Last updated: May 25, 2018
1. Entire Agreement
2. Personal Information Collection, Use, Disclosure, and Consent
This page informs clients, customers, members, and subscribers (“you”, “your”, or “them”) of(a)the Service Provider’s policies regarding the collection, use, and disclosure of Personal Information,(b)how the Service Provider obtains your consent, and(c)how the Service Provider handles Personal Information according to applicable law, when you use the Service.
Personal Information may include, but is not limited to, your name, email address, home and/or billing address, telephone number, age, or any other information you may provide resulting from your use of the Service.
The Service Provider is committed to providing you with exceptional service by providing you information that you need. Providing exceptional service may involve the collection, use, and disclosure of your Personal Information. Protecting your Personal Information is a top priority of the Service Provider. While the Service Provider has always respected your privacy and safeguarded all Personal Information, the Service Provider continues to strengthen that commitment to this goal. This is to continue to provide exceptional service to you, and to comply with all laws regarding the collection, use, and disclosure of Personal Information.
The Service Provider’s privacy commitment includes ensuring the accuracy, confidentiality, and security of your Personal Information, and allowing to fulfill your rights to request access to, and correction of, and erasure of your Personal Information through your account management page.
You have a right to withdraw your consent at any time.
The Service Provider will only collect Personal Information that is necessary to fulfil the following purposes:
- to verify your identity;
- to identify your needs from the Service;
- to open and manage an account;
- to ensure you receive a high standard of service;
- to meet regulatory requirements;
- other legal reasons as they apply to the goods and services requested.
You provide implied consent where the Service Provider’s purpose for collecting, using, or disclosing your Personal Information would be considered obvious or reasonable in the circumstances, and where your Personal Information is deemed not to be sensitive. Consent may also be implied where you have notice and a reasonable opportunity to opt-out of having your Personal Information used for mail-outs, marketing, or fundraising, and you do not opt-out. You may manage your opt-in settings through your account management page.
The Service Provider may collect, use, or disclose Personal Information without your consent:
- when permitted or required by law;
- in an emergency that threatens an individual’s life, health, or personal security;
- when the Personal Information is available from a public source;
- when the Service Provider requires legal advice from a lawyer;
- for the purposes of collecting a debt or protection from fraud;
- to enforce applicable Terms of Service, including investigation of potential violations;
- for other legally established reasons.
The Service Provider will not sell your Personal Information to other parties unless consent has been provided or implied. The Service Provider retains your Personal Information for the time necessary to fulfil the identified purposes, or a legal or business purpose. Where your Personal Information is deemed to be sensitive, the Service Provider will explicitly request your consent to distribute that information to other parties.
Your name, email address, home and/or billing address, telephone number, account username, and password are stored idefinetely until you request erasure. Log data may be stored up to 26 months.
The Service Provider will make reasonable efforts to ensure that your Personal Information is accurate and complete. You may request a correction to your Personal Information to ensure its accuracy and completeness. You may also request to erase your Personal Information. A request must be in writing, and provide sufficient detail to identify your Personal Information and the correction being sought.
You have a right to lodge a complaint with a supervisory authority over your right in regards to GDPR.
The Service Provider is committed to ensuring the security of your Personal Information which includes, but is not limited to, the implementation of the following measures:
- SSL encryption across the entire Service;
- compliance guidelines in accordance with Payment Card Industry Data Security Standards (PCI DSS) concerning the secure use of credit cards on the Service;
- the ability for you to provide your own password during the sign-up process, to reset that password at any time, and to modify your Personal Information securely;
- a protection mechanism that restricts access to pages and account information based on membership level and type;
- other measures which may be considered appropriate, in the sole discretion of the Service Provider.
The Service Provider will use appropriate security measures when destroying your Personal Information, such as shredding documents or deleting electronically stored information, in its sole discretion.
While the security of your Personal Information is important to the Service Provider, keep in mind that no method of transmission over the Internet, or method of electronic storage, is 100% secure.
While the Service Provider strives to use commercially acceptable means to protect your Personal Information, the Service Provider cannot guarantee its absolute security.
4. Log Data
The Service Provider may also collect information that your browser sends whenever you visit the Service (“Log Data”). This Log Data may include information such as your Internet Protocol address, browser type, browser version, the pages of the Service that you visit, the time and date of your visit, the time spent on those pages, and other statistics.
The Service uses Google Analytics to collect, monitor, and analyze this type of information in order for the Service Provider to apply tweaks and improve the services offered through the Service.
The Service uses third-party payment gateway services such as Braintree and PayPal to accept payment for access to and use of the Service. The Service may use third-party services such as Quaderno to create and manage estimates, invoices, and other requirements necessary to run the Service as a business.
In accordance with Payment Card Industry Data Security Standards (PCI DSS) compliance guidelines, sensitive cardholder information such as your full credit card number, and card codes related to the security and verification of your credit card, are not stored on or by the Service.
These third-party service providers have their own privacy policies addressing how they use such information.
HTTPS cookies (“Cookies”, “Browser Cookies”, “Internet Cookies”, or “Web Cookies”) are small pieces of data sent from a website, and stored on the device being used to browse that website. Cookies may include an anonymous unique identifier.
6. Third-Party Providers
The Service Provider may employ third-party companies and individuals to facilitate the Service, to provide the Service on behalf of the Service Provider, to perform Service-related services, or to assist the Service Provider in analyzing how the Service is used.
Third parties include vendors and subcontractor of Service Provider.
The Service Provider may use your Personal Information to contact you with newsletters, marketing or promotional materials, and other information that may be of interest to you.
To remain compliant with anti-spam legislation, you may add yourself to any email list made available to you through your account management page. If you register yourself to a list through a form which is publicly available, and you are not an existing subscriber, then you will receive an email requesting the confirmation of your registration.
You may opt out of receiving any, or all, of these communications from the Service Provider by following the unsubscribe link or instructions provided in any email sent by the Service Provider, or by contacting the Service Provider.
8. International Transfer
Your information, including Personal Information, may be transferred to – and maintained on – computers located outside of your province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
9. Links to Other Websites
The Service may contain links to third-party websites or services that are not owned, controlled, or operated by the Service Provider. If you click on a link to a third-party website, you will be directed to that third-party website.
The Service Provider has no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third-party websites or services.
You further acknowledge and agree that the Service Provider shall not be responsible or liable, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any such content, goods, or services available on or through any such websites or services.
It is strongly advised that you to read the terms and privacy policies of any third-party websites or services that you visit.
10. Children’s Privacy
The Service does not address anyone under the age of 18 (“Minor”).
The Service Provider does not knowingly collect personally identifiable information from a Minor. If you are a parent or guardian, and you are aware that your Minor has provided the Service Provider with Personal Information, then please contact the Service Provider.
If the Service Provider becomes aware that Personal Information from a Minor has been collected without verification of parental consent, steps will be taken to remove that information from the Service Provider’s servers.