer.

    Wijzigingen

    2Trust kan om bepaalde redenen veranderingen, aanvullingen of wijzigingen aanbrengen in haar Privacybeleid. Het meest actuele Privacybeleid is te allen tijde in te zien op de website van 2Trust B.V.  Deze versie is opgesteld in Mei 2018.

  • PRIVACYVERKLARING

    Laatst gewijzigd: 1 Mei 2018

    In deze Privacyverklaring wordt uitgelegd hoe Western Digital (“Western Digital”, “wij”. “ons” of “onze”) uw gegevens verzamelt, gebruikt en vrijgeeft. De Privacyverklaring is van toepassingen op alle diensten en producten, behalve voor producten met een aparte privacyverklaring.

    Waar van toepassing, geeft u toestemming voor het gebruik van uw gegevens zoals beschreven in deze Privacyverklaring telkens wanneer u gebruikmaakt van onze producten of diensten, dus adviseren we u dit document volledig door te lezen en contact met ons op te nemen als u vragen hebt.

    HET VERZAMELEN EN GEBRUIKEN VAN PERSOONLIJKE GEGEVENS

    Persoonlijke gegevens zijn gegevens die kunnen worden gebruikt om u direct of indirect te identificeren. Persoonlijke gegevens bevatten tevens anonieme gegevens die zijn gekoppeld aan gegevens die kunnen worden gebruikt om u direct of indirect te identificeren. Persoonlijke gegevens omvatten geen gegevens die onomkeerbaar geanonimiseerd of samengevoegd zijn zodat zij ons niet langer in staat stellen, in combinatie met andere gegevens of anderszins, om u te identificeren.

    Hier volgt een beschrijving van de typen persoonlijke gegevens die we mogelijk over u verzamelen en hoe we deze mogelijk gebruiken.

    Welke persoonlijke gegevens door ons worden verzameld

    Afhankelijk van de producten en diensten die u gebruikt, verzamelen we verschillende soorten persoonlijke gegevens van en over u.

    • Gegevens die u verstrekt: We verzamelen de persoonlijke gegevens die u verstrekt, zoals uw naam, gebruikersnaam of e-mailadres, als u onze producten en diensten gebruikt, een account maakt, contact met ons opneemt, deelneemt aan een online enquête, deelneemt aan communitygesprekken of chatrooms, solliciteert naar een baan, interacties met ons hebt tijdens persoonlijke evenementen of anderszins met ons communiceert.
    • Gegevens over betalingen: Als u een aankoop doet, verzamelen we persoonlijke gegevens in verband met die aankoop. Deze gegevens bevatten betalingsgegevens, zoals het nummer van uw creditcard of betaalkaart en andere kaartgegevens, andere account- en verificatiegegevens en facturerings-, verzend- en contactdetails.
    • Gegevens over het gebruik van onze diensten en producten: Wanneer u onze websites of cloudomgeving bezoekt, verzamelen we mogelijk gegevens over het type apparaat dat u gebruikt, de unieke identifier van uw apparaat, het IP-adres van uw apparaat, het besturingssysteem, het type internetbrowser dat u gebruikt, gebruiksgegevens, diagnostische gegevens, browsegegevens, sessieoverzichtsgegevens, bestandskenmerken (inclusief kenmerken voor foto’s, video’s, muziek en documenten) en locatiegegevens van of over de computers, telefoons of andere apparaten waarop u onze producten of diensten installeert of gebruikt. Mogelijk worden sommige van deze gegevens automatisch verzameld. Waar beschikbaar, maken onze diensten mogelijk gebruik van GPS, uw IP-adres en andere technologieën om bij benadering de locatie te bepalen van een apparaat om ons in staat te stellen onze producten en diensten te verbeteren.
    • Informatie van derden: Mogelijk verkrijgen we informatie van derden, met inbegrip van zakelijke partners en marketingbureaus. Dit is inclusief uw contactgegevens van marketingpartners, wanneer we gezamenlijke marketing of co-brandingactiviteiten uitvoeren, uw IP adres of locatiegegevens van serviceproviders om bepaalde producten en diensten te bieden die relevant zijn voor uw locatie, en gegevens van uw sociale netwerken ter verificatie van uw productgebruik bij ons of om aan te geven dat u toestemming verleent voor het gebruik van onze producten of diensten.

    Hoe we uw persoonlijke gegevens gebruiken

    In het algemeen gebruiken we persoonlijke gegevens om onze producten en diensten te leveren, verbeteren en ontwikkelen, om met u te communiceren, om u gerichte advertenties en diensten te bieden en om onszelf en onze gebruikers te beschermen.

    Western Digital Technologies, Inc. verzamelt, verwerkt en bepaalt hoe uw persoonlijke gegevens moeten worden verwerkt als verwerkingsverantwoordelijke voor de volgende doeleinden:

    • Het leveren, verbeteren en ontwikkelen van onze producten en diensten: We gebruiken persoonlijke gegevens om ons te helpen onze producten, services en reclame te leveren, verbeteren en ontwikkelen. Dit omvat tevens het gebruik van persoonlijke gegevens voor doeleinden zoals gegevensanalyse, onderzoek en audits. Een dergelijke verwerking is gebaseerd op onze gerechtvaardigde belangen bij het aanbieden van producten en diensten aan u en om de bedrijfscontinuïteit te waarborgen. Als u deelneemt aan een loterij, prijsvraag of andere promotie maken we mogelijk gebruik van de persoonlijke gegevens die u verstrekt om deze programma’s te organiseren. Voor sommige van deze activiteiten gelden extra regels, die aanvullende informatie kunnen bevatten over hoe we persoonlijke gegevens gebruiken, dus moedigen we u aan deze regels zorgvuldig door te lezen alvorens deel te nemen.
    • Het communiceren met u: Mits u vooraf uitdrukkelijk toestemming hebt gegeven, gebruiken we persoonlijke gegevens soms om u marketingberichten toe te sturen in verband met de eigen producten en diensten van Western Digital, om met u te communiceren over uw account, transacties of sollicitaties, en om u te informeren over onze beleidsrichtlijnen en voorwaarden. Eveneens op voorwaarde dat u vooraf uitdrukkelijk toestemming hebt gegeven, delen we soms uw persoonlijke gegevens met externe partners die u wellicht marketingberichten toesturen met betrekking tot hun producten en diensten. Als u niet langer berichten per e-mail wilt ontvangen voor marketingdoeleinden, neemt u contact met ons op om zich hiervoor af te melden. Mogelijk gebruiken we uw gegevens voor het verwerken van en reageren op uw aanvragen als u contact met ons opneemt.
    • Het aanbieden en meten van gerichte advertenties en diensten: Mits u vooraf uitdrukkelijk toestemming hebt gegeven, gebruiken we persoonlijke gegevens soms om uw ervaring met onze producten en diensten te personaliseren, op websites en in toepassingen van derden, en om de effectiviteit van onze promotiecampagnes vast te stellen.

    Voor elk van de hierboven beschreven toepassingen van uw gegevens die uw voorafgaande uitdrukkelijke toestemming nodig hebben, kunt u uw toestemming intrekken door contact met ons op te nemen.

    • Het bevorderen van de veiligheid: We gebruiken persoonlijke gegevens om accounts en gebruikersactiviteiten te helpen verifiëren en de veiligheid te bevorderen, bijvoorbeeld door te waken tegen fraude en door onderzoek te doen naar verdachte of mogelijk illegale activiteiten of schendingen van onze voorwaarden of beleidsrichtlijnen. Een dergelijke verwerking is gebaseerd op onze gerechtvaardigde belangen om de veiligheid van onze producten en diensten te helpen waarborgen.

    Als wereldwijd bedrijf, beschikt Western Digital Corporation over een aantal dochterondernemingen in verschillende rechtsgebieden. Elk van deze dochterondernemingen verzamelt, verwerkt en bepaalt hoe uw persoonlijke gegevens moeten worden verwerkt als verwerkingsverantwoordelijke om te helpen u de producten en diensten te leveren waarom u vraagt.

    COOKIES EN VERGELIJKBARE TECHNOLOGIEËN

    We gebruiken cookies en vergelijkbare technologieën om onze producten en diensten te leveren, beschermen en verbeteren, bijvoorbeeld door het personaliseren van inhoud, het aanbieden en meten van advertenties, het begrijpen van gebruikersgedrag en het bieden van een veiligere gebruikservaring.

    U kunt cookies verwijderen of weigeren via uw browser- of apparaatinstellingen, maar in de meeste gevallen heeft dit invloed op uw vermogen om onze producten en diensten te gebruiken.

    Lees onze Verklaring inzake Cookies door om meer te weten te komen over hoe we cookies gebruiken en over de keuzes die u hebt.

    VRIJGEVEN VAN PERSOONLIJKE GEGEVENS

    We stellen bepaalde persoonlijke gegevens beschikbaar aan strategische partners die met ons samenwerken bij het leveren van onze producten en diensten of die ons helpen bij marktactiviteiten voor klanten. Persoonlijke gegevens worden uitsluitend door ons gedeeld met deze bedrijven voor het leveren of verbeteren van onze producten, diensten en reclameactiviteiten. Zij worden niet zonder uw uitdrukkelijke voorafgaande toestemming gedeeld met derden ten behoeve van hun eigen marketingdoeleinden.

    Serviceproviders

    We delen persoonlijke gegevens met bedrijven die namens ons diensten verlenen, zoals hosting van websites; e-mailservices; marketing; sponsoring van loterijen, prijsvragen en andere promoties; auditing; betalingsverwerking; het uitvoeren van orders van klanten; gegevensanalyse; het bieden van klantondersteuning; het uitvoeren van klantenonderzoek en klanttevredenheidsonderzoeken en andere diensten die helpen bij de verkoop van onze producten en diensten. Deze bedrijven zijn verplicht uw gegevens te beschermen en kunnen zich overal waar we actief zijn bevinden.

    Transacties tussen dochterondernemingen en moederbedrijf

    Mogelijk delen we persoonlijke gegevens met alle aan Western Digital Corporation gelieerde bedrijven. In geval van een fusie, reorganisatie, overname, joint venture, toewijzing, spin-off, overdracht of verkoop of dispositie van het volledige bedrijf of een deel daarvan, inclusief in relatie tot enig faillissement of tot een soortgelijke situatie, dragen we mogelijk persoonlijke gegevens in hun geheel over aan de relevante derde.

    Juridische conformiteit en beveiliging

    Vanwege de wet of ten gevolge van juridische processen, procedures of verzoeken van openbare of overheidsinstanties binnen of buiten uw woonland kan het noodzakelijk zijn dat we persoonlijke gegevens vrijgeven. Ook geven we mogelijk persoonlijke gegevens vrij als we vaststellen dat openbaarmaking noodzakelijk of dienstig is ten behoeve van de nationale veiligheid, rechtshandhaving en andere kwesties van openbaar belang.

    We kunnen ook persoonlijke gegevens vrijgeven als we te goeder trouw vaststellen dat openbaarmaking redelijkerwijs noodzakelijk is om onze rechten te beschermen en gebruik te maken van de beschikbare rechtsmiddelen, naleving van onze algemene voorwaarden af te dwingen, fraude te onderzoeken of onze activiteiten of gebruikers te beschermen.

    UW RECHTEN

    We nemen redelijke stappen om ervoor te zorgen dat uw persoonlijke gegevens accuraat, volledig en up-to-date zijn. Afhankelijk van waar u woont, beschikt u mogelijk over de rechten die hieronder worden beschreven.

    U hebt het recht op inzage, correctie of verwijdering van de persoonlijke gegevens die we verzamelen. U hebt ook het recht om bezwaar aan te tekenen tegen de verdere verwerking van uw persoonlijke gegevens of deze op enig moment te beperken. U hebt het recht om uw persoonlijke gegevens in een gestructureerde en gestandaardiseerd indeling te ontvangen. U kunt een klacht indienen bij de bevoegde autoriteit voor de bescherming van persoonsgegevens met betrekking tot de verwerking van uw persoonlijke gegevens.

    Ter bescherming van de privacy en de veiligheid van uw persoonlijke gegevens, kunnen we gegevens bij u opvragen om uw identiteit en recht op toegang tot dergelijke gegevens te bevestigen, alsmede om te zoeken naar de persoonlijke gegevens die we onderhouden en deze aan u te verstrekken. Er zijn gevallen waarin toepasselijke wetten of voorschriften ons toestaan of verplichten de verstrekking of verwijdering van sommige of alle persoonlijke gegevens die we beheren te weigeren.

    U kunt contact met ons opnemen om uw rechten uit te oefenen. We zullen binnen een redelijk tijdsbestek, en in ieder geval binnen 30 dagen, reageren op uw verzoek.

    Privacyrechten in Californië

    Als u in Californië woont, staat de Californische wet u toe te verzoeken om informatie omtrent het vrijgeven van uw persoonlijke gegevens aan derden voor directe marketingdoeleinden van deze derden. Als u een dergelijk verzoek wilt doen, neemt u contact met ons op onder vermelding van “California Privacy Rights Request” (Verzoek inzake privacyrechten in Californië) in de eerste regel van het verzoek.

    ACCOUNTS SLUITEN

    Neem contact met ons op om uw account te sluiten in verband met een onderstaand gebruik van uw persoonlijke gegevens:

    • het leveren, verbeteren en ontwikkelen van onze producten en diensten;
    • het communiceren met u;
    • het delen van uw persoonlijke gegevens met externe partners voor marketingcommunicatie;
    • het aanbieden en meten van gerichte advertenties en diensten;
    • het bevorderen van de veiligheid; of
    • het leveren van producten en diensten (bij dergelijke verzoeken treedt Western Digital Technologies, Inc. op namens haar lokale dochterondernemingen).

    Wanneer u uw account sluit, hebben we geen verplichting om uw gegevens te bewaren en kunnen we deze geheel of gedeelte verwijderen zonder enige aansprakelijkheid. Mogelijk bewaren we echter gegevens die verband houden met u als we geloven dat dit nodig kan zijn om fraude of toekomstig misbruik te voorkomen, indien dit wordt vereist door de wet of voor legitieme doeleinden, zoals analyse van niet-persoonsgebonden gegevens, accountherstel, audits van onze administratie of gebruikmaking van onze rechten en plichten uit hoofde van onze overeenkomsten.

    WEBSITES EN DIENSTEN VAN DERDEN

    Onze producten en diensten, inclusief onze websites en digitale media, kunnen links bevatten naar of u de mogelijkheid bieden om toegang te krijgen tot websites, producten en diensten van derden. We zijn niet verantwoordelijk voor de privacyregels van deze derden, noch zijn we verantwoordelijk voor de gegevens of inhoud die hun producten en diensten bevatten. Deze Privacyverklaring heeft uitsluitend betrekking op gegevens die door ons zijn verzameld. We raden u aan het privacybeleid van derden te lezen alvorens gebruik te maken van hun websites, producten of diensten.

    BEVEILIGING, INTEGRITEIT EN BEWAARTERMIJN VAN GEGEVENS

    Het is belangrijk dat u maatregelen neemt ter bescherming tegen ongeautoriseerde toegang tot uw producten van Western Digital, accountreferenties en computers of andere apparaten. Als u denkt dat de beveiliging van uw account of persoonlijke gegevens is geschonden, neemt u onmiddellijk contact met ons op. Houd er rekening mee dat, ondanks al onze inspanningen, geen enkel beveiligingssysteem onfeilbaar is. In het geval van ongeoorloofde toegang, zullen we u onmiddellijk informeren en de bevoegde autoriteiten op de hoogte stellen indien dit wordt vereist door de wet.

    We bewaren uw persoonlijke gegevens zo lang als nodig is om aan de doelen die in deze Privacyverklaring zijn omschreven te voldoen, tenzij een langere bewaartermijn wettelijk verplicht of toegestaan is.

    KINDEREN

    We verzamelen, gebruiken of verstrekken niet bewust gegevens van kinderen jonger dan 16 jaar. Als we merken dat we de persoonlijke gegevens hebben verzameld van een kind jonger dan 16 jaar (of de gelijkwaardige minimum leeftijd afhankelijk van het rechtsgebied, zoals 13 in de Verenigde Staten), ondernemen we stappen om de gegevens zo spoedig mogelijk te verwijderen. Neem onmiddelijk contact met ons op als u merkt dat een kind jonger dan 16 jaar persoonlijke gegevens aan ons heeft verstrekt.

    Als u inwoner van Californië bent en jonger dan 18 jaar, en als u een geregistreerde gebruiker van onze producten of services bent, staat de wet in Californië u toe de verwijdering van inhoud of informatie die u in het openbaar hebt geplaatst aan te vragen en te verkrijgen. Als u een dergelijke aanvraag wilt indienen, neemt u contact met ons opmet specifieke informatie over waar de inhoud of informatie is geplaatst en met de verklaring dat u degene bent die deze heeft geplaatst. We doen dan te goeder trouw redelijke inspanningen om het bericht te verwijderen uit mogelijke openbare publicaties of om het te anonimiseren zodat u niet individueel kunt worden geïdentificeerd, voor zover de toepasselijke wetgeving dit vereist. Houd er rekening mee dat een dergelijk verzoek geen garantie vormt voor de volledige of alomvattende verwijdering van de inhoud of informatie die u hebt geplaatst en dat er omstandigheden kunnen zijn waarin de wet de verwijdering niet vereist of toestaat, zelfs als daarom wordt gevraagd.

    WERELDWIJDE DOORGIFTE, OPSLAG EN VERWERKING VAN GEGEVENS

    Wanneer we uw persoonlijke gegevens delen met onze partners, aan Western Digital gelieerde bedrijven en serviceproviders, worden uw persoonlijke gegevens mogelijk doorgestuurd naar en/of toegankelijk gemaakt vanuit landen buiten de Europese Economische Ruimte. In dergelijke gevallen zullen we gebruikmaken van model contractclausules, zoals goedgekeurd door de Europese Commissie, of alternatieve rechtsgronden zoals de Privacy Shield, in voorkomende gevallen, of bindende bedrijfsvoorschriften hanteren als onze partners of dienstverleners over intern beleid beschikken dat is goedgekeurd door Europese gegevensbeschermingsautoriteiten.

    WIJZIGINGEN IN DEZE PRIVACYVERKLARING

    We kunnen deze Privacyverklaring periodiek wijzigen, onder andere om gelijke tred te houden met nieuwe technologieën, branchepraktijken en wettelijke voorschriften. We verwachten dat de meeste van dergelijke veranderingen gering zijn. Alle niet-materiële wijzigingen worden onmiddellijk van kracht na publicatie van een bijgewerkte Privacyverklaring. Er kunnen echter gevallen zijn waarin wijzigingen in de Privacyverklaring van meer betekenis kan zijn. In dergelijke gevallen zullen we een prominente aankondiging van dergelijke wijzigingen doen voordat deze van kracht worden of u rechtstreeks een bericht sturen.

    Als u na de ingangsdatum van de Privacyverklaring gebruik blijft maken van onze producten en diensten, betekent dit dat u akkoord gaat met de gewijzigde Privacyverklaring. Als u niet akkoord gaat met de herziene Privacyverklaring, maak dan geen gebruik meer van onze producten of diensten en neem contact met ons op om enig account dat u hebt gemaakt te sluiten.

    CONTACT OPNEMEN

    Als u vragen hebt over deze Privacyverklaring of de implementatie hiervan, kunt u een e-mail sturen naar onze Data Protection Officer op DPO@wdc.com. U kunt ons ook schrijven op:

    5601 Great Oaks Parkway
    San Jose, California, USA 95119

    VERKLARING INZAKE COOKIES

    Laatst gewijzigd: 1 Mei 2018

    In deze Verklaring inzake Cookies wordt uiteengezet hoe Western Digital (“Western Digital”, “we”, “wij”, “ons” of “onze”) gebruikmaakt van cookies op onze websites, in onze toepassingen en bij onze online diensten, plus de keuzes die u hebt.

    DEFINITIE VAN “COOKIES”

    Cookies zijn kleine tekstfragmenten die worden gebruikt voor het opslaan van informatie in webbrowsers. Cookies worden op grote schaal gebruikt voor het opslaan en ontvangen van identifiers en andere gegevens op computers, telefoons en andere apparaten. We maken ook gebruik van andere technologieën, met inbegrip van gegevens die we opslaan op uw webbrowser of apparaat, identifiers die aan uw apparaat zijn gekoppeld en andere software, waaronder webbeacons en pixeltags, voor soortgelijke doeleinden. In deze Verklaring inzake Cookies worden al deze technologieën omschreven als “cookies”.

    TYPEN COOKIES

    We gebruiken cookies om onze producten en diensten te leveren, beschermen en verbeteren, bijvoorbeeld door het personaliseren van inhoud, het aanbieden en meten van advertenties, het begrijpen van gebruikersgedrag en het bieden van een veiligere gebruikservaring. Hieronder beschrijven we de verschillende typen cookies die we gebruiken en de doelen waarvoor deze worden gebruikt. Houd er rekening mee dat de specifieke cookies die we mogelijk gebruiken variëren afhankelijk van de specifieke websites en diensten die u gebruikt.

    • Essentiële cookies: Deze cookies zijn strikt noodzakelijk om onze websites en diensten te kunnen aanbieden en om essentiële functies, zoals het verstrekken van winkelwagen- of producttoepassingsfunctionaliteit, te kunnen leveren. Als u deze cookies uitschakelt, kunnen we uw aanvragen niet uitvoeren.
    • Prestatie- en functionaliteitscookies: Deze cookies verzamelen informatie over hoe u gebruikmaakt van onze websites en diensten, en stellen ons in staat de keuzen te onthouden die u maakt tijdens het surfen. De informatie die met deze cookies wordt verzameld stelt ons in staat onze websites te optimaliseren en deze gebruiksvriendelijker te maken. Bovendien wordt u niet persoonlijk geïdentificeerd. Als u deze cookies uitschakelt of zich hiervoor afmeldt, kunt u mogelijk geen gebruik maken van bepaalde functies van onze websites, toepassingen en diensten, en kunnen we mogelijk minder ondersteuning of informatie aan u bieden.
    • Analyse- en aanpassingscookies: Deze cookies verzamelen informatie die we gebruiken in geaggregeerde vorm om beter inzicht te krijgen in hoe onze websites, toepassingen en diensten worden gebruikt en hoe effectief onze marketingcampagnes zijn, en om ons te helpen onze websites aan te passen. Als u deze cookies uitschakelt of zich hiervoor afmeldt, kunt u mogelijk geen gebruikmaken van bepaalde functies van onze websites, toepassingen en diensten, en kunnen we mogelijk minder ondersteuning of informatie aan u bieden.
    • Reclamecookies: Deze cookies verzamelen informatie over uw surfgedrag of winkelgeschiedenis en worden gebruikt om reclameboodschappen relevanter voor u te maken. Ze vervullen functies zoals voorkomen dat dezelfde advertentie voortdurend terugkomt, ervoor zorgen dat advertenties correct worden weergegeven en in sommige gevallen advertenties selecteren op basis van uw interesses. Mogelijk delen we deze informatie met derden om te helpen bij het creëren en leveren van gepersonaliseerde reclame die specifiek op uw interesses is afgestemd. Als u deze cookies uitschakelt of zich hiervoor afmeldt, kunt u mogelijk geen gebruikmaken van bepaalde functies van onze websites, toepassingen en diensten, en kunnen we mogelijk minder ondersteuning of informatie aan u bieden.
    • Cookies voor sociaal netwerkgebruik: Deze cookies worden gebruikt om u in staat te stellen pagina’s en inhoud op onze websites en diensten te delen via sociale netwerken van derden en andere websites. Deze cookies kunnen ook worden gebruikt voor reclamedoeleinden.

    COOKIES DIE DOOR DERDEN WORDEN GEPLAATST

    Mogelijk komt u ook cookies tegen op onze websites, in onze toepassingen en in onze diensten die door derden zijn geplaatst. Als u bijvoorbeeld onze producten online aanschaft, kan onze e-commerceleverancier gebruikmaken van cookies en andere technologieën. We kunnen ook derden toestaan om cookies op onze websites te plaatsen om informatie bij te houden over uw online activiteiten en/of op internetsites of online services van derden, waaronder het verzenden van gerichte advertenties op basis van die informatie, die mogelijk de remarketing omvatten van onze producten en diensten die u hebt bekeken op onze websites en websites van derden.

    Deze Verklaring inzake Cookies is niet van toepassing op de cookies, toepassingen, technologieën of websites die eigendom zijn van en/of worden geëxploiteerd door derden, of de praktijken van dergelijke derden, zelfs indien zij gebruikmaken van of toegang hebben tot onze technologie voor het opslaan of verzamelen van informatie. Als u meer wilt weten over hoe derden gebruikmaken van cookies, neemt u hun privacy- en cookiebeleid door.

    BESTUREN EN UITSCHAKELEN VAN COOKIES

    Uw browser of apparaat kan instellingen bieden waarmee u kunt kiezen of browsercookies worden ingesteld of verwijderd. Raadpleeg de Help-functie van uw browser of apparaat voor meer informatie over deze besturingselementen en het instellen van uw voorkeuren voor cookies. Als u ervoor kiest om cookies te weigeren, zoals hierboven aangegeven, kunt u mogelijk geen gebruikmaken van bepaalde functies van onze websites en diensten.

    NIET BIJHOUDEN

    Sommige browsers bieden de mogelijkheid signalen “Niet bijhouden” uit te zenden. We verwerken geen signalen “Niet bijhouden” en reageren daar ook niet op. In plaats daarvan houden we ons aan de normen die staan beschreven in onze Privacyverklaring en deze Verklaring inzake Cookies.

  • Online Privacy Statement

    This Statement is effective as of May 25, 2018. The previous version of our Online Privacy Statement is available here.

    Your privacy is important to IBM; maintaining your trust is paramount to us.

    This Statement discloses the information practices for the World Community Grid site (the “WCG Site” or “our website”), what type of information about our WCG Site users is gathered and tracked, and how the information is used, shared or otherwise processed offline. It also describes how cookies, web beacons and other technologies may be used in the WCG Site. References to IBM websites, products and services in this Online Privacy Statement include apps, programs, and devices.

    This WCG Site Online Privacy Statement supplements the IBM Privacy Statement.

    This Statement applies to the WCG Site only and does not apply to other IBM websites that have their own Privacy Statement. Additionally, it does not apply to instances where we merely process information on behalf of clients for their benefit, such as when we act as a web hosting service provider. We may supplement this Statement with additional information relating to a particular interaction we have with you.

    IBM’s privacy practices as it pertains to information collected through the WCG Site, as described in this Online Privacy Statement, comply with the APEC Cross Border Privacy Rules System. The APEC CBPR system provides a framework for organizations to ensure protection of personal information transferred among participating APEC economies. More information about the APEC framework can be found here.

    If you have questions or complaints regarding our privacy policy or practices, please contact the IBM website coordinator. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) here.

    Collection of Personal Information

    Introduction

    You may choose to give us personal information directly on the WCG Site. If you tell us that you do not want us to use your information to make further contact with you beyond fulfilling your request, we will respect your wishes.

    Registration

    Visitors to the WCG Site are asked to create a member name when they register on World Community Grid, in which case you need to provide us with your member name, email address, and other optional information (e.g. team affiliation, country). We use this information to communicate with you. We will retain your information for potential future interactions with you.

    Your member name is maintained in the Member profile and is used to identify each member on the WCG Site, including our forums, our statistics pages, and our leaderboards, as well as on any applications that import our publicly-available statistics. Other members and any person with access to our website will be able to see your member name, statistics and your email address, if you select to make it public. Registration details provided by you will only be used for these specific purposes. Once you are registered, you have the ability to customize your privacy settings here.

    Website visits

    We collect information relating to your use of the WCG website through the use of various technologies. For example, when you visit the WCG Site, we may log certain information that your browser sends us, such as your IP address (including information deriving from your IP address such as your geographic location), device name, device performance capacity, browser type and language, access time, duration of access, and referring website addresses, and we may collect information about the pages you view within our site, the time you spent on our site and other actions you take while visiting our website. When you access our website without a member name or signing in, we will still collect some of this personal information in order to enable the websites to function properly.

    In addition, we utilize technologies that allow us to collect certain information about World Community Grid use. We may also use such technologies to determine whether you’ve opened an e-mail or clicked on a link contained in an e-mail. Collecting information in this manner allows us to collect statistics about the usage and effectiveness of the WCG Site and allow us to personalize and improve your experience and tailor our interactions with you. For details regarding the technologies we employ, see Cookies, Web Beacons and Other Technologies below.

    Marketing information

    Most information we collect about you comes from our direct interactions with you.

    From time to time, we may also collect information that pertains to you indirectly through other sources, such as list vendors. When we do so, we ask the vendors to confirm that the information was legally acquired by the third party and that we have the right to obtain it from them and use it. The information that we collect, either directly, or indirectly, may be combined to help us improve its overall accuracy and completeness and to help us better tailor our interactions with you.

    Back to top

    Use of Personal Information

    The following paragraphs describe in more detail how IBM may use your personal information.

    Enabling Participation in World Community Grid

    In order to participate in World Community Grid you will be required to install on your computer software from IBM or a third party (“Required Software”). The Required Software automatically detects certain basic information from a member’s machine, such as information about the member’s device specifics, available disk space, IP address, and set preferences regarding disk space, memory and times to run the research projects on the device. The WCG Site will not access any other information on a member device or identify anything else for which a member uses his or her device.

    IBM may utilize aggregate member information such as average computing power and geographic dispersion. In addition, unless you opt out here, some of your personal information also will be made publicly available in various ways, including on our website (e.g., pages displaying statistical information by country, by team, by member, etc.) and in export files (e.g., files used by other scoreboards which import our statistics). This information includes generated user ID, member name, total contribution, contribution statistics, device ID, device name, and device total contribution. Members who opt out of publicly sharing their statistical information can continue to post in the forums on the WCG Site, and their previous forum posts (including their member name) will still be visible. The WCG Site may request permission to utilize personally identifiable information for special events or promotions. If you provide permission, you give us and affiliated companies and our suppliers and others who are working on or with World Community Grid permission to use that information worldwide in connection with World Community Grid.

    You also agree that, if you provide or enable social communication channel information on the WCG Site (E.g. Facebook, Twitter), we may utilize these social communication channels to disseminate information about your contributions on World Community Grid.

    This Online Privacy Statement shall apply to your e-mail address and password, insofar as you do not make such information part of your profile or disclose it elsewhere on the WCG Site. It shall not apply to User Content that you post or provide. “User Content” includes all information, profiles, personal information, contact data, submissions, ideas, tags, messages, recommendations, text, material, articles, photos, music, videos, posts, comments, responses, e-mail and other content that you post on the WCG Site. World Community Grid and affiliated companies and our suppliers and others who are working on or with World Community Grid are not responsible for the protection of User Content.

    Fulfilling your Transaction Request

    If you request something from IBM, for example, specific marketing or informational materials, we will use the personal information you provide to fulfill your request. To help us do this, we may share information with others, for instance, IBM’s business partners, financial institutions, shipping companies, postal or government authorities, such as customs authorities, involved in fulfillment. We may also contact you as part of our satisfaction surveys or for market research purposes.

    Personalizing your Experience on our Web Site

    We may use the personal information we collect about you to provide you with a personalized experience on our website, such as providing you with content in which you may be interested and making navigation on our site easier. We also may use this information to improve our website.

    Providing Support

    We may use your personal information to support your participation in World Community Grid. In the course of providing technical support to you, we may sometimes have access to additional data that you have provided to us. We will use personal information you provide in these sessions in accordance with this Online Privacy Statement. We may combine your information with information from other interactions with you to provide you with more valuable suggestions in relation to support.

    Marketing

    The WCG Site may provide features that allow members to promote World Community Grid, or their participation in World Community Grid. Any personal information you provide in connection with those features will only be used as provided in this Online Privacy Statement.

    The personal information you provide to IBM, as well as the personal information we have collected about you indirectly, may be used by IBM for marketing purposes, i.e. to keep you informed about events and activities which may complement World Community Grid. Before we do so, however, we will offer you the opportunity to choose whether or not to have your personal information used in this way. You may at any time choose not to receive marketing materials from us by following the unsubscribe instructions included in each e-mail you may receive, by indicating so when we call you, or by contacting us directly (please refer to “Privacy Questions and Access” below).

    Some of our offerings or events may be co-branded or sponsored by IBM and third parties, such as business partners and solution providers, that use, resell or complement IBM products or services. Offerings and events that are co-branded clearly indicate when such partnership exists. If you sign up for these offerings or events, be aware that your information may also be collected by and shared with those third parties. We encourage you to familiarize yourself with those third-party privacy policies to gain an understanding of the manner in which they will handle information about you.

    Use of Information in the Social Computing Environment

    World Community Grid provides social communication features on our website to enable online sharing and collaboration among members. These include forums, wikis, blogs and other social media platforms.

    When downloading and using these applications or registering to use these social computing tools, you may be asked to provide certain personal information. These applications and tools may also include supplemental privacy statements with specific information about collection and handling practices. Read those supplemental statements to understand what the tools and applications may do. Any other content you post, such as pictures, information, opinions, or any other type of personal information that you make available to other participants on these social platforms or applications, is not subject to this Online Privacy Statement. Rather, such content is subject to the Terms of Use of those applications or platforms, and any additional guidelines and privacy information provided in relation to their use, as well as the process by which you can remove your content from such tools or get help to do so. Please refer to them to better understand yours, IBM’s, and other parties’ rights and obligations with regard to such content. You should be aware that the content you post on any such social computing platforms may be made broadly available to others inside and outside World Community Grid. Please review our Communications Guidelines.

    Protect the Rights and Property of IBM and Others

    We may also use or share your personal information to protect the rights or property of IBM or others when we have reasonable grounds to believe that such rights or property have been or could be affected. In addition, we reserve the right to disclose your personal information as required by law, and when we believe that disclosure is necessary to protect our rights, or the rights of others, or to comply with a judicial proceeding, court order, or legal process served on our website.

    Children

    Unless otherwise indicated, the World Community Grid is not intended for use by children under the age of 18.

    Back to top

    Retention

    Your personal information will be retained for as long as your account is active. An account is considered inactive when all of the following conditions have been met: (1) the member has not returned a result in the last 36 months; (2) the member has not logged in to the WCG Site in the last 36 months; and (3) none of the member’s devices have communicated with World Community Grid servers in the last 36 months. Once an account is deemed inactive, IBM will permanently delete that member account and information. IBM will notify a member via email before account deletion.

    IBM will retain your other personal information for as long as is required to fulfill the purposes for which the information is processed or for other valid reasons to retain your personal information (for example to comply with our legal obligations, resolve disputes, or enforce our agreements).

    If you wish to permanently delete your account and remove your information from the WCG Site, you may do so here.

    Back to top

    Cookies, Web Beacons and Other Technologies

    As mentioned above, we collect information from your visits to our website to help us gather statistics about usage and effectiveness, personalize your experience, tailor our interactions with you, and improve our offerings and services. We do so through the use of various technologies, including scripts, tags, Local Shared Objects (Flash cookies), Local Storage (HTML5) beacons, and “cookies”.

    What are cookies and why are cookies used

    A cookie is a piece of data that a website can send to your browser, which may then be stored on your device as a tag that identifies your device. While cookies are often only used to measure website usage (such as number of visitors and duration of visit) and effectiveness (such as topics visitors are most interested in) and to allow for ease of navigation or use and, as such, are not associated with any personal information, they are also used at times to personalize a known visitor’s experience to a website by being associated with profile information or user preferences. Over time this information provides valuable insight to help improve the user experience. Cookies are typically categorized as “session” cookies or “persistent” cookies. Session cookies help you navigate through the website efficiently, keeping track of your progression from page to page so that you are not asked for information you have already provided during the current visit, or information needed to be able to complete a transaction or activity. Session cookies are stored in temporary memory and erased when the web browser is closed. Persistent cookies, on the other hand, store user preferences for current and successive visits. They are written on your device’s hard disk, and are still valid when you restart your browser. We use persistent cookies, for example, to record your choice of language and country location.

    How to express privacy preferences regarding the use of cookies

    When visiting our websites or online services, you may have the possibility to set your preferences regarding cookies and other similar technologies by using the options and tools made available to you by either your web browser or IBM. If a cookie manager has been implemented by IBM, it will be displayed at your first visit to our website. By clicking ‘cookie preferences’ at the footer of an IBM website you can choose and change at any time which types of cookies you would like our website to use. You can indicate your preference for required, required and functional or required, functional and personalization cookies. Here you can also find more information on the types of cookies used. Using the cookie preferences does not result in deletion of cookies that are already on your device. You can delete cookies already on your device via the settings of your web browser.

    The WCG Site may use automated browser signals regarding tracking mechanisms, such as “do not track” instructions. You also can generally express your privacy preferences regarding the use of most cookies and similar technologies though your web browser. Look under the heading “Tools” (or similar heading) in your particular browser for information about controlling cookies. You can set your browser in most instances to notify you before you receive a cookie, giving you the option to decide whether to accept it or not. You can also generally set your browser to turn off cookies. Since cookies allow you to take advantage of some of our website’s features, we recommend that you leave them turned on. If you block, turn off or otherwise reject our cookies, portions of the WCG Site may not display properly or you will not be able to use any website services that require you to log in.

    We utilize Google Analytics in order to understand how users arrive at and interact with our website. This allows us to measure and thereby improve the website for our participants. Using Google Analytics, we anonymously collect basic information such as the type of browser or operating system you are using. We also collect information about the order in which you view different pages on our website and your use of our website on different devices so that we understand your entire experience while visiting our website. You may opt-out of us collecting information about you through Google Analytics by clicking here. You will need to do this for each browser you use to access our website. Should you delete or clear this cookie on your browser, then you will need to opt-out again by clicking here.

    Web beacons or other technologies

    The WCG Site may also use web beacons or other technologies to better tailor the site to provide better customer service. These technologies may be in use on a number of pages across the WCG Site. When a visitor accesses these pages, a non-identifiable notice of that visit is generated which may be processed by us or by our suppliers. These web beacons usually work in conjunction with cookies. If you don’t want your cookie information to be associated with your visits to these pages, you can set your browser to turn off cookies. If you turn off cookies, web beacons and other technologies will still detect visits to these pages; however, they will not be associated with information otherwise stored in cookies.

    The WCG Site may also use Local Shared Objects, such as Flash cookies, and Local Storage, such as HTML5, to store content information and preferences. Third parties with whom we partner to provide certain features on our website or to display IBM advertising on others’ websites based upon your web browsing activity also use Flash cookies or HTML5 to collect and store information. Various browsers may offer their own management tools for removing HTML5. To manage Flash cookies, please visit http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager07.html. We may also include Web beacons in marketing e-mail messages or our newsletters in order to determine whether messages have been opened and links contained within clicked on.

    Some of our business partners set web beacons and cookies on our site. In addition, third-party social media buttons or features may log certain information such as your IP address, browser type and language, access time, and referring website addresses, and, if you are logged in to those social media sites, they may also link such collected information with your profile information on that site. We do not control these third-party tracking technologies.

    Back to top

    Online Advertising

    IBM does not deliver third party online advertisements on our web site but we advertise our products and services on others’ websites. Please familiarize yourself with those website operators’ or network advertisers’ privacy policies to understand their practices relating to advertising, including what type of information they may collect about your Internet usage.

    Some advertising networks we may use may be members of the Network Advertising Initiative (NAI) or the European Interactive Digital Advertising Alliance (EDAA).

    Individuals may opt-out of targeted advertising delivered by NAI or EDAA member ad networks by using tools provided visiting the following sites:

    Digital Advertising Alliance (DAA): http://www.aboutads.info/choices
    NAI: http://www.networkadvertising.org or
    EDAA: http://www.youronlinechoices.eu/

    We may also engage with certain third parties to manage some of our advertising on other sites. These third parties may use cookies and web beacons to collect information (such as your IP address) about your activities on IBM’s and others’ websites to provide you targeted IBM advertisements based upon your interests:

    • In the U.S. and Canada, those IBM advertisements that are targeted to you will be identified with the AdChoices icon, as IBM participates in the Digital Advertising Alliance self-regulatory program for online behavioral advertising (see youradchoices.com and youradchoices.ca). You can click on the icon in the advertisements themselves to manage your preferences.
    • Or, if you wish to not have this information used for the purpose of serving you targeted ads, you may opt-out by clicking here.

    Please note that this does not opt you out of being served non-targeted advertising. You will continue to receive generic, non-targeted ads.

    Back to top

    Links to Non-IBM Web Sites and Third Party Applications

    To allow you to interact with other websites on which you may have accounts (such as Facebook and other social media sites) or join communities on such sites, we may provide links or embed third-party applications that allow you to login, post content or join communities from our website.

    We may also provide you with general links to non-IBM websites.

    Your use of these links and applications is subject to the third parties’ privacy policies, and you should become familiar with the third party sites’ privacy policies before using the links or applications.

    IBM is not responsible for the privacy practices or the content of those other websites.

    Back to top

    Notification of Changes

    If we make any material changes to this Online Privacy Statement, we will notify you via notification on our website, and as otherwise required by applicable law.

    Back to top

    Privacy Questions and Access

    If you have a question about this Online Privacy Statement or IBM’s handling of your information, you can send an email to the IBM website coordinator. You can also contact us at:

    IBM’s Corporate Privacy Office
    1 New Orchard Road
    Armonk, NY 10540
    U.S.A.

    In certain cases, you may have the ability to view or edit your personal information online. In the event your information is not accessible online, and you wish to obtain a copy of particular information you provided to IBM, or if you become aware your information is incorrect and you would like us to correct it, you may contact us. More information on Your Rights can be found here.

    You also have the right to permanently delete your account. You may opt out of World Community Grid per our Terms of Use.

    If you wish to customize the e-mails that you receive from IBM about the WCG Site, or you wish to unsubscribe from emails from the WCG Site, you may do so here or follow the unsubscribe instructions included in each email from IBM about the WCG Site.

  • Privacy Policy and GDPR Compliance

    We want to provide you with clear and complete information about which personal data the WPML plugin and wpml.org site gather and how you can view and control its handling.

    On 25th May 2018, a new regulation comes into effect in the European Union, called General Data Protection Regulation. It provides strict and specific guidelines on how personal data is gathered and handled. This also affects companies and individuals that reside outside of the EU but collect data from EU citizens.

    We completely agree that you should be able to see which information is gathered, why it is gathered and how you can view it or opt-out altogether. This is why we took this opportunity to provide you with a comprehensive privacy policy and additional documentation pages for all related topics.

    Privacy Policy

    Table of contents

    Who we are

    We are the OnTheGoSystems Ltd. company, makers of the WPML plugin and owners of the wpml.org website.

    You can find more information about us, including our full address, on our company website.

    What personal data we collect and why we collect it

    Comments

    When you leave comments on the site we collect the data shown in the comments form, and also your IP address and browser user agent string to help spam detection.

    An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here. After approval of your comment, your profile picture is visible to the public in the context of your comment.

    Media

    If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

    Contact forms

    Information submitted through the contact forms on our site are sent to our company email, hosted by Gmail. Google adheres to the EU “Privacy Shield” policy and you can find more information about this here.

    While we keep these submissions for customer service purposes they are never used for marketing purposes or shared with third parties.

    Cookies

    Our site uses the following cookies:

    • Google Analytics cookies – these are set for monitoring and tracking visitors behavior on the site.
    • WordPress logged-in cookies – these are used by WordPress to authenticate logged-in visitors, password authentication and user verification.
    • WPML cookies – these are used by our WPML plugin to identify the preferred user’s language as our site is multilingual.
    • WooCommerce cookies – these are used by the WooCommerce plugin to track visitors and their purchased items in the cart.
    • W3 Total Cache cookies – these are used by W3 Total Cache plugin to monitor referrer and user identification for caching purposes.
    • WP Polls cookies – these are used by WP Polls plugin to provide proper polls functionality based on user identification.
    • ICL-MPP Affiliate cookies – this is used by our system to monitor and identify affiliates for the purpose of performance monitoring and payments.
    • bbPress cookies – this used by the bbPress plugin to provide proper forum functionality based on user status and profile.
    • Toolset plugin cookies – this is used by our Toolset plugin (Toolset Types, Module Manager, and Toolset Forms) to properly provide functionality based on user status.
    • 2checkout WooCommerce cookies – this is used by the WooCommerce extension 2checkout for verifying user payment and checkout status.
    • WP Postratings cookies – this is used by the WP Post rating plugin to provide proper rating functionality based on user status.
    • Limit Login Attempts cookies – this is used by the Limit login attempts plugin to provide brute force security in logins by monitoring user cookies.
    • CMS Tree Page View cookies – this is used by the CMS Tree Page View to provide correct functionality based on user behavior.

    Embedded content from other websites

    Articles on this site may include embedded content, like YouTube videos, for example. Embedded content from other websites behaves in the exact same way as if you visited the other website.

    These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged-in to that website.

    Analytics

    In addition to Google Analytics, we are using the following statistics on our site for performance and monitoring:

    • Affiliate performance statistics – statistics regarding our affiliates
    • Installer statistics – statistics regarding the number of plugin installations of our products in clients, also includes the site info like PHP version, WordPress version used, etc.
    • Support statistics – statistics regarding our supporters and clients about how many tickets created, resolved, pending, etc.
    • WooCommerce statistics – statistics regarding our sales, conversion rates, refunds, etc.
    • Reference sites statistics – statistics regarding our clients reference sites installation.
    • Compatibility plugin statistics – statistics regarding our clients compatible/incompatible themes/plugins with our products.

    Professional Translation Services

    WPML allows you to send the content of your site for translation to third-party translation services of your own choice. This involves sending the content data, calculating the commissions for translations, and communication between the involved systems.

    Only data that is required to send and receive site contents for the translation is shared with the selected translation services. In short, it is not possible to use professional translation through WPML without sharing the information needed for the translation to happen.

    All communication between WPML and translation services is encrypted.

    Data shared with our support

    Sometimes, to help our support debug a WPML-related issue on your site, we might ask you to share a copy of your site with us. Since this is your site, you are the one responsible for its data and we strongly encourage you to remove any personal information from the database before sharing it with us.

    That being said, here are some important points about what happens with the site duplicates and data that is shared with our support:

    • When a debug or setting check is needed, we ask for access to the site or even a full copy of the site.
    • We use that access/duplicates strictly for debugging.
    • We do not share that data with anyone outside of the company.
    • We might need to share the duplicates with OnTheGoSystems supporters and developers when the case requires it.
    • We destroy this information after we finish debugging and resolve your issue.
    • Our forum is public but any outside URL is automatically masked and any private information is shared only in private comment seen only by the supporters and the client that reported the issue.
    • Again, we strongly encourage you to remove any personal/sensitive information they might hold before sharing access/duplication if they are concerned about it.
    • We cannot be held responsible for any loss of private information from databases if that should occur. In other words, you should have a fully working backup of whatever site you share with us.

    Data collected by the WPML plugin and add-ons you use

    The WPML plugin is fully compliant with GDPR.

    If you give it explicit consent, the only data it can collect is which theme and plugins your site is using. This information is used only for providing you with faster and better support. WPML will prompt you and require explicit action, asking you if you want to share with us this information. If you decline, it will not collect any data whatsoever.

    WPML add-on plugins that we provide, like Gravity Forms Multilingual, for example, allow WPML to work with certain plugins. However,  they do not perform any explicit duties of these plugins. They will not even work without the main plugin activated on the site. So, for example, Gravity Forms Multilingual does not in any way send or receive data – this is still done through the main Gravity Forms plugin.

    You will have to contact the authors of these third-party plugins and themes for information about who they deal with GDPR and similar regulations.

    WPML Translation Management add-on plugin

    WPML provides a separate add-on plugin called Translation Management. It helps you manage your content’s translation better and offers you multiple tools for sending content for translation.

    Because of the service this plugin provides, it has to send your contents off-site. Specifically, Translation Management add-on plugin can:

    • Send to wpml.org the names and emails of the site’s admin, Translation Managers, and translators.
    • Send to wpml.org and its sub-domains content of the site, for the purpose of translating that content.
    • Send to translation services, which the users select themselves, the content for translation.

    It goes without saying that the data sent by Translation Management is sent in an automatic and secure manner and used exclusively for providing you the translation services. None of it is shared or used for any other purposes or shared with any third-party besides the translators.

    If you decide to use the Translation Management add-on, the sending of this information is not optional, it is simply part of the service. Therefore, if you do not wish to share this information for translation purposes, you should not use WPML Translation Management add-on.

    Who we share your data with

    We don’t share your data with third-parties in a way as to reveal any of your personal information like email, name, etc. However, some data is transferred and/or stored with third-party services we use, like cloud-based services and payment processors. This is done as a way to provide you with a better overall service and user experience.

    Here are the services we use to make our own service better for you:

    • Active Trail – we store our client contact details for newsletters, announcements, and usability testing invite purposes. They can opt-out of these at any time.
    • PayPal – we use Paypal as one of our payment processor. During checkout, a client will provide login information and credit card info. This information is processed directly within this gateway payment and we do not save it on our sites.
    • Stripe – we use Stripe as one of our payment processor. During checkout, a client will provide credit card info. These are all stored in the Stripe site.
    • 2Checkout – we use this as one of our payment processor. During checkout, a client will provide credit card info. These are all stored in the 2checkout site. These are shared for future checkouts and account renewals.
    • Amazon SES – we use this services to manage mailing campaigns to our clients. What is shared are client contact details (name and client email).

    Who can see my personal information

    If you are not a registered client in our site, there is no personal information we have or can see about you.

    If you are a client with a WPML account, your personal information can be accessed by:

    • Our System administrator
    • Our supporters when they need to (in order to provide support) get the information about the client accounts and access.

    How long we retain your data

    When you submit a support ticket or a comment, its metadata is retained until (if) you tell us to remove it. We use this data so that we can recognize you and approve your comments automatically instead of holding them for moderation.

    If you register on our website, we also store the personal information you provide in your user profile. You can see, edit, or delete your personal information at any time (except changing your username). Website administrators can also see and edit that information.

    How we protect your data and what data breach procedures we have in place

    We protect customer data with the following site features:

    • We are entirely using SSL/HTTPS throughout all our sites. This encrypts our user communications with the servers so personal identifiable information is never captured by third parties without authorization.
    • Databases are sanitized (actual user personal details are removed) before deploying to development or testing environment.

    In case of a data breach, System administrators will immediately go through affected users and will attempt to reset passwords if needed after informing the user.

    What rights you have over your data

    If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.

    You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. In short, we cannot erase data that is vital to you being our customer (i.e. basic account information like an email address).

    For these requests, please use this form.

    Additional Information

    You can find additional information about related topics on the following pages: