Privacy Policy

Updated at 2022-12-22

General Information

Systems integration solutions, LLC (hereinafter referred to as “Company“) is committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed by CorpoSign (hereinafter referred to as “we,” “our,” or “us“).

This Privacy Policy (hereinafter referred to as the “Privacy Policy“) establishes the conditions for the processing of personal data by persons using the website https://www.corposign.net (hereinafter referred to as the “Website” or “Service” ) operated by the Company, as well as for the processing of personal data carried out on this website. By accessing or using our Service, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy and our Terms of Service. The terms and conditions set out in the Privacy Policy apply to every access to the published content and/or service, irrespective of the device used (computer, mobile phone, tablet, television, etc.).

The company aims to ensure transparency and fairness in the processing of personal data, so it is very important that you read the Privacy Policy carefully and understand how and why personal data is processed.

The controller of personal data is Systems integration solutions, LLC, legal entity code 125677598, operating in Lithuania, e-mail [email protected]

We confirm that the data is processed in accordance with the applicable requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”) (hereinafter referred to as “Regulation (EU) 2016/679”), the Law of the Republic of Lithuania on the Legal Protection of Personal Data, the Law on Electronic Communications of the Republic of Lithuania, and the requirements of other legal acts, as well as the instructions of the supervisory bodies.

When processing personal data, we implement the necessary organisational and technical security measures to protect personal data against accidental or unlawful disclosure, alteration, destruction, or other unlawful processing.

The terms used in this Privacy Policy shall be understood as they are defined in Regulation (EU) 2016/679.

Definitions and Key Terms

For this Privacy Policy:

  • Cookie: a small amount of data generated by a website and saved by your web browser. It is used to identify your browser, provide analytics, remember information about you such as your language preference or login information
  • Company: when this policy mentions “Company,” ”we,” “us,” or “our,” it refers to a private limited liability company Systems Integration Solutions, LLC, organised and existing under the laws of the Republic of Lithuania, legal entity code – 125677598, VAT payer code LT256775917, having its registered office at Pasto g. 12-1, Grigiskes, LT-27105 Vilnius, Lithuania that is responsible for your information under this policy. The data about the Company is kept and collected by the Register of Legal Entities of the Republic of Lithuania
  • Country: where CorpoSign or the owners/founders of CorpoSign are based, in this case, is Lithuania
  • Customer: refers to the company, organization, or person that signs up to use the CorpoSign Service to manage the relationships with your consumers or service users
  • Device: any internet-connected device such as a phone, tablet, computer, or any other device that can be used to visit CorpoSign and use the services
  • IP address: Every device connected to the Internet is assigned a number known as an Internet protocol (IP) These numbers are usually assigned in geographic blocks. An IP address can often be used to identify the location from which a device is connecting to the Internet
  • Personnel: refers to those individuals who are employed by CorpoSign or are under contract to perform a service on behalf of one of the parties
  • Personal Data: any information that directly, indirectly, or in connection with other information – including a personal identification number – allows for the identification or identifiability of a natural person
  • Service: refers to the service provided by CorpoSign as described in the relative terms and on this website.

    CorpoSign offers blockchain-based digital signature (advanced qualified signatures, detached signatures) services for secure document signing for natural and legal persons. CorpoSign provides services in separate packages:

    • Testing Version (version without the commercial agreement)
    • Freemium Version (version without the commercial agreement)
    • Premium Version (version with the commercial agreement)
    • Custom Version (version with the custom commercial agreement)
    • All “CorpoSign” above mentioned services are compliant with eIDAS Regulation (EU) 910/2014 (“eIDAS”)). Trust service policies are being applied in these packages according to policies outlined in eIDAS Regulation (EU) 910/2014 (“eIDAS”), ETSI Standards EN 319 401 and other (if applicable)
  • Third-party service: refers to advertisers, contest sponsors, promotional and marketing partners, and others who provide our content or whose products or services we think may interest you
  • Website: CorpoSign’s site, which can be accessed via this URL: https://corposign.net/
  • You: any natural person or legal entity that is registered with CorpoSign to use the Services

Where We Obtain Your Personal Information

The Company processes the personal data that you directly provide to the Company when you subscribe to and use the Company’s services, send inquiries, etc., as well as the personal data that the Company receives from other data controllers that manage the services or systems that they develop and on which you subscribe to the Company’s services, and from payment institutions that process your payments for services.

What Information Do We Collect?

We may collect information from you when you visit our service, register, place an order, subscribe to our newsletter, respond to a survey or fill out a form.

  • Name I Username
  • Email Address
  • Password hash
  • Date of birth (if applicable)
  • Nationality (if applicable)
  • Phone Number (if applicable)
  • Job Title (if applicable)
  • Billing Address (if applicable)
  • Natural person and Legal person details or its hashes (if applicable)
  • IP address (if applicable)
  • Mailing Address (if applicable)

We also collect information from mobile devices for a better user experience, although these features are completely optional.

For what Purposes, for what Personal Data and on what Legal Basis We Process Them

Personal data is collected and processed for specific and defined purposes.

In order to process your service requests and provide the services you have requested, the Company processes the personal data of the persons to whom the services are provided (name, surname, email address, telephone number, details of the service provided, IP address, date and time of connection (when the reservation is made via the website), payment details for the service, other necessary data). The personal data is processed in order to enable pre-contractual actions and the performance of the contract, in accordance with Article 6(1)(b) of Regulation (EU) 2016/679.

In order to issue financial documents (e.g. invoices) and to keep accounting records, the Company processes the data of the persons who purchase the services specified in the accounting documents (name, surname, address, telephone number, e-mail address, service, and payment data, other necessary data specified in the accounting documents). The personal data is processed in order to enable the Company to comply with the requirements set out in the legislation, in accordance with Article 6(1)(c) of Regulation (EU) 2016/679, the Law on Accounting Protection of the Republic of Lithuania, and other legal acts.

In order to be able to respond to your requests, to process complaints or claims received, the Company processes the data of the persons who submitted the requests, complaints, or claims (name, surname, address, telephone number, e-mail address, content of the complaint, request, data on the processing of the complaint, request, other necessary data). Personal data is processed on the basis of the consent of the person and for the purposes of the Company’s legitimate interests to properly examine the issues submitted to it and to have evidence of the decisions taken, in accordance with Article 6(1)(a), (f) of Regulation (EU) 2016/679.

In order to facilitate the ordering and use of the services provided, you can register and create an account on the Company’s website. For this purpose, the Company will process the registered user’s personal data (name, surname, e-mail address, password, IP address, date/time of login, information about the services ordered, and other necessary data). Registration is completely voluntary and you can use some of the services without registering. For this purpose, personal data is processed on the basis of consent in accordance with Article 6(1)(a) of Regulation (EU) 2016/679.

In order to be able to offer its services, inform you about news, ask for your opinion on the services provided, etc., the Company processes the data of the persons who subscribe to the newsletter (email address) for the purpose of sending the newsletter and administering the subscription. Personal data is processed with the consent of the persons who subscribe to the newsletter in accordance with Article 6(1)(a) of Regulation (EU) 2016/679.

The company may also process personal data for other purposes to the extent necessary for the legitimate exercise of its activities, to comply with legal requirements, to defend itself against claims and lawsuits, and to protect its legitimate interests. Personal data shall be processed in accordance with the conditions set out in Article 6(1) of Regulation (EU) 2016/679.

Any of the information we collect from you may be used in one of the following ways:

  • To personalize your experience (your information helps us to better respond to your individual needs)
  • To improve our service (we continually strive to improve our service offerings based on the information and feedback we receive from you)
  • To improve customer service (your information helps us to more effectively respond to your customer service requests and support needs)
  • To process transactions
  • To administer a contest, promotion, survey, or other site feature
  • To send periodic emails

When Do We Use Customer Information from Third Parties?

We receive some information from third parties when you contact us. For example, when you submit your email address to us to show interest in becoming our customer, we receive information from a third party that provides automated fraud detection services to us. We also occasionally collect information that is made publicly available on social media websites. You can control how much of your information social media websites make public by visiting these websites and changing your privacy settings.

Do We Share the Information We Collect with Third Parties?

We may share the information that we collect, both personal and non-personal, with third parties such as advertisers, contest sponsors, promotional and marketing partners, and others who provide our content or whose products or services we think may interest you. We may also share it with our current and future affiliated companies and business partners, and if we are involved in a merger, asset sale, or other business reorganization, we may also share or transfer your personal and non-personal information to our successors-in-interest.

We may engage trusted third-party service providers to perform functions and provide services to us, such as hosting and maintaining our servers and our service, database storage and management, e-mail management, storage marketing, credit card processing, customer service, and fulfilling orders for products and services you may purchase through our platform. We will likely share your personal information, and possibly some non-personal information, with these third parties to enable them to perform these services for us and for you.

We may share portions of our log file data, including IP addresses, for analytics purposes with third parties such as web analytics partners, application developers, and ad networks. If your IP address is shared, it may be used to estimate general location and other technographics such as connection speed, whether you have visited the service in a shared location, and the type of device used to visit the service. They may aggregate information about our advertising and what you see on the service and then provide auditing, research, and reporting for us and our advertisers.

We may also disclose personal and non-personal information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate in order to respond to claims, legal process (including subpoenas), to protect our rights and interests or those of a third party, the safety of the public or any person, to prevent or stop any illegal, unethical, or legally actionable activity, or to otherwise comply with applicable court orders, laws, rules, and regulations.

Do We Share the Information We Collect with Third Parties?

We will collect the personal information that you submit to us. We may also receive personal information about you from third parties as described above.

How Do We Use Your Email Address?

By submitting your email address, you agree to receive emails from us. You can cancel your participation in any of these email lists at any time by clicking on the opt-out link or other unsubscribe option that is included in the respective email. We only send emails to people who have authorized us to contact them, either directly, or through a third party. We do not send unsolicited commercial emails, because we hate spam as much as you do. By submitting your email address, you also agree to allow us to use your email address for customer audience targeting on sites like Facebook, where we display custom advertising to specific people who have opted-in to receive communications from us. Email addresses submitted only through the order processing page will be used for the sole purpose of sending you information and updates pertaining to your order. If, however, you have provided the same email to us through another method, we may use it for any of the purposes stated in this Policy. Note: If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.

Could My Information be Transferred to Other Countries?

We are incorporated in Lithuania. Information collected via our website, through direct interactions with you, or from the use of our help services may be transferred from time to time to our offices or personnel, or to third parties, located throughout the world, and may be viewed and hosted anywhere in the world, including countries that may not have laws of general applicability regulating the use and transfer of such data. To the fullest extent allowed by applicable law, by using any of the above, you voluntarily consent to the trans-border transfer and hosting of such information.

Can I Update or Correct My Information?

The rights you have to request updates or corrections to the information we collect depend on your relationship with us. Personnel may update or correct their information as detailed in our internal company employment policies. Customers have the right to request the restriction of certain uses and disclosures of personally identifiable information as follows. You can contact us in order to (1) update or correct your personally identifiable information, (2) change your preferences with respect to communications and other information you receive from us, or (3) delete the personally identifiable information maintained about you on our systems (subject to the following paragraph), by canceling your account. Such updates, corrections, changes, and deletions will have no effect on other information that we maintain or information that we have provided to third parties in accordance with this Privacy Policy prior to such update, correction, change, or deletion. To protect your privacy and security, we may take reasonable steps (such as requesting a unique password) to verify your identity before granting you profile access or making corrections. You are responsible for maintaining the secrecy of your unique password and account information at all times. You should be aware that it is not technologically possible to remove each and every record of the information you have provided to us from our system due to Blockchain technology, as some of the information will be kept in the Blockchains ledger as long as we support its operation. The need to back up our systems to protect information from inadvertent loss means that a copy of your information may exist in a non-erasable form that will be difficult or impossible for us to locate. Promptly after receiving your request, all personal information stored in databases we actively use, and other readily searchable media will be updated, corrected, changed, or deleted, as appropriate, as soon as and to the extent reasonably and technically practicable. If you are an end-user and wish to update, delete, or receive any information we have about you, you may do so by contacting the organization of which you are a customer.

Personnel

If you are one of our workers or applicants, we collect the information you voluntarily provide to us. We use the information collected for Human Resources purposes in order to administer benefits to workers and screen applicants. You may contact us in order to (1) update or correct your information, (2) change your preferences with respect to communications and other information you receive from us, or (3) receive a record of the information we have relating to you. Such updates, corrections, changes, and deletions will have no effect on other information that we maintain or information that we have provided to third parties in accordance with this Privacy Policy prior to such update, correction, change, or deletion.

Sale of Business

We reserve the right to transfer information to a third party in the event of a sale, merger, or other transfer of all or substantially all of the assets of us or any of its Corporate Affiliates (as defined herein), or that portion of us or any of its Corporate Affiliates to which the Service relates, or in the event that we discontinue our business or file a petition or have filed against us a petition in bankruptcy, reorganization or similar proceeding, provided that the third party agrees to adhere to the terms of this Privacy Policy.

Affiliates

We may disclose information (including personal information) about you to our Corporate Affiliates. For purposes of this Privacy Policy, “Corporate Affiliate” means any person or entity which directly or indirectly controls, is controlled by, or is under common control with us, whether by ownership or otherwise. Any information relating to you that we provide to our Corporate Affiliates will be treated by those Corporate Affiliates in accordance with the terms of this Privacy Policy.

How Long We Keep Personal Data

The Company shall keep personal data only for as long as is necessary for the stated purposes of the processing of personal data or for as long as it is obliged to do so by law. This is also the case for anyone that we share your information with and who carries out services on our behalf. When we no longer need to use your information and there is no need for us to keep it to comply with our legal or regulatory obligations, we’ll either remove it from our systems or depersonalize it so that we can’t identify you.

Personal data shall be stored in accordance with the following time limits:

  • for the purpose of ordering and providing services – 1 month after the end of the requested service
  • for accounting purposes, for a period of 10 years after the calendar year in which the payment for the services was made
  • for the purpose of dealing with requests, complaints, and claims, 1 year after the final decision
  • for the purpose of facilitating the ordering and use of the services provided by the Company (creation of an account on the website) – for 3 years after the last access to the account
  • for the purpose of sending and administering newsletters and subscriptions to newsletters for 3 years
  • for the purpose of defending against claims, and lawsuits and for the protection of their legitimate interests, within the limitation periods laid down in the legislation

Upon expiry of the aforementioned retention periods, the personal data shall be destroyed beyond recovery or transferred to the state archives, if the Company is obliged to do so by law.

How Do We Protect Your Information?

We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information. We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our Payment gateway providers database only to be accessible by those authorized with special access rights to such systems, and are required to keep the information confidential. After a transaction, your private information (credit cards, social security numbers, financials, etc.) is never kept on file. We cannot, however, ensure or warrant the absolute security of any information you transmit to us or guarantee that your information on the Service may not be accessed, disclosed, altered, or destroyed by a breach of any of our physical, technical, or managerial safeguards.

Governing Law

The laws of Lithuania, excluding its conflicts of law rules, shall govern this Agreement and your use of our service. Your use of our service may also be subject to other local, state, national, or international laws.

Your Consent

By using our service, registering an account, or making a purchase, you consent to this Privacy Policy.

Links to Other Websites

This Privacy Policy applies only to the Services. The Services may contain links to other websites not operated or controlled by CorpoSign. We are not responsible for the content, accuracy, or opinions expressed in such websites, and such websites are not investigated, monitored, or checked for accuracy or completeness by us. Please remember that when you use a link to go from the Services to another website, our Privacy Policy is no longer in effect. Your browsing and interaction on any other website, including those that have a link on our platform, is subject to that website’s own rules and policies. Such third parties may use their own cookies or other methods to collect information about you.

What Rights You Have and How You Can Exercise Them

Regulation (EU) 2016/679 gives data subjects a number of rights. As a data subject you have the following rights:

  • know about the processing of your personal data
  • to have access to your personal data and to obtain a copy of it
  • request the rectification of inaccurate or incomplete personal data
  • request the restriction of the processing of personal data
  • request the erasure of personal data
  • where the processing of personal data is based on consent, to withdraw the consent given to process personal data
  • where the processing of personal data is based on the legitimate interests of the Company, to object to the processing of personal data
  • where the processing of personal data is based on consent and the conclusion and performance of a contract, the right to the portability of personal data
  • to complain about the actions or omissions of the Company to the supervisory authority, the State Data Protection Inspectorate

In order to exercise the above-mentioned rights with respect to the processing of personal data described in this Privacy Policy, you must apply to the Company’s contacts indicated in the Privacy Policy by submitting a written request in the recommended form approved by the Company or a free-form request, and by confirming your identity.

Recommended: Form of request for implementation of data subject rights

Recommended: Form for requesting access to personal data

In the request form, we would ask you to indicate which of the above rights you wish to exercise and to what extent.

You can verify your identity in the following ways:

  • by submitting your request in person, with proof of identity
  • by submitting your request by post, providing a copy of the identity document certified by a notary public, or a copy of this document certified in another way prescribed by law
  • by electronic means, by signing the application with a qualified electronic signature or by forming it by electronic means which ensure the integrity and the inalterability of the text, or by any other means which permits the identification of the data subject

The requirement to verify the identity of the person will not apply if you request information on the processing of personal data pursuant to Articles 13 and 14 of Regulation (EU) 2016/679.

In case of doubt as to your identity or if the Company cannot establish your identity on the basis of the information provided in the request, the Company may request additional information necessary to unambiguously confirm your identity.

In any event, the Company will provide you with information on the action it has taken in response to your request no later than one month from the date of receipt of the request. If the request is complex or more than one, this time limit may be extended by a further two months, if necessary, depending on the complexity and number of such requests. In any event, the Company will inform you of such an extension and the reasons for it within one month of receipt of the request.

Please note that the rights of data subjects shall be exercised in accordance with the conditions and to the extent set out in Regulation (EU) 2016/679. Therefore, if the request made by you in your particular case does not comply with the above conditions, it may not be implemented.

If the Company decides not to implement the request, it will inform you immediately, but at the latest within one month from the date of receipt of the request, and you will be able to appeal against this decision to the State Data Protection Inspectorate and to exercise other legal remedies. In all cases, we would ask you to contact us before you lodge a complaint in order to find the most appropriate solution together.

Third-party websites, services, and products on our website:

The Website may contain banners of the Company’s partners and other third parties and links to their websites and services. Please note that the Company is not responsible for the content of such websites or their privacy practices. Therefore, if you click on a link from the Company’s website to other websites, you should consult their privacy policies separately

Why and What Cookies We Use

We use “Cookies” to identify the areas of our website that you have visited. A cookie is a small piece of data stored on your computer or mobile device by your web browser. We use Cookies to personalize the Content that you see on our website. Most web browsers can be set to disable the use of Cookies. However, if you disable Cookies, you may not be able to access functionality on our website correctly or at all. We never place Personally Identifiable Information in Cookies.

When you visit the website, we want to provide you with content and features that are tailored to your needs. This requires cookies. Cookies are text files that are stored on your terminal device (e.g. computer, mobile phone, tablet) as a visitor to the website to help identify you as a visitor to the website and store information about your browsing experience, and tailor the content accordingly. Cookies also help to ensure the smooth functioning of the website, allowing us to monitor the duration and frequency of visits to the website and to collect statistical information on the number of visitors to the website. By analysing this data, we can improve our website and make it more user-friendly.

When you first visit the website, cookies are transferred to the website visitor’s terminal device and are subsequently used to identify that device. This is a common practice in web browsing, making it easier to navigate through a website you have already visited and simplifying access to the information published.

The website uses technical cookies, which are necessary to provide certain services on the website and to allow you to browse and use the website’s features.

The website uses statistical cookies, which use the information obtained to improve the functionality and use of the website. The website uses Google Analytics – Google, Inc. (“Google”), a web analytics service provided by Google to help analyse the use of this website. Google Analytics uses cookies for this purpose. The information generated by the cookies about your use of the website, such as standard web log information (including your IP address) and anonymous information about your visitor behaviour, is transmitted to and stored by Google on servers in the USA. The website makes the IP address of the website visitor anonymous before sending it to Google. If you wish to opt out of Google Analytics cookies, you will need to download and install the Google Analytics Opt-out Browser Add-on. This can be done by opening the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

Cookies used on the website: https://www.corposign.net/cookie-policy/

Cookie nameFunctions performed by the cookie / Purpose of the cookie (data processing) / Validity period
„Google“ cookiesRead more about „Google“ cookies policy
„Google Analytics“ cookiesRead more about “Google Analytics” cookies policy
„Hotjar“ cookiesRead more about  „Hotjar“ cookies policy
HubspotcookiesRead more about  „Hubspot“ cookies policy
„CookieBot“ cookiesRead more about  „CookieBot“ cookies policy
„Youtube“ cookiesRead more about  „Google“ cookies policy

 

When using a browser to access content provided by the Company, it is possible to configure the browser to accept all cookies, reject all cookies, or to be notified when a cookie is sent.

Each browser is different, so if you don’t know how to change your cookie preferences, please check your browser’s help menu. The operating system of the device you are using may have additional cookie controls. If you do not want the information to be collected by cookies, you can use a simple procedure in most browsers that allow you to opt-out of cookies. To learn more about how to manage cookies, please visit https://www.allaboutcookies.org/manage-cookies/.

However, please note that in some cases, deleting cookies may slow down the speed of your web browsing, limit the functionality of certain features of the website, or block access to the website.

Other Information About the Use of Cookies

In addition to the cookies used by the Company, the website allows certain third parties to set and access cookies on your computer. In this case, the processing of personal data and the use of cookies is subject to the privacy policy of the third party and the Company assumes no responsibility for the privacy practices of third-party cookies.

Remarketing Services

We use remarketing services. What Is Remarketing? In digital marketing, remarketing (or retargeting) is the practice of serving ads across the internet to people who have already visited your website. It allows your company to seem like they’re “following” people around the internet by serving ads on the websites and platforms they use most.

Payment Details

In respect to any credit card or other payment processing details you have provided us, we commit that this confidential information will be stored in the most secure manner possible.

Kids’ Privacy

We do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from our servers.

Changes To Our Privacy Policy

If we decide to change our privacy policy, we will post those changes on this page, and/or update the Privacy Policy modification date at the top of this page.

Third-Party Services

We may display, include or make available third-party content (including data, information, applications, and other product services) or provide links to third-party websites or services (“Third-Party Services”).

You acknowledge and agree that we shall not be responsible for any Third-Party Services, including their accuracy, completeness, timeliness, validity, copyright compliance, legality, decency, quality, or any other aspect thereof. We do not assume and shall not have any liability or responsibility to you or any other person or entity for any Third-Party Services.

Third-Party Services and links thereto are provided solely as a convenience to you and you access and use them entirely at your own risk and subject to such third parties terms and conditions.

Facebook Pixel

Facebook pixel is an analytics tool that allows you to measure the effectiveness of your advertising by understanding the actions people take on your website. You can use the pixel to: Make sure your ads are shown to the right people. The Facebook pixel may collect information from your device when you use the service. Facebook pixel collects information that is held in accordance with its Privacy Policy.

Tracking Technologies

  • Cookies

We use Cookies to enhance the performance and functionality of our service but are non-essential to their use. However, without these cookies, certain functionality like videos may become unavailable or you would be required to enter your login details every time you visit our service as we would not be able to remember that you had logged in previously.

  • Local Storage

Local Storage sometimes known as DOM storage provides web apps with methods and protocols for storing client-side data. Web storage supports persistent data storage, similar to cookies but with a greatly enhanced capacity and no information stored in the HTTP request header.

  • Sessions

We use “Sessions” to identify the areas of our website that you have visited. A Session is a small piece of data stored on your computer or mobile device by your web browser.

Information about General Data Protection Regulation (GDPR)

We may be collecting and using information from you if you are from the European Economic Area (EEA), and in this section of our Privacy Policy, we are going to explain exactly how and why is this data collected, and how we maintain this data under protection from being replicated or used in the wrong way.

What is GDPR?

GDPR is an EU-wide privacy and data protection law that regulates how EU residents’ data is protected by companies and enhances the control the EU residents have, over their personal data.

What is personal data?

Any data that relates to an identifiable or identified individual. GDPR covers a broad spectrum of information that could be used on its own, or in combination with other pieces of information, to identify a person. Personal data extends beyond a person’s name or email address. Some examples include financial information, political opinions, genetic data, biometric data, IP addresses, physical addresses, sexual orientations, and ethnicity. The Data Protection Principles include requirements such as:

  • Personal data collected must be processed in a fair, legal, and transparent way and should only be used in a way that a person would reasonably expect
  • Personal data should only be collected to fulfill a specific purpose and it should only be used for that Organizations must specify why they need the personal data when they collect it
  • Personal data should be held no longer than necessary to fulfill its purpose
  • People covered by the GDPR have the right to access their own personal data. They can also request a copy of their data, and that their data be updated, deleted, restricted, or moved to another organization

Why is GDPR important?

GDPR adds some new requirements regarding how companies should protect individuals’ personal data that they collect and process. It also raises the stakes for compliance by increasing enforcement and imposing greater fines for breaches. Beyond these facts, it’s simply the right thing to do. At Help Scout we strongly believe that your data privacy is very important and we already have solid security and privacy practices in place that go beyond the requirements of this new regulation.

Individual Data Subject’s Rights – Data Access, Portability and Deletion

We are committed to helping our customers meet the data subject rights requirements of GDPR. We process or store all personal data in fully vetted, DPA-compliant vendors. We do store all conversation and personal data for up to 6 years unless your account is deleted. In this case, we dispose of all data in accordance with our Terms of Service and Privacy Policy, but we will not hold it for longer than 60 days.

We are aware that if you are working with EU customers, you need to be able to provide them with the ability to access, update, retrieve and remove personal data. We got you! We’ve been set up as self-service from the start and have always given you access to your data and your customers’ data. Our customer support team is here for you to answer any questions you might have about working with the API.

California Residents

The California Consumer Privacy Act (CCPA) requires us to disclose the categories of Personal Information we collect and how we use it, the categories of sources from whom we collect Personal Information, and the third parties with whom we share it, which we have explained above.

We are also required to communicate information about the rights California residents have under California law. You may exercise the following rights:

  • Right to Know and Access. You may submit a verifiable request for information regarding the: (1) categories of Personal Information we collect, use, or share; (2) purposes for which categories of Personal Information are collected or used by us; (3) categories of sources from which we collect Personal Information; and (4) specific pieces of Personal Information we have collected about you
  • Right to Equal Service. We will not discriminate against you if you exercise your privacy rights
  • Right to Delete. You may submit a verifiable request to close your account and we will delete the Personal Information about you that we have collected
  • Request that a business that sells a consumer’s personal data, not sell the consumer’s personal data

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

We do not sell the Personal Information of our users.

For more information about these rights, please contact us.

California Online Privacy Protection Act (CalOPPA)

CalOPPA requires us to disclose the categories of Personal Information we collect and how we use it, the categories of sources from whom we collect Personal Information, and the third parties with whom we share it, which we have explained above.

CalOPPA users have the following rights:

  • Right to Know and Access. You may submit a verifiable request for information regarding the: (1) categories of Personal Information we collect, use, or share; (2) purposes for which categories of Personal Information are collected or used by us; (3) categories of sources from which we collect Personal Information; and (4) specific pieces of Personal Information we have collected about you
  • Right to Equal Service. We will not discriminate against you if you exercise your privacy rights
  • Right to Delete. You may submit a verifiable request to close your account and we will delete the Personal Information about you that we have collected
  • Right to request that a business that sells a consumer’s personal data, not sell the consumer’s personal data

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

We do not sell the Personal Information of our users.

For more information about these rights, please contact us.

Contact us

If you have any questions regarding the information contained in this Privacy Policy or if you wish to exercise your rights as a data subject, you are kindly requested to contact Systems Integration Solutions, LLC in any way that is convenient for you: