1. General Provisions
1.3 Social Jool OU - 14614993, Harju maakond, Tallinn, Lasnamäe linnaosa, Sepapaja tn 6, 15551, has a position of a ‘Controller’ as defined in EU GDPR and he shall be responsible for, and be able to demonstrate compliance with, the principles relating to processing of personal data. We can be contacted by sending an e-mail to [email protected]
2. Collection and Use of Personally Identifiable Information
2.1 We may obtain some of your personal Information in order to provide our Services. The Information we collect is necessary to provide our Services, and we shall not collect any Information which is not required by the nature of our Services. We may collect some of the following personal Information:
(A) Email address
2.2 We will collect your email address on a basis of your consent and in the interest of providing our Services. We will collect your email address in the following cases:
- When you contact us. We will collect your email address whenever you contact us through our email [email protected]
Whenever we collect your email address this way, we will only use it in order to respond to your inquiry.
2.3 We use a Third-Party data processor for sending the emails called SendGrid, Inc and for support ticketing called Zendesk, Inc. We may transfer your email address to SendGrind and Zendesk to process your Information on our behalf. SendGrind and Zendesk have a position of a “data processor” within the meaning of the EU GDPR while we still remain data controllers with regard to your Information. SendGrid and Zendesk adhere to the US-EU Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework. You can find their policies and procedures with regard to your Information on the following links https://sendgrid.com/policies/privacy/services-privacy-policy/
(B) Instagram username
2.4 We will collect your Instagram username in order to providing our Services and to execute our contractual obligation. When you choose to register for our Services we will collect your Instagram username in order to deliver the requested ‘likes’.
(C) IP Address
2.5 We integrate security systems on our Site to prevent malicious attempts and exploits of the Site. We scan IP address and ban IP addresses that show malicious signs such as too many password failures, seeking exploits and similar. We process this information in the interest of protecting the integrity of the Site and of the databases connected with it, including database of Information obtained from Users. We use your IP address on a basis of a legitimate interest as well in order to provide an invoice for our Services.
2.6 Some Services will not be available to you if you do not provide requested Information. We may keep records of any questions, complaints or compliments made by you and the response if any. Whenever you contact us, we shall collect any information which you chose to provide. We shall store and use this information only for the purpose of responding to your inquiries. Information contained within the inquiry, free from any personally identifiable Information, will be stored on our servers for the purpose of improving our Services and providing the best customer support possible.
2.8 We have implemented security procedures and measures in order to ensure appropriate protection of the Information we process, against any misuse, unauthorized access, disclosure or modification. We will remove any Information about you upon your request no later than twenty four (24) hours after the request has been made.
2.9 We acknowledge that the safety of your Information is one of the highest priorities and therefore only authorized processors have access to your information. Although we take all appropriate measures in respect to keeping your information secure, you understand that no data security measures in the world can offer 100% protection. If we ever find or suspect a personal data breach we will without delay, within seventy-two (72) hours after becoming aware of it, notify the appropriate supervisory authority about the breach and Users where necessary.
2.10 The processing of the information is being performed automatically, without human intervention. However, whenever you contact us through email, the Information within the email will be handled and processed by a real human in order to provide you with the answer to the email.
2.11 Users may request access to, modification and erasure of personal Information and the exercise of the right to object. Such requests are submitted to [email protected]
3. Collection and Use of Non-Personally Identifiable Information
3.1 The Site collects a series of general data and information when a User or automated system calls up the Site. This general data and information are stored in the server log files. Collected may be (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrers), (4) the sub-websites, (5) the date and time of access to the Internet site, (6) the Internet service provider of the accessing system, and (7) any other similar data and information that may be used in the event of attacks on our information technology systems.
3.2 We collect this information for breach investigation purposes. When using this information, we do not draw any conclusions about the User. Rather, this information is needed to (1) deliver the content of our Site correctly, (2) optimize the content of our Site as well as its advertisement, (3) ensure the long-term viability of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.
4. Storage and transfer of Information
4.1 Information will be stored on our secure servers located in Sweden. Servers are controlled and maintained in accordance with sufficient privacy safeguards. We may store or transfer Information to servers located in countries deemed adequate by the European Commission, or in countries which European Commission has not deemed inadequate, provided that such countries implement appropriate and suitable safeguards regarding the security of personal information.
4.2 Information is stored on the servers only for the duration necessary for providing the Services and maintaining the integrity of our databases. We will maintain records of processing activities for the purpose of demonstrating compliance with EU GDPR.
5. Information retention period
5.1 If you register an account with us we will store your Information for as long as you have an active account. As soon as you delete your account we will remove all Information we have collected about you. We may keep your information for up to 30 days in our backup in order to maintain the integrity of our backup storage data.
5.2 If you do not have an account with us, but have chosen to provide some personal Information, we will delete this information after two weeks of obtaining such Information.
6. User’s Rights
6.1 User may request to:
Receive disclosure if your Personal Information is processed, and access your stored Personal Information as well as supplementary information.
Receive a copy of Personal Information you directly volunteer to massgress in a structured, commonly used and machine-readable format.
Correct your Personal Information that can be influenced by massgress.
Delete your Personal Information.
Object to the processing of Personal Information by massgress.
Restrict the processing of your Personal Information by massgress.
File a complaint with a supervisory authority.
6.2 These rights might be limited if they are subject to massgress’s own legitimate interests and regulatory requirements.
7. Cookies and similar technologies
7.1 Cookies help us optimize and improve the user experience of the Site by helping us deliver crucial functionalities. The cookies we use may vary over time as we continuously update and improve our Site.
8. Third Party Websites, Services, and Cookies
8.1 The Site or e-mails may contain links to other external websites that do not fall under our domain. We are not responsible for the privacy practices or the content of such external websites. If you choose to follow such links to external websites, you do so at your risk.
8.3 We use Google AdWords remarketing codes to log when users view specific pages or take specific actions on a website. This allows us to provide targeted advertising in the future. If you do not wish to receive this type of advertising from us in the future you can opt out by following the instructions provided here https://support.google.com/ads/answer/2662922?hl=en
10. Contact Information