Last updated: October 2020
Collection of personal information
We receive and store any information you knowingly provide to us when you create an account or fill any online forms on the Website. You can choose not to provide us with certain information, but then you may not be able to take advantage of some of the Website and its Services’ features.
We collect it by fair and lawful means, with your knowledge and consent. We also let you know why we are collecting it and how it will be used.
We only retain collected information for as long as necessary to provide you with your requested service. What data we store, we will protect within commercially acceptable means to prevent loss and theft, as well as unauthorized access, disclosure, copying, use, or modification.
Users who are uncertain about what information is mandatory are welcome to contact us.
The Personal Data We Collect
Information you provide to us
- your name;
- your contact details;
- a subset of the personal information you share with Zendesk (where you give us permission to access this information);
- your credit card or payment details (through our third-party payment processor);
- your preferences and/or opinions which you voluntarily provide to us;
- information you voluntarily provide to us as part of market research or through customer surveys;
- details of products and services we have provided to you and/or that you have enquired about (including your GDPR preferences for EU citizens), and our response to you.
Information automatically collected in GrowthDot applications
This includes information that is automatically stored by cookies and other session tools. For example, your IP address or the IPs you have blacklisted (in the Email Tracking application). Also, when you use our services or look at the contents of our Website, your activities may be logged. This information is used to improve the customer experience.
We also gather information from Zendesk with confirmation that they have legal grounds to share that information with us. This is either information you have provided them directly with or that they have gathered about you on other legal grounds. For example, your subdomain Url, User ID (for GDPR Compliance and Email Tracking applications only), or Installation ID, when you install the Product or authorize it with your Zendesk account (for all applications).
Additionally, we access the data about the custom fields, filters, and automation rules you have created in your Zendesk account (for Proactive Campaigns and GDPR Compliance products only). Although this information is key for the functionality of the Services mentioned before, we do not store it on our side.
Collection of non-personal information
When you visit the Website, our servers automatically record information that your browser sends. This data may include information such as your device's IP address, browser type and version, operating system type and version, language preferences or the webpage you were visiting before you came to our Website, pages of our Website that you visit, the time spent on those pages, the information you search for on our Website, access times and dates, and other statistics.
How we collect data
You directly provide us with the most data GrowthDot collects about you. We collect and process data when you:
- Register online and but any of our products or services;
- Voluntarily complete customer surveys or leave feedback via email or any other available feedback forms;
GrowthDot may also receive a part of your information indirectly via Zendesk.
Managing personal information
You are able to access, add to, update, and delete certain Personal Information about you. The information you can view, update, and delete may change as the Website or Services change. When you update information, however, we may maintain a copy of the unrevised information in our records. Some information may remain in our private records after your deletion of such information from your account. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. We may use any aggregated data derived from or incorporating your Personal Information after you update or delete it, but not in a manner that would identify you personally. Once the retention period expires, Personal Information shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification, and the right to data portability cannot be enforced after the expiration of the retention period.
Use and processing of collected information
Any of the information we collect from you may be used to personalize your experience; send notification emails such as password reminders, updates, etc.; run and operate our Website and Services. Non-Personal Information collected is used only to identify potential cases of abuse and establish statistical information regarding Website usage. This statistical information is not otherwise aggregated in such a way that it would identify any particular user of the system.
We may process Personal Information related to you if one of the following applies: (i) You have given their consent for one or more specific purposes. Note that under some legislations, we may be allowed to process information until you object to such processing (by opting out), without having to rely on consent or any other of the following legal bases below. This, however, does not apply whenever the processing of Personal Information is subject to European data protection law; (ii) Provision of information is necessary for the performance of an agreement with you and/or for any pre-contractual obligations thereof; (iii) Processing is necessary for compliance with a legal obligation to which you are subject; (iv) Processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in us; (v) Processing is necessary for the purposes of the legitimate interests pursued by a third party or by us. In any case, we will be happy to clarify the specific legal basis that applies to the processing, and in particular, whether the provision of Personal Data is a statutory or contractual requirement or a requirement necessary to enter into a contract.
How we use your personal information
Zendesk Chat enables us to add live chat functionality to our website so that visitors can reach out to the support team directly.
Zendesk Support is a ticketing software we use to track, manage, and resolve inquiries from customers and website visitors.
Information transfer and storage
Depending on your location, data transfers may involve transferring and storing your information in a country other than your own. You are entitled to learn about the legal basis of information transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by us to safeguard your information. If any such transfer takes place, you can find out more by checking the relevant sections of this document or inquire with us using the information provided in the contact section.
You can read about how and where your personal information is stored as well as about our security matters in detail here, in our Security Policy.
The rights of users
You may exercise certain rights regarding your information processed by us. In particular, you have the right to do the following: (i) you have the right to withdraw consent where you have previously given your consent to the processing of your information; (ii) you have the right to object to the processing of your information if the processing is carried out on a legal basis other than consent; (iii) you have the right to learn if information is being processed by us, obtain disclosure regarding certain aspects of the processing and obtain a copy of the information undergoing processing; (iv) you have the right to verify the accuracy of your information and ask for it to be updated or corrected; (v) you have the right, under certain circumstances, to restrict the processing of your information, in which case, we will not process your information for any purpose other than storing it; (vi) you have the right, under certain circumstances, to obtain the erasure of your Personal Information from us; (vii) you have the right to receive your information in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another controller without any hindrance. This provision is applicable provided that your information is processed by automated means and that the processing is based on your consent, on a contract which you are part of, or on pre-contractual obligations thereof.
The right to object to processing
Where Personal Information is processed for the public interest, in the exercise of an official authority vested in us or for the purposes of the legitimate interests pursued by us, you may object to such processing by providing a ground related to your particular situation to justify the objection. You must know that, however, should your Personal Information be processed for direct marketing purposes, you can object to that processing at any time without providing any justification. To learn whether we are processing Personal Information for direct marketing purposes, you may refer to the relevant sections of this document.
How to exercise these rights
Any requests to exercise User rights can be directed to the Owner through the contact details provided in this document. These requests can be exercised free of charge and will be addressed by the Owner as early as possible and always within one month.
Privacy of children
We do not knowingly collect any Personal Information from children under the age of 18. If you are under the age of 18, please do not submit any Personal Information through our Website or Service. We encourage parents and legal guardians to monitor their children's Internet usage and to help enforce this Policy by instructing their children never to provide Personal Information through our Website or Service without their permission. If you have reason to believe that a child under the age of 18 has provided Personal Information to us through our Website or Service, please contact us.
EU citizens and residents particular rights
GrowthDot wants you to be fully aware of all your data protection rights. According to the General Data Protection Regulation that became enforceable on 25 May 2018, all EU citizens, residents, or EU-based organizations have the right to:
- The right to access - you have the right to request GrowthDot for copies of your personal data. We may charge you a small fee for this service.
- The right to rectification - You have the right to request that GrowthDot corrects any information you believe is incorrect or inaccurate. You also have the right to request us to complete the information you believe is incomplete.
- The right to erasure - You have the right to request that GrowthDot erases your personal data.
- The right to restrict processing - you have the right to object to GrowthDot’s processing of your personal data.
- The right to data portability - You have the right to request that GrowthDot transfers the data that we have collected to another organization, or directly to you.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email: [email protected]
California-resident specific rights
According to the California Consumer Privacy Act (CCPA), which took effect on Jan 1st, 2020, you have the right to:
a. Request for information about the:
- Categories of Personal Data GrowthDot has been collected about you.
- Specific pieces of Personal Data GrowthDot has collected about you.
- Categories of sources from which the Personal Data is collected.
- Business or commercial purpose for collecting Personal Data.
- Categories of third parties with whom the business shares Personal Data.
b. Request for change, move, or deletion of any Personal Data collected about you by GrowthDot.
If you seek to exercise the foregoing rights to access or delete Personal Data, which constitutes 'personal information' as defined in CCPA, please write to us here. By writing to us, you agree to receive communication from us seeking information from you in order to verify you to be the consumer from whom we have collected the Personal Data and such other information as reasonably required to enable us to honor your request.
We do not sell, trade, rent, or otherwise share your personal information with third parties for their commercial purposes, except where you specifically have told us to.
For all CCPA requests and questions, please contact us at [email protected].
Are GrowthDot plugins GDPR and CCPA Compliant?
If you are currently using any of the Zendesk plugins created by GrowthDot (namely, Email Tracking, Proactive Campaigns, GDPR Compliance, CRM and Deals, and Video Reply) and belong to GDPR- or CCPA-regulated territories, you can find all the information regarding the data we collect about you in detail in the "Collection of personal information" section.
We offer electronic newsletters to which you may voluntarily subscribe at any time. You may choose to stop receiving our newsletter or marketing emails by following the unsubscribe instructions included in these emails or by contacting us. However, you will continue to receive essential transactional emails.
Do Not Track signals
Some browsers incorporate a Do Not Track feature that signals to websites you visit that you do not want to have your online activity tracked. Tracking is not the same as using or collecting information in connection with a website. For these purposes, tracking refers to collecting personally identifiable information from consumers who use or visit a website or online service as they move across different websites over time. Our Website does not track its visitors over time and across third-party websites. However, some third-party sites may keep track of your browsing activities when they serve you content, which enables them to tailor what they present to you.
Links to other websites
Our Website contains links to other websites that are not owned or controlled by us. Please be aware that we are not responsible for the privacy practices of such other websites or third-parties. We encourage you to be aware when you leave our Website and to read the privacy statements of each and every website that may collect Personal Information.
We secure information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We maintain reasonable administrative, technical, and physical safeguards in an effort to protect against unauthorized access, use, modification, and disclosure of Personal Information in its control and custody. However, no data transmission over the Internet or wireless network can be guaranteed. Therefore, while we strive to protect your Personal Information, you acknowledge that (i) there are security and privacy limitations of the Internet which are beyond our control; (ii) the security, integrity, and privacy of any and all information and data exchanged between you and our Website cannot be guaranteed; and (iii) any such information and data may be viewed or tampered with in transit by a third-party, despite best efforts.
In the event we become aware that the security of the Website has been compromised or users Personal Information has been disclosed to unrelated third parties as a result of external activity, including, but not limited to, security attacks or fraud, we reserve the right to take reasonably appropriate measures, including, but not limited to, investigation and reporting, as well as notification to and cooperation with law enforcement authorities. In the event of a data breach, we will make reasonable efforts to notify affected individuals if we believe that there is a reasonable risk of harm to the user as a result of the breach or if notice is otherwise required by law. When we do, we will send you an email.
We will disclose any information we collect, use or receive if required or permitted by law, such as to comply with a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request. In the event we go through a business transition, such as a merger or acquisition by another company or sale of all or a portion of its assets, your user account and personal data will likely be among the assets transferred.
Changes and amendments
We reserve the right to modify this Policy relating to the Website or Services at any time, effective upon posting of an updated version of this Policy on the Website. When we do, we will revise the updated date at the bottom of this page. Continued use of the Website after any such changes shall constitute your consent to such changes.
Acceptance of this policy
You acknowledge that you have read this Policy and agree to all its terms and conditions. By using the Website or its Services, you agree to be bound by this Policy. If you do not agree to abide by the terms of this Policy, you are not authorized to use or access the Website and its Services.
If you have any questions about this Policy, please contact us.