Privacy policy – GDPR

The UNISPACE s.r.o.(Unispace, we, us or our) is concerned about the privacy of information provided to us and to third parties with whom we do business. Because everyone’s definition of privacy is different, it is important that you review this policy to learn what we consider to be private information, and each of our rights and responsibilities towards this information. This privacy policy is part of your contract with us, or, if you do not have a contract, it governs information you provide to us. Terms that are not defined in this policy are defined in your contract with us.

 

Date of version: 2018-05-18

It is also important that you review this policy from time to time, particularly if your business changes, or if you begin to send us new types of information. It is our goal to limit the number of changes we make to this policy. If we do make a change, we will notify you through your customer portal. Other than in an emergency, we will give you thirty days prior notice of any change, and the new policy will be effective on the thirty-first day of our notice. If such a change materially interferes with your ability to use the Services in the manner you used them prior to the change, and such a use was not previously prohibited by law or our policies, you may terminate the Services you purchase from us with no termination charge.

It is important for you to know that all information we collect may be provided to law enforcement officials, government entities or pursuant to civil litigation demands. We will provide you with written notice of such a request through your portal except in the following circumstances: we are required not to by law, or we receive a request from a law enforcement agency not to do so. Because laws and regulations differ, we do not guarantee that information we provide to law enforcement, regulatory and government entities will be kept confidential.

What data does Unispace collect?

There are three types of data that we collect: data that is required by us to provide Services to you; data that is automatically collected by us; and data you voluntarily provide to us.

We collect the following personal information from you:

  • Contact Information. This is information you are required to provide to us to enable us to contact you. Examples of contact information may include name, email address, mailing address and telephone number. Contact information may identify you personally.
  • Billing Information. This is information you are required to provide to us to enable us to be paid for the Services, or for a third party to provide services through us to you. Examples of billing information may include credit card number, bank information, PayPal id, billing address, billing contact name, telephone numbers and email address. Billing information may identify you personally.
  • Password Information. This is information that allows you to access the Services, technical support, our ticketing system and any third party services provided through us. Examples of password information may include user id, account number and password. Password information does not identify you personally, but when associated with other information, it may.
  • Technical Information. This is information that allows us to configure the Services so that they are more easily provided to you. Examples of technical information may include your IP address, browser type, referring/exit pages, operating system, and affiliate id. Technical information does not identify you personally, but when associated with other information, it may.
  • Voluntary Information. This is information you choose to provide to us and that is not necessary for the operation of the Services. Examples of voluntary information include submissions to our knowledgebase, your endorsements of us and your connections to us in social networks. It is your decision whether you include information that identifies you personally when you provide voluntary information to us.

How does Unispace use the data it collects?

We will use contact information as follows:

  • To provide the Services to you;
  • To contact you about the Services;
  • To contact you about our business and new products and services we offer;
  • To allow third parties to provide their services through us to you; and
  • To law enforcement, regulatory and government entities to whom we believe we are required to provide it by law.

We do not make this information public except as provided above. However, it is possible that this information may become public. For example, contact information may be provided to a domain name registrar who publishes that information in a who-is register.

We will use billing information as follows:

• To provide the Services to you;
• To bill you, or have third party services bill you, for the Services;
• To allow third parties to provide their services through us to you; and
• To law enforcement, regulatory and government entities to whom we believe we are required to provide it by law.

We require third parties to whom we provide billing information to keep this information confidential, but cannot be responsible if they breach our contract.

We will use password information as follows:

• To provide the Services to you;
• To allow third parties to provide their services through us to you; and
• To law enforcement, regulatory and government entities to whom we believe we are required to provide it by law.

We require third parties to whom we provide password information to keep this information confidential, but cannot be responsible if they breach our contract.
We will use technical information as follows:
• To provide the Services to you;
• To allow third parties to provide their services through us to you;
• To troubleshoot the Services, and allow third parties to assist us in doing so; and
• To law enforcement, regulatory and government entities to whom we believe we are required to provide it by law.

We require third parties to whom we provide technical information to keep this information confidential, but cannot be responsible if they breach our contract.

We will use voluntary information as follows:

• To enhance our services;
• To help third parties use our services; and
• In our advertising.

You may voluntarily connect with us on many different social networking platforms. Their privacy policies, not this privacy policy, govern our use of that data. We may use social networking data to the fullest extent permitted by the privacy policies of the provider.

Will you sell data?

Contact information, billing information, password information and technical information will only be sold in conjunction with the sale of all or a portion of our business.

E-mail communication

You have the right to ask us to be excluded from the UNISPACE e-mail communication such as newsletters and invites. E-mails with a marketing purpose may be sent from UNISPACE, the products that are being marketed are directly associated with the UNISPACE products with a purpose to offer extension of the service that UNISPACE provides.

In case of third party marketing through e-mail. You have the right to ask us not to process your personal data for external marketing purposes. We will inform you (at the moment of collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. Therefore, we will not be able to process your personal data for marketing purposes unless we expressly obtain your consent for it.

Third party articles or information may be shown in UNISPACE e-mails. They are only to be shown in e-mail communication or marketing when a purpose or a connection to the UNISPACE brand is relevant.

You may at any time opt out by choosing the opt out alternative in the received e-mails or by mailing support@unispace.io to be removed.

As a billing customer that uses the services provided by UNISPACE, you can not opt out from critical e-mails that may inform you of performance changes or other associated and relevant information.

Data handling for non-billed

Non-billed visitors and contacts of the UNISPACE public cloud platforms that are stored in our CRM-system have the right to ask to be removed at any time as well as receive their data and information stored on UNISPACE CRM. The non-billed visitors are opted in through affiliation, contact with the UNISPACE-team or former UNISPACE product users with consent from both parties in all cases. See section E-mail communication to learn more about what is being communicated to non-billed customers. You may at any time e-mail us and ask to be removed from our CRM as well as ask for your data by sending an email to support@unispace.io

Can I opt out?

You may opt out of receiving information about our business, new products, and the services we offer. Simply uncheck the mailing list option under the contact information section in your customer portal. Once you provide voluntary information to us, you may not opt out of its use.

How do I change the information you collect?

To change any of the information set out in this policy, other than voluntary information, you need to log into your customer portal and change or modify it. For information we control, these changes will be immediate. However, it may take some time for third parties to change your information. This is particularly true of certain types of contact information and technical information. For example, if you change your contact information, it may take several days for a domain name registrar to make those changes. You should never assume that any changes to that type of information will be immediate. Once you provide voluntary information to us, you may not change it.

Information tracking programs

Our site uses information tracking programs. These programs may be cookies, single-pixel gifs or other technology that provides us with information about your activities on our site and the internet in general. Information tracking programs do things like keep track of your preferences and profile information so that you do not have to enter that information each time you visit our site (Preferences), or to modify our site so that it presents information to you that we believe you will find helpful. These programs may also collect usage and volume statistical information. Other than Preferences, no personally identifiable information is collected by us. We do not provide the Preferences to third parties.

If you do not want your Preferences stored on your computer, you can deselect this option when you are asked for this information. If you wish to change the Preferences after you chose to have them stored, you may log into your customer portal and change them. For information collected other than the Preferences, it is your obligation to configure your browser so that this information is not collected.

How do you secure this information?

When you provide us with information covered by this policy it is protected by encrypted SSL. The information is stored on secured servers configured to allow only authorized access. Security of stored information corresponds to the standard of Tier III certification of used data center.

UNISPACE GDPR compliance terms

By accepting our Terms of Service and Privacy Policy, you: 

  • confirm that you was given consent to the processing of your personal data for all the following purposes:
  • Providing our services to you;
  • Billing, accounting and financial matters;
  • Send informative and marketing communications for the purpose of selling and raising brand awareness for the UNISPACE products and services;
    • Example such as:
      • Newsletters
      • Events
      • Meetups
      • Webinars
      • Product sales
      • Updates
      • Service windows
      • Read more in section E-mail communication
    • at the time when personal data is obtained, UNISPACE and it’s providers will provide you with all of the following information in the sense of Article 13 of GDPR: 
        • the identity and the contact details of the controller; 
        • the contact details of the data protection officer (support@unispace.io); 
        • the purposes of the processing for which the personal data are intended as well as the legal basis for the processing; 
        • the recipients or categories of recipients of the personal data, if any; 
        • the criteria used to determine that period for which the personal data will be stored; 
        • the existence of the right to request from the controller access to personal data, the right to rectification or erasure of personal data, the right to restrict of processing concerning the data subject or to object to processing, the right to data portability; 
        • the existence of the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal
        • the right to lodge a complaint with a supervisory authority; 
        • the provision of personal data is a contractual requirement, and a requirement necessary to enter into a contract, you are obliged to provide the personal data and informed about the possible consequences of failure to provide such data;
    • you as the data subject were informed of the possible risks of transfers abroad of EU;

2. Data Processing

  • Processor and Controller Responsibilities. If the European Data Protection Legislation applies to the processing of your Personal Data, the parties acknowledge and agree that:
    • UNISPACE and it’s providers are processors of that Personal Data under the European Data Protection Legislation;
    • You are a data subject, as applicable, under European Data Protection Legislation; and
    • Each party will comply with the obligations applicable to it under the European Data Protection Legislation.
    • Subject Matter: UNISPACE’s provision of the Services to you according to Agreement. Your personal data will be shared with the chosen hoster.
    • Duration of the Processing: period from entering into Terms until deletion of all your Data in accordance with the Policy.
    • Nature and Purpose of the Processing: UNISPACE will process your Personal Data for the purposes of providing the Services to you in accordance with the Terms. Also UNISPACE can process personal data for marketing purposes (excluding direct marketing in the sense of the Article 21 (2) of the GDPR). Also your Personal Data can be used in Google Analytics, etc.  
    • Categories of Data: Data relating to individuals provided to UNISPACE via the Services.

3. Data Deletion

  • Deletion by Customer. UNISPACE will enable you to delete your Data during the Term in a manner consistent with the functionality of the Services. 
  • Deletion on Termination. On expiry of the Term, Customer instructs UNISPACE’s to delete all Customer Data (including existing copies) from UNISPACE’s and it’s public cloud platforms systems in accordance with applicable law. 

4. Data Security

  • UNISPACE’s Security Measures. UNISPACE will implement and maintain technical and organizational measures to protect Customer Data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access. UNISPACE may update or modify the Security Measures from time to time provided that such updates and modifications do not result in the degradation of the overall security of the Services.
  • Security Compliance by UNISPACE Staff. UNISPACE will take appropriate steps to ensure compliance with the Security Measures by its employees, contractors and subprocessors to the extent applicable to their scope of performance, including ensuring that all persons authorized to process Customer Personal Data have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality.
  • Incident Notification. If UNISPACE becomes aware of a Data Breach, UNISPACE will: (a) notify you of the Data Breach promptly and without undue delay after becoming aware of the Data Breach (not later than 72 hours after having become aware of a Data Breach); and (b) promptly take reasonable steps to minimize harm and secure your Data.
  • Delivery of Notification. Notification(s) of any Data Breach(s) will be delivered to the Notification Email Address, by SMS or, at UNISPACE’s discretion, by direct communication (for example, by phone call or an in-person meeting). You are solely responsible for ensuring that the Notification Email Address is current and valid.
  • Your Security Responsibilities. You agree that:
    • You are solely responsible for UNISPACE use of the Services, including:
      • making appropriate use of the Services and the Additional Security Controls to ensure a level of security appropriate to the risk in respect of the your Data;
      • securing the account authentication credentials, systems and devices you use to access the Services;
      • backing up your Data;
  • UNISPACE has no obligation to protect your Data that you select to store or transfer outside of UNISPACE’s and its Subprocessors’ systems (for example, offline or on-premises storage).

 

5. Data Transfers

  • Transfers of Data Out of the EEA. If the storage and/or processing of your Personal Data involves transfers of your Personal Data out of the EEA, and the European Data Protection Legislation applies to the transfers of such data, UNISPACE will ensure that UNISPACE as the data importer of the Transferred Personal Data enters into Contract Clauses with entity as the data exporter of such data, and that the transfers are made in accordance with such Contract Clauses. 
  • International transfers of data may also take place in the location of the previous transfers. In any case, third parties with whom certain personal data are shared will have previously accredited the adoption of adequate technical and organizational measures for the correct protection of the same. The transfers will be executed within the framework of the technical and organizational guarantees implemented as binding corporate rules by UNISPACE.

6. Subprocessors

  • Consent to Subprocessor Engagement. You specifically authorize the engagement of UNISPACE Affiliates as Subprocessors. In addition, Customer generally authorizes the engagement of any other third parties as Subprocessors. 

7. Cloud Data Protection Team;

  • UNISPACE Cloud Data Protection. If you have any questions regarding the Cloud Data Protection, email us at support@unispace.io

8. Liability

  • Liability Cap. If Contract Clauses have been entered into as described in Section Transfers of Data Out of the EEA, the total combined liability of either party and its Affiliates towards the other party and its Affiliates under or in connection with the Agreement and such Contract Clauses combined will be limited to the Agreed Liability Cap for the relevant party, subject to Section Liability Cap Exclusions.
  • Liability Cap Exclusions. Nothing in Section Liability Cap will affect the remaining terms of the Agreement relating to liability (including any specific exclusions from any limitation of liability).

If you have any questions about your data or information about you that we have stored, e-mail us at support@unispace.io

2. Service marks

THIS WEBSITE AND INFORMATION WITHIN IS PROVIDED “AS IS” WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. THIS WEB SITE COULD INCLUDE TECHNICAL INACCURACIES OR TYPOGRAPHICAL ERRORS. CHANGES ARE PERIODICALLY MADE TO THE INFORMATION HEREIN; THESE CHANGES WILL BE INCORPORATED IN NEW EDITIONS OF THE WEBSITE UNISPACE MAY MAKE IMPROVEMENTS AND/OR CHANGES IN THE PRODUCT(S) AND/OR THE PROGRAM(S) DESCRIBED IN THIS PUBLICATION AT ANY TIME.