Last updated: May 14, 2018
Effective: May 24, 2018. You can find the earlier policy in our archive.
Your privacy is important to us, and so is being transparent about how we collect, use, and share information about you.
We collect information about you when you provide it to us, when you use our Services, and when other sources provide it to us, as described below.
We collect information about you when you register for an account, create or modify your profile, set preferences, sign-up for or make payments through the Services. For example, you provide your contact information and billing information when you register for our Services. You also have the option to add a display name, profile picture, job title, and other details to your profile information to be displayed in our Services.
The Services include our products that you use, where we collect and store content that you post, send, receive and share. Examples of content we collect and store include: the name and description of a project or a task in 5pm, mind maps created in SpiderScribe, notes posted to tickets in smartQ, design annotations posted in Firefly, and any feedback you provide to us. Content also includes the files and links you upload to the Services.
The Services also include our websites. We collect other content that you submit to these websites, which include social media or social networking websites operated by us. For example, you provide content to us when you provide feedback or when you participate in any interactive features, surveys, contests, promotions or events.
The Services also include our customer support, where you may choose to submit information regarding a problem you are experiencing with our Services.
We collect certain payment and billing information when you register for our paid Services. This includes the name and contact information of a billing representative. You might also provide payment information, such as payment card details, that are collected and processed via secure payment processing services. We do not store or have access to your credit card information.
We collect information about you when you use our Services, including browsing our websites and taking certain actions within the Services. This information includes the features you use and how you interact with others on the Services.
We collect information about your computer, phone, tablet, or other devices you use to access the Services. This device information includes your connection type and settings when you install, access, update, or use our Services. We also collect information through your device about your operating system, browser type, IP address, URLs of referring/exit pages, device identifiers, and crash data.
We will never sell your personal info to third parties, and we will not use your name or company in marketing statements unless you have publicly shared the information or expressly provided us permission.
We are a data processor with respect to content and other user information we collect in providing the Services to our customers. You can store any type of information in our Services, but we do not share that data or generally know what type of data you or other users are storing. The data is only used by the account owner and invited users as they intend to use it.
Even though we do not transfer data to non-agent third parties, if we were to, we will provide EU and Swiss individuals with opt-out before we share their data with third parties or before we use it other than which it was originally collected or subsequently authorized. To limit the disclosure of your personal information, please submit a written request to firstname.lastname@example.org.
The only times we will ever share your info:
You always have the right to access the personal information we store about you. You can review the personal information you provide to us and make any desired changes to the information, or to the settings, at any time by logging into your account. You can also contact us via email at email@example.com.
We will collect, process, and use your personal data and other data in particular for the following purposes:
If required by law, we will ask for your consent before collecting, processing, or using your personal data for any of the aforementioned purposes.
We will also notify you if we want to use your personal data for a new or different purpose. We will use your personal data for such other purposes only if and to the extent necessary or permitted by applicable law or with your consent.
If you are an individual in the European Economic Area (EEA), we collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the Services you use and how you use them. This means we collect and use your information only where:
If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.
We want to communicate with you only if you want to hear from us. If you prefer not to receive information from us via email, please let us know by sending an email. Please be sure to include your email address and full name. If you would like to update or correct your name, email address or other personal information with us, please contact us the same way.
Because we need to update our records, sometimes these requests may take up to 30 days to be effective. We may need to contact you via email to address questions specific to your order, even if you have opted to not receive communications.
Disarea, LLC acknowledges that EU and Swiss individuals have the right to access the personal information that we maintain about them. An EU or Swiss individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct their query to firstname.lastname@example.org. If requested to remove data, we will respond within a reasonable timeframe.
Disarea, LLC never sells, rents or shares your email address. We are very concerned about the growth of spam email messages, and we know that you are, too. We believe that spam jeopardizes the right of legitimate companies to conduct business electronically, both now and in the future. The purpose of our email messages is to provide you with ideas or offers that will help you conduct business more successfully. Our emails are designed to be timely and relevant.
We use sophisticated encryption and authentication tools to protect the security of your personal information that you share with us. Unfortunately, however, no data transmission over the Internet can be guaranteed to be 100% secure. We will do our best to protect your data security on our Services.
Please make sure not to provide your login data to any third parties.
All data is encrypted via SSL when transmitted from our servers to your browser. We use Liquid Web for hosting our data. Our Services are delivered from SSAE-16 (formerly SAS70) Compliant data centers located in the United States.
We may be required to disclose personal information in response to lawful requests by public authorities, including national security or law enforcement.
When you cancel your account, we keep your data on our servers for at least 30 days in case you change your mind. Beyond that we purge account data from our servers on a regular basis. You can specifically request to have your data deleted by contacting us at email@example.com. Anything you delete on your account while it is active will also be purged within 30 days (up until then it is available for restoring, in case you deleted it by mistake).
The Services are not directed to individuals under 16 and we do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information. If you become aware that a child has provided us with personal information, please contact our support team.
We are based in the United States and the information we collect is governed by U.S. law. The information we collect may be transferred to, used from, and stored in the United States or other jurisdictions in which we or our service providers are located; these jurisdictions (including the United States) may not guarantee the same level of protection of personal information as the jurisdictions in which you reside. By using the Services, you acknowledge and agree to any such transfer of information outside of the jurisdiction in which you reside.
An organization shall remain liable under the Principles if its agent processes such personal information in a manner inconsistent with the Principles, unless the organization proves that it is not responsible for the event giving rise to the damage.
Disarea, LLC is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) with regard to the Privacy Shield Frameworks.
Disarea, LLC has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint.
Please note that if your complaint is not resolved through these channels, under limited circumstances, a binding arbitration option may be available before a Privacy Shield Panel. For more information please see www.privacyshield.gov/article?id=ANNEX-I-introduction.
If you have any questions you can email us at firstname.lastname@example.org.