Effective day 1 June 2018
Registration and Contact Information. We collect information about you when you (a) register to use the Products and (b) otherwise provide contact information to us via email, or through our Services. This information you provide may include your username, first and last name, email address, mailing address or phone number.
Payment Information. When you purchase the Products, we will also collect transaction information, which may include your credit card information, billing and mailing address, and other payment-related information (“ Payment Information”). We describe how Payment Information may be collected and processed in Section 4.
Partner Service Information. We collect information when you connect any 3rd Party Service, such as Google G Suite, Microsoft Office 365, Slack, Salesforce, HubSpot, Box, Asana, and others through our Services. This information you provide may include your username, email address, first and last name, company name, and any meta data from your 3rd Party Service account that we need to deliver the Products to you. If the 3rd Party Service provides OAuth authentication capabilities, which most of the 3rd Party Services do, except for Microsoft Exchange, then we do not store your password, and instead connecting using the secure OAuth protocol.
Advertising Platforms. We do not, today, but may, in the future, collect information when you interact with our advertisements and other content on third-party sites or platforms, such as social networking sites. This may include information such as “Likes”, profile information gathered from social networking sites or the fact that you viewed or interacted with our content.
Legal Basis. Dossier products work together to help sales, marketing, and support teams better communicate with customers. In order to engage visitors and leads we have a legitimate interest to collect relevant data and send messages based on this information. We consider your privacy and data protection rights when we pursue our legitimate interests and ensure that the way our Services work don't impact on those rights. For website visitors Dossier will store this data for 12 months, for sales and marketing leads Dossier will store this data until the individual opts out or where they have not engaged with Dossier in 48 months.
You may submit various types of information and data into the Products for hosting and processing purposes (“Customer Data”). Customer Data may include, without limitation, (a) billing information, personal information such as names, email addresses, phone numbers, location and photos of your end user customers, potential customers and other users of and visitors to your websites, apps and other properties (e.g. Teammates' details (“People”), which information may be input into the Products by you or collected by the Products using Dossier tags, scripts and other code implemented on such properties, and (b) information contained in communications between you and People using the messaging features of the Products.
Legal Basis. We process and store Customer Data to perform our Customer Agreement with you. Without this information, we wouldn't be able to provide our Services to you. We also process Customer Data to pursue our legitimate interests by ensuring the smooth running of your Customer Agreement and to help your sales, marketing, and support teams better communicate with your customers. We consider your privacy and data protection rights when we pursue our legitimate interests and ensure that the way Services work don't impact on those rights.
We do not sell, trade, share or transfer your personal information to third parties except in the following limited circumstances:
Opt-Outs. We may provide you with the opportunity to “opt-out” of having your personal information used for certain purposes when we ask for this information. If you decide to opt-out, we may not be able to provide certain features of the Services to you.
Communication Preferences. If you no longer wish to receive our newsletter and promotional communications, you may opt-out of receiving them by following the instructions included on such communications or on the Services. Please note, however, that you may be unable to opt-out of certain service-related communications.
Blocking Cookies. You can remove or block certain cookies using the settings in your browser but the Services may cease to function properly if you do so.
How We Respond to Do Not Track Signals. Your Web browser may have a “do not track” setting which, when enabled, causes your browser to send a do not track HTTP header file or “signal” to each site you visit. At present, the Services do not respond to this type of signal.
Data Subject Rights. You can erase your personal information at any time by emailing us at email@example.com. You can object to our processing of your personal information at any time. Contact our Data Protection Officer with requests or concerns at firstname.lastname@example.org. If you are unsatisfied with the response you have the right to lodge a complaint with your supervisory authority.
When you use the Services, we make good faith efforts to provide you with access to your personal information upon your request and either provide you the means to correct this information if it is inaccurate or to delete such information at your request if it is not otherwise required to be retained by law or for legitimate business purposes. You may access, email@example.com with your name and the information requested to be accessed, corrected or removed, or if you are using the Product, sign in to your account, go to your profile, and make the desired changes. We may decline to process requests that are unreasonably repetitive or systematic, require disproportionate technical effort (for instance, requests concerning information residing on backup tapes), jeopardize the privacy of others, would be extremely impractical, or for which access is not otherwise required. In any case where we provide information access and correction, we perform this service free of charge, except if doing so would require a disproportionate effort.
Please note that if you cease using the Product or we terminate your access to the Product in accordance with your Customer Agreement, you may no longer have the ability to access or update your information.
We may retain your information as necessary to support the Services, comply with our legal obligations or resolve disputes. Note that content you post may remain on the Services even if you cease using the Services or we terminate your access to the Services.
California Shine the Light Law.If you are a California resident and we disclose your personally identifiable information to third parties for such third parties’ direct marketing purposes, California’s Shine the Light Law (CA Civil Code Section 1798.83) allows you to request certain information from us about such disclosures. To make a request under the Shine the Light Law, please contact us at firstname.lastname@example.org. Please note that under California law, businesses are not required to respond to such requests more than once during any calendar year.
California Minors. At any time, you can delete or remove your posts using the same deletion or removal procedures described in Section 8 (Accessing and Updating Your Personal Information) above, or otherwise through the Services. If you have questions about how to remove your posts or if you would like additional assistance with deletion you can contact our support team at email@example.com. Although we offer deletion capability for our Services, you should be aware that the removal of posts may not ensure complete or comprehensive removal of that content or information posted through the Services.
The security of your personal information is important to us. We maintain a variety of appropriate technical and organizational safeguards to protect your personal information. We limit access to personal information about you to employees who we believe reasonably need to come into contact with that information to provide products or services to you or in order to do their jobs. Further, we have implemented reasonable physical, electronic, and procedural safeguards designed to protect personal information about you. When you enter sensitive information (such as your password), we encrypt that information in transit using industry-standard Transport Layer Security (TLS) encryption technology. No method of transmission over the Internet, method of electronic storage or other security methods are one hundred percent secure. Therefore, while we strive to use reasonable efforts to protect your personal information, we cannot guarantee its absolute security.
Dossier has self-certified to the EU-U.S. and Swiss-U.S. Privacy Shield.