datastring / 24. May 2018

Privacy Policy

PRIVACY POLICY is effective 25 May, 2018.

This Privacy Policy (the “Policy”) outlines how we treat the Personal Data you, as a customer or visitor to this website (the “Site)  submit to us via our website, by telephone, by email or in any other way.

This Policy also explains the Personal Data we collect, how we use and share it and how to manage your marketing preferences.

It also describes how we process any Personal Data you may ask us to either (i) back up using our 30 day free trial (“Free Trial”) (“Trial Data”) or (ii) when you sign a contract with us for the provision of backup and data recovery services (“Protected Data”), (collectively the “Services”).

Terms defined in this Policy are explained further below.

 

ABOUT US

This site is run by Datastring Limited (“Datastring”, “we, “us”), an Irish company incorporated under registered number 577024.  Our contact details are provided further below.

For the purposes of applicable data protection laws, including the EU General Data Protection Regulations (“GDPR”), Datastring is the Controller of any Personal Data (defined in the GDPR) collected through the Site or by telephone or any in other way.

Where you provide us with Personal Data in the context of the Services, you are the Controller of such data and we are the Processor. See further Section 7 under “Processing of Personal Data”. Other than as provided for in Section7 , references to Personal Data in this Policy are only to Personal Data of which we are the Controller.

 

HOW WE COLLECT INFORMATION

Information collected when you visit the Site

We will collect Personal Data that you provide to us when you fill in any form or sign up online.

We will also collect certain information automatically at several different points on our Site.

For example, we use cookies, log files and similar tracking technologies to track activity on our Site. Cookies are files with small amounts of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags and scripts to collect and track information and to improve and analyse use of our Site.

We may also collect information as to how our Site is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s internal protocol address (e.g. IP address), browser type, browser version, the pages of our Site that you visit, the time and date of your visit, the time spent on out Site’s pages, unique device identifiers and other diagnostic data.

Information we collect when you contact us

We may collect Personal Data from you when you contact us by telephone, email or via our Site.

Information we collect if you apply for a job with us

The Personal Data we collect from you may include your name, contact details, employment history and any information contained in your CV.

Information received from Third Parties

 We may also receive Personal Data about you from law enforcement authorities.

Do Not Track

We do not support Do Not Track (“DNT”). DNT is a preference you may be able to set in your web browser to inform websites that you do not want to be tracked.

 

HOW WE USE YOUR INFORMATION

We will use your information in the following ways:

  • To comply with our contractual obligations. In order to provide the Services to you, we need certain Personal Data. For example, we will need to collect your contact and billing information to collect payment from you.
  • Where we have a legitimate interest in using your Personal Data. For example, to administer and monitor our Site, to improve our Services, to communicate with you about your account, to send you direct marketing information and to review any job application that you submit to us.
  • Where you have consented to our use of cookies. We use the following cookies:
    • Session Cookies: We use these to operate some of our Services
    • Preference Cookies: We use preference cookies to remember your preferences and various settings.
    • Security Cookies: We use these for security purposes

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Services.

  • Where we are required by applicable law to collect and pass your information to comply with our legal or regulatory obligations. For example, we can pass details of fraudulent or other criminal activity affecting our business to law enforcement.

You may opt out of receiving any or all marketing communications from us by following the unsubscribe link or instructions provided in any email we send you.

We take reasonable steps to ensure that the Personal Data we collect is limited to that which is necessary for the purposes out in this Policy or otherwise to provide the Services to you.

 

HOW WE SHARE YOUR INFORMATION

We share information with our core service providers and third party platforms for our business to function including, for example, IT systems and support, data centres, customer relations management, website, payment service providers and professional advisors. We also engage service providers to assist us in analysing how our Site is used.

Your information may be processed by a third party in order to maintain the functionality of our Site and customer database.

Our third party service providers will have access to your Personal Data only to perform the tasks for which they have been engaged and they are not permitted to disclose it or use it for any other purpose.

We may also share your Personal Data with relevant third parties in the event that we sell all or the relevant portion of our business or assets (including pursuant to any insolvency procedures).

Analytics

Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Site. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about Site visit activity.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: http://www.google.com/intl/en/policies/privacy/

Behavioural Remarketing

Datastring uses remarketing services to advertise on third party websites to you after you visited our Site. We and our third-party vendors use cookies to inform, optimize and serve ads based on your past visits to our Site.

  • Google AdWords

Google AdWords remarketing service is provided by Google Inc.

You can opt-out of Google Analytics for Display Advertising and customize the Google Display Network ads by visiting the Google Ads Settings page: http://www.google.com/settings/ads

Google also recommends installing the Google Analytics Opt-out Browser Add-on – https://tools.google.com/dlpage/gaoptout – for your web browser. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: http://www.google.com/intl/en/policies/privacy/

  • Twitter

Twitter remarketing service is provided by Twitter Inc.

You can opt-out from Twitter’s interest-based ads by following their instructions: https://support.twitter.com/articles/20170405

You can learn more about the privacy practices and policies of Twitter by visiting their Privacy Policy page: https://twitter.com/privacy

  • Facebook

Facebook remarketing service is provided by Facebook Inc.

You can learn more about interest-based advertising from Facebook by visiting this page: https://www.facebook.com/help/164968693837950

To opt-out from Facebook’s interest-based ads follow these instructions from Facebook: https://www.facebook.com/help/568137493302217

Facebook adheres to the Self-Regulatory Principles for Online Behavioral Advertising established by the Digital Advertising Alliance. You can also opt-out from Facebook and other participating companies through the Digital Advertising Alliance in the USA http://www.aboutads.info/choices/, the Digital Advertising Alliance of Canada in Canada http://youradchoices.ca/ or the European Interactive Digital Advertising Alliance in Europe http://www.youronlinechoices.eu/, or opt-out using your mobile device settings.

For more information on the privacy practices of Facebook, please visit Facebook’s Data Policy: https://www.facebook.com/privacy/explanation

The payment processors we work with are:

  • Stripe

Their privacy policy can be viewed at https://stripe.com/us/privacy

 

HOW LONG WE KEEP YOUR INFORMATION

Datastring will retain your information only for so long as is necessary for the purposes set out in this Policy and to the extent necessary to comply with our legal obligations (for example, if we are required to retain your information to comply with applicable laws e.g. for tax and accounting purposes), resolve disputes and enforce our legal agreements and policies.  Your information will also be retained for so long as you subscribe to receive marketing information.

Datastring will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for 14 months, except where this data is used to strengthen security or to improve the functionality of our Services or we are legally obliged to retain this data for longer time periods.

At the end of the applicable retention period, your data will be either deleted or anonymised. In the latter case, the data will be used in a non-identifiable way for statistical and business planning purposes.

 

HOW WE STORE YOUR INFORMATION

Your information may be processed by our staff or the staff of our suppliers to the extent necessary to operate your account with us. By submitting your information to us, you agree to the transfer of your Personal Data, its storage and processing.

We will not store or collect your payment card details. We use third-party services for payment processing (e.g. payment processors) through a secure payment gateway on the Site. Your credit card information is provided directly to our third-party payment processors whose use of your Personal Data is governed by their privacy policies. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

Datastring is committed to protecting the security of your Personal Data. We use a variety of security technologies and procedures to help protect Personal Data from unauthorised access, use and disclosure. Whilst we strive to use commercially acceptable means to protect your Personal Data, Datastring cannot ensure or guarantee that the Personal Data or private communications you transmit to us will always remain confidential or secure. For example, as the transmission of data via the internet is not completely secure, if you transmit data to us in this way, you do so at your own risk.

Where we have given you a password (or you have chosen one) to access our Services, you are responsible for keeping it confidential.

 

PROCESSING OF PERSONAL DATA

This Section 7 forms part of our Terms of Use where you have signed up for a Free Trial.

The terms of this Section 7 shall apply to the processing of any Personal Data contained in Trial Data and, if you have not entered into a separate data processing agreement (“DPA”) with us, Protect Data. If you have a DPA with us, the terms of that agreement, and not those below, shall apply to the processing of your Protected Data.

We are the Processor of any Personal Data contained in the Trial Data and the Protected Data. You are the Controller of any Personal Data contained in such data. By signing up for our Services via our website, or by signing our customer agreement, you agree to the processing of your Personal Data (if any) by us (such processing being inherent in the nature of our Services).

The duration of such processing shall be until the termination of the Free Trial or the Customer Agreement, as applicable.

When using our Services, your data is encrypted and so we cannot determine the type of Personal Data that may be contained within, or any data subjects categorised in, your Trial or Protected Data.

We, as a Processor, and in the context of any Personal Data provided by you in the context of our Services, shall:

  • only process your Personal Data in accordance with your written (including email) instructions;
  • implement appropriate technical and organisational measures to protect your Personal Data;
  • delete your data on termination of the Service;
  • keep your Personal Data confidential and take reasonable steps to ensure that all our staff are aware of their confidentiality obligations in relation to same;
  • if we engage any sub-processor, we shall only do so where we have entered into a written contract with them containing appropriate protections and we shall also notify you of any such engagement;
  • notify you as soon as possible in the event of any Personal Data breach;
  • if requested by you (and at your cost), assist you, where relevant and reasonable, in complying with your data protection obligations including in relation to Personal Data impact assessments, data subject access requests, submitting to audits and notifying breaches to the relevant authorities.

Nothing in this Policy shall relieve you of your own obligations, responsibilities  and liabilities under applicable data protection and data privacy law.

 

TRANSFER OF DATA

If you are based in the European Union, we do not transfer or process your Trial Data or Protected Data outside the European Economic Area. If you are based outside the European Union, your Trial Data or Protected Data may be transferred to, and processed in, Ireland or the United Kingdom.

Protected Data is stored on servers fully operated and controlled by us in the relevant data centre of your choosing. Once your Protected Data has been transmitted to your chosen datacentre, it is not transmitted out of country.

Your Personal Data (other than any as may be contained in your Trial Data or Protected Data), may be transmitted to third party service providers located in countries outside the European Economic Area, including the United States. Your submission of any Personal Data to us represents your agreement to the transfer and processing of such data as outlined in this Policy.

Datastring will take all steps reasonably necessary to ensure that the Personal Data you submit to us is treated securely and in accordance with this Policy. No transfer of Personal Data will take place to an organisation or country unless there are adequate controls and contractual provisions in place including in relation to the security of such data.

 

LINKS TO OTHER SITES

Our Site may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party’s site. We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites. We advise that your review the privacy policies of any third party sites you visit.

 

SENSITIVE PERSONAL DATA

We will not ask you for sensitive Personal Data (i.e. information relation to race or ethnic origin, political opinions, religious beliefs, physical or mental health, trade union membership, criminal records or sexual orientation). Please do not provide any such information to us.

 

CHILDREN’S PRIVACY

Our Site does not address anyone under the age of 16 (a ”Child”).

We do not knowing collect Personal Data from anyone under the age of 16. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without consent, we take steps to remove that information from our servers.

 

YOUR RIGHTS

You may have certain rights in relation to any Personal Data we may hold about you. These include the right to request access to your Personal Data, to request that it is erased, that its processing is restricted or that inaccurate Personal Data is rectified. You have the right to data portability of the Personal Data you provide to us. You may also have the right to complain about the use of your Personal Data to the data protection regulator. We may require proof of your identity before assisting you with the exercise of any rights you may.

Whenever possible, you can update your information directly within your account settings. If you care unable to change your information, please contact us for assistance.

 

CHANGES TO THIS POLICY

We may change this Policy from time to time. If we make changes, we will notify you by revising the date at the top of this Policy, and if the changes are significant, we may provide you with additional notice such as adding a statement to the homepage of the Site or sending you an email with the update. We advise you to review this Policy periodically for any changes.

 

DEFINITIONS

 

In this Policy:

 

Controller” means a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any Personal Data is, or is to be, processed

 “Personal Data” mean any information relating to an identifiable individual who can be directly or indirectly identified in particular by reference to an identifier.

process”, “processing” and “processed” means anything that is done to, or with, Personal Data (including collecting, storing or deleting that data)

 “Processor” means any person or entity that processes Personal Data on behalf of a Controller (other than employees of the Control)

 

CONTACT US

If you have any queries regarding this Policy, please contact us by email at privacy@datastring.com.