Effective Date: April 1, 2020
If you are a Customer, we may ask you to provide us with certain information, such as your name, postal address, email address, and employer. You do not have a statutory or contractual obligation to provide us with your information; however, certain information may be required in order to enter into a contract with us or receive Services.
We may also collect information from third parties, such as other users of our Services (e.g., we may receive your email address from a Customer that provides it to us in order to invite you to our Services).
We also collect data about you automatically through your use of our Sites or Services, as described in the “Automatically Collected Data” section below.
Data we collect from or about you as a Customer, regardless of the source, is considered to be “Customer Data”. We may combine the information that we collect directly from you with information that we collect from third parties and/or automatically.
We use Customer Data as follows:
For Customers located in the European Economic Area (“EEA”), we process Customer Data when we have the legal basis to do so. That is, if you are a Customer in the EEA, we will only process your Personal Data (as that term is defined in the GDPR) when:
We receive Service Data from or on behalf of our Customers in conjunction with providing our Services to Customers. Because of the nature of our Services, this Service Data may contain any type of data, but typically includes name, IP address and device data, contact information and company information, such as email address, company name and number of employees.
Data we collect from or about End Users of our Customers’ websites, applications, or services, regardless of the source, is considered to be Service Data, and in conjunction with our Services, we may combine the information that we collect directly from End Users with information that we collect automatically or other information that a Customer provides or makes accessible to us through the Services.
Subject to our contractual obligations and depending on the particular Services a Customer uses, we use Service Data as follows:
We note that, depending on how a Customer uses our Services, they may be able to view End User activities on their websites, applications, or services in real time, such as seeing which webpages of Customer websites and End User scrolls through. Customers may also direct us to store conversations between End Users and them, including conversations that End Users have through online chat features of our Services, or if a phone call was made using our Services.
We retain Service Data consistent with our contractual obligations to our Customers.
We may disclose Customer Data and Service Data in the following ways:
We collect information about you when you provide it to us and automatically when you use our Sites or Services.
We collect information that your browser sends whenever you visit our Sites, use our App, or engage with one of our Customers through our Services (“Log Data”). This Log Data may include information such as your computer’s Internet Protocol (“IP”) address, location information derived from your IP address, browser type, browser version, the pages of our Sites or a Customer’s service that you visit, the time and date of your visit, the time spent on those pages and other statistics. When you access our Sites or Services, or engage with one of our Customers through our Services, by or through a mobile device, we also collect information such as the following: the type of mobile device you use, your mobile device’s unique device ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, and your general location information, as described further below.
Cookies and Targeted Advertising
Do Not Track (“DNT”) is a privacy preference that you can set in certain web browsers. We do not recognize or respond to browser-initiated DNT signals, as the Internet industry is currently still working toward defining exactly what DNT means, what it means to comply with DNT, and a common approach to responding to DNT. You can learn more about Do Not Track here.
If you are a Customer, we may use your information to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send, or by emailing email@example.com.
If you are a Customer located in the EEA or another jurisdiction with similar individual data rights, you may have certain legal rights (subject to applicable exceptions and limitations) to obtain confirmation of whether we hold Personal Data about you, to access, and to correct, update, amend, or request deletion of the Personal Data we maintain about you in appropriate circumstances. You may also have rights to object to our handling of your Personal Data, restrict our processing of your Personal Data, and to withdraw any consent you have provided. To exercise these rights, please contact us as described in Section 14 below with the nature of your request, and we will endeavor to respond to your request as required by applicable law.
We may need to collect certain personal information to provide certain services. If you do not provide the information requested, we may not be able to provide those services. We will tell you what information you must provide to receive the Services by designating it as required at the time of collection or through other appropriate means.
The security of your information is important to us, and we strive to implement and maintain security procedures and practices designed to protect Personal Data from unauthorized access, destruction, use, modification, or disclosure. However, please be aware that no method of transmission over the internet, or method of electronic storage or transmission is 100% secure, and we are unable to guarantee the absolute security of the information we have collected about you.
Your Personal Data may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction. If you are located outside the United States and choose to provide Personal Data to us, please note that we transfer Personal Data to the United States or other locations and process it there, where privacy laws may differ from those in your state, province, or country.
Our Services are not targeted to be used by anyone under the age of 18 (“Children”), and we do not knowingly collect personally identifiable information (as that term is defined in the Children’s Online Privacy Protection Act (“COPPA”)) or Personal Data from Children. If you are a parent or guardian and you learn that your Children have provided us with personally identifiable information or Personal Data, please contact us. If we become aware that we have collected such information from Children without verification of parental consent, we take steps to remove that information from our servers.