Privacy Policy
Last Updated
August 27, 2020
This Privacy Policy outlines how Amity Corporation Ltd. (“Amity”) collects, uses and discloses your Personal Data as well as your choices with regard to such data and information.
This Privacy Policy applies to all the services offered by Amity and the other entities of the group (the “Group” and the “Services”). That includes, for instance, our communication, productivity and collaboration tools and platforms as well as our websites (the “Websites”).
Our Services might include links to third-party products or might include a web portal where such products are available for download (each, a “Third-Party Product”). Please bear in mind that these Third-Party Products do not form part of our Services and, therefore, the present Privacy Policy does not apply to them.
The Data Controller is Amity Corporation Ltd. (“Amity” or the “Controller”), a UK based company located at Cornwall Court, 19 Cornwall Street, Birmingham, United Kingdom. Amity is the parent company of the Group and responsible for all the data processing activities described in this Privacy Policy.
For any further information on the processing of your Personal Data or this Privacy Policy you may contact the Controller writing at legal@amity.co. Moreover, Amity has appointed a Data Protection Officer, who may be contacted writing at alberto@amity.co.
Amity has also appointed Amity Europe S.r.l. as Representative in the EU according to Article 27, GDPR. It has been duly authorized to represent the Controller for issues relating to compliance with the GDPR, including dealing with any EU supervisory authorities and data subjects. Therefore, if you are an EU citizen you may also contact the Representative to receive further information on the processing of your personal data and rights under the GDPR.
When we talk about personal data, we refer to all the information relating to an identified or identifiable natural person. Therefore, when we refer to your personal data, we refer to any information that allows us to identify you, directly or indirectly (the “Personal Data”).
We collect the following categories of Personal Data through your use of our Services or when you are surfing our Websites:
Further details on each type of Personal Data collected are provided in the section below of this Privacy Policy describing the purposes of processing activities as well as in the appropriate explanation texts displayed across the Websites.
We collect your Personal Data either when you provide it voluntarily (for instance, when you fill-in a form on our Websites to file a request) or automatically, while you are using our Services (for instance, when using our chat tool).
For some of our Services, you will be invited to access and use them by an organization (e.g. your employer or another third party), which acts as a customer of the Controller (the “Customer”). In these cases, you will be an authorized end user (“Authorized End User”) and your Personal Data will be provided to us by the Customer in order to allow you to use our Services.
Unless otherwise specified, we only collect the Personal Data that are necessary to provide our Services. Therefore, unless differently stated, all the information requested when using the Services are mandatory, and the failure to provide them may make it impossible for the Services to function. When it is specifically stated that some data are not mandatory, you are free to decide not to share them with us without any consequence on the availability or functioning of the Services.
The Controller also collects some Personal Data through cookies. For the rules regulating the collection and processing of your Personal Data through cookies please also refer to our Cookie Policy.
Amity processes your Personal Data for the purposes and according to the legal bases described below.
The Controller processes your Personal Data to allow you to use our Services.
Depending on whether you have a direct contractual relationship with Amity or you have been provided access to our service by a Customer, the legal basis for these processing activities is the necessity to perform an existing agreement and/or for any pre-contractual obligations with you (Art. 6, par. 1, let. c), GDPR) or the legitimate interest of the Controller to execute the agreement concluded with the Customer (Art. 6, par. 1, let. f), GDPR).
Please find below more detailed information on how we process your Personal Data depending on the different type of Service you are requesting.
Eko
Eko offers a virtual workspace helping teams to stay connected while working remotely.
To offer this service, the Controller processes your Personal Data that can be provided by the Customer that gives you access to Eko’s platform (for instance, your employer) or by yourself. These Personal Data include your name, user profile, and conversations.
Third Party Products.
A Customer can choose to permit or restrict Third Party Product for its workspace. Typically, Third Party Products are software that integrates with our Services, and a Customer can permit its Authorized End Users to enable and disable these integrations for its workspace.
Eko Services may also connect with a Third Party Product. Once enabled, the provider of a Third Party Product may share certain information with Eko to facilitate the integration.
You should check the privacy settings and notices in these Third Party Products to understand what data may be disclosed to Eko.
We do not receive or store passwords for any of these Third Party Services when connecting them to the Services.
Third Party Products Data.
Eko may receive data about organizations, industries, lists of companies that are customers, Website visitors, marketing campaigns and other matters related to our business from parent corporation(s), affiliates and subsidiaries, our partners, or others that we use to make our own information better or more useful.
This data might include aggregate-level data, such as which IP addresses correspond to zip codes or countries.
Upstra
Upstra offers an application development kit for building in-app community experiences increasing user engagements and connection.
To offer this service, Upstra processes your Personal Data, which include your chats and user profile.
Convolab
Convolab provides an AI Chatbot to its Customers that can be employed to facilitate the management of your requests, optimize the customer-service experience, or provides news, including the latest promotional updates.
To allow you to use a chatbot run by Convolab, we collect your Personal Data such as your name, email address, social network profile used to connect to the chat, your interactions and requests.
Amity may contact you at your business email or phone number to introduce you to our products and Services and offer you our support to your business.
The Controller will contact you only when we reasonably believe our Services may support your goals or you may be interested based on the industry you are operating in. Moreover, we will contact you with marketing and advertising emails and calls if you have asked information or begun a search for a service or product we provide.
The legal basis for this processing activity is the legitimate interest of the Controller to conduct direct marketing activities (Art. 6, par. 1, let. f), GDPR and Recital 47, GDPR).
Object to Processing of Personal Data for Direct Marketing.
You have the right to object to the processing of your Personal Data for Direct Marketing activities at any moment contacting the Controller or replying to our emails.
Amity runs all the Websites for the several companies of the Group, which you may find listed below. To operate these websites and offer you all the connected services, the Controller processes the Personal Data whose transmission is implicit in the use of Internet communication protocols. These data include IP addresses, domain names of your device, the timing and method of your request, the file transmitted, and information on your operative system and device.
These data are also anonymized and used to have statistical information on the use of the Websites to ascertain their correct functioning and the possibility of cyber crimes.
The legal basis for this processing activity is the legitimate interest of the Controller to manage the Websites and protect you from possible cyber crimes (Art. 6, par. 1, let. f), GDPR).
List of Websites:
You can contact the Controller through the specific form in our Websites or our phone numbers.
To manage your requests, the Controller needs to process the provided Personal Data such as your name, contacts and the content of your message. Accordingly, we suggest you provide us only the information that we need to comply with your request.
The legal basis for this processing activity is the legitimate interest of the Controller to comply with your requests (Art. 6, par. 1, let. f), GDPR).
The Controller may need to process your Personal Data to comply with legal obligations connected to its activities and/or the Services provided to you and the Customer.
The legal basis for this processing activity is the necessity to comply with legal obligations (Art. 6, par. 1, let. c), GDPR).
We take security of Personal Data very seriously. Hence, we have taken appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data. The Personal Data processing is carried out through computers and / or IT enabled tools and in strict compliance with internal organizational policies aiming at ensuring their security and confidentiality. Additionally, we exclusively process your Personal Data for the purposes outlined in this Privacy Policy.
To carry out the processing activities described in previous paragraph 5), your Personal Data will be accessed by the necessary employees and collaborators of the Controller.
Moreover, your Personal Data will be shared with other companies that support Amity to provide the Services. These companies include the other companies of the Group that offer the requested service; companies that support the Controller to set up and manage the ICT infrastructure; companies supporting Amity for archiving purposes; mail carriers; hosting providers; communications agencies; subjects that provide legal and/or tax consultancy.
Moreover, Amity uses Amazon Web Services’ cloud platform to securely store your Personal Data. In particular, we asked Amazon to store your Personal Data in servers located in your country.
Where required by the applicable legislation, these companies have been appointed data processors by the Controller in compliance with Article 28 GDPR to guarantee that your Personal Data are protected also when processed by third parties.
You are entitled at any time to request the Controller an updated list of all such third parties that process your Personal Data.
Amity is the parent company of a multinational Group of companies. Hence, it operates in several countries and your Personal Data may be transferred where the Controller has its operating offices as well as in foreign countries where the companies of the Group and / or third party providers are located.
To ensure that your Personal Data receive always the same degree of protection, when they are processed outside the UK and the EU/European Economic Area (EEA), Amity ensures that the receiving companies are bound by the Standard Contractual Clauses, which establish similar obligations to that imposed by the UK Data Protection Act 2018 and the GDPR.
You are entitled at any time to request the Controller an updated list of all the countries where your Personal Data may be transferred as well as the safeguards established by Amity.
Amity processes and stores your Personal Data only as long as required by the purpose they have been collected for.
Accordingly, depending on the processing activity, your Personal Data will be deleted withing 10 years from:
The Controller may be obliged to retain your Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an Authority.
Once the retention period expires, Personal Data will be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.
You may exercise certain rights regarding your Personal Data processed by the Controller. In particular, you have the right to:
Withdraw Consent at Any Time. You have the right to withdraw the consent you have previously given to the processing of your Personal Data.
Object to Processing of Personal Data. You have the right to object to the processing of your Personal Data if the processing is carried out on a legal basis other than consent.
Access Your Personal Data. You have the right to learn if the Controller is processing your Personal Data, to obtain disclosure regarding certain aspects of the processing and to obtain a copy of the Personal Data undergoing processing.
Verify and Seek Rectification. You have the right to verify the accuracy of your Personal Data and ask for them to be updated or rectified.
Restrict the Processing of Personal Data. You have the right, under certain circumstances, to restrict the processing of your Personal Data. In this case, the Controller will not process that Personal Data for any purpose other than safely storing it.
Have Personal Data Deleted or Removed. You have the right, under certain circumstances, to obtain the erasure of your Personal Data.
Receive Personal Data and Transfer Them to Another Controller. You have the right to receive your Personal Data in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another controller without any hindrance.
Lodge a Complaint. You have the right to bring a claim before their competent Data Protection Authority. For the controversies arising directly in the UK, the competent Data Protection Authority is the Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
The Controller reserves the right to make changes to this Privacy Policy at any time by giving you notice through the Services - as far as technically and legally feasible - or sending a notice. In any case, especially if you are not a registered user, it is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. Should the changes affect processing activities performed on the basis of your consent, the Controller will collect a new consent for those processing activities.
Should you have any question that was not addressed so far, or should you simply wish to better understand how Eko deals with your Personal Data or, in general, your rights under GDPR, please please feel free to email us at legal@ekoapp.com.
Privacy Policy
Last Updated
August 27, 2020
This Privacy Policy outlines how Amity Corporation Ltd. (“Amity”) collects, uses and discloses your Personal Data as well as your choices with regard to such data and information.
This Privacy Policy applies to all the services offered by Amity and the other entities of the group (the “Group” and the “Services”). That includes, for instance, our communication, productivity and collaboration tools and platforms as well as our websites (the “Websites”).
Our Services might include links to third-party products or might include a web portal where such products are available for download (each, a “Third-Party Product”). Please bear in mind that these Third-Party Products do not form part of our Services and, therefore, the present Privacy Policy does not apply to them.
The Data Controller is Amity Corporation Ltd. (“Amity” or the “Controller”), a UK based company located at Cornwall Court, 19 Cornwall Street, Birmingham, United Kingdom. Amity is the parent company of the Group and responsible for all the data processing activities described in this Privacy Policy.
For any further information on the processing of your Personal Data or this Privacy Policy you may contact the Controller writing at legal@amity.co. Moreover, Amity has appointed a Data Protection Officer, who may be contacted writing at alberto@amity.co.
Amity has also appointed Amity Europe S.r.l. as Representative in the EU according to Article 27, GDPR. It has been duly authorized to represent the Controller for issues relating to compliance with the GDPR, including dealing with any EU supervisory authorities and data subjects. Therefore, if you are an EU citizen you may also contact the Representative to receive further information on the processing of your personal data and rights under the GDPR.
When we talk about personal data, we refer to all the information relating to an identified or identifiable natural person. Therefore, when we refer to your personal data, we refer to any information that allows us to identify you, directly or indirectly (the “Personal Data”).
We collect the following categories of Personal Data through your use of our Services or when you are surfing our Websites:
Further details on each type of Personal Data collected are provided in the section below of this Privacy Policy describing the purposes of processing activities as well as in the appropriate explanation texts displayed across the Websites.
We collect your Personal Data either when you provide it voluntarily (for instance, when you fill-in a form on our Websites to file a request) or automatically, while you are using our Services (for instance, when using our chat tool).
For some of our Services, you will be invited to access and use them by an organization (e.g. your employer or another third party), which acts as a customer of the Controller (the “Customer”). In these cases, you will be an authorized end user (“Authorized End User”) and your Personal Data will be provided to us by the Customer in order to allow you to use our Services.
Unless otherwise specified, we only collect the Personal Data that are necessary to provide our Services. Therefore, unless differently stated, all the information requested when using the Services are mandatory, and the failure to provide them may make it impossible for the Services to function. When it is specifically stated that some data are not mandatory, you are free to decide not to share them with us without any consequence on the availability or functioning of the Services.
The Controller also collects some Personal Data through cookies. For the rules regulating the collection and processing of your Personal Data through cookies please also refer to our Cookie Policy.
Amity processes your Personal Data for the purposes and according to the legal bases described below.
The Controller processes your Personal Data to allow you to use our Services.
Depending on whether you have a direct contractual relationship with Amity or you have been provided access to our service by a Customer, the legal basis for these processing activities is the necessity to perform an existing agreement and/or for any pre-contractual obligations with you (Art. 6, par. 1, let. c), GDPR) or the legitimate interest of the Controller to execute the agreement concluded with the Customer (Art. 6, par. 1, let. f), GDPR).
Please find below more detailed information on how we process your Personal Data depending on the different type of Service you are requesting.
Eko
Eko offers a virtual workspace helping teams to stay connected while working remotely.
To offer this service, the Controller processes your Personal Data that can be provided by the Customer that gives you access to Eko’s platform (for instance, your employer) or by yourself. These Personal Data include your name, user profile, and conversations.
Third Party Products.
A Customer can choose to permit or restrict Third Party Product for its workspace. Typically, Third Party Products are software that integrates with our Services, and a Customer can permit its Authorized End Users to enable and disable these integrations for its workspace.
Eko Services may also connect with a Third Party Product. Once enabled, the provider of a Third Party Product may share certain information with Eko to facilitate the integration.
You should check the privacy settings and notices in these Third Party Products to understand what data may be disclosed to Eko.
We do not receive or store passwords for any of these Third Party Services when connecting them to the Services.
Third Party Products Data.
Eko may receive data about organizations, industries, lists of companies that are customers, Website visitors, marketing campaigns and other matters related to our business from parent corporation(s), affiliates and subsidiaries, our partners, or others that we use to make our own information better or more useful.
This data might include aggregate-level data, such as which IP addresses correspond to zip codes or countries.
Upstra
Upstra offers an application development kit for building in-app community experiences increasing user engagements and connection.
To offer this service, Upstra processes your Personal Data, which include your chats and user profile.
Convolab
Convolab provides an AI Chatbot to its Customers that can be employed to facilitate the management of your requests, optimize the customer-service experience, or provides news, including the latest promotional updates.
To allow you to use a chatbot run by Convolab, we collect your Personal Data such as your name, email address, social network profile used to connect to the chat, your interactions and requests.
Amity may contact you at your business email or phone number to introduce you to our products and Services and offer you our support to your business.
The Controller will contact you only when we reasonably believe our Services may support your goals or you may be interested based on the industry you are operating in. Moreover, we will contact you with marketing and advertising emails and calls if you have asked information or begun a search for a service or product we provide.
The legal basis for this processing activity is the legitimate interest of the Controller to conduct direct marketing activities (Art. 6, par. 1, let. f), GDPR and Recital 47, GDPR).
Object to Processing of Personal Data for Direct Marketing.
You have the right to object to the processing of your Personal Data for Direct Marketing activities at any moment contacting the Controller or replying to our emails.
Amity runs all the Websites for the several companies of the Group, which you may find listed below. To operate these websites and offer you all the connected services, the Controller processes the Personal Data whose transmission is implicit in the use of Internet communication protocols. These data include IP addresses, domain names of your device, the timing and method of your request, the file transmitted, and information on your operative system and device.
These data are also anonymized and used to have statistical information on the use of the Websites to ascertain their correct functioning and the possibility of cyber crimes.
The legal basis for this processing activity is the legitimate interest of the Controller to manage the Websites and protect you from possible cyber crimes (Art. 6, par. 1, let. f), GDPR).
List of Websites:
You can contact the Controller through the specific form in our Websites or our phone numbers.
To manage your requests, the Controller needs to process the provided Personal Data such as your name, contacts and the content of your message. Accordingly, we suggest you provide us only the information that we need to comply with your request.
The legal basis for this processing activity is the legitimate interest of the Controller to comply with your requests (Art. 6, par. 1, let. f), GDPR).
The Controller may need to process your Personal Data to comply with legal obligations connected to its activities and/or the Services provided to you and the Customer.
The legal basis for this processing activity is the necessity to comply with legal obligations (Art. 6, par. 1, let. c), GDPR).
We take security of Personal Data very seriously. Hence, we have taken appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data. The Personal Data processing is carried out through computers and / or IT enabled tools and in strict compliance with internal organizational policies aiming at ensuring their security and confidentiality. Additionally, we exclusively process your Personal Data for the purposes outlined in this Privacy Policy.
To carry out the processing activities described in previous paragraph 5), your Personal Data will be accessed by the necessary employees and collaborators of the Controller.
Moreover, your Personal Data will be shared with other companies that support Amity to provide the Services. These companies include the other companies of the Group that offer the requested service; companies that support the Controller to set up and manage the ICT infrastructure; companies supporting Amity for archiving purposes; mail carriers; hosting providers; communications agencies; subjects that provide legal and/or tax consultancy.
Moreover, Amity uses Amazon Web Services’ cloud platform to securely store your Personal Data. In particular, we asked Amazon to store your Personal Data in servers located in your country.
Where required by the applicable legislation, these companies have been appointed data processors by the Controller in compliance with Article 28 GDPR to guarantee that your Personal Data are protected also when processed by third parties.
You are entitled at any time to request the Controller an updated list of all such third parties that process your Personal Data.
Amity is the parent company of a multinational Group of companies. Hence, it operates in several countries and your Personal Data may be transferred where the Controller has its operating offices as well as in foreign countries where the companies of the Group and / or third party providers are located.
To ensure that your Personal Data receive always the same degree of protection, when they are processed outside the UK and the EU/European Economic Area (EEA), Amity ensures that the receiving companies are bound by the Standard Contractual Clauses, which establish similar obligations to that imposed by the UK Data Protection Act 2018 and the GDPR.
You are entitled at any time to request the Controller an updated list of all the countries where your Personal Data may be transferred as well as the safeguards established by Amity.
Amity processes and stores your Personal Data only as long as required by the purpose they have been collected for.
Accordingly, depending on the processing activity, your Personal Data will be deleted withing 10 years from:
The Controller may be obliged to retain your Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an Authority.
Once the retention period expires, Personal Data will be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.
You may exercise certain rights regarding your Personal Data processed by the Controller. In particular, you have the right to:
Withdraw Consent at Any Time. You have the right to withdraw the consent you have previously given to the processing of your Personal Data.
Object to Processing of Personal Data. You have the right to object to the processing of your Personal Data if the processing is carried out on a legal basis other than consent.
Access Your Personal Data. You have the right to learn if the Controller is processing your Personal Data, to obtain disclosure regarding certain aspects of the processing and to obtain a copy of the Personal Data undergoing processing.
Verify and Seek Rectification. You have the right to verify the accuracy of your Personal Data and ask for them to be updated or rectified.
Restrict the Processing of Personal Data. You have the right, under certain circumstances, to restrict the processing of your Personal Data. In this case, the Controller will not process that Personal Data for any purpose other than safely storing it.
Have Personal Data Deleted or Removed. You have the right, under certain circumstances, to obtain the erasure of your Personal Data.
Receive Personal Data and Transfer Them to Another Controller. You have the right to receive your Personal Data in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another controller without any hindrance.
Lodge a Complaint. You have the right to bring a claim before their competent Data Protection Authority. For the controversies arising directly in the UK, the competent Data Protection Authority is the Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
The Controller reserves the right to make changes to this Privacy Policy at any time by giving you notice through the Services - as far as technically and legally feasible - or sending a notice. In any case, especially if you are not a registered user, it is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. Should the changes affect processing activities performed on the basis of your consent, the Controller will collect a new consent for those processing activities.
Personal Data is collected for the following purposes and using the following services:
This type of service allows User Data to be utilized for advertising communication purposes displayed in the form of banners and other advertisements on this Application, possibly based on User interests.
This does not mean that all Personal Data are used for this purpose. Information and conditions of use are shown below.
Some of the services listed below may use Cookies to identify Users or they may use the behavioral retargeting technique, i.e. displaying ads tailored to the User’s interests and behavior, including those detected outside this Application. For more information, please check the privacy policies of the relevant services.
In addition to any opt-out offered by any of the services below, the User may opt out of a third-party service's use of cookies by visiting the Network Advertising Initiative opt-out page.
Google Ad Manager is an advertising service provided by Google LLC that allows the Owner to run advertising campaigns in conjunction with external advertising networks that the Owner, unless otherwise specified in this document, has no direct relationship with. In order to opt out from being tracked by various advertising networks, Users may make use of Youronlinechoices. In order to understand Google's use of data, consult Google's partner policy.
This service uses the “DoubleClick” Cookie, which tracks use of this Application and User behavior concerning ads, products and services offered. Users may decide to disable all the DoubleClick Cookies by clicking on: www.google.com/settings/ads/onweb/optout?hl=en.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.
HubSpot Analytics is an analytics service provided by HubSpot, Inc.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy – Opt Out .
Google Analytics is a web analysis service provided by Google LLC (“Google”). Google utilizes the Data collected to track and examine the use of this Application, to prepare reports on its activities and share them with other Google services.
Google may use the Data collected to contextualize and personalize the ads of its own advertising network.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy – Opt Out. Privacy Shield participant.
Wordpress Stats is an analytics service provided by Automattic Inc.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy.
LinkedIn conversion tracking is an analytics service provided by LinkedIn Corporation that connects data from the LinkedIn advertising network with actions performed on this Application.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
MixPanel is an analytics service provided by Mixpanel Inc.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy – Opt Out. Privacy Shield participant.
According to the medical community, and as stated on this OvulationCalculator site, ovulation cramps are totally normal and they can occur quite often among women.
By filling in the contact form with their Data, the User authorizes this Application to use these details to reply to requests for information, quotes or any other kind of request as indicated by the form’s header.
Personal Data collected: email address; first name; last name.
By registering on the mailing list or for the newsletter, the User’s email address will be added to the contact list of those who may receive email messages containing information of commercial or promotional nature concerning this Application. Your email address might also be added to this list as a result of signing up to this Application or after making a purchase.
Personal Data collected: email address.
By filling in the contact form with their Data, the User authorizes this Application to use these details to reply to requests for information, quotes or any other kind of request as indicated by the form’s header.
If this service is installed, it may collect browsing and Usage Data in the pages where it is installed, even if the Users do not actively use the service.
Personal Data collected: Cookies; email address; Usage Data.
Place of processing: United States – Privacy Policy.
The services contained in this section allow the Owner to track and analyze the User response concerning web traffic or behavior regarding changes to the structure, text or any other component of this Application.
Google Website Optimizer is an A/B testing service provided by Google LLC.
Google may use Personal Data to contextualize and personalize the ads of its own advertising network.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
The Owner is allowed to transfer Personal Data collected within the EU to third countries (i.e. any country not part of the EU) only pursuant to a specific legal basis. Any such Data transfer is based on one of the legal bases described below.
Users can inquire with the Owner to learn which legal basis applies to which specific service.
If this is the legal basis, the transfer of Personal Data from the EU to third countries is carried out by the Owner according to “standard contractual clauses” provided by the European Commission.
This means that Data recipients have committed to process Personal Data in compliance with the data protection standards set forth by EU data protection legislation. For further information, Users are requested to contact the Owner through the contact details provided in the present document.
Personal Data collected: various types of Data.
This type of service allows you to view content hosted on external platforms directly from the pages of this Application and interact with them.
This type of service might still collect web traffic data for the pages where the service is installed, even when Users do not use it.
Google Fonts is a typeface visualization service provided by Google LLC that allows this Application to incorporate content of this kind on its pages.
Personal Data collected: Usage Data; various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
Google Maps is a maps visualization service provided by Google LLC that allows this Application to incorporate content of this kind on its pages.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
MyFonts is a typeface visualization service provided by MyFonts Inc. that allows this Application to incorporate content of this kind on its pages.
Personal Data collected: Usage Data; various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy.
Heat mapping services are used to display the areas of a page where Users most frequently move the mouse or click. This shows where the points of interest are. These services make it possible to monitor and analyze web traffic and keep track of User behavior.
Some of these services may record sessions and make them available for later visual playback.
Crazy Egg is a heat mapping service provided by Crazy Egg, Inc.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy.
This type of service has the purpose of hosting Data and files that enable this Application to run and be distributed as well as to provide a ready-made infrastructure to run specific features or parts of this Application. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the Personal Data are stored.
Amazon Web Services (AWS) is a hosting and backend service provided by Amazon Web Services, Inc.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: United Kingdom – Privacy Policy. Privacy Shield participant.
This type of service allows Users to interact with data collection platforms or other services directly from the pages of this Application for the purpose of saving and reusing data.
If one of these services is installed, it may collect browsing and Usage Data in the pages where it is installed, even if the Users do not actively use the service.
The Mailchimp widget is a service for interacting with the Mailchimp email address management and message sending service provided by The Rocket Science Group LLC.
Personal Data collected: email address.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
This type of service allows interaction with social networks or other external platforms directly from the pages of this Application.
The interaction and information obtained through this Application are always subject to the User’s privacy settings for each social network.
This type of service might still collect traffic data for the pages where the service is installed, even when Users do not use it.
It is recommended to log out from the respective services in order to make sure that the processed data on this Application isn’t being connected back to the User’s profile.
The Facebook Like button and social widgets are services allowing interaction with the Facebook social network provided by Facebook, Inc.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
The LinkedIn button and social widgets are services allowing interaction with the LinkedIn social network provided by LinkedIn Corporation.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
The Twitter Tweet button and social widgets are services allowing interaction with the Twitter social network provided by Twitter, Inc.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
This type of service allows Users to interact with third-party live chat platforms directly from the pages of this Application, for contacting and being contacted by this Application support service.
If one of these services is installed, it may collect browsing and Usage Data in the pages where it is installed, even if the Users do not actively use the service. Moreover, live chat conversations may be logged.
The Drift Widget is a service for interacting with the Drift live chat platform provided by Drift.com, Inc.
Personal Data collected: Cookies; Data communicated while using the service; Usage Data; various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
This Application may collect, use, and share User location Data in order to provide location-based services.
Most browsers and devices provide tools to opt out from this feature by default. If explicit authorization has been provided, the User’s location data may be tracked by this Application.
Personal Data collected: geographic position.
This type of service makes it possible to manage a database of email contacts, phone contacts or any other contact information to communicate with the User.
These services may also collect data concerning the date and time when the message was viewed by the User, as well as when the User interacted with it, such as by clicking on links included in the message.
HubSpot Email is an email address management and message sending service provided by HubSpot, Inc.
Personal Data collected: email address; Usage Data.
Place of processing: United States – Privacy Policy.
These services have the purpose of hosting and running key components of this Application, therefore allowing the provision of this Application from within a unified platform. Such platforms provide a wide range of tools to the Owner – e.g. analytics, user registration, commenting, database management, e-commerce, payment processing – that imply the collection and handling of Personal Data. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the Personal Data are stored.
WordPress.com is a platform provided by Automattic Inc. that allows the Owner to build, run and host this Application.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy.
This type of service allows this Application and its partners to inform, optimize and serve advertising based on past use of this Application by the User.
This activity is performed by tracking Usage Data and by using Cookies, information that is transferred to the partners that manage the remarketing and behavioral targeting activity.
Some services offer a remarketing option based on email address lists.
In addition to any opt-out offered by any of the services below, the User may opt out of a third-party service's use of cookies by visiting the Network Advertising Initiative opt-out page.
Facebook Custom Audience is a remarketing and behavioral targeting service provided by Facebook, Inc. that connects the activity of this Application with the Facebook advertising network.
Personal Data collected: Cookies; email address.
Place of processing: United States – Privacy Policy – Opt Out. Privacy Shield participant.
Facebook Remarketing is a remarketing and behavioral targeting service provided by Facebook, Inc. that connects the activity of this Application with the Facebook advertising network.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy – Opt Out. Privacy Shield participant.
This type of service analyzes the traffic of this Application, potentially containing Users' Personal Data, with the purpose of filtering it from parts of traffic, messages and content that are recognized as SPAM.
Google reCAPTCHA is a SPAM protection service provided by Google LLC.
The use of reCAPTCHA is subject to the Google privacy policy and terms of use.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
Akismet is a SPAM protection service provided by Automattic Inc.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy.
This type of service helps the Owner to manage the tags or scripts needed on this Application in a centralized fashion.
This results in the Users' Data flowing through these services, potentially resulting in the retention of this Data.
Google Tag Manager is a tag management service provided by Google LLC.
Personal Data collected: Cookies; Usage Data.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
This type of service allows the Owner to build user profiles by starting from an email address, a personal name, or other information that the User provides to this Application, as well as to track User activities through analytics features. This Personal Data may also be matched with publicly available information about the User (such as social networks' profiles) and used to build private profiles that the Owner can display and use for improving this Application.
Some of these services may also enable the sending of timed messages to the User, such as emails based on specific actions performed on this Application.
HubSpot CRM is a User database management service provided by HubSpot, Inc.
Personal Data collected: email address; phone number; various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
HubSpot Lead Management is a User database management service provided by HubSpot, Inc.
Personal Data collected: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy. Privacy Shield participant.
Jitsi is a set of open-source projects that allows you to easily build and deploy secure videoconferencing solutions. At the heart of Jitsi are Jitsi Videobridge and Jitsi Meet, which let you have conferences on the internet, while other projects in the community enable other features such as audio, dial-in, recording, and simulcasting.
Features:
Jitsi Privacy Policy
Should you have any question that was not addressed so far, or should you simply wish to better understand how Eko deals with your Personal Data or, in general, your rights under GDPR, please please feel free to email us at legal@ekoapp.com.
