Privacy & Cookies Policy

WHAT IS A PRIVACY NOTICE?

Sometimes, when you use our website or platform, we may collect personal data that is relevant and necessary for our essential activities. Please note that we will only collect your personal data for marketing purposes if you previously consent to this type of activity.

This privacy notice is the document we have created to keep you informed about our activities involving your personal data and your legal rights regarding how we collect, use, share, store, protect, and delete your information.

 

WHAT IS PERSONAL DATA?

Personal data is any information related to an identified or identifiable natural person, such as names, surnames, location data, home address, identification card number, e-mail address, internet protocol (IP) address, financial information, etc.

It includes any data or set of information that could be linked to you and used to contact, locate, or track you.

 

WHAT PERSONAL INFORMATION WE DIRECTLY COLLECT FROM YOU

To provide the best possible experience for you when surfing on our website or using our products, we may directly collect your names, surnames, credentials, e-mail addresses, telephone numbers, home addresses, financial information, and information about your working position in your company.

 

WHAT PERSONAL DATA WE COLLECT BY AUTOMATED SOURCES

We may collect information through cookies and other similar technologies (e.g: Google Analytics) about how you use our products and navigate through our websites, such as dates of access to the platform, IP address, how much time our products are used, and what features the user has been using.

This personal information may be collected by the time you spend on our website or the forms you complete on our website.

We can guarantee that this personal information is collected and processed purely for our essential activities, such as to improve our platform’s performance, features, and security or to fix bugs.

 

HOW WE USE YOUR PERSONAL INFORMATION

We will only use your personal data for legitimate purposes regarding our essential activities and under very specific legal permissions.

 

TO GUARANTEE THE PERFORMANCE OF OUR CONTRACT

• Use cookies that track and collect information related to your user account, language settings and log in details;
• Send you administrative communication, privacy, and technical alerts;
• Improve our products, services, and the user’s experience;
• Fulfil your requests, complaints, or questions regarding the products and services, and
• Process and send you payments and transactions related documents, such as invoices;
• Send you an e-mail informing you about major updates on our services, changes to our policies and terms and conditions; and
• Create and keep an entry in our CRM about your user account for account management purposes.

WITH YOUR CONSENT WE:

• Send you marketing content, and
• Improve and administer our website by collecting information through optional data analytics’ cookies.

TO FULFILL OUR LEGITIMATE INTERESTS:

• Contact you about new products and features we think you may be interested in unless you actively opt-out, and
• Generate trend’s insights for us to improve our marketing and advertising activities. Where possible we will always anonymize and aggregate data.

TO IMPROVE OUR INFORMATION SECURITY MEASURES ACCORDING TO THE APPLICABLE REGULATIONS;

1. To fulfil legal obligations when demanded by administrative, governmental, or judicial authorities, and
2. For other necessary purposes upon the customers and users further notification.

 

HOW LONG DO WE KEEP YOUR DATA AND HOW WE STORE IT

We will only keep your personal data stored for as long as you use our services.

Once our relationship ends, your personal data will be eliminated in conformity with our information security policies, although we may retain some personal information that is strictly necessary to comply with our legal or regulatory obligations. The length of time we keep your information for these purposes will vary depending on our legal and regulatory obligations.

The security of the personal data we collect from our customers and users is a high priority and we make sure to adopt the proper technical, organisational, and administrative measures to protect the information we hold in our websites and products against loss, unauthorised access, misuse, modification, or destruction.

We use Amazon Web Services (AWS) in Ireland to store all collected data through our website. AWS possesses strong physical and technological security programs, such as:

• Access control management
• Multi-factor authentication
• Automated threat detection and analysis
• Automated monitoring and incident correcting tools
• Data recovery tools, and
• Data encryption

For more information about the AWS information security standards, please check: https://aws.amazon.com/pt/compliance/data-privacy-faq

 

THIRD-PARTY SHARING

We share personal information from our customers and users with third parties under the circumstances and specific purposes below:

• Vendors: We may share personal data with third-party vendors, consultants, or service providers who perform tasks on our behalf, such as data analytics companies (e.g., Google Analytics), payment processing providers (e.g.: Stripe), email providers (e.g.: Mailchimp and SendGrid), technology aid platforms (e.g. Sentry and FullStory) and cloud service providers (e.g.: Amazon Web Service).
• Partners: We may share personal data with our third-party partners if you have requested services in which they are better suited than we are to fulfil for you.
• National Security Authorities or Law Enforcement: We may share personal information upon the valid request from a public authority to meet legal obligations or law enforcement requirements.

We are responsible for background checking our vendors to ensure that such companies process your personal information in conformity with the applicable data privacy regulations – including the LGPD, UK GDPR, DPA 2018, PECR, the EU GDPR, and CCPA – and information security standards.

 

INTERNATIONAL DATA SHARING

The personal information we collect from our customers and users may be transferred internationally to third parties vendors, consultants, or server providers located in a foreign country.

For instance, we share personal information with Amazon Web Services (Ireland), Stripe (US), Google Analytics from Google (US), where the personal data will be stored and processed on our behalf. Because we use Amazon Web Services (AWS) as our database, any data we collect will be stored within the EEA in AWS Ireland.

Regarding users from the EEA or the UK, the international transfer of personal data to the United States or other non-EEA countries relies on the Adequacy Decisions, as adopted by the European Commission based on Article 45 of Regulation (EU) 2016/679 (GDPR) and International Data Transfer Agreements, or where applicable, approved Corporate Binding Rules.

We also periodically monitor the circumstances concerning international transfer to the United States or to other non-EEA countries to guarantee that these maintain a level of privacy protection equivalent to the one demanded by the UK GDPR and EU GDPR.

Your personal data is always going to be protected in accordance with this Privacy Notice wherever it is possible.

 

KNOW YOUR RIGHTS

You can always request the access, review, amendment, update, and elimination of any personal information we have been holding about you.

Moreover, you have the right to opt-out (deny consent) from certain services we provide, such as receiving our newsletter, our marketing, and advertising emails or certain cookies.

Have in mind that we can still store some of our users’ anonymized personal information, as it is not possible to directly link it to their identity. We may also retain some personal information that is strictly necessary to comply with legal or governmental obligations.

Besides, be aware that opting out from our services or restricting consent to have your personal data collected may impair your experience with the website or with our platform and can even diminish the available features on our products.

 

PRIVACY UPDATES

As we exponentially improve our products and website, we may also update this Privacy Policy from time to time. It is your responsibility to periodically check this document and keep yourself informed about eventual changes in our activities regarding personal data.

We will let you know about the privacy updates on our website, either by changing the date on top of this document or by posting a notice on our homepage.

We will also notify you by sending you an email whenever we update our Privacy Policy.